Á¤º¸Ã³¸®ÇÐȸ ³í¹®Áö ÄÄÇ»ÅÍ ¹× Åë½Å½Ã½ºÅÛ
Current Result Document :
| ÇѱÛÁ¦¸ñ(Korean Title) |
JMP+RAND: ¹ÙÀ̳ʸ® ³¼ö »ðÀÔÀ» ÅëÇÑ ¸Þ¸ð¸® °øÀ¯ ±â¹Ý ºÎä³Î °ø°Ý ¹æ¾î ±â¹ý |
| ¿µ¹®Á¦¸ñ(English Title) |
JMP+RAND: Mitigating Memory Sharing-Based Side-Channel Attack by Embedding Random Values in Binaries |
| ÀúÀÚ(Author) |
Taehun Kim
Youngjoo Shin
±èÅÂÈÆ
½Å¿µÁÖ
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 09 NO. 05 PP. 0101 ~ 0106 (2020. 05) |
Çѱ۳»¿ë
(Korean Abstract) |
ÄÄÇ»ÅÍ°¡ º¸±ÞµÈ ÀÌ·¡·Î Á¤º¸º¸¾ÈÀ» ´Þ¼ºÇϱâ À§ÇØ ¸¹Àº ³ë·ÂÀÌ ÀÌ·ç¾îÁ³´Ù. ±×Áß ¸Þ¸ð¸® º¸È£ ±â¹ý¿¡ ´ëÇÑ ¿¬±¸°¡ °¡Àå ¸¹ÀÌ ÀÌ·ç¾îÁ³Áö¸¸, ÄÄÇ»ÅÍÀÇ ¼º´É Çâ»óÀ¸·Î ±âÁ¸ ¸Þ¸ð¸® º¸È£ ±â¹ýÀÇ ¹®Á¦µéÀÌ ¹ß°ßµÇ¾ú°í ºÎä³Î °ø°ÝÀÇ µîÀåÀ¸·Î »õ·Î¿î ¹æ¾î±â¹ýÀÌ ÇÊ¿äÇÏ°Ô µÇ¾ú´Ù. º» ³í¹®¿¡¼´Â JMP+RAND ±â¹ýÀ» ÀÌ¿ëÇØ ÆäÀÌÁö(Page)¸¶´Ù 5-8byteÀÇ ³¼ö¸¦ »ðÀÔÇÏ¿© ¸Þ¸ð¸® °øÀ¯ ±â¹Ý ºÎä³Î °ø°ÝÀ» ¹æ¾îÇÏ°í ±âÁ¸ ¸Þ¸ð¸® º¸È£ ±â¹ýµµ º¸¿ÏÇÏ´Â ¹æ¹ýÀ» Á¦¾ÈÇÑ´Ù. ±âÁ¸ ºÎä³Î °ø°ÝµéÀÇ ¹æ¾î±â¹ý°ú ´Þ¸® JMP+RAND ±â¹ýÀº Á¤Àû ¹ÙÀ̳ʸ® ÀçÀÛ¼º ±â¹ý(Static binary rewriting)°ú ¿¬¼ÓµÈ jmp ¸í·É¾î, ³¼ö °ªÀ» ÀÌ¿ëÇØ »çÀü¿¡ ºÎä³Î °ø°ÝÀ» ¹æ¾îÇÑ´Ù. ¿ì¸®´Â ¸Þ¸ð¸® °øÀ¯ ±â¹Ý ºÎä³Î °ø°ÝÀÌ JMP+RAND ±â¹ýÀÌ Àû¿ëµÈ ¹ÙÀ̳ʸ®¸¦ °ø°ÝÇÏ´Â µ¥ °É¸®´Â ½Ã°£À» Á¤·®ÀûÀ¸·Î °è»êÇÏ¿´°í Çö½ÇÀûÀÎ ½Ã°£ ³»¿¡ °ø°ÝÇÒ ¼ö ¾ø´Ù´Â °ÍÀ» º¸¿©ÁÖ¾ú´Ù. ÃÖ±Ù ¾ÆÅ°ÅØó´Â ºÐ±â ¿¹Ãø(Branch prediction)À» ÀÌ¿ëÇØ jmp ¸í·É¾îÀÇ ºÐ±â󸮰¡ ¸Å¿ì ºü¸£°í Á¤È®ÇϹǷΠJMP+RAND ±â¹ýÀÇ ¿À¹öÇìµå°¡ ¸Å¿ì ³·´Ù. ƯÈ÷ ƯÁ¤ ÇÁ·Î±×·¥¿¡¸¸ ³¼ö »ðÀÔÀÌ °¡´ÉÇϹǷΠŬ¶ó¿ìµå ÄÄÇ»Æà ȯ°æ¿¡¼ ¸Þ¸ð¸® Áߺ¹Á¦°Å ±â´É°ú ÇÔ²² »ç¿ëÇÏ¸é ³ôÀº È¿À²¼ºÀ» º¸ÀÏ ¼ö ÀÖÀ» °ÍÀ¸·Î ±â´ëÇÑ´Ù.
|
¿µ¹®³»¿ë
(English Abstract) |
Since computer became available, much effort has been made to achieve information security. Even though memory protection defense mechanisms were studied the most among of them, the problems of existing memory protection defense mechanisms were found due to improved performance of computer and new defense mechanisms were needed due to the advent of the side-channel attacks. In this paper, we propose JMP RAND that embedding random values of 5 to 8 bytes per page to defend against memory sharing based side-channel attacks and bridging the gap of existing memory protection defense mechanism. Unlike the defense mechanism of the existing side-channel attacks, JMP RAND uses static binary rewriting and continuous jmp instruction and random values to defend against the side-channel attacks in advance. We numerically calculated the time it takes for a memory sharing-based side-channel attack to binary adopted JMP RAND technique and verified that the attacks are impossible in a realistic time. Modern architectures have very low overhead for JMP RAND because of the very fast and accurate branching of jmp instruction using branch prediction. Since random value can be embedded only in specific programs using JMP RAND, it is expected to be highly efficient when used with memory deduplication technique, especially in a cloud computing environment.
|
| Å°¿öµå(Keyword) |
Memory Sharing-based Side-channel Attack
Binary Rewriting
Memory Sharing
Cloud Computing
Countermeasure
¸Þ¸ð¸® °øÀ¯ ±â¹Ý ºÎä³Î °ø°Ý
¹ÙÀ̳ʸ® ÀçÀÛ¼º
¸Þ¸ð¸® °øÀ¯
Ŭ¶ó¿ìµå ÄÄÇ»ÆÃ
¹æ¾î ±â¹ý
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
