国际网络安全研究学术论坛（网安国际）

现代操作系统和协议栈中的存储侧信道攻击

　　Abstract

　　In this talk， I will introduce a class of practical storage side channel attacks against the Android OS and the TCP stacks. They lead to significant damage to user privacy， network security and application integrity. The attack in Android allows a background app to infer what the foreground app is doing without requiring any permission. Knowing the state of the foreground app， we are then able to hijack the foreground app and launch phishing attacks to steal sensitive information such as passwords and bank account info. The attack in TCP stacks allows an off-path attacker on the Internet to hijack TCP connections created between a legitimate client and server. For instance， we are able to hijack the browser‘s connection to Facebook and replace it with a phishing login page to steal credentials. Prompted by our work， corresponding vendors （e.g.， Checkpoint， Linux kernel） have proposed mitigation solutions and applied patches.

　　Bio

　　Dr. Zhiyun Qian is an assistant professor at University of California， Riverside. His research interest is on system and network security， including Android security， Internet security （e.g.， TCP/IP）， side-channel security， infrastructure security （e.g.， cellular networks）. He obtained his Ph.D. degree in Computer Science and Engineering from University of Michigan in 2012.

　　HomePage：http://www.cs.ucr.edu/～zhiyunq/

　　联系人：段海新， duanhx@tsinghua.edu.cn

　　清华大学网络科学与网络空间研究院