Application Deployment Strategies for Spatial Isolation on Many-Core Accelerators
Autor: | Philipp Wehner, Diana Gohringer, Maria Mendez Real, Guy Gogniat, Vianney Lapotre |
---|---|
Přispěvatelé: | Lab-STICC_UBS_CACS_MOCS, Laboratoire des sciences et techniques de l'information, de la communication et de la connaissance (Lab-STICC), École Nationale d'Ingénieurs de Brest (ENIB)-Université de Bretagne Sud (UBS)-Université de Brest (UBO)-Télécom Bretagne-Institut Brestois du Numérique et des Mathématiques (IBNM), Université de Brest (UBO)-Université européenne de Bretagne - European University of Brittany (UEB)-École Nationale Supérieure de Techniques Avancées Bretagne (ENSTA Bretagne)-Institut Mines-Télécom [Paris] (IMT)-Centre National de la Recherche Scientifique (CNRS)-École Nationale d'Ingénieurs de Brest (ENIB)-Université de Bretagne Sud (UBS)-Université de Brest (UBO)-Télécom Bretagne-Institut Brestois du Numérique et des Mathématiques (IBNM), Université de Brest (UBO)-Université européenne de Bretagne - European University of Brittany (UEB)-École Nationale Supérieure de Techniques Avancées Bretagne (ENSTA Bretagne)-Institut Mines-Télécom [Paris] (IMT)-Centre National de la Recherche Scientifique (CNRS), Ruhr-Universität Bochum [Bochum] |
Rok vydání: | 2018 |
Předmět: |
021110 strategic
defence & security studies Emerging technologies Computer science Distributed computing 0211 other engineering and technologies 02 engineering and technology [SPI.TRON]Engineering Sciences [physics]/Electronics 020202 computer hardware & architecture Search engine Many core Hardware and Architecture Software deployment 0202 electrical engineering electronic engineering information engineering Spatial isolation Overhead (computing) Cache Software |
Zdroj: | ACM Transactions on Embedded Computing Systems (TECS) ACM Transactions on Embedded Computing Systems (TECS), ACM, 2018, 17 (2), pp.1-31. ⟨10.1145/3168383⟩ |
ISSN: | 1558-3465 1539-9087 |
Popis: | International audience; Current cache side-channel attacks (SCAs) countermeasures have not been designed for many-core architectures and need to be revisited in order to be practical for these new technologies. Spatial isolation of resources for sensitive applications has been proposed taking advantage of the large number of resources offered by these architectures. This solution avoids cache sharing with sensitive processes. Consequently, their cache activity cannot be monitored and cache SCA cannot be performed. This work focuses on the implementation of this technique in order to minimize the induced performance overhead. Different strategies for the management of isolated secure zones are implemented and compared. CCS Concepts: •Security and privacy → Domain-specific security and privacy architectures |
Databáze: | OpenAIRE |
Externí odkaz: |