• Welcome to the new Internet Infidels Discussion Board, formerly Talk Freethought.

New CPU security vulnerability: PortSmash

Underseer said:
https://www.zdnet.com/article/intel-cpus-impacted-by-new-portsmash-side-channel-vulnerability/

Researches recommend abandoning SMT (simultaneous multithreading) entirely. Ouch.
Click to expand...

Or perhaps IaaS isn't such a great idea.

Running stuff on your own, secured, hardware would seem to almost completely mitigate this risk - or at least, it gives black hats the headache of getting their malware into your environment. These kinds of side-channel attacks are really only practical when attackers can rent CPU time on the same hardware as their victims.

There's no such thing as 'the cloud' - it's just somebody else's computer.
 
bilby said:
Underseer said:
https://www.zdnet.com/article/intel-cpus-impacted-by-new-portsmash-side-channel-vulnerability/

Researches recommend abandoning SMT (simultaneous multithreading) entirely. Ouch.
Click to expand...

Or perhaps IaaS isn't such a great idea.

Running stuff on your own, secured, hardware would seem to almost completely mitigate this risk - or at least, it gives black hats the headache of getting their malware into your environment. These kinds of side-channel attacks are really only practical when attackers can rent CPU time on the same hardware as their victims.

There's no such thing as 'the cloud' - it's just somebody else's computer.
Click to expand...

Correction: "the cloud" is someone else's computers. Plural. :p :D
 
bilby said:
Underseer said:
https://www.zdnet.com/article/intel-cpus-impacted-by-new-portsmash-side-channel-vulnerability/

Researches recommend abandoning SMT (simultaneous multithreading) entirely. Ouch.
Click to expand...

Or perhaps IaaS isn't such a great idea.

Running stuff on your own, secured, hardware would seem to almost completely mitigate this risk - or at least, it gives black hats the headache of getting their malware into your environment. These kinds of side-channel attacks are really only practical when attackers can rent CPU time on the same hardware as their victims.

There's no such thing as 'the cloud' - it's just somebody else's computer.
Click to expand...
No, not gonna work. Every time you run an app on your smart phone or even visit a website you are renting your CPU to someone.
Virtualization/sandboxing is a must today. And all these side channel attacks (Spectre, Meltdown, L1TF and now PortSmash) are killing it.

PortSmash is different from previous shit because it does not rely on cache side channel. It relies on SMT when two threads running on the same core affect each other timing, SMT is fundamentally insecure and must die.
 
bilby said:
Tigers! said:
And I had just worked out Spectre.
Click to expand...

The Special Executive for Counterintelligence, Terrorism, Revenge and Extortion? They haven't been much of a threat since 007 killed Blofeld in Diamonds are Forever.
Click to expand...

h1A4D603F
 
You must log in or register to reply here.
Back
Top Bottom