Victims Can Be Saviors

2021 ◽  
Vol 17 (2) ◽  
pp. 1-31
Author(s):  
Manaar Alam ◽  
Sarani Bhattacharya ◽  
Debdeep Mukhopadhyay
Keyword(s):  
Machine Learning ◽  
Security Analysis ◽  
False Positives ◽  
Machine Learning Techniques ◽  
Side Channel ◽  
Detection Accuracy ◽  
Secret Key ◽  
Side Channel Attacks ◽  
Detection Mechanism ◽  
Novel Approach

Micro-architectural side-channel attacks are major threats to the most mathematically sophisticated encryption algorithms. In spite of the fact that there exist several defense techniques, the overhead of implementing the countermeasures remains a matter of concern. A promising strategy is to develop online detection and prevention methods for these attacks. Though some recent studies have devised online prevention mechanisms for some categories of these attacks, still other classes remain undetected. Moreover, to detect these side-channel attacks with minimal False Positives is a challenging effort because of the similarity of their behavior with computationally intensive applications. This article presents a generalized machine learning--based multi-layer detection technique that targets these micro-architectural side-channel attacks, while not restricting its attention only on a single category of attacks. The proposed mechanism gathers low-level system information by profiling performance counter events using Linux perf tool and then applies machine learning techniques to analyze the data. A novel approach using time-series analysis of the data is implemented to find out the correlation of the execution trace of the attack process with the secret key of encryption, which helps in dealing with False-Positives and unknown attacks. This article also provides a detailed theoretical analysis of the detection mechanism of the proposed model along with its security analysis. The experimental results show that the proposed method is superior to the state-of-the-art reported techniques with high detection accuracy, low False Positives, and low implementation overhead while being able to detect before the completion of the attack.

scholarly journals It Started with Templates: The Future of Profiling in Side-Channel Analysis

2021 ◽  
pp. 133-145
Author(s):  
Lejla Batina ◽  
Milena Djukanovic ◽  
Annelie Heuser ◽  
Stjepan Picek
Keyword(s):  
Machine Learning ◽  
Supervised Machine Learning ◽  
Machine Learning Techniques ◽  
Side Channel ◽  
Side Channel Attacks ◽  
Worst Case ◽  
Learning Techniques ◽  
The Future ◽  
First Results ◽  
Channel Analysis

AbstractSide-channel attacks (SCAs) are powerful attacks based on the information obtained from the implementation of cryptographic devices. Profiling side-channel attacks has received a lot of attention in recent years due to the fact that this type of attack defines the worst-case security assumptions. The SCA community realized that the same approach is actually used in other domains in the form of supervised machine learning. Consequently, some researchers started experimenting with different machine learning techniques and evaluating their effectiveness in the SCA context. More recently, we are witnessing an increase in the use of deep learning techniques in the SCA community with strong first results in side-channel analyses, even in the presence of countermeasures. In this chapter, we consider the evolution of profiling attacks, and subsequently we discuss the impacts they have made in the data preprocessing, feature engineering, and classification phases. We also speculate on the future directions and the best-case consequences for the security of small devices.

scholarly journals Functional prediction of environmental variables using metabolic networks

2021 ◽  
Vol 11 (1) ◽  
Author(s):  
Adèle Weber Zendrera ◽  
Nataliya Sokolovska ◽  
Hédi A. Soula
Keyword(s):  
Machine Learning ◽  
Growth Temperature ◽  
Environmental Variables ◽  
Metabolic Networks ◽  
Machine Learning Techniques ◽  
Underlying Structure ◽  
Glutathione Biosynthesis ◽  
Additional Information ◽  
Cold Environments ◽  
Novel Approach

AbstractIn this manuscript, we propose a novel approach to assess relationships between environment and metabolic networks. We used a comprehensive dataset of more than 5000 prokaryotic species from which we derived the metabolic networks. We compute the scope from the reconstructed graphs, which is the set of all metabolites and reactions that can potentially be synthesized when provided with external metabolites. We show using machine learning techniques that the scope is an excellent predictor of taxonomic and environmental variables, namely growth temperature, oxygen tolerance, and habitat. In the literature, metabolites and pathways are rarely used to discriminate species. We make use of the scope underlying structure—metabolites and pathways—to construct the predictive models, giving additional information on the important metabolic pathways needed to discriminate the species, which is often absent in other metabolic network properties. For example, in the particular case of growth temperature, glutathione biosynthesis pathways are specific to species growing in cold environments, whereas tungsten metabolism is specific to species in warm environments, as was hinted in current literature. From a machine learning perspective, the scope is able to reduce the dimension of our data, and can thus be considered as an interpretable graph embedding.

scholarly journals Early Detection of Exposure to Toxic Chemicals Using Continuously Recorded Multi-Sensor Physiology

Sensors ◽  
2021 ◽  
Vol 21 (11) ◽  
pp. 3616
Author(s):  
Jan Ubbo van Baardewijk ◽  
Sarthak Agarwal ◽  
Alex S. Cornelissen ◽  
Marloes J. A. Joosen ◽  
Jiska Kentrop ◽  
...  
Keyword(s):  
Machine Learning ◽  
Early Detection ◽  
Physiological Signals ◽  
Machine Learning Techniques ◽  
Detection Accuracy ◽  
Chemical Agent ◽  
Counter Measures ◽  
Detection And Identification ◽  
Life Saving ◽  
Future Work

Early detection of exposure to a toxic chemical, e.g., in a military context, can be life-saving. We propose to use machine learning techniques and multiple continuously measured physiological signals to detect exposure, and to identify the chemical agent. Such detection and identification could be used to alert individuals to take appropriate medical counter measures in time. As a first step, we evaluated whether exposure to an opioid (fentanyl) or a nerve agent (VX) could be detected in freely moving guinea pigs using features from respiration, electrocardiography (ECG) and electroencephalography (EEG), where machine learning models were trained and tested on different sets (across subject classification). Results showed this to be possible with close to perfect accuracy, where respiratory features were most relevant. Exposure detection accuracy rose steeply to over 95% correct during the first five minutes after exposure. Additional models were trained to correctly classify an exposed state as being induced either by fentanyl or VX. This was possible with an accuracy of almost 95%, where EEG features proved to be most relevant. Exposure detection models that were trained on subsets of animals generalized to subsets of animals that were exposed to other dosages of different chemicals. While future work is required to validate the principle in other species and to assess the robustness of the approach under different, realistic circumstances, our results indicate that utilizing different continuously measured physiological signals for early detection and identification of toxic agents is promising.

scholarly journals Real-Time Detection for Cache Side Channel Attack using Performance Counter Monitor

2020 ◽  
Vol 10 (3) ◽  
pp. 984 ◽  
Author(s):  
Jonghyeon Cho ◽  
Taehun Kim ◽  
Soojin Kim ◽  
Miok Im ◽  
Taehyun Kim ◽  
...  
Keyword(s):  
Machine Learning ◽  
Real Time ◽  
Detection Method ◽  
Machine Learning Algorithms ◽  
Side Channel ◽  
Side Channel Attacks ◽  
Detection Techniques ◽  
Performance Counter ◽  
Secret Information ◽  
Real Time Detection

Cache side channel attacks extract secret information by monitoring the cache behavior of a victim. Normally, this attack targets an L3 cache, which is shared between a spy and a victim. Hence, a spy can obtain secret information without alerting the victim. To resist this attack, many detection techniques have been proposed. However, these approaches have limitations as they do not operate in real time. This article proposes a real-time detection method against cache side channel attacks. The proposed technique performs the detection of cache side channel attacks immediately after observing a variation of the CPU counters. For this, Intel PCM (Performance Counter Monitor) and machine learning algorithms are used to measure the value of the CPU counters. Throughout the experiment, several PCM counters recorded changes during the attack. From these observations, a detecting program was implemented by using these counters. The experimental results show that the proposed detection technique displays good performance for real-time detection in various environments.

Sign in / Sign up

Export Citation Format

Share Document