Predictive mitigation of timing channels in interactive systems

Danfeng Zhang; Aslan Askarov; Andrew C. Myers

doi:10.1145/2046707.2046772

Predictive mitigation of timing channels in interactive systems

Danfeng Zhang, Aslan Askarov, Andrew C. Myers

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

82 Scopus citations

Abstract

Timing channels remain a difficult and important problem for information security. Recent work introduced predictive mitigation, a new way to mitigating leakage through timing channels; this mechanism works by predicting timing from past behavior, and then enforcing the predictions. This paper generalizes predictive mitigation to a larger and important class of systems: systems that receive input requests from multiple clients and deliver responses. The new insight is that timing predictions may be a function of any public information, rather than being a function simply of output events. Based on this insight, a more general mechanism and theory of predictive mitigation becomes possible. The result is that bounds on timing leakage can be tightened, achieving asymptotically logarithmic leakage under reasonable assumptions. By applying it to web applications, the generalized predictive mitigation mechanism is shown to be effective in practice.

Original language	English (US)
Title of host publication	CCS'11 - Proceedings of the 18th ACM Conference on Computer and Communications Security
Pages	563-574
Number of pages	12
DOIs	https://doi.org/10.1145/2046707.2046772
State	Published - 2011
Event	18th ACM Conference on Computer and Communications Security, CCS'11 - Chicago, IL, United States Duration: Oct 17 2011 → Oct 21 2011

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Other

Other	18th ACM Conference on Computer and Communications Security, CCS'11
Country/Territory	United States
City	Chicago, IL
Period	10/17/11 → 10/21/11

All Science Journal Classification (ASJC) codes

Software
Computer Networks and Communications

Access to Document

10.1145/2046707.2046772

Cite this

@inproceedings{33d3f594ee28465389ff509b47a4a62b,

title = "Predictive mitigation of timing channels in interactive systems",

abstract = "Timing channels remain a difficult and important problem for information security. Recent work introduced predictive mitigation, a new way to mitigating leakage through timing channels; this mechanism works by predicting timing from past behavior, and then enforcing the predictions. This paper generalizes predictive mitigation to a larger and important class of systems: systems that receive input requests from multiple clients and deliver responses. The new insight is that timing predictions may be a function of any public information, rather than being a function simply of output events. Based on this insight, a more general mechanism and theory of predictive mitigation becomes possible. The result is that bounds on timing leakage can be tightened, achieving asymptotically logarithmic leakage under reasonable assumptions. By applying it to web applications, the generalized predictive mitigation mechanism is shown to be effective in practice.",

author = "Danfeng Zhang and Aslan Askarov and Myers, {Andrew C.}",

year = "2011",

doi = "10.1145/2046707.2046772",

language = "English (US)",

isbn = "9781450310758",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "563--574",

booktitle = "CCS'11 - Proceedings of the 18th ACM Conference on Computer and Communications Security",

note = "18th ACM Conference on Computer and Communications Security, CCS'11 ; Conference date: 17-10-2011 Through 21-10-2011",

}

Zhang, D, Askarov, A & Myers, AC 2011, Predictive mitigation of timing channels in interactive systems. in CCS'11 - Proceedings of the 18th ACM Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, pp. 563-574, 18th ACM Conference on Computer and Communications Security, CCS'11, Chicago, IL, United States, 10/17/11. https://doi.org/10.1145/2046707.2046772

Predictive mitigation of timing channels in interactive systems. / Zhang, Danfeng; Askarov, Aslan; Myers, Andrew C.
CCS'11 - Proceedings of the 18th ACM Conference on Computer and Communications Security. 2011. p. 563-574 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Predictive mitigation of timing channels in interactive systems

AU - Zhang, Danfeng

AU - Askarov, Aslan

AU - Myers, Andrew C.

PY - 2011

Y1 - 2011

N2 - Timing channels remain a difficult and important problem for information security. Recent work introduced predictive mitigation, a new way to mitigating leakage through timing channels; this mechanism works by predicting timing from past behavior, and then enforcing the predictions. This paper generalizes predictive mitigation to a larger and important class of systems: systems that receive input requests from multiple clients and deliver responses. The new insight is that timing predictions may be a function of any public information, rather than being a function simply of output events. Based on this insight, a more general mechanism and theory of predictive mitigation becomes possible. The result is that bounds on timing leakage can be tightened, achieving asymptotically logarithmic leakage under reasonable assumptions. By applying it to web applications, the generalized predictive mitigation mechanism is shown to be effective in practice.

AB - Timing channels remain a difficult and important problem for information security. Recent work introduced predictive mitigation, a new way to mitigating leakage through timing channels; this mechanism works by predicting timing from past behavior, and then enforcing the predictions. This paper generalizes predictive mitigation to a larger and important class of systems: systems that receive input requests from multiple clients and deliver responses. The new insight is that timing predictions may be a function of any public information, rather than being a function simply of output events. Based on this insight, a more general mechanism and theory of predictive mitigation becomes possible. The result is that bounds on timing leakage can be tightened, achieving asymptotically logarithmic leakage under reasonable assumptions. By applying it to web applications, the generalized predictive mitigation mechanism is shown to be effective in practice.

UR - http://www.scopus.com/inward/record.url?scp=80755187785&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=80755187785&partnerID=8YFLogxK

U2 - 10.1145/2046707.2046772

DO - 10.1145/2046707.2046772

M3 - Conference contribution

AN - SCOPUS:80755187785

SN - 9781450310758

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 563

EP - 574

BT - CCS'11 - Proceedings of the 18th ACM Conference on Computer and Communications Security

T2 - 18th ACM Conference on Computer and Communications Security, CCS'11

Y2 - 17 October 2011 through 21 October 2011

ER -

Predictive mitigation of timing channels in interactive systems

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this