Protecting Cryptographic Keys from Memory Disclosure Attacks

Keith Harrison; Shouhuai Xu

doi:10.1109/DSN.2007.77

D
DSN
2007
37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'07)
Abstract - Protecting Cryptographic Keys from Memory Disclosure Attacks

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Keith Harrison Articles by Shouhuai Xu

37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'07)

Protecting Cryptographic Keys from Memory Disclosure Attacks

Edinburgh, UK

June 25-June 28

ISBN: 0-7695-2855-4

	ASCII Text	x
	Keith Harrison, Shouhuai Xu, "Protecting Cryptographic Keys from Memory Disclosure Attacks," IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012), pp. 137-143, 37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'07), 2007.

	BibTex	x
	@article{ 10.1109/DSN.2007.77, author = {Keith Harrison and Shouhuai Xu}, title = {Protecting Cryptographic Keys from Memory Disclosure Attacks}, journal ={IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012)}, volume = {0}, year = {2007}, isbn = {0-7695-2855-4}, pages = {137-143}, doi = {http://doi.ieeecomputersociety.org/10.1109/DSN.2007.77}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012) TI - Protecting Cryptographic Keys from Memory Disclosure Attacks SN - 0-7695-2855-4 SP137 EP143 A1 - Keith Harrison, A1 - Shouhuai Xu, PY - 2007 KW - cryptographic key security KW - memory disclosure. VL - 0 JA - IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2012) ER -

Keith Harrison, University of Texas at San Antonio, USA

Shouhuai Xu, University of Texas at San Antonio, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/DSN.2007.77

Cryptography has become an indispensable mechanism for securing systems, communications and applications. While offering strong protection, cryptography makes the assumption that cryptographic keys are kept absolutely secret. In general this assumption is very difficult to guarantee in real life because computers may be compromised relatively easily. In this paper we investigate a class of attacks, which exploit memory disclosure vulnerabilities to expose cryptographic keys. We demonstrate that the threat is real by formulating an attack that exposed the private key of an OpenSSH server within 1 minute, and exposed the private key of an Apache HTTP server within 5 minutes. We propose a set of techniques to address such attacks. Experimental results show that our techniques are efficient (i.e., imposing no performance penalty) and effective -- unless a large portion of allocated memory is disclosed.

Index Terms:

cryptographic key security, memory disclosure.

Citation:

Keith Harrison, Shouhuai Xu, "Protecting Cryptographic Keys from Memory Disclosure Attacks," dsn, pp.137-143, 37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.