Saved in:
Bibliographic Details
Main Authors: Saxena, Anish, Wang, Walter, Daglis, Alexandros
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2409.15463
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866912042080796672
author Saxena, Anish
Wang, Walter
Daglis, Alexandros
author_facet Saxena, Anish
Wang, Walter
Daglis, Alexandros
contents Rowhammer is a hardware security vulnerability at the heart of every system with modern DRAM-based memory. Despite its discovery a decade ago, comprehensive defenses remain elusive, while the probability of successful attacks grows with DRAM density. Hardware-based defenses have been ineffective, due to considerable cost, delays in commercial adoption, and attackers' repeated ability to circumvent them. Meanwhile, more flexible software-based solutions either incur substantial performance and memory capacity overheads, or offer limited forms of protection. Citadel is a new memory allocator design that prevents Rowhammer-initiated security exploits by addressing the vulnerability's root cause: physical adjacency of DRAM rows. Citadel enables creation of flexible security domains and isolates different domains in physically disjoint memory regions, guaranteeing security by design. On a server system, Citadel supports thousands of security domains at a modest 7.4% average memory overhead and no performance loss. In contrast, recent domain isolation schemes fail to support many workload scenarios due to excessive overheads, and incur 4--6x higher overheads for supported scenarios. As a software solution, Citadel offers readily deployable Rowhammer-aware isolation on legacy, current, and future systems.
format Preprint
id arxiv_https___arxiv_org_abs_2409_15463
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Preventing Rowhammer Exploits via Low-Cost Domain-Aware Memory Allocation
Saxena, Anish
Wang, Walter
Daglis, Alexandros
Cryptography and Security
Rowhammer is a hardware security vulnerability at the heart of every system with modern DRAM-based memory. Despite its discovery a decade ago, comprehensive defenses remain elusive, while the probability of successful attacks grows with DRAM density. Hardware-based defenses have been ineffective, due to considerable cost, delays in commercial adoption, and attackers' repeated ability to circumvent them. Meanwhile, more flexible software-based solutions either incur substantial performance and memory capacity overheads, or offer limited forms of protection. Citadel is a new memory allocator design that prevents Rowhammer-initiated security exploits by addressing the vulnerability's root cause: physical adjacency of DRAM rows. Citadel enables creation of flexible security domains and isolates different domains in physically disjoint memory regions, guaranteeing security by design. On a server system, Citadel supports thousands of security domains at a modest 7.4% average memory overhead and no performance loss. In contrast, recent domain isolation schemes fail to support many workload scenarios due to excessive overheads, and incur 4--6x higher overheads for supported scenarios. As a software solution, Citadel offers readily deployable Rowhammer-aware isolation on legacy, current, and future systems.
title Preventing Rowhammer Exploits via Low-Cost Domain-Aware Memory Allocation
topic Cryptography and Security
url https://arxiv.org/abs/2409.15463