Explore a cutting-edge security presentation that delves into SpecHammer, a novel attack combining Spectre and Rowhammer vulnerabilities. Learn about the limitations of Spectre v1 and how SpecHammer overcomes them through double and triple gadget techniques. Discover the intricacies of memory templating and massaging, and understand their role in enhancing the attack's effectiveness. Gain insights into the results of both double and triple gadget implementations, and grasp the implications for modern computer security. Conclude with a comprehensive overview of the gadgets used and the potential impact of this innovative attack method on current and future cybersecurity landscapes.
SpecHammer: Combining Spectre and Rowhammer for New Speculative Attacks
Overview
Syllabus
Intro
Spectre v1
Spectre's Limitations
SpecHammer (double gadget)
Double Gadget Results
SpecHammer (triple gadget)
Memory Templating
Triple Gadget Results
Gadgets
Conclusion
Memory Massaging
Taught by
IEEE Symposium on Security and Privacy
Tags
Related Courses
-
SPECTECTOR - Principled Detection of Speculative Information Flows
-
Exploiting Correcting Codes on the Effectiveness of ECC Memory Against Rowhammer Attacks
-
Mitigating Spectre Attacks Using CFI Informed Speculation
-
RAMBleed - Reading Bits in Memory Without Accessing Them
-
Side-Channel Attacks
-
Exploiting the DRAM Rowhammer Bug to Gain Kernel Privileges
