Presentation is loading. Please wait.

Presentation is loading. Please wait.

SYNERGY: Rethinking Secure-Memory Design for Error-Correcting Memories

Published byCory Holt Modified over 5 years ago

Similar presentations

Presentation on theme: "SYNERGY: Rethinking Secure-Memory Design for Error-Correcting Memories"— Presentation transcript:

1 SYNERGY: Rethinking Secure-Memory Design for Error-Correcting Memories
HPCA-2018 Vienna, Austria Gururaj Saileshwar1 Prashant Nair1 Prakash Ramrakhyani2 Wendy Elsasser2 Moinuddin Qureshi1 1 2

2 Designing Resilient Memories for Servers
Security Resilient Memories Security Co-Design by Malicious Attacks Reliability Server memories need protection against data corruption Reliability by Natural Errors SYNERGY Co-Design of Security-Reliability Attack Resilience – Memory Security Error Resilience – ECC-DIMM Better Performance – 20% Better Reliability – 185X Maintaining Security No Extra Storage SGX (Software Guard Extensions) ECC

3 Threat Model for Memory Modules
Unauthorized Reads Unauthorized Writes Replay Attack Cores Cache System Memory Cold Boot Attack DMA Attack Man-in-the-middle Attack Secure memory needs to protect against these attacks !

4 How Do Secure Memories Work ?
Unauthorized Reads Counter Mode Encryption Counter Mode Encryption Data Encrypted Data Counter +1 Unauthorized Writes Intel SGX Cryptographic Hash Data Signature / MAC Message Authentication Code Message Authentication Code Data Counters Secure Root On-Chip Signatures Integrity-Tree Integrity-Tree Replay Attack Counter-Based

5 Problem: Metadata Accesses Consume Memory Bandwidth
Secure Memory can require memory accesses for each Data access Access Number Data Cacheline 1 Memory Access Bloat 3 MAC Cacheline MAC Prevents Data Tampering Cacheable On-Chip 2 Encryption Counter Cacheline Ctr Used to Encrypt Data 4 . Integrity-Tree Counter Cacheline Ctr Prevents Replay-Attacks Memory Access Bloat due to Security Metadata can lead to Performance Overheads

6 Dissecting Overheads For Secure Memory
Performance - Secure vs Non-Secure Memory Cause: Memory access bloat due to metadata accesses Goal: Reduce MAC access bloat to improve secure memory performance 2X Gap MACs Counters Data SGX_O – Enhanced Baseline for Secure Memory (SGX with LLC shared by Counters & Data) MACs cause 0.9x additional accesses – focus of this paper !

7 Insight: Leverage ECC-DIMM To Reduce MAC Overheads
ECC-DIMM for Reliability Security with MAC ECC ECC DATA ECC MAC ECC MAC Fetched Same Access as Data Separate Access Co-Design Replace Detects Corrects Any Modifications 1-Bit Error 2-Bit Errors Still need ECC for Correction! Rare

8 Agenda Introduction & Background Synergy Design Evaluation

9 SYNERGY Co-locates MAC & Data for Performance
Data Cachelines ECC Cachelines MAC Cachelines DATA MAC ECC MAC ECC MAC ECC ECC MAC ECC MAC MAC ECC ECC MAC MAC ECC ECC MAC ECC ECC Non-Secure - 1 access Secure Memory - 2 accesses SYNERGY 1 access for reads , unless error (rare) 2 accesses for writes Synergy avoids extra MAC lookups and improves performance, without any additional storage

10 SYNERGY uses MAC for Error Detection
Data + MAC Cachelines ECC Cachelines – for correction DATA MAC ECC MISMATCH MATCH HASH Baseline ECC (SECDED) provides single-bit error correction MACs have strong error detection ability Can We Achieve Stronger Error-Correction with Co-Design?

11 Parity Can Reconstruct Chip With Failure
Data + MAC Cachelines ECC Cachelines – for correction FAILURE D0 D1 D2 D3 D4 D5 D6 D7 DATA MAC P ECC ECC How to identify chip with failure? CHIP-WISE PARITY Parity Can Correct Large-Granularity Failures, If Chip With Failure Known

12 SYNERGY uses MAC + Parity for Error Correction
DATA MATCH MISMATCH MAC MAC can detect when data cacheline is free from error HASH MAC ? ? Try Try Try PARITY PARITY How to identify chip with failure? Try & reconstruct each chip till MAC matches! Synergy can tolerate 1 chip with failure out of 9 chips, much stronger reliability than SECDED (Baseline)

13 Tolerating Errors in Other Metadata
Data Cacheline MAC Errors can occur in any metadata stored in memory Parity Cacheline P PP SYNERGY stores Parity with each metadata to correct errors Encryption Counters Cacheline Ctr PC Level-wise Error Correction Algorithm Integrity-Tree Counters Cacheline Ctr PT

14 Agenda Introduction & Background Synergy Design Evaluation

15 Benefit-1: Reduced Memory Traffic
Reads Writes Overall 56% ↓ ~ 36% ↓ SYNERGY Reduces Metadata Accesses by 36%

16 Benefit-2: Better Performance
Performance of SYNERGY normalized to SGX_O SYNERGY improves performance of secure memory by 20%, without any additional storage

17 Benefit-3: Stronger Reliability
SGX_O – SECDED (9 chip x 2 ranks) Chipkill (18 chips x 1 ranks) Synergy (9 chips x 2 ranks) SECDED only tolerates single-bit errors 185X Chipkill tolerates 1 chip failure out of 18 chips Probability of System Failure (Log Scale) 4X SYNERGY tolerates 1 chip failure out of 9 chips Years SYNERGY has 185x higher reliability than Baseline ECC-DIMM

18 SYNERGY improves Performance by 20% and Reliability by 185x
Conclusion Co-Design Security (MAC) Synergy (MAC + Parity) Reliability (ECC) SYNERGY improves Performance by 20% and Reliability by 185x

19 “The whole is greater than the sum of its parts” - Aristotle
Thanks and Questions “The whole is greater than the sum of its parts” - Aristotle Synergy

Download ppt "SYNERGY: Rethinking Secure-Memory Design for Error-Correcting Memories"

Similar presentations

CS 346 – April 4 Mass storage –Disk formatting –Managing swap space –RAID Commitment –Please finish chapter 12.

CS 346 – April 4 Mass storage –Disk formatting –Managing swap space –RAID Commitment –Please finish chapter 12.
CP1610: Introduction to Computer Components Primary Memory.

CP1610: Introduction to Computer Components Primary Memory.
Henry C. H. Chen and Patrick P. C. Lee

Henry C. H. Chen and Patrick P. C. Lee
TAP: A Novel Tunneling Approach for Anonymity in Structured P2P Systems Yingwu Zhu and Yiming Hu University of Cincinnati.

TAP: A Novel Tunneling Approach for Anonymity in Structured P2P Systems Yingwu Zhu and Yiming Hu University of Cincinnati.
1 Lecture 6: Chipkill, PCM Topics: error correction, PCM basics, PCM writes and errors.

1 Lecture 6: Chipkill, PCM Topics: error correction, PCM basics, PCM writes and errors.
Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures June 14 th 2014 Prashant J. Nair - Georgia Tech David A. Roberts- AMD Research.

Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures June 14 th 2014 Prashant J. Nair - Georgia Tech David A. Roberts- AMD Research.
Software Certification and Attestation Rajat Moona Director General, C-DAC.

Software Certification and Attestation Rajat Moona Director General, C-DAC.
REDUNDANT ARRAY OF INEXPENSIVE DISCS RAID. What is RAID ? RAID is an acronym for Redundant Array of Independent Drives (or Disks), also known as Redundant.

REDUNDANT ARRAY OF INEXPENSIVE DISCS RAID. What is RAID ? RAID is an acronym for Redundant Array of Independent Drives (or Disks), also known as Redundant.
Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures Dec 15 th 2014 MICRO-47 Cambridge UK Prashant Nair - Georgia Tech David.

Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures Dec 15 th 2014 MICRO-47 Cambridge UK Prashant Nair - Georgia Tech David.
Reducing Read Latency of Phase Change Memory via Early Read and Turbo Read Feb 9 th 2015 HPCA-21 San Francisco, USA Prashant Nair - Georgia Tech Chiachen.

Reducing Read Latency of Phase Change Memory via Early Read and Turbo Read Feb 9 th 2015 HPCA-21 San Francisco, USA Prashant Nair - Georgia Tech Chiachen.
Cyber Security and Key Management Models Smart Grid Networks The Network System Key Management and Utilization Why Hardware Security Christopher Gorog,

Cyber Security and Key Management Models Smart Grid Networks The Network System Key Management and Utilization Why Hardware Security Christopher Gorog,
Module 4 Hash Functions Highline Community College Seattle University University of Washington in conjunction with the National Science Foundation.

Module 4 Hash Functions Highline Community College Seattle University University of Washington in conjunction with the National Science Foundation.
1 Lecture 14: DRAM, PCM Today: DRAM scheduling, reliability, PCM Class projects.

1 Lecture 14: DRAM, PCM Today: DRAM scheduling, reliability, PCM Class projects.
Team CMD Distributed Systems Team Report 2 1/17/07 C:\>members Corey Andalora Mike Adams Darren Stanley.

Team CMD Distributed Systems Team Report 2 1/17/07 C:\>members Corey Andalora Mike Adams Darren Stanley.
Using Algebraic Signatures in Storage Applications Thomas Schwarz, S.J. Associate Professor, Santa Clara University Associate, SSRC UCSC Storage Systems.

Using Algebraic Signatures in Storage Applications Thomas Schwarz, S.J. Associate Professor, Santa Clara University Associate, SSRC UCSC Storage Systems.
RAID: High-Performance, Reliable Secondary Storage Mei Qing & Chaoxia Liao Nov. 20, 2003.

RAID: High-Performance, Reliable Secondary Storage Mei Qing & Chaoxia Liao Nov. 20, 2003.
Prashant Nair Dae-Hyun Kim Moinuddin K. Qureshi

Prashant Nair Dae-Hyun Kim Moinuddin K. Qureshi
Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.

Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.
IBM S/390 Parallel Enterprise Server G5 fault tolerance: A historical perspective by L. Spainhower & T.A. Gregg Presented by Mahmut Yilmaz.

IBM S/390 Parallel Enterprise Server G5 fault tolerance: A historical perspective by L. Spainhower & T.A. Gregg Presented by Mahmut Yilmaz.
Reducing Refresh Power in Mobile Devices with Morphable ECC

Reducing Refresh Power in Mobile Devices with Morphable ECC

Similar presentations

Ads by Google