Intel Plans To Release Chips That Have Built-in Meltdown and Spectre Protections Later This Year (businessinsider.com)

← Back to Stories (view on slashdot.org)

Intel Plans To Release Chips That Have Built-in Meltdown and Spectre Protections Later This Year (businessinsider.com)

Posted by msmash on Friday January 26, 2018 @02:40AM from the next-up dept.

Intel plans to release chips that have built-in protections against the Spectre and Meltdown attacks later this year, company CEO Brian Krzanich said during company's quarterly earnings call this week. From a report: The company has "assigned some of our very best minds" to work on addressing the vulnerability that's exploited by those attacks, Krzanich said on a conference call following Intel's quarterly earnings announcement. That will result in "silicon-based" changes to the company's future chips, he said. "We've been working around clock" to address the vulnerability and attacks, Krzanich said. But, he added, "we're acutely aware we have more to do."

4 of 154 comments (clear)

Min score:

Reason:

Sort:

wtf article? by pak9rabid · 2018-01-26 03:20 · Score: 4, Informative

From the article:

The Meltdown attack also affects chips from AMD and those based on ARM designs and, in turn, nearly every PC, smartphone and tablet made in recent years.
What. the. FUCK! That couldn't be further from the truth. It's like Intel wrote this garbage piece of shit "article" for them.
1. Re:wtf article? by amorsen · 2018-01-26 04:06 · Score: 4, Informative
  
  No. No they have not. Meltdown is an Intel-only thing except possibly for a few exotic ARMs.
  Spectre affects everyone.
  
  --
  Finally! A year of moderation! Ready for 2019?
Re:Flush by amorsen · 2018-01-26 04:04 · Score: 3, Informative

Seems like there are two options. One is to do privilege checks before speculative code is executed. Another would be roll back the state of the cache on a protection fault.
The later one appeals actually. In a GP fault handler you could just invalidate the cache line to foil step 7. And you don't need to slow down the common case where speculative execution doesn't execute code which causes a GP fault.
That should work great on uniprocessor single-threaded. However it should be possible to let another core or hardware thread watch whether the cache line gets locked by carefully timing access, and that probably gives the adversary some of the same information. By the time the cache line is invalidated, the adversary already got what they wanted.
Even if I'm wrong and this attack is infeasible, you have only prevented Meltdown, not Spectre.
Spectre hits you when you try to execute untrusted code such as JavaScript in a VM. The VM runs at the same privilege level as the untrusted code, so the CPU does not have any protection boundaries to stop it from speculatively executing into the wrong area. There will be no protection fault, the CPU will just realize that oops the speculation was wrong and do the unwind. You will have to extend your proposal to do cache invalidation on all unwinds, not just protection faults.

--
Finally! A year of moderation! Ready for 2019?
Re:So in the end by TheRealMindChild · 2018-01-26 06:08 · Score: 3, Informative

If you have something to say, then say it. Don't make other people ask you what you are talking about.

--

"When life gives you lemons, don't make lemonade. Make life take the lemons back!" -- Cave Johnson