{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,8]],"date-time":"2026-04-08T16:25:42Z","timestamp":1775665542022,"version":"3.50.1"},"publisher-location":"Singapore","reference-count":28,"publisher":"Springer Nature Singapore","isbn-type":[{"value":"9789819535361","type":"print"},{"value":"9789819535378","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,10,20]],"date-time":"2025-10-20T00:00:00Z","timestamp":1760918400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,10,20]],"date-time":"2025-10-20T00:00:00Z","timestamp":1760918400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-981-95-3537-8_8","type":"book-chapter","created":{"date-parts":[[2025,10,19]],"date-time":"2025-10-19T10:43:15Z","timestamp":1760870595000},"page":"134-152","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Secure and\u00a0Scalable TLB Partitioning Against Timing Side-Channel Attacks"],"prefix":"10.1007","author":[{"given":"Tianyi","family":"Huang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xiaolin","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kailun","family":"Qin","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Boshi","family":"Yuan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chenghao","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yipeng","family":"Shi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chi","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dawu","family":"Gu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,10,20]]},"reference":[{"issue":"3","key":"8_CR1","doi-asserted-by":"publisher","first-page":"48","DOI":"10.1145\/1816038.1815970","volume":"38","author":"TW Barr","year":"2010","unstructured":"Barr, T.W., Cox, A.L., Rixner, S.: Translation caching: skip, don\u2019t walk (the page table). ACM SIGARCH Comput. Archit. News 38(3), 48\u201359 (2010)","journal-title":"ACM SIGARCH Comput. Archit. News"},{"key":"8_CR2","unstructured":"Bellard, F.: Qemu, a fast and portable dynamic translator. In: USENIX Annual Technical Conference, FREENIX Track, vol.\u00a041, pp. 10\u20135555. California, USA (2005)"},{"key":"8_CR3","doi-asserted-by":"crossref","unstructured":"Bienia, C., Kumar, S., Singh, J.P., Li, K.: The parsec benchmark suite: characterization and architectural implications. In: Proceedings of the 17th International Conference on Parallel Architectures and Compilation Techniques, pp. 72\u201381 (2008)","DOI":"10.1145\/1454115.1454128"},{"issue":"2","key":"8_CR4","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2024716.2024718","volume":"39","author":"N Binkert","year":"2011","unstructured":"Binkert, N., et al.: The gem5 simulator. ACM SIGARCH Comput. Archit. News 39(2), 1\u20137 (2011)","journal-title":"ACM SIGARCH Comput. Archit. News"},{"key":"8_CR5","doi-asserted-by":"crossref","unstructured":"Chen, C., Shen, C., Zhang, J.: Lightweight and secure branch predictors against spectre attacks. In: 2022 27th Asia and South Pacific Design Automation Conference (ASP-DAC), pp. 25\u201330. IEEE (2022)","DOI":"10.1109\/ASP-DAC52403.2022.9712481"},{"key":"8_CR6","doi-asserted-by":"crossref","unstructured":"Deng, S., Xiong, W., Szefer, J.: Secure tlbs. In: Proceedings of the 46th International Symposium on Computer Architecture, pp. 346\u2013359 (2019)","DOI":"10.1145\/3307650.3322238"},{"key":"8_CR7","unstructured":"Dessouky, G., Frassetto, T., Sadeghi, A.R.: $$\\{$$HybCache$$\\}$$: Hybrid $$\\{$$Side-Channel-Resilient$$\\}$$ caches for trusted execution environments. In: 29th USENIX Security Symposium (USENIX Security 20), pp. 451\u2013468 (2020)"},{"key":"8_CR8","doi-asserted-by":"crossref","unstructured":"Dessouky, G., Gruler, A., Mahmoody, P., Sadeghi, A.R., Stapf, E.: Chunked-cache: on-demand and scalable cache isolation for security architectures. arXiv preprint arXiv:2110.08139 (2021)","DOI":"10.14722\/ndss.2022.23110"},{"key":"8_CR9","unstructured":"Gras, B., Razavi, K., Bos, H., Giuffrida, C.: Translation leak-aside buffer: defeating cache side-channel protections with $$\\{$$TLB$$\\}$$ attacks. In: 27th USENIX Security Symposium (USENIX Security 18), pp. 955\u2013972 (2018)"},{"issue":"1","key":"8_CR10","first-page":"321","volume":"2020","author":"T Huo","year":"2020","unstructured":"Huo, T., et al.: Bluethunder: a 2-level directional predictor based side-channel attack against sgx. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2020(1), 321\u2013347 (2020)","journal-title":"IACR Trans. Cryptogr. Hardw. Embed. Syst."},{"key":"8_CR11","doi-asserted-by":"crossref","unstructured":"Jang, H., Kim, T., Shin, Y.: Sysbumps: exploiting speculative execution in system calls for breaking kaslr in macos for apple silicon. In: Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security, pp. 64\u201378 (2024)","DOI":"10.1145\/3658644.3690189"},{"issue":"7","key":"8_CR12","doi-asserted-by":"publisher","first-page":"93","DOI":"10.1145\/3399742","volume":"63","author":"P Kocher","year":"2020","unstructured":"Kocher, P., et al.: Spectre attacks: exploiting speculative execution. Commun. ACM 63(7), 93\u2013101 (2020)","journal-title":"Commun. ACM"},{"key":"8_CR13","doi-asserted-by":"crossref","unstructured":"Li, M., Zhang, Y., Wang, H., Li, K., Cheng, Y.: Tlb poisoning attacks on amd secure encrypted virtualization. In: Proceedings of the 37th Annual Computer Security Applications Conference, pp. 609\u2013619 (2021)","DOI":"10.1145\/3485832.3485876"},{"key":"8_CR14","unstructured":"Lipp, M., Gruss, D., Spreitzer, R., Maurice, C., Mangard, S.: $$\\{$$ARMageddon$$\\}$$: cache attacks on mobile devices. In: 25th USENIX Security Symposium (USENIX Security 16), pp. 549\u2013564 (2016)"},{"key":"8_CR15","unstructured":"Lipp, M., et al.: Meltdown: reading kernel memory from user space. In: 27th USENIX Security Symposium (USENIX Security 18), pp. 973\u2013990. USENIX Association, Baltimore, MD, August 2018"},{"key":"8_CR16","doi-asserted-by":"crossref","unstructured":"Liu, F., Lee, R.B.: Random fill cache architecture. In: 2014 47th Annual IEEE\/ACM International Symposium on Microarchitecture, pp. 203\u2013215. IEEE (2014)","DOI":"10.1109\/MICRO.2014.28"},{"key":"8_CR17","doi-asserted-by":"crossref","unstructured":"Nayak, A., Ganapathy, V., Basu, A.: (mis) managed: a novel tlb-based covert channel on gpus. In: Proceedings of the 2021 ACM Asia Conference on Computer and Communications Security, pp. 872\u2013885 (2021)","DOI":"10.1145\/3433210.3453077"},{"key":"8_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/11605805_1","volume-title":"Topics in Cryptology \u2013 CT-RSA 2006","author":"DA Osvik","year":"2006","unstructured":"Osvik, D.A., Shamir, A., Tromer, E.: Cache attacks and countermeasures: the case of AES. In: Pointcheval, D. (ed.) CT-RSA 2006. LNCS, vol. 3860, pp. 1\u201320. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11605805_1"},{"key":"8_CR19","doi-asserted-by":"crossref","unstructured":"Purnal, A., Giner, L., Gruss, D., Verbauwhede, I.: Systematic analysis of randomization-based protected cache architectures. In: 2021 IEEE Symposium on Security and Privacy (SP), pp. 987\u20131002. IEEE (2021)","DOI":"10.1109\/SP40001.2021.00011"},{"key":"8_CR20","doi-asserted-by":"crossref","unstructured":"Ragab, H., Milburn, A., Razavi, K., Bos, H., Giuffrida, C.: Crosstalk: speculative data leaks across cores are real. In: 2021 IEEE Symposium on Security and Privacy (SP), pp. 1852\u20131867. IEEE (2021)","DOI":"10.1109\/SP40001.2021.00020"},{"key":"8_CR21","unstructured":"Saileshwar, G., Qureshi, M.: $$\\{$$MIRAGE$$\\}$$: mitigating $$\\{$$Conflict-Based$$\\}$$ cache attacks with a practical $$\\{$$Fully-Associative$$\\}$$ design. In: 30th USENIX Security Symposium (USENIX Security 21), pp. 1379\u20131396 (2021)"},{"key":"8_CR22","doi-asserted-by":"crossref","unstructured":"Schwarz, M., et al.: Zombieload: cross-privilege-boundary data sampling. In: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, pp. 753\u2013768 (2019)","DOI":"10.1145\/3319535.3354252"},{"key":"8_CR23","doi-asserted-by":"crossref","unstructured":"Stolz, F., Thoma, J.P., Sasdrich, P., G\u00fcneysu, T.: Risky translations: Securing tlbs against timing side channels. Cryptology ePrint Archive (2022)","DOI":"10.46586\/tches.v2023.i1.1-31"},{"key":"8_CR24","unstructured":"Tatar, A., Trujillo, D., Giuffrida, C., Bos, H.: $$\\{$$TLB; DR$$\\}$$: enhancing $$\\{$$TLB-based$$\\}$$ attacks with $$\\{$$TLB$$\\}$$ desynchronized reverse engineering. In: 31st USENIX Security Symposium (USENIX Security 22), pp. 989\u20131007 (2022)"},{"key":"8_CR25","unstructured":"Van\u00a0Bulck, J., et al.: Foreshadow: extracting the keys to the intel $$\\{$$SGX$$\\}$$ kingdom with transient $$\\{$$Out-of-Order$$\\}$$ execution. In: 27th USENIX Security Symposium (USENIX Security 18), pp. 991\u20131008 (2018)"},{"key":"8_CR26","doi-asserted-by":"crossref","unstructured":"Van\u00a0Schaik, S., Minkin, M., Kwong, A., Genkin, D., Yarom, Y.: Cacheout: leaking data on intel cpus via cache evictions. In: 2021 IEEE Symposium on Security and Privacy (SP), pp. 339\u2013354. IEEE (2021)","DOI":"10.1109\/SP40001.2021.00064"},{"key":"8_CR27","doi-asserted-by":"crossref","unstructured":"Zhang, X., Gong, H., Chang, R., Zhou, Y.: Recast: Mitigating conflict-based cache attacks through fine-grained dynamic mapping. IEEE Trans. Inf. Forensics Secur. (2024)","DOI":"10.1109\/TIFS.2024.3368862"},{"key":"8_CR28","doi-asserted-by":"crossref","unstructured":"Zhang, Z., Allen, T., Yao, F., Gao, X., Ge, R.: Tunnels for bootlegging: fully reverse-engineering gpu tlbs for challenging isolation guarantees of nvidia mig. In: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, pp. 960\u2013974 (2023)","DOI":"10.1145\/3576915.3616672"}],"container-title":["Lecture Notes in Computer Science","Information and Communications Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-95-3537-8_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,20]],"date-time":"2025-10-20T22:02:38Z","timestamp":1760997758000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-95-3537-8_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,10,20]]},"ISBN":["9789819535361","9789819535378"],"references-count":28,"URL":"https:\/\/doi.org\/10.1007\/978-981-95-3537-8_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,10,20]]},"assertion":[{"value":"20 October 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information and Communications Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nanjing","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29 October 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31 October 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"27","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"icics2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.icics2025.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}