Slashdot Mirror

← Back to Stories (view on slashdot.org)

Intel Announces Xeon Scalable Processor Family (hothardware.com)

Posted by BeauHD on from the family-comes-first dept.

MojoKid writes: Intel unveiled information regarding a new Xeon processor family today, some of which will be based on the company's Skylake-SP architecture. Intel will have four levels of Xeon processors that scale with respect to feature support and core counts. Intel is calling it the Xeon Scalable Family with Bronze, Silver, Gold and Platinum processors. Today, Xeon model names follow a fairly easy-to-understand format. Take for example the Xeon E5-4640 v4. "E5" in this case means that it is in the middle of Intel's current stack in terms of features and capabilities, where the "4" signifies use in a 4-socket system. Finally, the "v4" represents the architecture. With this change, a model like the one above would become Intel Xeon Gold 4640, as an example. Regardless, the chips will include support for AVX-512 instructions, QuickAssist and Volume Management Device (VMD) technologies that will take advantage of NVMe solid-state drives. The platform will also support complementary processing engines and IO technologies like Intel FPGAs, Xeon Phi accelerators and Silicon Photonics connectivity. Intel notes the processors will be arriving to market this summer.

2 of 52 comments (clear)

  1. Re:Why 4-digits by crow · · Score: 3, Interesting

    It depends on where you are. In my town, house numbers start in the single digits. This causes a problem if the street is extended in the wrong direction, as happens from time to time. In the town I grew up on, the streets are numbered as if they extended to the center of town, so houses between 1st and 2nd streets are in the 100s, but streets ten miles away have five-digit addresses (it's a large city). That works well, as you can often tell about where something is by the street number even if you've never heard of the street.

  2. Obligatory:Intel CPU Backdoor Report (May 1 2017) by Anonymous Coward · · Score: 2, Interesting

    The goal of this report is to make the existence of Intel CPU backdoors a common knowledge and provide information on backdoor removal.

    What we know about Intel CPU backdoors so far:

    TL;DR version

    Your Intel CPU and Chipset is running a backdoor as we speak.

    The backdoor hardware is inside the CPU/Bridge and the backdoor firmware (Intel Management Engine) is in the chipset flash memory.

    30C3 Intel ME live hack:
    @21m43s, keystrokes leaked from Intel ME above the OS, wireshark failed to detect packets.
    [Video Link] 30C3: Persistent, Stealthy, Remote-controlled Dedicated Hardware Malware
    [Quotes] Vortrag:
    "DAGGER exploits Intel's Manageability Engine (ME), that executes firmware code such as Intel's Active Management Technology (iAMT), as well as its OOB network channel."

    "the ME provides a perfect environment for undetectable sensitive data leakage on behalf of the attacker. Our presentation consists of three parts. The first part addresses how to find valuable data in the main memory of the host. The second part exploits the ME's OOB network channel to exfiltrate captured data to an external platform and to inject new attack code to target other interesting data structures available in the host runtime memory. The last part deals with the implementation of a covert network channel based on JitterBug."

    "We have recently improved DAGGER's capabilites to include support for 64-bit operating systems and a stealthy update mechanism to download new attack code."

    "To be more precise, we show how to conduct a DMA attack using Intel's Manageability Engine (ME)."

    "We can permanently monitor the keyboard buffer on both operating system targets."

    Backdoor removal:
    The backdoor firmware can be removed by following this guide using the me_cleaner script.
    Removal requires a Raspberry Pi (with GPIO pins) and a SOIC clip.

    Decoding Intel backdoors:
    The situation is out of control and the Libreboot/Coreboot community is looking for BIOS/Firmware experts to help with the Intel ME decoding effort.

    If you are skilled in these areas, download Intel ME firmwares from this collection and have a go at them, beware Intel is using a lot of counter measures to prevent their backdoors from being decoded (explained below).

    Useful links:
    The Intel ME subsystem can take over your machine, can't be audited
    REcon 2014 - Intel Management Engine Secrets
    Untrusting the CPU (33c3)
    Towards (reasonably) trustworthy x86 laptops
    30C3 To Protect And Infect - The militarization of the Internet
    30c3: To Protect And Infect Part 2 - Mass Surveillance Tools & Software

    1. Introduction, what is Intel ME

    Short version, from Intel staff:

    Re: What Intel CPUs lack Intel ME secondary processor?
    Amy_Intel Feb 8, 2016 9:27 AM

    The Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current Intel chipsets, I even checked wit