[PT Security Blog] Intel x86 Root of Trust: loss of trust - Overclock.net - An Overclocking Community
Forum Jump: 

[PT Security Blog] Intel x86 Root of Trust: loss of trust

 
Thread Tools
post #1 of 10 (permalink) Old 03-05-2020, 04:18 PM - Thread Starter
New to Overclock.net
 
GanjaSMK's Avatar
 
Join Date: Mar 2010
Posts: 9,702
Rep: 628 (Unique: 467)
[PT Security Blog] Intel x86 Root of Trust: loss of trust

Link

http://blog.ptsecurity.com/2020/03/i...-of-trust.html

Interesting.

@drbaltazar posts
Quote:
Originally Posted by dave12 
I like your posts. Every time I see one I read it multiple times trying to discern meaning, ultimately failing, but enjoying the experience.
biggrin.gif
GanjaSMK is offline  
Sponsored Links
Advertisement
 
post #2 of 10 (permalink) Old 03-06-2020, 01:59 AM
Hardware Enthusiast
 
Kree's Avatar
 
Join Date: Sep 2013
Posts: 162
Rep: 6 (Unique: 5)
Intel can't catch a break at this point.

Quote:
Retired and Content
Kree is offline  
post #3 of 10 (permalink) Old 03-06-2020, 07:33 AM
u broke 666 rep :(
 
skupples's Avatar
 
Join Date: Apr 2012
Location: Fort Lauderdale
Posts: 23,570
Rep: 682 (Unique: 362)
how does one go about resolving this? or is this more of the same "totally boned until Core series goes EOL"? type stuff?

R.I.P. Zawarudo, may you OC angels' wings in heaven.
If something appears too good to be true, it probably is.
Best R0ach Quote of all time : TLDR: Haswell might be the last legit gaming platform unless mice get their own non-USB interface on some newer architecture.
KAIHL Switches < CHERRY Switches, 10/10, blind taste test @ work.
skupples is online now  
Sponsored Links
Advertisement
 
post #4 of 10 (permalink) Old 03-06-2020, 09:05 AM
Still kinda lost
 
Awsan's Avatar
 
Join Date: Apr 2011
Location: Trance city (Sana'a,Yemen)
Posts: 2,933
Rep: 116 (Unique: 86)
Intel can't close the Pandora box.

Godzilla HAF red
(18 items)
The Son Of Godzilla
(18 items)
CPU
Ryzen 3950x
Motherboard
MSI MEG UNIFY X570
GPU
EVGA RTX 2080 SUPER GAMING BLACK
RAM
G.Skill Trident NEO 32GB 3600mhz
Hard Drive
Sabrent Rocket 4.0 1TB
Hard Drive
WD blue 2tb SSD
Power Supply
Seasonic Prime Ultra Titanium 650w
Cooling
Nh-D15 Chromax
Case
CM H500
Operating System
Windows 10 pro
Monitor
LG24GM77-b
Keyboard
Corsair K95 platinum
Mouse
Logitech G502 SE
Mousepad
Red Gear
Audio
AD900x
Audio
Beyerdynamic Custom Studio
Audio
Schiit Modi 3
Audio
JDS ATOM
CPU
Intel Core i7 Extreme 2920XM/Intel Core i7 2860QM
Motherboard
P180HMx
GPU
AMD Radeon HD 6990M
GPU
AMD Radeon HD 6990M
RAM
Samsung
RAM
Samsung
RAM
Samsung
Hard Drive
Seagate 750GB 7200RPM
Optical Drive
Blu-Ray reader
Power Supply
300W+8 cells battery
Cooling
Sager Cooling + CM SF-19 USB 3.0
Case
SagerNP8180
Operating System
Windows 7 Ultimate X64
Monitor
18.4 1920x1080 Glossy 16:9 Plastic covered
Keyboard
Gigabyte wirless
Mouse
Gigabyte wireless
Mouse
Table
Audio
ultrasone pro 550 + FiiO E7++ on board 5.1 sound system
▲ hide details ▲
Awsan is offline  
post #5 of 10 (permalink) Old 03-06-2020, 05:41 PM
Expert pin bender
 
dagget3450's Avatar
 
Join Date: Jul 2014
Posts: 2,013
Rep: 163 (Unique: 93)
*crickets chirping*

GPU i currently own: R9 390/290x/290/390x/FuryX/Vega FE/RX Vega 64/ - CPUs: 5960x/R7 1700/X5650x2/E5 2863/e5 2670/R5 3600/FX 9590
Radeon Vega Frontier Edition Owner
dagget3450 is offline  
post #6 of 10 (permalink) Old 03-07-2020, 12:03 PM - Thread Starter
New to Overclock.net
 
GanjaSMK's Avatar
 
Join Date: Mar 2010
Posts: 9,702
Rep: 628 (Unique: 467)
I'm not sure enthusiasts here understand the basis of this. Took me a minute to read through the article and another couple of reads before it made sense to me.

@drbaltazar posts
Quote:
Originally Posted by dave12 
I like your posts. Every time I see one I read it multiple times trying to discern meaning, ultimately failing, but enjoying the experience.
biggrin.gif
GanjaSMK is offline  
post #7 of 10 (permalink) Old 03-07-2020, 12:17 PM
Not a linux lobbyist
 
rluker5's Avatar
 
Join Date: Feb 2014
Location: Wisconsin
Posts: 2,030
Rep: 55 (Unique: 42)
Quote: Originally Posted by GanjaSMK View Post
I'm not sure enthusiasts here understand the basis of this. Took me a minute to read through the article and another couple of reads before it made sense to me.
So is it that once the chipset keys get out, somebody will be able to make a custom piece of hardware with forged firmware signatures that will be able to tell the security engine to give it the native hardware encryption key for the hard drive. Then, once you reboot the computer the plugged in piece of hardware will do this and get the key. Then somebody will have to shut the pc down and get the key out of the nefarious hardware, your hard drive, then proceed to decrypt it so long as you were only using chipset encryption?

Glad I never went through the trouble of putting all of my passwords in an excel file.

L5
(17 items)
Lea2
(11 items)
L7
(11 items)
CPU
5775c
Motherboard
Maximus VII Hero
GPU
Aorus 1080ti Waterforce
RAM
16 Gb Gskill Trident @ 2400,cas10,1.575v
RAM
8 Gb Gskill Trident @ 2400,cas10,1.575v
Hard Drive
1Tb Team ssd
Hard Drive
seagate barracuda 3T
Hard Drive
Optane 900p 480G OS
Optical Drive
Asus BW-16D1HT
Power Supply
EVGA Supernova 1300 G2
Cooling
Cooler Master MasterLiquid Pro 120 (cpu)
Cooling
2 140mm case fans, 2 120mm
Case
Fractal Design R4 (no window)
Operating System
W10 64 pro
Monitor
panasonic TC-58AX800U
Audio
Focal Elear, Nova 40, 598se, HE4xx, DT990pro w b.boost earpads
Audio
SoundbasterX AE-5, onboard
CPU
4770k
Motherboard
Asus Z87 Deluxe
GPU
Fury Nitro
RAM
8Gb klevv urbane 2133
Hard Drive
ROG Raidr 240Gb pcie
Hard Drive
1Tb WD blue
Power Supply
Pc Power&Cooling silencer Mk2 950w
Cooling
Deepcool Lucifer V2
Case
DIYPC P48-W
Operating System
W10 64 pro
Monitor
40"tv
CPU
4980hq
Motherboard
Asus H81T/CSM
RAM
8Gb 1600 samsung
Hard Drive
Samsung 850 evo 120gb
Power Supply
Skyvast 90w brick for hp pavilion something
Cooling
SilverStone Tek Super Slim
Case
SilverStone Tek PT13B
Operating System
W10 64 pro
Monitor
24" samsung 1080p
Keyboard
Logitech K400+
Other
Intel wifi ac card and noname antennas
▲ hide details ▲
rluker5 is offline  
post #8 of 10 (permalink) Old 03-07-2020, 12:41 PM - Thread Starter
New to Overclock.net
 
GanjaSMK's Avatar
 
Join Date: Mar 2010
Posts: 9,702
Rep: 628 (Unique: 467)
The deepest issue lies in the chain of control. Basically all other devices (essentially your whole system beyond boot) lose the ability to 'trust' basic components of data moving from ROM to ram, beginning with resetting even at boot. Because the vulnerable code is prevalent to 'view' not only the initial 'trusted keys', but also newly generated keys (when trust is compromised, new key issued). The vulnerability lies in direct memory access being provided without the protection of CSME (Intel's secure computing), because as the researchers point out - it's disabled by default (allowing external access to DMA during short period).

Not super important for the end user, but if you're involved with anything requiring highly (very highly) sensitive data - the only patch is to replace hardware. Dunno how relevant this is for most users but I'd imagine top companies/financial institutions and/or government systems are most at risk (when is the average joe really at risk?).

@drbaltazar posts
Quote:
Originally Posted by dave12 
I like your posts. Every time I see one I read it multiple times trying to discern meaning, ultimately failing, but enjoying the experience.
biggrin.gif
GanjaSMK is offline  
post #9 of 10 (permalink) Old 03-07-2020, 01:08 PM
New to Overclock.net
 
8051's Avatar
 
Join Date: Apr 2014
Posts: 3,334
Rep: 30 (Unique: 21)
'Some of them might require local access; others need physical access.'
What's the difference? Does 'local access' mean the attacker must be logged into the system perhaps remotely?
8051 is offline  
post #10 of 10 (permalink) Old 03-09-2020, 06:34 PM
there is no easy way out
 
sumitlian's Avatar
 
Join Date: Jun 2011
Location: India
Posts: 3,241
Rep: 312 (Unique: 177)
Quote:
[Intel® vPro™ Platform Eligibility]: The Intel vPro® platform is a set of hardware and technologies used to build business computing endpoints with premium performance, built-in security, modern manageability and platform stability.

[Intel® Identity Protection Technology]: "Intel® Identity Protection Technology is a built-in security token technology that helps provide a simple, tamper-resistant method for protecting access to your online customer and business data from threats and fraud"

[Intel® AES New Instructions]: Intel® AES New Instructions (Intel® AES-NI) are a set of instructions that enable fast and secure data encryption and decryption.

[Secure Key]: Intel® Secure Key consists of a digital random number generator that creates truly random numbers to strengthen encryption algorithms.

[Intel® OS Guard]: "<classified security technology>" dayum!

[Intel® Trusted Execution Technology]: "Intel® Trusted Execution Technology for safer computing is a versatile set of hardware extensions to Intel® processors and chipsets that enhance the digital office platform with security capabilities such as measured launch and protected execution. It enables an environment where applications can run within their own space, protected from all other software on the system."

[Execute Disable Bit]: "Execute Disable Bit is a hardware-based security feature that can reduce exposure to viruses and malicious-code attacks and prevent harmful software from executing and propagating on the server or network."

[Anti-Theft Technology]: "Intel® Anti-Theft Technology (Intel® AT) helps keep your laptop safe and secure in the event that it’s ever lost or stolen."

Y'all mean all^ that is crap now LoL !

It just works
(13 items)
CPU
Intel Xeon E3-1246 V3 with TSX - The "debut" of Remote Attack Edition :D
Motherboard
Asus B85M-G Rev 1.01, BIOS version: Pre August-2014
GPU
Intel HD P4600/P4700
RAM
16 GB 1600 MHz DDR3
Hard Drive
Samsung 750 EVO
Hard Drive
1 TB + 500 GB + 500 GB
Power Supply
(8+ years old) Corsair TX850 V2
Cooling
(7+ years old) Corsair H70
Case
CoolerMaster Elite 430 Black
Operating System
Windows 10 64 bit
Monitor
Samsung A300N 20" 1600 x 900 60Hz 5ms 19Watt
Keyboard
(9+ years old) PS/2 Microsoft Wired Keyboard 500
Mouse
Shitty Logitech M170 mouse (scroller went kaput within a year)
▲ hide details ▲

Last edited by sumitlian; 03-09-2020 at 06:48 PM.
sumitlian is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off