MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack

Sowoong Kim; Myeonggyun Han; Woongki Baek

doi:10.1007/978-3-031-51479-1_7

MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack

Sowoong Kim, Myeonggyun Han, Woongki Baek

Ulsan National Institute of Science and Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In this work, we conduct in-depth characterization to quantify the impact of DRAM refresh, the location of the target memory object within a non-uniform memory access (NUMA) node, and task and page placement across NUMA nodes and identify a set of the patterns in the clflush latency data. Based on characterization results, we propose MARF, a novel memory-aware clflush-based intra- and inter-CPU side-channel attack on NUMA systems. Our case studies on three real NUMA systems demonstrate that MARF can robustly be used to attack applications that use widely-used cryptographic and user-interface libraries. We also present potential countermeasures against MARF.

Original language	English
Title of host publication	Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings
Editors	Gene Tsudik, Mauro Conti, Kaitai Liang, Georgios Smaragdakis
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	120-140
Number of pages	21
ISBN (Print)	9783031514784
DOIs	https://doi.org/10.1007/978-3-031-51479-1_7
State	Published - 2024
Event	28th European Symposium on Research in Computer Security, ESORICS 2023 - The Hague, Netherlands Duration: 25 Sep 2023 → 29 Sep 2023

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	14346 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	28th European Symposium on Research in Computer Security, ESORICS 2023
Country/Territory	Netherlands
City	The Hague
Period	25/09/23 → 29/09/23

Access to Document

10.1007/978-3-031-51479-1_7

Cite this

Kim, S., Han, M., & Baek, W. (2024). MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack. In G. Tsudik, M. Conti, K. Liang, & G. Smaragdakis (Eds.), Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings (pp. 120-140). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14346 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-51479-1_7

Kim, Sowoong ; Han, Myeonggyun ; Baek, Woongki. / MARF : A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack. Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings. editor / Gene Tsudik ; Mauro Conti ; Kaitai Liang ; Georgios Smaragdakis. Springer Science and Business Media Deutschland GmbH, 2024. pp. 120-140 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{6c752c3e37334cb485acb8162a6ff5a1,

title = "MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack",

abstract = "In this work, we conduct in-depth characterization to quantify the impact of DRAM refresh, the location of the target memory object within a non-uniform memory access (NUMA) node, and task and page placement across NUMA nodes and identify a set of the patterns in the clflush latency data. Based on characterization results, we propose MARF, a novel memory-aware clflush-based intra- and inter-CPU side-channel attack on NUMA systems. Our case studies on three real NUMA systems demonstrate that MARF can robustly be used to attack applications that use widely-used cryptographic and user-interface libraries. We also present potential countermeasures against MARF.",

author = "Sowoong Kim and Myeonggyun Han and Woongki Baek",

note = "Publisher Copyright: {\textcopyright} 2024, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 28th European Symposium on Research in Computer Security, ESORICS 2023 ; Conference date: 25-09-2023 Through 29-09-2023",

year = "2024",

doi = "10.1007/978-3-031-51479-1\_7",

language = "English",

isbn = "9783031514784",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "120--140",

editor = "Gene Tsudik and Mauro Conti and Kaitai Liang and Georgios Smaragdakis",

booktitle = "Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings",

address = "Germany",

}

Kim, S, Han, M & Baek, W 2024, MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack. in G Tsudik, M Conti, K Liang & G Smaragdakis (eds), Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 14346 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 120-140, 28th European Symposium on Research in Computer Security, ESORICS 2023, The Hague, Netherlands, 25/09/23. https://doi.org/10.1007/978-3-031-51479-1_7

MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack. / Kim, Sowoong; Han, Myeonggyun; Baek, Woongki.
Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings. ed. / Gene Tsudik; Mauro Conti; Kaitai Liang; Georgios Smaragdakis. Springer Science and Business Media Deutschland GmbH, 2024. p. 120-140 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14346 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - MARF

T2 - 28th European Symposium on Research in Computer Security, ESORICS 2023

AU - Kim, Sowoong

AU - Han, Myeonggyun

AU - Baek, Woongki

PY - 2024

Y1 - 2024

N2 - In this work, we conduct in-depth characterization to quantify the impact of DRAM refresh, the location of the target memory object within a non-uniform memory access (NUMA) node, and task and page placement across NUMA nodes and identify a set of the patterns in the clflush latency data. Based on characterization results, we propose MARF, a novel memory-aware clflush-based intra- and inter-CPU side-channel attack on NUMA systems. Our case studies on three real NUMA systems demonstrate that MARF can robustly be used to attack applications that use widely-used cryptographic and user-interface libraries. We also present potential countermeasures against MARF.

AB - In this work, we conduct in-depth characterization to quantify the impact of DRAM refresh, the location of the target memory object within a non-uniform memory access (NUMA) node, and task and page placement across NUMA nodes and identify a set of the patterns in the clflush latency data. Based on characterization results, we propose MARF, a novel memory-aware clflush-based intra- and inter-CPU side-channel attack on NUMA systems. Our case studies on three real NUMA systems demonstrate that MARF can robustly be used to attack applications that use widely-used cryptographic and user-interface libraries. We also present potential countermeasures against MARF.

UR - http://www.scopus.com/inward/record.url?scp=85184115802&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-51479-1_7

DO - 10.1007/978-3-031-51479-1_7

M3 - Conference contribution

AN - SCOPUS:85184115802

SN - 9783031514784

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 120

EP - 140

BT - Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings

A2 - Tsudik, Gene

A2 - Conti, Mauro

A2 - Liang, Kaitai

A2 - Smaragdakis, Georgios

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 25 September 2023 through 29 September 2023

ER -

Kim S, Han M, Baek W. MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack. In Tsudik G, Conti M, Liang K, Smaragdakis G, editors, Computer Security – ESORICS 2023 - 28th European Symposium on Research in Computer Security, 2023, Proceedings. Springer Science and Business Media Deutschland GmbH. 2024. p. 120-140. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-51479-1_7

MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attack

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this