Targeted Wearout Attacks in Microprocessor Cores
Joshua Mashburn, Johann Knechtel, Florian Klemme, Hussam Amrouch, Ozgur Sinanoglu, Paul V. Gratz
TL;DR
This paper introduces a novel attack method called Targeted Wearout Attack that exploits negative-bias temperature instability in microprocessors to selectively degrade specific functional units, causing targeted errors or data corruption.
Contribution
It presents a new attack framework leveraging aging mechanisms for targeted fault injection in microprocessors, with a case study demonstrating significant wear increase in a RISC-V CPU pipeline.
Findings
Targeted wearout can cause >7x increase in component degradation.
Attacker can induce silent data corruption in victim applications.
The attack requires only user privilege and knowledge of processor internals.
Abstract
Negative-Bias Temperature Instability is a dominant aging mechanism in nanoscale CMOS circuits such as microprocessors. With this aging mechanism, the rate of device aging is dependent not only on overall operating conditions, such as heat, but also on user controllable inputs to the transistors. This dependence on input implies a possible timing fault-injection attack wherein a targeted path of logic is intentionally degraded through the purposeful, software-driven actions of an attacker, rendering a targeted bit effectively stuck. In this work, we describe such an attack mechanism, which we dub a "", wherein an attacker with sufficient knowledge of the processor core, executing a carefully crafted software program with only user privilege, is able to degrade a functional unit within the processor with the aim of eliciting a particular desired…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.