Plundervolt: How a little bit of undervolting can create a lot of trouble

Kit Murdock; David Oswald; Flavio D. Garcia; Jo Van Bulck; Frank Piessens; Daniel Gruss

doi:10.1109/MSEC.2020.2990495

Plundervolt: How a little bit of undervolting can create a lot of trouble

Kit Murdock, David Oswald, Flavio D. Garcia, Jo Van Bulck, Frank Piessens, Daniel Gruss

Institute of Applied Information Processing and Communications (7050)

Research output: Contribution to journal › Article › peer-review

Abstract

Historically, fault injection was the realm of adversaries with physical access. This changed when research revealed that remote attackers could use software to inject faults. Plundervolt is a new software-based attack on Intel's trusted execution technology (SGX). Plundervolt can break cryptography and inject memory-safety bugs into secure code.

Original language	English
Article number	9104908
Pages (from-to)	28-37
Number of pages	10
Journal	IEEE Security & Privacy
Volume	18
Issue number	5
DOIs	https://doi.org/10.1109/MSEC.2020.2990495
Publication status	Published - 1 Sept 2020

ASJC Scopus subject areas

Computer Networks and Communications
Electrical and Electronic Engineering
Law

Access to Document

10.1109/MSEC.2020.2990495

Cite this

@article{56ae32972b6740039530876e6d180565,

title = "Plundervolt: How a little bit of undervolting can create a lot of trouble",

abstract = "Historically, fault injection was the realm of adversaries with physical access. This changed when research revealed that remote attackers could use software to inject faults. Plundervolt is a new software-based attack on Intel's trusted execution technology (SGX). Plundervolt can break cryptography and inject memory-safety bugs into secure code.",

author = "Kit Murdock and David Oswald and Garcia, {Flavio D.} and {Van Bulck}, Jo and Frank Piessens and Daniel Gruss",

year = "2020",

month = sep,

day = "1",

doi = "10.1109/MSEC.2020.2990495",

language = "English",

volume = "18",

pages = "28--37",

journal = "IEEE Security & Privacy",

issn = "1540-7993",

publisher = "Institute of Electrical and Electronics Engineers",

number = "5",

}

TY - JOUR

T1 - Plundervolt

T2 - How a little bit of undervolting can create a lot of trouble

AU - Murdock, Kit

AU - Oswald, David

AU - Garcia, Flavio D.

AU - Van Bulck, Jo

AU - Piessens, Frank

AU - Gruss, Daniel

PY - 2020/9/1

Y1 - 2020/9/1

N2 - Historically, fault injection was the realm of adversaries with physical access. This changed when research revealed that remote attackers could use software to inject faults. Plundervolt is a new software-based attack on Intel's trusted execution technology (SGX). Plundervolt can break cryptography and inject memory-safety bugs into secure code.

AB - Historically, fault injection was the realm of adversaries with physical access. This changed when research revealed that remote attackers could use software to inject faults. Plundervolt is a new software-based attack on Intel's trusted execution technology (SGX). Plundervolt can break cryptography and inject memory-safety bugs into secure code.

UR - http://www.scopus.com/inward/record.url?scp=85086221616&partnerID=8YFLogxK

U2 - 10.1109/MSEC.2020.2990495

DO - 10.1109/MSEC.2020.2990495

M3 - Article

AN - SCOPUS:85086221616

SN - 1540-7993

VL - 18

SP - 28

EP - 37

JO - IEEE Security & Privacy

JF - IEEE Security & Privacy

IS - 5

M1 - 9104908

ER -

Plundervolt: How a little bit of undervolting can create a lot of trouble

Abstract

ASJC Scopus subject areas

Access to Document

Other files and links

Cite this