Remote Rowhammer DRAM Attacks

Both variants, known as Throwhammer and Nethammer respectively, can be performed by an attacker targeting RDMA high-speed network interface cards (NICs).

Random direct memory access (RDMA) is a technology that allows one device to directly access another device's memory; without involving the second device's CPU, cache or other resources. This allows for high bandwidth, low latency data transfer and manipulation between hosts, with RDMA-enabled NICs commonly deployed in high performance computing (HPC), cloud computing and big data installations. Applications that wish to access another device's memory will designate a buffer on that device's NIC.

Both attacks register an overly large buffer on the target device NIC before rapidly submitting an excessive number of data requests to designated buffer locations. This results in specific DRAM cells flipping in a similar way to previous Rowhammer or Flip Feng Shui attacks. 

Due to the nature of Rowhammer DRAM attacks, with millions of memory calls required per second, remote variants can only feasibly be performed on high-speed (10Gbps and up) networks.

For further information:

• Throwhammer: Rowhammer Attacks over the Network and Defenses research paper

• Nethammer: Inducing Rowhammer Faults through Network Requests research paper