publication . Other literature type . Conference object . 2015

Practical Memory Deduplication Attacks In Sandboxed Javascript

Daniel Gruss;
Open Access
  • Published: 21 Sep 2015
  • Publisher: Zenodo
Abstract
Page deduplication is a mechanism to reduce the memory footprint of a system. Identical physical pages are identified across borders of virtual machines and programs and merged by the operating system or the hypervisor. However, this enables side-channel information leakage through cache or memory access time. Therefore, it is considered harmful in public clouds today, but it is still considered safe to use in a private environment, i.e., private clouds, personal computers, and smartphones. We present the first memory-disclosure attack in sandboxed Javascript which exploits page deduplication. Unlike previous attacks, our attack does not require the victim to ex...
Subjects
free text keywords: Memory deduplication, Side-channel attack, Javascript-based attack, Website fingerprinting
Download fromView all 3 versions
Zenodo
Other literature type . 2015
Provider: Datacite
ZENODO
Conference object . 2015
Provider: ZENODO
Powered by OpenAIRE Open Research Graph
Any information missing or wrong?Report an Issue
publication . Other literature type . Conference object . 2015

Practical Memory Deduplication Attacks In Sandboxed Javascript

Daniel Gruss;