@inproceedings{9ccb793cf72d4fb782a60523ed442628,
title = "The Finger in the Power: How to Fingerprint PCs by Monitoring Their Power Consumption",
abstract = "Power analysis has long been used to tell apart different instructions running on the same machine. In this work, we show that it is also possible to use power consumption to tell apart different machines running the same instructions, even if these machines have entirely identical hardware and software configurations, and even if the power consumption measurements are carried out using low-rate software-based methods. We collected an extended dataset of power consumption traces from 291 desktop and server systems, spanning multiple processor generations and vendors (Intel and AMD). After analyzing them, we discovered that profiling the power consumption of individual assembly instructions makes it possible to create a fingerprinting agent that can identify individual machines with high accuracy. Our classifier approaches its peak accuracy after less than 10 instructions, meaning that the fingerprint can take a very short time to capture. We analyzed the stability of the fingerprint over time and discovered that, while it remains relatively stable, it is significantly affected by temperature changes. We also carried out a proof-of-concept evaluation using portable WebAssembly code, showing that our method can still be applied, albeit at a reduced accuracy, without using native instructions for the profiling step. Our method depends on the ability to measure power, which is currently restricted to high-privileged “ring 0” code on modern PCs. This limits the current use of our method to defense-only settings, such as strengthening authentication or anti-counterfeiting. Our tools and datasets are publicly released as an open-source repository. Our work highlights the importance of protecting power consumption measurements from unauthorized access.",
keywords = "Fingerprinting, PUF, Side Channel, WebAssembly",
author = "Marina Botvinnik and Tomer Laor and Thomas Rokicki and Cl{\'e}mentine Maurice and Yossi Oren",
note = "Publisher Copyright: {\textcopyright} 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 20th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment, DIMVA 2023 ; Conference date: 12-07-2023 Through 14-07-2023",
year = "2023",
month = jan,
day = "1",
doi = "10.1007/978-3-031-35504-2_2",
language = "American English",
isbn = "9783031355035",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Science and Business Media Deutschland GmbH",
pages = "24--45",
editor = "Daniel Gruss and Federico Maggi and Mathias Fischer and Michele Carminati",
booktitle = "Detection of Intrusions and Malware, and Vulnerability Assessment - 20th International Conference, DIMVA 2023, Proceedings",
address = "Germany",
}