SkillAgentSearch skills...

SPECDET

Official Implementation of SPECDET: Static and Microarchitectural ML-Based Approaches for Detecting Spectre Vulnerabilities and Attacks. HASP’22 in Conjunction With The 55th IEEE/ACM International Symposium on Microarchitecture (MICRO’22).

GenerateConvertImprove

Install / Use

/learn @biringaChi/SPECDET
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

<h2 align = "center"> SPECDET </h2>

Official Implementation of Short Paper: Static and Microarchitectural ML-Based Approaches for Detecting Spectre Vulnerabilities and Attacks. Hardware and Architectural Support for Security and Privacy (HASP’22) in Conjunction With The 55th IEEE/ACM International Symposium on Microarchitecture (MICRO’22).

<h2 align = "center"> Visual Depiction of Research </h2>

Problem

<p float="left", align = "center"> <img src="..doc/v_depict/problem_0.png" width="400" /> <img src="..doc/v_depict/problem_1.png" width="400" /> </p>

Solution

<p float="left", align = "center"> <img src="..doc/v_depict/solution_0.png" width="400" /> <img src="..doc/v_depict/solution_1.png" width="400" /> </p> <!-- <p align="center"> <img src="..doc/core.png" width="98%"> </p> -->

Abstract

Spectre intrusions exploit speculative execution design vulnerabilities in modern processors. The attacks violate the principles of isolation in programs to gain unauthorized private user information. Current state-of-the-art detection techniques utilize micro-architectural features or vulnerable speculative code to detect these threats. However, these techniques are insufficient as Spectre attacks have proven to be more stealthy with recently discovered variants that bypass current mitigation mechanisms. Side-channels generate distinct patterns in processor cache, and sensitive information leakage is dependent on source code vulnerable to Spectre attacks, where an adversary uses these vulnerabilities, such as branch prediction, which causes a data breach. Previous studies predominantly approach the detection of Spectre attacks using the microarchitectural analysis, a reactive approach. Hence, in this paper, we present the first comprehensive evaluation of static and microarchitectural analysis-assisted machine learning approaches to detect Spectre vulnerable code snippets (preventive) and Spectre attacks (reactive). We evaluate the performance trade-offs in employing classifiers for detecting Spectre vulnerabilities and attacks.

Cite

@inproceedings{biringa2022short,
  title={Short Paper: Static and Microarchitectural ML-Based Approaches For Detecting Spectre Vulnerabilities and Attacks},
  author={Biringa, Chidera and Gaspard, Baye and Kul, Gokhan},
  booktitle={Proceedings of the 11th International Workshop on Hardware and Architectural Support for Security and Privacy},
  pages={53--57},
  year={2022}
}

Installation

$ git clone https://github.com/biringaChi/SPECDET
$ cd specdet
$ pip install -r requirements.txt

Gadget Data

Refer: Gadgets

CPU-PS Data

Refer: CPU-PS

Generating Spectre Embeddings

$ cd src/SGDetector/
$ python spectre_embed.py

Train & Test Vulnerability Detector

$ cd src/SGDetector/
$ python train.py --epochs=<arg> --lr=<arg> --batch_size=<arg>

Evaluate

$ cd src/SGDetector/
$ python test.py

Train & Test Attack Detector

$ cd src/CPSDetector/
$ python train.py

Presentation Video

<img src="..doc/thumbnail.png">

Acknowledgments

This work has been funded by UMass Dartmouth Cybersecurity Center. Usual disclaimers apply.

LICENSE

MIT LICENSE.

biringaChi

View profile

View on GitHub
GitHub Stars5
CategoryProduct
Updated2y ago
Forks2
biringaChi/SPECDET

Languages

Python

Security Score

75/100

Audited on Feb 21, 2024

No findings