Transit-Guard: An OS-based Defense Mechanism Against Transient Execution Attacks

Maria Mushtaq; David Novo; Florent Bruguier; Pascal Benoit; Muhammad Khurram Bhatti

doi:10.1109/ETS50041.2021.9465429

Conference papers

Transit-Guard: An OS-based Defense Mechanism Against Transient Execution Attacks

Maria Mushtaq ¹ David Novo ¹ Florent Bruguier ¹ Pascal Benoit ¹ Muhammad Khurram Bhatti ²

1 ADAC - ADAptive Computing

LIRMM - Laboratoire d'Informatique de Robotique et de Microélectronique de Montpellier

2 ITU - Information Technology University [Lahore]

Abstract : Transient attacks manipulate speculative execution to alter the control flow path in an application program and modify microarchitectural state. These state changes are not captured by the existing Instruction Set Architectures (ISAs). In this paper, we propose a novel OS-level detection-based mitigation mechanism, called Transit-Guard, that uses machine learning and real-time behavioral data of concurrent processes to detect and subsequently mitigate these attacks at run-time.

Keywords : Secure Systems Microarchitecture Transient execution Spectre Meltdown Mitigation OS Machine learning

Document type :

Conference papers

Domain :

Computer Science [cs] / Cryptography and Security [cs.CR]

Computer Science [cs] / Embedded Systems

Complete list of metadata

https://hal-emse.ccsd.cnrs.fr/emse-03195702
Contributor : Maria Mushtaq Connect in order to contact the contributor
Submitted on : Wednesday, April 14, 2021 - 11:11:04 AM
Last modification on : Tuesday, March 15, 2022 - 12:55:44 PM
Long-term archiving on: : Thursday, July 15, 2021 - 6:04:52 PM

Transit-Guard: An OS-based Defense Mechanism Against Transient Execution Attacks

File

Identifiers

Collections

Citation

Export

Metrics

117

120

Transit-Guard: An OS-based Defense Mechanism Against Transient Execution Attacks

File

Identifiers

Collections

Citation

Export

Share

Metrics

117

120