摘要
同时多线程(simultaneousmulti-threading,SMT)技术是现代高性能处理器的标配技术,是提升线程级并行度的重要微架构优化技术之一.SMT技术在带来性能提升的同时,也引入了新的时间信道安全问题,相对于跨核、跨处理器,SMT技术下的时间信道安全问题更难应对和防护,且陆续有新的安全问题出现.当前缺少一种系统描述SMT环境下时间信道安全问题的方法.从利用SMT技术产生时间信道的原理入手,聚焦SMT环境下共享资源产生的时间信道及其攻击机理,基于拓扑排序图(topologicalsortgraph,TSG)模型,结合数据流分析扩展得到一种适用于SMT环境下的时间信道安全问题描述模型——ETSG(extendedtopologicalsortgraph,扩展的拓扑排序图)-SMT.首先介绍SMT环境下时间信道安全问题利用和防护的技术特点以及使用TSG模型分析SMT环境下时间信道安全问题的限制与不足;然后在TSG模型基础上,针对SMT技术特征及其安全问题的形式化描述特点,结合数据流分析技术形成一套新的建模方法;最后,通过将ETSG-SMT模型应用到SMT环境下现有的攻击方法和防护案例推导中,证明使用ETSG-SMT模型对SMT环境下时间信道原理分析和防护技术推导有很好的应用价值.
Simultaneous multi-threading(SMT) technology is the standard of modern high-performance processor technology,which is important micro structure optimization technology to improve the thread level parallelism.Compared with cross-cores and cross-processors,the timing channel security in SMT technology is more difficult to deal with and protect,and new security problems have emerged successively.At present,there is no systematic method to describe the timing channel security problem in SMT environment.Starting from the principle of timing channel attack using SMT technology,focusing on the timing channel attack generated by shared resources in SMT environment and its attack mechanism,based on the topological sort graph(TSG) model and data flow analysis extension,a description model of timing channel security problem suitable for SMT environment,ETSG-SMT is proposed.Firstly,this study introduces the technical characteristics of the utilization and protection of timing channel under SMT environment and the limitation and deficiency of TSG model to analyze these security problems.Then,on the basis of TSG model for SMT technical characteristics and its security problems of formal description characteristics combined with data flow analysis technology,a set of new modeling method is formulated.Finally,by applying ETSG-SMT model to the existing time channel attack methods and protection cases in the SMT environment,it is proved that the ETSG-SMT model has a sound application value in the analysis of the principle of timing channel attack and the derivation of protection technology in the SMT environment.
作者
岳晓萌
杨秋松
李明树
YUE Xiao-Meng;YANG Qiu-Song;LI Ming-Shu(National Engineering Research Center for Fundamental Software,Institute of Software,Chinese Academy of Sciences,Beijing 100190,China;University of Chinese Academy of Sciences,Beijing 100049,China)
出处
《软件学报》
EI
CSCD
北大核心
2022年第12期4476-4503,共28页
Journal of Software
基金
“核高基”国家科技重大专项(2014ZX01029101-002)
中国科学院战略性先导科技专项(XDA-Y01-01,XDC05020200)。
