Hubbry Logo
DMA attackDMA attackMain
Open search
DMA attack
Community hub
DMA attack
logo
7 pages, 0 posts
0 subscribers
Be the first to start a discussion here.
Be the first to start a discussion here.
DMA attack
DMA attack
DMA attack
View on Wikipedia
from Wikipedia

A DMA attack is a type of side channel attack in computer security, in which an attacker can penetrate a computer or other device, by exploiting the presence of high-speed expansion ports that permit direct memory access (DMA).

DMA is included in a number of connections, because it allows a connected device (such as a camcorder, network card, storage device or other useful accessory or internal PC card) to transfer data between itself and the computer at the maximum speed possible, by using direct hardware access to read or write directly to main memory without any operating system supervision or interaction. The legitimate uses of such devices have led to wide adoption of DMA accessories and connections, but an attacker can equally use the same facility to create an accessory that will connect using the same port, and can then potentially gain direct access to part or all of the physical memory address space of the computer, bypassing all OS security mechanisms and any lock screen, to read all that the computer is doing, steal data or cryptographic keys, install or run spyware and other exploits, or modify the system to allow backdoors or other malware.

Preventing physical connections to such ports will prevent DMA attacks. On many computers, the connections implementing DMA can also be disabled within the BIOS or UEFI if unused, which depending on the device can nullify or reduce the potential for this type of exploit.

Examples of connections that may allow DMA in some exploitable form include FireWire, CardBus, ExpressCard, Thunderbolt, USB 4.0, PCI, PCI-X, and PCI Express.

Description

[edit]

In modern operating systems, non-system (i.e. user-mode) applications are prevented from accessing any memory locations not explicitly authorized by the virtual memory controller (called memory management unit (MMU)). In addition to containing damage that may be caused by software flaws and allowing more efficient use of physical memory, this architecture forms an integral part of the security of the operating system. However, kernel-mode drivers, many hardware devices, and user-mode vulnerabilities allow direct, unimpeded access of the physical memory address space. The physical address space includes all of the main system memory, as well as memory-mapped buses and hardware devices (which are controlled by the operating system through reads and writes as if they were ordinary RAM).

The OHCI 1394 specification allows devices, for performance reasons, to bypass the operating system and access physical memory directly without any security restrictions.[1][2] But SBP2 devices can easily be spoofed, making it possible to trick an operating system into allowing an attacker to both read and write physical memory, and thereby to gain unauthorised access to sensitive cryptographic material in memory.[3]

Systems may still be vulnerable to a DMA attack by an external device if they have a FireWire, ExpressCard, Thunderbolt or other expansion port that, like PCI and PCI Express in general, connects attached devices directly to the physical rather than virtual memory address space. Therefore, systems that do not have a FireWire port may still be vulnerable if they have a PCMCIA/CardBus/PC Card or ExpressCard port that would allow an expansion card with a FireWire to be installed.

Uses

[edit]

An attacker could, for example, use a social engineering attack and send a "lucky winner" a rogue Thunderbolt device. Upon connecting to a computer, the device, through its direct and unimpeded access to the physical address space, would be able to bypass almost all security measures of the OS and have the ability to read encryption keys, install malware, or control other system devices. The attack can also easily be executed where the attacker has physical access to the target computer.

In addition to the abovementioned nefarious uses, there are some beneficial uses too as the DMA features can be used for kernel debugging purposes.[4]

Online video game cheaters use specialized DMA cards to access a game's memory, providing features such as seeing through walls. This method uses a second computer to analyze the memory dump without requiring any software modification on the computer that a game is running on, making it much harder to detect than conventional cheats. A cheater may use a FPGA card with malicious firmware to do DMA cheating. Delta Force is notorious for its tug-of-war between cheaters and Anti-Cheat Expert developers.[5]

There is a tool called Inception for DMA attack, only requiring a machine with an expansion port susceptible to this attack.[6] Another application known to exploit this vulnerability to gain unauthorized access to running Windows, Mac OS and Linux computers is the spyware FinFireWire.

Mitigations

[edit]

DMA attacks can be prevented by physical security against potentially malicious devices.

Kernel-mode drivers have many powers to compromise the security of a system, and care must be taken to load trusted, bug-free drivers. For example, recent 64-bit versions of Microsoft Windows require drivers to be tested and digitally signed by Microsoft, and prevent any non-signed drivers from being installed.

An IOMMU is a technology that applies the concept of virtual memory to such system busses, and can be used to close this security vulnerability (as well as increase system stability).[7] Intel brands its IOMMU as VT-d. AMD brands its IOMMU as AMD-Vi. Linux and Windows 10 supports these IOMMUs[8][9][10] and can use them to block I/O transactions that have not been allowed. As of 2012, Apple MacOS also supports using IOMMUs to thwart DMA attacks.[11][12]

Newer operating systems may take steps to prevent DMA attacks. Recent Linux kernels include the option to disable DMA by FireWire devices while allowing other functions.[13] Windows 8.1 can prevent access to DMA ports of an unattended machine if the console is locked.[14] But as of 2019, the major OS vendors had not taken into account the variety of ways that a malicious device could take advantage of complex interactions between multiple emulated peripherals, exposing subtle bugs and vulnerabilities.[15]

Never allowing sensitive data to be stored in RAM unencrypted is another mitigation venue against DMA attacks. However, protection against reading the RAM's content is not enough, as writing to RAM via DMA may compromise seemingly secure storage outside of RAM by code injection. An example of the latter kind of attack is TRESOR-HUNT, which exposes cryptographic keys that are never stored in RAM (but only in certain CPU registers); TRESOR-HUNT achieves this by overwriting parts of the operating system.[16]

Microsoft recommends changes to the default Windows configuration to prevent this if it is a concern.[17]

See also

[edit]

References

[edit]
[edit]
Revisions and contributorsEdit on WikipediaRead on Wikipedia

DMA attack

View on Grokipedia
from Grokipedia
A DMA attack, or Direct Memory Access attack, is a hardware-based cybersecurity exploit that enables an attacker to directly read from or write to a computer's system using an external peripheral device connected via high-speed interfaces such as , FireWire, or PCIe, thereby bypassing the CPU and operating system protections. This vulnerability stems from the inherent design of DMA technology, which allows peripherals to transfer data to and from independently of the processor for . By exploiting this, attackers can extract sensitive information like keys, inject , or achieve kernel-level control without triggering software-based defenses. DMA attacks have roots in the early evolution of personal computing, with the capability existing since the original PC era due to the lack of isolation for peripherals. They gained widespread recognition in 2009 when researchers demonstrated how off-the-shelf hardware could compromise full-disk encryption systems, including Microsoft's , by accessing contents during boot or runtime using FireWire DMA. Subsequent demonstrations, such as FireWire-based attacks on Mac OS X's 2 encryption using simple scripts, highlighted the ease of execution in physical access scenarios. By the , advancements in interfaces like amplified the threat, enabling "drive-by" attacks where a malicious device could be plugged in briefly to exfiltrate or implant persistent threats. In technical terms, these attacks typically involve specialized hardware like field-programmable gate arrays (FPGAs) acting as a man-in-the-middle to intercept or manipulate via DMA channels. Tools such as PCILeech facilitate rapid dumping or over PCIe-based connections, often completing in minutes without user interaction. Real-world examples include 2021 demonstrations of bypassing biometric locks on laptops through ports and Black Hat research revealing DMA-enabled code execution via chip vulnerabilities. The dangers extend to enterprise environments, where attackers could evade hardware root-of-trust mechanisms like Secure Boot or Boot Guard, leading to data theft, denial-of-service, or supply chain compromises in and embedded systems. Mitigations have evolved to address these risks, with core defenses relying on the Input-Output (IOMMU), such as VT-d, which remaps peripheral memory access to prevent arbitrary addressing. Windows implements Kernel DMA Protection to block unauthorized peripheral access until an authenticated user logs in, applicable to and but not legacy interfaces like FireWire. Complementary strategies include enabling Secure Boot and (TPM)-based pre-boot , updating firmware to close IOMMU gaps, and physical controls like port locks or hibernation over modes. Emerging research, including 2024 proposals for lightweight pointer authentication schemes, aims to provide byte-level spatial and temporal protections with minimal performance overhead, outperforming traditional IOMMU by reducing throughput impacts to under 2%.

Fundamentals of DMA

Direct Memory Access Basics

(DMA) is a hardware mechanism in computer systems that enables (I/O) peripherals to transfer data directly to or from the main system memory, bypassing the (CPU) to enhance overall system efficiency. This approach reduces CPU involvement in data movement, allowing the processor to perform other tasks concurrently and thereby improving for high-bandwidth operations such as disk reads or handling. The origins of DMA trace back to the late 1950s, with its first implementation in the computer in 1958, where it facilitated I/O operations by allowing direct data paths independent of the CPU. By the , DMA became a standard feature in minicomputers, notably the PDP-8 introduced by in 1965, which included a 12-channel DMA capability for high-speed block transfers between memory and peripherals. Over time, DMA evolved from early third-party controller-based systems to bus-mastering DMA in modern architectures, particularly with the advent of the PCI bus in the , where peripherals themselves act as bus masters to initiate transfers without a dedicated central controller. At the core of DMA functionality is the DMA controller (DMAC), a specialized hardware component that manages transfer operations by arbitrating bus access and coordinating data movement. The DMAC typically supports multiple channels, each dedicated to a specific peripheral device, enabling simultaneous or prioritized transfers from various sources. Key elements include registers that specify the source and destination locations in system memory, along with count registers that track the amount of data to be transferred, ensuring precise mapping and completion signaling back to the CPU. DMA operates in distinct modes to balance transfer speed with CPU availability, primarily burst mode and cycle-stealing mode. In burst mode, the DMAC seizes control of the for the entire duration of a block transfer, moving a complete sequence of words consecutively before relinquishing the bus, which minimizes setup overhead but temporarily halts CPU access to . Conversely, cycle-stealing mode involves the DMAC requesting the bus intermittently, transferring only one word (or byte) per cycle before releasing control back to the CPU, thereby interrupting CPU operations less frequently and allowing interleaved processing for better overall system responsiveness. These modes ensure minimal disruption to CPU cycles, as the DMAC uses handshaking signals like bus request (BR) and bus grant (BG) to negotiate access without fully idling the processor. The efficiency of DMA transfers can be quantified by the throughput, given by the formula: Throughput=Data sizeTransfer time+CPU overhead\text{Throughput} = \frac{\text{Data size}}{\text{Transfer time} + \text{CPU overhead}} where transfer time is primarily determined by the speed and width, while CPU overhead accounts for initialization and completion interrupts. This metric highlights DMA's advantage in reducing latency for large volumes compared to CPU-mediated transfers. In contemporary systems, DMA plays a crucial role in high-speed peripheral interfaces such as PCIe and , facilitating rapid exchange.

DMA in Peripheral Interfaces

Direct Memory Access (DMA) plays a crucial role in peripheral interfaces by enabling high-speed data transfers between devices and system memory without continuous CPU involvement, thereby optimizing performance in modern computing systems. In PCI Express (PCIe), DMA is natively supported through its transaction layer protocol, which allows endpoints to initiate memory read and write operations directly. This integration facilitates bandwidths up to 128 GT/s in PCIe 6.0, making it ideal for demanding applications. PCIe further enhances DMA with peer-to-peer capabilities, where devices can transfer data directly between each other by mapping remote memory spaces, bypassing the host CPU and reducing latency. Thunderbolt interfaces incorporate DMA support through PCIe tunneling, encapsulating PCIe transactions over a high-speed serial link to allow external peripherals, such as storage enclosures or GPUs, to access host directly. This enables bidirectional transfers at up to 40 Gbps in 3, with up to four lanes of PCIe Gen 3 routed alongside other protocols like . Similarly, USB interfaces, particularly in high-speed modes like USB 3.2, rely on DMA in host controllers to handle bulk and isochronous transfers efficiently, achieving rates up to 20 Gbps while minimizing host processor overhead. FireWire () also integrates DMA via its serial bus protocol, supporting asynchronous and isochronous transfers at speeds up to 3.2 Gbps, where devices can map and access regions directly through the Open Host Controller Interface (OHCI). A key protocol enhancing DMA in these interfaces is PCIe Address Translation Services (ATS), which allows devices to request and cache virtual-to-physical address translations from the (IOMMU), enabling secure and efficient memory mapping for DMA operations without per-transaction overhead. ATS, defined in the PCIe ecosystem, supports up to 256 outstanding translation requests per device, improving scalability in virtualized environments. In storage applications, NVMe SSDs exemplify DMA integration over PCIe, where the controller issues DMA commands to transfer data queues directly to host memory, supporting up to 64K queues for parallel I/O operations and achieving throughputs exceeding 7 GB/s in PCIe 4.0 configurations. For networking, Network Interface Cards (NICs) use DMA to offload packet processing, such as checksum calculations and header parsing, allowing the NIC to write received packets directly to memory buffers and freeing CPU cycles for higher-level tasks.

Attack Mechanics

Exploiting DMA for Unauthorized Access

Attackers exploit (DMA) by leveraging peripherals connected via high-speed interfaces to perform unauthorized reads and writes to arbitrary locations in system memory, circumventing operating system (OS) intervention and CPU-mediated checks. This core principle relies on the inherent design of DMA, which allows devices to initiate memory transactions independently of the processor, enabling direct manipulation of physical memory without invoking kernel code. The exploitation process begins with device enumeration, where the malicious peripheral presents itself on the PCIe bus using a fabricated device ID in its configuration space, allowing the host system to discover and initialize it without suspicion. Next, during enumeration, the host probes and assigns Base Address Registers (BARs) to map the device's resources and enables bus mastering, allowing the peripheral, once initialized as a bus master, to initiate DMA transfers to arbitrary host physical memory addresses via memory read and write Transaction Layer Packets (TLPs), often fragmenting payloads into 128-byte units for efficiency. These DMA operations bypass kernel protections, such as page tables, because they occur at the hardware level on the physical bus, independent of virtual memory translations enforced by the CPU. Even with Input-Output Memory Management Units (IOMMUs) present, exploits can target implementation gaps, like Address Translation Services (ATS) that cache translations and allow devices to access unmapped regions if not properly restricted. Recent work has shown that deferred Input/Output Translation Lookaside Buffer (IOTLB) invalidations in IOMMUs can be exploited for DMA attacks, delaying unmapping and allowing access to freed memory for up to 10 ms in some configurations. A specific technique involves DMA over physical buses like , which extends PCIe capabilities to external ports and supports hot-plug insertion of devices that can gain full memory access within seconds of connection. Upon insertion, the Thunderbolt controller enumerates the device as a PCIe endpoint, assigns BARs, and enables , allowing rapid DMA initiation without requiring a . The exploitation flow can be described as follows: (1) Insert the malicious hot-plug device into a port, triggering immediate PCIe enumeration by the host controller; (2) The device spoofs a legitimate identity to pass basic checks; after enumeration and enablement, it initiates DMA transfers via TLPs to target physical addresses, such as dumping kernel ; (3) Evade handling by reprogramming device or using non-interruptive requests, ensuring the transfers complete without alerting the OS. This sequence allows an attacker to compromise system integrity swiftly through hardware-level access.

Vulnerabilities in DMA Implementation

Direct Memory Access (DMA) implementations in modern systems often lack robust mechanisms for incoming requests from bus-master devices. This design flaw allows any peripheral capable of initiating DMA transfers to access system memory without verifying the legitimacy of the requestor, enabling unauthorized devices to forge pointers and manipulate arbitrary memory regions. For instance, once a legitimate DMA pointer is passed to a device, the kernel relinquishes control, permitting malicious peripherals to alter or reuse it for unintended accesses, even in the presence of partial protections like IOMMU. Firmware responsible for DMA channel management in BIOS/UEFI environments can introduce vulnerabilities if UEFI drivers fail to adhere to specifications for DMA buffer allocation and mapping, such as using protocols like PCI_IO Map/Unmap or AllocateBuffer/FreeBuffer, potentially leaving channels exposed to unauthorized use during boot phases. Additionally, early DMA accesses before full IOMMU activation—due to unset configurations like PCI Bus Master Enable (BME)—create temporary windows of vulnerability, allowing peripherals to perform unrestricted transfers until protections are enabled. Such issues in firmware initialization have been documented, including race conditions from time-of-check-to-time-of-use (TOCTOU) flaws in various UEFI implementations. In multi-device and virtualized environments, inadequate isolation exacerbates DMA risks, particularly through shared buffers that span page boundaries. Sub-page vulnerabilities occur when DMA buffers share physical pages with sensitive kernel data, such as callback pointers or metadata, allowing a malicious device to read or overwrite adjacent regions despite IOMMU page-level remapping. In virtualized setups, this is compounded by deferred (IOTLB) invalidations, which can delay unmapping by up to 10 milliseconds, providing a temporal for cross-VM or cross-device interference. Analysis of 5.0 drivers reveals that over 70% expose such shared structures due to OS-level designs like skb_shared_info, highlighting systemic isolation shortcomings in hypervisor-mediated DMA operations. Historical implementations of DMA remapping, such as early VT-d before significant IOMMU enhancements around 2010, suffered from configuration weaknesses that permitted kernel subversion via peripheral attacks. Researchers demonstrated exploits where IOMMU misconfigurations allowed attackers to bypass isolation by injecting malformed requests, effectively granting full memory access without authentication. These pre-enhancement flaws underscored the nascent state of DMA protections, where systems relied heavily on unverified assumptions of device trustworthiness. Common design flaws in DMA further amplify these risks, including the absence of default for transfers and an overreliance on to prevent tampering. Without built-in , DMA data traverses buses in , exposing it to by compromised intermediaries or side-channel leaks, even if address remapping is employed. Moreover, traditional DMA architectures assume physical access controls suffice to bar malicious devices, ignoring scenarios where peripherals are pre-compromised or inserted via supply-chain attacks, thereby inheriting vulnerabilities from unencrypted, unauthenticated channels.

Attack Scenarios and Impacts

Physical Access Attacks

Physical access attacks on (DMA) involve an attacker gaining brief proximity to a target system to connect malicious peripherals, exploiting interfaces like to perform unauthorized memory reads and writes. A primary entails plugging in a rogue device, which leverages the protocol's PCIe tunneling to grant the peripheral direct access to system memory, allowing extraction of sensitive data such as keys or passwords without CPU intervention. These attacks capitalize on DMA's inherent trust in peripherals, bypassing operating system protections as outlined in DMA exploitation mechanics. Such attacks can be executed rapidly, often in mere seconds of physical access, as demonstrated by proof-of-concept implementations using (FPGA) hardware connected via USB Type-C ports. For instance, researchers developed the open-source Thunderclap platform, an FPGA-based tool that enables DMA operations through everyday peripherals like projectors or power adapters, completing memory dumps or code injections swiftly before detection. The "Thunderclap" vulnerabilities, disclosed in , highlighted how these exploits affect major operating systems including macOS, Windows, , and , even on systems with Input-Output Memory Management Units (IOMMUs) enabled, by abusing device hotplugging and delayed protection enforcement. The impacts are severe, particularly for encrypted systems; an attacker can scan memory for encryption keys on Windows devices in powered-on or standby states, enabling full disk decryption and access to all data. In the , attackers demonstrated stealing cleartext VPN credentials or hijacking kernel to spawn shells, compromising the entire system state. These scenarios underscore the risk to locked-screen devices, where DMA allows bypassing user authentication entirely. Resource requirements for these attacks remain low, utilizing affordable hardware such as modified external GPU (eGPU) enclosures that house FPGA boards like those in the Thunderclap setup, often whitelisted by operating systems for compatibility. Such enclosures provide a stealthy, portable vector, costing under a few hundred dollars and requiring no custom fabrication beyond standard PCIe integration.

Remote and Networked DMA Threats

Remote and networked DMA threats extend the attack surface beyond physical proximity by exploiting wireless and wired network interfaces that incorporate DMA-capable peripherals, enabling adversaries to initiate unauthorized memory access from afar. These threats often involve compromising intermediary devices or to leverage DMA mechanisms, contrasting with direct physical attacks that require hands-on access. For instance, exploitation through or similar wireless protocols allows attackers to target DMA from network adapters without physical connection. A prominent concern involves Thunderbolt-enabled network devices, such as Ethernet adapters, where of the peripheral could potentially facilitate unauthorized DMA access. Similarly, interfaces, such as those using PCIe-based chips, enable over-the-air DMA exploitation; researchers identified race conditions in stack handlers that allow modification of DMA translation tables, granting arbitrary host memory access via transmission. These vectors highlight the scalability of DMA threats in environments with high-speed or bridged connections. Persistent threats arise when on remote devices propagates to intermediaries like network interface cards (NICs), enabling sustained DMA-like access. By compromising NIC firmware remotely—often through network exploits—adversaries can reconfigure the device to issue unauthorized DMA requests, effectively turning the peripheral into a persistent backdoor for memory manipulation. This approach allows to maintain access across reboots and network segments, as the compromise persists independently of the host OS. Such attacks have been explored in contexts where remote takeover of I/O devices leads to DMA-based , amplifying threats in distributed systems. The impacts of these networked DMA threats are particularly severe in enterprise environments, facilitating large-scale data exfiltration such as stealing session tokens across LANs. By directly reading sensitive memory regions, attackers can extract authentication tokens or encryption keys from multiple hosts, enabling lateral movement and widespread credential theft without alerting endpoint detection tools. For example, in a compromised enterprise network, DMA via a malicious NIC could siphon session data from active user sessions, leading to unauthorized access to shared resources and potential exfiltration of gigabytes of proprietary information over extended periods. This underscores the economic scale of such attacks, where a single intermediary compromise can affect dozens of systems. An emerging example in the 2020s involves vulnerabilities in modems, where processors rely on DMA to transfer data between the modem and application processor. Researchers have demonstrated over-the-air (OTA) remote code execution on processors via stack overflows in () components. Additionally, a 2025 development, the "Deferred DMA Attack," exploits timing issues to bypass IOMMU protections in dynamic hypervisors, allowing untrusted virtual machines to perform unauthorized DMA and compromise host systems in virtualized environments like clouds. These flaws enable attackers within radio range or network access to compromise basebands or hypervisors, posing risks to mobile and enterprise deployments. Challenges in remote and networked DMA setups include increased latency, which expands detection windows but enables broader targeting across distributed networks. Remote DMA operations, unlike local ones, introduce propagation delays over network links, potentially slowing attack execution to seconds or minutes per memory access; however, this latency allows adversaries to target geographically dispersed systems without physical presence, complicating real-time monitoring efforts. Analyses of remote PCIe DMA implementations confirm that high-latency paths, such as those in or bridged configurations, trade speed for reach, making persistent, low-volume exfiltration more feasible in large-scale environments.

Mitigation Strategies

Hardware-Based Protections

The Input-Output (IOMMU) is a key hardware mechanism designed to enforce memory isolation for devices performing (DMA), preventing unauthorized access to system memory by mapping device-visible addresses to physical addresses and applying access controls. Introduced in Intel's Virtualization Technology for Directed I/O (VT-d) in and 's IOMMU in the same year, this chipset-level component virtualizes the memory view presented to peripherals, allowing the operating system to assign isolated address spaces to individual devices or groups. By intercepting DMA requests at the hardware level, the IOMMU translates I/O virtual addresses (IOVAs) to physical addresses using dedicated page tables, similar to a CPU's but optimized for I/O traffic. If a device attempts an invalid access—such as reading or writing to an unmapped region or violating permissions—the IOMMU generates a , which can be handled by the system to log the event, block the operation, or terminate the device context, thereby mitigating potential DMA-based exploits without relying on software intervention. This fault-handling capability ensures that even high-speed peripherals like network cards or storage controllers cannot bypass isolation boundaries, providing a foundational layer of protection in modern chipsets supporting PCIe and similar buses. 's IOMMUv2, released in subsequent revisions in 2011, enhanced these features with improved remapping and finer-grained domain management for better scalability in virtualized environments. Complementing IOMMU, PCI Express Advanced Error Reporting (AER) serves as a hardware protocol for detecting and reporting anomalous DMA traffic through error classification and logging at the PCIe root complex. Defined in the specification, AER monitors transactions for issues like completion timeouts, unsupported requests, or data parity errors during DMA operations, flagging them as correctable or uncorrectable to enable rapid isolation of faulty devices. This mechanism helps identify potentially malicious or erroneous DMA patterns, such as excessive or malformed requests, by propagating error messages upstream without halting the entire bus, thus maintaining system reliability while aiding in threat detection. In specific implementations, such as Intel's 3 interface, hardware-based DMA protections integrate IOMMU enforcement with user authentication requirements to secure external peripherals connected via high-speed ports. 3 controllers, which expose PCIe over , mandate explicit authorization—often through a one-time user prompt or pre-configured levels—before granting DMA access to attached devices, leveraging the platform's IOMMU to restrict memory mappings until verification occurs. This approach ensures that unauthorized accessories cannot initiate DMA transfers, addressing the risks posed by the interface's direct PCIe tunneling. Despite these advances, hardware-based protections like IOMMU introduce performance overhead, with address translation and fault handling adding up to 10% latency in DMA-intensive workloads due to IOTLB misses and page walks. Additionally, coverage remains incomplete in older chipsets predating widespread IOMMU adoption, such as pre-2006 and platforms, where legacy peripherals may lack support for these isolation features.

Software and Firmware Defenses

Software and defenses play a crucial role in securing DMA operations by enforcing restrictions at the operating system kernel, boot , and device management levels, often leveraging underlying hardware features like IOMMUs without altering their . These measures focus on configuring access controls, validating loaded code, and monitoring for suspicious activity to prevent unauthorized memory access by peripherals. In , kernel-level DMA protection APIs allow developers to restrict the address ranges that devices can access during DMA transfers. For instance, the dma_set_mask() function sets a bitmask defining the maximum a device can use, ensuring it operates within safe boundaries and preventing access to protected kernel memory. This is part of the generic DMA mapping framework, which drivers must use to allocate and map DMA buffers securely. UEFI Secure Boot integrates defenses against DMA exploits by verifying the digital signatures of and bootloaders during system initialization, thereby preventing the loading of malicious that could configure devices for unauthorized DMA attacks. This mechanism ensures that only trusted code executes in the pre-OS environment, reducing the risk of firmware-level tampering that might bypass OS protections. Windows implements Kernel DMA Protection, introduced in Windows 10 version 1703 (released in 2017), which enforces the use of an IOMMU to remap and isolate DMA requests from external devices, particularly those connected via or other hot-plug interfaces. This feature operates as a boot-time and runtime policy, blocking untrusted devices from performing DMA until the system is fully logged in and protected, thereby mitigating drive-by attacks. Best practices for enhancing these defenses include disabling legacy DMA modes in BIOS settings to favor modern, protected interfaces like PCIe with IOMMU support, which eliminates vulnerabilities in outdated bus protocols such as ISA or early PCI. Additionally, implementing device trust policies—such as those in Kernel DMA Protection—evaluates device capabilities and remapping status before granting DMA permissions, ensuring only verified peripherals can initiate transfers. Emerging software-based mitigations include 2024 proposals for lightweight pointer authentication schemes, which provide byte-level spatial and temporal protections against memory manipulation in DMA contexts. These approaches aim to outperform traditional IOMMU implementations by reducing throughput impacts to under 2% while offering finer-grained security without significant hardware changes. Monitoring tools complement these configurations by logging and detecting DMA-related anomalies through system event logs and utility suites. Windows records hardware and driver events that may indicate irregular DMA activity, such as unexpected device enumerations or access violations in the System or Security logs. Sysinternals utilities, like , can trace driver and device interactions in real-time, helping identify anomalous DMA buffer allocations or peripheral behaviors that deviate from normal patterns.

References

  1. https://www.kroll.com/en/publications/cyber/what-is-dma-attack-understanding-mitigating-threat
  2. https://eclypsium.com/blog/direct-memory-access-attacks-a-walk-down-memory-lane/
  3. https://www.usenix.org/system/files/usenixsecurity24-wang-xingkai.pdf
  4. https://www.csoonline.com/article/548396/security-stop-sneaky-hackers-from-launching-dma-attacks.html
  5. https://learn.microsoft.com/en-us/windows/security/hardware-security/kernel-dma-protection-for-thunderbolt
  6. https://www.sciencedirect.com/topics/computer-science/direct-memory-access
  7. https://www.geeksforgeeks.org/computer-organization-architecture/direct-memory-access-dma-controller-in-computer-architecture/
  8. https://www.storagenewsletter.com/2018/08/27/history-1958-ibm-709/
  9. http://bitsavers.org/pdf/datapro/datapro_reports_70s-90s/DEC/M11-384-10_7505_DEC_PDP-8.pdf
  10. https://elupu.utcluj.ro/wp-content/uploads/2018/04/hdma.pdf
  11. https://www.baeldung.com/cs/dma-controllers
  12. https://www.geeksforgeeks.org/computer-organization-architecture/modes-of-dma-transfer/
  13. https://www.spiceworks.com/tech/hardware/articles/direct-memory-access/
  14. https://www.thunderbolttechnology.net/sites/default/files/Thunderbolt3_TechBrief_FINAL.pdf
  15. https://standards.ieee.org/ieee/1394/1030/
  16. https://nvmexpress.org/wp-content/uploads/NVM-Express-NVMe-over-PCIe-Transport-Specification-Revision-1.3-2025.08.01-Ratified.pdf
  17. https://www.intel.com/content/www/us/en/products/docs/network-io/ethernet/700-series-brief.html
  18. https://www.cl.cam.ac.uk/techreports/UCAM-CL-TR-934.pdf
  19. https://www.ndss-symposium.org/ndss-paper/thunderclap-exploring-vulnerabilities-in-operating-system-iommu-protection-via-dma-from-untrustworthy-peripherals/
  20. https://bu-icsg.github.io/publications/2024/iommu_date_2024.pdf
  21. https://pages.cs.wisc.edu/~sstjohn/tg_old.pdf
  22. https://i.blackhat.com/USA-20/Thursday/us-20-Ruytenberg-When-Lightning-Strikes-Thrice-Breaking-Thunderbolt-3-Security.pdf
  23. https://www.intel.com/content/dam/develop/external/us/en/documents/intel-whitepaper-using-iommu-for-dma-protection-in-uefi-820238.pdf
  24. https://kb.cert.org/vuls/id/434994
  25. https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf
  26. https://ieeexplore.ieee.org/document/5665798
  27. https://www.usenix.org/system/files/usenixsecurity24-wingkai.pdf
  28. https://support.microsoft.com/en-us/topic/blocking-the-sbp-2-driver-and-thunderbolt-controllers-to-reduce-1394-dma-and-thunderbolt-dma-threats-to-bitlocker-bf0ef10b-f563-5cfc-9740-8340b1d86a0c
  29. https://googleprojectzero.blogspot.com/2017/10/over-air-vol-2-pt-3-exploiting-wi-fi.html
  30. https://dants.github.io/papers/cim-asplos-2016.pdf
  31. https://dl.acm.org/doi/10.1145/3447786.3456249
  32. https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Over-The-Air-Baseband-Exploit-Gaining-Remote-Code-Execution-On-5G-Smartphones.pdf
  33. https://www.cise.ufl.edu/~butler/pubs/ndss22-firmwire.pdf
  34. https://ieeexplore.ieee.org/document/11196886
  35. https://i.blackhat.com/USA-19/Wednesday/us-19-Sandin-PicoDMA-DMA-Attacks-At-Your-Fingertips.pdf
  36. https://pages.cs.wisc.edu/~basu/isca_iommu_tutorial/IOMMU_TUTORIAL_ASPLOS_2016.pdf
  37. https://news.microsoft.com/source/2006/03/07/intel-and-microsoft-outline-plans-for-advancing-benefits-of-new-management-and-virtualization-technologies/
  38. https://datasheets.chipdb.org/AMD/Other/34434.pdf
  39. https://instinct.docs.amd.com/projects/amdgpu-docs/en/latest/conceptual/iommu.html
  40. https://kib.kiev.ua/x86docs/AMD/IOMMU/48882-3.05.pdf
  41. https://www.amd.com/content/dam/amd/en/documents/developer/sev-tio-whitepaper.pdf
  42. https://www.kernel.org/doc/ols/2007/ols2007v2-pages-297-304.pdf
  43. https://www.intel.com/content/www/us/en/docs/programmable/683268/21-1-4-0-0/advanced-error-reporting-aer.html
  44. https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-PCIe-Device-Attacks-Beyond-DMA-Exploiting-PCIe-Switches-Messages-And-Errors.pdf
  45. https://support.apple.com/fr-ml/guide/security/seca4960c2b5/web
  46. https://inria.hal.science/inria-00493752/document
  47. https://www.usenix.org/system/files/conference/atc15/atc15-paper-peleg.pdf
  48. https://docs.kernel.org/core-api/dma-api-howto.html
Add your contribution
Related Hubs
User Avatar
No comments yet.