It appears you have not yet registered with our community. To register please click here...

 
Go Back [M] > Madshrimps > WebNews
Intelís Hyper-Threading Technology May Compromise Security Intelís Hyper-Threading Technology May Compromise Security
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read


Intelís Hyper-Threading Technology May Compromise Security
Reply
 
Thread Tools
Old 14th May 2005, 17:42   #1
Madshrimp
 
jmke's Avatar
 
Join Date: May 2002
Location: 7090/Belgium
Posts: 78,752
jmke has disabled reputation
Default Intelís Hyper-Threading Technology May Compromise Security

Intelís Hyper-Threading may be useful for enhancing performance, but it may also compromise security in some cases, particularly in case of servers, claims a researcher from Canada. Fortunately, it seems that patches for operating systems can correct the issue.

On Intel Pentium 4 with Hyper-Threading processor the two threads being executed on each processor share more than the execution units, but also they share access to the memory caches. Caches have already been demonstrated to be cryptographically dangerous: many implementations of AES are subject to timing attacks arising from the non-constancy of S-box lookup timings. However, having caches shared between threads provides a vastly more dangerous avenue of attack, claims Colin Percival, a researcher who has spent about half a year investigating the matter.

According to a document released Friday, this shared access to memory caches pro-vides not only an easily used high bandwidth covert channel between threads, but also permits a malicious thread (operating, in theory, with limited privileges) to monitor the execution of another thread, allowing in many cases for theft of cryptographic keys.

The security flaw hardly affects desktop users, but server administrators should pay attention to the situation. It is also unclear whether sharing of memory caches between threads may confront security within systems running dual-core processors.

The author provides some suggestions to processor designers, operating system vendors, and the authors of cryptographic software, of how this attack could be mitigated or eliminated entirely.

Intelís reaction on the allegations was unavailable at press time.

http://www.xbitlabs.com/news/cpu/dis...513024834.html
__________________
jmke is offline   Reply With Quote
Reply


Similar Threads
Thread Thread Starter Forum Replies Last Post
Compro Technology to unveil a new line of IP Security products at SecuTech jmke WebNews 0 13th April 2010 19:20
NVIDIA Brings SLI Technology to Intel Bloomfield CPU Platforms jmke WebNews 1 14th July 2008 23:13
OCZ Technology Group Acquires Renowned System Builder, Hypersonic PC jmke WebNews 1 26th October 2007 14:08
Kingston Technology Rolls Out DDR3 Memory jmke WebNews 2 12th June 2007 09:24
AMD Preps "Presidio", a Chip Security Technology jmke WebNews 0 23rd September 2004 00:42
Intel Advances Intel Centrino Mobile Technology with New Wireless Capabilities Sidney WebNews 0 27th August 2004 07:52
NVIDIA and AMD Deliver Improved Security to Protect the PC Desktop Sidney WebNews 0 3rd June 2004 05:46
HP and Microsoft Expand Security Solutions Portfolio Sidney WebNews 0 25th May 2004 07:28
NVIDIAís Firewall Technology Approved by Security Firms jmke WebNews 0 7th May 2004 12:24
AMD AND microsoft to provide customers new security technology jmke WebNews 0 29th February 2004 14:22

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


All times are GMT +1. The time now is 18:21.


Powered by vBulletin® - Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO