Toward the first SDN programming capacity theorem on realizing high-level programs on low-level datapaths
More Like this
-
null (Ed.)The adversarial model presented by trusted execution environments (TEEs) has prompted researchers to investigate unusual attack vectors. One particularly powerful class of controlled-channel attacks abuses page-table modifications to reliably track enclave memory accesses at a page-level granularity. In contrast to noisy microarchitectural timing leakage, this line of deterministic controlled-channel attacks abuses indispensable architectural interfaces and hence cannot be mitigated by tweaking microarchitectural resources. We propose an innovative controlled-channel attack, named CopyCat, that deterministically counts the number of instructions executed within a single enclave code page. We show that combining the instruction counts harvested by CopyCat with traditional, coarse-grained page-level leakage allows the accurate reconstruction of enclave control flow at a maximal instruction-level granularity. CopyCat can identify intra-page and intra-cache line branch decisions that ultimately may only differ in a single instruction, underscoring that even extremely subtle control flow deviations can be deterministically leaked from secure enclaves. We demonstrate the improved resolution and practicality of CopyCat on Intel SGX in an extensive study of single-trace and deterministic attacks against cryptographic implementations, and give novel algorithmic attacks to perform single-trace key extraction that exploit subtle vulnerabilities in the latest versions of widely-used cryptographic libraries. Our findings highlight the importance of stricter verification of cryptographic implementations, especially in the context of TEEs.more » « less
-
Clark Chinn ; Edna Tan ; Carol Chan ; Yael Kali (Ed.)
-
null (Ed.)Abstract The Great Plains (GP) southerly nocturnal low-level jet (GPLLJ) is a dominant contributor to the region’s warm-season (May–September) mean and extreme precipitation, wind energy generation, and severe weather outbreaks—including mesoscale convective systems. The spatiotemporal structure, variability, and impact of individual GPLLJ events are closely related to their degree of upper-level synoptic coupling, which varies from strong coupling in synoptic trough–ridge environments to weak coupling in quiescent, synoptic ridge environments. Here, we apply an objective dynamic classification of GPLLJ upper-level coupling and fully characterize strongly coupled (C) and relatively uncoupled (UC) GPLLJs from the perspective of the ground-based observer. Through composite analyses of C and UC GPLLJ event samples taken from the European Centre for Medium-Range Weather Forecasts’ Coupled Earth Reanalysis of the twentieth century (CERA-20C), we address how the frequency of these jet types, as well as their inherent weather- and climate-relevant characteristics—including wind speed, direction, and shear; atmospheric stability; and precipitation—vary on diurnal and monthly time scales across the southern, central, and northern subregions of the GP. It is shown that C and UC GPLLJ events have similar diurnal phasing, but the diurnal amplitude is much greater for UC GPLLJs. C GPLLJs tend to have a faster and more elevated jet nose, less low-level wind shear, and enhanced CAPE and precipitation. UC GPLLJs undergo a larger inertial oscillation (Blackadar mechanism) for all subregions, and C GPLLJs have greater geostrophic forcing (Holton mechanism) in the southern and northern GP. The results underscore the need to differentiate between C and UC GPLLJs in future seasonal forecast and climate prediction activities.more » « less