[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] Intel hyper-threading security issues
From:       Georgi Guninski <guninski () guninski ! com>
Date:       2018-06-25 5:10:08
Message-ID: 20180625051008.kx4kdv72lvvudalt () sivokote ! iziade ! m$
[Download RAW message or body]

On Wed, Jun 20, 2018 at 12:48:55AM +0400, Loganaden Velvindron wrote:
> OpenBSD has gone ahead and disabled Intel Hyper threading with a
> fairly detailed comment about the reasons behind:
> 
> https://www.mail-archive.com/source-changes@openbsd.org/msg99141.html
>
According to journos Intel won't patch this:

https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/
Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we
shouldn't worry about
How to extract 256-bit signing keys with 99.8% success

Intel has, for now, no plans to specifically address a side-channel
vulnerability in its processors that can be potentially exploited by
malware to extract encryption keys and other sensitive info from
applications.
 
[prev in list] [next in list] [prev in thread] [next in thread]