What is the significance of including a "sleep" function in order to achieve a successful constant time attack?

Question

What is the significance of including a "sleep" function in order to achieve a successful constant time attack?

On the webpage , the author provides an explanation of what a constant time attack is and how to protect against it.

However, when looking at the code created by the author:

# secret.py
from time import sleep # Used to exaggerate time difference.
from sys import argv   # Used to read user input.

def is_equal(a,b):
    """Custom `==` operator"""
    # Fail if the strings aren't the right length
    if len(a) != len(b):
        return False

    for i in range(len(a)):
        # Short-circuit if the strings don't match
        if a[i] != b[i]:
            return False

        sleep(0.15) # This exaggerates it just enough for our purposes

    return True

# Hard-coded secret globals FOR DEMONSTRATIONS ONLY
secret = 'l33t'

# This is python for "If someone uses you as a script, do this"
if __name__ == '__main__':

    try:
        // The user got it right!
        if is_equal(str(argv[1]), secret):
            print('You got the secret!')

        # The user got it wrong
        else:
            print('Try again!')

    # The user forgot to enter a guess.
    except IndexError:
        print('Usage: python secret.py yourguess\n' \
             +'The secret may consist of characters in [a-z0-9] '\
             +'and is {} characters long.'.format(len(secret)))

I am confused about the necessity of adding the following line to ensure the success of the constant time attack:

sleep(0.15) # This exaggerates it just enough for our purposes

The author of the website mentions that:

this exaggerates the time it takes to evaluate the is_equal function.

After running some tests, it appears that a "sleep" function is necessary for the successful execution of this attack. What could be the reason behind needing to delay the process? Is it only used for demonstration purposes?

python security constant-time

Answer 1

Answer №1

Update 1:

Why is it necessary to exaggerate the time?

The reason for exaggerating the time is to highlight the difference in timing when two characters match versus when they don't. In this scenario, if the first character of strings a and b match, the code will pause briefly before checking the next character. If there is a mismatch at any point, the function will return immediately. This intentional delay helps demonstrate that matching characters take longer to process compared to non-matching ones.

To avoid this timing vulnerability, the is_equal function should be designed so that its response time remains consistent regardless of input.

In your provided example:

def is_equal(a,b):
    _is_equal = True

    if len(a) != len(b):
        return False

    for i in range(len(a)):
        if a[i] != b[i]:
            _is_equal = False

    return _is_equal

Alternatively, you can utilize the built-in secrets module function compare_digest() which addresses this issue.

Answer 2

Update 1:

Why is it necessary to exaggerate the time?

The reason for exaggerating the time is to highlight the difference in timing when two characters match versus when they don't. In this scenario, if the first character of strings a and b match, the code will pause briefly before checking the next character. If there is a mismatch at any point, the function will return immediately. This intentional delay helps demonstrate that matching characters take longer to process compared to non-matching ones.

To avoid this timing vulnerability, the is_equal function should be designed so that its response time remains consistent regardless of input.

In your provided example:

def is_equal(a,b):
    _is_equal = True

    if len(a) != len(b):
        return False

    for i in range(len(a)):
        if a[i] != b[i]:
            _is_equal = False

    return _is_equal

Alternatively, you can utilize the built-in secrets module function compare_digest() which addresses this issue.

Answer 3

Answer №2

When navigating through the "match" loop, there are two distinct paths that can be taken:

for i in range(len(a)):
    # Check if the strings do not match and exit if they don't
    if a[i] != b[i]:
        return False

    sleep(0.15) # Intentionally exaggerating for our purpose
    return True

If a[i] != b[i] results in True, indicating no match, the function exits.
If a[i] != b[i] results in False, indicating a match, it proceeds to Sleep(0.15) before exiting the function.

The deliberate delay of Sleep(0.15) when characters match introduces a significant time gap between these two paths. This allows for the simple use of the maximum timing of all attempts to determine the correct character of the secret. Without this intentional delay, one would need to search for statistically significant differences in matching times.

The author noted this insight as follows:

Most crucially [for the author], there is no requirement to employ advanced statistical methods to decipher the secret by evaluating each input multiple times and analyzing the timing data. It naturally takes approximately ten times longer to evaluate a matching letter than a non-matching letter.

To observe the disparity in timings with and without the sleep command, utilize debug lines.

# Uncomment the following line for debugging output
print('max {} min {}'.format(max(guess_times), min(guess_times)))

# Include this line to view the full guess_times list    
print(['{:.2f}'.format(elem) for elem in guess_times])

Answer 4

When navigating through the "match" loop, there are two distinct paths that can be taken:

for i in range(len(a)):
    # Check if the strings do not match and exit if they don't
    if a[i] != b[i]:
        return False

    sleep(0.15) # Intentionally exaggerating for our purpose
    return True

If a[i] != b[i] results in True, indicating no match, the function exits.
If a[i] != b[i] results in False, indicating a match, it proceeds to Sleep(0.15) before exiting the function.

The deliberate delay of Sleep(0.15) when characters match introduces a significant time gap between these two paths. This allows for the simple use of the maximum timing of all attempts to determine the correct character of the secret. Without this intentional delay, one would need to search for statistically significant differences in matching times.

The author noted this insight as follows:

Most crucially [for the author], there is no requirement to employ advanced statistical methods to decipher the secret by evaluating each input multiple times and analyzing the timing data. It naturally takes approximately ten times longer to evaluate a matching letter than a non-matching letter.

To observe the disparity in timings with and without the sleep command, utilize debug lines.

# Uncomment the following line for debugging output
print('max {} min {}'.format(max(guess_times), min(guess_times)))

# Include this line to view the full guess_times list    
print(['{:.2f}'.format(elem) for elem in guess_times])

What is the significance of including a "sleep" function in order to achieve a successful constant time attack?

Answer №1

Answer №2

Similar questions

My locale NUXT JavaScript files are being blocked by Content Security Policy

Invoke a Python function from JavaScript

Implementing CSRF token for the current window's location

NodeJS guide: Enabling cross-domain access for web services

Is JavaScript still running despite not displaying insecure items due to IE 8 security warning?

Error message stating that there is no property 'collection' in Firestore when using Firebase v9 modular syntax in Firebase Firestore

Button click event is not being triggered by Ajax rendering

How can I protect my jQuery script from being accessed by "FIREBUG"?

Executing a JavaScript code in a Python webdriver: A step-by-step guide

Tips on securely saving passwords using Greasemonkey

What's the best way to determine which of the two forms has been submitted in Django?

Encountered CSRF validation error while working with a Python Django backend in conjunction with React frontend using Axios for making POST requests

Exploring the capabilities of arrays within Ajax

What is the reason behind Angular not allowing users to define @Output events that begin with 'on'?

Learn how to retrieve values from a .json file in real-time and then perform comparisons with user input using Python

Flask does not provide a direct boolean value for checkboxes

Can anyone suggest a method to block the execution of Javascript commands in the console?