An exploration of L2 cache covert channels in virtualized environments

Yunjing Xu; Michael Bailey; Farnam Jahanian; Kaustubh Joshi; Matti Hiltunen; Richard Schlichting

doi:10.1145/2046660.2046670

An exploration of L2 cache covert channels in virtualized environments

Yunjing Xu, Michael Bailey, Farnam Jahanian, Kaustubh Joshi, Matti Hiltunen, Richard Schlichting

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Recent exploration into the unique security challenges of cloud computing have shown that when virtual machines belonging to different customers share the same physical machine, new forms of cross-VM covert channel communication arise. In this paper, we explore one of these threats, L2 cache covert channels, and demonstrate the limits of these this threat by providing a quantification of the channel bit rates and an assessment of its ability to do harm. Through progressively refining models of cross-VM covert channels from the derived maximums, to implementable channels in the lab, and finally in Amazon EC2 itself we show how a variety of factors impact our ability to create effective channels. While we demonstrate a covert channel with considerably higher bit rate than previously reported, we assess that even at such improved rates, the harm of data exfiltration from these channels is still limited to the sharing of small, if important, secrets such as private keys.

Original language	English (US)
Title of host publication	CCSW'11 - Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop
Pages	29-39
Number of pages	11
DOIs	https://doi.org/10.1145/2046660.2046670
State	Published - 2011
Externally published	Yes
Event	3rd ACM Workshop on Cloud Computing Security Workshop, CCSW'11, Co-located with the 18th ACM Conference on Computer and Communications Security, CCS 2011 - Chicago, IL, United States Duration: Oct 21 2011 → Oct 21 2011

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Other

Other	3rd ACM Workshop on Cloud Computing Security Workshop, CCSW'11, Co-located with the 18th ACM Conference on Computer and Communications Security, CCS 2011
Country/Territory	United States
City	Chicago, IL
Period	10/21/11 → 10/21/11

Keywords

Bit rate
Covert channel

ASJC Scopus subject areas

Software
Computer Networks and Communications

Online availability

10.1145/2046660.2046670

Library availability

Discover UIUC Full Text

Cite this

Xu, Y., Bailey, M., Jahanian, F., Joshi, K., Hiltunen, M., & Schlichting, R. (2011). An exploration of L2 cache covert channels in virtualized environments. In CCSW'11 - Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop (pp. 29-39). (Proceedings of the ACM Conference on Computer and Communications Security). https://doi.org/10.1145/2046660.2046670

An exploration of L2 cache covert channels in virtualized environments. / Xu, Yunjing; Bailey, Michael; Jahanian, Farnam et al.
CCSW'11 - Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop. 2011. p. 29-39 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Xu, Y, Bailey, M, Jahanian, F, Joshi, K, Hiltunen, M & Schlichting, R 2011, An exploration of L2 cache covert channels in virtualized environments. in CCSW'11 - Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop. Proceedings of the ACM Conference on Computer and Communications Security, pp. 29-39, 3rd ACM Workshop on Cloud Computing Security Workshop, CCSW'11, Co-located with the 18th ACM Conference on Computer and Communications Security, CCS 2011, Chicago, IL, United States, 10/21/11. https://doi.org/10.1145/2046660.2046670

@inproceedings{40237c1a8215430d8a5c16674a886b17,

title = "An exploration of L2 cache covert channels in virtualized environments",

abstract = "Recent exploration into the unique security challenges of cloud computing have shown that when virtual machines belonging to different customers share the same physical machine, new forms of cross-VM covert channel communication arise. In this paper, we explore one of these threats, L2 cache covert channels, and demonstrate the limits of these this threat by providing a quantification of the channel bit rates and an assessment of its ability to do harm. Through progressively refining models of cross-VM covert channels from the derived maximums, to implementable channels in the lab, and finally in Amazon EC2 itself we show how a variety of factors impact our ability to create effective channels. While we demonstrate a covert channel with considerably higher bit rate than previously reported, we assess that even at such improved rates, the harm of data exfiltration from these channels is still limited to the sharing of small, if important, secrets such as private keys.",

keywords = "Bit rate, Covert channel",

author = "Yunjing Xu and Michael Bailey and Farnam Jahanian and Kaustubh Joshi and Matti Hiltunen and Richard Schlichting",

year = "2011",

doi = "10.1145/2046660.2046670",

language = "English (US)",

isbn = "9781450310048",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "29--39",

booktitle = "CCSW'11 - Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop",

note = "3rd ACM Workshop on Cloud Computing Security Workshop, CCSW'11, Co-located with the 18th ACM Conference on Computer and Communications Security, CCS 2011 ; Conference date: 21-10-2011 Through 21-10-2011",

}

TY - GEN

T1 - An exploration of L2 cache covert channels in virtualized environments

AU - Xu, Yunjing

AU - Bailey, Michael

AU - Jahanian, Farnam

AU - Joshi, Kaustubh

AU - Hiltunen, Matti

AU - Schlichting, Richard

PY - 2011

Y1 - 2011

N2 - Recent exploration into the unique security challenges of cloud computing have shown that when virtual machines belonging to different customers share the same physical machine, new forms of cross-VM covert channel communication arise. In this paper, we explore one of these threats, L2 cache covert channels, and demonstrate the limits of these this threat by providing a quantification of the channel bit rates and an assessment of its ability to do harm. Through progressively refining models of cross-VM covert channels from the derived maximums, to implementable channels in the lab, and finally in Amazon EC2 itself we show how a variety of factors impact our ability to create effective channels. While we demonstrate a covert channel with considerably higher bit rate than previously reported, we assess that even at such improved rates, the harm of data exfiltration from these channels is still limited to the sharing of small, if important, secrets such as private keys.

AB - Recent exploration into the unique security challenges of cloud computing have shown that when virtual machines belonging to different customers share the same physical machine, new forms of cross-VM covert channel communication arise. In this paper, we explore one of these threats, L2 cache covert channels, and demonstrate the limits of these this threat by providing a quantification of the channel bit rates and an assessment of its ability to do harm. Through progressively refining models of cross-VM covert channels from the derived maximums, to implementable channels in the lab, and finally in Amazon EC2 itself we show how a variety of factors impact our ability to create effective channels. While we demonstrate a covert channel with considerably higher bit rate than previously reported, we assess that even at such improved rates, the harm of data exfiltration from these channels is still limited to the sharing of small, if important, secrets such as private keys.

KW - Bit rate

KW - Covert channel

UR - http://www.scopus.com/inward/record.url?scp=80955157902&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=80955157902&partnerID=8YFLogxK

U2 - 10.1145/2046660.2046670

DO - 10.1145/2046660.2046670

M3 - Conference contribution

AN - SCOPUS:80955157902

SN - 9781450310048

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 29

EP - 39

BT - CCSW'11 - Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop

T2 - 3rd ACM Workshop on Cloud Computing Security Workshop, CCSW'11, Co-located with the 18th ACM Conference on Computer and Communications Security, CCS 2011

Y2 - 21 October 2011 through 21 October 2011

ER -

An exploration of L2 cache covert channels in virtualized environments

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this