CROSSLINE: Breaking "Security-by-Crash" based Memory Isolation in AMD SEV. (arXiv:2008.00146v2 [cs.CR] UPDATED)

AMD's Secure Encrypted Virtualization (SEV) is an emerging security feature
on AMD processors that allows virtual machines to run on encrypted memory and
perform confidential computing even with an untrusted hypervisor. This paper
first demystifies SEV's improper use of address space identifier (ASID) for
controlling accesses of a VM to encrypted memory pages, cache lines, and TLB
entries. We then present the CROSSLINE attacks, a novel class of attacks
against SEV that allow the adversary to launch an attacker VM …

amd amd sev crash isolation memory security