DOCSLIB.ORG

Building Enclave-Native Storage Engines for Practical Encrypted

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Building Enclave-Native Storage Engines for Practical Encrypted Building Enclave-Native Storage Engines for Practical Encrypted Databases Yuanyuan Sun, Sheng Wang, Huorong Li, Feifei Li Alibaba Group {yuanyuan.sun,sh.wang,huorong.lhr,lifeifei}@alibaba-inc.com ABSTRACT attacks — this outsourced infrastructure could be compromised by Data confdentiality is one of the biggest concerns that hinders insiders, such as malicious co-tenants and curious stafs, who might enterprise customers from moving their workloads to the cloud. look into the data (e.g., in databases) and cause data breaches. In Thanks to the trusted execution environment (TEE), it is now fea- other words, anyone with privileges (or even physical access [31]) sible to build encrypted databases in the enclave that can process on that server can easily steal the data for his/her own interest. customers’ data while keeping it confdential to the cloud. Though However, customers have no control of administrative privileges some enclave-based encrypted databases emerge recently, there re- to the machines that host their data, which is completely diferent mains a large unexplored area in between about how confdentiality from on-premise deployments. Given this serious situation, it is can be achieved in diferent ways and what infuences are implied critical to protect the confdentiality of customers’ data during the by them. In this paper, we frst provide a broad exploration of possi- operation of cloud databases. Note that existing database security ble design choices in building encrypted database storage engines, mechanisms, such as access control and data-at-rest encryption, rendering trade-ofs in security, performance and functionality. We can be easily bypassed by attackers in this context [2]. observe that choices on diferent dimensions can be independent In order to tackle this problem, many research works [5, 6, 25, and their combination determines the overall trade-of of the entire 47, 49, 50, 58, 61] have built encrypted databases, which prevent storage. We then propose Enclage, an encrypted storage engine attackers with privileges on the database (or on the server that that makes practical trade-ofs. It adopts many enclave-native de- hosts the database) from accessing users’ data in plaintext. One signs, such as page-level encryption, reduced enclave interaction, line of work, e.g., CryptDB [49] and Arx [47], takes advantage and hierarchical memory bufer, which ofer high-level security of special cryptographic primitives to support direct operations guarantee and high performance at the same time. To make better over ciphertext (e.g., homomorphic encryption [28], searchable use of the limited enclave memory, we derive the optimal page size encryption [54], and garbled circuit [63]). However, they usually in enclave and adopt delta decryption to access large data pages introduce signifcant overheads and only allow limited types of with low cost. Our experiments show that Enclage outperforms the operations [19, 36, 46, 47, 49]. This makes them unsuitable for baseline, a common storage design in many encrypted databases, general-purpose cloud database infrastructures. by over 13× in throughput and about 5× in storage savings. Instead, we follow another line of work that uses trusted execu- tion environments (TEE), like Intel SGX and AMD SEV, to operate on PVLDB Reference Format: confdential data in an isolated enclave. Due to the recent advance- Yuanyuan Sun, Sheng Wang, Huorong Li, Feifei Li. Building ment of Intel SGX (software guard extensions), many enclave-based Enclave-Native Storage Engines for Practical Encrypted Databases. PVLDB, encrypted databases and storage systems have emerged [5, 9, 25, 40, 14(6): 1019-1032, 2021. 42, 50, 61, 64]. Although all these systems target data confdential- doi:10.14778/3447689.3447705 ity, their protection strengths are sometimes either too “strong” or too “weak”. Some of them make user data completely inaccessible 1 INTRODUCTION or indistinguishable from the server. For example, EnclaveDB [50] Due to the rapid advancement of cloud computing, many com- puts all data in enclave-protected memory, and ObliDB [25] adopts panies have moved their enterprise workloads from on-premise oblivious data access to untrusted memory. However, such a strong data centers to cloud services, who ofer many attractive features, protection signifcantly compromises either system capability or such as elasticity, high availability, and low cost. From the security performance. On the contrary, others ofer confdentiality protec- perspective, the cloud tends to be less vulnerable than on-premise tion as add-on features to legacy database systems. For example, deployments. The service provider can employ a large team of secu- Always-encrypted [5] and StealthDB [61] ofer a few enclave-based rity experts to adopt state-of-the-art protection mechanisms timely functions for computation over ciphertext with marginal modi- and continuously to the entire infrastructure. In this case, even fcations to SQL Server and PostgreSQL. We observe that such a huge security investments become afordable as they are amortized non-intrusive design leads to severe information leakage and perfor- over all customers. However, there exposes a new dimension of mance degradation (Section 3.3). In summary, there still remains a large unexplored area between above two extreme scenarios — how This work is licensed under the Creative Commons BY-NC-ND 4.0 International confdentiality can be achieved in encrypted databases where users License. Visit https://creativecommons.org/licenses/by-nc-nd/4.0/ to view a copy of this license. For any use beyond those covered by this license, obtain permission by have more practical considerations for trade-ofs among security, emailing [email protected]. Copyright is held by the owner/author(s). Publication rights performance and functionality. licensed to the VLDB Endowment. Proceedings of the VLDB Endowment, Vol. 14, No. 6 ISSN 2150-8097. doi:10.14778/3447689.3447705 1019 In this paper, we consider the design of an encrypted storage with our experiments. A delta decryption protocol is applied engine, which is a fundamental building block for full-fedged en- to access records in data pages efciently, having no memory crypted databases. Instead of proposing a concrete design directly, contention against the index. we frst provide a comprehensive exploration of possible design • We conduct extensive experiments to evaluate the efciency choices for encrypted storage engines. These choices achieve dif- of Enclage, as well as the efectiveness of individual designs ferent trade-ofs among security, performance and functionality, adopted by it. Enclage outperforms the baseline, a common and can be further categorized into fve dimensions (i.e., encryption storage design in existing encrypted databases [5, 61], by granularity, execution logic in enclave, memory access granularity, over 13× in throughput and about 5× in storage savings. enclave memory usage, record identity protection) as shown in Table 1. We observe that the decision on each dimension can be 2 BACKGROUND made independently, and their combination determines the overall In this section, we brief the concept of trusted execution environ- trade-of of the entire storage. Moreover, not all combinations are ment and Intel SGX, and then discuss the challenges in designing equally useful in practice as we will discuss later. This analysis SGX-based encrypted databases. should be able to help database practitioners to well understand the efect of each decision, and guide them to fnd the best choices 2.1 Trusted Execution Environment and SGX for their own needs. A trusted execution environment (TEE) is a secure area, which After exploring the design space, we further make choices on guarantees the confdentiality and integrity of computation and each dimension, rendering a good trade-of for practical database data in it. It can be used to build secure applications in untrusted usage. Under this circumstance, we propose Enclage, an enclave- environments (e.g., on a public cloud), where the host may conduct + native database storage engine that includes a B -tree-like index malicious actions. Intel Software Guard Extensions (SGX) is a state- structure and a heap-fle-like table store. It allows data to be securely of-the-art implementation of TEE, receiving broad attention from maintained in untrusted memory and disk by encrypting individual both industry and academia. SGX is an extension of x86 instruction index and data pages. This mitigates ciphertext amplifcations and set architecture, and it ofers protections using a concept called prevents information leakage inside a page. To avoid unnecessary enclave. Readers can refer to [22, 33, 35] for more details on its context switches between enclave and non-enclave executions, we implementation and features, e.g., isolation, sealing and attestation. carefully implement the main execution logic of index (i.e., entry An enclave is an isolated virtual address space in a process, where search and update) and table (i.e., record read and write) inside the both code and data are stored in protected memory pages called enclave. It is able to reduce the number of enclave entries per request enclave page caches (EPC) that cannot be accessed by the host, to one in most cases, and minimize it when external interactions i.e., the rest of the process outside the enclave. The data in EPC (e.g., I/Os) are required. We further utilize protected memory in is encrypted by a memory encryption engine (MEE), which only enclave to cache
Load more

Recommended publications
  • The Microarchitecture of the Pentium 4 Processor
    The Microarchitecture of the Pentium 4 Processor Glenn Hinton, Desktop Platforms Group, Intel Corp. Dave Sager, Desktop Platforms Group, Intel Corp. Mike Upton, Desktop Platforms Group, Intel Corp. Darrell Boggs, Desktop Platforms Group, Intel Corp. Doug Carmean, Desktop Platforms Group, Intel Corp. Alan Kyker, Desktop Platforms Group, Intel Corp. Patrice Roussel, Desktop Platforms Group, Intel Corp. Index words: Pentium® 4 processor, NetBurst™ microarchitecture, Trace Cache, double-pumped ALU, deep pipelining provides an in-depth examination of the features and ABSTRACT functions of the Intel NetBurst microarchitecture. This paper describes the Intel® NetBurst™ ® The Pentium 4 processor is designed to deliver microarchitecture of Intel’s new flagship Pentium 4 performance across applications where end users can truly processor. This microarchitecture is the basis of a new appreciate and experience its performance. For example, family of processors from Intel starting with the Pentium it allows a much better user experience in areas such as 4 processor. The Pentium 4 processor provides a Internet audio and streaming video, image processing, substantial performance gain for many key application video content creation, speech recognition, 3D areas where the end user can truly appreciate the applications and games, multi-media, and multi-tasking difference. user environments. The Pentium 4 processor enables real- In this paper we describe the main features and functions time MPEG2 video encoding and near real-time MPEG4 of the NetBurst microarchitecture. We present the front- encoding, allowing efficient video editing and video end of the machine, including its new form of instruction conferencing. It delivers world-class performance on 3D cache called the Execution Trace Cache.
    [Show full text]
  • Multiprocessing Contents
    Multiprocessing Contents 1 Multiprocessing 1 1.1 Pre-history .............................................. 1 1.2 Key topics ............................................... 1 1.2.1 Processor symmetry ...................................... 1 1.2.2 Instruction and data streams ................................. 1 1.2.3 Processor coupling ...................................... 2 1.2.4 Multiprocessor Communication Architecture ......................... 2 1.3 Flynn’s taxonomy ........................................... 2 1.3.1 SISD multiprocessing ..................................... 2 1.3.2 SIMD multiprocessing .................................... 2 1.3.3 MISD multiprocessing .................................... 3 1.3.4 MIMD multiprocessing .................................... 3 1.4 See also ................................................ 3 1.5 References ............................................... 3 2 Computer multitasking 5 2.1 Multiprogramming .......................................... 5 2.2 Cooperative multitasking ....................................... 6 2.3 Preemptive multitasking ....................................... 6 2.4 Real time ............................................... 7 2.5 Multithreading ............................................ 7 2.6 Memory protection .......................................... 7 2.7 Memory swapping .......................................... 7 2.8 Programming ............................................. 7 2.9 See also ................................................ 8 2.10 References .............................................
    [Show full text]
  • The Intel X86 Microarchitectures Map Version 2.0
    The Intel x86 Microarchitectures Map Version 2.0 P6 (1995, 0.50 to 0.35 μm) 8086 (1978, 3 µm) 80386 (1985, 1.5 to 1 µm) P5 (1993, 0.80 to 0.35 μm) NetBurst (2000 , 180 to 130 nm) Skylake (2015, 14 nm) Alternative Names: i686 Series: Alternative Names: iAPX 386, 386, i386 Alternative Names: Pentium, 80586, 586, i586 Alternative Names: Pentium 4, Pentium IV, P4 Alternative Names: SKL (Desktop and Mobile), SKX (Server) Series: Pentium Pro (used in desktops and servers) • 16-bit data bus: 8086 (iAPX Series: Series: Series: Series: • Variant: Klamath (1997, 0.35 μm) 86) • Desktop/Server: i386DX Desktop/Server: P5, P54C • Desktop: Willamette (180 nm) • Desktop: Desktop 6th Generation Core i5 (Skylake-S and Skylake-H) • Alternative Names: Pentium II, PII • 8-bit data bus: 8088 (iAPX • Desktop lower-performance: i386SX Desktop/Server higher-performance: P54CQS, P54CS • Desktop higher-performance: Northwood Pentium 4 (130 nm), Northwood B Pentium 4 HT (130 nm), • Desktop higher-performance: Desktop 6th Generation Core i7 (Skylake-S and Skylake-H), Desktop 7th Generation Core i7 X (Skylake-X), • Series: Klamath (used in desktops) 88) • Mobile: i386SL, 80376, i386EX, Mobile: P54C, P54LM Northwood C Pentium 4 HT (130 nm), Gallatin (Pentium 4 Extreme Edition 130 nm) Desktop 7th Generation Core i9 X (Skylake-X), Desktop 9th Generation Core i7 X (Skylake-X), Desktop 9th Generation Core i9 X (Skylake-X) • Variant: Deschutes (1998, 0.25 to 0.18 μm) i386CXSA, i386SXSA, i386CXSB Compatibility: Pentium OverDrive • Desktop lower-performance: Willamette-128
    [Show full text]
  • A Performance Analysis Tool for Intel SGX Enclaves
    sgx-perf: A Performance Analysis Tool for Intel SGX Enclaves Nico Weichbrodt Pierre-Louis Aublin Rüdiger Kapitza IBR, TU Braunschweig LSDS, Imperial College London IBR, TU Braunschweig Germany United Kingdom Germany [email protected] [email protected] [email protected] ABSTRACT the provider or need to refrain from offloading their workloads Novel trusted execution technologies such as Intel’s Software Guard to the cloud. With the advent of Intel’s Software Guard Exten- Extensions (SGX) are considered a cure to many security risks in sions (SGX)[14, 28], the situation is about to change as this novel clouds. This is achieved by offering trusted execution contexts, so trusted execution technology enables confidentiality and integrity called enclaves, that enable confidentiality and integrity protection protection of code and data – even from privileged software and of code and data even from privileged software and physical attacks. physical attacks. Accordingly, researchers from academia and in- To utilise this new abstraction, Intel offers a dedicated Software dustry alike recently published research works in rapid succession Development Kit (SDK). While it is already used to build numerous to secure applications in clouds [2, 5, 33], enable secure network- applications, understanding the performance implications of SGX ing [9, 11, 34, 39] and fortify local applications [22, 23, 35]. and the offered programming support is still in its infancy. This Core to all these works is the use of SGX provided enclaves, inevitably leads to time-consuming trial-and-error testing and poses which build small, isolated application compartments designed to the risk of poor performance.
    [Show full text]
  • Intel PSU Cage Replacement Process Support Guide
    Intel® PSU Cage Replacement Process Support Guide A Guide for Technically Qualified Assemblers of Intel® 2U ATX Products Document No.: PSU-01 Revision No.: 002 Disclaimer Information in this document is provided in connection with Intel® products. No license, express or implied, by estoppel or otherwise, to any intellectual property rights is granted by this document. Except as provided in Intel's Terms and Conditions of Sale for such products, Intel assumes no liability whatsoever, and Intel disclaims any express or implied warranty, relating to sale and/or use of Intel products including liability or warranties relating to fitness for a particular purpose, merchantability, or infringement of any patent, copyright or other intellectual property right. Intel products are not designed, intended or authorized for use in any medical, life saving, or life sustaining applications or for any other application in which the failure of the Intel product could create a situation where personal injury or death may occur. Intel may make changes to specifications and product descriptions at any time, without notice. Intel server boards contain a number of high-density VLSI and power delivery components that need adequate airflow for cooling. Intel's own chassis are designed and tested to meet the intended thermal requirements of these components when the fully integrated system is used together. It is the responsibility of the system integrator that chooses not to use Intel developed server building blocks to consult vendor datasheets and operating parameters to determine the amount of airflow required for their specific application and environmental conditions. Intel Corporation can not be held responsible if components fail or the server board does not operate correctly when used outside any of their published operating or non-operating limits.
    [Show full text]
  • Intel® Itanium® Architecture Assembly Language Reference Guide
    Intel® Itanium® Architecture Assembly Language Reference Guide Copyright © 2000 - 2003 Intel Corporation. All rights reserved. Order Number: 248801-004 World Wide Web: http://developer.intel.com Intel(R) Itanium(R) Architecture Assembly Lanuage Reference Guide Page 2 Disclaimer and Legal Information Information in this document is provided in connection with Intel products. No license, express or implied, by estoppel or otherwise, to any intellectual property rights is granted by this document. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER, AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. Intel products are not intended for use in medical, life saving, or life sustaining applications. This Intel® Itanium® Architecture Assembly Language Reference Guide as well as the software described in it is furnished under license and may only be used or copied in accordance with the terms of the license. The information in this manual is furnished for informational use only, is subject to change without notice, and should not be construed as a commitment by Intel Corporation. Intel Corporation assumes no responsibility or liability for any errors or inaccuracies that may appear in this document or any software that may be provided in association with this document. Designers must not rely on the absence or characteristics of any features or instructions marked "reserved" or "undefined." Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them.
    [Show full text]
  • Node-Level Coordinated Power-Performance Management Rathijit Sen David A
    Node-level Coordinated Power-Performance Management Rathijit Sen David A. Wood Department of Computer Sciences University of Wisconsin-Madison Abstract Apart from cores, cache and memory also consume sig- Pareto-optimal power-performance system configurations nificant power and need to be managed for power/energy- can improve performance for a power budget or reduce efficient performance. Intel’s Core Duo processor allows power for a performance target, both leading to energy sav- shutting down portions of its last-level cache (LLC) [35]. In- ings. We develop a new power-performance management tel’s Ivy Bridge microarchitecture provides more fine-grained framework that seeks to operate at the pareto-optimal frontier control: a subset of the ways of its set-associative LLC can for dynamically reconfigurable systems, focusing on single- be turned off [28]. IBM’s Power7 enables runtime throttling node reconfigurations in this paper. of memory traffic [44]. Felter et al. [23] demonstrated ben- Our framework uses new power-performance state descrip- efits through power-shifting using core DVFS and memory tors, Π-states, that improve upon the traditional ACPI-state throttling. Deng et al. [21] and David et al. [19] proposed descriptors by taking into account interactions among multi- using DFS/DVFS for main memory. Moreover, to avoid ple reconfigurable components, quantifying system-wide im- inconsistent/under-performing configurations, resource man- pact and predicting totally ordered pareto-optimal states. agement must be coordinated. Deng et al. [20] demonstrated We demonstrate applications of our framework for both coordinated management of core DVFS and memory DVFS. simulated systems and real hardware.
    [Show full text]
  • PRIMEQUEST Servers: Mission-Critical Servers for Linux and Windows
    WHITE PAPER PRIMEQUEST Servers: Mission-Critical Servers for Linux and Windows March 2006 PREPARED FOR Executive Summary Fujitsu A year ago, Fujitsu expanded its portfolio of robust enterprise servers with the introduction of the PRIMEQUEST family. Fujitsu had observed that a growing number of customers were attracted to Linux and Windows operating environments and to servers employing Intel processors. The Itanium 2-powered PRIMEQUEST TABLE OF CONTENTS line addresses that customer desire with high performance servers designed for Executive Summary .................................1 mission-critical Linux and Windows environments. Introduction...............................................1 With the addition of an eight-processor model 420, Fujitsu’s PRIMEQUEST family Industry Standard, now offers Itanium-based servers that span the range from midrange to high end. but with a Unique Approach....................2 The PRIMEQUEST models complement Fujitsu’s SPARC/Solaris PRIMEPOWER systems in mission-critical environments. Currently available with Madison 9M PRIMEQUEST Family Overview ..............3 chips, the midrange PRIMEQUEST 420 joins the PRIMEQUEST 440 with 16 processors and the PRIMEQUEST 480, which scales up to 32 processors. PRIMEQUEST Configurations .................5 Data Mirroring ...........................................7 Employing standard Intel processors certainly should not imply that PRIMEQUEST is merely another Itanium-based platform. Quite to the contrary, Fujitsu has Flexible Partitioning .................................8
    [Show full text]
  • Product Brief: Intel® Atom™ Processor E3900 Series, Intel® Celeron
    Product brief Intel® IoT Technology Intel Atom®, Intel® Pentium®, and Intel® Celeron® Processors Achieving New Levels of CPU Performance, Fast Graphics and Media Processing, Image Processing, and Security The latest generation of Intel Atom®, Pentium®, and Celeron® processors empowers real-time computing in digital surveillance, new in-vehicle experiences, advancements in industrial and ofce automation, new solutions for retail and medical, and more. Meeting the demands of the rapidly growing Internet of Things The number of connected machines has grown by approximately 300 percent1 in recent years and is expected to continue to explode. By 2020, 330 billion devices will create 35 trillion GB of data annually,2 and will require greatly increased processing power at the edge in order to maintain viability. Intel is supporting this rapid development and the growing complexity of IoT infrastructures with the release of the new Intel Atom® processor E3900 series, Intel® Pentium® processor N4200, and Intel® Celeron® processor N3350. They deliver the ability to handle more tasks. From manufacturing machines that can see, to intelligent video systems that can analyze data, these new processors enable amazing new possibilities. Powerful edge intelligence for IoT These new Intel Atom, Pentium, and Celeron processors ofer enhanced processing power in compact, low-power packages. They are now available with a dual- or quad- core processor running at up to 2.5 GHz and memory speeds up to LPDDR4 2400. All of this performance resides in a compact fip chip ball grid array (FCBGA), utilizing 14 nm silicon technology, making it an excellent ft for a wide range of IoT applications when space and power are at a premium.
    [Show full text]
  • The Intel X86 Microarchitectures Map Version 2.2
    The Intel x86 Microarchitectures Map Version 2.2 P6 (1995, 0.50 to 0.35 μm) 8086 (1978, 3 µm) 80386 (1985, 1.5 to 1 µm) P5 (1993, 0.80 to 0.35 μm) NetBurst (2000 , 180 to 130 nm) Skylake (2015, 14 nm) Alternative Names: i686 Series: Alternative Names: iAPX 386, 386, i386 Alternative Names: Pentium, 80586, 586, i586 Alternative Names: Pentium 4, Pentium IV, P4 Alternative Names: SKL (Desktop and Mobile), SKX (Server) Series: Pentium Pro (used in desktops and servers) • 16-bit data bus: 8086 (iAPX Series: Series: Series: Series: • Variant: Klamath (1997, 0.35 μm) 86) • Desktop/Server: i386DX Desktop/Server: P5, P54C • Desktop: Willamette (180 nm) • Desktop: Desktop 6th Generation Core i5 (Skylake-S and Skylake-H) • Alternative Names: Pentium II, PII • 8-bit data bus: 8088 (iAPX • Desktop lower-performance: i386SX Desktop/Server higher-performance: P54CQS, P54CS • Desktop higher-performance: Northwood Pentium 4 (130 nm), Northwood B Pentium 4 HT (130 nm), • Desktop higher-performance: Desktop 6th Generation Core i7 (Skylake-S and Skylake-H), Desktop 7th Generation Core i7 X (Skylake-X), • Series: Klamath (used in desktops) 88) • Mobile: i386SL, 80376, i386EX, Mobile: P54C, P54LM Northwood C Pentium 4 HT (130 nm), Gallatin (Pentium 4 Extreme Edition 130 nm) Desktop 7th Generation Core i9 X (Skylake-X), Desktop 9th Generation Core i7 X (Skylake-X), Desktop 9th Generation Core i9 X (Skylake-X) • New instructions: Deschutes (1998, 0.25 to 0.18 μm) i386CXSA, i386SXSA, i386CXSB Compatibility: Pentium OverDrive • Desktop lower-performance: Willamette-128
    [Show full text]
  • AN1209 Motorola Burstram
    Order this document by AN1209/D AN1209 The Freescale BurstRAM Prepared by: James Garris This note introduces the MCM62486 32K x 9 Synchronous maintain synchronization with the i486 or other logic driving BurstRAM. The device was designed to provide a high-perfor- the cache. mance, secondary cache for the Intel i486 microprocessor and future microprocessors with burst protocol. Four of these USE WITH THE i486 PROCESSOR devices can supply a 128K byte direct-mapped bursting cache The 62486 requires an ASIC or discrete PAL type of cache with parity support. controller to work with the i486. This cache control logic must THE MCM62486 also include 8K x 16 of cache-tag comparator RAM and any other buffers needed for system operation. The 62486 is a synchronous device with input registers and Control signals are sourced as follows: K is driven by the . address counters surrounding a standard 32K x 9 FSRAM system clock (CLK); ADSP is an output from the micropro- . core. The additional circuitry in the periphery enables the cessor; and ADV, ADSC are generated from the cache control c memory to uniquely interface with the i486. Like the i486, the logic. The data bus and lower address bus may interface n directly with the 62486 or the address bus may be buffered to I timings are referenced to the rising edge of the clock (K). Sig- nals generated by the processor and control logic must be improve its drive to the rest of the system. A simple block dia- , r stable during all transitions of clock from low to high.
    [Show full text]
  • Agilent E2492E Probe Adapter for Intel. Pentium. III and Celeron
    Installation Guide Publication Number E2492-92007 December 1999 © Copyright Agilent Technologies, Inc. 1999 All Rights Reserved Agilent E2492E Probe Adapter for the Intel® Pentium® III and Celeron™ Processors Installation at a Glance This Installation Guide explains how to install Agilent Technologies, Inc. probe adapter for the Intel® Pentium® III or Celeron™ processors in the 370-pin PPGA package. The probe adapter provides a quick and reliable connection from a processor to the Agilent E2487C Analysis Probe. The analysis probe then connects to your Agilent logic analyzer for state analysis. Installation Overview • Remove the processor. • Install the probe adapter. • Connect the processor to the probe adapter. • Connect the probe adapter to the Agilent E2487C analysis probe. Installation 1 Remove the clip and heatsink from the processor on the target system. 2 Remove the processor from the socket on the target system. 3 Install the probe adapter on the target system. Ensure that the connector is fully seated. 4 Install the processor on the socket of the probe adapter. Ensure that the connector is fully seated. CAUTION: Bending the flexible cable beyond the minimum bend radius will shorten the life of the probe adapter. See the dimension diagram the end of this document for minimum bend radius. 5 Installation 5 Use the clip to attach the heatsink to the socket on the probe adapter. 6 Connect the probe adapter to the Agilent E2487C Analysis Probe The probe adapter has five high-density connectors, labeled Cable 1 through Cable 5. The Agilent E2487C Analysis Probe also has five high-density cabled connectors, labeled P1 through P5.
    [Show full text]