Verification of serialising instructions for security against transient execution attacks

Ponugoti, Kushal K.; Srinivasan, Sudarshan K.; Mathure, Nimish

doi:10.1049/cdt2.12058

Cited by 5 publications

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Verification of serialising instructions for security against transient execution attacks

Ponugoti

Srinivasan

Mathure

2023

IET Computers & Digital Tech

Self Cite

View full text Add to dashboard Cite

Transient execution attacks such as Spectre and Meltdown exploit speculative execution in modern microprocessors to leak information via cache side-channels. Software solutions to defend against many transient execution attacks employ the lfence serialising instruction, which does not allow instructions that come after the lfence to execute outof-order with respect to instructions that come before the lfence. However, errors and Trojans in the hardware implementation of lfence can be exploited to compromise the software mitigations that use lfence. The aforementioned security gap has not been identified and addressed previously. The authors provide a formal method solution that addresses the verification of lfence hardware implementation. The authors also show how hardware Trojans can be designed to circumvent lfence and demonstrate that their verification approach will flag such Trojans as well. The authors have demonstrated the efficacy of our approach using RSD, which is an open source RISC-V based superscalar out-of-order processor. K E Y W O R D Scomputer architecture, electronic design automation, formal verification, integrated circuit design, logic design, microcomputers, microprocessor chipsThis is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited.

show abstract