Abstract
Transient execution attacks are critical security threats since those attacks exploit speculative execution which is an essential architectural solution that can improve the performance of out-of-order processors significantly. Such attacks change cache state by accessing secret data during speculative executions, then the attackers leak the secret information exploiting cache timing side-channels. Even though software patches against transient execution attacks have been proposed, the software solutions significantly slow down the performance of a system. In this paper, we propose CacheRewinder, an efficient hardware-based defense mechanism against transient execution attacks. CacheRewinder prevents leakage of secret information by revoking the cache updates done by speculative executions. To restore the cache state efficiently, CacheRewinder exploits the underutilized write-back buffer space as the temporary storage for victimized cache blocks evicted during speculative executions. Hence, when speculation fails CacheRewinder can quickly restore the cache state using the victim blocks held in the write-back buffer. Our evaluation exhibits CacheRewinder can effectively defend against transient execution attacks. The performance overhead by CacheRewinder is only 0.6%, which is negligible compared to the unprotected baseline processor. CacheRewinder also requires minimal storage cost since it exploits unused write-back buffer entries as storage for evicted cache blocks.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2022 Design, Automation and Test in Europe Conference and Exhibition, DATE 2022 |
Editors | Cristiana Bolchini, Ingrid Verbauwhede, Ioana Vatajelu |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 514-519 |
Number of pages | 6 |
ISBN (Electronic) | 9783981926361 |
DOIs | |
Publication status | Published - 2022 |
Event | 2022 Design, Automation and Test in Europe Conference and Exhibition, DATE 2022 - Virtual, Online, Belgium Duration: 2022 Mar 14 → 2022 Mar 23 |
Publication series
Name | Proceedings of the 2022 Design, Automation and Test in Europe Conference and Exhibition, DATE 2022 |
---|
Conference
Conference | 2022 Design, Automation and Test in Europe Conference and Exhibition, DATE 2022 |
---|---|
Country/Territory | Belgium |
City | Virtual, Online |
Period | 22/3/14 → 22/3/23 |
Bibliographical note
Publisher Copyright:© 2022 EDAA.
Keywords
- Cache Side-Channels
- Secure Architecture
- Speculative Execution
- Transient Execution Attacks
ASJC Scopus subject areas
- Artificial Intelligence
- Computer Networks and Communications
- Hardware and Architecture
- Software
- Safety, Risk, Reliability and Quality
- Control and Optimization