关键词: 系统安全, 缓存侧信道攻击, 驱逐集, 虚拟地址, 缓存替换策略

Abstract: Cache side-channel attacks exploit the shared characteristics of computer caches, posing serious threats to target cryptographic systems across processors and virtual machines. Conflict-based cache side-channel attacks overcome the limitations imposed of privileged instructions. They achieve this by constructing a set of virtual addresses, that map to the same cache set as the target address. This method allows attackers to infer the target's cache behavior, known as the eviction set, to cause cache conflicts and ultimately obtain the target's sensitive data. Constructing eviction set has become a key technique in conflict-based cache side-channel attacks and speculative execution attacks. Firstly, an introduction to conflict-based cache side-channel attacks is provided. Secondly, eviction set construction algorithms are categorized. Thirdly, the factors influencing eviction set construction algorithms are summarized. Finally, using system design vulnerabilities is a future direction for conflict-based cache side-channel attacks. Enhancing algorithm compatibility is crucial for eviction set construction algorithms.

Key words: system security, cache side channel attack, eviction set, virtual address, cache replacement policy