Protecting Secrets of Persistent Systems with Volatility

2019 15th European Dependable Computing Conference (EDCC) Pub Date : 2019-09-01 DOI:10.1109/EDCC.2019.00027

V. Sartakov, R. Kapitza

{"title":"Protecting Secrets of Persistent Systems with Volatility","authors":"V. Sartakov, R. Kapitza","doi":"10.1109/EDCC.2019.00027","DOIUrl":null,"url":null,"abstract":"The volatility of main memory and CPU caches is an important implicit protection mechanism for sensitive data: in-memory data gets erased if memory modules are disconnected from power supply. Persistent systems, on the other hand, cannot rely on volatility and without further measures their secrets can be easily retrieved by physical access. In this paper, we present Volatility, a system which protects secrets stored in persistent memory. This system provides mechanisms which turn persistent sub-systems into volatile ones by the use of AMD Secure Memory Encryption (SME), a new extension of AMD CPUs which provides encryption of main memory at the page granularity. Volatility protects secrets at two levels: it offers fine-grained memory encryption inside the kernel, where only information considered as sensitive is secured, and per-process memory encryption, which encrypts selected user space programs. Besides storing subsystems in an encrypted form, all relevant input and output paths, e.g. managed by the kernel, are protected as well. Our evaluation of Volatility demonstrates that the proposed protection mechanism does not impact the system performance, while protecting against strong adversaries.","PeriodicalId":334498,"journal":{"name":"2019 15th European Dependable Computing Conference (EDCC)","volume":"13 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 15th European Dependable Computing Conference (EDCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EDCC.2019.00027","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The volatility of main memory and CPU caches is an important implicit protection mechanism for sensitive data: in-memory data gets erased if memory modules are disconnected from power supply. Persistent systems, on the other hand, cannot rely on volatility and without further measures their secrets can be easily retrieved by physical access. In this paper, we present Volatility, a system which protects secrets stored in persistent memory. This system provides mechanisms which turn persistent sub-systems into volatile ones by the use of AMD Secure Memory Encryption (SME), a new extension of AMD CPUs which provides encryption of main memory at the page granularity. Volatility protects secrets at two levels: it offers fine-grained memory encryption inside the kernel, where only information considered as sensitive is secured, and per-process memory encryption, which encrypts selected user space programs. Besides storing subsystems in an encrypted form, all relevant input and output paths, e.g. managed by the kernel, are protected as well. Our evaluation of Volatility demonstrates that the proposed protection mechanism does not impact the system performance, while protecting against strong adversaries.

查看原文本刊更多论文

具有波动性的持久系统的秘密保护

主存和CPU缓存的易失性是敏感数据的重要隐式保护机制:如果内存模块与电源断开，内存中的数据将被擦除。另一方面，持久系统不能依赖于波动性，并且无需进一步的测量，它们的秘密可以通过物理访问轻松获取。本文提出了一种保护存储在持久存储器中的秘密的系统——volatile。该系统通过使用AMD安全内存加密(SME)提供了将持久子系统转换为易失性子系统的机制，SME是AMD cpu的新扩展，可以在页面粒度上对主存进行加密。波动性在两个层面上保护机密:它在内核内部提供细粒度的内存加密，只有被认为是敏感的信息才会受到保护;它提供逐进程内存加密，对选定的用户空间程序进行加密。除了以加密的形式存储子系统之外，所有相关的输入和输出路径(例如由内核管理)也受到保护。我们对波动性的评估表明，提议的保护机制不会影响系统性能，同时保护系统免受强大对手的攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2019 15th European Dependable Computing Conference (EDCC)

自引率

0.00%

发文量