Projects per year
Abstract
In this paper, we provide the first security analysis of masked cryptographic software spanning all three layers (SW, OS, CPU). First, we apply a formal verification approach to identify leaks within the execution of masked software that are caused by the embedded OS itself, rather than on algorithmic or microarchitecture level. After showing that these leaks are primarily caused by context switching, we propose several different strategies to harden a context switching routine against such leakage, ultimately allowing masked software from previous works to remain secure when being executed on embedded OSs. Finally, we present a case study focusing on FreeRTOS, a popular embedded OS for embedded devices, running on a RISC-V core, allowing us to evaluate the practicality and ease of integration of each strategy.
Original language | English |
---|---|
Title of host publication | ASIA CCS 2023 - Proceedings of the 2023 ACM Asia Conference on Computer and Communications Security |
Publisher | Association of Computing Machinery |
Pages | 980-992 |
Number of pages | 13 |
ISBN (Electronic) | 979-8-4007-0098-9 |
DOIs | |
Publication status | Published - 10 Jul 2023 |
Event | 18th ACM ASIA Conference on Computer and Communications Security: AsiaCCS 2023 - Melbourne, Australia Duration: 10 Jul 2023 → 14 Jul 2023 https://asiaccs2023.org |
Publication series
Name | Proceedings of the ACM Conference on Computer and Communications Security |
---|---|
ISSN (Print) | 1543-7221 |
Conference
Conference | 18th ACM ASIA Conference on Computer and Communications Security |
---|---|
Abbreviated title | AsiaCCS '23 |
Country/Territory | Australia |
City | Melbourne |
Period | 10/07/23 → 14/07/23 |
Internet address |
Keywords
- Embedded OS
- Masking
- RTOS
- Side-Channel Analysis
- Verification
ASJC Scopus subject areas
- Software
- Computer Networks and Communications
Fingerprint
Dive into the research topics of 'Secure Context Switching of Masked Software Implementations'. Together they form a unique fingerprint.-
Special Research Area (SFB) F85 Semantic and Cryptographic Foundations of Security and Privacy by Compositional Design
Mangard, S. (Co-Investigator (CoI))
1/01/23 → 31/12/26
Project: Research project
-
Dependable Internet of Things
Boano, C. A. (Co-Investigator (CoI)), Kubin, G. (Co-Investigator (CoI)), Bloem, R. (Co-Investigator (CoI)), Horn, M. (Co-Investigator (CoI)), Pernkopf, F. (Co-Investigator (CoI)), Zakany, N. (Co-Investigator (CoI)), Mangard, S. (Co-Investigator (CoI)), Witrisal, K. (Co-Investigator (CoI)), Römer, K. U. (Co-Investigator (CoI)), Aichernig, B. (Co-Investigator (CoI)), Bösch, W. (Co-Investigator (CoI)), Baunach, M. C. (Co-Investigator (CoI)), Tappler, M. (Co-Investigator (CoI)), Malenko, M. (Co-Investigator (CoI)), Weiser, S. (Co-Investigator (CoI)), Eichlseder, M. (Co-Investigator (CoI)), Leitinger, E. (Co-Investigator (CoI)), Grosinger, J. (Co-Investigator (CoI)), Großwindhager, B. (Co-Investigator (CoI)), Ebrahimi, M. (Co-Investigator (CoI)), Alothman Alterkawi, A. B. (Co-Investigator (CoI)), Knoll, C. (Co-Investigator (CoI)), Teschl, R. (Co-Investigator (CoI)), Saukh, O. (Co-Investigator (CoI)), Rath, M. (Co-Investigator (CoI)), Steinberger, M. (Co-Investigator (CoI)), Steinbauer-Wagner, G. (Co-Investigator (CoI)) & Tranninger, M. (Co-Investigator (CoI))
1/01/16 → 31/03/22
Project: Research project
Activities
- 1 Talk at conference or symposium
-
Secure Context Switching of Masked Software Implementations
Gigerl, B. (Speaker)
14 Jul 2023Activity: Talk or presentation › Talk at conference or symposium › Science to science