CWE-1331: Improper Isolation of Shared Resources in Network On Chip (NoC)
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The Network On Chip (NoC) does not isolate or incorrectly isolates its on-chip-fabric and internal resources such that they are shared between trusted and untrusted agents, creating timing channels.
常见后果
影响范围: Confidentiality Availability
技术影响: DoS: Resource Consumption (Other) Varies by Context Other
说明: Attackers may infer data that belongs to a trusted agent. The methods used to perform this attack may result in noticeably increased resource consumption.
潜在缓解措施
阶段: Architecture and Design Implementation
描述: Implement priority-based arbitration inside the NoC and have dedicated buffers or virtual channels for routing secret data from trusted agents.
检测方法
方法: Manual Analysis
Providing marker flags to send through the interfaces coupled with examination of which users are able to read or manipulate the flags will help verify that the proper isolation has been achieved and is effective.
有效性: Moderate
观察示例
参考: CVE-2021-33096
Improper isolation of shared resource in a network-on-chip leads to denial of service
引入模式
| 阶段 | 说明 |
|---|---|
| Architecture and Design | - |
| Implementation | - |