#41 Flush & Reload Attacks | Information Security 5 Secure Systems Engineering

Welcome to 'Information Security 5 Secure Systems Engineering' course !

This lecture dives into a specific type of cache timing attack known as Flush and Reload. It begins by explaining the concept of Copy on Write, a memory management technique used in operating systems, and its implications for shared libraries in multi-process environments. The lecture then describes the Flush and Reload attack, outlining its steps and how it leverages the shared nature of library code to extract information from a victim process. It provides a concrete example of using Flush and Reload to retrieve secret keys from a cryptographic algorithm, emphasizing the vulnerability of software implementations to microarchitectural side channels. By the end, viewers will understand how seemingly innocuous operations like flushing and reloading cache lines can be combined to create powerful attacks, highlighting the need for securing software against these sophisticated threats.
NPTEL Courses permit certifications that can be used for Course Credits in Indian Universities as per the UGC and AICTE notifications.

To understand various certification options for this course, please visit https://nptel.ac.in/courses/106106199

#FlushAndReload #CacheTimingAttacks #MicroarchitecturalAttacks #CopyOnWrite #ForkSystemCall #ProcessTree #SharedLibraries #KeyExtraction