ReCon: Efficient Detection, Management, and Use of Non-Speculative Information Leakage

↓ Direkt till sidans innehåll
↓ Direkt till sidans sekundära innehåll (sidomenyn)

Sökning: WFRF:(Stefanos Kaxiras) > ReCon :

Aimoniotis, PavlosUppsala universitet,Datorteknik (författare)

ReCon : Efficient Detection, Management, and Use of Non-Speculative Information Leakage

Artikel/kapitelEngelska2023

Förlag, utgivningsår, omfång ...

Association for Computing Machinery (ACM),2023
electronicrdacarrier

Nummerbeteckningar

LIBRIS-ID:oai:DiVA.org:uu-525488
https://urn.kb.se/resolve?urn=urn:nbn:se:uu:diva-525488URI
https://doi.org/10.1145/3613424.3623770DOI

Kompletterande språkuppgifter

Språk:engelska
Sammanfattning på:engelska

Ingår i deldatabas

SwePubSwePub

Klassifikation

Ämneskategori:ref swepub-contenttype
Ämneskategori:kon swepub-publicationtype

Anmärkningar

In a speculative side-channel attack, a secret is improperly accessed and then leaked by passing it to a transmitter instruction. Several proposed defenses effectively close this security hole by either delaying the secret from being loaded or propagated, or by delaying dependent transmitters (e.g., loads) from executing when fed with tainted input derived from an earlier speculative load. This results in a loss of memory-level parallelism and performance. A security definition proposed recently, in which data already leaked in non-speculative execution need not be considered secret during speculative execution, can provide a solution to the loss of performance. However, detecting and tracking non-speculative leakage carries its own cost, increasing complexity. The key insight of our work that enables us to exploit non-speculative leakage as an optimization to other secure speculation schemes is that the majority of non-speculative leakage is simply due to pointer dereferencing (or base-address indexing) - essentially what many secure speculation schemes prevent from taking place speculatively. We present ReCon that: i) efficiently detects non-speculative leakage by limiting detection to pairs of directly-dependent loads that dereference pointers (or index a base-address); and ii) piggybacks non-speculative leakage information on the coherence protocol. In ReCon, the coherence protocol remembers and propagates the knowledge of what has leaked and therefore what is safe to dereference under speculation. To demonstrate the effectiveness of ReCon, we show how two state-of-the-art secure speculation schemes, Non-speculative Data Access (NDA) and speculative Taint Tracking (STT), leverage this information to enable more memorylevel parallelism both in a single core scenario and in a multicore scenario: NDA with ReCon reduces the performance loss by 28.7% for SPEC2017, 31.5% for SPEC2006, and 46.7% for PARSEC; STT with ReCon reduces the loss by 45.1%, 39%, and 78.6%, respectively.

Ämnesord och genrebeteckningar

NATURVETENSKAP Data- och informationsvetenskap Datavetenskap hsv//swe
NATURAL SCIENCES Computer and Information Sciences Computer Sciences hsv//eng
Speculation
side-channels
load pair
non-speculative leakage

Biuppslag (personer, institutioner, konferenser, titlar ...)

Kvalsvik, Amund BerglandNorwegian Univ Sci & Technol, Trondheim, Norway. (författare)
Chen, XiaoyueUppsala universitet,Datorteknik(Swepub:uu)xiach215 (författare)
Själander, MagnusNorwegian Univ Sci & Technol, Trondheim, Norway. (författare)
Kaxiras, StefanosUppsala universitet,Datorteknik(Swepub:uu)steka984 (författare)
Uppsala universitetDatorteknik (creator_code:org_t)

Sammanhörande titlar

Ingår i:56th IEEE/ACM International Symposium on Microarchitecture, MICRO 2023: Association for Computing Machinery (ACM), s. 828-8429798400703294

Internetlänk

Hitta via bibliotek

56th IEEE/ACM International Symposium on Microarchitecture, MICRO 2023 (Sök värdpublikationen i LIBRIS)

Till lärosätets databas

Hitta mer i SwePub

Av författaren/redakt...: Aimoniotis, Pavl ...; Kvalsvik, Amund ...; Chen, Xiaoyue; Själander, Magnu ...; Kaxiras, Stefano ...

Om ämnet

NATURVETENSKAP: NATURVETENSKAP; och Data och informa ...; och Datavetenskap

Artiklar i publikationen: 56th IEEE/ACM In ...

Av lärosätet: Uppsala universitet

Sök utanför SwePub

Sök vidare i:: Google; Google Book Search; Google Scholar

Kungliga biblioteket hanterar dina personuppgifter i enlighet med EU:s dataskyddsförordning (2018), GDPR. Läs mer om hur det funkar här.
Så här hanterar KB dina uppgifter vid användning av denna tjänst.

LIBRIS.kb.se