Privilege escalation attack through address space identifier corruption in untrusted modern processors

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Privilege escalation attacks are one of the major threats jeopardizing microprocessor operation. Such attacks aim to maliciously increase the privilege level of the executed process, in order to access unauthorized resources. Modern microprocessors include complex memory management modules, with various different privilege levels and numerous ways to change the privilege level. In this paper, we present a malicious modification in the microprocessor process switch mechanism. Contrary to recent work presented in literature, the modification can be deployed during manufacturing process, as it consists of a trivial addition of a gate or wire sizing. The minimal footprint, however, comes at the cost of small window of attack opportunities. Experimental results show that a modification-aware application can gain escalated privileges within a few thousand clock cycles. Moreover, the malicious code has been added to SPEC benchmarks, and we show that the modified benchmarks can get escalated privileges before the end of typical workload, with minimal performance overhead.

Original languageEnglish (US)
Title of host publicationProceedings of the 2013 8th International Conference on Design and Technology of Integrated Systems in Nanoscale Era, DTIS 2013
Pages161-166
Number of pages6
DOIs
StatePublished - 2013
Event2013 8th International Conference on Design and Technology of Integrated Systems in Nanoscale Era, DTIS 2013 - Abu Dhabi, United Arab Emirates
Duration: Mar 26 2013Mar 28 2013

Publication series

NameProceedings of the 2013 8th International Conference on Design and Technology of Integrated Systems in Nanoscale Era, DTIS 2013

Other

Other2013 8th International Conference on Design and Technology of Integrated Systems in Nanoscale Era, DTIS 2013
Country/TerritoryUnited Arab Emirates
CityAbu Dhabi
Period3/26/133/28/13

ASJC Scopus subject areas

  • Control and Systems Engineering

Fingerprint

Dive into the research topics of 'Privilege escalation attack through address space identifier corruption in untrusted modern processors'. Together they form a unique fingerprint.

Cite this