Advertising

Welcome to SparkyLinux forums
Zapraszamy również na polsko-języczne Forum Linuxiarze.pl

Author Topic: spectre-ng Security  (Read 976 times)

Offline paxmark1

  • Hero Member
  • *****
  • Posts: 852
  • Karma: 4
  • https://forum.sparkylinux.org/index.php/topic,4614
spectre-ng Security
« on: May 04, 2018, 01:48:41 am »

https://www.heise.de/ct/artikel/Exclusive-Spectre-NG-Multiple-new-Intel-CPU-flaws-revealed-several-serious-4040648.html

This is an English trans. of a German source.  Picked it up on another forum

May 03 2018 

Quote
One of the Spectre-NG flaws simplifies attacks across system boundaries to such an extent that we estimate the threat potential to be significantly higher than with Spectre. Specifically, an attacker could launch exploit code in a virtual machine (VM) and attack the host system from there – the server of a cloud hoster, for example. Alternatively, it could attack the VMs of other customers running on the same server. Passwords and secret keys for secure data transmission are highly sought-after targets on cloud systems and are acutely endangered by this gap. Intel's Software Guard Extensions (SGX), which are designed to protect sensitive data on cloud servers, are also not Spectre-safe.

Search forum for "More info easier via inxi"    If requested -  no inxi, no help for you by  me.