Presshammer: Rowhammer and Rowpress without Physical Address Information

Jonas Juffinger; Sudheendra Raghav Neela; Martin Heckel; Lukas Schwarz; Florian Adamsky; Daniel Gruss

doi:10.1007/978-3-031-64171-8_24

Presshammer: Rowhammer and Rowpress without Physical Address Information

Jonas Juffinger
, Sudheendra Raghav Neela
, Martin Heckel
, Lukas Schwarz
, Florian Adamsky
, Daniel Gruss

Institute of Information Security (7050)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper

Abstract

Modern DRAM is susceptible to fault attacks that undermine the entire system’s security. The most well-studied disturbance effect is Rowhammer, where an attacker repeatedly opens and closes (i.e., hammers) different rows, which can lead to bitflips in adjacent rows. Different hammering strategies include double-sided, hammering two rows sandwiching a victim row, and one-location, hammering a single row. One-location Rowhammer requires no physical address information, as any location in memory is mapped to a DRAM row, and no relation between rows is required for hammering. The recently discovered Rowpress differs from Rowhammer by not hammering rows but keeping them open longer, evident by a disjoint set of affected memory locations. In this paper, we examine the differences between four attack variants: one-location Rowhammer, a one-location Rowpress variant we developed, double-sided Rowhammer, and double-sided Rowpress on a set of 12 DDR4 modules. Our methodology is to hammer and press the exact same set of physical memory locations in all attack variants. Surprisingly, our results show that on 4 out of 12 DDR4 modules, we were only able to reproduce double-sided Rowhammer but none of the other attack variants. On 2 DDR4 modules, we were able to reproduce all attack variants. We find that the number of unique bitflip locations ranges from 161 to 15 612, when hammering the exact same set of physical memory locations. Our one-location Rowhammer attack induces roughly the same amount of bitflips as double-sided Rowhammer, however, only 61.8 % of bitflip locations overlap. We explain this by one-location Rowhammer inducing bitflips due to the Rowhammer as well as the Rowpress effect, making the differentiation of both methods difficult, therefore, calling it Presshammer. Based on our observed bitflips, we develop the first end-to-end one-location Rowpress attack. One-location Rowpress requires only minimal physical address information that an attacker can acquire through a same-row same-bank side-channel attack. Our end-to-end attack escalates to kernel privileges within less than 10 min.

Original language	English
Title of host publication	Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings
Editors	Federico Maggi, Manuel Egele, Mathias Payer, Michele Carminati
Publisher	Springer, Cham
Pages	460–479
Number of pages	20
ISBN (Electronic)	978-3-031-64171-8
ISBN (Print)	978-3-031-64170-1
DOIs	https://doi.org/10.1007/978-3-031-64171-8_24
Publication status	Published - 2024
Event	21st Conference on Detection of Intrusions and Malware & Vulnerability Assessment: DIMVA 2024 - EPFL, Lausanne, Switzerland Duration: 17 Jul 2024 → 19 Jul 2024 https://www.dimva.org/dimva2024/

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	14828 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	21st Conference on Detection of Intrusions and Malware & Vulnerability Assessment
Abbreviated title	DIMVA 2024
Country/Territory	Switzerland
City	Lausanne
Period	17/07/24 → 19/07/24
Internet address	https://www.dimva.org/dimva2024/

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Fields of Expertise

Information, Communication & Computing

Access to Document

10.1007/978-3-031-64171-8_24

presshammerSubmitted manuscript, 456 KB

Cite this

Juffinger, J., Neela, S. R., Heckel, M., Schwarz, L., Adamsky, F., & Gruss, D. (2024). Presshammer: Rowhammer and Rowpress without Physical Address Information. In F. Maggi, M. Egele, M. Payer, & M. Carminati (Eds.), Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings (pp. 460–479). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14828 LNCS). Springer, Cham. https://doi.org/10.1007/978-3-031-64171-8_24

Presshammer: Rowhammer and Rowpress without Physical Address Information. / Juffinger, Jonas; Neela, Sudheendra Raghav; Heckel, Martin et al.
Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings. ed. / Federico Maggi; Manuel Egele; Mathias Payer; Michele Carminati. Springer, Cham, 2024. p. 460–479 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14828 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper

Juffinger, J, Neela, SR, Heckel, M, Schwarz, L, Adamsky, F & Gruss, D 2024, Presshammer: Rowhammer and Rowpress without Physical Address Information. in F Maggi, M Egele, M Payer & M Carminati (eds), Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 14828 LNCS, Springer, Cham, pp. 460–479, 21st Conference on Detection of Intrusions and Malware & Vulnerability Assessment, Lausanne, Switzerland, 17/07/24. https://doi.org/10.1007/978-3-031-64171-8_24

Juffinger J, Neela SR, Heckel M, Schwarz L, Adamsky F, Gruss D. Presshammer: Rowhammer and Rowpress without Physical Address Information. In Maggi F, Egele M, Payer M, Carminati M, editors, Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings. Springer, Cham. 2024. p. 460–479. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). Epub 2024 Jul 9. doi: 10.1007/978-3-031-64171-8_24

Juffinger, Jonas ; Neela, Sudheendra Raghav ; Heckel, Martin et al. / Presshammer: Rowhammer and Rowpress without Physical Address Information. Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings. editor / Federico Maggi ; Manuel Egele ; Mathias Payer ; Michele Carminati. Springer, Cham, 2024. pp. 460–479 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{f7d6ef91e33a44d0a10d537d904450ab,

title = "Presshammer: Rowhammer and Rowpress without Physical Address Information",

abstract = "Modern DRAM is susceptible to fault attacks that undermine the entire system{\textquoteright}s security. The most well-studied disturbance effect is Rowhammer, where an attacker repeatedly opens and closes (i.e., hammers) different rows, which can lead to bitflips in adjacent rows. Different hammering strategies include double-sided, hammering two rows sandwiching a victim row, and one-location, hammering a single row. One-location Rowhammer requires no physical address information, as any location in memory is mapped to a DRAM row, and no relation between rows is required for hammering. The recently discovered Rowpress differs from Rowhammer by not hammering rows but keeping them open longer, evident by a disjoint set of affected memory locations. In this paper, we examine the differences between four attack variants: one-location Rowhammer, a one-location Rowpress variant we developed, double-sided Rowhammer, and double-sided Rowpress on a set of 12 DDR4 modules. Our methodology is to hammer and press the exact same set of physical memory locations in all attack variants. Surprisingly, our results show that on 4 out of 12 DDR4 modules, we were only able to reproduce double-sided Rowhammer but none of the other attack variants. On 2 DDR4 modules, we were able to reproduce all attack variants. We find that the number of unique bitflip locations ranges from 161 to 15 612, when hammering the exact same set of physical memory locations. Our one-location Rowhammer attack induces roughly the same amount of bitflips as double-sided Rowhammer, however, only 61.8 \% of bitflip locations overlap. We explain this by one-location Rowhammer inducing bitflips due to the Rowhammer as well as the Rowpress effect, making the differentiation of both methods difficult, therefore, calling it Presshammer. Based on our observed bitflips, we develop the first end-to-end one-location Rowpress attack. One-location Rowpress requires only minimal physical address information that an attacker can acquire through a same-row same-bank side-channel attack. Our end-to-end attack escalates to kernel privileges within less than 10 min.",

author = "Jonas Juffinger and Neela, \{Sudheendra Raghav\} and Martin Heckel and Lukas Schwarz and Florian Adamsky and Daniel Gruss",

year = "2024",

doi = "10.1007/978-3-031-64171-8\_24",

language = "English",

isbn = "978-3-031-64170-1",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer, Cham",

pages = "460–479",

editor = "Federico Maggi and Manuel Egele and Mathias Payer and Michele Carminati",

booktitle = "Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings",

note = "21st Conference on Detection of Intrusions and Malware \& Vulnerability Assessment : DIMVA 2024, DIMVA 2024 ; Conference date: 17-07-2024 Through 19-07-2024",

url = "https://www.dimva.org/dimva2024/",

}

TY - GEN

T1 - Presshammer: Rowhammer and Rowpress without Physical Address Information

AU - Juffinger, Jonas

AU - Neela, Sudheendra Raghav

AU - Heckel, Martin

AU - Schwarz, Lukas

AU - Adamsky, Florian

AU - Gruss, Daniel

PY - 2024

Y1 - 2024

N2 - Modern DRAM is susceptible to fault attacks that undermine the entire system’s security. The most well-studied disturbance effect is Rowhammer, where an attacker repeatedly opens and closes (i.e., hammers) different rows, which can lead to bitflips in adjacent rows. Different hammering strategies include double-sided, hammering two rows sandwiching a victim row, and one-location, hammering a single row. One-location Rowhammer requires no physical address information, as any location in memory is mapped to a DRAM row, and no relation between rows is required for hammering. The recently discovered Rowpress differs from Rowhammer by not hammering rows but keeping them open longer, evident by a disjoint set of affected memory locations. In this paper, we examine the differences between four attack variants: one-location Rowhammer, a one-location Rowpress variant we developed, double-sided Rowhammer, and double-sided Rowpress on a set of 12 DDR4 modules. Our methodology is to hammer and press the exact same set of physical memory locations in all attack variants. Surprisingly, our results show that on 4 out of 12 DDR4 modules, we were only able to reproduce double-sided Rowhammer but none of the other attack variants. On 2 DDR4 modules, we were able to reproduce all attack variants. We find that the number of unique bitflip locations ranges from 161 to 15 612, when hammering the exact same set of physical memory locations. Our one-location Rowhammer attack induces roughly the same amount of bitflips as double-sided Rowhammer, however, only 61.8 % of bitflip locations overlap. We explain this by one-location Rowhammer inducing bitflips due to the Rowhammer as well as the Rowpress effect, making the differentiation of both methods difficult, therefore, calling it Presshammer. Based on our observed bitflips, we develop the first end-to-end one-location Rowpress attack. One-location Rowpress requires only minimal physical address information that an attacker can acquire through a same-row same-bank side-channel attack. Our end-to-end attack escalates to kernel privileges within less than 10 min.

AB - Modern DRAM is susceptible to fault attacks that undermine the entire system’s security. The most well-studied disturbance effect is Rowhammer, where an attacker repeatedly opens and closes (i.e., hammers) different rows, which can lead to bitflips in adjacent rows. Different hammering strategies include double-sided, hammering two rows sandwiching a victim row, and one-location, hammering a single row. One-location Rowhammer requires no physical address information, as any location in memory is mapped to a DRAM row, and no relation between rows is required for hammering. The recently discovered Rowpress differs from Rowhammer by not hammering rows but keeping them open longer, evident by a disjoint set of affected memory locations. In this paper, we examine the differences between four attack variants: one-location Rowhammer, a one-location Rowpress variant we developed, double-sided Rowhammer, and double-sided Rowpress on a set of 12 DDR4 modules. Our methodology is to hammer and press the exact same set of physical memory locations in all attack variants. Surprisingly, our results show that on 4 out of 12 DDR4 modules, we were only able to reproduce double-sided Rowhammer but none of the other attack variants. On 2 DDR4 modules, we were able to reproduce all attack variants. We find that the number of unique bitflip locations ranges from 161 to 15 612, when hammering the exact same set of physical memory locations. Our one-location Rowhammer attack induces roughly the same amount of bitflips as double-sided Rowhammer, however, only 61.8 % of bitflip locations overlap. We explain this by one-location Rowhammer inducing bitflips due to the Rowhammer as well as the Rowpress effect, making the differentiation of both methods difficult, therefore, calling it Presshammer. Based on our observed bitflips, we develop the first end-to-end one-location Rowpress attack. One-location Rowpress requires only minimal physical address information that an attacker can acquire through a same-row same-bank side-channel attack. Our end-to-end attack escalates to kernel privileges within less than 10 min.

UR - https://www.scopus.com/pages/publications/85200662319

U2 - 10.1007/978-3-031-64171-8_24

DO - 10.1007/978-3-031-64171-8_24

M3 - Conference paper

SN - 978-3-031-64170-1

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 460

EP - 479

BT - Detection of Intrusions and Malware, and Vulnerability Assessment - 21st International Conference, DIMVA 2024, Proceedings

A2 - Maggi, Federico

A2 - Egele, Manuel

A2 - Payer, Mathias

A2 - Carminati, Michele

PB - Springer, Cham

T2 - 21st Conference on Detection of Intrusions and Malware & Vulnerability Assessment

Y2 - 17 July 2024 through 19 July 2024

ER -

Presshammer: Rowhammer and Rowpress without Physical Address Information

Abstract

Publication series

Conference

ASJC Scopus subject areas

Fields of Expertise

Access to Document

Other files and links

Fingerprint

EU - FSSec - Foundations for Sustainable Security

Special Research Area (SFB) F85 Semantic and Cryptographic Foundations of Security and Privacy by Compositional Design