| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
Efficient Identification of Applications in Co-resident VMs via a Memory Side-Channel
Abstract : Memory deduplication opens a side-channel that enables attackers to detect if there is a second copy of a memory page on a host their Virtual Machine (VM) is running on, and thus to gain information about co-resident VMs. In former work, we presented a practical side-channel attack that can even detect which specific versions of applications are being executed in co-resident VMs. In this paper, we enhance this attack by testing for representative groups of pages for certain groups of application versions, so-called page signatures, instead of testing for a single application version only. As a result, our new attack is significantly more efficient. Our results indicate that the attack duration can be reduced from several hours to minutes at the cost of a small loss in precision only.
Cited literature [15 references]
https://hal.inria.fr/hal-02023744
Contributor : Hal Ifip <>
Submitted on : Thursday, February 21, 2019 - 4:57:02 PM
Last modification on : Friday, November 20, 2020 - 4:26:02 PM
Long-term archiving on: : Wednesday, May 22, 2019 - 4:30:39 PM
Contributor : Hal Ifip <>
Submitted on : Thursday, February 21, 2019 - 4:57:02 PM
Last modification on : Friday, November 20, 2020 - 4:26:02 PM
Long-term archiving on: : Wednesday, May 22, 2019 - 4:30:39 PM
File
472722_1_En_18_Chapter.pdf
Files produced by the author(s)
Licence
Distributed under a Creative Commons Attribution 4.0 International License