From Trash to Treasure: Timing-Sensitive Garbage Collection

Research output: Contribution to book/anthology/report/proceedingArticle in proceedingsResearchpeer-review

DOI

This paper studies information flows via timing channels in the presence ofautomatic memory management. We construct a series of example attacks thatillustrate that garbage collectors form a shared resource that can be used toreliably leak sensitive information at a rate of up to 1 byte/sec on a contemporarygeneral-purpose computer. The createdchannel is also observable across a network connection in a datacenter-likesetting. We subsequently present a design of automatic memory management that isprovably resilient against such attacks.

Original languageEnglish
Title of host publication2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings
Number of pages17
PublisherIEEE Computer Society Press
Publication year23 Jun 2017
Pages693-709
Article number7958605
ISBN (Electronic)9781509055326
DOIs
Publication statusPublished - 23 Jun 2017
Event2017 IEEE Symposium on Security and Privacy, SP 2017 - San Jose, United States
Duration: 22 May 201724 May 2017

Conference

Conference2017 IEEE Symposium on Security and Privacy, SP 2017
LandUnited States
BySan Jose
Periode22/05/201724/05/2017
SponsorIEEE Computer Society Technical Committee on Security and Privacy

    Research areas

  • Garbage collection, Information flow, Language-based security, Timing channels

See relations at Aarhus University Citationformats

Activities

ID: 118170481