loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Gerald Palfinger 1 ; Bernd Prünster 2 and Dominik Ziegler 3

Affiliations: 1 A-SIT Secure Information Technology Center Austria, Seidlgasse 22 / Top 9, 1030 Vienna and Austria ; 2 Institute of Applied Information Processing and Communications (IAIK), Graz University of Technology, Inffeldgasse 16a, 8010 Graz and Austria ; 3 Know Center GmbH, Inffeldgasse 13, 8010 Graz and Austria

Keyword(s): Deduplication, Side Channel, Cloud, File System, Copy-on-Write, CoW, ZFS, Storage, Virtual Private Server, Virtual Machine.

Related Ontology Subjects/Areas/Topics: Data and Application Security and Privacy ; Information and Systems Security ; Privacy ; Security and Privacy in the Cloud ; Security and Privacy in Web Services ; Software Security

Abstract: By exploiting a side channel created by Copy-on-Write (CoW) operations of modern file systems, we present a novel attack which allows for detecting files in a shared cloud environment across virtual machine boundaries. In particular, we measure deduplication operation timings in order to probe for existing files of neighbouring virtual machines in a shared file system pool. As a result, no assumptions about the underlying hardware and no network access are necessary. To evaluate the real-world implications, we successfully demonstrate the feasibility of our attack on the ZFS file system. Our results clearly show that the presented attack enables the detection of vulnerable software or operating systems in a victim’s virtual machine on the same file system pool with high accuracy. Furthermore, we discuss several potential countermeasures and their implications.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.138.101.95

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Palfinger, G.; Prünster, B. and Ziegler, D. (2019). Prying CoW: Inferring Secrets across Virtual Machine Boundaries. In Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - SECRYPT; ISBN 978-989-758-378-0; ISSN 2184-3236, SciTePress, pages 187-197. DOI: 10.5220/0007932301870197

@conference{secrypt19,
author={Gerald Palfinger. and Bernd Prünster. and Dominik Ziegler.},
title={Prying CoW: Inferring Secrets across Virtual Machine Boundaries},
booktitle={Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - SECRYPT},
year={2019},
pages={187-197},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007932301870197},
isbn={978-989-758-378-0},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 16th International Joint Conference on e-Business and Telecommunications - SECRYPT
TI - Prying CoW: Inferring Secrets across Virtual Machine Boundaries
SN - 978-989-758-378-0
IS - 2184-3236
AU - Palfinger, G.
AU - Prünster, B.
AU - Ziegler, D.
PY - 2019
SP - 187
EP - 197
DO - 10.5220/0007932301870197
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic