BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Penn Engineering Events - ECPv6.15.18//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-WR-CALNAME:Penn Engineering Events
X-ORIGINAL-URL:https://seasevents.nmsdev7.com
X-WR-CALDESC:Events for Penn Engineering Events
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:America/New_York
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20230312T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20231105T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20240310T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20241103T060000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:-0500
TZOFFSETTO:-0400
TZNAME:EDT
DTSTART:20250309T070000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0400
TZOFFSETTO:-0500
TZNAME:EST
DTSTART:20251102T060000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=America/New_York:20240312T153000
DTEND;TZID=America/New_York:20240312T163000
DTSTAMP:20260403T173057
CREATED:20240209T135327Z
LAST-MODIFIED:20240209T135327Z
UID:10698-1710257400-1710261000@seasevents.nmsdev7.com
SUMMARY:CIS Seminar: "Modern Clouds: Side-Channel Attacks and Defenses"
DESCRIPTION:Cloud computing\, which has seen significant growth over the past decade\, fundamentally relies on the sharing of hardware resources among users. This approach enhances resource utilization and reduces operational costs. However\, it also enables unintended information leakage through hardware side channels. Despite the threat of side-channel attacks\, cloud vendors remain skeptical about the practicality of these attacks in production cloud environments\, leading to inadequate side-channel mitigations.\n\nMy PhD research focuses on exploring side-channel attacks in realistic cloud settings and developing comprehensive defenses across the computing stack. In this talk\, I will first introduce a series of novel attack techniques that address practical challenges in conducting side-channel attacks in clouds. Using these techniques\, I demonstrated an end-to-end\, cross-tenant side-channel attack on Google Cloud. This demonstration was subsequently recognized by Google as a critical-level bug\, prompting a review by their product team. In the second part of this talk\, I will introduce Untangle\, a novel framework for side-channel defense. Untangle is designed to quantify and reduce information leakage in defense schemes based on dynamic resource-partitioning. Untangle opens up a new defense paradigm that allows a controlled amount of information leakage in exchange for improved performance. To conclude\, I will outline future research directions aimed at developing secure and efficient cloud systems resistant to side-channel attacks.
URL:https://seasevents.nmsdev7.com/event/10698/
LOCATION:Wu and Chen Auditorium (Room 101)\, Levine Hall\, 3330 Walnut Street\, Philadelphia\, PA\, 19104\, United States
ORGANIZER;CN="Computer and Information Science":MAILTO:cherylh@cis.upenn.edu
END:VEVENT
END:VCALENDAR