Athena: Analyzing and Quantifying Side Channels of Transport Layer Protocols

Authors: 

Feiyang Yu, Duke University; Quan Zhou and Syed Rafiul Hussain, Pennsylvania State University; Danfeng Zhang, Duke University

Abstract: 

Recent research has shown a growing number of side-channel vulnerabilities in transport layer protocols, such as TCP and UDP. Those side channels can be exploited by adversaries to launch nefarious attacks. In this paper, we present Athena, an automated tool for detecting, quantifying and explaining side-channel vulnerabilities in vanilla implementations of transport layer protocols. Unlike prior tools, Athena adopts a novel graph-based analysis, making it scalable enough to be the first side-channel analysis tool that can comprehensively analyze the TCP and UDP implementations in several operating systems with significantly higher coverage than the state-of-the-art. Moreover, Athena uses an entropy-based algorithm to identify the most important vulnerabilities. Evaluation on several benchmarks including Linux, FreeBSD, OpenBSD and two open-source IPv4 implementations suggests that Athena can narrow down critical side channels to a single digit (among over 1000 candidates) with a low false positive rate. Besides covering known side channels, Athena also discovers 30 new potential attack surfaces.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@inproceedings {299605,
author = {Feiyang Yu and Quan Zhou and Syed Rafiul Hussain and Danfeng Zhang},
title = {Athena: Analyzing and Quantifying Side Channels of Transport Layer Protocols},
booktitle = {33rd USENIX Security Symposium (USENIX Security 24)},
year = {2024},
isbn = {978-1-939133-44-1},
address = {Philadelphia, PA},
pages = {3117--3133},
url = {https://www.usenix.org/conference/usenixsecurity24/presentation/yu-feiyang},
publisher = {USENIX Association},
month = aug
}

Presentation Video