Cyber security experts studying memory modules in computers have uncovered a key weakness that has led to worldwide security fixes in AMD computer processors.
The weakness occurs because of 鈥楤adRAM鈥 - rogue memory modules that deliberately provide false information to the computer鈥檚 processor during startup.
Processors are present in every computer and are necessary to perform every calculation. The computer鈥檚 memory (DRAM) is essential for storing code and data. When a computer boots up, the processor will communicate with DRAM modules to learn size, speed and configuration.
This information is stored on the so-called chip. But by tampering with this chip, the researchers found that attackers were able to bypass the AMD鈥檚 security mechanisms put in place to protect sensitive data 鈥 particularly data stored in shared cloud environments with pervasive data breaches and insider threats.
In this case, the researchers targeted a security technology called Secure Encrypted Virtualisation (SEV), designed by global computing company AMD. This cutting-edge technology protects privacy and trust in cloud computing by encrypting a virtual machine鈥檚 memory and isolating it from advanced attackers.
We found that using cheap, off-the-shelf equipment, we were able to trick the computer鈥檚 processor into allowing access to protected memory.
The BadRAM logo.
The research was carried out by a consortium of experts from KU Leuven, Belgium; the University of Luebeck, Germany; and the University 麻豆精选, UK.
It has led to AMD issuing firmware updates to securely validate memory configurations as processors boot up.
Professor David Oswald, at the University 麻豆精选, said: 鈥淲e found that using cheap, off-the-shelf equipment, we were able to trick the computer鈥檚 processor into allowing access to protected memory.鈥
The researchers have to explain the weakness and the potential threat posed. They explain that BadRAM makes the computer鈥檚 memory module intentionally lie about its size, tricking the CPU into addressing 鈥榞host鈥 memory regions that don鈥檛 exist.
This leads to two CPU addresses mapping to the same DRAM location. And through these aliases, attackers can bypass CPU memory protections, exposing sensitive data or causing disruptions.
Professor Oswald added: 鈥淲e worked with AMD to ensure they were able to adopt appropriate countermeasures so that BadRAM is detected at the point the computer boots up. While it鈥檚 good practice to keep your system up-to-date, most cloud providers will have updated their firmware to include AMD鈥檚 countermeasures 鈥 so there is no need to worry that your data is not secure!鈥
Professor in Computer Security
Staff profile for David Oswald for the School of Computer Science
