undefined | Better HN

0 pointstw045y ago0 comments

Process didn’t cause all the security holes implemented as performance hacks, architecture did. AMD caught up through architecture, process was just icing on the cake.

0 comments

etaioinshrdlu5y ago

No one thought of speculative execution and hypertheading as performance hacks until the last few years. They were brilliant techniques. They still are, they just were found to have a cost. They are still used now but more carefully.

Intel Management Engine and SGX on the other hand, are basically user-hostile parts of the hardware, with some bugs mixed in.

wolfgke5y ago

> No one thought of speculative execution and hypertheading as performance hacks until the last few years.

"Everybody" who has some knowledge in security (espcially with respect to side channels) knew from beginning that these CPU features were a ticking time bomb in terms of potential side channels.

What was unclear was how this (at this time played down by CPU vendors) potential threat could be used to create real attacks.

Going from potential threat (that "everybody" knew about) to real attack is the central achievement of the authors of the Spectre and Meltdown attacks (and their successors).

legulere5y ago

That’s not the impression that I got. Research on side channels were basically limited to timing side channels in cryptography. Everything else was not seen as practically exploitable.

1 more reply

majewsky5y ago

ME is exactly what Intel's data center customers want. It's only present in consumer CPUs because it doesn't scale to have separate ME and non-ME SKUs.

j / k navigate · click thread line to collapse