CLKSCREW: Exposing the Perils of Security-Oblivious Energy Management

综合编程 2017-09-22


Adrian Tang, Simha Sethumadhavan, and Salvatore Stolfo, Columbia University

Distinguished Paper Award Winner!

Adrian Tang, Columbia University

Simha Sethumadhavan, Columbia University

Salvatore Stolfo, Columbia University

Open Access Content

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone.Support USENIX and our commitment to Open Access.

Tang PDF

View the Slides


@inproceedings {203864,

author = {Adrian Tang and Simha Sethumadhavan and Salvatore Stolfo},

title = {{CLKSCREW}: Exposing the Perils of Security-Oblivious Energy Management},

booktitle = {26th {USENIX} Security Symposium ({USENIX} Security 17)},

year = {2017},

isbn = {978-1-931971-40-9},

address = {Vancouver, BC},

pages = {1057--1074},

url = {},

publisher = {{USENIX} Association},




The need for power- and energy-efficient computing has resulted in aggressive cooperative hardware-software energy management mechanisms on modern commodity devices. Most systems today, for example, allow software to control the frequency and voltage of the underlying hardware at a very fine granularity to extend battery life. Despite their benefits, these software-exposed energy management mechanisms pose grave security implications that have not been studied before.

In this work, we present the CLK SCREW attack, a new class of fault attacks that exploit the security-obliviousness of energy management mechanisms to break security. A novel benefit for the attackers is that these fault attacks become more accessible since they can now be conducted without the need for physical access to the devices or fault injection equipment. We demonstrate CLK SCREW on commodity ARM/Android devices. We show that a malicious kernel driver (1) can extract secret cryptographic keys from Trustzone, and (2) can escalate its privileges by loading self-signed code into Trustzone. As the first work to show the security ramifications of energy management mechanisms, we urge the community to re-examine these security-oblivious designs.


Distinguished Paper Award

YouTube Video:


2017中国IT用户满意度稳中有升 2017年9月21日,由工信部国家工业信息安全发展研究中心、国内权威ICT研究咨询机构计世资讯(CCW Research)联合主办,中国权威质量监督机构中国质量协会用户委员会支持的“2017年中国IT用户满意度大会”在北京隆重召开。来自联想、惠普、用友、浪潮、鹏博士、EMC、宝利通等知名IT企业代表...
“Blockchain has some interesting characteristics f... Eoin Woods What’s the buzz about blockchain? We talked to Eoin Woods, a JAX Finance speaker, about blockchain before his upcoming sessions in L...
Ransomware, DDoS and insider threats prove top dat... At a time when data security is critical and regulation is arriving to enforce its importance, a number of threats including ransomware are causing or...
The Trump administration is delaying a key program... TheTrump administration took its first step Monday toward potentially unraveling a government program that would have paved the way for more foreign ...
8 New Spectre-Class Vulnerabilities (Spectre-NG) F... A team of security researchers has reportedly discovered a total of eight new "Spectre-class" vulnerabilities in Intel CPUs, which also affec...

责编内容来自:Lobsters (本文源链)
本站遵循[CC BY-NC-SA 4.0]。如您有版权、意见投诉等问题,请通过eMail联系我们处理。