SoK: Hardware Defenses Against Speculative Execution Attacks

Guangyuan Hu; Zecheng He; Ruby B. Lee

doi:10.1109/SEED51797.2021.00023

SoK: Hardware Defenses Against Speculative Execution Attacks

Guangyuan Hu, Zecheng He, Ruby B. Lee

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

13 Scopus citations

Abstract

Speculative execution attacks leverage the speculative and out-of-order execution features in modern computer processors to access secret data or execute code that should not be executed. Secret information can then be leaked through a covert channel. While software patches can be installed for mitigation on existing hardware, these solutions can incur big performance overhead. Hardware mitigation is being studied extensively by the computer architecture community. It has the benefit of preserving software compatibility and the potential for much smaller performance overhead than software solutions.This paper presents a systematization of the hardware defenses against speculative execution attacks that have been proposed. We show that speculative execution attacks consist of 6 critical attack steps. We propose defense strategies, each of which prevents a critical attack step from happening, thus preventing the attack from succeeding. We then summarize 20 hardware defenses and overhead-reducing features that have been proposed. We show that each defense proposed can be classified under one of our defense strategies, which also explains why it can thwart the attack from succeeding. We discuss the scope of the defenses, their performance overhead, and the security-performance trade-offs that can be made.

Original language	English (US)
Title of host publication	Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	108-120
Number of pages	13
ISBN (Electronic)	9781665420259
DOIs	https://doi.org/10.1109/SEED51797.2021.00023
State	Published - 2021
Event	1st International Symposium on Secure and Private Execution Environment Design, SEED 2021 - Virtual, Online, United States Duration: Sep 20 2021 → Sep 21 2021

Publication series

Name	Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021

Conference

Conference	1st International Symposium on Secure and Private Execution Environment Design, SEED 2021
Country/Territory	United States
City	Virtual, Online
Period	9/20/21 → 9/21/21

All Science Journal Classification (ASJC) codes

Artificial Intelligence
Computer Networks and Communications
Hardware and Architecture
Information Systems and Management
Safety, Risk, Reliability and Quality

Keywords

Hardware Security
Speculative Execution Attacks

Access to Document

10.1109/SEED51797.2021.00023

Cite this

Hu, G., He, Z., & Lee, R. B. (2021). SoK: Hardware Defenses Against Speculative Execution Attacks. In Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021 (pp. 108-120). (Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SEED51797.2021.00023

Hu, Guangyuan ; He, Zecheng ; Lee, Ruby B. / SoK : Hardware Defenses Against Speculative Execution Attacks. Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021. Institute of Electrical and Electronics Engineers Inc., 2021. pp. 108-120 (Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021).

@inproceedings{f29e803c2a9749d68ccb07e0b7898ff4,

title = "SoK: Hardware Defenses Against Speculative Execution Attacks",

abstract = "Speculative execution attacks leverage the speculative and out-of-order execution features in modern computer processors to access secret data or execute code that should not be executed. Secret information can then be leaked through a covert channel. While software patches can be installed for mitigation on existing hardware, these solutions can incur big performance overhead. Hardware mitigation is being studied extensively by the computer architecture community. It has the benefit of preserving software compatibility and the potential for much smaller performance overhead than software solutions.This paper presents a systematization of the hardware defenses against speculative execution attacks that have been proposed. We show that speculative execution attacks consist of 6 critical attack steps. We propose defense strategies, each of which prevents a critical attack step from happening, thus preventing the attack from succeeding. We then summarize 20 hardware defenses and overhead-reducing features that have been proposed. We show that each defense proposed can be classified under one of our defense strategies, which also explains why it can thwart the attack from succeeding. We discuss the scope of the defenses, their performance overhead, and the security-performance trade-offs that can be made.",

keywords = "Hardware Security, Speculative Execution Attacks",

author = "Guangyuan Hu and Zecheng He and Lee, {Ruby B.}",

note = "Publisher Copyright: {\textcopyright} 2021 IEEE.; 1st International Symposium on Secure and Private Execution Environment Design, SEED 2021 ; Conference date: 20-09-2021 Through 21-09-2021",

year = "2021",

doi = "10.1109/SEED51797.2021.00023",

language = "English (US)",

series = "Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "108--120",

booktitle = "Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021",

address = "United States",

}

Hu, G, He, Z & Lee, RB 2021, SoK: Hardware Defenses Against Speculative Execution Attacks. in Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021. Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021, Institute of Electrical and Electronics Engineers Inc., pp. 108-120, 1st International Symposium on Secure and Private Execution Environment Design, SEED 2021, Virtual, Online, United States, 9/20/21. https://doi.org/10.1109/SEED51797.2021.00023

SoK: Hardware Defenses Against Speculative Execution Attacks. / Hu, Guangyuan; He, Zecheng; Lee, Ruby B.
Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021. Institute of Electrical and Electronics Engineers Inc., 2021. p. 108-120 (Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - SoK

T2 - 1st International Symposium on Secure and Private Execution Environment Design, SEED 2021

AU - Hu, Guangyuan

AU - He, Zecheng

AU - Lee, Ruby B.

PY - 2021

Y1 - 2021

N2 - Speculative execution attacks leverage the speculative and out-of-order execution features in modern computer processors to access secret data or execute code that should not be executed. Secret information can then be leaked through a covert channel. While software patches can be installed for mitigation on existing hardware, these solutions can incur big performance overhead. Hardware mitigation is being studied extensively by the computer architecture community. It has the benefit of preserving software compatibility and the potential for much smaller performance overhead than software solutions.This paper presents a systematization of the hardware defenses against speculative execution attacks that have been proposed. We show that speculative execution attacks consist of 6 critical attack steps. We propose defense strategies, each of which prevents a critical attack step from happening, thus preventing the attack from succeeding. We then summarize 20 hardware defenses and overhead-reducing features that have been proposed. We show that each defense proposed can be classified under one of our defense strategies, which also explains why it can thwart the attack from succeeding. We discuss the scope of the defenses, their performance overhead, and the security-performance trade-offs that can be made.

AB - Speculative execution attacks leverage the speculative and out-of-order execution features in modern computer processors to access secret data or execute code that should not be executed. Secret information can then be leaked through a covert channel. While software patches can be installed for mitigation on existing hardware, these solutions can incur big performance overhead. Hardware mitigation is being studied extensively by the computer architecture community. It has the benefit of preserving software compatibility and the potential for much smaller performance overhead than software solutions.This paper presents a systematization of the hardware defenses against speculative execution attacks that have been proposed. We show that speculative execution attacks consist of 6 critical attack steps. We propose defense strategies, each of which prevents a critical attack step from happening, thus preventing the attack from succeeding. We then summarize 20 hardware defenses and overhead-reducing features that have been proposed. We show that each defense proposed can be classified under one of our defense strategies, which also explains why it can thwart the attack from succeeding. We discuss the scope of the defenses, their performance overhead, and the security-performance trade-offs that can be made.

KW - Hardware Security

KW - Speculative Execution Attacks

UR - http://www.scopus.com/inward/record.url?scp=85123312744&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85123312744&partnerID=8YFLogxK

U2 - 10.1109/SEED51797.2021.00023

DO - 10.1109/SEED51797.2021.00023

M3 - Conference contribution

AN - SCOPUS:85123312744

T3 - Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021

SP - 108

EP - 120

BT - Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 20 September 2021 through 21 September 2021

ER -

Hu G, He Z, Lee RB. SoK: Hardware Defenses Against Speculative Execution Attacks. In Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021. Institute of Electrical and Electronics Engineers Inc. 2021. p. 108-120. (Proceedings - 2021 International Symposium on Secure and Private Execution Environment Design, SEED 2021). doi: 10.1109/SEED51797.2021.00023

SoK: Hardware Defenses Against Speculative Execution Attacks

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Keywords

Access to Document

Other files and links

Fingerprint

Cite this