Side-channel attacks have become a severe threat to the confidentiality of computer applications and systems. One popular type of such attacks is the microarchitectural attack, where the adversary exploits the hardware features to break the protection enforced by the operating system and steal the secrets from the program. In this article, we systematize microarchitectural side channels with a focus on attacks and defenses in cryptographic applications. We make three contributions. (1) We survey past research literature to categorize microarchitectural side-channel attacks. Since these are hardware attacks targeting software, we summarize the vulnerable implementations in software, as well as flawed designs in hardware. (2) We identify common strategies to mitigate microarchitectural attacks, from the application, OS, and hardware levels. (3) We conduct a large-scale evaluation on popular cryptographic applications in the real world and analyze the severity, practicality, and impact of side-channel vulnerabilities. This survey is expected to inspire side-channel research community to discover new attacks, and more importantly, propose new defense solutions against them.

中文翻译：

---

密码学中微架构侧通道漏洞、攻击和防御的调查

旁道攻击已成为对计算机应用程序和系统机密性的严重威胁。此类攻击的一种流行类型是微架构攻击，其中攻击者利用硬件功能来破坏操作系统强制执行的保护并从程序中窃取机密。在本文中，我们将微架构侧通道系统化，重点关注密码应用程序中的攻击和防御。我们做出三个贡献。(1) 我们调查了过去的研究文献以对微架构侧信道攻击进行分类。由于这些都是针对软件的硬件攻击，我们总结了软件中易受攻击的实现，以及硬件中的缺陷设计。(2) 我们从应用程序、操作系统和硬件级别确定减轻微架构攻击的通用策略。(3) 我们对现实世界中流行的密码学应用进行大规模评估，分析侧信道漏洞的严重性、实用性和影响。这项调查有望激发旁道研究社区发现新的攻击，更重要的是，提出针对它们的新防御解决方案。