CICI: UCSS: Securing GPU Computing for AI-Driven Scientific Workflows
University Of Rochester, Rochester NY
Investigators
Abstract
Enhancing memory safety in Graphics Processing Units (GPUs) is an essential requirement for secure Artificial Intelligence (AI) technologies. Scientific research increasingly depends on advanced AI technologies to drive breakthroughs, with GPUs serving as fundamental computational resources. Many scientific cyberinfrastructures (CIs) have made substantial investments in GPUs to support such efforts. While GPUs deliver considerable performance benefits, the security of GPU software, and memory safety in particular, has not received sufficient attention. Memory safety vulnerabilities such as buffer overflows can lead to serious consequences, including data corruption and unauthorized code execution. These vulnerabilities pose significant risks in shared scientific computing environments, where a single memory safety flaw can compromise the integrity of entire workflows and affect multiple researchers. This project addresses the urgent need to strengthen GPU software security against memory safety risks. The SecGPU4AI project enhances GPU memory safety through two complementary thrusts. The first thrust focuses on designing a fuzzing-based framework for detecting and repairing memory safety vulnerabilities in AI GPU toolkits commonly used in scientific computing. The second thrust focuses on developing lightweight, software-based run-time defenses (such as a secure GPU memory allocator) to detect and prevent common memory safety attacks. These defense mechanisms require no changes to GPU hardware or proprietary toolchains, and thus can be readily adopted in existing scientific computing environments. By improving GPU memory safety, this project considerably enhances the security and reliability of AI-driven research across a wide range of scientific domains. It also opens new research directions in GPU security methodologies that extend to other computing areas. The research team will open-source all developed tools and collaborate with CI providers to promote their adoption and real-world impact. This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
View original record on NSF Award Search →