xHain Berlin

Attacking CPUs with Power Side Channels from Software: Warum leaked hier Strom?

veryone knows and loves the famous line from the cinematic masterpiece where the IT-Security specialist asks the CPU architect: "Warum leaked hier Strom?" (Why is power leaking here?).
In this talk, we want to answer that question. We demonstrate how we can attack modern processors purely in software, relying on techniques from classical power side-channel attacks. We explain how we abuse the unprivileged access to energy-monitoring features of modern Intel and AMD CPUs. With PLATYPUS, we show how to steal cryptographic keys from the operating system or trusted-execution environments, and how to break kernel address-space layout randomization within seconds. Finally, we discuss the mitigations that prevent our attacks.

Additional information

Type Talk
Language English

More sessions

12/27/20
xHain Berlin
Max Aliapoulios
xHain Berlin
Ransomware is a type of malware that encrypts the files of infected hosts and demands payment, often in a cryptocurrency such as Bitcoin. In this talk, we present a measurement framework that we used to perform a large-scale, two-year, end-to-end measurement of ransomware payments, victims and operators.
12/27/20
xHain Berlin
Steini & Michael Merz
xHain Berlin
Ein Jahr cyber4EDU: Rückblick und der Versuch eines Ausblicks
12/27/20
xHain Berlin
Cory Doctorow
xHain Berlin
Fireside Chat with Cory Doctorow. Make sure not to miss Cory's main talk "What the cyberoptimists got wrong - and what to do about it"
12/28/20
xHain Berlin
Lukas Fuchsgruber
xHain Berlin
Museen digitalisieren ihre Sammlungen, Dokumentationen und die Vermittlung. Das geht auf verschiedenen Ebenen zu schnell, denn eigentlich wird ihre gesellschaftliche Rolle gerade stark hinterfragt. Nicht nur am Umgang mit kolonialen Erwerbungen entzünden sich Debatten. Der Vortrag beschreibt wie die aktuelle Auseinandersetzung um die gesellschaftliche Rolle von Museen auch die Digitalisierung stärker in den Blick nehmen muss.
12/29/20
xHain Berlin
hacc München / about:future
Estimates suggest that well over 100 bn € is spent on autonomous vehicle research, or what we might call the “Technology Mobility Complex”. Over recent years dozens of high-profile autonomous vehicle projects claim they are tantalisingly close to launch, only for those projected dates to be quietly pushed back. This talk will critically examine the inflated claims of the self-driving car industry and argue that the hyped economic and social benefits are based on unproven and dubious ...
12/29/20
xHain Berlin
Christina Dunbar-Hester
xHain Berlin
A firsthand look at efforts to improve diversity in software and hackerspace communities
12/30/20
xHain Berlin
Ricarda Winkelmann
xHain Berlin
Storing ice volumes of more than 65 meters sea-level equivalent, the ice sheets on Greenland and Antarctica are by far the largest potential source of future sea-level rise. Their long-term stability thus determines the fate of our coastal cities and cultural heritage sites. While massive in size, the ice sheets also belong to the most vulnerable parts of the Earth system: feedbacks between ice, atmosphere and ocean give rise to non-linearities in their response to progressing global warming. ...