SoK: Computer-aided cryptography
Computer-aided cryptography is an active area of research that develops and applies
formal, machine-checkable approaches to the design, analysis, and implementation of …
formal, machine-checkable approaches to the design, analysis, and implementation of …
Inception: Exposing new attack surfaces with training in transient execution
To protect against transient control-flow hijacks, software relies on a secure state of
microarchitectural buffers that are involved in branching decisions. To achieve this secure …
microarchitectural buffers that are involved in branching decisions. To achieve this secure …
Hot Pixels: Frequency, Power, and Temperature Attacks on {GPUs} and Arm {SoCs}
The drive to create thinner, lighter, and more energy efficient devices has resulted in modern
SoCs being forced to balance a delicate tradeoff between power consumption, heat …
SoCs being forced to balance a delicate tradeoff between power consumption, heat …
Rage against the machine clear: A systematic analysis of machine clears and their implications for transient execution attacks
Since the discovery of the Spectre and Meltdown vulnerabilities, transient execution attacks
have increasingly gained momentum. However, while the community has investigated …
have increasingly gained momentum. However, while the community has investigated …
Phantom: Exploiting decoder-detectable mispredictions
Violating the Von Neumann sequential processing principle at the microarchitectural level is
commonplace to reach high performing CPU hardware—violations are safe as long as …
commonplace to reach high performing CPU hardware—violations are safe as long as …
Ct-wasm: type-driven secure cryptography for the web ecosystem
A significant amount of both client and server-side cryptography is implemented in
JavaScript. Despite widespread concerns about its security, no other language has been …
JavaScript. Despite widespread concerns about its security, no other language has been …
Ileakage: Browser-based timerless speculative execution attacks on apple devices
Over the past few years, the high-end CPU market is undergoing a transformational change.
Moving away from using x86 as the sole architecture for high performance devices, we have …
Moving away from using x86 as the sole architecture for high performance devices, we have …
Ultimate {SLH}: Taking Speculative Load Hardening to the Next Level
In this paper we revisit the Spectre v1 vulnerability and software-only countermeasures.
Specifically, we systematically investigate the performance penalty and security properties of …
Specifically, we systematically investigate the performance penalty and security properties of …
DVFS frequently leaks secrets: Hertzbleed attacks beyond SIKE, cryptography, and CPU-only data
Y Wang, R Paccagnella, A Wandke… - … IEEE Symposium on …, 2023 - ieeexplore.ieee.org
The recent Hertzbleed disclosure demonstrates how remote-timing analysis can reveal
secret information previously only accessible to local-power analysis. At worst, this …
secret information previously only accessible to local-power analysis. At worst, this …
Spook. js: Attacking Chrome strict site isolation via speculative execution
The discovery of the Spectre attack in 2018 has sent shockwaves through the computer
industry, affecting processor vendors, OS providers, programming language developers …
industry, affecting processor vendors, OS providers, programming language developers …