BT
rss
Development Follow 745 Followers

PortSmash is the Latest Side-Channel Attack Affecting Intel CPUs

by Sergio De Simone Follow 21 Followers on  Nov 04, 2018 1

Researchers have devised a new kind of timing attack to steal information from a different process running on the same core with SMT/hyper-threading enabled. By carefully measuring port contention delays when sending instructions to a shared core, the researchers could recover a private key from a different process. Intel CPUs are probably not the only ones affected.

Development Follow 745 Followers

Intel Discloses New Speculative Execution Vulnerability L1 Terminal Fault

by Sergio De Simone Follow 21 Followers on  Aug 17, 2018

Intel has disclosed a new speculative execution side channel vulnerability, dubbed L1 Terminal Fault, that could potentially leak information residing in the processor L1 data cache. Mitigations are already available, according to Intel, based on its latest Microcode Updates and corresponding updates to operating systems and hypervisor stacks.

Development Follow 745 Followers

NetBSD 8.0 Brings Spectre V2/V4, Meltdown, and Lazy FPU Mitigations, and More

by Sergio De Simone Follow 21 Followers on  Jul 24, 2018

NetBSD 8.0, a major release of the BSD-based OS providing portability across many architectures, brings mitigations for the Spectre V2/V4, Meltdown, and Lazy FPU vulnerabilities, along with many new features and bug fixes.

Development Follow 745 Followers

TLBleed Can Leak Cryptographic Keys from CPUs Snooping on TLBs

by Sergio De Simone Follow 21 Followers on  Jun 26, 2018

A new side-channel vulnerability affecting Intel processors, known as TLBleed, can leak information by snooping on Translation Look-aside Buffers (TLBs), writes VUsec security researcher Ben Gras.

BT