SaTC: CORE: Small: Preventing Web Side-channel Attacks via Atomic Determinism

SaTC：核心：小：通过原子决定论防止 Web 侧信道攻击

• 批准号: 1812870
• 负责人: Yinzhi Cao
• 金额: $ 50万
• 依托单位: Lehigh University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2018
• 资助国家: 美国
• 起止时间: 2018-09-01 至 2018-10-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1812870&HistoricalAwards=false
• 关键词: SaTC; CORE; Small; Preventing; Web

Web browsers are vulnerable to side-channel attacks, which usually play an important, first-step role in jump-starting a chain of attacks. For example, a web-level precise clock can help adversaries to break operating system level memory protection mechanisms, such as address-space layout randomization (ASLR). Browser fingerprinting, a variation of web side channels, can be used to obtain users' private information for launching social engineering attacks. In addition, web side-channel attacks alone can also reveal private information, such as illnesses and medications of patients and the number of social network users' friends. The project is to design, implement and evaluate a novel defense architecture integrating atomic determinism, a brand-new concept of determinism tailored-made for web browsers, to provably prevent web side-channel attacks, thus protecting web users' security and privacy.The key insight of atomic determinism is that a web browser can be considered as a composition of several atomic units, called reference frames (RFs), an abstract concept borrowed from physics. The atomic determinism of web browsers defines that each RF contains only one clock and at most one observer, e.g., a Turing-complete program controlled by the adversary. From the viewpoint of the observer, the clock in the RF ticks deterministically, i.e., being the same in every runtime; by contrast, from the viewpoint of an oracle, e.g., a user of the browser, the clock in the RF ticks normally without performance slowdown. The project adopts two tactics to incorporate atomic determinism into web browsers, i.e., designing a browser add-on and modifying a modern web browser. The former, which translates existing programs and overwrites existing function definitions, facilitates the general web users in short-term; the latter, which fundamentally changes the browser architecture, facilitates users with special needs and can be integrated into a mainstream browser in a longer term. The greatest impact of this project is novel, effective approaches, systems, and technologies to improving the security and privacy of browsers, benefiting web users from both the academia and the general public. The principal investigator (PI) also involves undergraduates, women, K-12 students and minorities in the project.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

Web浏览器容易受到侧向通道攻击的影响，这通常在跳跃攻击链中起着重要的，首先发挥的作用。 例如，Web级的精确时钟可以帮助对手打破操作系统级别的内存保护机制，例如地址空间布局随机化（ASLR）。 Web侧渠道的一种变体浏览器指纹可以用于获取用户的私人信息来启动社交工程攻击。 此外，仅网络侧通道攻击也可以揭示私人信息，例如患者的疾病和药物以及社交网络用户的朋友的数量。 该项目旨在设计，实施和评估一种新型的防御架构整合原子确定性，这是一个针对网络浏览器制作的确定性的全新概念，可预防网络侧渠道攻击，从而保护网络用户的安全性和隐私。因此，请将网络浏览器视为一个摘要的概述，即摘要friames frimess frimess frimess，该浏览器可以被视为brikess browser的组合，该概述是一种摘要。物理。 Web浏览器的原子决定论定义了每个RF仅包含一个时钟，最多有一个观察者，例如，由对手控制的Turing-Complete程序。 从观察者的角度来看，RF中的时钟是确定性的，即在每个运行时都相同；相比之下，从甲骨文的角度来看，例如，浏览器的用户，射频中的时钟正常滴答，而没有性能放缓。 该项目采用了两种策略将原子决定论纳入Web浏览器，即设计浏览器附加组件并修改现代Web浏览器。 前者翻译现有程序并覆盖现有功能定义，在短期内促进了一般的Web用户；后者从根本上改变了浏览器体系结构，它促进了具有特殊需求的用户，可以在长期内将其集成到主流浏览器中。 该项目的最大影响是新颖，有效的方法，系统和技术来改善浏览器的安全性和隐私，从而使来自学术界和公众的网络用户受益。 该项目的主要研究员（PI）还涉及本科生，妇女，K-12学生和少数群体。该奖项反映了NSF的法定任务，并使用基金会的知识分子优点和更广泛的影响审查标准，认为值得通过评估来获得支持。