{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,20]],"date-time":"2026-05-20T16:32:48Z","timestamp":1779294768765,"version":"3.51.4"},"reference-count":28,"publisher":"Association for Computing Machinery (ACM)","issue":"3","license":[{"start":{"date-parts":[[2023,6,21]],"date-time":"2023-06-21T00:00:00Z","timestamp":1687305600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"National Science Foundation","award":["CNS-1929261"],"award-info":[{"award-number":["CNS-1929261"]}]},{"DOI":"10.13039\/100000028","name":"Semiconductor Research Corporation","doi-asserted-by":"crossref","id":[{"id":"10.13039\/100000028","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["J. Emerg. Technol. Comput. Syst."],"published-print":{"date-parts":[[2023,7,31]]},"abstract":"<jats:p>Modern network-on-chip (NoC) hardware is an emerging target for side-channel security attacks. A recent work implemented and characterized timing-based software side-channel attacks that target NoC hardware on a real multicore machine. This article studies the impact of system noise on prior attack setups and shows that high noise is sufficient to defeat the attacker. We propose an information theory-based attack setup that uses repetition codes and differential signaling techniques to de-noise the unwanted noise from the NoC channel to successfully implement a practical covert-communication attack on a real multicore machine. The evaluation demonstrates an attack efficacy of 97%, 88%, and 78% under low, medium, and high external noise, respectively. Our attack characterization reveals that noise-based mitigation schemes are inadequate to prevent practical covert communication, and thus isolation-based mitigation schemes must be considered to ensure strong security. Isolation-based schemes are shown to mitigate timing-based side-channel attacks. However, their impact on the performance of real-world security critical workloads is not well understood in the literature. This article evaluates the performance implications of state-of-the-art spatial and temporal isolation schemes. The performance impact is shown to range from 2\u20133% for a set of graph and machine learning workloads, thus making isolation-based mitigations practical.<\/jats:p>","DOI":"10.1145\/3585519","type":"journal-article","created":{"date-parts":[[2023,3,2]],"date-time":"2023-03-02T12:42:22Z","timestamp":1677760942000},"page":"1-23","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":8,"title":["Characterization of Timing-based Software Side-channel Attacks and Mitigations on Network-on-Chip Hardware"],"prefix":"10.1145","volume":"19","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-3359-9817","authenticated-orcid":false,"given":"Usman","family":"Ali","sequence":"first","affiliation":[{"name":"University of Connecticut, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1392-8073","authenticated-orcid":false,"given":"Sheikh Abdul Rasheed","family":"Sahni","sequence":"additional","affiliation":[{"name":"University of Connecticut, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6293-7403","authenticated-orcid":false,"given":"Omer","family":"Khan","sequence":"additional","affiliation":[{"name":"University of Connecticut, United States"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,6,21]]},"reference":[{"key":"e_1_3_1_2_2","unstructured":"1998. Curl: Command Line Tool and Library for Transferring Data with URLs. Retrieved from https:\/\/curl.se\/."},{"key":"e_1_3_1_3_2","unstructured":"2002. Linux numactl. Retrieved from https:\/\/linux.die.net\/man\/8\/numactl."},{"key":"e_1_3_1_4_2","unstructured":"2013. FreescaleADL: An Industrial-Strength Architectural Description Language for Programmable Cores. Retrieved from http:\/\/opensource.freescale.com\/fsl-oss-projects\/."},{"key":"e_1_3_1_5_2","unstructured":"2017. QUARQ: A Novel General Purpose Multicore Architecture for Cognitive Computing. Retrieved from https:\/\/khan.engr.uconn.edu\/pubs\/quarq-techcon17.pdf."},{"key":"e_1_3_1_6_2","unstructured":"2018. LYNX\u2014The Text Web-Browser. Retrieved from https:\/\/lynx.invisible-island.net\/."},{"key":"e_1_3_1_7_2","unstructured":"2019. STRESS\u2014Tool to Impose Load On and Stress Test Systems. Retrieved from https:\/\/linux.die.net\/man\/1\/stress."},{"key":"e_1_3_1_8_2","doi-asserted-by":"publisher","DOI":"10.1109\/IISWC.2015.11"},{"key":"e_1_3_1_9_2","doi-asserted-by":"publisher","DOI":"10.1109\/HOST49136.2021.9702280"},{"key":"e_1_3_1_10_2","unstructured":"Intel Corporation. 2015. Improving Real-time Performance by Utilizing Cache Allocation Technology. Retrieved from https:\/\/www.intel.com\/content\/dam\/www\/public\/us\/en\/documents\/white-papers\/cache-allocation-technology-white-paper.pdf."},{"key":"e_1_3_1_11_2","unstructured":"Tilera Corporation. 2014. TILE-Gx72 Processor. Retrieved from http:\/\/www.mellanox.com\/related-docs\/prod_multi_core\/PB_TILE-Gx72.pdf."},{"key":"e_1_3_1_12_2","doi-asserted-by":"publisher","DOI":"10.1109\/CVPR.2009.5206848"},{"key":"e_1_3_1_13_2","doi-asserted-by":"publisher","DOI":"10.1145\/3300208"},{"key":"e_1_3_1_14_2","first-page":"955","volume-title":"Proceedings of the 27th USENIX Security Symposium (USENIX Security\u201918)","author":"Gras Ben","year":"2018","unstructured":"Ben Gras, Kaveh Razavi, Herbert Bos, and Cristiano Giuffrida. 2018. Translation leak-aside buffer: Defeating cache side-channel protections with TLB attacks. In Proceedings of the 27th USENIX Security Symposium (USENIX Security\u201918). USENIX Association, 955\u2013972."},{"key":"e_1_3_1_15_2","doi-asserted-by":"publisher","DOI":"10.1109\/MICRO.2014.28"},{"key":"e_1_3_1_16_2","doi-asserted-by":"publisher","DOI":"10.1145\/3456629"},{"key":"e_1_3_1_17_2","doi-asserted-by":"publisher","DOI":"10.1145\/378239.379070"},{"key":"e_1_3_1_18_2","doi-asserted-by":"publisher","DOI":"10.1109\/HPCA.2010.5416635"},{"key":"e_1_3_1_19_2","doi-asserted-by":"publisher","DOI":"10.1109\/HPCA47549.2020.00019"},{"key":"e_1_3_1_20_2","first-page":"565","volume-title":"Proceedings of the 25th USENIX Security Symposium (USENIX Security\u201916)","author":"Pessl Peter","year":"2016","unstructured":"Peter Pessl, Daniel Gruss, Cl\u00e9mentine Maurice, Michael Schwarz, and Stefan Mangard. 2016. DRAMA: Exploiting DRAM addressing for cross-CPU attacks. In Proceedings of the 25th USENIX Security Symposium (USENIX Security\u201916). USENIX Association, 565\u2013581."},{"key":"e_1_3_1_21_2","unstructured":"Stephen R\u00f6ttger and Artur Janc. 2021. A Spectre proof-of-concept for a Spectre-proof web. Retrieved from https:\/\/security.googleblog.com\/2021\/03\/a-spectre-proof-of-concept-for-spectre.html."},{"key":"e_1_3_1_22_2","doi-asserted-by":"publisher","DOI":"10.1145\/3307650.3322228"},{"key":"e_1_3_1_23_2","doi-asserted-by":"publisher","DOI":"10.1109\/MM.2020.2986204"},{"key":"e_1_3_1_24_2","doi-asserted-by":"publisher","DOI":"10.1145\/3445814.3446716"},{"key":"e_1_3_1_25_2","doi-asserted-by":"publisher","DOI":"10.1109\/NOCS.2012.24"},{"key":"e_1_3_1_26_2","doi-asserted-by":"publisher","DOI":"10.1145\/2485922.2485972"},{"key":"e_1_3_1_27_2","doi-asserted-by":"publisher","DOI":"10.1007\/s00500-017-2547-1"},{"key":"e_1_3_1_28_2","first-page":"719","volume-title":"Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914)","author":"Yarom Yuval","year":"2014","unstructured":"Yuval Yarom and Katrina Falkner. 2014. FLUSH+RELOAD: A high resolution, low noise, L3 cache side-channel attack. In Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914). USENIX Association, 719\u2013732."},{"key":"e_1_3_1_29_2","doi-asserted-by":"publisher","DOI":"10.1109\/HPCA.2017.36"}],"container-title":["ACM Journal on Emerging Technologies in Computing Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3585519","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3585519","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:46:08Z","timestamp":1750178768000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3585519"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,6,21]]},"references-count":28,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2023,7,31]]}},"alternative-id":["10.1145\/3585519"],"URL":"https:\/\/doi.org\/10.1145\/3585519","relation":{},"ISSN":["1550-4832","1550-4840"],"issn-type":[{"value":"1550-4832","type":"print"},{"value":"1550-4840","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,6,21]]},"assertion":[{"value":"2022-03-15","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-01-29","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-06-21","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}