Sync plus Sync: A Covert Channel Built on fsync with Storage

	Sync plus Sync: A Covert Channel Built on fsync with Storage
	Jiang, Qisheng; Wang, Chundong
	2024
会议录名称	PROCEEDINGS OF THE 33RD USENIX SECURITY SYMPOSIUM, SECURITY 2024
页码	3349-3366
发表状态	已发表
摘要	["Scientists have built a variety of covert channels for secretive information transmission with CPU cache and main memory. In this paper, we turn to a lower level in the memory hierarchy, i.e., persistent storage. Most programs store intermediate or eventual results in the form of files and some of them call fsync to synchronously persist a file with storage device for orderly persistence. Our quantitative study shows that one program would undergo significantly longer response time for fsync call if the other program is concurrently calling fsync, although they do not share any data. We further find that, concurrent fsync calls contend at multiple levels of storage stack due to sharing software structures (e.g., Ext4's journal) and hardware resources (e.g., disk's I/O dispatch queue).","We accordingly build a covert channel named Sync+Sync. Sync+Sync delivers a transmission bandwidth of 20,000 bits per second at an error rate of about 0.40% with an ordinary solid-state drive. Sync+Sync can be conducted in cross-disk partition, cross-file system, cross-container, cross-virtual machine, and even cross-disk drive fashions, without sharing data between programs. Next, we launch side-channel attacks with Sync+Sync and manage to precisely detect operations of a victim database (e.g., insert/update and B-Tree node split). We also leverage Sync+Sync to distinguish applications and websites with high accuracy by detecting and analyzing their fsync frequencies and flushed data volumes. These attacks are useful to support further fine-grained information leakage."]
会议名称	33rd USENIX Security Symposium
出版地	SUITE 215, 2560 NINTH ST, BERKELEY, CA 94710 USA
会议地点	null,Philadelphia,PA
会议日期	AUG 14-16, 2024
URL	查看原文
收录类别	CPCI-S
语种	英语
资助项目	Nature Science Foundation of Shanghai["22ZR1442000","23ZR1442300"]
WOS研究方向	Computer Science
WOS类目	Computer Science, Information Systems ; Computer Science, Interdisciplinary Applications ; Computer Science, Theory & Methods
WOS记录号	WOS:001333860304003
出版者	USENIX ASSOC
文献类型	会议论文
条目标识符	https://kms.shanghaitech.edu.cn/handle/2MSLDSTB/493529
专题	信息科学与技术学院信息科学与技术学院_硕士生信息科学与技术学院_PI研究组_王春东组
通讯作者	Wang, Chundong
作者单位	ShanghaiTech Univ, Sch Informat Sci & Technol, Shanghai, Peoples R China
第一作者单位	信息科学与技术学院
通讯作者单位	信息科学与技术学院
第一作者的第一单位	信息科学与技术学院
推荐引用方式 GB/T 7714	Jiang, Qisheng,Wang, Chundong. Sync plus Sync: A Covert Channel Built on fsync with Storage[C]. SUITE 215, 2560 NINTH ST, BERKELEY, CA 94710 USA:USENIX ASSOC,2024:3349-3366.