Conditional Address Propagation: An Efficient Defense Mechanism against Transient Execution Attacks
TimeWednesday, July 13th10:53am - 11:15am PDT
Location3006, Level 3
Event Type
Research Manuscript
Hardware Security: Attack and Defense
DescriptionIn the state-of-the-art mechanism defending against continuously exposed transient execution variants, a large number of memory accesses are blocked since their base addresses derive from transient loads.
In this paper, we propose a novel heuristic Conditional Address Propagation to identify legal base addresses and allow their propagation safely.
To guarantee security, we employ isolation and randomization to prevent introducing new side channels.
Furthermore, brute-force guesses through training propagation history are avoided as well.
Compared to STT, our mechanism effectively decreases the performance overhead from 13.40% to 1.56% targeting Spectre-type and 18.72% to 4.57% targeting all-type cache-based transient execution attacks.