An Attack on The Speculative Vectorization: Leakage from Higher   Dimensional Speculation

Sayinath Karuppanan; Samira Mirbagher Ajorpaz

arXiv:2302.01131·cs.CR·February 3, 2023

An Attack on The Speculative Vectorization: Leakage from Higher Dimensional Speculation

Sayinath Karuppanan, Samira Mirbagher Ajorpaz

PDF

Open Access

TL;DR

This paper demonstrates that speculative vectorization can leak sensitive information through microarchitectural side channels, showing vulnerabilities in Apple M2 and proposing descriptive models for such leaks.

Contribution

It reveals the fundamental vulnerability of speculative vectorization to microarchitectural leakage and introduces Microarchitectural Leakage Descriptors for analyzing such leaks.

Findings

01

Leakage demonstrated on Apple M2 SoC

02

Microarchitectural Leakage Descriptors (MLD) introduced

03

Reverse engineering of cache size performed

Abstract

This paper argues and shows that speculative vectorization, where a loop with rare or unknown memory dependencies are still vectorized, is fundamentally vulnerable and cannot be mitigated by existing defenses. We implement a simple proof of concept and show the leakage in Apple M2 SoC. We describe the source of leakage using Microarchitectural Leakage Descriptors MLD and we additionally describe principles to extend MLD for other optimization. Also as part of implementation we reverse engineer the M2 cache size and use threaded timer to differentiate between cache hit and miss.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsSecurity and Verification in Computing · Parallel Computing and Optimization Techniques · Advanced Data Storage Technologies