{"guid":"fb9f05b1-9d4f-4a7c-8947-aa8266494afc","title":"Rowhammer exploit","subtitle":"Viability of the Rowhammer Attack when ECC memory is used","slug":"cosin-50-rowhammer_exploit","link":"https://www.cosin.ch/fahrplan/2019/events/50.html","description":"In this talk I will describe how a Rowhammer attack works both on a physical and software level. The focus of the talk will be to show\n        what steps need to be taken in order to make the Rowhammer attack viable against a target using ECC memory.\n\nIn the first part of the presentation I will be showing how DRAM works and what the key attributes are that make a Rowhammer attack possible. I will also give an introduction as to what ECC memory is and how it works and where it is used.\n\n        In the second part of the presentation I will be presenting on how a generic rowhammer attack can be executed.\n\n        In the third part of the part which will be the main focus of this presentation I will discuss what problems we encounter when ECC memory is used on the target machine.\n        This will include:\n        * How to reverse engineer the ECC function\n        -\u003e The cold boot attack used to speed up this process\n        * How to detect bit flips that are corrected\n        * How to trigger bit flips in a specific location.\n\n        In the last part of the presentation I will give an overview of the mitigations that exist and which ones are still deemed viable","original_language":"deu","persons":["Candyman"],"tags":["cosin2019","50","Hardware"],"view_count":163,"promoted":false,"date":"2019-06-16T00:00:00.000+02:00","release_date":"2019-06-25T02:00:00.000+02:00","updated_at":"2026-01-07T00:15:17.680+01:00","length":2284,"duration":2284,"thumb_url":"https://static.media.ccc.de/media/events/cosin/2019/50-hd.jpg","poster_url":"https://static.media.ccc.de/media/events/cosin/2019/50-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/cosin/2019/50-hd.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/cosin/2019/50-hd.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/cosin-50-rowhammer_exploit","url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_title":"Cosin 2019","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019","related":[{"event_id":7220,"event_guid":"35cbed60-bbed-4ff9-8819-a77055eba262","weight":6},{"event_id":7222,"event_guid":"2cdf16f6-51db-4f8b-9982-210d49851d4e","weight":5},{"event_id":7223,"event_guid":"1a1de145-1e96-4705-9c4c-cfbd896af3d5","weight":7},{"event_id":7224,"event_guid":"d9192322-3008-4e87-a0c1-d6f7476f6106","weight":1},{"event_id":7225,"event_guid":"b2fd4460-5a2e-4d53-a846-b161a244aea3","weight":1},{"event_id":7226,"event_guid":"f7df52c8-b762-489e-accd-c65d63fe88df","weight":6},{"event_id":7227,"event_guid":"49b011e2-1dcf-42a5-a14b-48f80d46d277","weight":1},{"event_id":7228,"event_guid":"9e23846f-10b7-45c7-81c3-f190692ea60e","weight":1},{"event_id":7229,"event_guid":"6fd0a54b-3c2f-4ef7-ae4b-44e06a09bbf1","weight":2},{"event_id":7230,"event_guid":"2a284ec6-b4ca-41f3-b027-37fb0e3d9efb","weight":5},{"event_id":7231,"event_guid":"6e585f42-52f3-4015-8a7a-f2e204f7afe8","weight":8},{"event_id":7232,"event_guid":"526bc948-ab22-47e4-85df-36077b1b9d62","weight":5},{"event_id":7233,"event_guid":"ffaadd96-8dde-4c1d-bdcd-466774acc85c","weight":2},{"event_id":7234,"event_guid":"8996a0a1-1829-4eef-a534-c67dc52a3707","weight":2}],"recordings":[{"size":285,"length":2284,"mime_type":"video/mp4","language":"deu","filename":"cosin2019-50-deu-Rowhammer_exploit_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2019-06-25T16:54:52.910+02:00","recording_url":"https://cdn.media.ccc.de/events/cosin/2019/h264-hd/cosin2019-50-deu-Rowhammer_exploit_hd.mp4","url":"https://api.media.ccc.de/public/recordings/36300","event_url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019"},{"size":113,"length":2284,"mime_type":"video/webm","language":"deu","filename":"cosin2019-50-deu-Rowhammer_exploit_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2019-06-25T23:06:08.442+02:00","recording_url":"https://cdn.media.ccc.de/events/cosin/2019/webm-sd/cosin2019-50-deu-Rowhammer_exploit_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/36355","event_url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019"},{"size":93,"length":2284,"mime_type":"video/mp4","language":"deu","filename":"cosin2019-50-deu-Rowhammer_exploit_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2019-06-25T23:06:13.739+02:00","recording_url":"https://cdn.media.ccc.de/events/cosin/2019/h264-sd/cosin2019-50-deu-Rowhammer_exploit_sd.mp4","url":"https://api.media.ccc.de/public/recordings/36356","event_url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019"},{"size":347,"length":2284,"mime_type":"video/webm","language":"deu","filename":"cosin2019-50-deu-Rowhammer_exploit_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2019-06-25T23:06:28.082+02:00","recording_url":"https://cdn.media.ccc.de/events/cosin/2019/webm-hd/cosin2019-50-deu-Rowhammer_exploit_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/36357","event_url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019"},{"size":21,"length":2279,"mime_type":"audio/opus","language":"deu","filename":"cosin2019-50-deu-Rowhammer_exploit_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2019-06-25T23:09:48.235+02:00","recording_url":"https://cdn.media.ccc.de/events/cosin/2019/opus/cosin2019-50-deu-Rowhammer_exploit_opus.opus","url":"https://api.media.ccc.de/public/recordings/36390","event_url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019"},{"size":34,"length":2279,"mime_type":"audio/mpeg","language":"deu","filename":"cosin2019-50-deu-Rowhammer_exploit_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2019-06-25T23:09:43.877+02:00","recording_url":"https://cdn.media.ccc.de/events/cosin/2019/mp3/cosin2019-50-deu-Rowhammer_exploit_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/36389","event_url":"https://api.media.ccc.de/public/events/fb9f05b1-9d4f-4a7c-8947-aa8266494afc","conference_url":"https://api.media.ccc.de/public/conferences/cosin2019"}]}