Open orlitzky opened 1 month ago
The paper A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs lists several hardware attacks against RISC-V cpus. There's also a video from the IEEE Symposium on Security and Privacy presentation.
In particular,
fence.i
dcache.civa
icache.iva
Test programs can be found in https://github.com/cispa/Security-RISC
These are well-known exploits so it would be good to start mitigating them. Perhaps a good first step is to make dcache.civa and icache.iva privileged by default (with a kernel flag)?
The paper A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs lists several hardware attacks against RISC-V cpus. There's also a video from the IEEE Symposium on Security and Privacy presentation.
In particular,
fence.idcache.civaandicache.ivadcache.civadcache.civafence.iTest programs can be found in https://github.com/cispa/Security-RISC
These are well-known exploits so it would be good to start mitigating them. Perhaps a good first step is to make
dcache.civaandicache.ivaprivileged by default (with a kernel flag)?