System-Level Non-interference of Constant-Time Cryptography. Part I: Model

System-Level Non-interference of Constant-Time Cryptography. Part I: Model

This work focuses on the study of constant-time implementations; giving formal guarantees that such implementations are protected against cache-based timing attacks in virtualized platforms where their supporting operating system executes concurrently with other, potentially malicious, operating sys...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Journal of automated reasoning 2019-06, Vol.63 (1), p.1-51
Hauptverfasser: Barthe, Gilles, Betarte, Gustavo, Campo, Juan Diego, Luna, Carlos
Format: Artikel
Sprache:eng
Schlagworte:
Artificial Intelligence
Computer Science
Cryptography
Interference
Mathematical Logic and Formal Languages
Mathematical Logic and Foundations
Operating systems
Semantics
Symbolic and Algebraic Manipulation
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This work focuses on the study of constant-time implementations; giving formal guarantees that such implementations are protected against cache-based timing attacks in virtualized platforms where their supporting operating system executes concurrently with other, potentially malicious, operating systems. We develop a model of virtualization that accounts for virtual addresses, physical and machine addresses, memory mappings, page tables, translation lookaside buffer, and cache; and provides an operational semantics for a representative set of actions, including reads and writes, allocation and deallocation, context switching, and hypercalls. We prove a non-interference result on the model that shows that an adversary cannot discover secret information using cache side-channels, from a constant-time victim.
ISSN:0168-7433
1573-0670
DOI:10.1007/s10817-017-9441-5