DC Field | Value | Language |
---|---|---|
dc.contributor.advisor | Shin, Insik | - |
dc.contributor.advisor | 신인식 | - |
dc.contributor.author | Kim, Eunchan | - |
dc.date.accessioned | 2019-09-04T02:46:55Z | - |
dc.date.available | 2019-09-04T02:46:55Z | - |
dc.date.issued | 2018 | - |
dc.identifier.uri | http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=734102&flag=dissertation | en_US |
dc.identifier.uri | http://hdl.handle.net/10203/267055 | - |
dc.description | 학위논문(석사) - 한국과학기술원 : 전산학부, 2018.2,[iv, 21 p. :] | - |
dc.description.abstract | New hardware features such as Intel SGX provide trusted execution environments for user processes called enclaves running on top of an untrusted OS. However, recent studies showed that such protected enclaves are vulnerable to controlled-channel attack, which uses page faults to get memory access patterns. Controlled-channel attack infers an enclave’s control flow or sensitive data from the observed memory access patterns. Several defense techniques including software-based and hardware-based approaches are proposed, but a state-of-the-art study proposed a new way of getting memory access pattern of an enclave without incurring page faults. This paper randomizes the memory access pattern of an enclave through fine-grained ASLR and annotated data layout randomization. Even a potentially malicious OS can observe memory access patterns of an enclave, it is hard to infer valuable information from them. We demonstrated that our defense method protects AES from controlled-channel attack with little performance overhead. | - |
dc.language | eng | - |
dc.publisher | 한국과학기술원 | - |
dc.subject | Intel SGX▼aControlled-channel Attack▼aASLR▼aSide-channel▼aRandomization▼aPage fault | - |
dc.subject | Intel SGX▼a통제된 채널 공격▼a랜덤화▼a페이지 오류 | - |
dc.title | Memory access pattern randomization to defend against a controlled-channel attack | - |
dc.title.alternative | 통제된 채널 공격을 방어하기 위한 메모리 접근 패턴 랜덤화 | - |
dc.type | Thesis(Master) | - |
dc.identifier.CNRN | 325007 | - |
dc.description.department | 한국과학기술원 :전산학부, | - |
dc.contributor.alternativeauthor | 김은찬 | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.