Formal Verification of Data-Obliviousness in Hardware
Konferenz: MBMV 2023 – Methoden und Beschreibungssprachen zur Modellierung und Verifikation von Schaltungen und Systemen - 26. Workshop
23.03.2023-24.03.2023 in Freiburg
Tagungsband: ITG-Fb. 309: MBMV 2023
Seiten: 4Sprache: EnglischTyp: PDF
Autoren:
Deutschmann, Lucas; Mueller, Johannes; Fadiheh, Mohammad R.; Stoffel, Dominik; Kunz, Wolfgang (Department of Electrical and Computer Engineering, RPTU Kaiserslautern-Landau, Germany)
Inhalt:
The importance of preventing microarchitectural timing side channels in security-critical applications has surged in the last years. Constant-time programming has emerged as a best-practice technique to prevent leaking secret information through timing. It relies on the assumption that the timing of certain basic machine instructions is independent of their respective input data. However, whether an instruction fulfills this data-independent timing criterion varies between processor microarchitectures. In this overview paper, we present a recently published methodology to formally verify data-oblivious behavior in hardware using standard property checking techniques. In addition, recent enhancements that enable scalability even to complex out-of-order cores are sketched.