Open access
Datum
2022Typ
- Conference Paper
ETH Bibliographie
yes
Altmetrics
Abstract
The DRAM substrate is becoming increasingly more vulnerable to Rowhammer as we move to smaller technology nodes. We introduce PROTRR, the first principled in-DRAM Target Row Refresh mitigation with formal security guarantees and low bounds on overhead. Unlike existing proposals that require changes to the memory controllers, the in-DRAM nature of PROTRR enables its seamless integration. However, this means that PROTRR must respect the synchronous nature of the DRAM protocol, which limits the number of DRAM rows that can be protected at any given time. To overcome this challenge, PROTRR proactively refreshes each row that is most likely to observe bit flips in the future. While this strategy catches the rows that are hammered the most, some others may still fly under the radar. We use this observation to construct FEINTING, a new Rowhammer attack that we formally prove to be optimal in this setting. We then configure PROTRR to be secure against FEINTING. To achieve this, PROTRR should keep track of accesses to each row, which is prohibitively expensive to implement in hardware. Instead, PROTRR uses a new frequent item counting scheme that leverages FEINTING to provide a provably optimal yet flexible trade-off between the tolerated DRAM vulnerability, the number of counters, and the number of additional refreshes. Our extensive evaluation using an ASIC implementation of PROTRR and cycle-accurate simulation shows that PROTRR can provide principled protection for current and future DRAM technologies with a negligible performance, power, and area impact. PROTRR is fully compatible with DDR4 and the new Refresh Management (RFM) extension in DDR5. Mehr anzeigen
Persistenter Link
https://doi.org/10.3929/ethz-b-000538482Publikationsstatus
publishedExterne Links
Buchtitel
2022 IEEE Symposium on Security and Privacy (SP)Seiten / Artikelnummer
Verlag
IEEEKonferenz
Thema
RowHammer; DRAM; ddr5; ddr4; security; memory; defense; mitigationOrganisationseinheit
09721 - Razavi, Kaveh / Razavi, Kaveh
Förderung
180545 - NCCR Automation (phase I) (SNF)
Zugehörige Publikationen und Daten
Is cited by: https://doi.org/10.3929/ethz-b-000617284
Anmerkungen
Conference lecture held on May 23, 2022ETH Bibliographie
yes
Altmetrics