rambleed reading bits in memory without accessing them
play

RAMBleed: Reading Bits in Memory Without Accessing Them Andrew - PowerPoint PPT Presentation

Mar 01, 2024 •565 likes •764 views

RAMBleed: Reading Bits in Memory Without Accessing Them Andrew Kwong, Daniel Genkin, Daniel Gruss, and Yuval Yarom Presented by Erik Saathoff 11/16/2020 Motivation Rowhammer has previously only been demonstrated as a threat to DRAM

  1. RAMBleed: Reading Bits in Memory Without Accessing Them Andrew Kwong, Daniel Genkin, Daniel Gruss, and Yuval Yarom Presented by Erik Saathoff 11/16/2020

  2. Motivation • Rowhammer has previously only been demonstrated as a threat to DRAM integrity. • Flipping the roles of attacker and victim make it possible to use Rowhammer as a read channel. • ECC RAM can be exploited as a timing channel. 2

  3. Threat Model • Attacker runs unprivileged software on same OS and victim program. • OS maintains isolation between attacker and victim programs. • Attacker cannot exploit microarchitectural side channel leakage from victim. • The machine is vulnerable to Rowhammer, but programs can only access their own private memory. • Attacker can trigger the victim to perform allocation of secret data. 3

  4. Background – DRAM Configuration Chip Bank DIMM Rank 4

  5. Background – DRAM Configuration • DRAM cells are accessed at the granularity of the entire row • Two pages exist in one row. • Hammering one page will automatically cause the other page on the same row to be hammered. P6 P7 P4 P5 P2 P3 P0 P1 Sense amplifier/row buffer Sense amplifier/row buffer 5

  6. Bit Flips • The three adjacent bits in a column can 1 1 0 0 0 0 1 1 be represented by x-y-z. 0 1 0 1 0 1 0 1 • 0-1-0 and 1-0-1 are stripe patterns and 1 1 0 0 1 1 0 0 are likely to flip. • 0-0-0 and 1-1-1 are uniform patterns and 1 1 0 0 0 0 1 1 aren’t likely to flip. 1 1 0 0 ? ? ? ? • 1-1-0, 1-0-0, 0-1-1, and 0-0-1 are neither 1 1 0 0 1 1 0 0 and the outcome is unknown. 6

  7. Overall Technique • Allocate a consecutive block of DRAM and check for cell susceptible to Rowhammer. • Strategically deallocate memory to trick the victim into placing a secret value in the rows above and below an attacker controlled sampling page. • Access the other pages on the same rows as the secrets to leak the data into the middle attacker row. • Combine bits recovered by placing the secret in various locations in the allocated DRAM block. • Use math to recover all missing components of the RSA key. 7

  8. Thoughts? 8

  9. Strengths/Weaknesses • Strengths • Novel usage of Rowhammer to convert from a write to a read channel. • Works on Ubuntu Linux in standard configuration (no huge pages, page map access, memory deduplication). • Clever circumventions of ECC, memory scrambling, and physical address unalignment. • New mechanism (Frame Feng Shui) used to place victim pages at desired locations. • Weaknesses • Capability to recover random data is not shown. • Relies heavily on a priori knowledge (key location, allocation patterns). • Technique seems much easier to mitigate than authors indicate. • A detailed study of the DRAM templating is not provided. 9

  10. DRAM Page Layout • Double-sided Rowhammer is preferred to maximize the likelihood of a bit flip. • The secret (S) is placed above and below the sampling page (A1) in the same rows as A0 and A2. • Accessing A0 and A2 hammers data into A1 without accessing S. 10

  11. Memory Massaging – Obtain DRAM Block • Attack Linux buddy allocator • Exhaust small blocks with mmap and monitor available block sizes in kernel free lists until less than 2 MB of free space is available in blocks smaller than order 10 (4 MB). • Request two 2 MB blocks. A 4 MB block will be split and the second request will be physically consecutive memory. Before attack Exhausting blocks Performing two 2 MB requests 4 MB Block 4 MB Block 11

  12. Memory Massaging – Offsets and Templating • Address differences between co-banked pages uniquely identifies unaligned block offset based on memory controller addressing design. • Address bits a 0 - a 20 are known once the offset is known. • Timing channels are used to identify co-banked pages. • Get a 21 using on consecutive rows. • Template by imposing 1-0-1 and 0-1-0 stripes in consecutive row and checking for bit flips. 12

  13. Key Extraction • From templating, bits that flip in the same location as key data are considered useful (3/16). • Bit flips occurring at the same offset in multiple rows are redundant and not useful (4/15). • Out of 84K recovered bit flips, 4.2K will Key info provide useful information for key extraction. location • Can achieve 3-4 bit/second. 13

  14. 14 Frame Fung Shui • Given a know victim DRAM allocation pattern, devise a situation such that the victim places the secret in T0 or T1. Step 1: Dummy Step 2: Deallocation Step 3: Trigger Victim Allocations FILO FILO n-1 n-1 n-1 n-1 ? 1 1 0 1 1 ? 0 T0 0 0 ? T0 T1 T0 T0 Secret! T1 Attacker Controlled Allocator Stack Attacker Controlled Allocator Stack Victim Control

  15. SSH Attack • 4,200 bits (68%) recovered at 0.31 bits/second and 82% accuracy. (~4 hours) • Full key was successfully recovered with Heninger- Shacham algorithm. 15

  16. Poll Question • Which countermeasure would provide the greatest difficulty in performing the RAMBleed attack? • PARA (Probabilistic Adjacent Row Activation) • Using ECC RAM. • Randomly changing key location within secret page (S) during SSH child spawn. • Using DDR4 instead of DDR3. • Memory scrambling. • Flushing key from memory when done. 16

  17. ECC Modifications • In ECC DRAM, the data and check bits are 64 and 8 bits respectively. • During a read, if the memory controller detects • One errors: A large read latency is observed and the unflipped data is read out. • Two errors: The machine crashes • Templating now works using a binary search in each 64 bit word and looking for increased read latency. • Use increased read latency to ‘read’ the sampling page. • Achieves 0.64 bits/second and 73% accuracy. 17

  18. Mitigations • Probabilistic Adjacent Row Activation (PARA) • Not widely adopted and probabilistic security. • Targeted Row Refresh (TRR) • Some papers have induced Rowhammer bit flips even with TRR. • More frequent refresh (from 64ms to 32 ms) • Some papers can flip bits even with this change; not practical for mobile use. • Using ECC • This paper demonstrates how ECC can be used as a vulnerability. • Memory Encryption • This works. Bit flips can cause SGX to halt due to failed integrity check. • Flush keys from memory • Not practical for data that must be stored for long durations. • Probabilistic memory allocator • Cannot defeat RAMBleed with probabilistic memory spraying techniques. • Attacker can use row-buffer timing side channel to detect correct configuration. 18

  19. Discussion Questions • Is it feasible to use ECC mechanisms which don’t have a discernable latency on correction events? • How would the attacker handle random placement of the keys within the secret page? If the key were continuously moved? • The attack's execution leaned heavily on the determinism of Linux's buddy allocator. Would it still be possible to pull off this exploit with a randomized memory allocator? • This paper (along with other exploits we have discussed) demonstrate how dangerous it can be to share memory mappings/physical memory layouts with user space programs. Is there work demonstrating memory controller based randomized physical layouts? • Can the ECC RAMBleed attack work if each 64 bit word has more than one bit flip? 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors

Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors

Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors ISCA 2014 Yoongu Kim 1 Ross Daly 1 Jeremie Kim 1 Chris Fallin 1 Ji Hye Lee 1 Donghyuk Lee 1 Chris Wilkerson 2 Konrad Lai Onur Mutlu 1 1 Carnegie

413 views • 28 slides
Memory Management Memory Management Memory a linear array of bits, bytes, words, pages ... -

Memory Management Memory Management Memory a linear array of bits, bytes, words, pages ... -

CS510 Operating System Foundations Jonathan Walpole Memory Management Memory Management Memory a linear array of bits, bytes, words, pages ... - Each byte is named by a unique memory address - Holds instructions and data for OS and user

761 views • 56 slides
Memory Memory Decoders M bits M bits RWM NVRWM ROM S 0 S 0 Word 0 Word 0 S 1 Word 1 Word

Memory Memory Decoders M bits M bits RWM NVRWM ROM S 0 S 0 Word 0 Word 0 S 1 Word 1 Word

Memory Memory Decoders M bits M bits RWM NVRWM ROM S 0 S 0 Word 0 Word 0 S 1 Word 1 Word 1 A 0 S 2 Storage Storage Random Non-Random Word 2 Word 2 N Words Cell A 1 Cell EPROM Mask-Programmed Decoder Access Access E 2 PROM

464 views • 21 slides
Cache Management Improving Memory Locality and Reducing Memory Latency Introduction Memory

Cache Management Improving Memory Locality and Reducing Memory Latency Introduction Memory

Cache Management Improving Memory Locality and Reducing Memory Latency Introduction Memory system performance is critical in modern architectures DO I = 1, M Accessing memory takes much longer than DO J = 1, N accessing cache

364 views • 19 slides
MIPS Instruction Formats 6 bits 5 bits 5 bits 5 bits 5 bits 6 bits for instance,

MIPS Instruction Formats 6 bits 5 bits 5 bits 5 bits 5 bits 6 bits for instance,

MIPS Instruction Formats 6 bits 5 bits 5 bits 5 bits 5 bits 6 bits for instance, add r1, r2, r3 has - 000000 00010 00011 00001 00000 100000 opcode (OP) tells the machine which format 1 VAX Instruction Formats (x86

431 views • 20 slides
Memory Errors Bits in memory can be flipped Hard error The chip is broken E.g.,

Memory Errors Bits in memory can be flipped Hard error The chip is broken E.g.,

Verilog Memory Errors Bits in memory can be flipped Hard error The chip is broken E.g., manufacturing defect, wear (in Flash) Soft error Stored data corrupted, but cell still works Caused by atmospheric neutrons, alpha

291 views • 7 slides
Memory Testing 1 Memory Cells Per Chip 2 1 Test Time in Seconds (Memory Size n Bits, Memory

Memory Testing 1 Memory Cells Per Chip 2 1 Test Time in Seconds (Memory Size n Bits, Memory

Memory Testing 1 Memory Cells Per Chip 2 1 Test Time in Seconds (Memory Size n Bits, Memory Cycle Time 60ns) Size Number of Test Algorithm Operations n 2 n 3/2 n n n X log 2 n 64.5 0.06 1 Mb 1.26 18.3 hr 515.4 4 Mb 0.25

558 views • 30 slides
Load Value Approximation Joshua San Miguel Mario Badr Natalie Enright Jerger Accessing Memory

Load Value Approximation Joshua San Miguel Mario Badr Natalie Enright Jerger Accessing Memory

Load Value Approximation Joshua San Miguel Mario Badr Natalie Enright Jerger Accessing Memory main memory shared caches, directory, network-on-chip L1 cache processor core 2 Accessing Memory main memory shared caches, directory,

701 views • 52 slides
Dangling Pointers Periklis Akritidis --2010 Use-after-free Vulnerabilities Accessing Memory

Dangling Pointers Periklis Akritidis --2010 Use-after-free Vulnerabilities Accessing Memory

Cling: A Memory Allocator to Mitigate Dangling Pointers Periklis Akritidis --2010 Use-after-free Vulnerabilities Accessing Memory Through Dangling Pointers Techniques : Heap Spraying, Feng Shui Manual memory management is error prone

574 views • 35 slides
1 Transducers Inherently Discrete values devices that convert from one representation to

1 Transducers Inherently Discrete values devices that convert from one representation to

Interpretation of bits depends on context meaning of a group of bits depends on how they are interpreted 1 byte could be Bits, Bytes, 1 bit in use, 7 wasted bits (e.g., M/F in a database) 8 bits storing a number between 0 and 255

543 views • 3 slides
? representing data with bits data SW- Processor Memory bits, bytes,

? representing data with bits data SW- Processor Memory bits, bytes,

9/4/15 1930s 1940s 1950s 1960s 1970s 1980s 1990s 2000s 2010s Modern Digital Computer von Neumann model HW- controlled instructions ? representing data with bits data SW- Processor

325 views • 4 slides
What is Bug Club? A reading programme that Askwith School will use to help teach reading

What is Bug Club? A reading programme that Askwith School will use to help teach reading

What is Bug Club? A reading programme that Askwith School will use to help teach reading Children can take home a reading book as well as accessing an eBooks version via a personalised website The book content features some well-known

533 views • 15 slides
Bits and Bytes Topics Topics Why bits? Representing information as bits

Bits and Bytes Topics Topics Why bits? Representing information as bits

Systems I Bits and Bytes Topics Topics Why bits? Representing information as bits Binary/Hexadecimal Byte representations numbers characters and strings Instructions Bit-level manipulations Boolean algebra

614 views • 33 slides
Slide Set #15: Exploiting Memory Hierarchy 1 ADMIN Chapter 5 Reading 5.1, 5.3, 5.4 2

Slide Set #15: Exploiting Memory Hierarchy 1 ADMIN Chapter 5 Reading 5.1, 5.3, 5.4 2

Slide Set #15: Exploiting Memory Hierarchy 1 ADMIN Chapter 5 Reading 5.1, 5.3, 5.4 2 Memory, Cost, and Performance Ideal World: we want a memory that is Fast, Big, & Cheap! Recent real world situation:

216 views • 6 slides
Hardware basics CS 2XA3 Term I, 2020/21 Outline Basic architecture Byte order Endianess

Hardware basics CS 2XA3 Term I, 2020/21 Outline Basic architecture Byte order Endianess

Hardware basics CS 2XA3 Term I, 2020/21 Outline Basic architecture Byte order Endianess NASM 64 Hardware platform Basic architecture fetch instructions data memory bus 64 bits 64 bits execute registers 64 bits CPU memory

315 views • 10 slides
Hardware basics SE 2XA3 Term I, 2020/21 Outline Basic architecture Byte order Endianess

Hardware basics SE 2XA3 Term I, 2020/21 Outline Basic architecture Byte order Endianess

Hardware basics SE 2XA3 Term I, 2020/21 Outline Basic architecture Byte order Endianess NASM 64 Hardware platform Basic architecture fetch instructions data memory bus 64 bits 64 bits execute registers 64 bits CPU memory

270 views • 10 slides
L 2 discrepancy of digit scrambled two-dimensional Hammersley point sets Friedrich Pillichshammer

L 2 discrepancy of digit scrambled two-dimensional Hammersley point sets Friedrich Pillichshammer

L 2 discrepancy of digit scrambled two-dimensional Hammersley point sets Friedrich Pillichshammer 1 Linz/Austria Joint work with Henri Faure (Marseille) Gottlieb Pirsic (Linz) Wolfgang Schmid (Salzburg) 1 Supported by the Austrian Science

531 views • 17 slides
Classicalization, Scrambling and Thermalization in QCD at high energies Raju Venugopalan

Classicalization, Scrambling and Thermalization in QCD at high energies Raju Venugopalan

Classicalization, Scrambling and Thermalization in QCD at high energies Raju Venugopalan Brookhaven National Laboratory Galileo Institute School, February 27-March 3, 2020 Outline of lectures Lecture I: Classicalization: The hadron

340 views • 23 slides
For Monday Read chapter 9 Homework: Chapter 8, exercises 9 and 10 Program 1 Any

For Monday Read chapter 9 Homework: Chapter 8, exercises 9 and 10 Program 1 Any

For Monday Read chapter 9 Homework: Chapter 8, exercises 9 and 10 Program 1 Any questions? Higher-Order Logic FOPC is called first-order because it allows quantifiers to range over objects (terms) but not properties,

681 views • 32 slides
Develop Your Data Mindset Module 12 - Classroom Level Goal Evaluation Part 2 - Accumulate &

Develop Your Data Mindset Module 12 - Classroom Level Goal Evaluation Part 2 - Accumulate &

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License. Develop Your Data Mindset Module 12 - Classroom Level Goal Evaluation Part 2 - Accumulate & Access By Nathan Anderson, Amy Ova,

832 views • 64 slides
Microscopic Model of Charmonium Strong Decays J. Segovia , D.R. Entem and F. Fern andez

Microscopic Model of Charmonium Strong Decays J. Segovia , D.R. Entem and F. Fern andez

Introduction Modeling strong decays Constituent quark model Microscopic decay model Results within charmonium sector Summary Microscopic Model of Charmonium Strong Decays J. Segovia , D.R. Entem and F. Fern andez segonza@usal.es The XIV

615 views • 24 slides
Safe screening for the generalized conditional gradient method Yifan Sun Joint work with Francis

Safe screening for the generalized conditional gradient method Yifan Sun Joint work with Francis

Safe screening for the generalized conditional gradient method Yifan Sun Joint work with Francis Bach at INRIA Paris March 2020 1 / 20 Problem statement minimize f ( x ) + ( ( x )) x f : R n R convex and smooth : R n R +

604 views • 25 slides
Theories of VHE emission from pulsar magnetospheres Kouichi HIROTANI +BH (IC 310) ASIAA,Taiwan

Theories of VHE emission from pulsar magnetospheres Kouichi HIROTANI +BH (IC 310) ASIAA,Taiwan

Theories of VHE emission from pulsar magnetospheres Kouichi HIROTANI +BH (IC 310) ASIAA,Taiwan TeVPA 2015 Kashiwa, Japan October 27, 2015 1 g -ray Pulsar Observations Large Area After 2008, LAT aboard Fermi has detected Telescope

516 views • 38 slides
Exotic hadrons from BESIII Changzheng Yuan IHEP, Beijing (for the BESIII Collaboration)

Exotic hadrons from BESIII Changzheng Yuan IHEP, Beijing (for the BESIII Collaboration)

Exotic hadrons from BESIII Changzheng Yuan IHEP, Beijing (for the BESIII Collaboration) Novosibirsk, May 21, 2018 Outline The BESIII experiment charmoniumlike states The Y states J PC =1 -- The Z c states I=1 &

560 views • 44 slides

More recommend