Papers
Topics
Authors
Recent
Gemini 2.5 Flash
Gemini 2.5 Flash
119 tokens/sec
GPT-4o
56 tokens/sec
Gemini 2.5 Pro Pro
43 tokens/sec
o3 Pro
6 tokens/sec
GPT-4.1 Pro
47 tokens/sec
DeepSeek R1 via Azure Pro
28 tokens/sec
2000 character limit reached

FP-Rowhammer: DRAM-Based Device Fingerprinting (2307.00143v2)

Published 30 Jun 2023 in cs.CR

Abstract: Device fingerprinting leverages attributes that capture heterogeneity in hardware and software configurations to extract unique and stable fingerprints. Fingerprinting countermeasures attempt to either present a uniform fingerprint across different devices through normalization or present different fingerprints for the same device each time through obfuscation. We present FP-Rowhammer, a Rowhammer-based device fingerprinting approach that can build unique and stable fingerprints even across devices with normalized or obfuscated hardware and software configurations. To this end, FP-Rowhammer leverages the DRAM manufacturing process variation that gives rise to unique distributions of Rowhammer-induced bit flips across different DRAM modules. Our evaluation on a test bed of 98 DRAM modules shows that FP-Rowhammer achieves 99.91% fingerprinting accuracy. FP-Rowhammer's fingerprints are also stable, with no degradation in fingerprinting accuracy over a period of ten days. We also demonstrate that FP-Rowhammer is efficient, taking less than five seconds to extract a fingerprint. FP-Rowhammer is the first Rowhammer fingerprinting approach that is able to extract unique and stable fingerprints efficiently and at scale.

Definition Search Book Streamline Icon: https://streamlinehq.com
References (55)
  1. More birthday surprises. The American Mathematical Monthly, 77(8):856–858, 1970.
  2. A large-scale empirical analysis of browser fingerprints properties for web authentication. ACM Trans. Web, 16(1), sep 2021.
  3. Apple. User Privacy and Data Use. https://developer.apple.com/app-store/user-privacy-and-data-use/.
  4. Distributed row hammer tracking, 2012. US Patent US20140095780A1.
  5. Benjamin Seufert. Apple to Ad Tech: “Fingerprinting is Never Allowed”. https://mobiledevmemo.com/apple-to-adtech-fingerprinting-is-never-allowed/.
  6. Brave. Fingerprinting Protection Mode. https://github.com/brave/browser-laptop/wiki/Fingerprinting-Protection-Mode.
  7. Brave Privacy Team. Fingerprinting defenses 2.0. https://brave.com/privacy-updates/4-fingerprinting-defenses-2.0/.
  8. Demicpu: Device fingerprinting with magnetic signals radiated by cpu. In Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, CCS ’19, page 1149–1170, New York, NY, USA, 2019. Association for Computing Machinery.
  9. Exploiting correcting codes: On the effectiveness of ecc memory against rowhammer attacks. In 2019 IEEE Symposium on Security and Privacy (SP), pages 55–71, 2019.
  10. SMASH: Synchronized many-sided rowhammer attacks from JavaScript. In 30th USENIX Security Symposium (USENIX Security 21), pages 1001–1018. USENIX Association, August 2021.
  11. Linux CPUFreq CPUFreq Governor. https://www.kernel.org/doc/Documentation/cpu-freq/governors.txt.
  12. Peter Eckersley. How unique is your web browser? In Proceedings of the 10th International Conference on Privacy Enhancing Technologies, PETS’10, page 1–18, Berlin, Heidelberg, 2010. Springer-Verlag.
  13. elinux. PandaBoard. https://elinux.org/PandaBoard.
  14. FingerprintJS. FingerprintJS. https://github.com/fingerprintjs/fingerprintjs.
  15. Trrespass: Exploiting the many sides of target row refresh. In 2020 IEEE Symposium on Security and Privacy (SP), pages 747–762, 2020.
  16. Google. Advertising ID. https://support.google.com/googleplay/android-developer/answer/6048248.
  17. Rowhammer.js: A remote software-induced fault attack in javascript. In Proceedings of the 13th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment - Volume 9721, DIMVA 2016, page 300–321, Berlin, Heidelberg, 2016. Springer-Verlag.
  18. Uncovering in-dram rowhammer protection mechanisms:a new methodology, custom rowhammer patterns, and implications. In MICRO-54: 54th Annual IEEE/ACM International Symposium on Microarchitecture, MICRO ’21, page 1198–1213, New York, NY, USA, 2021. Association for Computing Machinery.
  19. Hynix Semiconductor. Datasheet for 1Gb (32Mx32) GDDR5 SGRAM H5GQ1H24AFR. Technical Report H5GQ1H24AFR, 2009.
  20. Fingerprinting the fingerprinters: Learning to detect browser fingerprinting behaviors. In 2021 IEEE Symposium on Security and Privacy (SP), pages 1143–1161. IEEE, 2021.
  21. Memory Systems: Cache, DRAM, Disk. Morgan Kaufmann Publishers Inc., San Francisco, CA, USA, 2007.
  22. Blacksmith: Scalable rowhammering in the frequency domain. In 2022 IEEE Symposium on Security and Privacy (SP), pages 716–734, 2022.
  23. JEDEC. DDR5 SDRAM. Technical Report JESD79-5B, August 2022.
  24. kernel development community. Transparent Hugepage Support. https://www.kernel.org/doc/html/latest/admin-guide/mm/transhuge.html.
  25. kernel.org. pagemap, from the userspace perspective. https://www.kernel.org/doc/Documentation/vm/pagemap.txt.
  26. Flipping bits in memory without accessing them: An experimental study of dram disturbance errors. SIGARCH Comput. Archit. News, 42(3):361–372, jun 2014.
  27. DRAWN APART : A device identification technique based on remote GPU fingerprinting. In Proceedings 2022 Network and Distributed System Security Symposium. Internet Society, 2022.
  28. Browser fingerprinting: A survey. ACM Transactions on the Web (TWEB), 14(2):1–33, 2020.
  29. Device identification in multimedia systems based on dram fingerprinting, 2022.
  30. Dramsim3: A cycle-accurate, thermal-capable dram simulator. IEEE Computer Architecture Letters, 19(2):106–109, 2020.
  31. Micron. DDR4 SDRAM. https://www.micron.com/-/media/client/global/documents/products/data-sheet/dram/ddr4/8gb_ddr4_sdram.pdf.
  32. Micron Technology. TN-46-12: Mobile DRAM Power-Saving Features and Power Calculations. Technical Report TN46_12, 2005.
  33. Micron Technology. DDR2 SDRAM . Technical Report MT47H512M4,MT47H256M8,MT47H128M16, 2006.
  34. Micron Technology. TN-41-01: Calculating Memory System Power for DDR3. Technical Report TN41_01DDR3, January 2007.
  35. Micron Technology. 1.35V DDR3L SDRAM SODIMM. Technical Report MT16KTF51264HZ, MT16KTF1G64HZ, 2011.
  36. Micron Technology,. DDR4 SDRAM. Technical Report MT40A2G4, MT40A1G8, MT40A512M16, 2015.
  37. Micron Technology. TN-ED-03: GDDR6: The Next-Generation Graphics DRAM . Technical Report TN-ED-03: GDDR6, 2017.
  38. The Design and Implementation of the Tor Browser. https://2019.www.torproject.org/projects/torbrowser/design/.
  39. Mozilla. Using HTTP cookies. https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies.
  40. MultiLogin. Hardware: Canvas. https://docs.multilogin.com/l/en/article/7gNVYHcFKG-canvas.
  41. Notes on AI. Jensen-Shannon Divergence. https://notesonai.com/Jensen%E2%80%93Shannon+Divergence.
  42. The leaking battery: A privacy analysis of the html5 battery status api. IACR Cryptology ePrint Archive, 2015:616, 2015.
  43. Computer Architecture: A Quantitative Approach. Morgan Kaufmann Publishers Inc., San Francisco, CA, USA, 1990.
  44. DRAMA: Exploiting DRAM addressing for Cross-CPU attacks. In 25th USENIX Security Symposium (USENIX Security 16), pages 565–581, Austin, TX, August 2016. USENIX Association.
  45. Long-term observation on browser fingerprinting: Users’ trackability and perspective. Proceedings on Privacy Enhancing Technologies, 2020:558–577, 05 2020.
  46. Flip feng shui: Hammering a needle in the software stack. In 25th USENIX Security Symposium (USENIX Security 16), pages 1–18, Austin, TX, August 2016. USENIX Association.
  47. Dramsim2: A cycle accurate memory system simulator. IEEE Computer Architecture Letters, 10(1):16–19, 2011.
  48. Saarland Informatics Campus. Caches. https://uops.info/cache.html.
  49. Samsung Electronics. DDR4 SDRAM. Technical report, 2014.
  50. Clock Around the Clock: Time-Based Device Fingerprinting. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, CCS ’18, page 1502–1514, New York, NY, USA, 2018. Association for Computing Machinery.
  51. Intrinsic rowhammer PUFs: Leveraging the rowhammer effect for improved security. In 2017 IEEE International Symposium on Hardware Oriented Security and Trust (HOST). IEEE, may 2017.
  52. William Shockley. Problems related to p-n junctions in silicon. Solid-State Electronics, 2(1):35–67, 1961.
  53. Drammer: Deterministic rowhammer attacks on mobile platforms. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, CCS ’16, page 1675–1689, New York, NY, USA, 2016. Association for Computing Machinery.
  54. Fp-stalker: Tracking browser fingerprint evolutions. In 2018 IEEE Symposium on Security and Privacy (SP), pages 728–741, 2018.
  55. One bit flips, one cloud flops: Cross-VM row hammer attacks and privilege escalation. In 25th USENIX Security Symposium (USENIX Security 16), pages 19–35, Austin, TX, August 2016. USENIX Association.
User Edit Pencil Streamline Icon: https://streamlinehq.com
Authors (6)
  1. Hari Venugopalan (4 papers)
  2. Kaustav Goswami (4 papers)
  3. Zainul Abi Din (3 papers)
  4. Jason Lowe-Power (11 papers)
  5. Samuel T. King (6 papers)
  6. Zubair Shafiq (43 papers)
Citations (3)
View on Semantic Scholar

Summary

We haven't generated a summary for this paper yet.

Ai Sparkles Streamline Icon: https://streamlinehq.com Summarize Now
X Twitter Logo Streamline Icon: https://streamlinehq.com

Tweets