English
Related papers

Related papers: Spectre Attacks: Exploiting Speculative Execution

200 papers

This paper provides the first systematic analysis of a synergistic threat model encompassing memory corruption vulnerabilities and microarchitectural side-channel vulnerabilities. We study speculative shield bypass attacks that leverage…

Cryptography and Security · Computer Science 2023-09-11 Weon Taek Na , Joel S. Emer , Mengjia Yan

Speculative execution attacks undermine the security of constant-time programming, the standard technique used to prevent microarchitectural side channels in security-sensitive software such as cryptographic code. Constant-time code must…

Cryptography and Security · Computer Science 2023-12-18 Rutvik Choudhary , Alan Wang , Zirui Neil Zhao , Adam Morrison , Christopher W. Fletcher

Cache side channel attacks are increasingly alarming in modern processors due to the recent emergence of Spectre and Meltdown attacks. A typical attack performs intentional cache access and manipulates cache states to leak secrets by…

Hardware Architecture · Computer Science 2024-05-16 Luyi Li , Jiayi Huang , Lang Feng , Zhongfeng Wang

Recent research has revealed an ever-growing class of microarchitectural attacks that exploit speculative execution, a standard feature in modern processors. Proposed and deployed countermeasures involve a variety of compiler updates,…

Cryptography and Security · Computer Science 2022-08-17 Jan Philipp Thoma , Jakob Feldtkeller , Markus Krausz , Tim Güneysu , Daniel J. Bernstein

Modern x86 processors have many prefetch instructions that can be used by programmers to boost performance. However, these instructions may also cause security problems. In particular, we found that on Intel processors, there are two…

Cryptography and Security · Computer Science 2022-08-18 Yanan Guo , Andrew Zigerelli , Youtao Zhang , Jun Yang

The prevalence of memory corruption bugs in the past decades resulted in numerous defenses, such as stack canaries, control flow integrity (CFI), and memory safe languages. These defenses can prevent entire classes of vulnerabilities, and…

Cryptography and Security · Computer Science 2021-04-20 Andrea Mambretti , Alexandra Sandulescu , Alessandro Sorniotti , William Robertson , Engin Kirda , Anil Kurmus

Fluid Stochastic Petri Nets are used to capture the dynamic behavior of an ILP processor, and discrete-event simulation is applied to assess the performance potential of predictions and speculative execution in boosting the performance of…

Hardware Architecture · Computer Science 2013-09-17 Pece Mitrevski , Marjan Gusev

Out-of-order execution and speculative execution are among the biggest contributors to performance and efficiency of modern processors. However, they are inconsiderate, leaking secret data during the transient execution of instructions.…

Cryptography and Security · Computer Science 2019-05-23 Michael Schwarz , Robert Schilling , Florian Kargl , Moritz Lipp , Claudio Canella , Daniel Gruss

A new class of vulnerabilities related to speculative and out-of-order execution, fault-injection, and microarchitectural side channels rose to attention in 2018. The techniques behind the transient execution vulnerabilities were not new,…

Cryptography and Security · Computer Science 2023-09-08 Allison Randal

Mainstream compilers implement different countermeasures to prevent specific classes of speculative execution attacks. Unfortunately, these countermeasures either lack formal guarantees or come with proofs restricted to speculative…

Programming Languages · Computer Science 2025-03-06 Xaver Fabian , Marco Patrignani , Marco Guarnieri , Michael Backes

Modern processors have suffered a deluge of threats exploiting branch instruction collisions inside the branch prediction unit (BPU), from eavesdropping on secret-related branch operations to triggering malicious speculative executions.…

Cryptography and Security · Computer Science 2022-04-22 Tao Zhang , Timothy Lesch , Kenneth Koltermann , Dmitry Evtyushkin

CPU caches introduce variations into the execution time of programs that can be exploited by adversaries to recover private information about users or cryptographic keys. Establishing the security of countermeasures against this threat…

Cryptography and Security · Computer Science 2017-05-12 Goran Doychev , Boris Köpf

Transient Execution Attacks (TEAs) have gradually become a major security threat to modern high-performance processors. They exploit the vulnerability of speculative execution to illegally access private data, and transmit them through…

Cryptography and Security · Computer Science 2023-04-18 Bowen Tang , Chenggang Wu , Pen-Chung Yew , Yinqian Zhang , Mengyao Xie , Yuanming Lai , Yan Kang , Wei Wang , Qiang Wei , Zhe Wang

Side-channel attacks such as Spectre that utilize speculative execution to steal application secrets pose a significant threat to modern computing systems. While program transformations can mitigate some Spectre attacks, more advanced…

Cryptography and Security · Computer Science 2019-03-27 Zhuojia Shen , Jie Zhou , Divya Ojha , John Criswell

Modern microprocessors depend on speculative execution, creating vulnerabilities that enable transient execution attacks. Prior defenses target speculative data leakage but overlook false dependencies from partial address aliasing, where…

Cryptography and Security · Computer Science 2026-01-30 Gayathri Subramanian , Girinath P , Nitya Ranganathan , Kamakoti Veezhinathan , Gopalakrishnan Srinivasan

Modern out-of-order processors face speculative execution attacks. Despite various proposed software and hardware mitigations to prevent such attacks, new attacks keep arising from unknown vulnerabilities. Thus, a formal and rigorous…

Hardware Architecture · Computer Science 2024-07-18 Qinhan Tan , Yuheng Yang , Thomas Bourgeat , Sharad Malik , Mengjia Yan

Modern processors are highly optimized systems where every single cycle of computation time matters. Many optimizations depend on the data that is being processed. Software-based microarchitectural attacks exploit effects of these…

Cryptography and Security · Computer Science 2017-06-20 Daniel Gruss

This paper presents SgxPectre Attacks that exploit the recently disclosed CPU bugs to subvert the confidentiality and integrity of SGX enclaves. Particularly, we show that when branch prediction of the enclave code can be influenced by…

Cryptography and Security · Computer Science 2019-09-12 Guoxing Chen , Sanchuan Chen , Yuan Xiao , Yinqian Zhang , Zhiqiang Lin , Ten H. Lai

Modern processors rely heavily on speculation to keep the pipeline filled and consequently execute and commit instructions as close to maximum capacity as possible. To improve instruction-level parallelism, the processor core needs to fetch…

Hardware Architecture · Computer Science 2021-10-19 Ilias Vougioukas , Andreas Sandberg , Nikos Nikoleris

Covert channel attacks represent a significant threat to system security, leveraging shared resources to clandestinely transmit information from highly secure systems, thereby violating the system's security policies. These attacks exploit…

Cryptography and Security · Computer Science 2024-04-10 Shariful Alam , Jidong Xiao , Nasir U. Eisty