Efficient Memory Integrity Verification and Encryption for Secure Processors

Authors:
G. Edward Suh;Dwaine Clarke;Blaise Gassend;Marten van Dijk;Srinivas Devadas
Affiliations:
MIT Computer Science and Artificial Intelligence Laboratory, Cambridge, MA, USA;MIT Computer Science and Artificial Intelligence Laboratory, Cambridge, MA, USA;MIT Computer Science and Artificial Intelligence Laboratory, Cambridge, MA, USA;MIT Computer Science and Artificial Intelligence Laboratory, Cambridge, MA, USA;MIT Computer Science and Artificial Intelligence Laboratory, Cambridge, MA, USA
Venue:
Proceedings of the 36th annual IEEE/ACM International Symposium on Microarchitecture
Year:
2003

Citing 11
Cited 61

Small-bias probability spaces: efficient constructions and applications

STOC '90 Proceedings of the twenty-second annual ACM symposium on Theory of computing
Checking the correctness of memories

SFCS '91 Proceedings of the 32nd annual symposium on Foundations of computer science
Building a high-performance, programmable secure coprocessor

Computer Networks: The International Journal of Computer and Telecommunications Networking - Special issue on computer network security
Architectural support for copy and tamper resistant software

ASPLOS IX Proceedings of the ninth international conference on Architectural support for programming languages and operating systems
Unlocking the design secrets of a 2.29 Gb/s Rijndael processor

Proceedings of the 39th annual Design Automation Conference
Security Engineering: A Guide to Building Dependable Distributed Systems

Security Engineering: A Guide to Building Dependable Distributed Systems
Silicon physical random functions

Proceedings of the 9th ACM conference on Computer and communications security
SPEC CPU2000: Measuring CPU Performance in the New Millennium

Computer
(How) can mobile agents do secure electronic transactions on untrusted hosts? A survey of the security issues and the current solutions

ACM Transactions on Internet Technology (TOIT)
AEGIS: architecture for tamper-evident and tamper-resistant processing

ICS '03 Proceedings of the 17th annual international conference on Supercomputing
Caches and Hash Trees for Efficient Memory Integrity Verification

HPCA '03 Proceedings of the 9th International Symposium on High-Performance Computer Architecture

Hardware assisted control flow obfuscation for embedded processors

Proceedings of the 2004 international conference on Compilers, architecture, and synthesis for embedded systems
HIDE: an infrastructure for efficiently protecting information leakage on the address bus

ASPLOS XI Proceedings of the 11th international conference on Architectural support for programming languages and operating systems
Architectural Support for High Speed Protection of Memory Integrity and Confidentiality in Multiprocessor Systems

Proceedings of the 13th International Conference on Parallel Architectures and Compilation Techniques
Attacks and risk analysis for hardware supported software copy protection systems

Proceedings of the 4th ACM workshop on Digital rights management
Hardware and Binary Modification Support for Code Pointer Protection From Buffer Overflow

Proceedings of the 37th annual IEEE/ACM International Symposium on Microarchitecture
Building Intrusion-Tolerant Secure Software

Proceedings of the international symposium on Code generation and optimization
Improving Memory Encryption Performance in Secure Processors

IEEE Transactions on Computers
Towards the issues in architectural support for protection of software execution

ACM SIGARCH Computer Architecture News - Special issue: Workshop on architectural support for security and anti-virus (WASSA)
Memory predecryption: hiding the latency overhead of memory encryption

ACM SIGARCH Computer Architecture News - Special issue: Workshop on architectural support for security and anti-virus (WASSA)
Architectural support for protecting user privacy on trusted processors

ACM SIGARCH Computer Architecture News - Special issue: Workshop on architectural support for security and anti-virus (WASSA)
ChipLock: support for secure microarchitectures

ACM SIGARCH Computer Architecture News - Special issue: Workshop on architectural support for security and anti-virus (WASSA)
Architecture for Protecting Critical Secrets in Microprocessors

Proceedings of the 32nd annual international symposium on Computer Architecture
High Efficiency Counter Mode Security Architecture via Prediction and Precomputation

Proceedings of the 32nd annual international symposium on Computer Architecture
Design and Implementation of the AEGIS Single-Chip Secure Processor Using Physical Random Functions

Proceedings of the 32nd annual international symposium on Computer Architecture
A Data-Driven Approach for Embedded Security

ISVLSI '05 Proceedings of the IEEE Computer Society Annual Symposium on VLSI: New Frontiers in VLSI Design
Improving Cost, Performance, and Security of Memory Encryption and Authentication

Proceedings of the 33rd annual international symposium on Computer Architecture
A parallelized way to provide data encryption and integrity checking on a processor-memory bus

Proceedings of the 43rd annual Design Automation Conference
A low-cost memory remapping scheme for address bus protection

Proceedings of the 15th international conference on Parallel architectures and compilation techniques
Efficient data protection for distributed shared memory multiprocessors

Proceedings of the 15th international conference on Parallel architectures and compilation techniques
Authentication Control Point and Its Implications For Secure Processor Design

Proceedings of the 39th Annual IEEE/ACM International Symposium on Microarchitecture
M-TREE: a high efficiency security architecture for protecting integrity and privacy of software

Journal of Parallel and Distributed Computing - Special issue: Security in grid and distributed systems
Accelerating memory decryption and authentication with frequent value prediction

Proceedings of the 4th international conference on Computing frontiers
Daonity - Grid security from two levels of virtualization

Information Security Tech. Report
Aegis: A Single-Chip Secure Processor

IEEE Design & Test
Encoding-Based Tamper-Resistant Algorithm for Mobile Device Security

ICCS '07 Proceedings of the 7th international conference on Computational Science, Part IV: ICCS 2007
Embedded Trusted Computing with Authenticated Non-volatile Memory

Trust '08 Proceedings of the 1st international conference on Trusted Computing and Trust in Information Technologies: Trusted Computing - Challenges and Applications
Remote Integrity Check with Dishonest Storage Server

ESORICS '08 Proceedings of the 13th European Symposium on Research in Computer Security: Computer Security
Making secure processors OS- and performance-friendly

ACM Transactions on Architecture and Code Optimization (TACO)
A security approach for off-chip memory in embedded microprocessor systems

Microprocessors & Microsystems
Memory-Centric Security Architecture

Transactions on High-Performance Embedded Architectures and Compilers I
Supporting flexible streaming media protection through privacy-aware secure processors

Computers and Electrical Engineering
Diversification of Processors Based on Redundancy in Instruction Set

IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Hardware Mechanisms for Memory Authentication: A Survey of Existing Techniques and Engines

Transactions on Computational Science IV
Compiler-Assisted Memory Encryption for Embedded Processors

Transactions on High-Performance Embedded Architectures and Compilers II
AEGIS: A single-chip secure processor

Information Security Tech. Report
A low-cost memory remapping scheme for address bus protection

Journal of Parallel and Distributed Computing
Compiler-assisted memory encryption for embedded processors

HiPEAC'07 Proceedings of the 2nd international conference on High performance embedded architectures and compilers
Secure cryptographic precomputation with insecure memory

ISPEC'08 Proceedings of the 4th international conference on Information security practice and experience
SHIELDSTRAP: making secure processors truly secure

ICCD'09 Proceedings of the 2009 IEEE international conference on Computer design
An analysis of secure processor architectures

Transactions on computational science VII
A framework for testing hardware-software security architectures

Proceedings of the 26th Annual Computer Security Applications Conference
InstantCheck: Checking the Determinism of Parallel Programs Using On-the-Fly Incremental Hashing

MICRO '43 Proceedings of the 2010 43rd Annual IEEE/ACM International Symposium on Microarchitecture
Architectural enhancement and system software support for program code integrity monitoring in application-specific instruction-set processors

IEEE Transactions on Very Large Scale Integration (VLSI) Systems
Green secure processors: towards power-efficient secure processor design

Transactions on computational science X
SecureME: a hardware-software approach to full system security

Proceedings of the international conference on Supercomputing
i-NVMM: a secure non-volatile main memory system with incremental encryption

Proceedings of the 38th annual international symposium on Computer architecture
NetQuery: a knowledge plane for reasoning about network properties

Proceedings of the ACM SIGCOMM 2011 conference
DynaPoMP: dynamic policy-driven memory protection for SPM-based embedded systems

WESS '11 Proceedings of the Workshop on Embedded Systems Security
Efficient scheme of verifying integrity of application binaries in embedded operating systems

The Journal of Supercomputing
Memory-centric security architecture

HiPEAC'05 Proceedings of the First international conference on High Performance Embedded Architectures and Compilers
Efficient architectural support for secure bus-based shared memory multiprocessor

ACSAC'05 Proceedings of the 10th Asia-Pacific conference on Advances in Computer Systems Architecture
A comparison of two approaches providing data encryption and authentication on a processor memory bus

PATMOS'06 Proceedings of the 16th international conference on Integrated Circuit and System Design: power and Timing Modeling, Optimization and Simulation
Memory encryption for smart cards

CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Authenticated encryption primitives for size-constrained trusted computing

TRUST'12 Proceedings of the 5th international conference on Trust and Trustworthy Computing
A cost-effective tag design for memory data authentication in embedded systems

Proceedings of the 2012 international conference on Compilers, architectures and synthesis for embedded systems
Bus and memory protection through chain-generated and tree-verified IV for multiprocessors systems

Future Generation Computer Systems
Configurable memory security in embedded systems

ACM Transactions on Embedded Computing Systems (TECS)
Design space exploration and optimization of path oblivious RAM in secure processors

Proceedings of the 40th Annual International Symposium on Computer Architecture
TSV: A novel energy efficient Memory Integrity Verification scheme for embedded systems

Journal of Systems Architecture: the EUROMICRO Journal
Beyond full disk encryption: protection on security-enhanced commodity processors

ACNS'13 Proceedings of the 11th international conference on Applied Cryptography and Network Security
Memory encryption: A survey of existing techniques

ACM Computing Surveys (CSUR)

Quantified Score

Hi-index	0.00

Visualization

Abstract

Secure processors enable new sets of applications suchas commercial grid computing, software copy-protection,and secure mobile agents by providing security from bothphysical and software attacks. This paper proposes newhardware mechanisms for memory integrity verification andencryption, which are two key primitives required in single-chipsecure processors. The integrity verification mechanismoffers significant performance advantages over existingones when the checks are infrequent as in grid computingapplications. The encryption mechanism improves theperformance in all cases.