overhead free i o from enclaves
play

Overhead-free I/O from enclaves SysTEX'16 Trento, Italy Meni - PowerPoint PPT Presentation

Feb 14, 2024 •17 likes •297 views

Overhead-free I/O from enclaves SysTEX'16 Trento, Italy Meni Orenbach Prof. Mark Silberstein 1 Research Statement: Enclaves are accelerators for secured execution Accelerator system services and Abstractions can be retrofitted Inspire

  1. Overhead-free I/O from enclaves SysTEX'16 Trento, Italy Meni Orenbach Prof. Mark Silberstein 1

  2. Research Statement: Enclaves are accelerators for secured execution Accelerator system services and Abstractions can be retrofitted Inspire system services for enclaves 2

  3. Case Example: GPU Partition: GPU and host Traditional CPU Application Offload computation to GPU GPU Host Kernel Application 3

  4. Background: GPU Kernels High Performance Partition: GPU and host Private Memory Storage Separate GPU Memory High latency (PCIe) to host memory Host GPU Memory Memory GPU Host Kernel 4

  5. Background: GPU Kernels Partition: GPU and host Storage Separate GPU Memory Host manages OS services GPU cannot invoke syscalls Host GPU Memory Memory Access Data GPU Host Kernel 5

  6. Background: GPU Kernels Partition: GPU and host Storage Separate GPU Memory Host manages OS services GPU cannot invoke syscalls Host GPU Host operate on its memory Memory Memory GPU Host Kernel 6

  7. Background: GPU Kernels Partition: GPU and host Storage Separate GPU Memory Host manages OS services GPU cannot invoke syscalls Host GPU Host operate on its memory Memory Memory Copy data to GPU memory GPU Host Kernel 7

  8. Background: GPU Kernels Partition: GPU and host Can't Storage Separate GPU Memory Dynamically Host Load construct Host manages OS services Threads kernel GPU cannot invoke syscalls Host GPU Can't Host operate on its memory Memory Memory Dynamically 5μsec on Host Load NVIDIA K40 Copy data to GPU memory manages Instructions address Host-centric management space GPU Host High invocation costs Kernel Kernel Launch 8

  9. Background: GPU Kernels Partition: GPU and host Storage Separate GPU Memory Host manages OS services GPU cannot invoke syscalls Host GPU Host operate on its memory Memory Memory Copy data to GPU memory Host-centric management GPU Host High invocation costs Kernel GPU execute computation 9

  10. Background: GPU Kernels Partition: GPU and host Storage Separate GPU Memory Host manages OS services GPU cannot invoke syscalls Host GPU Host operate on its memory Memory Memory Copy data to GPU memory Host-centric management GPU Host High invocation costs Kernel GPU execute computation Copy back to host memory 10

  11. What do GPU and enclave have in common? 11

  12. Design an Enclave Application Partition:trusted and untrusted Partition:trusted and untrusted Traditional Separate GPU Memory CPU Application Host manages OS services GPU cannot invoke syscalls Offload sensitive data to enclaves Host operate on its memory Copy data to GPU memory Host-centric management High invocation costs Enclave Host GPU execute computation (Trusted) (Untrusted) Copy back to host memory 12

  13. Private Reserved Memory Integrity Partition:trusted and untrusted Confidentiality Anti-replay Storage Separate Enclave Memory Separate Enclave Memory High latency Host manages OS services to host memory (Encrypt/Decrypt) GPU cannot invoke syscalls Host Enclave Host operate on its memory Memory Memory Copy data to GPU memory Host-centric management Host Enclave High invocation costs GPU execute computation Copy back to host memory 13

  14. The OS is untrusted Partition:trusted and untrusted Storage Separate Enclave Memory Host manages OS services Host manages OS services Enclave cannot invoke syscalls Enclave cannot invoke syscalls Host Enclave Host operate on its memory Memory Memory Access Copy data to GPU memory Data Host-centric management Host Enclave High invocation costs GPU execute computation Copy back to host memory 14

  15. Untrusted code operates on untrusted memory Partition:trusted and untrusted Storage Separate Enclave Memory Host manages OS services Enclave cannot invoke syscalls Host Enclave Host operate on its memory Memory Host operate on its memory Memory Copy data to GPU memory Host-centric management Host Enclave High invocation costs GPU execute computation Copy back to host memory 15

  16. Trusted code operates on Trusted memory Partition:trusted and untrusted Storage Separate Enclave Memory Host manages OS services Enclave cannot invoke syscalls Host Enclave Host operate on its memory Memory Memory Copy data to enclave memory Copy data to enclave memory Host-centric management Host Enclave High invocation costs GPU execute computation Copy back to host memory 16

  17. Host-centric management Can't Partition:trusted and untrusted Dynamically Storage Load Separate Enclave Memory Host Threads construct (SGX1) Host manages OS services enclave Can't Enclave cannot invoke syscalls Dynamically Host Enclave Load Host operate on its memory Memory Memory 3μsec on Host Instructions i7 Skylake manages (SGX1) Copy data to enclave memory address Host-centric management Host-centric management space Host Enclave High invocation costs High invocation costs EENTER GPU execute computation Copy back to host memory 17

  18. Isolated execution Partition:trusted and untrusted Storage Separate Enclave Memory Host manages OS services Enclave cannot invoke syscalls Host Enclave Host operate on its memory Memory Memory Copy data to enclave memory Host-centric management Host Enclave High invocation costs Enclave execute computation Enclave execute computation Copy back to host memory 18

  19. Communication through untrusted memory Partition:trusted and untrusted Storage Separate Enclave Memory Host manages OS services Enclave cannot invoke syscalls Host Enclave Host operate on its memory Memory Memory Copy data to enclave memory Host-centric management Host Enclave High invocation costs Enclave execute computation Copy back to host memory Copy back to host memory 19

  20. The reason is... Isolation by design Enclaves use strong isolation to provide strong security Accelerators run on different hardware Accelerators are isolated by necessity 20

  21. Effect on processes' runtime ● Simplified parameter server in and out of enclave – Network server – Private model & data – Store model in hash table – Clients send 100k random requests to update items – Server issues recv() to get requests and update – Enclave encapsulate recv() in OCALL. 21

  22. Simplified parameter server 10 SGX 9 8 7 Slowdown factor 6 5 4 3 2 1 0 1 2 4 8 16 32 64 Number of items updated per request 22

  23. What can we learn from GPUs? 23

  24. SGXIO: Overhead-free I/O from enclaves Based on GPUfs [ASPLOS'2013] – RPC communication infrastructure Untrusted Shared Trusted memory untrusted memory memory Enclave RPC RPC Software Thread-Pool Queue untrusted_call() Pass request Spinlock Exec Unlock 'Server' 'Client' 24

  25. Simplified parameter server 10 SGX SGXIO 9 8 7 Slowdown factor 6 5 4 3 2 1 0 1 2 4 8 16 32 64 Number of items updated per request 25

  26. Same, Same but different ● Enclaves are not traditional accelerators – Latency to host memory ● MMU vs PCIe – Atomic instructions shared with the host – Internal management ● E.g., Enclave Thread-scheduler Enclaves bring new possibilities 26

  27. Retrofitting accelerators' ideas for enclaves ● SGXIO: OS services for enclaves ● Asynchronous DMA host copies ● Non-blocking enclave launches ● In-enclave virtual memory management 27

  28. Thank you! Questions? shmeni@tx.technion.ac.il mark@ee.technion.ac.il 28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Approaching Overhead-Free Execution on FPGA Soft-Processors Charles Eric LaForest Jason Anderson

Approaching Overhead-Free Execution on FPGA Soft-Processors Charles Eric LaForest Jason Anderson

Approaching Overhead-Free Execution on FPGA Soft-Processors Charles Eric LaForest Jason Anderson J. Gregory Steffan University of Toronto ICFPT 2014, Shanghai Motivation Designing on FPGAs remains difficult Larger systems Longer

670 views • 44 slides
Eleos: Exit-Less OS Services for SGX Enclaves Meni Orenbach Marina Minkin Pavel Lifshits Mark

Eleos: Exit-Less OS Services for SGX Enclaves Meni Orenbach Marina Minkin Pavel Lifshits Mark

Eleos: Exit-Less OS Services for SGX Enclaves Meni Orenbach Marina Minkin Pavel Lifshits Mark Silberstein Accelerated Computing Systems Lab Haifa, Israel What do we do? Improve performance: I/O intensive & memory demanding SGX enclaves

1.02k views • 87 slides
Hardware Enclaves & In Intel SGX CS261 Hardware Enclaves HW abstractions for

Hardware Enclaves & In Intel SGX CS261 Hardware Enclaves HW abstractions for

Hardware Enclaves & In Intel SGX CS261 Hardware Enclaves HW abstractions for distributing trusted execution to untrusted platforms 2 Hardware Enclaves HW abstractions for distributing trusted execution to untrusted platforms

1.06k views • 18 slides
Tables in TEX \eTD \bTD overhead \eTD \eTR overhead so much \eTABLE \eTD \eTR \bTABLE even

Tables in TEX \eTD \bTD overhead \eTD \eTR overhead so much \eTABLE \eTD \eTR \bTABLE even

Tables in TEX \eTD \bTD overhead \eTD \eTR overhead so much \eTABLE \eTD \eTR \bTABLE even once you master the syntax, it's still an overkill for simple tables and keep cheating every time you want to create a new table to create a table in

344 views • 19 slides
Fair Computation using Enclaves and Shared Ledger Rohit Sinha , Siva Gaddam, and Ranjit Kumaresan

Fair Computation using Enclaves and Shared Ledger Rohit Sinha , Siva Gaddam, and Ranjit Kumaresan

Fair Computation using Enclaves and Shared Ledger Rohit Sinha , Siva Gaddam, and Ranjit Kumaresan Open Source Enclaves Workshop 2019 Transparent Mint Transparent Mint Alice Mint Transparent Mint Merchant ID Date Amount Alice 2014-06-03

825 views • 65 slides
MI6 Secure Enclaves ... in a Speculative Out-of-Order Processor Overview Goals of MI6 Big

MI6 Secure Enclaves ... in a Speculative Out-of-Order Processor Overview Goals of MI6 Big

Damian Barabonkov MI6 Secure Enclaves ... in a Speculative Out-of-Order Processor Overview Goals of MI6 Big Ideas Paper Feedback Motivation of MI6 Threat Model Implementation Performance Analysis

383 views • 24 slides
Bursty Tracing: A Framework for Low-Overhead Temporal Profiling Martin Hirzel Trishul Chilimbi

Bursty Tracing: A Framework for Low-Overhead Temporal Profiling Martin Hirzel Trishul Chilimbi

Bursty Tracing: A Framework for Low-Overhead Temporal Profiling Martin Hirzel Trishul Chilimbi hirzel@colorado.edu trishulc@microsoft.com FDDO4 December 2001 Austin, Texas Low-overhead temporal profiling Low overhead Intended

628 views • 17 slides
Overhead U*lity Undergrounding Project Update June 30,

Overhead U*lity Undergrounding Project Update June 30,

Town of Palm Beach Shores Undergrounding Overhead Power & Communica;ons U;li;es Overhead U*lity Undergrounding Project Update June 30, 2017 1

84 views • 5 slides
No More Enclaves: Aynak in Afghanistan Prepared by Gary McMahon, World Bank, for Countdown to

No More Enclaves: Aynak in Afghanistan Prepared by Gary McMahon, World Bank, for Countdown to

No More Enclaves: Aynak in Afghanistan Prepared by Gary McMahon, World Bank, for Countdown to Copper in Afghanistan: Pitfalls and Possibilities, US Institute of Peace, February 10, 2010 Main Issues Fiscal revenues: premium, royalties,

373 views • 6 slides
CopyCat: Controlled Instruction-Level Attacks on Enclaves Daniel Moghimi Jo Van Bulck

CopyCat: Controlled Instruction-Level Attacks on Enclaves Daniel Moghimi Jo Van Bulck

CopyCat: Controlled Instruction-Level Attacks on Enclaves Daniel Moghimi Jo Van Bulck Nadia Heninger Frank Piessens Berk Sunar Intel Labs Sept. 10 2020 OS/Hypervisor Security Model App App App OS Trusted Hypervisor

1.13k views • 67 slides
CopyCat: Controlled Instruction-Level Attacks on Enclaves Daniel Moghimi Jo Van Bulck

CopyCat: Controlled Instruction-Level Attacks on Enclaves Daniel Moghimi Jo Van Bulck

CopyCat: Controlled Instruction-Level Attacks on Enclaves Daniel Moghimi Jo Van Bulck Nadia Heninger Frank Piessens Berk Sunar Trusted Execution Environment (TEE) Intel SGX Intel Software Guard eXtensions (SGX) App

894 views • 42 slides
Secure Virtual Enclaves February 4, 2000 Deborah Shands, Richard Yee Jay Jacobs, E. John

Secure Virtual Enclaves February 4, 2000 Deborah Shands, Richard Yee Jay Jacobs, E. John

Secure Virtual Enclaves February 4, 2000 Deborah Shands, Richard Yee Jay Jacobs, E. John Sebes Outline Project Overview SVE Architecture Observations Results/Conclusions 2/4/2000 2 Coalition Examples Commercial :

374 views • 16 slides
Fast & Faster Privacy-Preserving ML in Secure Hardware Enclaves Nick Hynes, Raymond

Fast & Faster Privacy-Preserving ML in Secure Hardware Enclaves Nick Hynes, Raymond

Fast & Faster Privacy-Preserving ML in Secure Hardware Enclaves Nick Hynes, Raymond Cheng, Dawn Song | UC Berkeley & Oasis Labs with support from the TVM team and community! Ideal: data providers pool data to train a large, complex

1.41k views • 58 slides
Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing Sangho Lee Ming-Wei

Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing Sangho Lee Ming-Wei

Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing Sangho Lee Ming-Wei Shih Prasun Gera Taesoo Kim Hyesoon Kim Marcus Peinado 26 th USENIX Security Symposium August 17, 2017 Intel Software Guard Extension (SGX)

437 views • 42 slides
Safe Interacting Enclaves for Heterogeneous Protected Module Architectures Sten Verbois 29 June

Safe Interacting Enclaves for Heterogeneous Protected Module Architectures Sten Verbois 29 June

Safe Interacting Enclaves for Heterogeneous Protected Module Architectures Sten Verbois 29 June 2018 Content 1. Motivation 2. Research Goals 3. Aspects of Using Rust 4. Case Study: Attestation server for VulCAN 5. Demo 1 Motivation

499 views • 27 slides
CoSMIX: A Compiler-based System for Secure Memory Instrumentation and Execution in Enclaves Meni

CoSMIX: A Compiler-based System for Secure Memory Instrumentation and Execution in Enclaves Meni

CoSMIX: A Compiler-based System for Secure Memory Instrumentation and Execution in Enclaves Meni Orenbach (Technion), Yan Michalevsky (Anjuna), Christof Fetzer (TU Dresden, Scone), Mark Silberstein (Technion) Published in USENIX ATC19

744 views • 24 slides
Implementation of Host-based Overlay Multicast in Support of Web Based Services for RT-DVS

Implementation of Host-based Overlay Multicast in Support of Web Based Services for RT-DVS

Implementation of Host-based Overlay Multicast in Support of Web Based Services for RT-DVS Dennis Moen, Mark Pullen & Fei Zhao George Mason University {dmoen,mpullen,fzhao}@gmu.edu Network Service Requirements for Real Time Distributed

473 views • 15 slides
The Role of Web Hosting Providers in Detecting Compromised Websites Davide Canali, Davide

The Role of Web Hosting Providers in Detecting Compromised Websites Davide Canali, Davide

The Role of Web Hosting Providers in Detecting Compromised Websites Davide Canali, Davide Balzarotti, Aurlien Francillon Software and System Security Group Software and System Security Group EURECOM, France EURECOM, France Motivations

335 views • 20 slides
Trusted End Host Monitors for Securing Cloud Datacenters Alan Shieh Srikanth Kandula

Trusted End Host Monitors for Securing Cloud Datacenters Alan Shieh Srikanth Kandula

Trusted End Host Monitors for Securing Cloud Datacenters Alan Shieh Srikanth Kandula Albert Greenberg Cloud workload is dynamic and hostile Traditional datacenters Cloud datacenters Infrastructure supports small # of

241 views • 6 slides
Security versus Energy Tradeoffs in Host-Based Mobile Malware Detection Jeffrey Bickford *, H.

Security versus Energy Tradeoffs in Host-Based Mobile Malware Detection Jeffrey Bickford *, H.

Security versus Energy Tradeoffs in Host-Based Mobile Malware Detection Jeffrey Bickford *, H. Andrs Lagar-Cavilla #, Alexander Varshavsky #, Vinod Ganapathy *, and Liviu Iftode * * Rutgers University # AT&T Labs Research Smart Phone

709 views • 28 slides
TensorLights End-Host Traffic Scheduling for Distributed Deep Learning Xin Sunny Huang Ang Chen

TensorLights End-Host Traffic Scheduling for Distributed Deep Learning Xin Sunny Huang Ang Chen

TensorLights End-Host Traffic Scheduling for Distributed Deep Learning Xin Sunny Huang Ang Chen T. S. Eugene Ng Rice University 1 This Work The Parameter Server (PS) architecture is the most popular approach for distributed Deep Learning.

974 views • 28 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
How to Host Your Own Instructor Training: For Project AWARE-SEA and MHAT Grantees Chayla Lyon ,

How to Host Your Own Instructor Training: For Project AWARE-SEA and MHAT Grantees Chayla Lyon ,

How to Host Your Own Instructor Training: For Project AWARE-SEA and MHAT Grantees Chayla Lyon , Manager of Instructor Trainings, Mental Health First Aid Stephanie Pozuelos , Project Coordinator, Mental Health First Aid Mental Health First Aid USA

360 views • 17 slides
Automatic MySQL Schema Management with Skeema Evan Elias Percona Live, April 2017 What is

Automatic MySQL Schema Management with Skeema Evan Elias Percona Live, April 2017 What is

Automatic MySQL Schema Management with Skeema Evan Elias Percona Live, April 2017 What is Schema Management? Organize table schemas in a repo Execution of all DDL, on the correct MySQL instances, with the correct OSC flags Not

813 views • 64 slides

More recommend