| |||||||
ShanghaiTech University Knowledge Management System
Sync plus Sync: A Covert Channel Built on fsync with Storage | |
2024 | |
会议录名称 | PROCEEDINGS OF THE 33RD USENIX SECURITY SYMPOSIUM, SECURITY 2024 |
页码 | 3349-3366 |
发表状态 | 已发表 |
摘要 | ["Scientists have built a variety of covert channels for secretive information transmission with CPU cache and main memory. In this paper, we turn to a lower level in the memory hierarchy, i.e., persistent storage. Most programs store intermediate or eventual results in the form of files and some of them call fsync to synchronously persist a file with storage device for orderly persistence. Our quantitative study shows that one program would undergo significantly longer response time for fsync call if the other program is concurrently calling fsync, although they do not share any data. We further find that, concurrent fsync calls contend at multiple levels of storage stack due to sharing software structures (e.g., Ext4's journal) and hardware resources (e.g., disk's I/O dispatch queue).","We accordingly build a covert channel named Sync+Sync. Sync+Sync delivers a transmission bandwidth of 20,000 bits per second at an error rate of about 0.40% with an ordinary solid-state drive. Sync+Sync can be conducted in cross-disk partition, cross-file system, cross-container, cross-virtual machine, and even cross-disk drive fashions, without sharing data between programs. Next, we launch side-channel attacks with Sync+Sync and manage to precisely detect operations of a victim database (e.g., insert/update and B-Tree node split). We also leverage Sync+Sync to distinguish applications and websites with high accuracy by detecting and analyzing their fsync frequencies and flushed data volumes. These attacks are useful to support further fine-grained information leakage."] |
会议名称 | 33rd USENIX Security Symposium |
出版地 | SUITE 215, 2560 NINTH ST, BERKELEY, CA 94710 USA |
会议地点 | null,Philadelphia,PA |
会议日期 | AUG 14-16, 2024 |
URL | 查看原文 |
收录类别 | CPCI-S |
语种 | 英语 |
资助项目 | Nature Science Foundation of Shanghai["22ZR1442000","23ZR1442300"] |
WOS研究方向 | Computer Science |
WOS类目 | Computer Science, Information Systems ; Computer Science, Interdisciplinary Applications ; Computer Science, Theory & Methods |
WOS记录号 | WOS:001333860304003 |
出版者 | USENIX ASSOC |
文献类型 | 会议论文 |
条目标识符 | https://kms.shanghaitech.edu.cn/handle/2MSLDSTB/493529 |
专题 | 信息科学与技术学院 信息科学与技术学院_硕士生 信息科学与技术学院_PI研究组_王春东组 |
通讯作者 | Wang, Chundong |
作者单位 | ShanghaiTech Univ, Sch Informat Sci & Technol, Shanghai, Peoples R China |
第一作者单位 | 信息科学与技术学院 |
通讯作者单位 | 信息科学与技术学院 |
第一作者的第一单位 | 信息科学与技术学院 |
推荐引用方式 GB/T 7714 | Jiang, Qisheng,Wang, Chundong. Sync plus Sync: A Covert Channel Built on fsync with Storage[C]. SUITE 215, 2560 NINTH ST, BERKELEY, CA 94710 USA:USENIX ASSOC,2024:3349-3366. |
条目包含的文件 | ||||||
条目无相关文件。 |
个性服务 |
查看访问统计 |
谷歌学术 |
谷歌学术中相似的文章 |
[Jiang, Qisheng]的文章 |
[Wang, Chundong]的文章 |
百度学术 |
百度学术中相似的文章 |
[Jiang, Qisheng]的文章 |
[Wang, Chundong]的文章 |
必应学术 |
必应学术中相似的文章 |
[Jiang, Qisheng]的文章 |
[Wang, Chundong]的文章 |
相关权益政策 |
暂无数据 |
收藏/分享 |
修改评论
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。