Exploiting DRAM Bank and Row Conflicts for Timing Attacks in Mixed-Criticality Multicore Systems

The proposed attack, known as the "DRAM Bank & Row-Conflict Bomb," can be mitigated through various hardware and software-based techniques. One hardware-based approach is to implement memory bandwidth allocation mechanisms, such as Intel's Resource Director Technology (RDT), which includes Cache Allocation Technology (CAT) and Memory Bandwidth Allocation (MBA). CAT allows for cache way-partitioning at the hardware level, while MBA delays requests going to the interconnect from a core's private context. By utilizing these technologies, it is possible to regulate contention in shared resources and prevent timing attacks on critical applications. On the software side, techniques like memory bandwidth regulation and monitoring can be employed to control the number of memory accesses per application. Tools like Memguard can help regulate memory bandwidth allocation for individual cores, improving temporal isolation between cores. Additionally, implementing a memory allocator that is DRAM bank-aware, like PALLOC, can help in achieving performance isolation on multicore platforms. By combining hardware and software-based techniques, it is possible to enhance the security and safety of critical applications in mixed-criticality systems.

Apart from DRAM, other shared resources in multicore systems that can be exploited for similar timing attacks include shared caches, shared buses, and memory controllers. Shared caches, for example, can be targeted to create timing attacks by causing cache conflicts and impacting the performance of critical applications. To address such attacks, techniques like cache partitioning and cache coloring can be implemented to provide isolation between different cores and prevent interference in shared caches. Shared buses can also be vulnerable to timing attacks, where malicious entities can create contention to disrupt the communication between cores. Techniques like bus arbitration and bandwidth allocation can help regulate access to shared buses and prevent timing attacks. Memory controllers, on the other hand, can be targeted to manipulate memory access patterns and create delays for critical applications. Implementing memory access regulation mechanisms and monitoring tools can help in controlling memory access and ensuring timing guarantees for critical tasks.

The insights from this work can be applied to emerging memory technologies like DDR5 to ensure the security of future mixed-criticality systems. Understanding how shared resources like memory modules are managed and exploited for timing attacks can help in designing countermeasures for DDR5 memory architectures. By analyzing the architecture of DDR5 modules and identifying potential vulnerabilities, similar timing attacks can be prevented through proactive measures. Techniques like the "navigate" algorithm can be adapted for DDR5 memory modules to understand how requests are managed and how parallelism is exploited. By creating targeted algorithms like the "DRAM Bank & Row-Conflict Bomb" for DDR5, it is possible to stress the memory hierarchy and identify vulnerabilities that could be exploited for timing attacks. Implementing hardware-based mechanisms like memory bandwidth allocation and software-based techniques for memory access regulation can help in securing DDR5 memory systems against timing attacks in future mixed-criticality environments.