Work in Progress: Thwarting Timing Attacks in Microcontrollers using Fine-grained Hardware Protections

Jul 3, 2023·

Jean-Loup Hatchikian-Houdot

Nicolas Gaudin

Pascal Cotret

Frédéric Besson

Guy Gogniat

Guillaume Hiet

Vianney Lapôtre

Pierre Wilke

· 0 min read

PDF

Abstract

Timing side-channels are an identified threat for security critical software. Existing countermeasures have a cost either on the hardware requirements or execution time. We focus on low-cost microcontrollers that have a very low computational capacity. Although these processors do not feature out-of-order execution or speculation, they remain vulnerable to timing attacks exploiting the varying latencies of ALU operations or memory accesses. We propose to augment the RISC-V ISA with security primitives that have a guaranteed timing behavior. These primitives allow constant time ALU operations and memory accesses that do not alter the state of the cache. Our approach has a low overhead in terms of hardware cost, binary code size, and execution time both for the constant time secure program and other programs running concurrently on the same hardware.

Type

Conference paper

Publication

In SILM - IEEE Euro S&P workshop

Last updated on Jul 3, 2023

Riscv Security Cache

Authors

Pascal Cotret

Associate Professor

← Gigue: A JIT Code Binary Generator for Hardware Testing Oct 23, 2023

JIT Compiler Security through Low-Cost RISC-V Extension May 15, 2023 →