Identifying microarchitectural security vulnerabilities using simulation comparison with modified secret data

Assignee

• International Business Machines Corporation · US

Inventors

• Matthew Michael Garcia Pardini · Sylvia Park, US
• Gregory W. Alexander · Pflugerville, US
• Jonathan T. Hsieh · Poughkeepsie, US
• Michael P. Mullen · Poughkeepsie, US
• Olaf K. Hendrickson · Rochester, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/034
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A computer-implemented method for detecting vulnerabilities in microarchitectures. A non-limiting example of the computer-implemented method includes creating a simulation for execution on a model of a microarchitecture, the simulation including a set of instructions and a placeholder for holding a piece of secret data. The computer-implemented method executes the simulation a first time on the model of the microarchitecture with a first piece of secret data stored in the placeholder and stores a first output of the first executed simulation. The computer-implemented method executes the simulation a second time on the model of the microarchitecture with a second piece of secret data stored in the placeholder and stores a second output of the second executed simulation. The computer-implemented method compares the first output with the second output and provides an indication of a microarchitecture vulnerability when there is a difference between the first output and the second output.