Search

Your search keyword '"Pätschke A"' showing total 11 results
Start Over Author "Pätschke A" Search Limiters Available in Library Collection
11 results on '"Pätschke A"'

1. Zebrafix: Mitigating Memory-Centric Side-Channel Leakage via Interleaving

Author

Pätschke, Anna, Wichelmann, Jan, and Eisenbarth, Thomas

Subjects
Computer Science - Cryptography and Security
Abstract

Constant-time code has become the de-facto standard for secure cryptographic implementations. However, some memory-based leakage classes such as ciphertext side-channels, silent stores, and data memory-dependent prefetching remain unaddressed. In the context of ciphertext side-channel mitigations, the practicality of interleaving data with counter values remains to be explored. To close this gap, we define design choices and requirements to leverage interleaving for a generic ciphertext side-channel mitigation. Based on these results, we implement Zebrafix, a compiler-based tool to ensure freshness of memory stores. We evaluate Zebrafix and find that interleaving can perform much better than other ciphertext side-channel mitigations, at the cost of a high practical complexity. We further observe that ciphertext side-channels, silent stores and data memory-dependent prefetching belong to a broader attack category: memory-centric side-channels. Under this unified view, we discuss to what extent ciphertext side-channel mitigations can be adapted to prevent all three memory-centric side-channel attacks via interleaving.

Published
2025

2. Measurement of $\rm ^{6}H$ ground state energy in an electron scattering experiment at MAMI-A1

Author

Shao, Tianhao, Chen, Jinhui, Pochodzalla, Josef, Achenbach, Patrick, Christmann, Mirco, Distler, Michael O., Doria, Luca, Esser, Anselm, Geratz, Julian, Helmel, Christian, Hoek, Matthias, Kino, Ryoko, Klag, Pascal, Ma, Yu-Gang, Markus, David, Merkel, Harald, Mihovilovič, Miha, Müller, Ulrich, Nagao, Sho, Nakamura, Satoshi N., Nishi, Kotaro, Nishida, Ken, Oura, Fumiya, Pätschke, Jonas, Schlimme, Björn Sören, Sfienti, Concettina, Steger, Daniel, Steinen, Marcell, Thiel, Michaela, Wilczek, Andrzej, and Wilhelm, Luca

Subjects
Nuclear Experiment, Nuclear Theory
Abstract

For the first time the neutron-rich hydrogen isotope $\rm ^{6}H$ was produced in an electron scattering experiment in the reaction $\rm ^{7}Li(e,~e'p\pi^{+})^{6}H$ using the spectrometer facility of the A1 Collaboration at the Mainz Microtron accelerator. By measuring the triple coincidence between the scattered electron, the produced proton, and $\pi^{+}$, the missing mass spectrum of $\rm ^{6}H$ was obtained. A clear peak above $^3$H+n+n+n energy threshold was seen resulting in a ground state energy of $\rm ^{6}H$ at $2.3\pm0.5({\rm stat.})\pm0.4({\rm syst.})$ MeV with a width of $1.9\pm1.0({\rm stat.})\pm0.4({\rm syst.})$ MeV. This work challenges the understandings of multi-nucleon interactions and presents a new method to study light neutron-rich nuclei with electron scattering experiments., Comment: 6 pages, 4 figures

Published
2025

3. Nuclear density dependence of polarization transfer in quasi-elastic ${\rm A}(\vec{e},e' \vec{p})$ reactions

Author

Kolar, T., Cosyn, W., Giusti, C., Achenbach, P., Ashkenazi, A., Böhm, R., Bosnar, D., Brecelj, T., Christmann, M., Cohen, E. O., Distler, M. O., Doria, L., Eckert, P., Esser, A., Gilman, R., Geimer, J., Gülker, P., Hoek, M., Izraeli, D., Kegel, S., Klag, P., Kohl, Y., Korover, I., Lichtenstadt, J., Littich, M., Manoussos, T., Mardor, I., Markus, D., Merkel, H., Mihovilovič, M., Müller, J., Müller, U., Olivenboim, M., Pätschke, J., Paul, S. J., Piasetzky, E., Plura, S., Pochodzalla, J., Požun, M., Ron, G., Schlimme, B. S., Schoth, M., Schulz, F., Sfienti, C., Stengel, S., Spreckels, R., Štajner, S., Stephan, E., Strauch, S., Szyszka, C., Širca, S., Thiel, M., Weber, A., Wilczek, A., and Yaron, I.

Subjects
Nuclear Experiment, Nuclear Theory
Abstract

The ratio of the transverse and longitudinal component of polarization transfer to protons in the quasi-elastic $(\vec{e}, e^{\prime} \vec{p}\,)$ reaction, $P^{\prime}_x/P^{\prime}_z$, is sensitive to the proton's electromagnetic form factor ratio, $G_E/G_M$. To explore density-dependent in-medium modifications, a comparison of polarization transfer ratios involving protons from distinct nuclear shells, each with different local nuclear densities, has been proposed. In this study, we present such comparisons between four shells, $1s_{1/2}$, $1p_{3/2}$ in $^{12}\mathrm{C}$ and $1d_{3/2}$, $2s_{1/2}$ in $^{40}\mathrm{Ca}$. In an effort to account for other many-body effects that may differ between shells, we use a state-of-the-art relativistic distorted-wave impulse-approximation (RDWIA) calculation and present the double ratios, $(P^{\prime}_x/P^{\prime}_z)_{\rm Data}/(P^{\prime}_x/P^{\prime}_z)_{\rm RDWIA}$ as well as the super ratios, $\left[(P^{\prime}_x/P^{\prime}_z)_{\rm A}/(P^{\prime}_x/P^{\prime}_z)_{\rm B}\right]_{\rm Data}/\left[(P^{\prime}_x/P^{\prime}_z)_{\rm A}/(P^{\prime}_x/P^{\prime}_z)_{\rm B}\right]_{\rm RDWIA}$, for chosen shells A and B, as a function of effective local nuclear densities. We find that double ratios for individual shells show a dependence on the probed effective nuclear densities. Studying the ratios, we observed a systematic variation between pairs of higher- and lower-density shells.

Published
2023

4. Measurement of polarization transfer in the quasi-elastic $^{40}{\rm Ca}(\vec{e},e' \vec{p})$ process

Author

Kolar, T., Achenbach, P., Christmann, M., Distler, M. O., Doria, L., Eckert, P., Esser, A., Giusti, C., Geimer, J., Gülker, P., Hoek, M., Klag, P., Lichtenstadt, J., Littich, M., Manoussos, T., Markus, D., Merkel, H., Mihovilovič, M., Müller, J., Müller, U., Pätschke, J., Paul, S. J., Plura, E. Piasetzky S., Pochodzalla, J., Požun, M., Ron, G., Schlimme, B. S., Sfienti, C., Stengel, S., Stephan, E., Strauch, S., Szyszka, C., Širca, S., Thiel, M., and Wilczek, A.

Subjects
Nuclear Experiment
Abstract

Polarization transfer to a bound proton in polarized electron knock-out reactions, $\mathrm{A}(\vec{e},e^{\prime}\vec{p})$, is a powerful tool to look for in-medium modification of the bound proton. It requires comparison to calculations which consider the many-body effects accompanying the quasi-free process. We report here measured components $P_x^{\prime}$, $P_z^{\prime}$, and their ratio $P_x^{\prime}/P_z^{\prime}$, of polarization transfer to protons bound in $^{40}\mathrm{Ca}$, which is described well by the shell model and for which reliable calculations are available. While the calculations capture the essence of the data, our statistical precision allows us to observe deviations which cannot be explained by simple scaling, including by varying the proton electromagnetic form factor ratio $G_E/G_M$. We further explore the deviations of the ratio of the polarization transfer components from that of a free proton, $(P_x^{\prime}/P_z^{\prime})_{\rm A}/(P_x^{\prime}/P_z^{\prime})_{\rm H}$, and its dependence on the bound-proton virtuality.

Published
2023
Full Text
View/download PDF

5. MAMBO-V: Dynamic Side-Channel Leakage Analysis on RISC-V

Author

Wichelmann, Jan, Peredy, Christopher, Sieck, Florian, Pätschke, Anna, and Eisenbarth, Thomas

Subjects
Computer Science - Cryptography and Security
Abstract

RISC-V is an emerging technology, with applications ranging from embedded devices to high-performance servers. Therefore, more and more security-critical workloads will be conducted with code that is compiled for RISC-V. Well-known microarchitectural side-channel attacks against established platforms like x86 apply to RISC-V CPUs as well. As RISC-V does not mandate any hardware-based side-channel countermeasures, a piece of code compiled for a generic RISC-V CPU in a cloud server cannot make safe assumptions about the microarchitecture on which it is running. Existing tools for aiding software-level precautions by checking side-channel vulnerabilities on source code or x86 binaries are not compatible with RISC-V machine code. In this work, we study the requirements and goals of architecture-specific leakage analysis for RISC-V and illustrate how to achieve these goals with the help of fast and precise dynamic binary analysis. We implement all necessary building blocks for finding side-channel leakages on RISC-V, while relying on existing mature solutions when possible. Our leakage analysis builds upon the modular side-channel analysis framework Microwalk, that examines execution traces for leakage through secret-dependent memory accesses or branches. To provide suitable traces, we port the ARM dynamic binary instrumentation tool MAMBO to RISC-V. Our port named MAMBO-V can instrument arbitrary binaries which use the 64-bit general purpose instruction set. We evaluate our toolchain on several cryptographic libraries with RISC-V support and identify multiple exploitable leakages., Comment: 20 pages

Published
2023
Full Text
View/download PDF

6. Cipherfix: Mitigating Ciphertext Side-Channel Attacks in Software

Author

Wichelmann, Jan, Pätschke, Anna, Wilke, Luca, and Eisenbarth, Thomas

Subjects
Computer Science - Cryptography and Security
Abstract

Trusted execution environments (TEEs) provide an environment for running workloads in the cloud without having to trust cloud service providers, by offering additional hardware-assisted security guarantees. However, main memory encryption as a key mechanism to protect against system-level attackers trying to read the TEE's content and physical, off-chip attackers, is insufficient. The recent Cipherleaks attacks infer secret data from TEE-protected implementations by analyzing ciphertext patterns exhibited due to deterministic memory encryption. The underlying vulnerability, dubbed the ciphertext side-channel, is neither protected by state-of-the-art countermeasures like constant-time code nor by hardware fixes. Thus, in this paper, we present a software-based, drop-in solution that can harden existing binaries such that they can be safely executed under TEEs vulnerable to ciphertext side-channels, without requiring recompilation. We combine taint tracking with both static and dynamic binary instrumentation to find sensitive memory locations, and mitigate the leakage by masking secret data before it gets written to memory. This way, although the memory encryption remains deterministic, we destroy any secret-dependent patterns in encrypted memory. We show that our proof-of-concept implementation protects various constant-time implementations against ciphertext side-channels with reasonable overhead., Comment: Jan Wichelmann and Anna P\"atschke contributed equally to this work

Published
2022

7. Microwalk-CI: Practical Side-Channel Analysis for JavaScript Applications

Author

Wichelmann, Jan, Sieck, Florian, Pätschke, Anna, and Eisenbarth, Thomas

Subjects
Computer Science - Cryptography and Security, Computer Science - Software Engineering
Abstract

Secret-dependent timing behavior in cryptographic implementations has resulted in exploitable vulnerabilities, undermining their security. Over the years, numerous tools to automatically detect timing leakage or even to prove their absence have been proposed. However, a recent study at IEEE S&P 2022 showed that, while many developers are aware of one or more analysis tools, they have major difficulties integrating these into their workflow, as existing tools are tedious to use and mapping discovered leakages to their originating code segments requires expert knowledge. In addition, existing tools focus on compiled languages like C, or analyze binaries, while the industry and open-source community moved to interpreted languages, most notably JavaScript. In this work, we introduce Microwalk-CI, a novel side-channel analysis framework for easy integration into a JavaScript development workflow. First, we extend existing dynamic approaches with a new analysis algorithm, that allows efficient localization and quantification of leakages, making it suitable for use in practical development. We then present a technique for generating execution traces from JavaScript applications, which can be further analyzed with our and other algorithms originally designed for binary analysis. Finally, we discuss how Microwalk-CI can be integrated into a continuous integration (CI) pipeline for efficient and ongoing monitoring. We evaluate our analysis framework by conducting a thorough evaluation of several popular JavaScript cryptographic libraries, and uncover a number of critical leakages.

Published
2022
Full Text
View/download PDF

9. Measurement of polarization transfer in the quasi-elastic Ca40(e→,e′p→) process

Author

Kolar, T., primary, Achenbach, P., additional, Christmann, M., additional, Distler, M.O., additional, Doria, L., additional, Eckert, P., additional, Esser, A., additional, Giusti, C., additional, Geimer, J., additional, Gülker, P., additional, Hoek, M., additional, Klag, P., additional, Lichtenstadt, J., additional, Littich, M., additional, Manoussos, T., additional, Markus, D., additional, Merkel, H., additional, Mihovilovič, M., additional, Müller, J., additional, Müller, U., additional, Pätschke, J., additional, Paul, S.J., additional, Piasetzky, E., additional, Plura, S., additional, Pochodzalla, J., additional, Požun, M., additional, Ron, G., additional, Schlimme, B.S., additional, Sfienti, C., additional, Stengel, S., additional, Stephan, E., additional, Strauch, S., additional, Szyszka, C., additional, Širca, S., additional, Thiel, M., additional, and Wilczek, A., additional

Published
2023
Full Text
View/download PDF

10. Operations System vs. Operating System: Towards a Ground System Supporting Satellite Application Programming

Author

Leidig, Kai, Gaißer, Steffen, Pätschke, Susann, Schweigert, Robin, Wenzel, Sebastian, and Klinkner, Sabine

Subjects
operations system, ground system, operating system, satellite, programming
Abstract

The term operating system refers to a software component, which traditionally controls the resources and the processes of a computer, and by providing the appropriate interfaces allows for the implementation of custom user applications. This is a common definition, working very well for ordinary computer systems. Yet, what if the operating system and a corresponding application are physically separated, because the computer is within a satellite in space, while the user program is executed on ground? Then, capabilities must be created to connect both, which is of course complicated by the natural boundaries in satellite communication, for example the limited satellite contact times. Over the past decades, several systems have been developed, which are capable of managing satellite resources and the mission schedule from ground. Although this covers quite well the purpose of an operating system, other terms have evolved in this domain: operations system, ground system, mission control system, ground data handling, etc. The problem though is, those systems primarily focus on the exchange of data and satellite TM/TC, rather than the actual control process. This creates an artificial barrier between ground and space, which harms the development capabilities for ground based satellite applications. This paper introduces a novel approach for an operations system architecture, which can be considered as a ground extension of the satellite’s operating system. This approach shall not break with the existing conventions and definitions, especially in terms of operating systems, but shall introduce a new view on satellite operations. In a layered, functional software architecture, the operating system is the lowest layer between the hardware and the application. Through the definition of the appropriate interfaces in the ground system, a software architecture can be created that actively supports outsourcing parts of the satellite control process to ground. The proposed approach has great potential for various applications in satellite operations. It supports the implementation of automatic system control processes, the implementation of custom payload applications, and the integration of respective activities into the satellite schedule. As applications and operators interact with a verified schedule, and operations is thus no longer limited to low-level commanding, the approach further reduces the risk of the mission being jeopardized by human mistake.

Published
2021

Catalog

Books, media, physical & digital resources
See catalog results