| 余发洪* **,唐志敏* ** ***.微处理器安全推测执行研究[J].高技术通讯(中文),2025,35(8):824~836 |
| 微处理器安全推测执行研究 |
| Research on the security of speculative execution in microprocessors |
| |
| DOI:10. 3772 / j. issn. 1002-0470. 2025. 08. 002 |
| 中文关键词: 微处理器; 安全; 缓存侧信道; 幽灵攻击; 熔断攻击; 瞬态执行攻击 |
| 英文关键词: microprocessor, security, cache side channel, spectre attack, meltdown attack, transient execution attack |
| 基金项目: |
| 作者 | 单位 | | 余发洪* ** | (*中国科学院计算技术研究所处理器芯片全国重点实验室北京 100190)
(**中国科学院大学北京 100049)
(***深圳理工大学算力微电子学院深圳 518107) | | 唐志敏* ** *** | |
|
| 摘要点击次数: 79 |
| 全文下载次数: 70 |
| 中文摘要: |
| 幽灵、熔断等瞬态执行攻击打破了基于微处理器的软件逻辑隔离,给信息系统安全带来了巨大挑战。针对基于软件的防御策略有很高的性能开销且需要升级所有已经存在的软件,学术界提出了很多基于硬件或者软硬件结合的防御策略,但都存在不能覆盖所有已知攻击和高性能开销等问题。本文深入研究瞬态执行攻击,分析总结其行为模式,提出并建立了一种安全推测执行模型,在保留推测执行带来的微处理器性能增益的前提下,消除了其安全隐患。基于安全推测执行模型,设计并实现了一种安全缓存(Cache),能够抵御基于Cache侧信道的瞬态执行攻击。评估结果表明,安全Cache能够达到安全设计目标。与目前最先进的瞬态执行攻击防御研究GhostMinion相比,安全Cache将安全设计带来的单核性能开销降低了19.18%,多核性能开销基本可以忽略不计。 |
| 英文摘要: |
| Transient execution attacks, exemplified by Spectre and Meltdown, have compromised the logic isolation of microprocessors, presenting substantial challenges to information system security. Software-based defense strategies entail significant performance overheads and necessitate the upgrading of all existing software. While the academic community has proposed numerous hardware-based or hybrid defense strategies, they often suffer from limitations such as incomplete coverage of known attacks and high performance overheads. This paper delves into transient execution attacks, meticulously analyzing and summarizing their behavior patterns. Subsequently, this paper proposes and establishes a secure speculative execution model aimed at mitigating their security vulnerabilities while preserving the performance benefits of speculative execution. Building upon this model, a SafeCache is meticulously designed and implemented to thwart transient execution attacks leveraging cache side channels. Evaluation results demonstrate that SafeCache effectively fulfills its security design objectives. Specifically, in single-core scenarios, SafeCache reduces the performance overhead of secure design by 19.18% compared with the state-of-the-art transient execution attack defense method GhostMinion, while maintaining negligible performance overhead in multi-core scenarios. |
|
查看全文
查看/发表评论 下载PDF阅读器 |
| 关闭 |
|
|
|
