Wait a Minute! A fast, Cross-VM Attack on AES

In cloud computing, efficiencies are reaped by resource sharing such as co-location of computation and deduplication of data. This work exploits resource sharing in virtualization software to build a powerful cache-based attack on AES. We demonstrate the vulnerability by mounting Cross-VM Flush+Relo...

Full description

Saved in:
Bibliographic Details
Published inResearch in Attacks, Intrusions and Defenses pp. 299 - 319
Main Authors Irazoqui, Gorka, Inci, Mehmet Sinan, Eisenbarth, Thomas, Sunar, Berk
Format Book Chapter
LanguageEnglish
Published Cham Springer International Publishing
SeriesLecture Notes in Computer Science
Subjects
cache attacks
Cross-VM
flush+reload
memory deduplication
Online AccessGet full text

Cover

More Information
Summary:In cloud computing, efficiencies are reaped by resource sharing such as co-location of computation and deduplication of data. This work exploits resource sharing in virtualization software to build a powerful cache-based attack on AES. We demonstrate the vulnerability by mounting Cross-VM Flush+Reload cache attacks in VMware VMs to recover the keys of an AES implementation of OpenSSL 1.0.1 running inside the victim VM. Furthermore, the attack works in a realistic setting where different VMs are located on separate cores. The modified flush+reload attack we present, takes only in the order of seconds to minutes to succeed in a cross-VM setting. Therefore long term co-location, as required by other fine grain attacks in the literature, are not needed. The results of this study show that there is a great security risk to OpenSSL AES implementation running on VMware cloud services when the deduplication is not disabled.
ISBN:9783319113784
331911378X
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-319-11379-1_15