Unhackable Morpheus CPU architecture announced by University of Michigan

Morpheus can randomize parts of its code 20 times per second, making it virtually impervious even to the most advanced electronic hacking tools. (Source: New Atlas)

The Spectre and Meltdown vulnerabilities proved that most of the CPUs made by Intel and AMD in the past 10 years are susceptible to code-based attacks and the current security model of bugs and patches needs to change at a fundamental level. Researchers at the University of Michigan might have the solution with the Morpheus CPU security architecture that renders processors virtually invulnerable even to the fastest electronic hacking techniques.

Bogdan Solca, Published 05/07/2019

Even though there are no reports of real-world disasters caused by hackers taking advantage of the inherent Spectre and Meltdown vulnerabilities that plague most CPUs released in the past 10 years, the flawed architectures employed by Intel and AMD clearly need to be updated with improved security features. Both chip makers are now trying to provide hardware-level patches and fixes, but hackers already found more Spectre and Meltdown variants, so maybe this security model of bugs and patches needs to be replaced. Enter the “unhackable” Morpheus CPU security architecture developed by researchers at the University of Michigan.

Morpheus uses a pro-active security system that encrypts and randomly reshuffles bits of its own code 20 times per second. According to Todd Austin, one of the engineers and developers of the architecture, “even if a hacker finds a bug, the information needed to exploit it vanishes 50 milliseconds later. It’s perhaps the closest thing to a future-proof secure system […] Imagine trying to solve a Rubik’s Cube that rearranges itself every time you blink. That’s what hackers are up against with Morpheus. It makes the computer an unsolvable puzzle.”

It looks like the U.S. Army is also interested in this new architecture, as a working Morpheus prototype was funded by DARPA. The prototype managed to defend against every known variant of the control-flow attack, which is currently the most efficient way to compromise CPUs. The research team lead by Austin is confident that the Morpheus processor can fend off even the fastest electronic hacking techniques and can increase the randomization speed if it detects an increased rate of attacks. The default 50 millisecond randomization speed only has a 1% performance impact.

The demo chip was built using the RISC-V architecture, which is common for open-source research of this kind. This shows that security systems similar to Morpheus can eventually be implemented in consumer chips like desktop CPUs or IoT devices, and Austin is already looking to commercialize the technology via its Agita Labs startup company.

Source(s)

University of Michigan

via Tom's Hardware

The illegal streaming websites iStreamItAll and Jetflicks have been shut down by the FBI and DoJ. (Image: iStreamItAll splash page)

FBI shuts down 2 illegal streaming sites, one of which is bigger than Netflix, Amazon Prime, and Hulu combined 12/16/2019

Hackers attacked NASA's Jet Propulsion Lab via a Raspberry Pi, stole 500 MB of mission data 06/23/2019

Massive data breach may have affected millions of Instagram users, including some major influencers 05/20/2019

Affected Titan Security Keys have a printed

Security flaw found in Google's Titan Security Keys 05/17/2019

New ZombieLoad attack can exploit all Intel chips dating back to 2011 05/14/2019

Meltdown alongside Spectre was originally reported as a hardware level exploit on Intel CPUs (Source: meltdownattack.com)

Qualcomm CPUs have been shown to be unprotected against the Meltdown exploit, researchers say 08/09/2018

Intel will eventually bake security fixes into its next-generation of silicon. (Source: Intel)

Intel plans to offload CPU malware scanning to iGPUs in new Spectre / Meltdown fix 04/17/2018

Intel seems optimistic about any financial losses that could occur with all the litigations queuing up. (Source: Tech Viral)

Meltdown / Spectre CPU vulnerabilities brought Intel 32 lawsuits in 1.5 months 02/19/2018

The Chinese knew of Meltdown and Spectre much before the US Government according to The WSJ. (Source: Reddit)

Intel alerted select corporations about Meltdown/Spectre, China speculated to have known about it before the US 01/30/2018

Intel CEO Brian Krzanich explained the company's position regarding the vulnerability probems at CES 2018.

Intel will release "in-silicon" fixes for Meltdown and Spectre this year 01/26/2018

Read all 3 comments / answer

Loading Comments

Comment on this article

Bogdan Solca - Senior Tech Writer - 2043 articles published on Notebookcheck since 2017

I first stepped into the wondrous IT&C world when I was around seven years old. I was instantly fascinated by computerized graphics, whether they were from games or 3D applications like 3D Max. I'm also an avid reader of science fiction, an astrophysics aficionado, and a crypto geek. I started writing PC-related articles for Softpedia and a few blogs back in 2006. I joined the Notebookcheck team in the summer of 2017 and am currently a senior tech writer mostly covering processor, GPU, and laptop news.

contact me via: Facebook

Please share our article, every link counts!

.170

> Notebook / Laptop Reviews and News > News > News Archive > Newsarchive 2019 05 > Unhackable Morpheus CPU architecture announced by University of Michigan

Bogdan Solca, 2019-05- 7 (Update: 2019-05- 8)

Unhackable Morpheus CPU architecture announced by University of Michigan

Source(s)

Related Articles