消息
×
loading..
Sync plus Sync: A Covert Channel Built on fsync with Storage
2024
会议录名称PROCEEDINGS OF THE 33RD USENIX SECURITY SYMPOSIUM, SECURITY 2024
页码3349-3366
发表状态已发表
摘要["Scientists have built a variety of covert channels for secretive information transmission with CPU cache and main memory. In this paper, we turn to a lower level in the memory hierarchy, i.e., persistent storage. Most programs store intermediate or eventual results in the form of files and some of them call fsync to synchronously persist a file with storage device for orderly persistence. Our quantitative study shows that one program would undergo significantly longer response time for fsync call if the other program is concurrently calling fsync, although they do not share any data. We further find that, concurrent fsync calls contend at multiple levels of storage stack due to sharing software structures (e.g., Ext4's journal) and hardware resources (e.g., disk's I/O dispatch queue).","We accordingly build a covert channel named Sync+Sync. Sync+Sync delivers a transmission bandwidth of 20,000 bits per second at an error rate of about 0.40% with an ordinary solid-state drive. Sync+Sync can be conducted in cross-disk partition, cross-file system, cross-container, cross-virtual machine, and even cross-disk drive fashions, without sharing data between programs. Next, we launch side-channel attacks with Sync+Sync and manage to precisely detect operations of a victim database (e.g., insert/update and B-Tree node split). We also leverage Sync+Sync to distinguish applications and websites with high accuracy by detecting and analyzing their fsync frequencies and flushed data volumes. These attacks are useful to support further fine-grained information leakage."]
会议名称33rd USENIX Security Symposium
出版地SUITE 215, 2560 NINTH ST, BERKELEY, CA 94710 USA
会议地点null,Philadelphia,PA
会议日期AUG 14-16, 2024
URL查看原文
收录类别CPCI-S
语种英语
资助项目Nature Science Foundation of Shanghai["22ZR1442000","23ZR1442300"]
WOS研究方向Computer Science
WOS类目Computer Science, Information Systems ; Computer Science, Interdisciplinary Applications ; Computer Science, Theory & Methods
WOS记录号WOS:001333860304003
出版者USENIX ASSOC
文献类型会议论文
条目标识符https://kms.shanghaitech.edu.cn/handle/2MSLDSTB/493529
专题信息科学与技术学院
信息科学与技术学院_硕士生
信息科学与技术学院_PI研究组_王春东组
通讯作者Wang, Chundong
作者单位
ShanghaiTech Univ, Sch Informat Sci & Technol, Shanghai, Peoples R China
第一作者单位信息科学与技术学院
通讯作者单位信息科学与技术学院
第一作者的第一单位信息科学与技术学院
推荐引用方式
GB/T 7714
Jiang, Qisheng,Wang, Chundong. Sync plus Sync: A Covert Channel Built on fsync with Storage[C]. SUITE 215, 2560 NINTH ST, BERKELEY, CA 94710 USA:USENIX ASSOC,2024:3349-3366.
条目包含的文件
条目无相关文件。
个性服务
查看访问统计
谷歌学术
谷歌学术中相似的文章
[Jiang, Qisheng]的文章
[Wang, Chundong]的文章
百度学术
百度学术中相似的文章
[Jiang, Qisheng]的文章
[Wang, Chundong]的文章
必应学术
必应学术中相似的文章
[Jiang, Qisheng]的文章
[Wang, Chundong]的文章
相关权益政策
暂无数据
收藏/分享
所有评论 (0)
暂无评论
 

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。