Abacus: A Tool for Precise Side-channel Analysis
Bao, Qinkun; Wang, Zihao; Larus, James R.; Wu, Dinghao
2021

Résumé

Side-channel vulnerabilities can leak sensitive information unconsciously. In this paper, we introduce the usage of Abacus. Abacus is a tool that can analyze secret-dependent control-flow and secret-dependent data-access leakages in binary programs. Unlike previous tools that can only identify leakages, it can also estimate the amount of leaked information for each leakage site. Severe vulnerabilities usually leak more information, allowing developers to triage the patching effort for side-channel vulnerabilities. This paper is to help users make use of Abacus and reproduce our previous results. Abacus is available at https://github.com/s3team/Abacus.

Détails

Titre Abacus: A Tool for Precise Side-channel Analysis
Auteur(s) Bao, Qinkun ; Wang, Zihao ; Larus, James R. ; Wu, Dinghao
Publié dans 2021 Ieee/Acm 43Rd International Conference On Software Engineering: Companion Proceedings (Icse-Companion 2021)
Série Proceedings of the IEEE-ACM International Conference on Software Engineering Companion
Pages 238-239
Présenté à IEEE/ACM 43rd International Conference on Software Engineering (ICSE), ELECTR NETWORK, May 25-28, 2021
Date 2021-01-01
Editeur Los Alamitos, IEEE COMPUTER SOC
ISSN 2574-1926
ISBN 978-1-6654-1219-3
DOI https://doi.org/10.1109/ICSE-Companion52605.2021.00110
Autres identifiant(s) Afficher la publication dans Web of Science
Laboratoires VLSC
Le document apparaît dans Production scientifique et compétences > I&C - Faculté Informatique & Communications > IINFCOM > VLSC - Laboratoire d'informatique à très grande échelle
Publications validées par des pairs
Papiers de conférence
Travail produit à l'EPFL
Date de création de la notice 2021-11-06