zombieload
play

ZombieLoad Cross-Privilege-Boundary Data Sampling Michael Schwarz 1 - PowerPoint PPT Presentation

Apr 20, 2023 •134 likes •1.17k views

ZombieLoad Cross-Privilege-Boundary Data Sampling Michael Schwarz 1 , Moritz Lipp 1 , Daniel Moghimi 2 , Jo Van Bulck 3 , Julian Stecklina 4 , Thomas Prescher 4 , Daniel Gruss 1 November 11, 2019 1 Graz University of Technology, 2 Worcester

  1. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory Load Buffer Store Buffer DTLB L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  2. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory Load Buffer Store Buffer DTLB L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  3. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory Load Buffer Store Buffer DTLB L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  4. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory Load Buffer Store Buffer DTLB L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  5. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory #n-1 ... Load Buffer Store Buffer #n ppn vpn offset reg.no. DTLB #n+1 ... L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  6. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory #n-1 ... Load Buffer Store Buffer #n ppn vpn offset reg.no. DTLB #n+1 ... L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  7. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch AGU Execution Units Core Memory #n-1 ... Load Buffer Store Buffer #n ppn vpn offset reg.no. DTLB #n+1 ... L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  8. www.tugraz.at Complex Load Situations ... CDB Reorder buffer mov al, byte [rcx] µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ... Execution Engine Scheduler µ OP µ OP µ OP µ OP µ OP µ OP µ OP µ OP ALU, FMA, . . . ALU, AES, . . . ALU, Vect, . . . Load data Load data Store data ALU, Branch data can go AGU to register Execution Units Core Memory #n-1 ... Load Buffer Store Buffer #n ppn vpn offset reg.no. DTLB #n+1 ... L1 Data Cache LFB 9 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  9. www.tugraz.at Microcode Assists • Complex situations handled in microcode 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  10. www.tugraz.at Microcode Assists • Complex situations handled in microcode • Setting accessed/dirty bit 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  11. www.tugraz.at Microcode Assists • Complex situations handled in microcode • Setting accessed/dirty bit • TSX abort + rollback 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  12. www.tugraz.at Microcode Assists • Complex situations handled in microcode • Setting accessed/dirty bit • TSX abort + rollback • ... 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  13. www.tugraz.at Microcode Assists • Complex situations handled in microcode • Setting accessed/dirty bit • TSX abort + rollback • ... • Load needs to be re-issued 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  14. www.tugraz.at Microcode Assists • Complex situations handled in microcode • Setting accessed/dirty bit • TSX abort + rollback • ... • Load needs to be re-issued • Meltdown effects due to “microarchitectural fault” 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  15. www.tugraz.at Microcode Assists • Complex situations handled in microcode • Setting accessed/dirty bit • TSX abort + rollback • ... • Load needs to be re-issued • Meltdown effects due to “microarchitectural fault” • No architectural fault handling required 10 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  16. www.tugraz.at Attack Targets • Leak data on same and sibling hyperthread 11 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  17. www.tugraz.at Attack Targets • Leak data on same and sibling hyperthread Applications 11 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  18. www.tugraz.at Attack Targets • Leak data on same and sibling hyperthread Applications Operating System 11 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  19. www.tugraz.at Attack Targets • Leak data on same and sibling hyperthread Applications Operating System SGX Enclave 11 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  20. www.tugraz.at Attack Targets • Leak data on same and sibling hyperthread Applications Operating System SGX Enclave Virtual Machine 11 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  21. www.tugraz.at Attack Targets • Leak data on same and sibling hyperthread Applications Operating System SGX Enclave Hypervisor Virtual Machine 11 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  22. www.tugraz.at Control Page Number Page Offset 51 Physical 12 Meltdown 11 0 47 Virtual 12 Physical 51 12 Foreshadow 11 0 47 Virtual 12 Physical 51 12 Fallout 11 0 47 Virtual 12 ZombieLoad/ Physical 51 12 11 6 5 0 47 Virtual 12 RIDL 12 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  23. www.tugraz.at Control key n ( 0xD2 ) 1 1 0 1 0 0 1 0 13 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  24. www.tugraz.at Control (4,4)- domino n , n +1 ( 0x21 ) key n ( 0xD2 ) 1 1 0 1 0 0 1 0 0 0 0 1 13 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  25. www.tugraz.at Control (4,4)- domino n , n +1 ( 0x21 ) key n ( 0xD2 ) key n +1 ( 0x1C ) 1 1 0 1 0 0 1 0 0 0 0 1 1 1 0 0 13 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  26. www.tugraz.at Results AES-NI key 14 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  27. www.tugraz.at Results AES-NI key SGX sealing key 14 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  28. www.tugraz.at Results Cross-VM covert AES-NI key SGX sealing key channel 14 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  29. www.tugraz.at Results Cross-VM covert AES-NI key SGX sealing key channel Keyword matching 14 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  30. www.tugraz.at Results Cross-VM covert AES-NI key SGX sealing key channel Keyword matching URL recovery 14 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  31. www.tugraz.at Results Cross-VM covert AES-NI key SGX sealing key channel Keyword matching URL recovery Targeted leakage 14 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  32. www.tugraz.at Performance Variant 1 Kernel Mapping 5.30 kB / s 15 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  33. www.tugraz.at Performance Variant 1 Variant 2 Kernel Mapping Transactional Asynchronous Abort 5.30 kB / s 39.66 kB / s 15 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  34. www.tugraz.at Performance Variant 1 Variant 2 Variant 3 Kernel Mapping Transactional Microcode-Assisted Asynchronous Abort Page-Table Walk 5.30 kB / s 39.66 kB / s 7.73 kB / s 15 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  36. www.tugraz.at ZombieLoad Insights Address 17 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  37. www.tugraz.at ZombieLoad Insights Instruction Pointer Memory-based Side-Channel Attacks Address 17 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  38. www.tugraz.at ZombieLoad Insights Instruction Pointer Memory-based Side-Channel Attacks Data Address Meltdown 17 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  39. www.tugraz.at ZombieLoad Insights Instruction Pointer Memory-based Data Sampling Side-Channel (this paper ) Attacks Data Address Meltdown 17 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  40. www.tugraz.at Intel Mitigations • Disable hyperthreading or group scheduling 18 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  41. www.tugraz.at Intel Mitigations • Disable hyperthreading or group scheduling • Overwrite microarchitectural buffers 18 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  42. www.tugraz.at Intel Mitigations • Disable hyperthreading or group scheduling • Overwrite microarchitectural buffers • VERW instruction (microcode update) 18 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  43. www.tugraz.at Intel Mitigations • Disable hyperthreading or group scheduling • Overwrite microarchitectural buffers • VERW instruction (microcode update) • Software sequences 18 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  44. www.tugraz.at Intel Mitigations • Disable hyperthreading or group scheduling • Overwrite microarchitectural buffers • VERW instruction (microcode update) • Software sequences • New CPUs which are not affected CPU Meltdown Foreshadow RIDL Fallout MLPDS MDSUM 8th/9th gen. Intel Core Coffee Lake Intel Xeon Cascade Lake 18 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  45. www.tugraz.at Intel Mitigations • Disable hyperthreading or group scheduling • Overwrite microarchitectural buffers • VERW instruction (microcode update) • Software sequences • New CPUs which are not affected CPU Meltdown Foreshadow RIDL Fallout MLPDS MDSUM ZombieLoad 8th/9th gen. Intel Core Coffee Lake Intel Xeon Cascade Lake 18 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  46. www.tugraz.at Circumventing Mitigations • Variant 2 works on all CPUs 19 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  47. www.tugraz.at Circumventing Mitigations • Variant 2 works on all CPUs → Embargoed until November 12, 2019 19 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  48. www.tugraz.at Circumventing Mitigations • Variant 2 works on all CPUs → Embargoed until November 12, 2019 • Microcode and software sequences do not prevent ZombieLoad 19 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  49. www.tugraz.at Circumventing Mitigations • Variant 2 works on all CPUs → Embargoed until November 12, 2019 • Microcode and software sequences do not prevent ZombieLoad → Reported on May 16, 2019 19 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  50. www.tugraz.at Circumventing Mitigations • Variant 2 works on all CPUs → Embargoed until November 12, 2019 • Microcode and software sequences do not prevent ZombieLoad → Reported on May 16, 2019 • ZombieLoad might not only leak from fill buffer 19 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  51. www.tugraz.at ZombieLoad Mitigations • Disable hyperthreading 20 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  52. www.tugraz.at ZombieLoad Mitigations • Disable hyperthreading • Flush all buffers on privilege-level change 20 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  53. www.tugraz.at ZombieLoad Mitigations • Disable hyperthreading • Flush all buffers on privilege-level change • Fill buffer, store buffer, load ports → VERW 20 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  54. www.tugraz.at ZombieLoad Mitigations • Disable hyperthreading • Flush all buffers on privilege-level change • Fill buffer, store buffer, load ports → VERW • Flush L1 cache → MSR IA32 FLUSH CMD 20 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  55. www.tugraz.at ZombieLoad Mitigations • Disable hyperthreading • Flush all buffers on privilege-level change • Fill buffer, store buffer, load ports → VERW • Flush L1 cache → MSR IA32 FLUSH CMD • Disable Intel TSX ( MSR TSX FORCE ABORT ) 20 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  56. www.tugraz.at Transient Execution Attack Tree Transient cause 21 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  57. www.tugraz.at Transient Execution Attack Tree Transient cause Meltdown-type 21 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  58. www.tugraz.at Transient Execution Attack Tree Meltdown-PF Transient cause Meltdown-type Meltdown-MCA 21 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  59. www.tugraz.at Transient Execution Attack Tree Meltdown-PF Meltdown-US Meltdown-US-LFB Variant 1 Transient cause Meltdown-type Meltdown-AD Meltdown-AD-LFB Meltdown-MCA Variant 3 Meltdown-TAA Variant 2 21 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  61. www.tugraz.at GitHub You can find our proof-of-concept implementation on: • https://github.com/IAIK/ZombieLoad 22 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  62. www.tugraz.at Conclusion • Transient-execution attacks: the gift that keeps on giving 23 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  63. www.tugraz.at Conclusion • Transient-execution attacks: the gift that keeps on giving • Class of Meltdown attacks is larger than expected 23 Michael Schwarz (@misc0110) et al. — Graz University of Technology

  64. www.tugraz.at Conclusion • Transient-execution attacks: the gift that keeps on giving • Class of Meltdown attacks is larger than expected • CPUs are deterministic - there is no noise 23 Michael Schwarz (@misc0110) et al. — Graz University of Technology

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ZombieLoad Cross-Privilege-Boundary Data Sampling Michael Schwarz, Moritz Lipp, Daniel Moghimi ,

ZombieLoad Cross-Privilege-Boundary Data Sampling Michael Schwarz, Moritz Lipp, Daniel Moghimi ,

ZombieLoad Cross-Privilege-Boundary Data Sampling Michael Schwarz, Moritz Lipp, Daniel Moghimi , Jo Van Bulck, Julian Stecklina, Thomas Prescher, Daniel Gruss whoami Daniel Moghimi (@danielmgmi) Computer Security since 2010 Reverse

1.55k views • 66 slides
Modern Game Console Exploitation Eric DeBusschere, Mike McCambridge March 26, 2012 Console

Modern Game Console Exploitation Eric DeBusschere, Mike McCambridge March 26, 2012 Console

Modern Game Console Exploitation Eric DeBusschere, Mike McCambridge March 26, 2012 Console Security Overview Most modern consoles acheive complete software security by only running signed code, encrypting memory, and utilizing firmware updates

588 views • 37 slides
Cash Attacks on SGX Daniel Gruss, Michael Schwarz September 9, 2017 Graz University of

Cash Attacks on SGX Daniel Gruss, Michael Schwarz September 9, 2017 Graz University of

SCIENCE PASSION TECHNOLOGY Cash Attacks on SGX Daniel Gruss, Michael Schwarz September 9, 2017 Graz University of Technology Outline www.tugraz.at 2 Daniel Gruss, Michael Schwarz Graz University of Technology Outline www.tugraz.at 2

1.69k views • 151 slides
CPU Side-Channel Attacks the Meltdown Attack Heechul Yun 1 This Week: Hardware Security

CPU Side-Channel Attacks the Meltdown Attack Heechul Yun 1 This Week: Hardware Security

CPU Side-Channel Attacks the Meltdown Attack Heechul Yun 1 This Week: Hardware Security Introduction Meltdown Papers Spectre Attacks: Exploiting Speculative Execution, IEEE Security and Privacy (S&P), 2019 (Dustin)

726 views • 44 slides
Income me, Poverty ty, a and H nd Health h Insurance ce: 2 : 2018 September 2019 URL:

Income me, Poverty ty, a and H nd Health h Insurance ce: 2 : 2018 September 2019 URL:

Income me, Poverty ty, a and H nd Health h Insurance ce: 2 : 2018 September 2019 URL: http://www.census.gov/newsroom/press-kits/2019/income_poverty.html Presen enter ers Host Michael C. Cook, Sr. Chief, Public Information Office

1.25k views • 90 slides
Resource-Conscious Scheduling for Energy Efficiency on Multicore Processors Andreas Merkel, Jan

Resource-Conscious Scheduling for Energy Efficiency on Multicore Processors Andreas Merkel, Jan

Resource-Conscious Scheduling for Energy Efficiency on Multicore Processors Andreas Merkel, Jan Stoess, Frank Bellosa System Architecture Group KIT The cooperation of Forschungszentrum Karlsruhe GmbH and Universitt Karlsruhe (TH) Memory

1.04k views • 66 slides
Microarchitectural Attacks in the Cloud Thomas Eisenbarth 07.11.2017 Workshop on Cryptography

Microarchitectural Attacks in the Cloud Thomas Eisenbarth 07.11.2017 Workshop on Cryptography

Microarchitectural Attacks in the Cloud Thomas Eisenbarth 07.11.2017 Workshop on Cryptography for the Internet of Things and Cloud Ruhr-Universitt Bochum Outline Cloud and Cryptography Co-Location in the Cloud Cache Attacks in the

2.23k views • 37 slides
CPU traps and pitfalls D. J. Bernstein University of Illinois at Chicago Situation: Youve

CPU traps and pitfalls D. J. Bernstein University of Illinois at Chicago Situation: Youve

CPU traps and pitfalls D. J. Bernstein University of Illinois at Chicago Situation: Youve written software for a cipher/hash/etc. It computes correct output. But it has speed problems: its awfully slow. It also has security problems:

574 views • 29 slides
1 Preemptive FCFS: Round Robin Preemptive FCFS: Round Robin Evaluating Round Robin Evaluating

1 Preemptive FCFS: Round Robin Preemptive FCFS: Round Robin Evaluating Round Robin Evaluating

CPU Scheduling 101 CPU Scheduling 101 The CPU scheduler makes a sequence of moves that determines the interleaving of threads. Programs use synchronization to prevent bad moves. CPU Scheduling CPU Scheduling but

529 views • 4 slides
TLBleed Translation leak-aside buffer: Defeating cache side-channel protections with TLB

TLBleed Translation leak-aside buffer: Defeating cache side-channel protections with TLB

TLBleed Translation leak-aside buffer: Defeating cache side-channel protections with TLB attack B. Gras, K. Razavi, H. Bos, and C. Giuffrida Presented by Ayoosh Bansal Translation Lookaside Buffer (TLB) It is a cache, where every entry

1.04k views • 25 slides
Database Cracking September 7, 2016 CSE 662 - Database Languages & Runtimes 1 Row Stores

Database Cracking September 7, 2016 CSE 662 - Database Languages & Runtimes 1 Row Stores

Database Cracking September 7, 2016 CSE 662 - Database Languages & Runtimes 1 Row Stores A1 B1 C1 D1 A2 B2 C2 D2 A3 B3 C3 D3 A4 B4 C4 D4 Traditional DB: Lay out data on disk in rows CSE 662 - Database Languages &

753 views • 41 slides
Fake View Analytics in Online Video Services Liang Chen, Yipeng Zhou , Dah Ming Chiu Shenzhen

Fake View Analytics in Online Video Services Liang Chen, Yipeng Zhou , Dah Ming Chiu Shenzhen

Fake View Analytics in Online Video Services Liang Chen, Yipeng Zhou , Dah Ming Chiu Shenzhen University The Chinese University of Hong Kong 1 What is Fake View View count effect Viewer: recommendation reference Content owner:

777 views • 22 slides
Security Summer 2013 Cornell University 1 Today How does the OS provide security?

Security Summer 2013 Cornell University 1 Today How does the OS provide security?

CS 4410 Operating Systems Security Summer 2013 Cornell University 1 Today How does the OS provide security? Secure System Security Violations Security Measures Threats User Authentication Protection 2 Secure

381 views • 14 slides
C-Style Strings CS2253 Owen Kaser, UNBSJ Strings In C and some other low-level languages,

C-Style Strings CS2253 Owen Kaser, UNBSJ Strings In C and some other low-level languages,

C-Style Strings CS2253 Owen Kaser, UNBSJ Strings In C and some other low-level languages, strings are just consecutive memory locations that contain characters. A special null character (ASCII code 0) terminates the string.

813 views • 17 slides
Overview Network and Server Goal of Security Control Attacks and Penetration Phases of

Overview Network and Server Goal of Security Control Attacks and Penetration Phases of

Overview Network and Server Goal of Security Control Attacks and Penetration Phases of Control Methods of Taking Control Common Points of Attack Multifront Attacks Chapter 12 Auditing to Recognize Attacks Malicious

535 views • 7 slides
Encryption Scheme And Thoughts on Bootstrapping The FHE scheme is joint work with Amit Sahai

Encryption Scheme And Thoughts on Bootstrapping The FHE scheme is joint work with Amit Sahai

A Simple (Leveled) Fully Homomorphic Encryption Scheme And Thoughts on Bootstrapping The FHE scheme is joint work with Amit Sahai (UCLA) and Brent Waters (UT Austin) Supported by IARPA contract number D11PC20202 August 15, 2013 Workshop on

719 views • 32 slides
A Large Scale Analysis of the Security of Embedded Firmwares A. Costin , J. Zaddach, A.

A Large Scale Analysis of the Security of Embedded Firmwares A. Costin , J. Zaddach, A.

A Large Scale Analysis of the Security of Embedded Firmwares A. Costin , J. Zaddach, A. Francillon, D. Balzarotti EURECOM, France 20th August 2014 USENIX Security '14 San Diego, USA Embedded Systems Are Everywhere Andrei Costin 2 By

1.03k views • 72 slides
Craig Gentry IBM Watson Bar-Ilan University Dept. of Computer Science Optimizations of

Craig Gentry IBM Watson Bar-Ilan University Dept. of Computer Science Optimizations of

Winter School on Lattice-Based Cryptography and Applications Bar-Ilan University, Israel 19/2/2012-22/2/2012 Bar-Ilan University Dept. of Computer Science Craig Gentry IBM Watson Bar-Ilan University Dept. of Computer Science

1.08k views • 85 slides
DTTF/NB479: Dszquphsbqiz Day 14 Announcements: Homework 3 due now Homework 4 posted

DTTF/NB479: Dszquphsbqiz Day 14 Announcements: Homework 3 due now Homework 4 posted

DTTF/NB479: Dszquphsbqiz Day 14 Announcements: Homework 3 due now Homework 4 posted Today: Attacks on DES Questions? DES has been showing signs of weakness from the beginning 1975 1987 1993 2000 2013 1977 1992 Only 2 56 =

573 views • 15 slides
MDO6 Multiple Destination Option on IPv6 dra ft- ima i- mdo6- 01.txt Yuji IMAI FUJITSU

MDO6 Multiple Destination Option on IPv6 dra ft- ima i- mdo6- 01.txt Yuji IMAI FUJITSU

MDO6 Multiple Destination Option on IPv6 dra ft- ima i- mdo6- 01.txt Yuji IMAI FUJITSU LABORATORIES LTD. Contents Peculiar points IPv6 based bitmap gradual deployment tractable list anti-smurfing protection

338 views • 13 slides
DOE Phase II SBIR Project: Diagnostics of Chlorine Induced Stress Corrosion Cracking Using Laser

DOE Phase II SBIR Project: Diagnostics of Chlorine Induced Stress Corrosion Cracking Using Laser

DOE Phase II SBIR Project: Diagnostics of Chlorine Induced Stress Corrosion Cracking Using Laser Ultrasonics SFWST Working Group Meeting May 22-24, 2018 Max Wiedmann and Marvin Klein Intelligent Optical Systems Torrance, CA 90505

584 views • 22 slides
September 28, 2016 1 Cracking Drupal Security concepts and pitfalls Peter Wolanin Moshe

September 28, 2016 1 Cracking Drupal Security concepts and pitfalls Peter Wolanin Moshe

September 28, 2016 1 Cracking Drupal Security concepts and pitfalls Peter Wolanin Moshe Weitzman Track: PHP https://events.drupal.org/dublin2016/sessions/cracking-drupal Special thanks to Klaus Purer for creating the original talk and slides

683 views • 39 slides
Perpetual Pavements Design Concept Top-Down Cracking 1 Endurance Limit 1200 1200 1200

Perpetual Pavements Design Concept Top-Down Cracking 1 Endurance Limit 1200 1200 1200

Perpetual Pavements Design Concept Top-Down Cracking 1 Endurance Limit 1200 1200 1200 Normal Range for Normal Range for 1000 1000 1000 Fatigue Testing Fatigue Testing Strain, (10E-06) Strain, (10E-06) Strain, (10E-06) 800 800 800

311 views • 3 slides
CRACKING - Investigating one of the biggest - digital heists in history

CRACKING - Investigating one of the biggest - digital heists in history

CRACKING - Investigating one of the biggest - digital heists in history from the outside K IM N ILSSON Brief history reminder Basics of blockchain analysis Acquiring the missing pieces Findings so far

893 views • 67 slides

More recommend