Erase GPU memory

by J. Chorin   Last Updated August 08, 2018 16:00 PM

We have Nvidia GPU cards that can be used by different users in an OpenStack environment. A first user creates a VM with access to a GPU card, then deletes the VM when done. Another user then creates a VM which is given access to the same card. He/She may access elements stored in memory by previous user, or some malicious code could be left. For security purposes, we want to be able to erase the graphic card memory between two users.

According to this research publication Confidentiality Issues on a GPU in a Virtualized Environment, the most general way to do so is to reboot the host machine. This is unpractical in our case.

However the paper was released in 2014, and thus, may differ from the current state.

Is there any other way to prevent information leak through GPU memory between two following VMs? Or do the current drivers and/or the newer cards perform this security operation themselves?

Also according to the publication, simply creating a program that overwrites everything is also not feasible, as the CUDA memory manager may not give access to the whole memory.

We use Nvidia cards with the Pascal architecture.

Related Questions

CPU-GPU data transfer in NVIDIA Grid Cards

Updated July 28, 2017 03:00 AM

NVIDIA Drivers on server

Updated July 06, 2018 04:00 AM

Windows detect 2 of 4 graphic cards

Updated May 30, 2017 21:00 PM

What are actual Tesla M60 models used by AWS?

Updated March 12, 2019 01:00 AM