Transcription of Speculative Buffer Overflows: Attacks and Defenses
{{id}} {{{paragraph}}}
Speculative Buffer Overflows: Attacks and DefensesVladimir Attacks that exploit Speculative execution can leakconfidential information via microarchitectural side chan-nels. The recently-demonstrated Spectre Attacks leveragespeculative loads which circumvent access checks to readmemory-resident secrets, transmitting them to an attackerusing cache timing or other covert communication , a new Spectre-v1 variant thatleverages speculativestoresto createspeculative Buffer over-flows. Much like classic Buffer overflows, Speculative out-of-bounds stores can modify data and code pointers. Data-valueattacks can bypass some Spectre-v1 mitigations, either di-rectly or by redirecting control flow.
Speculative Buffer Overflows: Attacks and Defenses Vladimir Kiriansky vlk@csail.mit.edu Carl Waldspurger carl@waldspurger.org Abstract Practical attacks that exploit speculative execution can leak
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}