A new approach for rowhammer attacks
作者: Rui Qiao , Mark Seaborn
关键词: Code (cryptography) 、 Reliability (computer networking) 、 x86 、 Random access memory 、 Dram 、 Row 、 Task (project management) 、 Computer science 、 Virtual memory 、 Computer security
摘要: Rowhammer is a hardware bug identified in recent commodity DRAMs: repeated row activations can cause bit flips adjacent rows. has been recognized as both reliability and security issue. And it classic example that layered abstractions trust (in this case, virtual memory) be broken from level. Previous rowhammer attacks either rely on rarely used special instructions or complicated memory access patterns. In paper, we propose new approach for based x86 non-temporal instructions. This bypasses existing defense much less constrained more challenging task: remote attacks, i.e., triggering with existing, benign code. Moreover, extend our identify libc memset memcpy functions primitive. Our discussions protection suggest critical to understand threat able defend depth.
sci-hub.se 参考文章(4)
Bennet Yee, David Sehr, Gregory Dardyk, J. Bradley Chen, Robert Muth, Tavis Ormandy, Shiki Okasaka, Neha Narula, Nicholas Fullagar, Native Client: A Sandbox for Portable, Untrusted x86 Native Code ieee symposium on security and privacy. pp. 79- 93 ,(2009) , 10.1109/SP.2009.25
Yoongu Kim, Ross Daly, Jeremie Kim, Chris Fallin, Ji Hye Lee, Donghyuk Lee, Chris Wilkerson, Konrad Lai, Onur Mutlu, Flipping bits in memory without accessing them: an experimental study of DRAM disturbance errors international symposium on computer architecture. ,vol. 42, pp. 361- 372 ,(2014) , 10.1145/2678373.2665726
Daniel Gruss, Clémentine Maurice, Stefan Mangard, Rowhammer.js: A Remote Software-Induced Fault Attack in JavaScript international conference on detection of intrusions and malware and vulnerability assessment. pp. 300- 321 ,(2016) , 10.1007/978-3-319-40667-1_15
Zelalem Birhanu Aweke, Salessawi Ferede Yitbarek, Rui Qiao, Reetuparna Das, Matthew Hicks, Yossi Oren, Todd Austin, ANVIL: Software-Based Protection Against Next-Generation Rowhammer Attacks architectural support for programming languages and operating systems. ,vol. 51, pp. 743- 755 ,(2016) , 10.1145/2872362.2872390