Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks

Maria Mushtaq; David Novo; Florent Bruguier; Pascal Benoit; Muhammad Khurram Bhatti

doi:10.1109/ETS50041.2021.9465429

Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks

Maria Mushtaq, David Novo, Florent Bruguier, Pascal Benoit, Muhammad Khurram Bhatti

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Transient attacks manipulate speculative execution to alter the control flow path in an application program and modify microarchitectural state. These state changes are not captured by the existing Instruction Set Architectures (ISAs). In this paper, we propose a novel OS-level detection-based mitigation mechanism, called Transit-Guard, that uses machine learning and real-time behavioral data of concurrent processes to detect and subsequently mitigate these attacks at run-time.

Original language	English
Title of host publication	Proceedings - 2021 IEEE European Test Symposium, ETS 2021
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781665418492
DOIs	https://doi.org/10.1109/ETS50041.2021.9465429
Publication status	Published - 24 May 2021
Externally published	Yes
Event	26th IEEE European Test Symposium, ETS 2021 - Virtual, Bruges, Belgium Duration: 24 May 2021 → 28 May 2021

Publication series

Name	Proceedings of the European Test Workshop
Volume	2021-May
ISSN (Print)	1530-1877
ISSN (Electronic)	1558-1780

Conference

Conference	26th IEEE European Test Symposium, ETS 2021
Country/Territory	Belgium
City	Virtual, Bruges
Period	24/05/21 → 28/05/21

Keywords

Machine learning
Meltdown
Microarchitecture
Mitigation
OS
Secure Systems
Spectre
Transient execution

Access to Document

10.1109/ETS50041.2021.9465429

Cite this

Mushtaq, M., Novo, D., Bruguier, F., Benoit, P., & Bhatti, M. K. (2021). Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks. In Proceedings - 2021 IEEE European Test Symposium, ETS 2021 Article 9465429 (Proceedings of the European Test Workshop; Vol. 2021-May). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ETS50041.2021.9465429

@inproceedings{4021dc341bd54caf95c2b1408b97303c,

title = "Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks",

abstract = "Transient attacks manipulate speculative execution to alter the control flow path in an application program and modify microarchitectural state. These state changes are not captured by the existing Instruction Set Architectures (ISAs). In this paper, we propose a novel OS-level detection-based mitigation mechanism, called Transit-Guard, that uses machine learning and real-time behavioral data of concurrent processes to detect and subsequently mitigate these attacks at run-time.",

keywords = "Machine learning, Meltdown, Microarchitecture, Mitigation, OS, Secure Systems, Spectre, Transient execution",

author = "Maria Mushtaq and David Novo and Florent Bruguier and Pascal Benoit and Bhatti, \{Muhammad Khurram\}",

note = "Publisher Copyright: {\textcopyright} 2021 IEEE.; 26th IEEE European Test Symposium, ETS 2021 ; Conference date: 24-05-2021 Through 28-05-2021",

year = "2021",

month = may,

day = "24",

doi = "10.1109/ETS50041.2021.9465429",

language = "English",

series = "Proceedings of the European Test Workshop",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "Proceedings - 2021 IEEE European Test Symposium, ETS 2021",

}

Mushtaq, M, Novo, D, Bruguier, F, Benoit, P & Bhatti, MK 2021, Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks. in Proceedings - 2021 IEEE European Test Symposium, ETS 2021., 9465429, Proceedings of the European Test Workshop, vol. 2021-May, Institute of Electrical and Electronics Engineers Inc., 26th IEEE European Test Symposium, ETS 2021, Virtual, Bruges, Belgium, 24/05/21. https://doi.org/10.1109/ETS50041.2021.9465429

Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks. / Mushtaq, Maria; Novo, David; Bruguier, Florent et al.
Proceedings - 2021 IEEE European Test Symposium, ETS 2021. Institute of Electrical and Electronics Engineers Inc., 2021. 9465429 (Proceedings of the European Test Workshop; Vol. 2021-May).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Transit-Guard

T2 - 26th IEEE European Test Symposium, ETS 2021

AU - Mushtaq, Maria

AU - Novo, David

AU - Bruguier, Florent

AU - Benoit, Pascal

AU - Bhatti, Muhammad Khurram

PY - 2021/5/24

Y1 - 2021/5/24

N2 - Transient attacks manipulate speculative execution to alter the control flow path in an application program and modify microarchitectural state. These state changes are not captured by the existing Instruction Set Architectures (ISAs). In this paper, we propose a novel OS-level detection-based mitigation mechanism, called Transit-Guard, that uses machine learning and real-time behavioral data of concurrent processes to detect and subsequently mitigate these attacks at run-time.

AB - Transient attacks manipulate speculative execution to alter the control flow path in an application program and modify microarchitectural state. These state changes are not captured by the existing Instruction Set Architectures (ISAs). In this paper, we propose a novel OS-level detection-based mitigation mechanism, called Transit-Guard, that uses machine learning and real-time behavioral data of concurrent processes to detect and subsequently mitigate these attacks at run-time.

KW - Machine learning

KW - Meltdown

KW - Microarchitecture

KW - Mitigation

KW - OS

KW - Secure Systems

KW - Spectre

KW - Transient execution

U2 - 10.1109/ETS50041.2021.9465429

DO - 10.1109/ETS50041.2021.9465429

M3 - Conference contribution

AN - SCOPUS:85113715609

T3 - Proceedings of the European Test Workshop

BT - Proceedings - 2021 IEEE European Test Symposium, ETS 2021

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 24 May 2021 through 28 May 2021

ER -

Transit-Guard: An OS-based Defense Mechanism against Transient Execution Attacks

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this