Hardware-Based Cyber Threats: Attack Vectors and Defence Techniques

Reza Montasari, Richard Hill, Simon Parkinson, Amin Hosseinian-Far, Alireza Daneshkhah

Research output: Contribution to journalArticle

Abstract

There are certain vulnerabilities associated with computing hardware that attackers can exploit to launch destructive attacks which often go undetected by the existing hardware and software countermeasures. Side Chanel Attacks (SCAs) and Rowhammer Attacks (RHAs), the consequences of hardware vulnerabilities, pose significant security and privacy threats to self-contained computing components and their end-users respectively. Such attacks compromise the security of computational environments, even those with advanced protection mechanisms such as virtualisation, sandboxes or robust encryptions. In light of these security threats against modern computing hardware, we perform an analysis overview of the modi operandi of SCAs and RHAs in hardware implementation and techniques that can be used to extract sensitive data such as secret keys. We then propose various countermeasures to safeguard against these attacks.
Original languageEnglish
JournalInternational Journal of Electronic Security and Digital Forensics
Publication statusAccepted/In press - 31 Oct 2019

Fingerprint

hardware
threat
Hardware
vulnerability
virtualization
Cryptography
compromise
privacy

Cite this

@article{72b4e4066b9941fe8ce9166daf9be2ab,
title = "Hardware-Based Cyber Threats: Attack Vectors and Defence Techniques",
abstract = "There are certain vulnerabilities associated with computing hardware that attackers can exploit to launch destructive attacks which often go undetected by the existing hardware and software countermeasures. Side Chanel Attacks (SCAs) and Rowhammer Attacks (RHAs), the consequences of hardware vulnerabilities, pose significant security and privacy threats to self-contained computing components and their end-users respectively. Such attacks compromise the security of computational environments, even those with advanced protection mechanisms such as virtualisation, sandboxes or robust encryptions. In light of these security threats against modern computing hardware, we perform an analysis overview of the modi operandi of SCAs and RHAs in hardware implementation and techniques that can be used to extract sensitive data such as secret keys. We then propose various countermeasures to safeguard against these attacks.",
author = "Reza Montasari and Richard Hill and Simon Parkinson and Amin Hosseinian-Far and Alireza Daneshkhah",
year = "2019",
month = "10",
day = "31",
language = "English",
journal = "International Journal of Electronic Security and Digital Forensics",
issn = "1751-911X",
publisher = "Inderscience",

}

Hardware-Based Cyber Threats: Attack Vectors and Defence Techniques. / Montasari, Reza; Hill, Richard; Parkinson, Simon; Hosseinian-Far, Amin; Daneshkhah, Alireza.

In: International Journal of Electronic Security and Digital Forensics, 31.10.2019.

Research output: Contribution to journalArticle

TY - JOUR

T1 - Hardware-Based Cyber Threats: Attack Vectors and Defence Techniques

AU - Montasari, Reza

AU - Hill, Richard

AU - Parkinson, Simon

AU - Hosseinian-Far, Amin

AU - Daneshkhah, Alireza

PY - 2019/10/31

Y1 - 2019/10/31

N2 - There are certain vulnerabilities associated with computing hardware that attackers can exploit to launch destructive attacks which often go undetected by the existing hardware and software countermeasures. Side Chanel Attacks (SCAs) and Rowhammer Attacks (RHAs), the consequences of hardware vulnerabilities, pose significant security and privacy threats to self-contained computing components and their end-users respectively. Such attacks compromise the security of computational environments, even those with advanced protection mechanisms such as virtualisation, sandboxes or robust encryptions. In light of these security threats against modern computing hardware, we perform an analysis overview of the modi operandi of SCAs and RHAs in hardware implementation and techniques that can be used to extract sensitive data such as secret keys. We then propose various countermeasures to safeguard against these attacks.

AB - There are certain vulnerabilities associated with computing hardware that attackers can exploit to launch destructive attacks which often go undetected by the existing hardware and software countermeasures. Side Chanel Attacks (SCAs) and Rowhammer Attacks (RHAs), the consequences of hardware vulnerabilities, pose significant security and privacy threats to self-contained computing components and their end-users respectively. Such attacks compromise the security of computational environments, even those with advanced protection mechanisms such as virtualisation, sandboxes or robust encryptions. In light of these security threats against modern computing hardware, we perform an analysis overview of the modi operandi of SCAs and RHAs in hardware implementation and techniques that can be used to extract sensitive data such as secret keys. We then propose various countermeasures to safeguard against these attacks.

M3 - Article

JO - International Journal of Electronic Security and Digital Forensics

JF - International Journal of Electronic Security and Digital Forensics

SN - 1751-911X

ER -