from 1st March to 31st May

SPARTA Publications

All accepted publications from SPARTA partners under its funding.

Foreshadow-VMM: Feasibility and Network Perspective

Marco Spaziani Brunella, Giuseppe Bianchi, Sara Turcoy, Francesco Quagliay, Nicola Blefari-Melazzi


On August 14, 2018, a new set of vulnerabilities collectively named “L1 terminal fault” were announced. Systems with microprocessors utilizing out-of-order execution could allow unauthorized disclosure of information residing in the L1 data cache, by tweaking the virtual memory abstraction. The vulnerability was therein mentioned for three different scenarios. In this demo-paper, we provide practical evidence about the feasibility of the most complex “VMM” case of an attacker residing in a Virtual Machine (VM), and targeting information leakage from the host OS and other independent VMs.

Full publication