Simulating Modern CPU Vulnerabilities on a 5-stage MIPS Pipeline Using Node-RED

Miles, Samuel; McDonough, Corey; Michael, Emmanuel Obichukwu; Shankar Kumar, Valli Sanghami; Lee, John J.

doi:10.1007/978-981-16-8403-6_65

Samuel Miles⁶,
Corey McDonough⁶,
Emmanuel Obichukwu Michael⁶,
Valli Sanghami Shankar Kumar⁶ &
…
John J. Lee⁶

Part of the book series: Lecture Notes on Data Engineering and Communications Technologies ((LNDECT,volume 106))

553 Accesses
1 Citations

Abstract

This paper proposes a simulation of the 5-stage pipelined MIPS processor using Node-RED and illustrates the basic effects of modern CPU vulnerabilities. Demonstrated in this study are Spectre vulnerability attack and load value injection (LVI) transient-execution attack. The storing of secret data within the cache is shown for Spectre, and through the use of an attacker’s injected page number after a page fault has occurred, we demonstrate LVI’s ability to access the host secrets via simulated memory hierarchy. The persistence of the secret data in the cache can also be observed in the case of both attacks. The characteristics of such security vulnerabilities are successfully simulated with the proposed Node-RED-based processor simulator.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: EUR 29.95; Price includes VAT (Austria)

eBook: EUR 192.59; Price includes VAT (Austria)

Softcover Book: EUR 252.99; Price includes VAT (Austria)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Investigation of L2-Cache Interferences in a NXP QorIQ T4240 Multi-core Processor

Security Aspects of Real-Time MPSoCs: The Flaws and Opportunities of Preemptive NoCs

Fault Injection Characterization on Modern CPUs

References

P. Kocher, J. Horn, A. Fogh, D. Genkin, D. Gruss, W. Haas, M. Hamburg, M. Lipp, S. Mangard, T. Prescher, M. Schwarz, Y. Yarom, Spectre attacks: Exploiting speculative execution, in 2019 IEEE Symposium on Security and Privacy (SP) (2019), pp. 1–19
Google Scholar
M. Lipp, M. Schwarz, D. Gruss, T. Prescher, W. Haas, S. Mangard, P. Kocher, D. Genkin, Y. Yarom, M. Hamburg, Meltdown. arXiv:1801.01207 (2018)
IBM, Node-RED. https://nodered.org/. Accessed May 7, 2021
J. Van Bulck, M. Minkin, O. Weisse, D. Genkin, B. Kasikxi, F. Piessens, M. Silberstein, T. Wenisch, Y. Yarom, R. Strackx, Foreshadow: extracting the keys to the Intel SGX kingdom with transient out-of-order execution. in 27th USENIX Security Symposium (USENIX Security 18) (2018), pp. 991–1008
Google Scholar
C. Canella, D. Genkin, L. Giner, D. Gruss, M. Lipp, M. Minkin, D. Moghimi, F. Piessens, M. Schwarz, B. Sunar, J. Van Bulck, Y. Yarom, Fallout: Leaking data on meltdown-resistant CPUs, in Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (2019), pp. 769–784
Google Scholar
C. Canella, K. Khasawneh, D. Gruss, The evolution of transient-execution attacks, in Proceedings of the 2020 on Great Lakes Symposium on VLSI (2020), pp. 163–168
Google Scholar
C. Canella, S.M. Pudukotai Dinakarrao, D. Gruss, K. Khasawneh, Evolution of defenses against transient-execution attacks, in Proceedings of the 2020 on Great Lakes Symposium on VLSI (2020), pp. 169–174
Google Scholar
O. Oleksenko, B. Trach, M. Silberstein, C. Fetzer, SpecFuzz: bringing spectre-type vulnerabilities to the surface, in 29th USENIX Security Symposium (USENIX Security 20) (2020), pp. 1481–1498
Google Scholar
mips.com, MIPS Architecture For Programmers Volume 1-A, Available via DIALOG. https://s3-eu-west-1.amazonaws.com/downloads-mips/documents/MD00082-2B-MIPS32INT-AFP-06.01.pdf. Accessed May 7, 2021
K. Vollmar, P. Sanderson, MARS: an education-oriented MIPS assembly language simulator. SIGCSE 6, 239–243 (2006)
Article Google Scholar
J. Van Bulck, D. Moghimi, M. Schwarz, M. Lipp, M. Minkin, D. Genkin, Y. Yarom, B. Sunar, D. Gruss, F. Piessens, LVI: Hijacking transient execution through microarchitectural load value injection in 2020 IEEE Symposium on Security and Privacy (SP) (2020), pp. 54–72
Google Scholar
Intel, An optimizzed mitigation approach for load value injection. https://intel.ly/2CSsHwp. Accessed May 10, 2021
M. Larabel, The brutal performance impact from mitigating the LVI vulnerability. https://www.phoronix.com/scan.php?page=article&item=lvi-attack-perf

Download references

Author information

Authors and Affiliations

Department of Electrical and Computer Engineering, IUPUI, Indianapolis, IN, 46202, USA
Samuel Miles, Corey McDonough, Emmanuel Obichukwu Michael, Valli Sanghami Shankar Kumar & John J. Lee

Authors

Samuel Miles
View author publications
You can also search for this author in PubMed Google Scholar
Corey McDonough
View author publications
You can also search for this author in PubMed Google Scholar
Emmanuel Obichukwu Michael
View author publications
You can also search for this author in PubMed Google Scholar
Valli Sanghami Shankar Kumar
View author publications
You can also search for this author in PubMed Google Scholar
John J. Lee
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Samuel Miles .

Editor information

Editors and Affiliations

Department of Electronics and Communication Engineering, National Institute of Technology, Kurukshetra, Kurukshetra, India
Pankaj Verma
Department of Electronics and Communication Engineering, National Institute of Technology, Kurukshetra, Kurukshetra, India
Chhagan Charan
Department of Electrical and Computer Engineering, Ryerson University, Toronto, ON, Canada
Xavier Fernando
Department of Electrical and Computer Engineering, Oakland University, Rochester, MI, USA
Subramaniam Ganesan

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Miles, S., McDonough, C., Michael, E.O., Shankar Kumar, V.S., Lee, J.J. (2022). Simulating Modern CPU Vulnerabilities on a 5-stage MIPS Pipeline Using Node-RED. In: Verma, P., Charan, C., Fernando, X., Ganesan, S. (eds) Advances in Data Computing, Communication and Security. Lecture Notes on Data Engineering and Communications Technologies, vol 106. Springer, Singapore. https://doi.org/10.1007/978-981-16-8403-6_65

Download citation

DOI: https://doi.org/10.1007/978-981-16-8403-6_65
Published: 29 March 2022
Publisher Name: Springer, Singapore
Print ISBN: 978-981-16-8402-9
Online ISBN: 978-981-16-8403-6
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)

Publish with us

Policies and ethics

Simulating Modern CPU Vulnerabilities on a 5-stage MIPS Pipeline Using Node-RED

Abstract

Access this chapter

Similar content being viewed by others

Investigation of L2-Cache Interferences in a NXP QorIQ T4240 Multi-core Processor

Security Aspects of Real-Time MPSoCs: The Flaws and Opportunities of Preemptive NoCs

Fault Injection Characterization on Modern CPUs

References

Author information

Authors and Affiliations

Corresponding author

Editor information

Editors and Affiliations

Rights and permissions

Copyright information

About this paper

Cite this paper

Download citation

Publish with us

Navigation

Simulating Modern CPU Vulnerabilities on a 5-stage MIPS Pipeline Using Node-RED

Abstract

Access this chapter

Similar content being viewed by others

Investigation of L2-Cache Interferences in a NXP QorIQ T4240 Multi-core Processor

Security Aspects of Real-Time MPSoCs: The Flaws and Opportunities of Preemptive NoCs

Fault Injection Characterization on Modern CPUs

References

Author information

Authors and Affiliations

Corresponding author

Editor information

Editors and Affiliations

Rights and permissions

Copyright information

About this paper

Cite this paper

Download citation

Share this paper

Publish with us

Search

Navigation