Exzess: Hardware-based RAM encryption against physical memory disclosure

Beitrag bei einer Tagung

Details zur Publikation

Autor(en): Würstlein A, Gernoth M, Götzfried J, Müller T
Verlag: Springer Verlag
Jahr der Veröffentlichung: 2016
Band: 9637
Seitenbereich: 60-71
ISBN: 9783319306940


The main memory of today’s computers contains lots of sensitive data, in particular from applications that have been used recently. As data within RAM is stored in cleartext, it is exposed to attackers with physical access to a system. In this paper we introduce Exzess, a hardware-based mitigation against physical memory disclosure attacks such as, for example, cold boot and DMA attacks. Our FPGA-based prototype with accompanying software components demonstrates the viability, security and performance of our novel approach for partial main memory encryption via memory proxies. The memory proxy approach will be compared to other existing mitigation techniques and possible further uses beyond encryption will be discussed, as well. Exzess effectively protects against physical attacks on main memory while being transparent to applications and the operating system after initialization.

FAU-Autoren / FAU-Herausgeber

Gernoth, Michael
Sonderforschungsbereich/Transregio 89 Invasives Rechnen
Götzfried, Johannes Dr.-Ing.
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen)
Müller, Tilo Dr.-Ing.
Lehrstuhl für Informatik 1 (IT-Sicherheitsinfrastrukturen)
Würstlein, Alexander
Lehrstuhl für Informatik 4 (Verteilte Systeme und Betriebssysteme)

Zusätzliche Organisationseinheit(en)
Sonderforschungsbereich/Transregio 89 Invasives Rechnen, C01 Invasives Laufzeitunterstützungssystem (iRTSS)
Sonderforschungsbereich/Transregio 89 Invasives Rechnen, C05 IT-Sicherhit bei invasivem Rechnen


Würstlein, A., Gernoth, M., Götzfried, J., & Müller, T. (2016). Exzess: Hardware-based RAM encryption against physical memory disclosure. (pp. 60-71). Springer Verlag.

Würstlein, Alexander, et al. "Exzess: Hardware-based RAM encryption against physical memory disclosure." Proceedings of the 29th International Conference on Architecture of Computing Systems, ARCS 2016 Springer Verlag, 2016. 60-71.


Zuletzt aktualisiert 2018-07-11 um 20:25