Overview
Explore a novel approach to detecting rowhammer attacks using electromagnetic (EM) side-channel information in this IEEE conference talk. Learn about RADAR (Rowhammer Attack Detection via A Radio), which leverages recognizable hammering-correlated sideband patterns in the DRAM clock signal spectrum to expose potential attacks, even those hidden in encrypted and isolated environments like Intel SGX enclaves. Discover how the researchers overcome challenges posed by spread-spectrum clocking (SSC) through a proposed de-spreading method. Examine the effectiveness and robustness of this classification-based defense technique, evaluated on a RADAR prototype under various scenarios. Gain insights into this groundbreaking investigation that utilizes EM side-channel information for rowhammer defense, offering a unique perspective on hardware security without imposing performance overhead on protected systems.
Syllabus
Intro
New Direction to Rowhammer Attack Detection
How to Reach DRAM to Hammer
Direct EM Emanations?
AM-Modulated EM Emanations
Hammering-Correlated Sideband Patterns
Spectrogram Patterns
Bummer! Spread Spectrum Clocking (SSC)
A (Slightly) Closer Look at SSC
Seeing SSC Effect from Different "Angles"
De-Spreading to Reverse SSC Scattering Effect
RADAR: Rowhammer Attack Detection via A Radio
Effectiveness of RADAR
Resilience to Adaptive Attacks
Conclusion
Taught by
IEEE Symposium on Security and Privacy