{"id":333,"date":"2015-04-23T21:02:34","date_gmt":"2015-04-24T01:02:34","guid":{"rendered":"https:\/\/www.bu.edu\/macs\/?p=333"},"modified":"2015-10-28T14:46:15","modified_gmt":"2015-10-28T18:46:15","slug":"cloud-security-reaches-silicon","status":"publish","type":"post","link":"https:\/\/www.bu.edu\/macs\/2015\/04\/23\/cloud-security-reaches-silicon\/","title":{"rendered":"Cloud Security Reaches Silicon"},"content":{"rendered":"<p><span>In the last 10 years, computer security researchers have shown that malicious hackers don\u2019t need to see your data in order to steal your data. From the pattern in which your computer accesses its memory banks, adversaries can infer a <\/span>shocking amount<span> about what\u2019s stored there.<\/span><\/p>\n<p>The risk of such attacks is particularly acute in the cloud, where you have no control over whose applications are sharing server space with yours. An antagonist could load up multiple cloud servers with small programs that do nothing but spy on other people\u2019s data.<\/p>\n<p>Two years ago, researchers in the group of MIT\u2019s Srini Devadas, the Edwin Sibley Webster Professor in MIT\u2019s Department of Electrical Engineering and Computer Science, proposed a method for thwarting these types of attacks by disguising memory-access patterns. Now, they\u2019ve begun to implement it in hardware.<\/p>\n<p>In March, at the Architectural Support for Programming Languages and Operating Systems conference, they presented the layout of a custom-built chip that would use their scheme, which is now moving into fabrication. And at the IEEE International Symposium on Field-Programmable Custom Computing Machines in May, they will describe some additional improvements to the scheme, which they\u2019ve tested on reconfigurable chips.<\/p>\n<p>The principle behind the scheme is that, whenever a chip needs to fetch data from a particular memory address, it should query a bunch of other addresses, too, so that an adversary can\u2019t determine which one it\u2019s really interested in.<\/p>\n<p><a href=\"http:\/\/news.mit.edu\/2015\/cloud-security-chips-0223\" target=\"_blank\">Read more at MIT News<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In the last 10 years, computer security researchers have shown that malicious hackers don\u2019t need to see your data in order to steal your data. From the pattern in which your computer accesses its memory banks, adversaries can infer a shocking amount about what\u2019s stored there. The risk of such attacks is particularly acute in [&hellip;]<\/p>\n","protected":false},"author":10066,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/posts\/333"}],"collection":[{"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/users\/10066"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/comments?post=333"}],"version-history":[{"count":2,"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/posts\/333\/revisions"}],"predecessor-version":[{"id":391,"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/posts\/333\/revisions\/391"}],"wp:attachment":[{"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/media?parent=333"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/categories?post=333"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bu.edu\/macs\/wp-json\/wp\/v2\/tags?post=333"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}