Security vulnerabilities in computer hardware

7 thoughts on “Security vulnerabilities in computer hardware”

1. And so much wireless traffic to attack these days. wifi networks. Cell networks. Keycards and fobs

2. Ever since Meltdown and Spectre were disclosed, Intel’s various customers have been asking how long it would take for hardware fixes to these problems to ship. The fixes will deploy with Cascade Lake, Intel’s next server platform due later this year, but the company is finally lifting the lid on some of those improvements and security enhancements at Hot Chips this week.

   One major concern? Putting back the performance that previous solutions have lost as a result of Meltdown and Spectre. It’s hard to quantify exactly what this looks like, because the impact tends to be extremely workload-dependent. But Intel’s guidance has been in the 5-10 percent range, depending on workload and platform, and with the understanding that older CPUs were sometimes hit harder than newer ones. Intel wasn’t willing to speak to exactly what kind of uplift users should expect, but Lisa Spelman, VP of Intel’s Data Center Group, told AnandTech that the new hardware solutions would have an “impact” on the performance hit from mitigation, and that overall performance would improve at the platform level regardless. Variant 1 will still require software-level protections, while Variant 2 (that’s the “classic” Spectre attack) will require a mixture of hardware and software protection. Variant 3 (Meltdown) will be blocked in hardware, 3a (discovered by ARM) patched via firmware, with Variant 5 (Foreshadow) also patched in hardware.

   https://tech.slashdot.org/story/18/08/21/2148257/intel-details-cascade-lake-hardware-mitigations-for-meltdown-spectre

3. Intel’s Whiskey Lake Brings In-Silicon Meltdown and Foreshadow Fixes

4. New Plundervolt Attack Impacts Intel Desktop, Server, and Mobile CPUs

   Academics from three universities across Europe have disclosed today a new attack that impacts the integrity of data stored inside Intel SGX, a highly-secured area of Intel CPUs. The attack, which researchers have named Plundervolt, exploits the interface through which an operating system can control an Intel processor’s voltage and frequency — the same interface that allows gamers to overclock their CPUs. Academics say they discovered that by tinkering with the amount of voltage and frequency a CPU receives, they can alter bits inside SGX to cause errors that can be exploited at a later point after the data has left the security of the SGX enclave. They say Plundervolt can be used to recover encryption keys or introduce bugs in previously secure software. Intel desktop, server, and mobile CPUs are impacted. A full list of vulnerable CPUs is available here. Intel has also released microcode (CPU firmware) and BIOS updates today that address the Plundervolt attack [by allowing users to disable the energy management interface at the source of the attack, if not needed].

5. AMD Zen 3 CPUs Vulnerable To Spectre-like Attacks via PSF Feature – Slashdot

   https://it.slashdot.org/story/21/04/02/1721241/amd-zen-3-cpus-vulnerable-to-spectre-like-attacks-via-psf-feature

6. New Micro-Op Cache Vulnerability Evades All Previous Fixes For Spectre-Like Attacks – Slashdot

   https://it.slashdot.org/story/21/05/04/0117206/new-micro-op-cache-vulnerability-evades-all-previous-fixes-for-spectre-like-attacks

7. DDR4 memory protections are broken wide open by new Rowhammer technique

   Researchers build “fuzzer” that supercharges potentially serious bitflipping exploits.

   https://arstechnica.com/gadgets/2021/11/ddr4-memory-is-even-more-susceptible-to-rowhammer-attacks-than-anyone-thought/