TL;DR
This paper demonstrates a voltage glitching attack on AMD SEV, enabling decryption of VM memory, key extraction, and impersonation, revealing vulnerabilities in SEV's protection against insider threats.
Contribution
It introduces a novel fault injection attack targeting AMD-SP, allowing firmware modification, key extraction, and undermining SEV's security guarantees across multiple AMD architectures.
Findings
Successfully decrypted VM memory using voltage glitches
Extracted endorsement keys to forge attestation reports
Proved SEV's inability to prevent insider attacks on current CPUs
Abstract
AMD Secure Encrypted Virtualization (SEV) offers protection mechanisms for virtual machines in untrusted environments through memory and register encryption. To separate security-sensitive operations from software executing on the main x86 cores, SEV leverages the AMD Secure Processor (AMD-SP). This paper introduces a new approach to attack SEV-protected virtual machines (VMs) by targeting the AMD-SP. We present a voltage glitching attack that allows an attacker to execute custom payloads on the AMD-SPs of all microarchitectures that support SEV currently on the market (Zen 1, Zen 2, and Zen 3). The presented methods allow us to deploy a custom SEV firmware on the AMD-SP, which enables an adversary to decrypt a VM's memory. Furthermore, using our approach, we can extract endorsement keys of SEV-enabled CPUs, which allows us to fake attestation reports or to pose as a valid target for VM…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
