secpm a secure and persistent memory system for non
play

SecPM: a Secure and Persistent Memory System for Non-volatile Memory - PowerPoint PPT Presentation

Feb 07, 2023 •305 likes •577 views

SecPM: a Secure and Persistent Memory System for Non-volatile Memory Pengfei Zuo, Yu Hua Huazhong University of Science and Technology, China 10th USENIX Workshop on Hot Topics in Storage and File Systems (HotStorage18) Persistence Issue

  1. SecPM: a Secure and Persistent Memory System for Non-volatile Memory Pengfei Zuo, Yu Hua Huazhong University of Science and Technology, China 10th USENIX Workshop on Hot Topics in Storage and File Systems (HotStorage’18)

  2. Persistence Issue � The non-volatility of NVM enables data to be persistently stored into NVM � Data may be incorrectly persisted due to crash inconsistency – Modern processors and caches usually reorder memory writes – Volatile caches cause partial update Bus (64bits) Caches (volatile) NVM (non-volatile)

  3. Consistency Guarantee for Persistence � Durable transaction: a commonly used solution – NV-Heaps (ASPLOS’11), Mnemosyne (ASPLOS’11), DCT (ASPLOS’16), DudeTM (ASPLOS’17), NVML (Intel) – Enable a group of memory updates to be performed in an atomic manner TX_BEGIN � Enforce write ordering do some computation; // Prepare stage: backing up the data in log write undo log; – Cache line flush and memory flush log; memory_barrier (); barrier instructions // Mutate stage: updating the data in place write data; � Avoid partial update flush data; memory_barrier (); // Commit stage: invalidating the log – Logging log->valid = false; flush log->valid; memory_barrier (); TX_END

  4. Security Issue � Traditional DRAM: volatile – If a DRAM DIMM is removed from a computer • Data are quickly lost � NVM: non-volatile – If an NVM DIMM is removed • An attacker can directly stream out the data from the DIMM • Unsecure

  5. Memory Encryption for Security � Counter mode encryption – Hide the decryption latency – Generate One Time Pad (OTP) using a per-line counter • Counters are buffered in an on-chip counter cache (a) Traditional encryption Encryption Decryption Memory Access Decryption LineAddr Counter Plaintext Plaintext + + Time OTP AES-ctr Key Reduced latency Memory Access Ciphertext Ciphertext One Time Pad (b) Counter mode encryption

  6. The Gap between Persistence and Security � Ensuring both security and persistence – Simply combining existing persistence schemes with memory encryption is inefficient – Each write in the secure NVM has to persist two data • Including the data itself and the counter � Crash inconsistency – Cache line flush instruction cannot operate the counter cache – Memory barrier instruction fails to ensure the ordering of counter writes � Performance degradation – Double write requests

  7. Durable Transaction in Secure NVM Stage Log content Log counter Data content Data counter Recoverable? Prepare Wrong Wrong Correct Correct Yes Mutate Correct Unknown Wrong Wrong No Commit Correct Unknown Correct Unknown No � Selective counter-atomicity (HPCA’18): modifications TX_BEGIN in software & hardware layers do some computation; // Prepare stage: backing up the data in log − Programming language write undo log; ◦ Add CounterAtomic variable and flush log; memory_barrier (); counter_cache_w riteback () function // Mutate stage: updating the data in place − Compiler write data; flush data; ◦ Support the new primitives memory_barrier (); − Memory controller // Commit stage: invalidating the log log->valid = false; ◦ Add a counter write queue flush log->valid; memory_barrier (); TX_END

  8. SecPM: a Secure and Persistent Memory System � Perform only slight modifications on the memory controller, being transparent for programmers – Programs running on an un-encrypted NVM can be directly executed on a secure NVM with SecPM � Consistency guarantee Memory Controller Counters – A counter cache write-through Last Level Cache Counter Plaintext OTP Counter AES-ctr Cache (CWT) scheme Encrypted NVM Ciphertext Counter � Performance The Write Queue improvement – A locality-aware counter write Asynchronous DRAM refresh (ADR): cache lines reduction (CWR) scheme reaching the write queue can be considered durable.

  9. Counter Cache Write-through (CWT) Scheme � CWT ensures the crash consistency of both data and counter – Append the counter of the data in the write queue during encrypting the data – Ensure the counter is durable before the data flush complet CPU Flu(A) Ack(A) Read(Ac) Ac++ Ret(A) Memory Ctrl Enc(A) (Write Queue) App(Ac) App(A)

  10. Durable Transaction in SecPM Stage Log content Log counter Data content Data counter Recoverable? Prepare Wrong Wrong Correct Correct Yes Mutate Correct Correct Wrong Wrong Yes Commit Correct Correct Correct Correct Yes TX_BEGIN do some computation; At least one of log and data is correct // Prepare stage: backing up the data in log write undo log; in whichever stage a system failure flush log; memory_barrier (); occurs // Mutate stage: updating the data in place write data; flush data; memory_barrier (); The system can be recoverable in a // Commit stage: invalidating the log log->valid = false; consistent state in SecPM flush log->valid; memory_barrier (); TX_END 1

  11. Counter Write Reduction (CWR) Scheme � leveraging the spatial locality of counter storage, log and data writes – The spatial locality of counter storage • The counters of all memory lines in a page are stored in one memory line • Each memory line is encrypted by the major counter concatenated with a minor counter 64B …… M m 1 m 2 m 3 m 64 Major counter 64 minor counters (64 bit) (each 7 bit) 1

  12. Counter Write Reduction (CWR) Scheme � leveraging the spatial locality of counter storage, log and data writes – The spatial locality of counter storage • The counters of all memory lines in a page are stored in one memory line • Each memory line is encrypted by the major counter concatenated with a minor counter – The spatial locality of log and data writes • A log is stored in a contiguous region • Programs usually allocate a contiguous memory region for a transaction 1

  13. Counter Write Reduction (CWR) Scheme � An illustration of the write queue when writing a log – The counters Ac , Bc , Cc , and Dc are written into the same memory line – The latter cache lines contain the updated contents of the former ones ( Ac ∈ Bc ∈ Cc ∈ Dc) • They are evicted from the write-through counter cache The log contents The counters of log contents Ac: … M m 1' m 2 m 3 m 4 m 64 … Bc: M m 1' m 2' m 3 m 4 m 64 …… D Dc C Cc B Bc A Ac Cc: … M m 1' m 2' m 3' m 4 m 64 The write queue Dc: … M m 1' m 2' m 3' m 4' m 64 (Each cell is a cache line to be written into NVM) 1

  14. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data …… A Ac The Write Queue 1

  15. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data …… Bc A Ac The Write Queue 1

  16. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data …… B Bc A The Write Queue 1

  17. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data …… Cc B Bc A The Write Queue 1

  18. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data …… C Cc B A The Write Queue 1

  19. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data …… Dc C Cc B A The Write Queue 1

  20. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data – Using a flag to distinguish whether a cache line is from CPU caches or the counter cache …… D Dc C B A 1 1 1 1 0 The Write Queue (1: from CPU caches; 0: from the counter cache) 2

  21. Counter Write Reduction (CWR) Scheme � When a new cache line arrives, remove the existing cache line with the same physical address in the write queue – Without causing any loss of data – Using a flag to distinguish whether a cache line is from CPU caches or the counter cache …… With CWR D Dc C B A …… Without CWR D Dc C Cc B Bc A Ac 2

  22. Performance Evaluation � Model NVM using gem5 and NVMain CPU and Caches Memory Using PCM X86-64 CPU, at 2 GHz Capacity: 16GB 32KB L1 data & instruction caches Read/write latency: 150/450ns 2MB L2 cache Encryption/decryption latency: 40ns 8MB shared L3 cache Counter cache: 1MB, 10ns latency � Storage benchmarks – A hash table based key-value store – A B-tree based key-value store 2

  23. The Number of NVM Write Requests Hash table based KV store B-tree based KV store Compared with the SecPM w/o CWR, SecPM significantly reduces NVM writes Compared with Insec-PM, SecPM only causes 13%, 5%, and 2% more writes when the request size is 256B, 1KB, and 4KB, respectively 2

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Memory SoC Persistent Memory-Driven Memory Memory Processor-Centric Memory SoC SoC

1 Memory SoC Persistent Memory-Driven Memory Memory Processor-Centric Memory SoC SoC

1 Memory SoC Persistent Memory-Driven Memory Memory Processor-Centric Memory SoC SoC Computing Computing + Fabric SoC Memory HYPERCONVERGED Exascale EDGE DEVICE SYSTEM Eliminate data movement via shared

400 views • 11 slides
SuperMem: Enabling Application- transparent Secure Persistent Memory with Low Overheads Pengfei

SuperMem: Enabling Application- transparent Secure Persistent Memory with Low Overheads Pengfei

SuperMem: Enabling Application- transparent Secure Persistent Memory with Low Overheads Pengfei Zuo 1,2 , Yu Hua 1 , Yuan Xie 2 1 Huazhong University of Science and Technology, China 2 University of California at Santa Barbara, USA 52nd IEEE/ACM

494 views • 33 slides
Distributed Shared Persistent Memory (SoCC 17) Yizhou Shan, Yiying Zhang Persistent Memory

Distributed Shared Persistent Memory (SoCC 17) Yizhou Shan, Yiying Zhang Persistent Memory

Distributed Shared Persistent Memory (SoCC 17) Yizhou Shan, Yiying Zhang Persistent Memory (PM/NVM) CPU Byte Addressable Persistent Cache Low Latency Capacity Cost effective PM DRAM 2 Many PM Work, but All in Single Machine

712 views • 33 slides
Hardware Support for ACID Transactions in Persistent Memory Arpit Joshi , Vijay Nagarajan, Marcelo

Hardware Support for ACID Transactions in Persistent Memory Arpit Joshi , Vijay Nagarajan, Marcelo

Hardware Support for ACID Transactions in Persistent Memory Arpit Joshi , Vijay Nagarajan, Marcelo Cintra, Stratis Viglas NVMW 2019 Persistent Memory Systems L1 L1 LLC Persistent Memory 2 Persistent Memory Systems L1 L1 Persistent

1.1k views • 70 slides
Logging in Persistent Memory: to Cache, or Not to Cache? Mengjie Li, Matheus Ogleari , Jishen Zhao

Logging in Persistent Memory: to Cache, or Not to Cache? Mengjie Li, Matheus Ogleari , Jishen Zhao

Logging in Persistent Memory: to Cache, or Not to Cache? Mengjie Li, Matheus Ogleari , Jishen Zhao Persistent Memory STT-RAM, PCM, Memory CPU CPU ReRAM, NVDIMM, Battery-backed Load/store DRAM NVRAM DRAM, etc. Not persistent Persistent

308 views • 20 slides
Persistent Memory Use Cases in Modern Software Architectures Olasoji Denloye SW Engineer Intel

Persistent Memory Use Cases in Modern Software Architectures Olasoji Denloye SW Engineer Intel

Persistent Memory Use Cases in Modern Software Architectures Olasoji Denloye SW Engineer Intel Corporation Persistent Memory 3 Properties of Persistent Memory Byte-addressable like DRAM Direct user-level access Lowers DRAM

503 views • 23 slides
WORT: Write Optimal Radix Tree for Persistent Memory Storage Systems Se Kwon Lee K. Hyun Lim 1 ,

WORT: Write Optimal Radix Tree for Persistent Memory Storage Systems Se Kwon Lee K. Hyun Lim 1 ,

WORT: Write Optimal Radix Tree for Persistent Memory Storage Systems Se Kwon Lee K. Hyun Lim 1 , Hyunsub Song, Beomseok Nam, Sam H. Noh UNIST 1 Hongik University Persistent Memory (PM) Persistent memory is expected to replace both DRAM

870 views • 48 slides
Adaptively Secure Succinct Garbled RAM with Persistent Memory Ran Canetti, Yilei Chen, Justin

Adaptively Secure Succinct Garbled RAM with Persistent Memory Ran Canetti, Yilei Chen, Justin

Adaptively Secure Succinct Garbled RAM with Persistent Memory Ran Canetti, Yilei Chen, Justin Holmgren, Mariana Raykova DIMACS workshop MIT Media Lab June 8~10, 2016 1 : June 11, 2016, Boston, heavy snow. 2 : June 11, 2016, Boston, heavy

1.28k views • 115 slides
DHTM: Durable Hardware Transactional Memory Arpit Joshi , Vijay Nagarajan, Marcelo Cintra, Stratis

DHTM: Durable Hardware Transactional Memory Arpit Joshi , Vijay Nagarajan, Marcelo Cintra, Stratis

DHTM: Durable Hardware Transactional Memory Arpit Joshi , Vijay Nagarajan, Marcelo Cintra, Stratis Viglas ISCA 2018 Persistent Memory is here 2 Persistent Memory is here 2 Persistent Memory Systems L1 L1 LLC Persistent Memory

1.1k views • 73 slides
Persistent storage just like memory, only different Just like diamonds last forever (?) memory is

Persistent storage just like memory, only different Just like diamonds last forever (?) memory is

Persistent storage just like memory, only different Just like diamonds last forever (?) memory is volatile very dense Persistent Storage 10 TBytes of storage fit here ...but much cheaper 10 TByte NAS drive is $ 300 on Amazon way cheaper than How

788 views • 10 slides
NATIVE OS SUPPORT FOR PERSISTENT MEMORY WITH REGIONS Mohammad Chowdhury (mchow017@fiu.edu) Raju

NATIVE OS SUPPORT FOR PERSISTENT MEMORY WITH REGIONS Mohammad Chowdhury (mchow017@fiu.edu) Raju

NATIVE OS SUPPORT FOR PERSISTENT MEMORY WITH REGIONS Mohammad Chowdhury (mchow017@fiu.edu) Raju Rangaswami (raju@cs.fiu.edu) Florida International University PERSISTENT MEMORY (PM) Hybrid characteristics of memory and storage Memory

531 views • 27 slides
RECIPE : Converting Concurrent DRAM Indexes to Persistent-Memory Indexes Se Kwon Lee, Jayashree

RECIPE : Converting Concurrent DRAM Indexes to Persistent-Memory Indexes Se Kwon Lee, Jayashree

RECIPE : Converting Concurrent DRAM Indexes to Persistent-Memory Indexes Se Kwon Lee, Jayashree Mohan, Sanidhya Kashyap * , Taesoo Kim, Vijay Chidambaram *On the job market 1 Persistent Memory (PM) New storage class memory technology

1.01k views • 70 slides
CCHL: Compression-Consolidation Hardware Logging for Efficient Failure-Atomic Persistent Memory

CCHL: Compression-Consolidation Hardware Logging for Efficient Failure-Atomic Persistent Memory

CCHL: Compression-Consolidation Hardware Logging for Efficient Failure-Atomic Persistent Memory Updates Xueliang Wei, Dan Feng, Wei Tong, Jingning Liu, Chengning Wang, Liuqing Ye Huazhong University of Science and Technology Persistent Memory

817 views • 38 slides
Moving the EOS namespace to persistent memory Tobias Kapp e (IT-DSS-DT) tkappe@cern.ch

Moving the EOS namespace to persistent memory Tobias Kapp e (IT-DSS-DT) tkappe@cern.ch

Moving the EOS namespace to persistent memory Tobias Kapp e (IT-DSS-DT) tkappe@cern.ch Supervised by Elvin Alin Sindrilaru August 26, 2015 Moving the EOS namespace to persistent memory 1 EOS . . . . . . provides reliable and fast

439 views • 11 slides
SplitFS: Reducing Software Overhead in File Systems for Persistent Memory Rohan Kadekodi, Se Kwon

SplitFS: Reducing Software Overhead in File Systems for Persistent Memory Rohan Kadekodi, Se Kwon

SplitFS: Reducing Software Overhead in File Systems for Persistent Memory Rohan Kadekodi, Se Kwon Lee, Sanidhya Kashyap*, Taesoo Kim, Aasheesh Kolli, Vijay Chidambaram * on the job market 1 Persistent Memory (PM) Non-volatile Fast

1.47k views • 109 slides
Lock-free Concurrent Level Hashing for Persistent Memory Zhangyu Chen , Yu Hua, Bo Ding, Pengfei

Lock-free Concurrent Level Hashing for Persistent Memory Zhangyu Chen , Yu Hua, Bo Ding, Pengfei

Lock-free Concurrent Level Hashing for Persistent Memory Zhangyu Chen , Yu Hua, Bo Ding, Pengfei Zuo Huazhong University of Science and Technology USENIX ATC 2020 Persistent Memory (PM) PM features Non-volatility Byte-addressability

1.63k views • 117 slides
IN-MEMORY ASSOCIATIVE COMPUTING AVIDAN AKERIB, GSI TECHNOLOGY AAKERIB@GSITECHNOLOGY.COM AGENDA

IN-MEMORY ASSOCIATIVE COMPUTING AVIDAN AKERIB, GSI TECHNOLOGY AAKERIB@GSITECHNOLOGY.COM AGENDA

IN-MEMORY ASSOCIATIVE COMPUTING AVIDAN AKERIB, GSI TECHNOLOGY AAKERIB@GSITECHNOLOGY.COM AGENDA The AI computational challenge Introduction to associative computing Examples An NLP use case Whats next? THE CHALLENGE IN AI

755 views • 52 slides
Main Memory & DRAM Nima Honarmand Spring 2018 :: CSE 502 Main Memory Big Picture 1)

Main Memory & DRAM Nima Honarmand Spring 2018 :: CSE 502 Main Memory Big Picture 1)

Spring 2018 :: CSE 502 Main Memory & DRAM Nima Honarmand Spring 2018 :: CSE 502 Main Memory Big Picture 1) Last-level cache sends its memory requests to a Memory Controller Over a system bus of other types of interconnect 2)

963 views • 41 slides
Language Definition vs. Implementation Most of 251 so far Now a

Language Definition vs. Implementation Most of 251 so far Now a

9/23/15 Language Definition vs. Implementation Most of 251 so far Now a brief interlude Ideally distinct, but definitely influence each other. Impossible/infeasible

352 views • 5 slides
Real Processing in Memory using Memristors Nishil Talati, Rotem Ben Hur, Nimrod Wald, Ameer Haj

Real Processing in Memory using Memristors Nishil Talati, Rotem Ben Hur, Nimrod Wald, Ameer Haj

Memristive Memory Processing Unit (mMPU) Real Processing in Memory using Memristors Nishil Talati, Rotem Ben Hur, Nimrod Wald, Ameer Haj Ali, Ben Perach, Natan Peled, Ronny Ronen and Shahar Kvatinsky Technion Israel Institute of Technology

576 views • 39 slides
Analysing the Relationship between Learning Styles and Cognitive Traits Sabine Graf Taiyu Lin

Analysing the Relationship between Learning Styles and Cognitive Traits Sabine Graf Taiyu Lin

Analysing the Relationship between Learning Styles and Cognitive Traits Sabine Graf Taiyu Lin Kinshuk Vienna University of Technology Massey University Athabasca University Austria New Zealand Canada sabine.graf@ieee.org

307 views • 26 slides
Lecturer: Dr. Benjamin Amponsah, Dept. of Psychology, UG, Legon Contact Information:

Lecturer: Dr. Benjamin Amponsah, Dept. of Psychology, UG, Legon Contact Information:

Lecturer: Dr. Benjamin Amponsah, Dept. of Psychology, UG, Legon Contact Information: bamponsah@ug.edu.gh College of Education School of Continuing and Distance Education 2014/2015 2016/2017 Session Overview We turn our attention to how

707 views • 24 slides
iBench: Quantifying Interference in Datacenter Applications Christina Delimitrou and Christos

iBench: Quantifying Interference in Datacenter Applications Christina Delimitrou and Christos

iBench: Quantifying Interference in Datacenter Applications Christina Delimitrou and Christos Kozyrakis Stanford University IISWC September 23 th 2013 Executive Summary Problem: Increasing utilization causes interference between

600 views • 42 slides
Memory Prefetching Instructor: Nima Honarmand Spring 2015 :: CSE 502 Computer Architecture

Memory Prefetching Instructor: Nima Honarmand Spring 2015 :: CSE 502 Computer Architecture

Spring 2015 :: CSE 502 Computer Architecture Memory Prefetching Instructor: Nima Honarmand Spring 2015 :: CSE 502 Computer Architecture The memory wall 10000 Performance 1000 Processor 100 10 Memory 1 1985 1990 1995 2000 2005

337 views • 30 slides

More recommend