Skip to Main content Skip to Navigation
Conference papers

Side-Channels Beyond the Cloud Edge : New Isolation Threats and Solutions

Abstract : Fog and edge computing leverage resources of end users and edge devices rather than centralized clouds. Isolation is a core security challenge for such paradigms: just like traditional clouds, fog and edge infrastructures are based on virtualization to share physical resources among several self-contained execution environments like virtual machines and containers. Yet, isolation may be threatened due to side-channels, created by the virtualization layer or due to the sharing of physical resources like the processor. Side-channel attacks (SCAs) exploit and use such leaky channels to obtain sensitive data. This paper aims to clarify the nature of this threat for fog and edge infrastructures. Current SCAs are local and exploit isolation challenges of virtualized environments to retrieve sensitive information. We introduce a new concept of distributed side-channel attack (DSCA) that is based on coordinating local attack techniques. We explore how such attacks can threaten isolation of any virtualized environments such as fog and edge computing. Finally, we study a set of different applicable countermeasures for attack mitigation.
Complete list of metadatas

Cited literature [45 references]  Display  Hide  Download
Contributor : Mohammad Mahdi Bazm <>
Submitted on : Monday, September 25, 2017 - 5:59:01 PM
Last modification on : Wednesday, June 24, 2020 - 4:19:36 PM
Document(s) archivé(s) le : Tuesday, December 26, 2017 - 2:38:37 PM


Files produced by the author(s)


  • HAL Id : hal-01593144, version 1


Mohammad-Mahdi Bazm, Marc Lacoste, Mario Südholt, Jean-Marc Menaud. Side-Channels Beyond the Cloud Edge : New Isolation Threats and Solutions. IEEE International Conference on Cyber Security in Networking (CSNet) 2017, Oct 2017, Rio de Janeiro, Brazil. ⟨hal-01593144v1⟩



Record views


Files downloads