a run time memory protection methodology
play

A Run-Time Memory Protection Methodology Udaya Seshua, Nagaraju - PowerPoint PPT Presentation

Dec 20, 2022 •344 likes •573 views

A Run-Time Memory Protection Methodology Udaya Seshua, Nagaraju Bussa*, Bart Vermeulen NXP Semiconductors, *Philips Research 12 th Asian and South Pacific Design Automation Conference 2007 January 25, 2007, Yokohama, Japan Agenda

  1. A Run-Time Memory Protection Methodology Udaya Seshua, Nagaraju Bussa*, Bart Vermeulen NXP Semiconductors, *Philips Research 12 th Asian and South Pacific Design Automation Conference 2007 January 25, 2007, Yokohama, Japan

  2. Agenda • Introduction • Motivation • Debugging Run-Time Memory Corruption • Prior Work • Proposed Debug Methodology – Hardware Design – Software Design • Experimental Results • Conclusion Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 2

  3. Introduction • System chips are becoming more and more complex – More transistors per mm 2 , customer requirements, embedded processors & SW, mixed processes... # Transistors per die Code Size Evolution of High End TV Software 100M 100000 10B 64000 TV ROM size CPU 32000 1B Memory 12000 10M Frequency 100M 4096 3000 2048 10M 1024 1M 512 1M 256 100k 100k 64 32 10K 16 10k 8 1k 4 2 1k 1 1970 1975 1980 1985 1990 1995 2000 2005 2010 1978 1982 1986 1990 1994 1998 2002 2006 2009 source: Intel, ITRS roadmap source Rob van Ommering, PRLE Informatica Colloquium, October 2005 Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 3

  4. Introduction Effort as % of Project Time • Extensive pre-silicon verification – Formal Verification Design Verification – Simulation 53% 47% – Timing Verification – Emulation – DRC, LVS … source: Collet International Research Inc. • No guarantee that all HW and SW errors Industry Silicon Spins are removed before silicon 100% ASSP ASIC 90% – Too many use cases 80% – Mandatory trade-off between amount 70% 60% of detail and speed 50% 40% 30% • Debugging embedded software on 20% prototype silicon is a necessity 10% 0% – Find remaining SW and HW errors 1 2 3 4 5 or above source: Numetrics Management Systems, Inc. Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 4

  5. Motivation • In any application nearly 70% of code deals with memory transfers • Memory-related bugs are among the most prevalent and difficult to catch – particularly in applications written in an unsafe language such as C/C++ • In an embedded system, a single memory access error can cause an application to behave unpredictably or even a delayed crash • A good debug infrastructure capable of locating memory-related bugs quickly is key to reducing the effort spent on software debug Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 5

  6. Debugging Run-Time Memory Corruption • A single incorrect memory access can crash an application and/or threaten its security Processor Processor 2. Access data referenced by pointer 1. Fetch Pointer Value Memory 0x1234 Data 0x1234 Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 6

  7. Debugging Run-Time Memory Corruption • A single incorrect memory access can crash an application and/or threaten its security Processor Processor 2. Access unintended data referenced by corrupted pointer 1. Fetch Pointer Value Memory 0x1234 Data Unintended 0x1340 Data 0x1234 0x1340 Corrupted Pointer caused by bug or security breach • How do we detect these errors efficiently at run-time? Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 7

  8. Prior Work • Mostly software-only methods (“Purify, xGCC and the like”) – High performance penalty (5-10x not uncommon) – Not acceptable in real-time, embedded systems • Available HW support often used on ad-hoc basis – a Memory Management Unit – a Processor data breakpoint • “Whatever is available can and will be used!” – Even if it wasn’t designed for this purpose • Results in long and unpredictable debug times – Slipping deadlines, market and possibly customer loss Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 8

  9. Proposed Debug Methodology • Structured Integrated Hardware/Software Approach – Monitor memory accesses of an application • Flag invalid accesses for QoS, security or debug – Perform frequently recurring tasks in hardware • Compare memory addresses with valid regions – Keep configurability in software for flexibility • Configure valid regions • Make optimal trade-off between – Hardware cost, i.e. silicon area – Software cost, i.e. performance drop Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 9

  10. Proposed Debug Methodology Run-Time Memory Protection Architecture rpu_id=1; rpu_id=1; main() main() { { rpus_initialize(0); rpus_initialize(0); func1(); func1(); func2(); func2(); } } func1() func1() { main() { id = rpu_id++; { main() id = rpu_id++; func1(); { p = malloc(127); func2(); func1(); p = malloc(127); rpus_heap_enable(127,p); } func2(); rpus_heap_enable(127,p); } int a[10]; func1() int a[10]; rpus_stack_enable(10,a,id); { func1() rpus_stack_enable(10,a,id); p = malloc(127); { int b[10]; int a[10]; p = malloc(127); int b[10]; rpus_stack_enable(10,b,id); int b[10]; int a[10]; rpus_stack_enable(10,b,id); free(p); int b[10]; free(p); a[10]=0; free(p); free(p); } a[10]=0; rpus_heap_disable(p); } rpus_heap_disable(p); rpus_check_access(a+10); func2() rpus_check_access(a+10); { func2() a[10]=0; int a[10]; { a[10]=0; rpus_stack_disable(id); int b[10]; int a[10]; rpus_stack_disable(id); } int b[10]; } } } func2() func2() { { id = rpu_id++; id = rpu_id++; int a[10]; int a[10]; rpus_stack_enable(10,a,id); rpus_stack_enable(10,a,id); Int b[10]; Int b[10]; rpus_stack_enable(10,b,id); rpus_stack_enable(10,b,id); rpus_stack_disable(id); rpus_stack_disable(id); } Peripheral Peripheral } Peripheral Peripheral • • • Processor Processor 1 N 1 N bus (e.g. AXI) Region Region memory access Memory Memory Protection Protection violation detected Interface Interface Module Module signal debugger SW Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 10

  11. Proposed Debug Methodology RPM Hardware Architecture RPU controller heap RPU 1 data_in • • • address heap RPU N data_out heap_in Bus stack_fallback_n Adapter or rpu_mode stack RPU 1 read rpu_data • • • write stack RPU M stack_in Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 11

  12. Proposed Debug Methodology Heap RPU Hardware Block Diagram cascade_in data base size clk mode sub control A<B? or cascade_out Udaya Seshua, “A Run-Time Memory Protection Methodology”, 12 th Asian and South Pacific Design Automation Conference 2007, January 25 th , 2007 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Processes and the Kernel The Kernel Processes and the Kernel The Kernel Today, all

1 Processes and the Kernel The Kernel Processes and the Kernel The Kernel Today, all

Memory Protection Memory Protection Paging Virtual memory provides protection by: Each process (user or OS) has different virtual memory space. Machines and Virtualization Machines and Virtualization The OS maintain the page tables

83 views • 5 slides
TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution

TRUSTED MEMORY Software-Based O-Chip Memory Protection for RISC-V Trusted Execution Environments Gui Andrade Krste Asanovi Dayeol Lee David Kohlbrenner Dawn Song University of California, Berkeley TRUSTED MEMORY? Securing data/code

703 views • 48 slides
Memory Protection ability to avoid unwanted memory accesses management Sharing

Memory Protection ability to avoid unwanted memory accesses management Sharing

Requirements Relocation ability to change process image position Memory Protection ability to avoid unwanted memory accesses management Sharing ability to share memory portions among processes Logical organization

504 views • 15 slides
Protecting Memory What is there to protect in memory? Page tables and virtual memory

Protecting Memory What is there to protect in memory? Page tables and virtual memory

Protecting Memory What is there to protect in memory? Page tables and virtual memory protection Special security issues for memory Buffer overflows Lecture 8 Page 1 CS 236 Online What Is In Memory? Executable code

401 views • 24 slides
Memory Management Memory Manager Requirements Minimize primary memory access time

Memory Management Memory Manager Requirements Minimize primary memory access time

Memory Management Memory Manager Requirements Minimize primary memory access time Maximize primary memory size Primary memory must be cost-effective Todays memory manager: Allocates primary memory to processes Maps

637 views • 27 slides
Linux Kernel Networking Raoul Rivas Kernel vs Application Programming No memory protection

Linux Kernel Networking Raoul Rivas Kernel vs Application Programming No memory protection

Linux Kernel Networking Raoul Rivas Kernel vs Application Programming No memory protection Memory Protection We share memory with Segmentation Fault devices, scheduler Preemption Sometimes no preemption Scheduling

377 views • 25 slides
Protection Issues I/O protection Protection and System Calls Prevent users from

Protection Issues I/O protection Protection and System Calls Prevent users from

Protection Issues I/O protection Protection and System Calls Prevent users from performing illegal I/Os Memory protection Otto J. Anshus Prevent users from modifying kernel code and data (including slides from Kai Li,

350 views • 6 slides
LIBMPK: SOFTWARE ABSTRACTION FOR INTEL MEMORY PROTECTION KEYS (INTEL MPK) Soyeon Park, Sangho

LIBMPK: SOFTWARE ABSTRACTION FOR INTEL MEMORY PROTECTION KEYS (INTEL MPK) Soyeon Park, Sangho

LIBMPK: SOFTWARE ABSTRACTION FOR INTEL MEMORY PROTECTION KEYS (INTEL MPK) Soyeon Park, Sangho Lee, Wen Xu, Hyungon Moon and Taesoo Kim INTRODUCTION SECURITY CRITICAL MEMORY REGIONS NEED PROTECTION JIT page To achieve code execution,

327 views • 32 slides
x86 Memory Protection User System Calls Kernel and Translation RCU File System Networking

x86 Memory Protection User System Calls Kernel and Translation RCU File System Networking

8/31/12 Logical Diagram Binary Memory Threads Formats Allocators x86 Memory Protection User System Calls Kernel and Translation RCU File System Networking Sync Todays Lecture Don Porter (focus on CSE 506 Memory Device

576 views • 9 slides
Memory Testing 1 Memory Cells Per Chip 2 1 Test Time in Seconds (Memory Size n Bits, Memory

Memory Testing 1 Memory Cells Per Chip 2 1 Test Time in Seconds (Memory Size n Bits, Memory

Memory Testing 1 Memory Cells Per Chip 2 1 Test Time in Seconds (Memory Size n Bits, Memory Cycle Time 60ns) Size Number of Test Algorithm Operations n 2 n 3/2 n n n X log 2 n 64.5 0.06 1 Mb 1.26 18.3 hr 515.4 4 Mb 0.25

558 views • 30 slides
Risk Analysis Methodology for New IT Service IT Infrastructure Protection Division IT

Risk Analysis Methodology for New IT Service IT Infrastructure Protection Division IT

Risk Analysis Methodology for New IT Service IT Infrastructure Protection Division IT Infrastructure Protection Division IT Infrastructure Protection Planning Team IT Infrastructure Protection Planning Team Korea Information Security Agency

407 views • 12 slides
Outline Operating System Security Introduction CS 239 Memory protection

Outline Operating System Security Introduction CS 239 Memory protection

Outline Operating System Security Introduction CS 239 Memory protection Interprocess communications protection Security for Networks and File protection System Software Authentication May 20, 2002 Lecture 13 Lecture

348 views • 12 slides
Memory Protection Pehr Sderman PhD Student in Telecommunication Systems TSLab, ICT, KTH

Memory Protection Pehr Sderman PhD Student in Telecommunication Systems TSLab, ICT, KTH

Memory Protection Pehr Sderman PhD Student in Telecommunication Systems TSLab, ICT, KTH Pehrs@kth.se (And D-02.5) 1 Process in memory Each process have a part of the memory The process splits this into: Kernel Stack Mapped IO

1.19k views • 39 slides
x86 Memory Protection and Translation Don Porter CSE 506 Lecture Goal Understand the

x86 Memory Protection and Translation Don Porter CSE 506 Lecture Goal Understand the

x86 Memory Protection and Translation Don Porter CSE 506 Lecture Goal Understand the hardware tools available on a modern x86 processor for manipulating and protecting memory Lab 2: You will program this hardware Apologies:

1.1k views • 44 slides
Machines and Virtualization Machines and Virtualization Systems and Networks Jeff Chase Spring

Machines and Virtualization Machines and Virtualization Systems and Networks Jeff Chase Spring

Machines and Virtualization Machines and Virtualization Systems and Networks Jeff Chase Spring 2006 Memory Protection Memory Protection Paging Virtual memory provides protection by: Each process (user or OS) has different virtual memory

716 views • 27 slides
Memory protection on AVR32 Memory Layout LSE Summer Week 2014 External Bus Interface MPU

Memory protection on AVR32 Memory Layout LSE Summer Week 2014 External Bus Interface MPU

Memory protection on AVR32 Pierre Surply Introduction Memory protection on AVR32 Memory Layout LSE Summer Week 2014 External Bus Interface MPU Pierre Surply Conclusion EPITA 2016 Jul 19, 2014 Pierre Surply (EPITA 2016) Memory

524 views • 25 slides
Mining Minds Interpreter Service Curation Layer MMV-2.5 Overview 2 / Personalization is a

Mining Minds Interpreter Service Curation Layer MMV-2.5 Overview 2 / Personalization is a

Recommendation Mining Minds Interpreter Service Curation Layer MMV-2.5 Overview 2 / Personalization is a key element in Recommender Systems Personalization consists of tailoring a service or a product to accommodate specific needs of

600 views • 25 slides
Plan Growth Company Stats Plan Growth Plan Growth 133,527 91,873 66,972 48,573 28,369

Plan Growth Company Stats Plan Growth Plan Growth 133,527 91,873 66,972 48,573 28,369

Plan Growth Company Stats Plan Growth Plan Growth 133,527 91,873 66,972 48,573 28,369 9,674 2011 2012 2013 2014 2015 2016 Reach Your Potential P LAN S PONSOR L INK M OBILE Securely deliver files and automate Search contacts or

469 views • 21 slides
Dark Silicon and its Implications for Future Processor Design Max Menges 22. December 2015 1 /

Dark Silicon and its Implications for Future Processor Design Max Menges 22. December 2015 1 /

Dark Silicon Dark Silicon and its Implications for Future Processor Design Max Menges 22. December 2015 1 / 21 Dark Silicon Introduction: What is dark silicon? Motivation 10 25 3500 3000 8 20 Frequency [GHz] Utilization [%] 2500

487 views • 27 slides
Engagement: Herman Ohlthaver Project Dr Andr du Plessis 2014 What led to the

Engagement: Herman Ohlthaver Project Dr Andr du Plessis 2014 What led to the

Engagement: Herman Ohlthaver Project Dr Andr du Plessis 2014 What led to the establishment/initiation of your project? (Background Information) Principals approaching us: Great need for ICT training Sponsors approaching us Duration

402 views • 27 slides
Living Shorelines Project Long I sland Sound, W estport, CT Michael Ludwig Senior Biologist and

Living Shorelines Project Long I sland Sound, W estport, CT Michael Ludwig Senior Biologist and

Sustainable Shorelines Designs: Long I sland to Lake Erie Living Shorelines Project Long I sland Sound, W estport, CT Michael Ludwig Senior Biologist and Lead Regulatory Specialist 1 Presentation Outline Introduction Site Conditions

571 views • 41 slides
German Village Project: Final Report Nicholas Gurich - Student in City planning at OSU Roxyanne

German Village Project: Final Report Nicholas Gurich - Student in City planning at OSU Roxyanne

German Village Project: Final Report Nicholas Gurich - Student in City planning at OSU Roxyanne Burrus - Advisor/Planning Consultant March 2012 German Village Project Final Report Summary In the fall quarter of 2011 seven OSU students,

393 views • 7 slides
Corporate Presentation May 2019 Contact Trevor Fencott Chief Executive Officer

Corporate Presentation May 2019 Contact Trevor Fencott Chief Executive Officer

Corporate Presentation May 2019 Contact Trevor Fencott Chief Executive Officer tfencott@fireandflower.com Disclaimer This presentation, and any supplements and amendments to this presentation, has been prepared by Fire &amp; Flower Holdings

531 views • 22 slides
The trials and tribulations of setting up a student pre-arrival portal Florencia Franceschina

The trials and tribulations of setting up a student pre-arrival portal Florencia Franceschina

The trials and tribulations of setting up a student pre-arrival portal Florencia Franceschina Manchester Metropolitan University F.Franceschina@mmu.ac.uk FY Network Annual Conference, 8-9 July 2010, University of Southampton How the idea was

704 views • 23 slides

More recommend