摘要: In this paper, we present MemShuffle, an end-to-end memory protection scheme that resists several attacks on current memory systems. Our protection scheme provides security against both side channel attacks on caches, as well as physical on-bus memory snooping, to keep memory secrets within the process that owns them. Our approach utilizes micro-architecture changes in the CPU’s Memory Management Unit (MMU) to create a secret per-page memory mapping from virtual address offsets to physical address offsets. This approach minimizes programmer effort, while incurring an average overhead of only 2.5%.
参考文章(0)