English
Related papers

Related papers: MOAT: Securely Mitigating Rowhammer with Per-Row A…

200 papers

The increasing density of modern DRAM has heightened its vulnerability to Rowhammer attacks, which induce bit flips by repeatedly accessing specific memory rows. This paper presents an analysis of bit flip patterns generated by advanced…

Cryptography and Security · Computer Science 2025-06-19 Andrew Adiletta , Zane Weissman , Fatemeh Khojasteh Dana , Berk Sunar , Shahin Tajik

Rowhammer is a hardware-based bug that allows the attacker to modify the data in the memory without accessing it, just repeatedly and frequently accessing (or hammering) physically adjacent memory rows. So that it can break the memory…

Cryptography and Security · Computer Science 2019-01-14 Xiaoxuan Lou , Fan Zhang , Zheng Leong Chua , Zhenkai Liang , Yueqiang Cheng , Yajin Zhou

This dissertation rigorously characterizes many modern commodity DRAM devices and shows that by exploiting DRAM access timing margins within manufacturer-recommended DRAM timing specifications, we can significantly improve system…

Hardware Architecture · Computer Science 2021-09-30 Jeremie S. Kim

In the past decade, many vulnerabilities were discovered in microarchitectures which yielded attack vectors and motivated the study of countermeasures. Further, architectural and physical imperfections in DRAMs led to the discovery of…

Cryptography and Security · Computer Science 2024-04-15 Andrew J. Adiletta , M. Caner Tol , Yarkın Doröz , Berk Sunar

Our ISCA 2014 paper provided the first scientific and detailed characterization, analysis, and real-system demonstration of what is now popularly known as the RowHammer phenomenon (or vulnerability) in modern commodity DRAM chips, which are…

Cryptography and Security · Computer Science 2023-06-29 Onur Mutlu

Recurrent-attention hybrids aim to combine the efficiency of recurrence with the expressivity of attention, but existing approaches typically apply attention uniformly across all positions, even when the recurrent state alone is sufficient…

Artificial Intelligence · Computer Science 2026-05-14 Haoran Zheng , Chen Shani

Despite advances in AI alignment, large language models (LLMs) remain vulnerable to adversarial attacks or jailbreaking, in which adversaries can modify prompts to induce unwanted behavior. While some defenses have been proposed, they have…

Machine Learning · Computer Science 2024-11-11 Andy Zhou , Bo Li , Haohan Wang

Modern DRAM is vulnerable to read disturbance (e.g., RowHammer and RowPress) that significantly undermines the robust operation of the system. Repeatedly opening and closing a DRAM row (RowHammer) or keeping a DRAM row open for a long…

Hardware Architecture · Computer Science 2025-04-28 Haocong Luo , İsmail Emir Yüksel , Ataberk Olgun , A. Giray Yağlıkçı , Onur Mutlu

Jailbreak attacks on multimodal AI systems remain underexplored, even though unsafe image generation can have more severe consequences than unsafe text and current defenses are relatively immature. We introduce PAST2HARM, a simple yet…

Computation and Language · Computer Science 2026-05-28 Snehasis Mukhopadhyay

The challenge of ensuring Large Language Models (LLMs) align with societal standards is of increasing interest, as these models are still prone to adversarial jailbreaks that bypass their safety mechanisms. Identifying these vulnerabilities…

Computation and Language · Computer Science 2025-04-29 Mohammad Akbar-Tajari , Mohammad Taher Pilehvar , Mohammad Mahmoody

Since its inception, Rowhammer exploits have rapidly evolved into increasingly sophisticated threats compromising data integrity and the control flow integrity of victim processes. Nevertheless, it remains a challenge for an attacker to…

Cryptography and Security · Computer Science 2025-05-06 Andrew Adiletta , M. Caner Tol , Kemal Derya , Berk Sunar , Saad Islam

The recent release of GPT-4o has garnered widespread attention due to its powerful general capabilities. While its impressive performance is widely acknowledged, its safety aspects have not been sufficiently explored. Given the potential…

Cryptography and Security · Computer Science 2024-07-04 Zonghao Ying , Aishan Liu , Xianglong Liu , Dacheng Tao

RowHammer (RH) is a significant and worsening security, safety, and reliability issue of modern DRAM chips that can be exploited to break memory isolation. Therefore, it is important to understand real DRAM chips' RH characteristics.…

We experimentally analyze the computational capability of commercial off-the-shelf (COTS) DRAM chips and the robustness of these capabilities under various timing delays between DRAM commands, data patterns, temperature, and voltage levels.…

The rowhammer bug allows an attacker to gain privilege escalation or steal private data. A key requirement of all existing rowhammer attacks is that an attacker must have access to at least part of an exploitable hammer row. We refer to…

Cryptography and Security · Computer Science 2020-07-31 Zhi Zhang , Yueqiang Cheng , Dongxi Liu , Surya Nepal , Zhi Wang

Deep neural networks are susceptible to adversarial attacks, which can compromise their performance and accuracy. Adversarial Training (AT) has emerged as a popular approach for protecting neural networks against such attacks. However, a…

Machine Learning · Computer Science 2024-02-20 Vijaya Raghavan T Ramkumar , Bahram Zonooz , Elahe Arani

Large Language Models have shown impressive generative capabilities across diverse tasks, but their safety remains a critical concern. Existing post-training alignment methods, such as SFT and RLHF, reduce harmful outputs yet leave LLMs…

Cryptography and Security · Computer Science 2025-10-21 Zhengyue Zhao , Yingzi Ma , Somesh Jha , Marco Pavone , Patrick McDaniel , Chaowei Xiao

Memory security and reliability are two of the major design concerns in cloud computing systems. State-of-the-art memory security-reliability co-designs (e.g. Synergy) have achieved a good balance on performance, confidentiality, integrity,…

Cryptography and Security · Computer Science 2021-01-20 Wenpeng He , Dan Feng , Fang Wang , Yue Li , Mengting Lu

State-of-the-art deep neural networks (DNNs) have been proven to be vulnerable to adversarial manipulation and backdoor attacks. Backdoored models deviate from expected behavior on inputs with predefined triggers while retaining performance…

Machine Learning · Computer Science 2023-04-17 M. Caner Tol , Saad Islam , Andrew J. Adiletta , Berk Sunar , Ziming Zhang

Mixture-of-Experts (MoE) architectures have advanced the scaling of Large Language Models (LLMs) by activating only a sparse subset of parameters per input, enabling state-of-the-art performance with reduced computational cost. As these…

Cryptography and Security · Computer Science 2025-12-29 Lichao Wu , Sasha Behrouzi , Mohamadreza Rostami , Stjepan Picek , Ahmad-Reza Sadeghi