PwrLeak: Exploiting Power Reporting Interface for Side-Channel Attacks on AMD SEV

Wang，Wubing1; Li，Mengyuan1; Zhang，Yinqian2; Lin，Zhiqiang1

10.1007/978-3-031-35504-2_3

2023

0302-9743

1611-3349

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

13959 LNCS

46-66

An increasing number of Trusted Execution Environment (TEE) is adopting to a variety of commercial products for protecting data security on the cloud. However, TEEs are still exposed to various side-channel vulnerabilities, such as execution order-based, timing-based, and power-based vulnerabilities. While recent hardware is applying various techniques to mitigate order-based and timing-based side-channel vulnerabilities, power-based side-channel attacks remain a concern of hardware security, especially for the confidential computing settings where the server machines are beyond the control of cloud users. In this paper, we present PwrLeak, an attack framework that exploits AMD’s power reporting interfaces to build power side-channel attacks against AMD Secure Encrypted Virtualization (SEV)-protected VM. We design and implement the attack framework with three general steps: (1) identify the instruction running inside AMD SEV, (2) apply a power interpolator to amplify power consumption, including an emulation-based interpolator for analyzing purposes and a more general interrupt-based interpolator, and (3) infer secrets with various analysis approaches. A case study of using the emulation-based interpolator to infer the whole JPEG images processed by libjpeg demonstrates its ability to help analyze power consumption inside SEV VM. Our end-to-end attacks against Intel’s Integrated Performance Primitives (Intel IPP) library indicates that PwrLeak can be exploited to infer RSA private keys with over 80% accuracy using the interrupt-based interpolator.

其他

英语

EI

20232814377876

Computer hardware ; Electric power utilization ; Hardware security ; Interpolation

Electric Power Systems:706.1 ; Computer Systems and Equipment:722 ; Numerical Methods:921.6

2-s2.0-85164251302

Scopus

1.The Ohio State University,Columbus,43210,United States
2.Southern University of Science and Technology,Shenzhen,Guangdong,518055,China

Wang，Wubing,Li，Mengyuan,Zhang，Yinqian,et al. PwrLeak: Exploiting Power Reporting Interface for Side-Channel Attacks on AMD SEV[C],2023:46-66.