摘要
同时多线程(Simultaneous Multi-Threading,SMT)技术是提升线程级并行度的重要微架构优化技术之一,以SMoTherSpectre为代表的利用SMT环境下共享分支预测器和执行端口的时间侧信道攻击表明SMT技术在提升性能的同时也存在显著的安全隐患.基于记录分支预测错误刷新及调整执行端口资源使用策略,提出了一种SMT环境下执行端口时间信道攻击防护方法.该方法实现了分支过滤和动态资源使用策略修改组件,在防护有效性上可以达到关闭SMT技术的防护效果,性能开销仅为关闭SMT技术的22%,硬件开销可控.
Simultaneous multi-threading(SMT)is one of the important micro-architecture optimization technologies to improve thread-level parallelism.The timing channel attack represented by SMoTherSpectre using shared branch predictors and execution ports in SMT environment shows that SMT technology has significant security risks as well as performance improvements.Based on recording branch misprediction refresh and dynamically adjusting the execution port resource utilization strategy,this paper proposes an approach for defending a timing channel attack on execution port in SMT environment.The approach implements a branch filter and a dynamic resource editor.This approach can achieve the same protection effect of turning off SMT technology,and the performance cost is only 22%,meanwhile,the hardware cost is controllable.
作者
岳晓萌
杨秋松
李明树
YUE Xiao-meng;YANG Qiu-song;LI Ming-shu(National Engineering Research Center for Fundamental Software,Institute of Software,Chinese Academy of Sciences,Beijing 100190,China;University of Chinese Academy of Sciences,Beijing 100049,China)
出处
《电子学报》
EI
CAS
CSCD
北大核心
2022年第7期1594-1599,共6页
Acta Electronica Sinica
基金
“核高基”国家科技重大专项基金(No.2014ZX01029101-002)
中国科学院战略性先导科技专项(No.XDA-Y01-01)
中国科学院战略性先导科技专项(No.XDC05020200)。
关键词
同时多线程
时间信道
侧信道
执行端口
安全防护
simultaneous multi-threading
timing channel
side channel
execution port
security defense
