{"id":"https://openalex.org/W3181370975","doi":"https://doi.org/10.1145/3456629","title":"A Survey of Microarchitectural Side-channel Vulnerabilities, Attacks, and Defenses in Cryptography","display_name":"A Survey of Microarchitectural Side-channel Vulnerabilities, Attacks, and Defenses in Cryptography","publication_year":2021,"publication_date":"2021-07-13","ids":{"openalex":"https://openalex.org/W3181370975","doi":"https://doi.org/10.1145/3456629","mag":"3181370975"},"language":"en","primary_location":{"id":"doi:10.1145/3456629","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3456629","pdf_url":null,"source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"},"type":"review","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://dr.ntu.edu.sg/bitstream/10356/156083/2/CSUR_Survey_plain.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5055011581","display_name":"Xiaoxuan Lou","orcid":"https://orcid.org/0000-0002-9510-1300"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":true,"raw_author_name":"Xiaoxuan Lou","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101591102","display_name":"Tianwei Zhang","orcid":"https://orcid.org/0000-0001-7335-7367"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Tianwei Zhang","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5050800692","display_name":"Jun Jiang","orcid":"https://orcid.org/0000-0002-0718-4813"},"institutions":[{"id":"https://openalex.org/I4210139661","display_name":"Two Sigma Investments (United States)","ror":"https://ror.org/04gjcva23","country_code":"US","type":"company","lineage":["https://openalex.org/I4210139661"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jun Jiang","raw_affiliation_strings":["Two Sigma Investments, LP, USA"],"affiliations":[{"raw_affiliation_string":"Two Sigma Investments, LP, USA","institution_ids":["https://openalex.org/I4210139661"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5070946957","display_name":"Yinqian Zhang","orcid":"https://orcid.org/0000-0002-7585-1075"},"institutions":[{"id":"https://openalex.org/I3045169105","display_name":"Southern University of Science and Technology","ror":"https://ror.org/049tv2d57","country_code":"CN","type":"education","lineage":["https://openalex.org/I3045169105"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yinqian Zhang","raw_affiliation_strings":["Southern University of Science and Technology, China"],"affiliations":[{"raw_affiliation_string":"Southern University of Science and Technology, China","institution_ids":["https://openalex.org/I3045169105"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5055011581"],"corresponding_institution_ids":["https://openalex.org/I172675005"],"apc_list":null,"apc_paid":null,"fwci":8.5378,"has_fulltext":true,"cited_by_count":108,"citation_normalized_percentile":{"value":0.98089364,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":100},"biblio":{"volume":"54","issue":"6","first_page":"1","last_page":"37"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8266948461532593},{"id":"https://openalex.org/keywords/side-channel-attack","display_name":"Side channel attack","score":0.7993762493133545},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7302975654602051},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.692402184009552},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.690412163734436},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.6676630973815918},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.4875642657279968},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.4496048092842102},{"id":"https://openalex.org/keywords/channel","display_name":"Channel (broadcasting)","score":0.44343802332878113},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4404076933860779},{"id":"https://openalex.org/keywords/microarchitecture","display_name":"Microarchitecture","score":0.4363241493701935},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.42397570610046387},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.23208606243133545},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.17585697770118713},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.0905856192111969},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.0860891342163086}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8266948461532593},{"id":"https://openalex.org/C49289754","wikidata":"https://www.wikidata.org/wiki/Q2267081","display_name":"Side channel attack","level":3,"score":0.7993762493133545},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7302975654602051},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.692402184009552},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.690412163734436},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.6676630973815918},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.4875642657279968},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.4496048092842102},{"id":"https://openalex.org/C127162648","wikidata":"https://www.wikidata.org/wiki/Q16858953","display_name":"Channel (broadcasting)","level":2,"score":0.44343802332878113},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4404076933860779},{"id":"https://openalex.org/C107598950","wikidata":"https://www.wikidata.org/wiki/Q259864","display_name":"Microarchitecture","level":2,"score":0.4363241493701935},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.42397570610046387},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.23208606243133545},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.17585697770118713},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.0905856192111969},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0860891342163086}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3456629","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3456629","pdf_url":null,"source":{"id":"https://openalex.org/S157921468","display_name":"ACM Computing Surveys","issn_l":"0360-0300","issn":["0360-0300","1557-7341"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Computing Surveys","raw_type":"journal-article"},{"id":"pmh:oai:dr.ntu.edu.sg:10356/156083","is_oa":true,"landing_page_url":"https://hdl.handle.net/10356/156083","pdf_url":"https://dr.ntu.edu.sg/bitstream/10356/156083/2/CSUR_Survey_plain.pdf","source":{"id":"https://openalex.org/S4306402609","display_name":"DR-NTU (Nanyang Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I172675005","host_organization_name":"Nanyang Technological University","host_organization_lineage":["https://openalex.org/I172675005"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Journal Article"}],"best_oa_location":{"id":"pmh:oai:dr.ntu.edu.sg:10356/156083","is_oa":true,"landing_page_url":"https://hdl.handle.net/10356/156083","pdf_url":"https://dr.ntu.edu.sg/bitstream/10356/156083/2/CSUR_Survey_plain.pdf","source":{"id":"https://openalex.org/S4306402609","display_name":"DR-NTU (Nanyang Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I172675005","host_organization_name":"Nanyang Technological University","host_organization_lineage":["https://openalex.org/I172675005"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Journal Article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G3034753964","display_name":null,"funder_award_id":"grant","funder_id":"https://openalex.org/F4320320671","funder_display_name":"National Research Foundation"},{"id":"https://openalex.org/G3706723593","display_name":null,"funder_award_id":"MoE AcRF Tier1 RS02/19","funder_id":"https://openalex.org/F4320320751","funder_display_name":"Ministry of Education - Singapore"},{"id":"https://openalex.org/G8665984878","display_name":null,"funder_award_id":"NRF NCR CHFA-GC1-AW03","funder_id":"https://openalex.org/F4320320671","funder_display_name":"National Research Foundation"}],"funders":[{"id":"https://openalex.org/F4320320671","display_name":"National Research Foundation","ror":"https://ror.org/05s0g1g46"},{"id":"https://openalex.org/F4320320709","display_name":"National Research Foundation Singapore","ror":"https://ror.org/03cpyc314"},{"id":"https://openalex.org/F4320320751","display_name":"Ministry of Education - Singapore","ror":"https://ror.org/01kcva023"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3181370975.pdf","grobid_xml":"https://content.openalex.org/works/W3181370975.grobid-xml"},"referenced_works_count":148,"referenced_works":["https://openalex.org/W50107694","https://openalex.org/W98341770","https://openalex.org/W123926129","https://openalex.org/W147129824","https://openalex.org/W1253017325","https://openalex.org/W1499791368","https://openalex.org/W1503814339","https://openalex.org/W1509414247","https://openalex.org/W1557855942","https://openalex.org/W1613874182","https://openalex.org/W1809974132","https://openalex.org/W1824405704","https://openalex.org/W1850432139","https://openalex.org/W1877746997","https://openalex.org/W1880212920","https://openalex.org/W1964281299","https://openalex.org/W1964389195","https://openalex.org/W1969819641","https://openalex.org/W1971605365","https://openalex.org/W1979999931","https://openalex.org/W1992291252","https://openalex.org/W1993704367","https://openalex.org/W1994429123","https://openalex.org/W1996007243","https://openalex.org/W2001759130","https://openalex.org/W2013716714","https://openalex.org/W2017371166","https://openalex.org/W2024540116","https://openalex.org/W2025539306","https://openalex.org/W2038761522","https://openalex.org/W2071929572","https://openalex.org/W2073524356","https://openalex.org/W2090996014","https://openalex.org/W2091356762","https://openalex.org/W2091995912","https://openalex.org/W2098290658","https://openalex.org/W2099317248","https://openalex.org/W2108834246","https://openalex.org/W2111160280","https://openalex.org/W2115200566","https://openalex.org/W2126132644","https://openalex.org/W2131202839","https://openalex.org/W2140256428","https://openalex.org/W2142799720","https://openalex.org/W2143835304","https://openalex.org/W2146573211","https://openalex.org/W2150620897","https://openalex.org/W2153810551","https://openalex.org/W2157116240","https://openalex.org/W2159520802","https://openalex.org/W2159840470","https://openalex.org/W2171667830","https://openalex.org/W2171863291","https://openalex.org/W2172060328","https://openalex.org/W2255955965","https://openalex.org/W2293441536","https://openalex.org/W2294921903","https://openalex.org/W2302098303","https://openalex.org/W2317788992","https://openalex.org/W2337480911","https://openalex.org/W2350778671","https://openalex.org/W2402811135","https://openalex.org/W2404948481","https://openalex.org/W2412886904","https://openalex.org/W2417516518","https://openalex.org/W2473598730","https://openalex.org/W2484027757","https://openalex.org/W2489077495","https://openalex.org/W2522718524","https://openalex.org/W2529582363","https://openalex.org/W2538131460","https://openalex.org/W2540422252","https://openalex.org/W2544328905","https://openalex.org/W2561856604","https://openalex.org/W2562036180","https://openalex.org/W2580290178","https://openalex.org/W2586555532","https://openalex.org/W2594560662","https://openalex.org/W2595350342","https://openalex.org/W2599829375","https://openalex.org/W2604789199","https://openalex.org/W2606774910","https://openalex.org/W2611887307","https://openalex.org/W2612997195","https://openalex.org/W2613970414","https://openalex.org/W2614475470","https://openalex.org/W2625555681","https://openalex.org/W2735733036","https://openalex.org/W2741866430","https://openalex.org/W2745299473","https://openalex.org/W2765255210","https://openalex.org/W2765784230","https://openalex.org/W2765820137","https://openalex.org/W2769061097","https://openalex.org/W2791034507","https://openalex.org/W2792874054","https://openalex.org/W2794847599","https://openalex.org/W2795231660","https://openalex.org/W2803447634","https://openalex.org/W2803900647","https://openalex.org/W2804883849","https://openalex.org/W2807459027","https://openalex.org/W2807551428","https://openalex.org/W2810584084","https://openalex.org/W2811408275","https://openalex.org/W2885297972","https://openalex.org/W2890909432","https://openalex.org/W2891653310","https://openalex.org/W2891854691","https://openalex.org/W2897622948","https://openalex.org/W2899703500","https://openalex.org/W2900370870","https://openalex.org/W2903035991","https://openalex.org/W2904129921","https://openalex.org/W2905380323","https://openalex.org/W2907549405","https://openalex.org/W2911842201","https://openalex.org/W2911936283","https://openalex.org/W2912180625","https://openalex.org/W2939057911","https://openalex.org/W2952265249","https://openalex.org/W2963047853","https://openalex.org/W2963311060","https://openalex.org/W2978325751","https://openalex.org/W2982848142","https://openalex.org/W2988496150","https://openalex.org/W2989566108","https://openalex.org/W2991055900","https://openalex.org/W3007127761","https://openalex.org/W3007346474","https://openalex.org/W3008872115","https://openalex.org/W3013198644","https://openalex.org/W3015685940","https://openalex.org/W3016511751","https://openalex.org/W3033697620","https://openalex.org/W3036003802","https://openalex.org/W3036796579","https://openalex.org/W3098582260","https://openalex.org/W3100675173","https://openalex.org/W3101072679","https://openalex.org/W4212949137","https://openalex.org/W4230984038","https://openalex.org/W4232836212","https://openalex.org/W4233145884","https://openalex.org/W4240862739","https://openalex.org/W4244153179","https://openalex.org/W4247198503","https://openalex.org/W4301329292"],"related_works":["https://openalex.org/W4379116144","https://openalex.org/W2888014022","https://openalex.org/W2887442533","https://openalex.org/W2034199088","https://openalex.org/W1551379303","https://openalex.org/W2085319386","https://openalex.org/W2904814116","https://openalex.org/W2157301192","https://openalex.org/W4366150264","https://openalex.org/W2076205949"],"abstract_inverted_index":{"Side-channel":[0],"attacks":[1,20,60,85],"have":[2],"become":[3],"a":[4,57,121],"severe":[5],"threat":[6],"to":[7,32,76,107,146,151],"the":[8,22,26,29,34,38,43,46,90,112,129,134],"confidentiality":[9],"of":[10,18,139],"computer":[11],"applications":[12,127],"and":[13,41,61,115,132,137,155],"systems.":[14],"One":[15],"popular":[16,125],"type":[17],"such":[19],"is":[21,144],"microarchitectural":[23,53,78,109],"attack,":[24],"where":[25],"adversary":[27],"exploits":[28],"hardware":[30,84,116],"features":[31],"break":[33],"protection":[35],"enforced":[36],"by":[37],"operating":[39],"system":[40],"steal":[42],"secrets":[44],"from":[45,111],"program.":[47],"In":[48],"this":[49],"article,":[50],"we":[51,88],"systematize":[52],"side":[54],"channels":[55],"with":[56],"focus":[58],"on":[59,124],"defenses":[62],"in":[63,93,100,128],"cryptographic":[64,126],"applications.":[65],"We":[66,71,103,119],"make":[67],"three":[68],"contributions.":[69],"(1)":[70],"survey":[72,143],"past":[73],"research":[74,149],"literature":[75],"categorize":[77],"side-channel":[79,140,148],"attacks.":[80],"Since":[81],"these":[82],"are":[83],"targeting":[86],"software,":[87,94],"summarize":[89],"vulnerable":[91],"implementations":[92],"as":[95,97],"well":[96],"flawed":[98],"designs":[99],"hardware.":[101],"(2)":[102],"identify":[104],"common":[105],"strategies":[106],"mitigate":[108],"attacks,":[110,154],"application,":[113],"OS,":[114],"levels.":[117],"(3)":[118],"conduct":[120],"large-scale":[122],"evaluation":[123],"real":[130],"world":[131],"analyze":[133],"severity,":[135],"practicality,":[136],"impact":[138],"vulnerabilities.":[141],"This":[142],"expected":[145],"inspire":[147],"community":[150],"discover":[152],"new":[153,159],"more":[156],"importantly,":[157],"propose":[158],"defense":[160],"solutions":[161],"against":[162],"them.":[163]},"counts_by_year":[{"year":2026,"cited_by_count":9},{"year":2025,"cited_by_count":38},{"year":2024,"cited_by_count":25},{"year":2023,"cited_by_count":19},{"year":2022,"cited_by_count":13},{"year":2021,"cited_by_count":4}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}