CPU & DRAM Bugs: Attacks & Defenses

In the quest for higher performance, modern CPUs make heavy use of speculative execution. Unfortunately, speculative execution opens the possibility of side-channel attacks in which malicious parties can read the memory of co-located processes, OSes, and VMs (e.g., Meltdown, Spectre). Similarly, in the quest for higher memory capacities, modern DRAMs have drastically increased the density of memory cells on a chip. This high cell density opens the possibility of attacks that cause bit flips in DRAM (e.g., Rowhammer). A single bit flip is sufficient to lead to serious security breaches, such as privilege escalation, remote login, or factoring an RSA private key.

Unfortunately, no single silver bullet for stopping these types of attacks exists. These attacks all stem from hardware “bugs.” While fixing each particular bug is feasible, the hardware life-cycle is very long, and the fixes often come with serious performance and cost overheads. Software-based fixes offer a faster response, but also may impose significant overhead. The goal of this session is to discuss the state of the art techniques in performing such attacks and defending against them using both hardware and software.

发言人详细信息
Senior Researcher Stefan Saroiu
Security Software Engineer Christopher Ertl
Professor of Computer Science, Director, Keller Center for Innovation in Engineering Education, Princeton University Margaret Martonosi
Onur Mutlu
Senior Researcher, Networking Research Group at MSR Alec Wolman
Alec Wolman is a senior researcher is the Networking Research Group at MSR. His research interests include mobile and wireless computing, distributed systems, and Internet/web technologies. At Microsoft, he has worked on peer-to-peer systems, management tools for enterprise wireless networks, data center monitoring and fault diagnosis, and distributed systems infrastructure for data center services. His current focus is on leveraging cloud computing to improve the experience of using mobile devices.
专题:
Microsoft Research Faculty Summit
日期:
演讲者:
Stefan Saroiu, Christopher Ertl, Margaret Martonosi, Onur Mutlu, Alec Wolman
所属机构:
Princeton University

系列: Microsoft Research Faculty Summit