iLeakage: Browser-based Timerless Speculative Execution Attacks on Apple Devices-Reference-Cited by-同舟云学术

iLeakage: Browser-based Timerless Speculative Execution Attacks on Apple Devices

Published:2023-11-15 Issue: Volume: Page:
ISSN:
Container-title:Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security
language:
Short-container-title:

Author:

Kim Jason¹^ORCID,van Schaik Stephan²^ORCID,Genkin Daniel¹^ORCID,Yarom Yuval³^ORCID

Affiliation:

1. Georgia Tech, Atlanta, GA, USA

2. University of Michigan, Ann Arbor, MI, USA

3. Ruhr University Bochum, Bochum, Germany

Funder

Deutsche Forschungsgemeinschaft

Air Force Office of Scientific Research (AFOSR)

ARC Discovery Early Career Researcher Award

ARC Discovery Project

National Science Foundation

Qualcomm

Defense Advanced Research Projects Agency (DARPA)

Cisco Systems

Publisher

ACM

Link

https://dl.acm.org/doi/pdf/10.1145/3576915.3616611

Reference81 articles.

1. Ayush Agarwal, Sioli O'Connell, Jason Kim, Shaked Yehezkel, Daniel Genkin, Eyal Ronen, and Yuval Yarom. 2022. Spook.js: Attacking Chrome Strict Site Isolation via Speculative Execution. In IEEE SP.

2. Marc Andrysco, David Kohlbrenner, Keaton Mowery, Ranjit Jhala, Sorin Lerner, and Hovav Shacham. 2015. On Subnormal Floating point and Abnormal Timing. In IEEE SP.

3. Apple. 2018. About speculative execution vulnerabilities in ARM-based and Intel CPUs. https://support.apple.com/en-us/HT208394.

4. Apple. 2021. pathxnu/osfmk/arm/kpc_arm.c. https://github.com/apple-oss-distributions/xnu/blob/e6231be02a03711ca404e5121a151b24afbff733/osfmk/arm/kpc_arm.c.

5. Enrico Barberis Pietro Frigo Marius Muench Herbert Bos and Cristiano Giuffrida. 2022. Branch history injection: On the effectiveness of hardware mitigations against cross-privilege Spectre-v2 attacks. In USENIX Security.