ESem: To harden process synchronization for servers
Process synchronization primitives lubricate server computing involving a group of processes as they ensure those processes to properly coordinate their executions for a common purpose such as provisioning a web service. A malfunctioned synchronization due to attacks causes friction among processes...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2024
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/9287 https://ink.library.smu.edu.sg/context/sis_research/article/10287/viewcontent/3634737.3657025.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-10287 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-102872024-09-13T14:37:37Z ESem: To harden process synchronization for servers WANG, Zhanbo ZHAN, Jiaxin DING, Xuhua ZHANG, Fengwei HU, Ning Process synchronization primitives lubricate server computing involving a group of processes as they ensure those processes to properly coordinate their executions for a common purpose such as provisioning a web service. A malfunctioned synchronization due to attacks causes friction among processes and leads to unexpected, and often hard-to-detect, application transaction errors. Unfortunately, synchronization primitives are not naturally protected by existing hardware-assisted isolation techniques e.g., SGX, because their process-oriented isolation conflicts with the primitive's demand for cross-process operations.This paper introduces the Enclave-Semaphore service (ESem) which shelters application semaphores and their operations against kernel-privileged attacks. ESem encapsulates all semaphores in the platform with a dedicated SGX enclave and polices accesses from users processes, thus ensuring a consistent view of the data and resources shared among collaborative processes. Although ESem provides secure semaphores only, it supports all kinds of synchronization needs, owning to the expressiveness of semaphores.We have built a prototype of ESem and conducted rigorous evaluation with micro-benchmarks, macro benchmark and real-world applications including Redis and Apache HTTP Server. ESem incurs only a modest performance overhead (around 2%) to the legacy systems. We also run a case study to demonstrate attacks against the synchronization in an SGX-hardened file server and how ESem neutralizes the attacks successfully with only one function call change to the applications. All these experiments show that ESem is lightweight yet effective solution to the security hole left open by existing isolation schemes. 2024-07-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/9287 info:doi/10.1145/3634737.3657025 https://ink.library.smu.edu.sg/context/sis_research/article/10287/viewcontent/3634737.3657025.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Secure synchronization Kernel semaphore SGX enclave Information Security |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Secure synchronization Kernel semaphore SGX enclave Information Security |
| spellingShingle |
Secure synchronization Kernel semaphore SGX enclave Information Security WANG, Zhanbo ZHAN, Jiaxin DING, Xuhua ZHANG, Fengwei HU, Ning ESem: To harden process synchronization for servers |
| description |
Process synchronization primitives lubricate server computing involving a group of processes as they ensure those processes to properly coordinate their executions for a common purpose such as provisioning a web service. A malfunctioned synchronization due to attacks causes friction among processes and leads to unexpected, and often hard-to-detect, application transaction errors. Unfortunately, synchronization primitives are not naturally protected by existing hardware-assisted isolation techniques e.g., SGX, because their process-oriented isolation conflicts with the primitive's demand for cross-process operations.This paper introduces the Enclave-Semaphore service (ESem) which shelters application semaphores and their operations against kernel-privileged attacks. ESem encapsulates all semaphores in the platform with a dedicated SGX enclave and polices accesses from users processes, thus ensuring a consistent view of the data and resources shared among collaborative processes. Although ESem provides secure semaphores only, it supports all kinds of synchronization needs, owning to the expressiveness of semaphores.We have built a prototype of ESem and conducted rigorous evaluation with micro-benchmarks, macro benchmark and real-world applications including Redis and Apache HTTP Server. ESem incurs only a modest performance overhead (around 2%) to the legacy systems. We also run a case study to demonstrate attacks against the synchronization in an SGX-hardened file server and how ESem neutralizes the attacks successfully with only one function call change to the applications. All these experiments show that ESem is lightweight yet effective solution to the security hole left open by existing isolation schemes. |
| format |
text |
| author |
WANG, Zhanbo ZHAN, Jiaxin DING, Xuhua ZHANG, Fengwei HU, Ning |
| author_facet |
WANG, Zhanbo ZHAN, Jiaxin DING, Xuhua ZHANG, Fengwei HU, Ning |
| author_sort |
WANG, Zhanbo |
| title |
ESem: To harden process synchronization for servers |
| title_short |
ESem: To harden process synchronization for servers |
| title_full |
ESem: To harden process synchronization for servers |
| title_fullStr |
ESem: To harden process synchronization for servers |
| title_full_unstemmed |
ESem: To harden process synchronization for servers |
| title_sort |
esem: to harden process synchronization for servers |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2024 |
| url |
https://ink.library.smu.edu.sg/sis_research/9287 https://ink.library.smu.edu.sg/context/sis_research/article/10287/viewcontent/3634737.3657025.pdf |
| _version_ |
1814047873348665344 |