Breaking Virtual Memory Protection and the SGX Ecosystem with Foreshadow

Jo Van Bulck; Marina Minkin; Ofir Weisse; Daniel Genkin; Baris Kasikci; Frank Piessens; Mark Silberstein; Thomas F. Wenisch; Yuval Yarom; Raoul Strackx

doi:10.1109/MM.2019.2910104

Breaking Virtual Memory Protection and the SGX Ecosystem with Foreshadow

Jo Van Bulck, Marina Minkin, Ofir Weisse, Daniel Genkin, Baris Kasikci, Frank Piessens, Mark Silberstein, Thomas F. Wenisch, Yuval Yarom, Raoul Strackx

Technion - Israel Institute of Technology

Research output: Contribution to journal › Article › peer-review

Abstract

Foreshadow is a speculative execution attack that allows adversaries to subvert the security guarantees of Intel's Software Guard eXtensions (SGX). Foreshadow allows access to data across process boundaries, and allows virtual machines (VMs) to read the physical memory belonging to other VMs or the hypervisor.

Original language	English
Article number	8691527
Pages (from-to)	66-74
Number of pages	9
Journal	IEEE Micro
Volume	39
Issue number	3
DOIs	https://doi.org/10.1109/MM.2019.2910104
State	Published - 1 May 2019

All Science Journal Classification (ASJC) codes

Software
Hardware and Architecture
Electrical and Electronic Engineering

Access to Document

10.1109/MM.2019.2910104

Cite this

@article{7b2b8e1de5d842f18ca390ba4f8baf6f,

title = "Breaking Virtual Memory Protection and the SGX Ecosystem with Foreshadow",

abstract = "Foreshadow is a speculative execution attack that allows adversaries to subvert the security guarantees of Intel's Software Guard eXtensions (SGX). Foreshadow allows access to data across process boundaries, and allows virtual machines (VMs) to read the physical memory belonging to other VMs or the hypervisor.",

author = "\{Van Bulck\}, Jo and Marina Minkin and Ofir Weisse and Daniel Genkin and Baris Kasikci and Frank Piessens and Mark Silberstein and Wenisch, \{Thomas F.\} and Yuval Yarom and Raoul Strackx",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.",

year = "2019",

month = may,

day = "1",

doi = "10.1109/MM.2019.2910104",

language = "الإنجليزيّة",

volume = "39",

pages = "66--74",

journal = "IEEE Micro",

issn = "0272-1732",

publisher = "IEEE Computer Society",

number = "3",

}

TY - JOUR

T1 - Breaking Virtual Memory Protection and the SGX Ecosystem with Foreshadow

AU - Van Bulck, Jo

AU - Minkin, Marina

AU - Weisse, Ofir

AU - Genkin, Daniel

AU - Kasikci, Baris

AU - Piessens, Frank

AU - Silberstein, Mark

AU - Wenisch, Thomas F.

AU - Yarom, Yuval

AU - Strackx, Raoul

PY - 2019/5/1

Y1 - 2019/5/1

N2 - Foreshadow is a speculative execution attack that allows adversaries to subvert the security guarantees of Intel's Software Guard eXtensions (SGX). Foreshadow allows access to data across process boundaries, and allows virtual machines (VMs) to read the physical memory belonging to other VMs or the hypervisor.

AB - Foreshadow is a speculative execution attack that allows adversaries to subvert the security guarantees of Intel's Software Guard eXtensions (SGX). Foreshadow allows access to data across process boundaries, and allows virtual machines (VMs) to read the physical memory belonging to other VMs or the hypervisor.

UR - http://www.scopus.com/inward/record.url?scp=85064646592&partnerID=8YFLogxK

U2 - 10.1109/MM.2019.2910104

DO - 10.1109/MM.2019.2910104

M3 - مقالة

SN - 0272-1732

VL - 39

SP - 66

EP - 74

JO - IEEE Micro

JF - IEEE Micro

IS - 3

M1 - 8691527

ER -

Breaking Virtual Memory Protection and the SGX Ecosystem with Foreshadow

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this