Presentation is loading. Please wait.

Presentation is loading. Please wait.

Analyzing Performance Vulnerability due to Resource Denial-Of-Service Attack on Chip Multiprocessors Dong Hyuk WooGeorgia Tech Hsien-Hsin “Sean” LeeGeorgia.

Published byAlberta Laureen Rose Modified over 9 years ago

Similar presentations

Presentation on theme: "Analyzing Performance Vulnerability due to Resource Denial-Of-Service Attack on Chip Multiprocessors Dong Hyuk WooGeorgia Tech Hsien-Hsin “Sean” LeeGeorgia."— Presentation transcript:

1 Analyzing Performance Vulnerability due to Resource Denial-Of-Service Attack on Chip Multiprocessors Dong Hyuk WooGeorgia Tech Hsien-Hsin “Sean” LeeGeorgia Tech

2 2 Cores are hungry.. “Yeah, I’m still hungry..”

3 3 Cores are hungry.. More bus bandwidth? –Power.. –Manufacturing cost.. –Routing complexity.. –Signal integrity.. –Pin counts.. More cache space? –Access latency.. –Fixed power budget.. –Fixed area budget..

4 4 Competition is intensive.. “Mommy, I’m also hungry!”

5 5 What if one core is malicious? “Stay away from my food..”

6 6 Type 1: Attack BSB Bandwidth! Generate L1 D$ misses as frequently as possible! –Constantly load data with a stride size of 64B (line size) –Memory footprint: 2 x (L1 D$ size) Normal Core L1 I$ L1 D$ Malicious Core L1 I$ L1 D$ Shared L2$

7 7 Type 2: Attack the L2 Cache! Generate L1 D$ misses as frequently as possible! And occupy entire L2$ space! –Constantly load data with a stride size of 64B (line size) –Memory footprint: (L2$ size) Note that this attack also saturates BSB bandwidth!

8 8 Type 3: Attack FSB Bandwidth! Generate L2$ misses as frequently as possible! And occupy entire L2$ space! –Constantly load data with a stride size of 64B (line size) –Memory footprint: 2 x (L2$ size) Note that this attack is also expected to –saturate BSB bandwidth! –occupy large space of the L2 cache!

9 9 Type 4: LRU/Inclusion Property Attack Variant of the attack against the L2 cache LRU –A common replacement algorithm Inclusion property –Preferred for efficient coherent protocol implementation Normal core accesses shared resources more frequently. set way

10 10 To be more aggressive.. Class II –Attacks using Locked Atomic Operation Bus locking operations –To implement Read-Modify-Write instruction Class III –Distributed Denial-of-Service Attack What would happen if the number of malicious threads increases?

11 11 Simulation SESC simulator SPEC2006 benchmark Number of Cores4 Issue width3 L1 I$2-way set associative 32KB cache with 64B line (1 cycle hit latency) L1 D$ 2-way set associative 32KB cache with 64B line (1 cycle hit latency) 8-entry MSHR BSB data bus B/W64 GBps (2GHz * 256 bits) L2$ 8-way set associative 2MB cache with 64B line (14 cycle hit latency) Shared MSHR FSB bandwidth16 GBps DRAM latency100 ns

12 12 Vulnerability due to DoS Attack Normal vs.

13 13 Vulnerability due to DoS Attack High L1 miss rate High L2 miss rate

14 14 Vulnerability due to DDoS Attack Normal vs. Normal

15 15 Vulnerability due to DDoS Attack

16 16 Suggested Solutions OS level solution –Policy based eviction –Isolating voracious applications by process scheduling Adaptive hardware solution –Dynamic Miss Status Handler Register (DMSHR) –Dedicated management core in many-core era

17 17 DMSHR Entry 0 Entry 1 Entry 2 Entry 3 Entry 4 Entry 5 Entry 6 Entry 7 MSHR full Compare Counter MSHR full Decision from monitoring functionality

18 18 Conclusion and Future Work Shared resources in CMPs are vulnerable to (Distributed) Denial-of-Service Attacks. –Performance degradation up to 91% DoS vulnerability in future many-core architecture will be more interesting. –Embedded ring architecture Distributed arbitration –Network-on-Chip A large number of buffers are used in cores and routers.

19 19 Q&A Grad students are also hungry.. Please feed them well.. Otherwise, you might face Denial-of-??? soon..

20 Thank you. http://arch.ece.gatech.edu

21 21 Difference from fairness work They are only interested in the capacity issue They might be even more vulnerable.. –Partitioning based on IPC Miss rates –They may result in a guarantee of a large space to the malicious thread.

22 22 Difference between CMPs and SMPs Degree of sharing –More frequent access to shared resources in CMPs Sensitivity of shared resources –DRAM (shared resource of SMPs) >> L2$ (that of CMPs) Different eviction policies –OS managed eviction vs. hardware managed eviction

23 23 Difference between CMPs and SMTs An SMT is more tightly-coupled shared architecture. –More vulnerable to the attack Grunwald and Ghiasi, MICRO-35 –Malicious execution unit occupation –Flushing the pipeline –Flushing the trace cache –Lower-level shared resources are ignored.

Download ppt "Analyzing Performance Vulnerability due to Resource Denial-Of-Service Attack on Chip Multiprocessors Dong Hyuk WooGeorgia Tech Hsien-Hsin “Sean” LeeGeorgia."

Similar presentations

Learning Cache Models by Measurements Jan Reineke joint work with Andreas Abel Uppsala University December 20, 2012.

Learning Cache Models by Measurements Jan Reineke joint work with Andreas Abel Uppsala University December 20, 2012.
A Performance Comparison of DRAM Memory System Optimizations for SMT Processors Zhichun ZhuZhao Zhang ECE Department Univ. Illinois at ChicagoIowa State.

A Performance Comparison of DRAM Memory System Optimizations for SMT Processors Zhichun ZhuZhao Zhang ECE Department Univ. Illinois at ChicagoIowa State.
Jaewoong Sim Alaa R. Alameldeen Zeshan Chishti Chris Wilkerson Hyesoon Kim MICRO-47 | December 2014.

Jaewoong Sim Alaa R. Alameldeen Zeshan Chishti Chris Wilkerson Hyesoon Kim MICRO-47 | December 2014.
Morgan Kaufmann Publishers Large and Fast: Exploiting Memory Hierarchy

Morgan Kaufmann Publishers Large and Fast: Exploiting Memory Hierarchy
Application-Aware Memory Channel Partitioning † Sai Prashanth Muralidhara § Lavanya Subramanian † † Onur Mutlu † Mahmut Kandemir § ‡ Thomas Moscibroda.

Application-Aware Memory Channel Partitioning † Sai Prashanth Muralidhara § Lavanya Subramanian † † Onur Mutlu † Mahmut Kandemir § ‡ Thomas Moscibroda.
1 A Hybrid Adaptive Feedback Based Prefetcher Santhosh Verma, David Koppelman and Lu Peng Louisiana State University.

1 A Hybrid Adaptive Feedback Based Prefetcher Santhosh Verma, David Koppelman and Lu Peng Louisiana State University.
1 Lecture 17: Large Cache Design Papers: Managing Distributed, Shared L2 Caches through OS-Level Page Allocation, Cho and Jin, MICRO’06 Co-Operative Caching.

1 Lecture 17: Large Cache Design Papers: Managing Distributed, Shared L2 Caches through OS-Level Page Allocation, Cho and Jin, MICRO’06 Co-Operative Caching.
Multi-Level Caches Vittorio Zaccaria. Preview What you have seen: Data organization, Associativity, Cache size Policies -- how to manage the data once.

Multi-Level Caches Vittorio Zaccaria. Preview What you have seen: Data organization, Associativity, Cache size Policies -- how to manage the data once.
Performance of Multithreaded Chip Multiprocessors and Implications for Operating System Design Hikmet Aras 2006720612.

Performance of Multithreaded Chip Multiprocessors and Implications for Operating System Design Hikmet Aras
1 Memory Performance and Scalability of Intel’s and AMD’s Dual-Core Processors: A Case Study Lu Peng 1, Jih-Kwon Peir 2, Tribuvan K. Prakash 1, Yen-Kuang.

1 Memory Performance and Scalability of Intel’s and AMD’s Dual-Core Processors: A Case Study Lu Peng 1, Jih-Kwon Peir 2, Tribuvan K. Prakash 1, Yen-Kuang.
High Performing Cache Hierarchies for Server Workloads

High Performing Cache Hierarchies for Server Workloads
AMD OPTERON ARCHITECTURE Omar Aragon Abdel Salam Sayyad This presentation is missing the references used.

AMD OPTERON ARCHITECTURE Omar Aragon Abdel Salam Sayyad This presentation is missing the references used.
CMSC 611: Advanced Computer Architecture Cache Some material adapted from Mohamed Younis, UMBC CMSC 611 Spr 2003 course slides Some material adapted from.

CMSC 611: Advanced Computer Architecture Cache Some material adapted from Mohamed Younis, UMBC CMSC 611 Spr 2003 course slides Some material adapted from.
FLEXclusion: Balancing Cache Capacity and On-chip Bandwidth via Flexible Exclusion Jaewoong Sim Jaekyu Lee Moinuddin K. Qureshi Hyesoon Kim.

FLEXclusion: Balancing Cache Capacity and On-chip Bandwidth via Flexible Exclusion Jaewoong Sim Jaekyu Lee Moinuddin K. Qureshi Hyesoon Kim.
1 Hardware Support for Isolation Krste Asanovic U.C. Berkeley MURI “DHOSA” Site Visit April 28, 2011.

1 Hardware Support for Isolation Krste Asanovic U.C. Berkeley MURI “DHOSA” Site Visit April 28, 2011.
Thread Criticality Predictors for Dynamic Performance, Power, and Resource Management in Chip Multiprocessors Abhishek Bhattacharjee Margaret Martonosi.

Thread Criticality Predictors for Dynamic Performance, Power, and Resource Management in Chip Multiprocessors Abhishek Bhattacharjee Margaret Martonosi.
Our approach! 6.9% Perfect L2 cache (hit rate 100% ) 1MB L2 cache Cholesky 47% speedup BASE: All cores are used to execute the application-threads. PB-GS(PB-LS)

Our approach! 6.9% Perfect L2 cache (hit rate 100% ) 1MB L2 cache Cholesky 47% speedup BASE: All cores are used to execute the application-threads. PB-GS(PB-LS)
Virtual Exclusion: An Architectural Approach to Reducing Leakage Energy in Multiprocessor Systems Mrinmoy Ghosh Hsien-Hsin S. Lee School of Electrical.

Virtual Exclusion: An Architectural Approach to Reducing Leakage Energy in Multiprocessor Systems Mrinmoy Ghosh Hsien-Hsin S. Lee School of Electrical.
4/17/20151 Improving Memory Bank-Level Parallelism in the Presence of Prefetching Chang Joo Lee Veynu Narasiman Onur Mutlu* Yale N. Patt Electrical and.

4/17/20151 Improving Memory Bank-Level Parallelism in the Presence of Prefetching Chang Joo Lee Veynu Narasiman Onur Mutlu* Yale N. Patt Electrical and.
Amoeba-Cache Adaptive Blocks for Eliminating Waste in the Memory Hierarchy Snehasish Kumar Arrvindh Shriraman Eric Matthews Lesley Shannon Hongzhou Zhao.

Amoeba-Cache Adaptive Blocks for Eliminating Waste in the Memory Hierarchy Snehasish Kumar Arrvindh Shriraman Eric Matthews Lesley Shannon Hongzhou Zhao.

Similar presentations

Ads by Google