Abstract
In recent years, Graphical Processing Unit (GPU) is not only becoming a piece of hardware that accelerates graphics but also playing a key role in accelerating the fields of machine learning and artificial intelligence. The GPU’s heightened importance has led to increasing concern about the confidentiality of a GPU’s computing data as well as its internal communications. Although the GPU Trusted Execution Environment (TEE) has been implemented as a solution toward this issue, side-channel attacks in GPUs still remain as an open problem. In this work, we introduce Delay-masquerading Technique Upheld StrongBox (DTUBox) to strengthen the resilience of existing GPU TEE over StrongBox against side-channel attacks by injecting obfuscated noise with our developed algorithm, making the correlations difficult to reference between a task and workload. In our evaluation, we demonstrate that with only around 5% performance overhead, our approach could effectively lower the correlation rate to 38% between the original behavior sequences and the obfuscated sequences.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 2023 IEEE 29th International Conference on Parallel and Distributed Systems (ICPADS) |
| Publisher | IEEE |
| Publication date | 2024 |
| Pages | 2135-2142 |
| ISBN (Print) | 979-8-3503-0813-6 |
| ISBN (Electronic) | 979-8-3503-3071-7 |
| DOIs | |
| Publication status | Published - 2024 |
| Event | 2023 IEEE 29th International Conference on Parallel and Distributed Systems - Ocean Flower Island, China Duration: 17 Dec 2023 → 21 Dec 2023 |
Conference
| Conference | 2023 IEEE 29th International Conference on Parallel and Distributed Systems |
|---|---|
| Country/Territory | China |
| City | Ocean Flower Island |
| Period | 17/12/2023 → 21/12/2023 |
Keywords
- Side-channel attack
- Behavior obfuscation
- AI security
- GPU
- TEE
- StrongBox