Design an OS-Level Side-Channel Mitigation for a Multi-Tenant Cloud
Overview
What this challenge is about.
Read 3 canonical cache-side-channel papers (provided). For each attack: characterize the threat model, the required attacker capabilities, and the OS-level invariant that, if held, would prevent it. Design 3 mitigations using OS primitives: (1) physical-frame coloring at allocation time, (2) scheduler-level core-isolation per tenant, (3) Intel Cache Allocation Technology (CAT) profiles per VM. For each mitigation, quantify the expected performance overhead (cite published numbers; estimate where missing). Deliver a 10-page mitigation design + 4-week implementation roadmap the hypervisor team will execute against.
The Brief
What you'll do, and what you'll demonstrate.
Design and roadmap 3 OS-level mitigations against cache-side-channel attacks between co-tenant VMs in a hyperscale cloud.
Earning criteria — what you'll demonstrate
- Read and interpret cache-side-channel research papers
- Translate hardware-level threats into OS-level invariants
- Design mitigations that respect performance and scheduling constraints
- Write a design document that survives kernel-team review
Program Fit
Where this fits in your program.
Sharpens the same skills your degree expects you to demonstrate.
Skills
Skills you'll demonstrate.
Each one shows up on your verified credential.
Careers
Roles this prepares you for.
Real titles. Real skill bridges. Pick the one closest to your trajectory.
Career mappings coming soon.