Projects per year
Abstract
Out-of-order speculation, a technique ubiquitous since the early 1990s, remains a fundamental security flaw. Via attacks such as Spectre and Meltdown, an attacker can trick a victim, in an otherwise entirely correct program, into leaking its secrets through the effects of misspeculated execution, in a way that is entirely invisible to the programmer’s model. This has serious implications for application sandboxing and inter-process communication.
Designing efficient mitigations that preserve the performance of out-of-order execution has been a challenge. The speculation-hiding techniques in the literature have been shown to not close such channels comprehensively, allowing adversaries to redesign attacks. Strong, precise guarantees are necessary, but mitigations must achieve high performance to be adopted. We present Strictness Ordering, a new constraint system that shows how we can comprehensively eliminate transient side channel attacks, while still allowing complex speculation and data forwarding between speculative instructions. We then present GhostMinion, a cache modification built using a variety of new techniques designed to provide Strictness Order at only 2.5% overhead.
Designing efficient mitigations that preserve the performance of out-of-order execution has been a challenge. The speculation-hiding techniques in the literature have been shown to not close such channels comprehensively, allowing adversaries to redesign attacks. Strong, precise guarantees are necessary, but mitigations must achieve high performance to be adopted. We present Strictness Ordering, a new constraint system that shows how we can comprehensively eliminate transient side channel attacks, while still allowing complex speculation and data forwarding between speculative instructions. We then present GhostMinion, a cache modification built using a variety of new techniques designed to provide Strictness Order at only 2.5% overhead.
| Original language | English |
|---|---|
| Title of host publication | MICRO-54: 54th Annual IEEE/ACM International Symposium on Microarchitecture |
| Place of Publication | New York, NY, United States |
| Publisher | ACM Association for Computing Machinery |
| Pages | 592-606 |
| Number of pages | 15 |
| ISBN (Electronic) | 9781450385572 |
| DOIs | |
| Publication status | Published - 17 Oct 2021 |
| Event | 54th IEEE/ACM International Symposium on Microarchitecture - Online, Athens, Greece Duration: 18 Oct 2021 → 22 Oct 2022 https://www.microarch.org/micro54/index.php |
Conference
| Conference | 54th IEEE/ACM International Symposium on Microarchitecture |
|---|---|
| Abbreviated title | MICRO 2021 |
| Country/Territory | Greece |
| City | Athens |
| Period | 18/10/21 → 22/10/22 |
| Internet address |
Keywords / Materials (for Non-textual outputs)
- Spectre
- microarchitectural security
- caches
Fingerprint
Dive into the research topics of 'GhostMinion: A Strictness-Ordered Cache System for Spectre Mitigation'. Together they form a unique fingerprint.Projects
- 1 Finished
-
Dijkstra's Pipe: Timing-Secure Processors by Design
Nagarajan, V. (Principal Investigator), Ainsworth, S. (Co-investigator), Aspinall, D. (Co-investigator) & Grosser, T. (Co-investigator)
1/07/21 → 30/06/24
Project: Research