Conference Proceedings
Formalising the Prevention of Microarchitectural Timing Channels by Operating Systems
Robert Sison, Scott Buckley, Toby Murray, Gerwin Klein, Gernot Heiser
Proceedings of the 25th International Symposium on Formal Methods | Springer | Published : 2023
Abstract
Microarchitectural timing channels are a well-known mechanism for information leakage. Time protection has recently been demonstrated as an operating-system mechanism able to prevent them. However, established theories of information-flow security are insufficient for verifying time protection, which must distinguish between (legal) overt and (illegal) covert flows. We provide a machine-checked formalisation of time protection via a dynamic, observer-relative, intransitive nonleakage property over a careful model of the state elements that cause timing channels. We instantiate and prove our property over a generic model of OS interaction with its users, demonstrating for the first time the f..
View full abstractGrants
Awarded by Australian Research Council
Funding Acknowledgements
We thank our anonymous reviewers, as well as Johannes Aman Pohjola for his feedback on our manuscript. This paper describes research that was cofunded by the Australian Research Council (ARC Project ID DP190103743).