Kernel Isolation: From an Academic Idea to an Efficient Patch for Every Computer

Daniel Gruss; Dave Hansen; Brendan Gregg

Kernel Isolation: From an Academic Idea to an Efficient Patch for Every Computer

Daniel Gruss, Dave Hansen, Brendan Gregg

Institute of Applied Information Processing and Communications (7050)

Research output: Contribution to journal › Article

Abstract

The disclosure of the Meltdown vulnerability in early 2018 was an earthquake for the security community. Meltdown allows temporarily bypassing the most fundamental access permissions before a deferred permission check is finished: that is, the userspace-accessible bit is not reliable, allowing unrestricted access to kernel pages. More specifically, during out-of-order execution, the processor fetches or stores memory locations that are protected via access permissions and continues the outof- order execution of subsequent instructions with the retrieved or modified data, even if the access permission check failed. Most Intel, IBM, and Apple processors from recent years are affected as are several other processors. While AMD also defers the permission check, it does not continue the out-of-order execution of subsequent instructions with data that is supposed to be inaccessible.

Original language	English
Pages (from-to)	10-14
Number of pages	5
Journal	;login:
Volume	43
Issue number	4
Publication status	Published - Dec 2018

Access to Document

https://www.usenix.org/system/files/login/articles/login_winter18_03_gruss.pdf

Cite this

@article{02ddcd5b80304fbcb332c3485433a709,

title = "Kernel Isolation: From an Academic Idea to an Efficient Patch for Every Computer",

abstract = "The disclosure of the Meltdown vulnerability in early 2018 was an earthquake for the security community. Meltdown allows temporarily bypassing the most fundamental access permissions before a deferred permission check is finished: that is, the userspace-accessible bit is not reliable, allowing unrestricted access to kernel pages. More specifically, during out-of-order execution, the processor fetches or stores memory locations that are protected via access permissions and continues the outof- order execution of subsequent instructions with the retrieved or modified data, even if the access permission check failed. Most Intel, IBM, and Apple processors from recent years are affected as are several other processors. While AMD also defers the permission check, it does not continue the out-of-order execution of subsequent instructions with data that is supposed to be inaccessible.",

author = "Daniel Gruss and Dave Hansen and Brendan Gregg",

year = "2018",

month = dec,

language = "English",

volume = "43",

pages = "10--14",

journal = ";login: ",

issn = "2169-9364",

publisher = "USENIX Association",

number = "4",

}

TY - JOUR

T1 - Kernel Isolation

T2 - From an Academic Idea to an Efficient Patch for Every Computer

AU - Gruss, Daniel

AU - Hansen, Dave

AU - Gregg, Brendan

PY - 2018/12

Y1 - 2018/12

N2 - The disclosure of the Meltdown vulnerability in early 2018 was an earthquake for the security community. Meltdown allows temporarily bypassing the most fundamental access permissions before a deferred permission check is finished: that is, the userspace-accessible bit is not reliable, allowing unrestricted access to kernel pages. More specifically, during out-of-order execution, the processor fetches or stores memory locations that are protected via access permissions and continues the outof- order execution of subsequent instructions with the retrieved or modified data, even if the access permission check failed. Most Intel, IBM, and Apple processors from recent years are affected as are several other processors. While AMD also defers the permission check, it does not continue the out-of-order execution of subsequent instructions with data that is supposed to be inaccessible.

AB - The disclosure of the Meltdown vulnerability in early 2018 was an earthquake for the security community. Meltdown allows temporarily bypassing the most fundamental access permissions before a deferred permission check is finished: that is, the userspace-accessible bit is not reliable, allowing unrestricted access to kernel pages. More specifically, during out-of-order execution, the processor fetches or stores memory locations that are protected via access permissions and continues the outof- order execution of subsequent instructions with the retrieved or modified data, even if the access permission check failed. Most Intel, IBM, and Apple processors from recent years are affected as are several other processors. While AMD also defers the permission check, it does not continue the out-of-order execution of subsequent instructions with data that is supposed to be inaccessible.

M3 - Article

SN - 2169-9364

VL - 43

SP - 10

EP - 14

JO - ;login:

JF - ;login:

IS - 4

ER -

Kernel Isolation: From an Academic Idea to an Efficient Patch for Every Computer

Abstract

Access to Document

Fingerprint

Cite this