Attack Steals Crypto Key From Co-Located Virtual Machines
Gunkerty Jeb writes "Side-channel attacks against cryptography keys have, until now, been limited to physical machines. Researchers have long made accurate determinations about crypto keys by studying anything from variations in power consumption to measuring how long it takes for a computation to complete. A team of researchers from the University of North Carolina, University of Wisconsin, and RSA Security has ramped up the stakes, having proved in controlled conditions (PDF) that it's possible to steal a crypto key from a virtual machine. The implications for sensitive transactions carried out on public cloud infrastructures could be severe should an attacker land his malicious virtual machine on the same physical host as the victim. Research has already been conducted on how to map a cloud infrastructure and identify where a target virtual machine is likely to be."
That programs running on the same hardware could see what another program was doing.
This one is a great big DUH!
If Pandora hosts systems there to stream music to me? I could care less.
How much less could you care? Please; I'm interested.
This is at best a tautology, at worst nonsense. "I could care less" tells us nothing about how much you care; You could be overjoyed at the news, in which case in being only slightly less excited you would be "caring less". "I couldn't care less" is unequivocally an expression of your lack of enthusiasm or interest in the subject, and in that sense informative.
Some will call me a pedant, but that's fine; Attacking me as a person doesn't detract from my argument.
Finally had enough. Come see us over at https://soylentnews.org/