Closing internal timing channels by transformation

Alejandro Russo; John Hughes; David Naumann; Andrei Sabelfeld

doi:10.1007/978-3-540-77505-8_10

Closing internal timing channels by transformation

Alejandro Russo, John Hughes, David Naumann, Andrei Sabelfeld

Department of Computer Science

Chalmers University of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

27 Scopus citations

Abstract

A major difficulty for tracking information flow in multithreaded programs is due to the internal timing covert channel. Information is leaked via this channel when secrets affect the timing behavior of a thread, which, via the scheduler, affects the interleaving of assignments to public variables. This channel is particularly dangerous because, in contrast to external timing, the attacker does not need to observe the actual execution time. This paper presents a compositional transformation that closes the internal timing channel for multithreaded programs (or rejects the program if there are symptoms of other flows). The transformation is based on spawning dedicated threads, whenever computation may affect secrets, and carefully synchronizing them. The target language features semaphores, which have not been previously considered in the context of termination-insensitive security.

Original language	English
Title of host publication	Advances in Computer Science - ASIAN 2006
Subtitle of host publication	Secure Software and Related Issues - 11th Asian Computing Science Conference, Revised Selected Papers
Pages	120-135
Number of pages	16
DOIs	https://doi.org/10.1007/978-3-540-77505-8_10
State	Published - 2007
Event	11th Asian Computing Science Conference, ASIAN 2006 - Tokyo, Japan Duration: 6 Dec 2006 → 8 Dec 2006

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	4435 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	11th Asian Computing Science Conference, ASIAN 2006
Country/Territory	Japan
City	Tokyo
Period	6/12/06 → 8/12/06

Access to Document

10.1007/978-3-540-77505-8_10

Cite this

Russo, A., Hughes, J., Naumann, D., & Sabelfeld, A. (2007). Closing internal timing channels by transformation. In Advances in Computer Science - ASIAN 2006: Secure Software and Related Issues - 11th Asian Computing Science Conference, Revised Selected Papers (pp. 120-135). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4435 LNCS). https://doi.org/10.1007/978-3-540-77505-8_10

Russo, Alejandro ; Hughes, John ; Naumann, David et al. / Closing internal timing channels by transformation. Advances in Computer Science - ASIAN 2006: Secure Software and Related Issues - 11th Asian Computing Science Conference, Revised Selected Papers. 2007. pp. 120-135 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{cac671db1dc442afa4ec0a52322b56b9,

title = "Closing internal timing channels by transformation",

abstract = "A major difficulty for tracking information flow in multithreaded programs is due to the internal timing covert channel. Information is leaked via this channel when secrets affect the timing behavior of a thread, which, via the scheduler, affects the interleaving of assignments to public variables. This channel is particularly dangerous because, in contrast to external timing, the attacker does not need to observe the actual execution time. This paper presents a compositional transformation that closes the internal timing channel for multithreaded programs (or rejects the program if there are symptoms of other flows). The transformation is based on spawning dedicated threads, whenever computation may affect secrets, and carefully synchronizing them. The target language features semaphores, which have not been previously considered in the context of termination-insensitive security.",

author = "Alejandro Russo and John Hughes and David Naumann and Andrei Sabelfeld",

year = "2007",

doi = "10.1007/978-3-540-77505-8_10",

language = "English",

isbn = "3540775048",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "120--135",

booktitle = "Advances in Computer Science - ASIAN 2006",

note = "11th Asian Computing Science Conference, ASIAN 2006 ; Conference date: 06-12-2006 Through 08-12-2006",

}

Russo, A, Hughes, J, Naumann, D & Sabelfeld, A 2007, Closing internal timing channels by transformation. in Advances in Computer Science - ASIAN 2006: Secure Software and Related Issues - 11th Asian Computing Science Conference, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 4435 LNCS, pp. 120-135, 11th Asian Computing Science Conference, ASIAN 2006, Tokyo, Japan, 6/12/06. https://doi.org/10.1007/978-3-540-77505-8_10

Closing internal timing channels by transformation. / Russo, Alejandro; Hughes, John; Naumann, David et al.
Advances in Computer Science - ASIAN 2006: Secure Software and Related Issues - 11th Asian Computing Science Conference, Revised Selected Papers. 2007. p. 120-135 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4435 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Closing internal timing channels by transformation

AU - Russo, Alejandro

AU - Hughes, John

AU - Naumann, David

AU - Sabelfeld, Andrei

PY - 2007

Y1 - 2007

N2 - A major difficulty for tracking information flow in multithreaded programs is due to the internal timing covert channel. Information is leaked via this channel when secrets affect the timing behavior of a thread, which, via the scheduler, affects the interleaving of assignments to public variables. This channel is particularly dangerous because, in contrast to external timing, the attacker does not need to observe the actual execution time. This paper presents a compositional transformation that closes the internal timing channel for multithreaded programs (or rejects the program if there are symptoms of other flows). The transformation is based on spawning dedicated threads, whenever computation may affect secrets, and carefully synchronizing them. The target language features semaphores, which have not been previously considered in the context of termination-insensitive security.

AB - A major difficulty for tracking information flow in multithreaded programs is due to the internal timing covert channel. Information is leaked via this channel when secrets affect the timing behavior of a thread, which, via the scheduler, affects the interleaving of assignments to public variables. This channel is particularly dangerous because, in contrast to external timing, the attacker does not need to observe the actual execution time. This paper presents a compositional transformation that closes the internal timing channel for multithreaded programs (or rejects the program if there are symptoms of other flows). The transformation is based on spawning dedicated threads, whenever computation may affect secrets, and carefully synchronizing them. The target language features semaphores, which have not been previously considered in the context of termination-insensitive security.

UR - http://www.scopus.com/inward/record.url?scp=49949108946&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=49949108946&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-77505-8_10

DO - 10.1007/978-3-540-77505-8_10

M3 - Conference contribution

AN - SCOPUS:49949108946

SN - 3540775048

SN - 9783540775041

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 120

EP - 135

BT - Advances in Computer Science - ASIAN 2006

T2 - 11th Asian Computing Science Conference, ASIAN 2006

Y2 - 6 December 2006 through 8 December 2006

ER -

Russo A, Hughes J, Naumann D, Sabelfeld A. Closing internal timing channels by transformation. In Advances in Computer Science - ASIAN 2006: Secure Software and Related Issues - 11th Asian Computing Science Conference, Revised Selected Papers. 2007. p. 120-135. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-540-77505-8_10

Closing internal timing channels by transformation

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this