丹尼尔·格鲁斯与斯特凡·加斯特_蜗牛负载互联网上的任何人都可以了解你在做什么.pdf

《丹尼尔·格鲁斯与斯特凡·加斯特_蜗牛负载互联网上的任何人都可以了解你在做什么.pdf》由会员分享，可在线阅读，更多相关《丹尼尔·格鲁斯与斯特凡·加斯特_蜗牛负载互联网上的任何人都可以了解你在做什么.pdf（82页珍藏版）》请在三个皮匠报告上搜索。

1、SnailLoadAnyone on the Internet Can Learn What Youre DoingStefan Gast,Daniel Gruss2024-08-07Graz University of Technology1Stefan Gast,Daniel GrussWho are we?Stefan GastPhD StudentGraz University of Technology notbobbytablesinfosec.exchange?notbobbytables?https:/stefangast.eu/Daniel GrussProfessorGra

2、z University of Technology lavadosinfosec.exchange?lavados?https:/gruss.cc/2Stefan Gast,Daniel GrussWho are we?Stefan GastPhD StudentGraz University of Technology notbobbytablesinfosec.exchange?notbobbytables?https:/stefangast.eu/Daniel GrussProfessorGraz University of Technology lavadosinfosec.exch

3、ange?lavados?https:/gruss.cc/2Stefan Gast,Daniel GrussSnailLoadWe can tell which website you visit,without running anything on your system:102030405060708090 100102030405060708090100PredictionWebsite010203040 503Stefan Gast,Daniel GrussWhat are Side Channels?4Stefan Gast,Daniel GrussWhat are Side Ch

4、annels?Obtain meta-data and derive data from it4Stefan Gast,Daniel GrussSide Channel Example5Stefan Gast,Daniel GrussTiming Side Channels6Stefan Gast,Daniel GrussLocal Timing Attack100200300400101104107Access time CPU cyclesNumber of accessesCache Hits Local code execution code to use secrets code t

5、o measure time code to exfiltrate data7Stefan Gast,Daniel GrussLocal Timing Attack100200300400101104107Access time CPU cyclesNumber of accessesCache HitsCache Misses Local code execution code to use secrets code to measure time code to exfiltrate data7Stefan Gast,Daniel GrussLocal Timing Attack10020

6、0300400101104107Access time CPU cyclesNumber of accessesCache HitsCache Misses Local code execution code to use secrets code to measure time code to exfiltrate data7Stefan Gast,Daniel GrussLocal Timing Attack100200300400101104107Access time CPU cyclesNumber of accessesCache HitsCache Misses Local co