Article

Memory Trace Oblivious Program Execution

Authors:

Chang Liu,

Michael Hicks,

Elaine ShiAuthors Info & Claims

CSF '13: Proceedings of the 2013 IEEE 26th Computer Security Foundations Symposium

Pages 51 - 65

https://doi.org/10.1109/CSF.2013.11

Published: 26 June 2013 Publication History

Abstract

Cloud computing allows users to delegate data and computation to cloud service providers, at the cost of giving up physical control of their computing infrastructure.An attacker (e.g., insider) with physical access to the computing platform can perform various physical attacks, including probing memory buses and cold-boot style attacks.Previous work on secure (co-)processors provides hardware support for memory encryption and prevents direct leakage of sensitive data over the memory bus.However, an adversary snooping on the bus can still infer sensitive information from the memory access traces.Existing work on Oblivious RAM (ORAM) provides a solution for users to put all data in an ORAM; and accesses to an ORAM are obfuscated such that no information leaks through memory access traces.This method, however, incurs significant memory access overhead.This work is the first to leverage programming language techniques to offer efficient memory-trace oblivious program execution, while providing formal security guarantees.We formally define the notion of memory-trace obliviousness, and provide a type system for verifying that a program satisfies this property.We also describe a compiler that transforms a program into a structurally similar one that satisfies memory trace obliviousness.To achieve optimal efficiency, our compiler partitions variables into several small ORAM banks rather than one large one, without risking security.We use several example programs to demonstrate the efficiency gains our compiler achieves in comparison with the naive method of placing all variables in the same ORAM.

Cited By

View all

Pal ADesai KChatterjee RSan Miguel J(2024)Camouflage: Utility-Aware Obfuscation for Accurate Simulation of Sensitive Program TracesACM Transactions on Architecture and Code Optimization10.1145/365011021:2(1-23)Online publication date: 21-May-2024
https://dl.acm.org/doi/10.1145/3650110
Ye QDelaware B(2024)Taypsi: Static Enforcement of Privacy Policies for Policy-Agnostic Oblivious ComputationProceedings of the ACM on Programming Languages10.1145/36498618:OOPSLA1(1407-1436)Online publication date: 29-Apr-2024
https://dl.acm.org/doi/10.1145/3649861
Tinoco AGao SShi ECalandrino JTroncoso C(2023)ENIGMAPProceedings of the 32nd USENIX Conference on Security Symposium10.5555/3620237.3620463(4033-4050)Online publication date: 9-Aug-2023
https://dl.acm.org/doi/10.5555/3620237.3620463
Show More Cited By

Recommendations

Real-Time Program Execution on NAND Flash Memory for Portable Media Players
RTSS '08: Proceedings of the 2008 Real-Time Systems Symposium

NAND flash memory has been widely used as a nonvolatilestorage for storing data. However, it requires alarge amount of SRAM for executing program codes storedin it since it only supports page-based reads, not byte-levelrandom reads. This paper proposes ...
Tunably-Oblivious Memory: Generalizing ORAM to Enable Privacy-Efficiency Tradeoffs
CODASPY '15: Proceedings of the 5th ACM Conference on Data and Application Security and Privacy

We consider the challenge of providing privacy-preserving access to data outsourced to an untrusted cloud provider. Even if data blocks are encrypted, access patterns may leak valuable information. Oblivious RAM (ORAM) protocols guarantee full access ...
Computationally Secure Oblivious Transfer

We describe new computationally secure protocols of 1-out-of-N oblivious transfer, k-out-of-N oblivious transfer, and oblivious transfer with adaptive queries. The protocols are very efficient compared with solutions based on generic two-party ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CSF '13: Proceedings of the 2013 IEEE 26th Computer Security Foundations Symposium

June 2013

287 pages

ISBN:9780769550312

Publisher

IEEE Computer Society

United States

Publication History

Published: 26 June 2013

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

28
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 10 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Pal ADesai KChatterjee RSan Miguel J(2024)Camouflage: Utility-Aware Obfuscation for Accurate Simulation of Sensitive Program TracesACM Transactions on Architecture and Code Optimization10.1145/365011021:2(1-23)Online publication date: 21-May-2024
https://dl.acm.org/doi/10.1145/3650110
Ye QDelaware B(2024)Taypsi: Static Enforcement of Privacy Policies for Policy-Agnostic Oblivious ComputationProceedings of the ACM on Programming Languages10.1145/36498618:OOPSLA1(1407-1436)Online publication date: 29-Apr-2024
https://dl.acm.org/doi/10.1145/3649861
Tinoco AGao SShi ECalandrino JTroncoso C(2023)ENIGMAPProceedings of the 32nd USENIX Conference on Security Symposium10.5555/3620237.3620463(4033-4050)Online publication date: 9-Aug-2023
https://dl.acm.org/doi/10.5555/3620237.3620463
Raimondi GBesson FJensen T(2023)Type-directed Program Transformation for Constant-Time EnforcementProceedings of the 25th International Symposium on Principles and Practice of Declarative Programming10.1145/3610612.3610618(1-13)Online publication date: 22-Oct-2023
https://dl.acm.org/doi/10.1145/3610612.3610618
Ye QDelaware B(2023)Taype: A Policy-Agnostic Language for Oblivious ComputationProceedings of the ACM on Programming Languages10.1145/35912617:PLDI(1001-1025)Online publication date: 6-Jun-2023
https://dl.acm.org/doi/10.1145/3591261
Borrello PD'Elia DQuerzoni LGiuffrida CKim YKim JVigna GShi E(2021)Constantine: Automatic Side-Channel Resistance Using Efficient Control and Data Flow LinearizationProceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security10.1145/3460120.3484583(715-733)Online publication date: 12-Nov-2021
https://dl.acm.org/doi/10.1145/3460120.3484583
Krastnikov SKerschbaum FStebila D(2020)Efficient oblivious database joinsProceedings of the VLDB Endowment10.14778/3407790.340781413:12(2132-2145)Online publication date: 14-Sep-2020
https://dl.acm.org/doi/10.14778/3407790.3407814
Hu XLiang LLi SDeng LZuo PJi YXie XDing YLiu CSherwood TXie YLarus JCeze LStrauss K(2020)DeepSnifferProceedings of the Twenty-Fifth International Conference on Architectural Support for Programming Languages and Operating Systems10.1145/3373376.3378460(385-399)Online publication date: 9-Mar-2020
https://dl.acm.org/doi/10.1145/3373376.3378460
Barthe GBlazy SGrégoire BHutin RLaporte VPichardie DTrieu A(2019)Formal verification of a constant-time preserving C compilerProceedings of the ACM on Programming Languages10.1145/33710754:POPL(1-30)Online publication date: 20-Dec-2019
https://dl.acm.org/doi/10.1145/3371075
Brasser FCapkun SDmitrienko AFrassetto TKostiainen KSadeghi ABalenson D(2019)DR.SGXProceedings of the 35th Annual Computer Security Applications Conference10.1145/3359789.3359809(788-800)Online publication date: 9-Dec-2019
https://dl.acm.org/doi/10.1145/3359789.3359809
Show More Cited By

View Options

View options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

Cited By

Recommendations

Real-Time Program Execution on NAND Flash Memory for Portable Media Players

Tunably-Oblivious Memory: Generalizing ORAM to Enable Privacy-Efficiency Tradeoffs

Computationally Secure Oblivious Transfer

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations