Volltext-Downloads (blau) und Frontdoor-Views (grau)
  • search hit 514 of 647
Back to Result List

CPU-based covert- and side-channels in cloud ecosystems

  • Covert and Side-Channels have been known for a long time due to their versatile forms of appearance. For nearly every technical improvement or change in technology, such channels have been (re-)created or known methods have been adapted. For example the introduction of hyperthreading technology has introduced new possibilities for covert communication between malicious processes because they canCovert and Side-Channels have been known for a long time due to their versatile forms of appearance. For nearly every technical improvement or change in technology, such channels have been (re-)created or known methods have been adapted. For example the introduction of hyperthreading technology has introduced new possibilities for covert communication between malicious processes because they can now share the arithmetic logical unit (ALU) as well as the L1 and L2 cache which enables establishing multiple covert channels. Even virtualization which is known for its isolation of multiple machines is prone to covert and side-channel attacks due to the sharing of resources. Therefore itis not surprising that cloud computing is not immune to this kind of attacks. Even more, cloud computing with multiple, possibly competing users or customers using the same shared resources may elevate the risk of unwanted communication. In such a setting the ”air gap” between physical servers and networks disappears and only the means of isolation and virtual separation serve as a barrier between adversary and victim. In the work at hand we will provide a survey on weak spots an adversary trying to exfiltrate private data from target virtual machines could exploit in a cloud environment. We will evaluate the feasibility of example attacks and point out possible mitigation solutions if they exist.show moreshow less

Export metadata

Additional Services

Share in Twitter Search Google Scholar

Statistics

frontdoor_oas
Metadaten
Author:Johann-Wolfram Betz, Dirk WesthoffGND
Editor:Dirk Benyoucef, Jürgen Freudenberger
Creating Corporation:SInCom
Contributing Corporation:Hochschule Konstanz
Year of Publication:2015
Pagenumber:5
ISBN:978-3-00-051859-1
Language:English
GND Keyword:cloud computing
Parent Title (English):2nd Baden-Württemberg Center of Applied Research Symposium on Information and Communication Systems - SInCom 2015
First Page:19
Last Page:23
Document Type:Conference Proceeding
Open Access:Frei zugänglich
Institutes:Bibliografie
Opac ID:Link zum Online-Katalog
SWB-ID:1725235269
Release Date:2016/05/27
Licence (German):License LogoEs gilt das UrhG
Note:
Konferenz: 2nd Baden-Württemberg Center of Applied Research Symposium on Information and Communication Systems - SInCom 2015 - 13. November 2015 in Konstanz
URL:https://opus.htwg-konstanz.de/frontdoor/deliver/index/docId/444/file/proceedingsSInCom2015.pdf