Stories
Slash Boxes
Comments

SoylentNews is people

PortSmash: Hyper-Threading Flaw Affects Intel CPUs, Possibly Others

posted by martyb on Saturday November 03 2018, @05:48PM   Printer-friendly
from the hyperthreading-not-worth-the-hype? dept.

takyon writes:

Researchers Exploit Another Intel Hyper-Threading Flaw

Five academics from the Tampere University of Technology in Finland and Technical University of Havana, Cuba, have discovered yet another flaw in Intel's Hyper-Threading (HT) technology that attackers could use to steal users' encrypted data, as reported by ZDNet today.

Other CPUs that use Simultaneous Multithreading (SMT) technology may also be affected by the bug, but so far only Intel's HT has been confirmed as vulnerable. SMT and HT are technologies that allow two or multiple computing threads to be executed on the same CPU core. Intel enables two threads per physical core with its HT technology.

[...] The vulnerability, which the researchers nicknamed PortSmash, allows attackers to create a malicious process that can run alongside another legitimate process using HT's parallel thread running capabilities. This malicious process can then leak information about the legitimate process and allow the attacker to reconstruct the encrypted data processed inside the legitimate process.

The researchers also made available the proof of concept (PoC) for the attack, showing that it is indeed feasible and not just theoretical. This PoC can now also be re-purposed and modified by attackers to launch a real attack against owners of systems using Intel CPUs.

Also at Ars Technica and The Register.

Related: OpenBSD disables Intel's hyper-threading over CPU data leak fears
TLBleed Affects Intel Processors with Hyperthreading to Leak Encryption Keys, Non-Trivial to Exploit
OpenBSD Chief De Raadt Says No Easy Fix For New Intel CPU Bug
Intel 'Gags' Linux Distros From Revealing Performance Hit From Spectre Patches

Original Submission

 
This discussion has been archived. No new comments can be posted.
PortSmash: Hyper-Threading Flaw Affects Intel CPUs, Possibly Others | Log In/Create an Account | Top | 21 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Sunday November 04 2018, @03:37AM (2 children)

    by Anonymous Coward on Sunday November 04 2018, @03:37AM (#757500)

    The Amiga will rise again! If only because it's not subject to exploits (because no one's tried yet)!

  • (Score: 0) by Anonymous Coward on Sunday November 04 2018, @04:08PM (1 child)

    by Anonymous Coward on Sunday November 04 2018, @04:08PM (#757644)

    There's FPGA 68k implementations for the Amiga doing 100mhz out there. Vampire board is what they called I think.

    • (Score: 2) by looorg on Sunday November 04 2018, @04:32PM

      by looorg (578) on Sunday November 04 2018, @04:32PM (#757654)

      I'm still holding out for there to be a A4000 vampire like board that will take the new CPU, as far as I know the Vampire boards seem to be only for the A1200 and I can not recall reading any news about something about this for the larger machines -- but I could have missed it. When that comes I'm fairly tempted to bring the Amiga out again, fix all the hardware issues mine had when I put it away such as the clock battery is gone (I soldered it off the board before I put it in storage) and the PSU unit is bad.