Skip to content
/ Security-RISC-Mitigations Public
forked from cispa/Security-RISC

Software mitigations for the attacks presented in the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)

0 stars 11 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Petzys/Security-RISC-Mitigations

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

47 Commits
access-retired
access-retired
 
 
aes_example
aes_example
 
 
custom-kernel
custom-kernel
 
 
evict_reload_histogram
evict_reload_histogram
 
 
fence-flush
fence-flush
 
 
fgprime_probe_histogram
fgprime_probe_histogram
 
 
flush-fault
flush-fault
 
 
flush_flush_histogram
flush_flush_histogram
 
 
flush_reload_histogram
flush_reload_histogram
 
 
iflush_reload_histogram
iflush_reload_histogram
 
 
inst-cycles
inst-cycles
 
 
interrupt-timing
interrupt-timing
 
 
kernel_modules
kernel_modules
 
 
m-mode-instr-count
m-mode-instr-count
 
 
mbedtls-key-leak
mbedtls-key-leak
 
 
page-walk
page-walk
 
 
prime_probe_histogram
prime_probe_histogram
 
 
printers
printers
 
 
spectre-v1
spectre-v1
 
 
spectre
spectre
 
 
square-multiply
square-multiply
 
 
timer-drift
timer-drift
 
 
timer-evaluation
timer-evaluation
 
 
tlb_evict_histogram
tlb_evict_histogram
 
 
zigzagger
zigzagger
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
README.md
README.md
 
 
rlibsc.h
rlibsc.h
 
 

Repository files navigation

Software Mitigations for "A Security RISC" by Gerlach, Weber, Zhang and Schwarz

This repository contains the software mitigations for the novel attack primitives presented in the IEEE S&P 2023 paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs".

This repository is part of a project in "CS4702-Computer Security" at University of Lübeck.

Testing Device:

Mitigations

The proposed mitigations are:

  • Disable+Emulate: Disable the RISC-V performance counters and emulate the values to make all attacks less reliable
  • Catch+Wait: Wait on context switch to make Flush+Fault attacks less reliable
  • Switch+Clear: Clear the I-Cache on every context switch to make Flush+Fault attacks infeasible

The mitigations require custom Linux kernel patches that can be found under custom-kernel.

Benchmarks

All benchmarks can be run automatically by using the run-all.sh script:

cd ./kernel_modules/benchmarks && sudo ./run-all.sh

Simple Testing Programs for Hardware Performance Counters

To test the availability of the performance counters and their output, we added simple testing programs that simply print the value of each counter. They can be found under printers.

About

Software mitigations for the attacks presented in the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 91.2%
  • Shell 4.9%
  • Perl 1.3%
  • Makefile 1.2%
  • CMake 0.6%
  • C++ 0.4%
  • Other 0.4%