Conference Proceedings

The last mile: An empirical study of timing channels on seL4

D Cock, Q Ge, T Murray, G Heiser

Proceedings of the ACM Conference on Computer and Communications Security | Association for Computing Machinery | Published : 2014

DOI: 10.1145/2660267.2660294

Abstract

Storage channels can be provably eliminated in well-designed, highassurance kernels. Timing channels remain the last mile for confidentiality and are still beyond the reach of formal analysis, so must be dealt with empirically. We perform such an analysis, collecting a large data set (2,000 hours of observations) for two representative timing channels, the locally-exploitable cache channel and a remote exploit of OpenSSL execution timing, on the verified seL4 microkernel. We also evaluate the effectiveness, in bandwidth reduction, of a number of black-box mitigation techniques (cache colouring, instruction-based scheduling and deterministic delivery of server responses) across a number of ha..

View full abstract

University of Melbourne Researchers

Grants

Funding Acknowledgements

NICTA is funded by the Australian Government through the Department of Communications and the Australian Research Council through the ICT Centre of Excellence Program.

Citation metrics

60Scopus
35Web of Science
54Dimensions

Keywords

33 Built Environment and Design
3301 Architecture
Technology
Mitigation
Engineering
Science & Technology
Covert Channels
Computer Science
Sel4
Engineering, Electrical & Electronic
Computer Science, Theory & Methods
Micro-Kernels
Cache Coloring
Algorithm
Capacity
Side Channels
Confidentiality
Telecommunications
46 Information and Computing Sciences