Do You Even Lift? Strengthening Compiler Security Guarantees Against   Spectre Attacks

Xaver Fabian; Marco Patrignani; Marco Guarnieri; Michael Backes

arXiv:2405.10089·cs.PL·March 6, 2025

Do You Even Lift? Strengthening Compiler Security Guarantees Against Spectre Attacks

Xaver Fabian, Marco Patrignani, Marco Guarnieri, Michael Backes

PDF

Open Access

TL;DR

This paper introduces a new secure compilation framework that enhances Spectre attack countermeasures in compilers by lifting security guarantees from weaker to stronger speculative semantics, enabling comprehensive security analysis.

Contribution

The paper presents a novel framework for lifting security guarantees across different speculative semantics, facilitating thorough Spectre countermeasure analysis without new proofs.

Findings

01

Analyzed 9 countermeasures against 5 Spectre attack classes

02

Proved security of countermeasures against five speculation mechanisms

03

Performed the most comprehensive Spectre security analysis to date

Abstract

Mainstream compilers implement different countermeasures to prevent specific classes of speculative execution attacks. Unfortunately, these countermeasures either lack formal guarantees or come with proofs restricted to speculative semantics capturing only a subset of the speculation mechanisms supported by modern CPUs, thereby limiting their practical applicability. Ideally, these security proofs should target a speculative semantics capturing the effects of all speculation mechanisms implemented in modern CPUs. However, this is impractical and requires new secure compilation proofs to support additional speculation mechanisms. In this paper, we address this problem by proposing a novel secure compilation framework that allows lifting the security guarantees provided by Spectre countermeasures from weaker speculative semantics (ignoring some speculation mechanisms) to stronger ones…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsSecurity and Verification in Computing · Advanced Malware Detection Techniques · Network Security and Intrusion Detection