Efficient data protection for distributed shared memory multiprocessors

Rogers, Brian; Prvulovic, Milos; Solihin, Yan

doi:10.1145/1152154.1152170

Cited by 48 publications

(36 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These operating systems require that the memory architecture defend against offline physical attacks and avoid run-time processor stalls-a unique combination of feature and performance that no memory system has previously achieved. Furthermore, the architecture must support all legacy software and hardware interfaces, including DMA and multiprocessors [24,29], and do so within a modest component footprint. We explore how these features are simultaneously achieved within our MECU-enhanced architecture in the following sections.…”

Section: Secure Memory Systemsmentioning

confidence: 99%

“…Proposals include hashing over cache lines and storing values in separate or statically-allocted memory [18], creating a Merkle hash tree of memory segments and caching the results [13,31], and using GCM encryption to simultaneously encrypt and hash memory blocks [24]. Adapting these solutions to our architecture requires a careful analysis of the performance 5 Embedded systems with a 10 MHz clock traditionally have a 16-bit address space.…”

Section: Main Memory Integritymentioning

confidence: 99%

See 1 more Smart Citation

Defending Against Attacks on Main Memory Persistence

Enck

Butler

Richardson

et al. 2008

2008 Annual Computer Security Applications Conference (ACSAC)

View full text Add to dashboard Cite

Main memory contains transient information for all resident applications. However, if memory chip contents survives power-off, e.g., via freezing DRAM chips, sensitive data such as passwords and keys can be extracted. Main memory persistence will soon be the norm as recent advancements in MRAM and FeRAM position non-volatile memory technologies for widespread deployment in laptop, desktop, and embedded system main memory. Unfortunately, the same properties that provide energy efficiency, tolerance against power failure, and "instant-on" powerup also subject systems to offline memory scanning. In this paper, we propose a Memory Encryption Control Unit (MECU) that provides memory confidentiality during system suspend and across reboots. The MECU encrypts all memory transfers between the processor-local level 2 cache and main memory to ensure plaintext data is never written to the persistent medium. The MECU design is outlined and performance and security trade-offs considered. We evaluate a MECU-enhanced architecture using the SimpleScalar hardware simulation framework on several hardware benchmarks. This analysis shows the majority of memory accesses are delayed by less than 1 ns, with higher access latencies (caused by resume state reconstruction) subsiding within 0.25 seconds of a system resume. In effect, the MECU provides zero-cost steady state memory confidentiality for non-volatile main memory.

show abstract

Section: Secure Memory Systemsmentioning

confidence: 99%

Section: Main Memory Integritymentioning

confidence: 99%

Defending Against Attacks on Main Memory Persistence

Enck

Butler

Richardson

et al. 2008

2008 Annual Computer Security Applications Conference (ACSAC)

View full text Add to dashboard Cite

show abstract

“…Rogers, et al pointed out the limitation of above schemes on DSM systems and proposed an efficient data protection design [21]. By focusing on point-to-point communications of the directory-based cache coherence protocol, they were able to utilize DSM systems' temporal locality of communications, which means a processor communicates with a relatively small Please note that in multiprocessor shared-memory protection, all processors and related components like the memory controller are assumed to share the same secret key.…”

Section: Multiprocessor Secure Modelmentioning

confidence: 99%

“…A recent study by Rogers, et al proposed a novel mechanism for protecting cache-to-cache communication in distributed shared memory (DSM) multiprocessors as a remedy for this problem [21]. However, since their design focused on the directory-based cache coherence protocol used for the point-to-point communication, their idea cannot be directly applied to the systems with other cache coherence protocols used for multicasting/broadcasting communication such as the token coherence protocol [2,16].…”

Section: Introductionmentioning

confidence: 99%

I2SEMS: Interconnects-Independent Security Enhanced Shared Memory Multiprocessor Systems

Lee¹,

Ahn²,

Kim³

2007

16th International Conference on Parallel Architecture and Compilation Techniques (PACT 2007)

View full text Add to dashboard Cite

Protection and security are becoming essential requirements in commercial servers. In this paper, we present a fast and efficient method for providing secure memory and cache-to-cache communications in shared memory multiprocessor systems that are becoming enormously popular in designing servers for various applications. Since our scheme is independent of underlying interconnects and cache coherence protocols, we refer to it as Interconnects-Independent Security Enhanced Shared Memory Multiprocessor Systems (I 2 SEMS). The main challenge in designing I 2 SEMS is how to precompute keystreams in a timely manner, which is critical to minimize performance overhead. We achieve this goal by adopting a single system-wide Global Counter Controller (GCC) and three additional components for each processor: a keystream queue, a keystream cache, and a keystream pool. The GCC assigns a unique range of counters as a way to help processors precompute the counters' keystreams.We have implemented I 2 SEMS using Simics with Wisconsin multifacet General Execution-driven Multiprocessor Simulator (GEMS). We tested our design with SPLASH-2 benchmarks on up to 16-processor shared memory multiprocessor systems. Simulation results show that the overall performance slowdown is 4% on average and the keystream hit rate is as high as 78%. The stable keystream hit rate shows that I 2 SEMS works well with both memory-read and memory-write dominant applications. Similar to the conventional cache, a large keystream pool size is beneficial to high hit rates.

show abstract

“…It ensures confidentiality with encryption and ensures integrity with Merkle trees [4], [6], [10], [38]. Security adds overheads, motivating performance optimizations that cache metadata and speculate around safeguards [11], [26], [27], [33], [34], [37], [49]. We survey recent progress to motivate our solution, PoisonIvy, which builds atop best practices to address remaining performance challenges.…”

Section: Introductionmentioning

confidence: 99%

PoisonIvy: Safe speculation for secure memory

Lehman

Hilton

Lee

2016

2016 49th Annual IEEE/ACM International Symposium on Microarchitecture (MICRO)

View full text Add to dashboard Cite

Abstract-Encryption and integrity trees guard against physical attacks, but harm performance. Prior academic work has speculated around the latency of integrity verification, but has done so in an insecure manner. No industrial implementations of secure processors have included speculation. This work presents PoisonIvy, a mechanism which speculatively uses data before its integrity has been verified while preserving security and closing address-based side-channels. PoisonIvy reduces performance overheads from 40% to 20% for memory intensive workloads and down to 1.8%, on average.

show abstract

Efficient data protection for distributed shared memory multiprocessors

Cited by 48 publications

References 19 publications

Defending Against Attacks on Main Memory Persistence

Defending Against Attacks on Main Memory Persistence

I2SEMS: Interconnects-Independent Security Enhanced Shared Memory Multiprocessor Systems

PoisonIvy: Safe speculation for secure memory

Contact Info

Product

Resources

About