Exploiting an I/OMMU vulnerability | IEEE Conference Publication | IEEE Xplore
Subscribe
ADVANCED SEARCH
Conferences >2010 5th International Confer...

Exploiting an I/OMMU vulnerability

PDF
Fernand Lone Sang; Éric Lacombe; Vincent Nicomette; Yves Deswarte
All Authors

Abstract:

It is difficult to protect an operating system kernel in an efficient way. Attackers can corrupt or subvert it by two different means: (1) the CPU; (2) the Direct Memory ...Show More

Metadata

Abstract:

It is difficult to protect an operating system kernel in an efficient way. Attackers can corrupt or subvert it by two different means: (1) the CPU; (2) the Direct Memory Access (DMA) capability of I/O controllers. DMA-based attacks can be blocked using an I/OMMU. This component, embedded in most of current chipsets, enables the operating system to virtualize the main memory for I/O controllers and to restrict their access to only some memory regions. In this paper, we present different vulnerabilities we identified on Intel VT-d, which implements an I/OMMU. An example of exploitation of one of them is then detailed. Finally, we give some recommendations to prevent these vulnerabilities from being used for malicious purposes.
Published in: 2010 5th International Conference on Malicious and Unwanted Software
Date of Conference: 19-20 October 2010
Date Added to IEEE Xplore: 13 December 2010
ISBN Information:
DOI: 10.1109/MALWARE.2010.5665798
Conference Location: Nancy, France
Related Articles are not available for this document.
Contents
Contact IEEE to Subscribe

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.