Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lei Zhao, Youtao Zhang, Jun Yang

Published bySantiago Ayala Modified over 5 years ago

Similar presentations

Presentation on theme: "Lei Zhao, Youtao Zhang, Jun Yang"— Presentation transcript:

1 Lei Zhao, Youtao Zhang, Jun Yang
Mitigating Shift-Based Covert-Channel Attacks in Racetrack Last Level Caches Lei Zhao, Youtao Zhang, Jun Yang Department of Computer Science University of Pittsburgh

2 Outline Racetrack Memory Timing Attacks Mitigations Experiment Setup
Evaluation

3 Outline Racetrack Memory Timing Attacks Mitigations Experiment Setup
Evaluation

4 Racetrack Memory Multiple bits stored on the track
Adjacent bits share the same Read/Write Port Read/Write Port Shift Port BL RL WL SWL SWL SL Shift Port 8/28/20198/28/2019

5 Head Management Policy
Lazy policy Leave the head at where it is after each access Better performance Vulnerable to shift covert channels Eager policy Move the head back to a fixed position after each access Poor performance No shift covert channels 8/28/20198/28/2019

6 Outline Racetrack Memory Timing Attacks Mitigations Experiment Setup
Evaluation

7 Timing Attacks Side Channel Attack Covert Channel Attack
Victim leaks information unintendedly to attack through timing channels Covert Channel Attack Malicious threads transfer information that is not allowed through timing channels 8/28/20198/28/2019

8 Miss Based Attack Main Memory The cache is filled with receiver’s data
Set 1 Set 2 Set n Way 1 Sender flush the cache with its own data sender Way 2 receiver Way m Receiver probe the cache to see whether its data is still there Tmem Main Memory 8/28/20198/28/2019

9 Shift Based Attack The heads are at random positions
sender receiver The heads are at random positions Set 1 Set 2 Set n Way 1 Sender moves the heads to its data Way 2 Receiver probe its data to check shift latency Way m 8/28/20198/28/2019

10 Shift Based Attack 1 sender receiver sender receiver
sender receiver sender receiver 8/28/20198/28/2019

11 Outline Timing Attacks Racetrack Memory Mitigations Experiment Setup
Evaluation

12 Naïve Method Eager Head Management Policy Pros Cons
Move head back to a fixed position after each access Pros eliminate shift covert channel Simple implementation Cons Cannot exploit data locality, poor performance 8/28/20198/28/2019

13 Security Level-Aware Approach
L: security level (00: lowest, 11: highest) R: recency information (000: least recently used) Reset to the most recently used cache line of the lowest security thread Tag L R Data 00 001 sender receiver others 10 110 10 011 > > Security Level 01 000 00 010 01 111 01 100 00 011 8/28/20198/28/2019

14 Epoch-based Approach Within each epoch, reset head to the hottest position in previous epoch Change the default position only at the beginning of an epoch Epoch 1 Default Position Epoch 2 Default Position 8/28/20198/28/2019

15 Epoch-based Approach Interval Bit Rate 50M 39.3bps 100M 19.9bps 200M 9.9bps At 200M interval, shift covert channel achieves the same bit rate with miss based covert channel (9.9bps) 8/28/20198/28/2019

16 Outline Timing Attacks Racetrack Memory Mitigations Experiment Setup
Evaluation

17 Experiment Setup We model a four core CMP with Gem5
Choose both memory intensive and non-intensive benchmarks from SPEC 2006 We evaluate four schemes: Baseline: Leave the head at where it is, no cover channel protection Eager: always reset head to a fixed position SL: security level aware protection Epoch: change default head position only at beginning of epoches 8/28/20198/28/2019

18 Experiment Setup Simulator Configuration Parameter Value Processor
Alpha ISA, 4 cores, 8-way OoO core L1 Cache 4-way, 32 KB, 2 cycles L2 Cache 16-way, 32 MB, R/W/S: 24/24/4 cycles Memory DDR3 800MHz, tRAS=35ns, tRCD=13ns, tRP=13ns, tCL=13ns, tWR=15ns 8/28/20198/28/2019

19 Outline Timing Attacks Racetrack Memory Mitigations Experiment Setup
Evaluation

20 Performance Both SL and Epoch outperform Eager
On average Epoch even outperforms Baseline 8/28/20198/28/2019

21 Individual Thread IPC for Epoch
The lower security level thread has better speedup 8/28/20198/28/2019

22 Conclusion We are the first to elaborate the existence of a new LLC covert channel in RM Our security level aware scheme can eliminate this covert channel with a better performance than the naïve approach Our epoch scheme reduces the newly discovered covert channel’s information leakage rate by up to 260 times with modest performance overhead 8/28/20198/28/2019

Download ppt "Lei Zhao, Youtao Zhang, Jun Yang"

Similar presentations

Bypass and Insertion Algorithms for Exclusive Last-level Caches

Bypass and Insertion Algorithms for Exclusive Last-level Caches
A Performance Comparison of DRAM Memory System Optimizations for SMT Processors Zhichun ZhuZhao Zhang ECE Department Univ. Illinois at ChicagoIowa State.

A Performance Comparison of DRAM Memory System Optimizations for SMT Processors Zhichun ZhuZhao Zhang ECE Department Univ. Illinois at ChicagoIowa State.
Dynamic Thread Assignment on Heterogeneous Multiprocessor Architectures Pree Thiengburanathum Advanced computer architecture Oct 24, 2007 1.

Dynamic Thread Assignment on Heterogeneous Multiprocessor Architectures Pree Thiengburanathum Advanced computer architecture Oct 24,
1 A Hybrid Adaptive Feedback Based Prefetcher Santhosh Verma, David Koppelman and Lu Peng Louisiana State University.

1 A Hybrid Adaptive Feedback Based Prefetcher Santhosh Verma, David Koppelman and Lu Peng Louisiana State University.
LEVERAGING ACCESS LOCALITY FOR THE EFFICIENT USE OF MULTIBIT ERROR-CORRECTING CODES IN L2 CACHE By Hongbin Sun, Nanning Zheng, and Tong Zhang Joseph Schneider.

LEVERAGING ACCESS LOCALITY FOR THE EFFICIENT USE OF MULTIBIT ERROR-CORRECTING CODES IN L2 CACHE By Hongbin Sun, Nanning Zheng, and Tong Zhang Joseph Schneider.
Thread Criticality Predictors for Dynamic Performance, Power, and Resource Management in Chip Multiprocessors Abhishek Bhattacharjee Margaret Martonosi.

Thread Criticality Predictors for Dynamic Performance, Power, and Resource Management in Chip Multiprocessors Abhishek Bhattacharjee Margaret Martonosi.
Practical Caches COMP25212 cache 3. Learning Objectives To understand: –Additional Control Bits in Cache Lines –Cache Line Size Tradeoffs –Separate I&D.

Practical Caches COMP25212 cache 3. Learning Objectives To understand: –Additional Control Bits in Cache Lines –Cache Line Size Tradeoffs –Separate I&D.
1 Line Distillation: Increasing Cache Capacity by Filtering Unused Words in Cache Lines Moinuddin K. Qureshi M. Aater Suleman Yale N. Patt HPCA 2007.

1 Line Distillation: Increasing Cache Capacity by Filtering Unused Words in Cache Lines Moinuddin K. Qureshi M. Aater Suleman Yale N. Patt HPCA 2007.
4/17/20151 Improving Memory Bank-Level Parallelism in the Presence of Prefetching Chang Joo Lee Veynu Narasiman Onur Mutlu* Yale N. Patt Electrical and.

4/17/20151 Improving Memory Bank-Level Parallelism in the Presence of Prefetching Chang Joo Lee Veynu Narasiman Onur Mutlu* Yale N. Patt Electrical and.
Exploiting Spatial Locality in Data Caches using Spatial Footprints Sanjeev Kumar, Princeton University Christopher Wilkerson, MRL, Intel.

Exploiting Spatial Locality in Data Caches using Spatial Footprints Sanjeev Kumar, Princeton University Christopher Wilkerson, MRL, Intel.
International Symposium on Microarchitecture Fine-grained Power Budgeting to Improve Write Throughput of MLC PCM 1 Lei Jiang, 2 Youtao Zhang, 2 Bruce R.

International Symposium on Microarchitecture Fine-grained Power Budgeting to Improve Write Throughput of MLC PCM 1 Lei Jiang, 2 Youtao Zhang, 2 Bruce R.
1 Improving Hash Join Performance through Prefetching _________________________________________________By SHIMIN CHEN Intel Research Pittsburgh ANASTASSIA.

1 Improving Hash Join Performance through Prefetching _________________________________________________By SHIMIN CHEN Intel Research Pittsburgh ANASTASSIA.
1 Balanced Cache:Reducing Conflict Misses of Direct-Mapped Caches through Programmable Decoders ISCA 2006,IEEE. By Chuanjun Zhang Speaker: WeiZeng.

1 Balanced Cache:Reducing Conflict Misses of Direct-Mapped Caches through Programmable Decoders ISCA 2006,IEEE. By Chuanjun Zhang Speaker: WeiZeng.
Adaptive Cache Compression for High-Performance Processors Alaa R. Alameldeen and David A.Wood Computer Sciences Department, University of Wisconsin- Madison.

Adaptive Cache Compression for High-Performance Processors Alaa R. Alameldeen and David A.Wood Computer Sciences Department, University of Wisconsin- Madison.
Base-Delta-Immediate Compression: Practical Data Compression for On-Chip Caches Gennady Pekhimenko Vivek Seshadri Onur Mutlu, Todd C. Mowry Phillip B.

Base-Delta-Immediate Compression: Practical Data Compression for On-Chip Caches Gennady Pekhimenko Vivek Seshadri Onur Mutlu, Todd C. Mowry Phillip B.
Defining Anomalous Behavior for Phase Change Memory

Defining Anomalous Behavior for Phase Change Memory
A Bandwidth-aware Memory-subsystem Resource Management using Non-invasive Resource Profilers for Large CMP Systems Dimitris Kaseridis, Jeffery Stuecheli,

A Bandwidth-aware Memory-subsystem Resource Management using Non-invasive Resource Profilers for Large CMP Systems Dimitris Kaseridis, Jeffery Stuecheli,
A Low-Cost Memory Remapping Scheme for Address Bus Protection Lan Gao *, Jun Yang §, Marek Chrobak *, Youtao Zhang §, San Nguyen *, Hsien-Hsin S. Lee ¶

A Low-Cost Memory Remapping Scheme for Address Bus Protection Lan Gao *, Jun Yang §, Marek Chrobak *, Youtao Zhang §, San Nguyen *, Hsien-Hsin S. Lee ¶
Achieving Non-Inclusive Cache Performance with Inclusive Caches Temporal Locality Aware (TLA) Cache Management Policies Aamer Jaleel,

Achieving Non-Inclusive Cache Performance with Inclusive Caches Temporal Locality Aware (TLA) Cache Management Policies Aamer Jaleel,
1 Reducing DRAM Latencies with an Integrated Memory Hierarchy Design Authors Wei-fen Lin and Steven K. Reinhardt, University of Michigan Doug Burger, University.

1 Reducing DRAM Latencies with an Integrated Memory Hierarchy Design Authors Wei-fen Lin and Steven K. Reinhardt, University of Michigan Doug Burger, University.

Similar presentations

Ads by Google