SHF: Small: Rethinking Computer Architecture for Secure and Resilient Systems

SHF：小型：重新思考安全和弹性系统的计算机架构

• 批准号: 0917134
• 负责人: Ruby Lee
• 金额: $ 40万
• 依托单位: Princeton University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2009
• 资助国家: 美国
• 起止时间: 2009-09-01 至 2013-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0917134&HistoricalAwards=false
• 关键词: SHF; Small; Rethinking; Computer; Architecture

Our society, economy and national security are critically dependent on computers and computing devices. With a few hops, commodity computers and mobile phones can be connected to secret or sensitive information or to critical infrastructures. However, mainstream commodity computers have not been designed with security in mind, for the last three or more decades. Rather, they have been designed to improve performance, energy efficiency, cost or size, with security added on as an after-thought. While some specialized secure computers have been built, up to now, one had to sacrifice performance (or cost and convenience) for security. In this research, the PI plans to explore what is feasible if we allow ourselves a clean-slate design, where security is a first-class goal, on par with performance and other goals. The investigation will rethink computer architecture from first principles to significantly improve both the security and the performance of future computers.The research has two thrusts: how to design computer architecture to enable more secure software and systems, and how to design computer hardware components that are themselves more trustworthy. The PI will develop a new threat-based design methodology for computer architecture, examining how to build security awareness into the design of each basic aspect of computing. New architectural foundations for secure processing, secure memories, secure caches, secure virtual memory translation, secure storage, and secure control flow will be developed. The research will focus on providing the cornerstones of security: Confidential and Integrity of critical information, and Availability, in the sense of resilient attestation and execution of security-critical tasks even when parts of the system may have been corrupted. The solutions will also consider hardware attacks, in addition to the software and network attacks considered by software security solutions and the current state-of-the-art hardware TPM (Trusted Platform Module) solution. The intellectual contributions of this research will be new architectural foundations, and a new dimension of "threat-based design" in the research and development of all future computers. The broader impact of this research is to provide core security technology that can be built into commodity computing devices and their servers. These can be used in computer, communications, control, entertainment and embedded systems to build significantly more secure systems that will provide a leap forward in information and cyber security, benefiting our society.

我们的社会、经济和国家安全严重依赖计算机和计算设备。 通过几次跳跃，商用计算机和移动的电话就可以连接到秘密或敏感信息或关键基础设施。 然而，在过去的三十多年里，主流商品计算机的设计并没有考虑到安全性。相反，它们的设计目的是提高性能、能源效率、成本或尺寸，并在事后考虑增加安全性。 虽然已经建立了一些专门的安全计算机，但到目前为止，人们不得不牺牲性能（或成本和便利性）来确保安全。在这项研究中，PI计划探索什么是可行的，如果我们允许自己一个干净的石板设计，其中安全性是一个一流的目标，与性能和其他目标。 这项研究将从第一原理重新思考计算机体系结构，以显著提高未来计算机的安全性和性能。研究有两个重点：如何设计计算机体系结构，以实现更安全的软件和系统，以及如何设计计算机硬件组件，使其本身更值得信赖。 PI将为计算机体系结构开发一种新的基于威胁的设计方法，研究如何将安全意识构建到计算的每个基本方面的设计中。 将开发用于安全处理、安全存储器、安全缓存、安全虚拟存储器转换、安全存储和安全控制流的新架构基础。 该研究将侧重于提供安全的基石：关键信息的机密性和完整性，以及可用性，即即使系统的某些部分可能已被损坏，也能弹性证明和执行安全关键任务。除了软件安全解决方案和当前最先进的硬件TPM（可信平台模块）解决方案所考虑的软件和网络攻击外，这些解决方案还将考虑硬件攻击。 这项研究的智力贡献将是新的架构基础，以及所有未来计算机研究和开发中的“基于威胁的设计”的新维度。这项研究的更广泛影响是提供可以内置到商品计算设备及其服务器中的核心安全技术。 这些可以用于计算机、通信、控制、娱乐和嵌入式系统，以构建更加安全的系统，从而在信息和网络安全方面实现飞跃，造福我们的社会。