利用侧信道攻击绕过 ARM 的内存标记扩展.pdf

编号:981603 PDF 68页 4.50MB 下载积分:VIP专享
下载报告请您先登录!

1、#BHUSA BlackHatEventsBypassing ARMs Memory Tagging Extension with a Side-Channel AttackSpeaker:Juhee Kim 2Juhee KimPh.D Student at CompSec Lab,Seoul National Universitykimjuhi96snu.ac.krFocuses on-Software and Systems security-Bug finding,Attack mitigation-Linux kernel,Web browser,GPU/ML systemsWhoa

2、miContributorsJinbum ParkSecurity researcher at Samsung ResearchSystem security,Confidential ComputingPublished in USENIX Security and ASPLOSSihyeon RohPh.D Student at CompSec LabHardware side-channelsJaeyoung ChungPh.D Student at CompSec LabSystem SecurityCTF playerYoungjoo LeePh.D Student at CompS

3、ec LabFuzzing,Browser security,Bug gountyCTF player3Taesoo KimVice president of Samsung Research Professor of Georgia TechWon several best paper awards from USENIX Security,EuroSysByoungyoung LeeProfessor of Seoul National UniversityLeads CompSec LabSystem security,Confidential computingPrevious CTF

4、 playerSpoken at Black HatMTE Tag Leakage Side-ChannelMTE4RoadmapCache Side-ChannelCacheSpeculative Executionif(cond)TrueFalseARM Memory Tagging ExtensionReal-world MTE Bypass AttackJSMTEMTE Tag Leakage Side-ChannelMTE5RoadmapCache Side-ChannelCacheSpeculative Executionif(cond)TrueFalseARM Memory Ta

5、gging ExtensionReal-world MTE Bypass AttackJSMTEMemory corruption attacksHeartbleed(2014)OpenSSL information leakBLASTPASS(2023)Bad Binder(2019)6have been the most pervasive and dangerous security threatsreggreSSHion(2024)What is Memory Corruption?7&obj1obj1PointerValid AccessMemory&obj2obj1PointerM

6、emoryInvalid Access(Out-of-bounds)obj2What is Memory Corruption?8&obj1obj1PointerValid AccessMemory&obj1FreedPointerMemoryInvalid Access(Use-after-free)70s-80sStack OverflowStack CanariesStackGuardASLRDEP/NXCFI90s2000s2010s2020sARM PACHeap OverflowROP/JOPDOPSpectreJIT sprayingAttack and Defense Tech

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(利用侧信道攻击绕过 ARM 的内存标记扩展.pdf)为本站 (竿头日上) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
折叠