|
|
|
|
|
|
by markdoubleyou
756 days ago
|
|
|
It looks like RDMA is kind of like IP4, in the sense that it wasn't originally designed with security in mind. Was this vulnerability a big deal when the paper was submitted in 2022, or more a case of doing cool research on a protocol vulnerability? The attack scenario looks pretty limited: "We consider an adversary that is on one of the endpoints of the victim connection (i.e., it is co-located with either the NVMe-oF target or client). The attacker is an unprivileged user and is assumed to have obtained access to the machines using legitimate means. We assume that the attacker shares the same physical RNIC as the NVMe-oF entity and both can use it for communication. We assume that the attacker and the NVMe-oF entity are not separated through RNIC virtualization. The TLU model is prevalent in private clusters that use RDMA and NVMe-oF to accelerate their workloads." An attacker is pretty deep into your infrastructure if they can even get a whiff of your storage fabric like this. |
|
|