English
Related papers

Related papers: ZombieLoad: Cross-Privilege-Boundary Data Sampling

200 papers

Recently, out-of-order execution, an important performance optimization in modern high-end processors, has been revealed to pose a significant security threat, allowing information leaks across security domains. In particular, the Meltdown…

Cryptography and Security · Computer Science 2019-05-31 Marina Minkin , Daniel Moghimi , Moritz Lipp , Michael Schwarz , Jo Van Bulck , Daniel Genkin , Daniel Gruss , Frank Piessens , Berk Sunar , Yuval Yarom

Recent transient-execution attacks, such as RIDL, Fallout, and ZombieLoad, demonstrated that attackers can leak information while it transits through microarchitectural buffers. Named Microarchitectural Data Sampling (MDS) by Intel, these…

Cryptography and Security · Computer Science 2020-06-25 Stephan van Schaik , Marina Minkin , Andrew Kwong , Daniel Genkin , Yuval Yarom

The transient-execution attack Meltdown leaks sensitive information by transiently accessing inaccessible data during out-of-order execution. Although Meltdown is fixed in hardware for recent CPU generations, most currently-deployed CPUs…

Cryptography and Security · Computer Science 2023-10-09 Daniel Weber , Fabian Thomas , Lukas Gerlach , Ruiyi Zhang , Michael Schwarz

The security of computer systems fundamentally relies on memory isolation, e.g., kernel address ranges are marked as non-accessible and are protected from user access. In this paper, we present Meltdown. Meltdown exploits side effects of…

Cryptography and Security · Computer Science 2018-01-08 Moritz Lipp , Michael Schwarz , Daniel Gruss , Thomas Prescher , Werner Haas , Stefan Mangard , Paul Kocher , Daniel Genkin , Yuval Yarom , Mike Hamburg

Recent years have brought microarchitectural security intothe spotlight, proving that modern CPUs are vulnerable toseveral classes of microarchitectural attacks. These attacksbypass the basic isolation primitives provided by the…

Cryptography and Security · Computer Science 2021-08-25 Saidgani Musaev , Christof Fetzer

Meltdown and Spectre exploit microarchitectural changes the CPU makes during transient out-of-order execution. Using side-channel techniques, these attacks enable leaking arbitrary data from memory. As state-of-the-art software mitigations…

Cryptography and Security · Computer Science 2021-03-08 Michael Schwarz , Claudio Canella , Lukas Giner , Daniel Gruss

Research on transient execution attacks including Spectre and Meltdown showed that exception or branch misprediction events might leave secret-dependent traces in the CPU's microarchitectural state. This observation led to a proliferation…

The transient execution attack is a type of attack leveraging the vulnerability of modern CPU optimization technologies. New attacks surface rapidly. The side-channel is a key part of transient execution attacks to leak data. In this work,…

Cryptography and Security · Computer Science 2023-04-24 Yu Jin , Pengfei Qiu , Chunlu Wang , Yihao Yang , Dongsheng Wang , Gang Qu

Speculative execution which is used pervasively in modern CPUs can leave side effects in the processor caches and other structures even when the speculated instructions do not commit and their direct effect is not visible. The recent…

Cryptography and Security · Computer Science 2018-06-19 Khaled N. Khasawneh , Esmaeil Mohammadian Koruyeh , Chengyu Song , Dmitry Evtyushkin , Dmitry Ponomarev , Nael Abu-Ghazaleh

Recent work has shown that out-of-order and speculative execution mechanisms used to increase performance in the majority of processors expose the processors to critical attacks. These attacks, called Meltdown and Spectre, exploit the side…

Cryptography and Security · Computer Science 2025-11-25 Subhash Sethumurugan , Hari Cherupalli , Kangjie Lu , John Sartori

OS-based page sharing is a commonly used optimization in modern systems to reduce memory footprint. Unfortunately, such sharing can cause Flush+Reload cache attacks, whereby a spy periodically flushes a cache line of shared data (using the…

Cryptography and Security · Computer Science 2019-06-07 Gururaj Saileshwar , Moinuddin K. Qureshi

Transient execution attacks, also called speculative execution attacks, have drawn much interest as they exploit the transient execution of instructions, e.g., during branch prediction, to leak data. Transient execution is fundamental to…

Cryptography and Security · Computer Science 2020-09-01 Wenjie Xiong , Jakub Szefer

Modern x86 processors have many prefetch instructions that can be used by programmers to boost performance. However, these instructions may also cause security problems. In particular, we found that on Intel processors, there are two…

Cryptography and Security · Computer Science 2022-08-18 Yanan Guo , Andrew Zigerelli , Youtao Zhang , Jun Yang

Micro-architectural attacks use information leaked through shared resources to break hardware-enforced isolation. These attacks have been used to steal private information ranging from cryptographic keys to privileged Operating System (OS)…

Cryptography and Security · Computer Science 2021-09-21 Nikhilesh Singh , Chester Rebeiro

Self-evolving LLM agents update their internal state across sessions, often by writing and reusing long-term memory. This design improves performance on long-horizon tasks but creates a security risk: untrusted external content observed…

Cryptography and Security · Computer Science 2026-03-06 Xianglin Yang , Yufei He , Shuo Ji , Bryan Hooi , Jin Song Dong

Fault-injection attacks have been proven in the past to be a reliable way of bypassing hardware-based security measures, such as cryptographic hashes, privilege and access permission enforcement, and trusted execution environments. However,…

Cryptography and Security · Computer Science 2019-12-11 Zijo Kenjar , Tommaso Frassetto , David Gens , Michael Franz , Ahmad-Reza Sadeghi

Spectre and Meltdown attacks and their variants exploit hardware performance optimization features to cause security breaches. Secret information is accessed and leaked through covert or side channels. New attack variants keep appearing and…

Cryptography and Security · Computer Science 2020-12-24 Zecheng He , Guangyuan Hu , Ruby Lee

We propose using reinforcement learning to address the challenges of discovering microarchitectural vulnerabilities, such as Spectre and Meltdown, which exploit subtle interactions in modern processors. Traditional methods like random…

Cryptography and Security · Computer Science 2025-02-21 M. Caner Tol , Kemal Derya , Berk Sunar

Existing speculative execution attacks are limited to breaching confidentiality of data beyond privilege boundary, the so-called spectre-type attacks. All of them utilize the changes in microarchitectural buffers made by the speculative…

Cryptography and Security · Computer Science 2022-01-19 Zhi Zhang , Yueqiang Cheng , Surya Nepal

Microarchitectural timing attacks are a type of information leakage attack, which exploit the time-shared microarchitectural components, such as caches, translation look-aside buffers (TLBs), branch prediction unit (BPU), and speculative…

Cryptography and Security · Computer Science 2022-04-14 Tuo Li , Bradley Hopkins , Sri Parameswaran
‹ Prev 1 2 3 10 Next ›