Security Risks Due to Data Persistence in Cloud FPGA Platforms Article Swipe
Zhehang Zhang
,
Bharadwaj Madabhushi
,
Sandip Kundu
,
Russell Tessier
·
YOU?
·
· 2024
· Open Access
·
· DOI: https://doi.org/10.48550/arxiv.2408.10374
YOU?
·
· 2024
· Open Access
·
· DOI: https://doi.org/10.48550/arxiv.2408.10374
The integration of Field Programmable Gate Arrays (FPGAs) into cloud computing systems has become commonplace. As the operating systems used to manage these systems evolve, special consideration must be given to DRAM devices accessible by FPGAs. These devices may hold sensitive data that can become inadvertently exposed to adversaries following user logout. Although addressed in some cloud FPGA environments, automatic DRAM clearing after process termination is not automatically included in popular FPGA runtime environments nor in most proposed cloud FPGA hypervisors. In this paper, we examine DRAM data persistence in AMD/Xilinx Alveo U280 nodes that are part of the Open Cloud Testbed (OCT). Our results indicate that DDR4 DRAM is not automatically cleared following user logout from an allocated node and subsequent node users can easily obtain recognizable data from the DRAM following node reallocation over 17 minutes later. This issue is particularly relevant for systems which support FPGA multi-tenancy.
Related Topics
Concepts
Metadata
- Type
- preprint
- Language
- en
- Landing Page
- http://arxiv.org/abs/2408.10374
- https://arxiv.org/pdf/2408.10374
- OA Status
- green
- Related Works
- 10
- OpenAlex ID
- https://openalex.org/W4403006831
All OpenAlex metadata
Raw OpenAlex JSON
- OpenAlex ID
-
https://openalex.org/W4403006831Canonical identifier for this work in OpenAlex
- DOI
-
https://doi.org/10.48550/arxiv.2408.10374Digital Object Identifier
- Title
-
Security Risks Due to Data Persistence in Cloud FPGA PlatformsWork title
- Type
-
preprintOpenAlex work type
- Language
-
enPrimary language
- Publication year
-
2024Year of publication
- Publication date
-
2024-08-19Full publication date if available
- Authors
-
Zhehang Zhang, Bharadwaj Madabhushi, Sandip Kundu, Russell TessierList of authors in order
- Landing page
-
https://arxiv.org/abs/2408.10374Publisher landing page
- PDF URL
-
https://arxiv.org/pdf/2408.10374Direct link to full text PDF
- Open access
-
YesWhether a free full text is available
- OA status
-
greenOpen access status per OpenAlex
- OA URL
-
https://arxiv.org/pdf/2408.10374Direct OA link when available
- Concepts
-
Persistence (discontinuity), Cloud computing, Computer science, Field-programmable gate array, Computer security, Embedded system, Operating system, Engineering, Geotechnical engineeringTop concepts (fields/topics) attached by OpenAlex
- Cited by
-
0Total citation count in OpenAlex
- Related works (count)
-
10Other works algorithmically related by OpenAlex
Full payload
| id | https://openalex.org/W4403006831 |
|---|---|
| doi | https://doi.org/10.48550/arxiv.2408.10374 |
| ids.doi | https://doi.org/10.48550/arxiv.2408.10374 |
| ids.openalex | https://openalex.org/W4403006831 |
| fwci | |
| type | preprint |
| title | Security Risks Due to Data Persistence in Cloud FPGA Platforms |
| biblio.issue | |
| biblio.volume | |
| biblio.last_page | |
| biblio.first_page | |
| topics[0].id | https://openalex.org/T12122 |
| topics[0].field.id | https://openalex.org/fields/17 |
| topics[0].field.display_name | Computer Science |
| topics[0].score | 0.994700014591217 |
| topics[0].domain.id | https://openalex.org/domains/3 |
| topics[0].domain.display_name | Physical Sciences |
| topics[0].subfield.id | https://openalex.org/subfields/1708 |
| topics[0].subfield.display_name | Hardware and Architecture |
| topics[0].display_name | Physical Unclonable Functions (PUFs) and Hardware Security |
| topics[1].id | https://openalex.org/T11614 |
| topics[1].field.id | https://openalex.org/fields/17 |
| topics[1].field.display_name | Computer Science |
| topics[1].score | 0.9768999814987183 |
| topics[1].domain.id | https://openalex.org/domains/3 |
| topics[1].domain.display_name | Physical Sciences |
| topics[1].subfield.id | https://openalex.org/subfields/1710 |
| topics[1].subfield.display_name | Information Systems |
| topics[1].display_name | Cloud Data Security Solutions |
| topics[2].id | https://openalex.org/T11005 |
| topics[2].field.id | https://openalex.org/fields/22 |
| topics[2].field.display_name | Engineering |
| topics[2].score | 0.9627000093460083 |
| topics[2].domain.id | https://openalex.org/domains/3 |
| topics[2].domain.display_name | Physical Sciences |
| topics[2].subfield.id | https://openalex.org/subfields/2208 |
| topics[2].subfield.display_name | Electrical and Electronic Engineering |
| topics[2].display_name | Radiation Effects in Electronics |
| is_xpac | False |
| apc_list | |
| apc_paid | |
| concepts[0].id | https://openalex.org/C2781009140 |
| concepts[0].level | 2 |
| concepts[0].score | 0.8300529718399048 |
| concepts[0].wikidata | https://www.wikidata.org/wiki/Q7170389 |
| concepts[0].display_name | Persistence (discontinuity) |
| concepts[1].id | https://openalex.org/C79974875 |
| concepts[1].level | 2 |
| concepts[1].score | 0.7167782783508301 |
| concepts[1].wikidata | https://www.wikidata.org/wiki/Q483639 |
| concepts[1].display_name | Cloud computing |
| concepts[2].id | https://openalex.org/C41008148 |
| concepts[2].level | 0 |
| concepts[2].score | 0.6189311146736145 |
| concepts[2].wikidata | https://www.wikidata.org/wiki/Q21198 |
| concepts[2].display_name | Computer science |
| concepts[3].id | https://openalex.org/C42935608 |
| concepts[3].level | 2 |
| concepts[3].score | 0.5590100288391113 |
| concepts[3].wikidata | https://www.wikidata.org/wiki/Q190411 |
| concepts[3].display_name | Field-programmable gate array |
| concepts[4].id | https://openalex.org/C38652104 |
| concepts[4].level | 1 |
| concepts[4].score | 0.48752185702323914 |
| concepts[4].wikidata | https://www.wikidata.org/wiki/Q3510521 |
| concepts[4].display_name | Computer security |
| concepts[5].id | https://openalex.org/C149635348 |
| concepts[5].level | 1 |
| concepts[5].score | 0.21200042963027954 |
| concepts[5].wikidata | https://www.wikidata.org/wiki/Q193040 |
| concepts[5].display_name | Embedded system |
| concepts[6].id | https://openalex.org/C111919701 |
| concepts[6].level | 1 |
| concepts[6].score | 0.17800644040107727 |
| concepts[6].wikidata | https://www.wikidata.org/wiki/Q9135 |
| concepts[6].display_name | Operating system |
| concepts[7].id | https://openalex.org/C127413603 |
| concepts[7].level | 0 |
| concepts[7].score | 0.09620484709739685 |
| concepts[7].wikidata | https://www.wikidata.org/wiki/Q11023 |
| concepts[7].display_name | Engineering |
| concepts[8].id | https://openalex.org/C187320778 |
| concepts[8].level | 1 |
| concepts[8].score | 0.0 |
| concepts[8].wikidata | https://www.wikidata.org/wiki/Q1349130 |
| concepts[8].display_name | Geotechnical engineering |
| keywords[0].id | https://openalex.org/keywords/persistence |
| keywords[0].score | 0.8300529718399048 |
| keywords[0].display_name | Persistence (discontinuity) |
| keywords[1].id | https://openalex.org/keywords/cloud-computing |
| keywords[1].score | 0.7167782783508301 |
| keywords[1].display_name | Cloud computing |
| keywords[2].id | https://openalex.org/keywords/computer-science |
| keywords[2].score | 0.6189311146736145 |
| keywords[2].display_name | Computer science |
| keywords[3].id | https://openalex.org/keywords/field-programmable-gate-array |
| keywords[3].score | 0.5590100288391113 |
| keywords[3].display_name | Field-programmable gate array |
| keywords[4].id | https://openalex.org/keywords/computer-security |
| keywords[4].score | 0.48752185702323914 |
| keywords[4].display_name | Computer security |
| keywords[5].id | https://openalex.org/keywords/embedded-system |
| keywords[5].score | 0.21200042963027954 |
| keywords[5].display_name | Embedded system |
| keywords[6].id | https://openalex.org/keywords/operating-system |
| keywords[6].score | 0.17800644040107727 |
| keywords[6].display_name | Operating system |
| keywords[7].id | https://openalex.org/keywords/engineering |
| keywords[7].score | 0.09620484709739685 |
| keywords[7].display_name | Engineering |
| language | en |
| locations[0].id | pmh:oai:arXiv.org:2408.10374 |
| locations[0].is_oa | True |
| locations[0].source.id | https://openalex.org/S4306400194 |
| locations[0].source.issn | |
| locations[0].source.type | repository |
| locations[0].source.is_oa | True |
| locations[0].source.issn_l | |
| locations[0].source.is_core | False |
| locations[0].source.is_in_doaj | False |
| locations[0].source.display_name | arXiv (Cornell University) |
| locations[0].source.host_organization | https://openalex.org/I205783295 |
| locations[0].source.host_organization_name | Cornell University |
| locations[0].source.host_organization_lineage | https://openalex.org/I205783295 |
| locations[0].license | public-domain |
| locations[0].pdf_url | https://arxiv.org/pdf/2408.10374 |
| locations[0].version | submittedVersion |
| locations[0].raw_type | |
| locations[0].license_id | https://openalex.org/licenses/public-domain |
| locations[0].is_accepted | False |
| locations[0].is_published | False |
| locations[0].raw_source_name | |
| locations[0].landing_page_url | http://arxiv.org/abs/2408.10374 |
| locations[1].id | doi:10.48550/arxiv.2408.10374 |
| locations[1].is_oa | True |
| locations[1].source.id | https://openalex.org/S4306400194 |
| locations[1].source.issn | |
| locations[1].source.type | repository |
| locations[1].source.is_oa | True |
| locations[1].source.issn_l | |
| locations[1].source.is_core | False |
| locations[1].source.is_in_doaj | False |
| locations[1].source.display_name | arXiv (Cornell University) |
| locations[1].source.host_organization | https://openalex.org/I205783295 |
| locations[1].source.host_organization_name | Cornell University |
| locations[1].source.host_organization_lineage | https://openalex.org/I205783295 |
| locations[1].license | public-domain |
| locations[1].pdf_url | |
| locations[1].version | |
| locations[1].raw_type | article |
| locations[1].license_id | https://openalex.org/licenses/public-domain |
| locations[1].is_accepted | False |
| locations[1].is_published | |
| locations[1].raw_source_name | |
| locations[1].landing_page_url | https://doi.org/10.48550/arxiv.2408.10374 |
| indexed_in | arxiv, datacite |
| authorships[0].author.id | https://openalex.org/A5111348174 |
| authorships[0].author.orcid | |
| authorships[0].author.display_name | Zhehang Zhang |
| authorships[0].author_position | first |
| authorships[0].raw_author_name | Zhang, Zhehang |
| authorships[0].is_corresponding | False |
| authorships[1].author.id | https://openalex.org/A5098838401 |
| authorships[1].author.orcid | |
| authorships[1].author.display_name | Bharadwaj Madabhushi |
| authorships[1].author_position | middle |
| authorships[1].raw_author_name | Madabhushi, Bharadwaj |
| authorships[1].is_corresponding | False |
| authorships[2].author.id | https://openalex.org/A5054064879 |
| authorships[2].author.orcid | https://orcid.org/0000-0001-8221-3824 |
| authorships[2].author.display_name | Sandip Kundu |
| authorships[2].author_position | middle |
| authorships[2].raw_author_name | Kundu, Sandip |
| authorships[2].is_corresponding | False |
| authorships[3].author.id | https://openalex.org/A5012168703 |
| authorships[3].author.orcid | https://orcid.org/0000-0003-0591-7566 |
| authorships[3].author.display_name | Russell Tessier |
| authorships[3].author_position | last |
| authorships[3].raw_author_name | Tessier, Russell |
| authorships[3].is_corresponding | False |
| has_content.pdf | True |
| has_content.grobid_xml | True |
| is_paratext | False |
| open_access.is_oa | True |
| open_access.oa_url | https://arxiv.org/pdf/2408.10374 |
| open_access.oa_status | green |
| open_access.any_repository_has_fulltext | False |
| created_date | 2025-10-10T00:00:00 |
| display_name | Security Risks Due to Data Persistence in Cloud FPGA Platforms |
| has_fulltext | True |
| is_retracted | False |
| updated_date | 2025-11-06T06:51:31.235846 |
| primary_topic.id | https://openalex.org/T12122 |
| primary_topic.field.id | https://openalex.org/fields/17 |
| primary_topic.field.display_name | Computer Science |
| primary_topic.score | 0.994700014591217 |
| primary_topic.domain.id | https://openalex.org/domains/3 |
| primary_topic.domain.display_name | Physical Sciences |
| primary_topic.subfield.id | https://openalex.org/subfields/1708 |
| primary_topic.subfield.display_name | Hardware and Architecture |
| primary_topic.display_name | Physical Unclonable Functions (PUFs) and Hardware Security |
| related_works | https://openalex.org/W4391375266, https://openalex.org/W2748952813, https://openalex.org/W1995895161, https://openalex.org/W2352063914, https://openalex.org/W2047377442, https://openalex.org/W4244478748, https://openalex.org/W2017131795, https://openalex.org/W3205546307, https://openalex.org/W2883299638, https://openalex.org/W4387835727 |
| cited_by_count | 0 |
| locations_count | 2 |
| best_oa_location.id | pmh:oai:arXiv.org:2408.10374 |
| best_oa_location.is_oa | True |
| best_oa_location.source.id | https://openalex.org/S4306400194 |
| best_oa_location.source.issn | |
| best_oa_location.source.type | repository |
| best_oa_location.source.is_oa | True |
| best_oa_location.source.issn_l | |
| best_oa_location.source.is_core | False |
| best_oa_location.source.is_in_doaj | False |
| best_oa_location.source.display_name | arXiv (Cornell University) |
| best_oa_location.source.host_organization | https://openalex.org/I205783295 |
| best_oa_location.source.host_organization_name | Cornell University |
| best_oa_location.source.host_organization_lineage | https://openalex.org/I205783295 |
| best_oa_location.license | public-domain |
| best_oa_location.pdf_url | https://arxiv.org/pdf/2408.10374 |
| best_oa_location.version | submittedVersion |
| best_oa_location.raw_type | |
| best_oa_location.license_id | https://openalex.org/licenses/public-domain |
| best_oa_location.is_accepted | False |
| best_oa_location.is_published | False |
| best_oa_location.raw_source_name | |
| best_oa_location.landing_page_url | http://arxiv.org/abs/2408.10374 |
| primary_location.id | pmh:oai:arXiv.org:2408.10374 |
| primary_location.is_oa | True |
| primary_location.source.id | https://openalex.org/S4306400194 |
| primary_location.source.issn | |
| primary_location.source.type | repository |
| primary_location.source.is_oa | True |
| primary_location.source.issn_l | |
| primary_location.source.is_core | False |
| primary_location.source.is_in_doaj | False |
| primary_location.source.display_name | arXiv (Cornell University) |
| primary_location.source.host_organization | https://openalex.org/I205783295 |
| primary_location.source.host_organization_name | Cornell University |
| primary_location.source.host_organization_lineage | https://openalex.org/I205783295 |
| primary_location.license | public-domain |
| primary_location.pdf_url | https://arxiv.org/pdf/2408.10374 |
| primary_location.version | submittedVersion |
| primary_location.raw_type | |
| primary_location.license_id | https://openalex.org/licenses/public-domain |
| primary_location.is_accepted | False |
| primary_location.is_published | False |
| primary_location.raw_source_name | |
| primary_location.landing_page_url | http://arxiv.org/abs/2408.10374 |
| publication_date | 2024-08-19 |
| publication_year | 2024 |
| referenced_works_count | 0 |
| abstract_inverted_index.17 | 136 |
| abstract_inverted_index.As | 15 |
| abstract_inverted_index.In | 81 |
| abstract_inverted_index.an | 117 |
| abstract_inverted_index.be | 28 |
| abstract_inverted_index.by | 34 |
| abstract_inverted_index.in | 54, 69, 75, 89 |
| abstract_inverted_index.is | 65, 109, 141 |
| abstract_inverted_index.of | 2, 97 |
| abstract_inverted_index.to | 20, 30, 47 |
| abstract_inverted_index.we | 84 |
| abstract_inverted_index.Our | 103 |
| abstract_inverted_index.The | 0 |
| abstract_inverted_index.and | 120 |
| abstract_inverted_index.are | 95 |
| abstract_inverted_index.can | 43, 124 |
| abstract_inverted_index.for | 144 |
| abstract_inverted_index.has | 12 |
| abstract_inverted_index.may | 38 |
| abstract_inverted_index.nor | 74 |
| abstract_inverted_index.not | 66, 110 |
| abstract_inverted_index.the | 16, 98, 130 |
| abstract_inverted_index.DDR4 | 107 |
| abstract_inverted_index.DRAM | 31, 60, 86, 108, 131 |
| abstract_inverted_index.FPGA | 57, 71, 79, 148 |
| abstract_inverted_index.Gate | 5 |
| abstract_inverted_index.Open | 99 |
| abstract_inverted_index.This | 139 |
| abstract_inverted_index.U280 | 92 |
| abstract_inverted_index.data | 41, 87, 128 |
| abstract_inverted_index.from | 116, 129 |
| abstract_inverted_index.hold | 39 |
| abstract_inverted_index.into | 8 |
| abstract_inverted_index.most | 76 |
| abstract_inverted_index.must | 27 |
| abstract_inverted_index.node | 119, 122, 133 |
| abstract_inverted_index.over | 135 |
| abstract_inverted_index.part | 96 |
| abstract_inverted_index.some | 55 |
| abstract_inverted_index.that | 42, 94, 106 |
| abstract_inverted_index.this | 82 |
| abstract_inverted_index.used | 19 |
| abstract_inverted_index.user | 50, 114 |
| abstract_inverted_index.Alveo | 91 |
| abstract_inverted_index.Cloud | 100 |
| abstract_inverted_index.Field | 3 |
| abstract_inverted_index.These | 36 |
| abstract_inverted_index.after | 62 |
| abstract_inverted_index.cloud | 9, 56, 78 |
| abstract_inverted_index.given | 29 |
| abstract_inverted_index.issue | 140 |
| abstract_inverted_index.nodes | 93 |
| abstract_inverted_index.these | 22 |
| abstract_inverted_index.users | 123 |
| abstract_inverted_index.which | 146 |
| abstract_inverted_index.(OCT). | 102 |
| abstract_inverted_index.Arrays | 6 |
| abstract_inverted_index.FPGAs. | 35 |
| abstract_inverted_index.become | 13, 44 |
| abstract_inverted_index.easily | 125 |
| abstract_inverted_index.later. | 138 |
| abstract_inverted_index.logout | 115 |
| abstract_inverted_index.manage | 21 |
| abstract_inverted_index.obtain | 126 |
| abstract_inverted_index.paper, | 83 |
| abstract_inverted_index.(FPGAs) | 7 |
| abstract_inverted_index.Testbed | 101 |
| abstract_inverted_index.cleared | 112 |
| abstract_inverted_index.devices | 32, 37 |
| abstract_inverted_index.evolve, | 24 |
| abstract_inverted_index.examine | 85 |
| abstract_inverted_index.exposed | 46 |
| abstract_inverted_index.logout. | 51 |
| abstract_inverted_index.minutes | 137 |
| abstract_inverted_index.popular | 70 |
| abstract_inverted_index.process | 63 |
| abstract_inverted_index.results | 104 |
| abstract_inverted_index.runtime | 72 |
| abstract_inverted_index.special | 25 |
| abstract_inverted_index.support | 147 |
| abstract_inverted_index.systems | 11, 18, 23, 145 |
| abstract_inverted_index.Although | 52 |
| abstract_inverted_index.clearing | 61 |
| abstract_inverted_index.included | 68 |
| abstract_inverted_index.indicate | 105 |
| abstract_inverted_index.proposed | 77 |
| abstract_inverted_index.relevant | 143 |
| abstract_inverted_index.addressed | 53 |
| abstract_inverted_index.allocated | 118 |
| abstract_inverted_index.automatic | 59 |
| abstract_inverted_index.computing | 10 |
| abstract_inverted_index.following | 49, 113, 132 |
| abstract_inverted_index.operating | 17 |
| abstract_inverted_index.sensitive | 40 |
| abstract_inverted_index.AMD/Xilinx | 90 |
| abstract_inverted_index.accessible | 33 |
| abstract_inverted_index.subsequent | 121 |
| abstract_inverted_index.adversaries | 48 |
| abstract_inverted_index.integration | 1 |
| abstract_inverted_index.persistence | 88 |
| abstract_inverted_index.termination | 64 |
| abstract_inverted_index.Programmable | 4 |
| abstract_inverted_index.commonplace. | 14 |
| abstract_inverted_index.environments | 73 |
| abstract_inverted_index.hypervisors. | 80 |
| abstract_inverted_index.particularly | 142 |
| abstract_inverted_index.reallocation | 134 |
| abstract_inverted_index.recognizable | 127 |
| abstract_inverted_index.automatically | 67, 111 |
| abstract_inverted_index.consideration | 26 |
| abstract_inverted_index.environments, | 58 |
| abstract_inverted_index.inadvertently | 45 |
| abstract_inverted_index.multi-tenancy. | 149 |
| cited_by_percentile_year | |
| countries_distinct_count | 0 |
| institutions_distinct_count | 4 |
| citation_normalized_percentile |