Towards practical tools for side channel aware software engineering: 'grey box' modelling for instruction leakages

David McCann; Elisabeth Oswald; Carolyn Whitnall

Towards practical tools for side channel aware software engineering: 'grey box' modelling for instruction leakages

David McCann, Elisabeth Oswald, Carolyn Whitnall

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

132 Downloads (Pure)

Abstract

Power (along with EM, cache and timing) leaks are of considerable concern for developers who have to deal with cryptographic components as part of their overall software implementation, in particular in the context of embedded devices. Whilst there exist some compiler tools to detect timing leaks, similar progress towards pinpointing power and EM leaks has been hampered by limits on the amount of information available about the physical components from which such leaks originate.

We suggest a novel modelling technique capable of producing high-quality instruction-level power (and/or EM) models without requiring a detailed hardware description of a processor nor information about the used process technology (access to both of which is typically restricted). We show that our methodology is effective at capturing differential data-dependent effects as neighbouring instructions in a sequence vary. We also explore register effects, and verify our models across several measurement boards to comment on board effects and portability. We confirm its versatility by demonstrating the basic technique on two processors (the ARM Cortex-M0 and M4), and use the M0 models to develop ELMO, the first leakage simulator for the ARM Cortex M0.

Original language	English
Title of host publication	26th USENIX Security Symposium (USENIX Security 17)
Publisher	USENIX Association
Pages	199-216
Number of pages	18
Volume	August 2017
ISBN (Print)	9781931971409
Publication status	Published - 1 Aug 2017

Access to Document

Full-text PDF (final published version)
This is the final published version of the article (version of record). It first appeared online via USENIX Association at https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/mccann. Please refer to any applicable terms of use of the publisher.
Final published version, 416 KB

https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/mccann

Handle.net

Persistent link

Cite this

@inproceedings{7bf746aeabc94fb2969ef8cefe6b1d8d,

title = "Towards practical tools for side channel aware software engineering: 'grey box' modelling for instruction leakages",

abstract = "Power (along with EM, cache and timing) leaks are of considerable concern for developers who have to deal with cryptographic components as part of their overall software implementation, in particular in the context of embedded devices. Whilst there exist some compiler tools to detect timing leaks, similar progress towards pinpointing power and EM leaks has been hampered by limits on the amount of information available about the physical components from which such leaks originate.We suggest a novel modelling technique capable of producing high-quality instruction-level power (and/or EM) models without requiring a detailed hardware description of a processor nor information about the used process technology (access to both of which is typically restricted). We show that our methodology is effective at capturing differential data-dependent effects as neighbouring instructions in a sequence vary. We also explore register effects, and verify our models across several measurement boards to comment on board effects and portability. We confirm its versatility by demonstrating the basic technique on two processors (the ARM Cortex-M0 and M4), and use the M0 models to develop ELMO, the first leakage simulator for the ARM Cortex M0.",

author = "David McCann and Elisabeth Oswald and Carolyn Whitnall",

year = "2017",

month = aug,

day = "1",

language = "English",

isbn = " 9781931971409",

volume = "August 2017",

pages = "199--216",

booktitle = "26th USENIX Security Symposium (USENIX Security 17)",

publisher = "USENIX Association",

address = "United States",

}

Towards practical tools for side channel aware software engineering : 'grey box' modelling for instruction leakages. / McCann, David; Oswald, Elisabeth; Whitnall, Carolyn.

26th USENIX Security Symposium (USENIX Security 17). Vol. August 2017 USENIX Association, 2017. p. 199-216.

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

TY - GEN

T1 - Towards practical tools for side channel aware software engineering

T2 - 'grey box' modelling for instruction leakages

AU - McCann, David

AU - Oswald, Elisabeth

AU - Whitnall, Carolyn

PY - 2017/8/1

Y1 - 2017/8/1

N2 - Power (along with EM, cache and timing) leaks are of considerable concern for developers who have to deal with cryptographic components as part of their overall software implementation, in particular in the context of embedded devices. Whilst there exist some compiler tools to detect timing leaks, similar progress towards pinpointing power and EM leaks has been hampered by limits on the amount of information available about the physical components from which such leaks originate.We suggest a novel modelling technique capable of producing high-quality instruction-level power (and/or EM) models without requiring a detailed hardware description of a processor nor information about the used process technology (access to both of which is typically restricted). We show that our methodology is effective at capturing differential data-dependent effects as neighbouring instructions in a sequence vary. We also explore register effects, and verify our models across several measurement boards to comment on board effects and portability. We confirm its versatility by demonstrating the basic technique on two processors (the ARM Cortex-M0 and M4), and use the M0 models to develop ELMO, the first leakage simulator for the ARM Cortex M0.

AB - Power (along with EM, cache and timing) leaks are of considerable concern for developers who have to deal with cryptographic components as part of their overall software implementation, in particular in the context of embedded devices. Whilst there exist some compiler tools to detect timing leaks, similar progress towards pinpointing power and EM leaks has been hampered by limits on the amount of information available about the physical components from which such leaks originate.We suggest a novel modelling technique capable of producing high-quality instruction-level power (and/or EM) models without requiring a detailed hardware description of a processor nor information about the used process technology (access to both of which is typically restricted). We show that our methodology is effective at capturing differential data-dependent effects as neighbouring instructions in a sequence vary. We also explore register effects, and verify our models across several measurement boards to comment on board effects and portability. We confirm its versatility by demonstrating the basic technique on two processors (the ARM Cortex-M0 and M4), and use the M0 models to develop ELMO, the first leakage simulator for the ARM Cortex M0.

M3 - Conference Contribution (Conference Proceeding)

SN - 9781931971409

VL - August 2017

SP - 199

EP - 216

BT - 26th USENIX Security Symposium (USENIX Security 17)

PB - USENIX Association

ER -

Towards practical tools for side channel aware software engineering: 'grey box' modelling for instruction leakages

Abstract

Access to Document

Handle.net

Fingerprint

Cite this