[TH] New AMD Side Channel Attacks Discovered, Impacts Zen Architecture - Page 2 - Overclock.net - An Overclocking Community
Forum Jump: 

[TH] New AMD Side Channel Attacks Discovered, Impacts Zen Architecture

Reply
 
Thread Tools
post #11 of 73 (permalink) Old 03-07-2020, 08:24 AM
New to Overclock.net
 
Schmuckley's Avatar
 
Join Date: Jul 2011
Location: FL
Posts: 14,913
Rep: 708 (Unique: 565)
Quote: Originally Posted by boot318 View Post
Intel's billions finally found something on AMD.




"The researchers were able to exploit the vulnerability via JavaScript run on Chrome and Firefox browsers."

Is this a AMD problem or browser problem?
Sounds like javascript problem. NoScript fixes it.

Seriously, malicious javascript sites have been going up since just before 2000.
Schmuckley is offline  
Sponsored Links
Advertisement
 
post #12 of 73 (permalink) Old 03-07-2020, 08:24 AM
sudo apt install sl
 
Join Date: Dec 2009
Posts: 6,361
Rep: 188 (Unique: 130)
Quote: Originally Posted by Schmuckley View Post
Ask me how much I care? Seriously. This is like that "Oh noees, there's an exploit in GeForce Experience" thread.

Show me an actual instance of the exploit working.

Pah! Tom'sHardware? Javascript in browsers? Well uh-duh!

This has been going on for 20 years, seriously.

Use Netscape Navigator, problem solved!

Or NoScript.

This is not a CPU exploit..not at all.

I wonder how much Intel bribed Tom's to print that load of hot bovine excrement.
It's a cache attack that can be exploited using JavaScript via a web browser. We'll see how quickly AMD addresses it.

You can read about it here: https://mlq.me/download/takeaway.pdf

Silent
(20 items)
CPU
Core i9 9900K... CoffeeTime! @ 5.1Ghz w/ 1.36v
Motherboard
Maximus VIII Formula
GPU
Titan RTX @ 2100Mhz/2075Mhz
RAM
TeamGroup Xtreem 32GB 3200Mhz CL15
Hard Drive
HP EX950 2TB
Hard Drive
Samsung 850 Evo 1TB
Hard Drive
Samsung 850 Evo 1TB
Power Supply
EVGA SuperNova 1200w P2
Cooling
EK Supremacy Full Copper Clean
Cooling
XSPC D5 Photon v2
Cooling
Black Ice Gen 2 GTX360 x2
Cooling
EK-Vector Radeon VII - Copper + Plexi
Case
Thermaltake Core X5 Tempered Glass Edition
Operating System
Clear Linux
Monitor
Acer XF270HUA
Keyboard
Cherry MX Board 6.0
Mouse
Logitech G600
Mouse
Alugraphics GamerArt
Audio
Definitive Technology Incline
Audio
SMSL M8A
▲ hide details ▲
WannaBeOCer is offline  
post #13 of 73 (permalink) Old 03-07-2020, 08:25 AM
New to Overclock.net
 
Schmuckley's Avatar
 
Join Date: Jul 2011
Location: FL
Posts: 14,913
Rep: 708 (Unique: 565)
Quote: Originally Posted by WannaBeOCer View Post
It's a cache attack that can be exploited using JavaScript via a web browser. We'll see how quickly AMD addresses it.

You can read about it here: https://mlq.me/download/takeaway.pdf
How do they get the IP to do that? NoScript stops all that, problem solved.

Bro, in 1998, the people I knew were the ones making the javascript upload clone sites, k?

Copy site, add javascript addition, find host and mimic orig site. This is NOT news.
Also it works on everything, even MACs

This isn't just some AMD-specific exploit, it's a javascript thing.

Last edited by Schmuckley; 03-07-2020 at 08:29 AM.
Schmuckley is offline  
Sponsored Links
Advertisement
 
post #14 of 73 (permalink) Old 03-07-2020, 08:38 AM
sudo apt install sl
 
Join Date: Dec 2009
Posts: 6,361
Rep: 188 (Unique: 130)
Quote: Originally Posted by Schmuckley View Post
How do they get the IP to do that? NoScript stops all that, problem solved.

Bro, in 1998, the people I knew were the ones making the javascript upload clone sites, k?

Copy site, add javascript addition, find host and mimic orig site. This is NOT news.
Also it works on everything, even MACs [IMG class=inlineimg]/forum/images/smilies/redface.gif[/IMG]

This isn't just some AMD-specific exploit, it's a javascript thing.
It's an AMD cache exploit, the news is right in front of you. Just takes a minute to read. Something I noticed people stopped doing on this site.

Quote:
To optimize the energy consumption and performance of their
CPUs, AMD introduced a way predictor for the L1-data (L1D) cache
to predict in which cache way a certain address is located. Conse-
quently, only this way is accessed, significantly reducing the power
consumption of the processor.

In this paper, we are the first to exploit the cache way predic-
tor. We reverse-engineered AMD’s L1D cache way predictor in
microarchitectures from 2011 to 2019, resulting in two new attack
techniques. With Collide+Probe, an attacker can monitor a vic-
tim’s memory accesses without knowledge of physical addresses
or shared memory when time-sharing a logical core. With Load+
Reload, we exploit the way predictor to obtain highly-accurate
memory-access traces of victims on the same physical core. While
Load+Reload relies on shared memory, it does not invalidate the
cache line, allowing stealthier attacks that do not induce any last-
level-cache evictions.

We evaluate our new side channel in different attack scenarios.
We demonstrate a covert channel with up to 588.9 kB/s, which we
also use in a Spectre attack to exfiltrate secret data from the kernel. Furthermore, we present a key-recovery attack from a vulnerable cryptographic implementation. We also show an entropy-reducing attack on ASLR of the kernel of a fully patched Linux system, the hypervisor, and our own address space from JavaScript. Finally, we propose countermeasures in software and hardware mitigating the presented attacks.

Silent
(20 items)
CPU
Core i9 9900K... CoffeeTime! @ 5.1Ghz w/ 1.36v
Motherboard
Maximus VIII Formula
GPU
Titan RTX @ 2100Mhz/2075Mhz
RAM
TeamGroup Xtreem 32GB 3200Mhz CL15
Hard Drive
HP EX950 2TB
Hard Drive
Samsung 850 Evo 1TB
Hard Drive
Samsung 850 Evo 1TB
Power Supply
EVGA SuperNova 1200w P2
Cooling
EK Supremacy Full Copper Clean
Cooling
XSPC D5 Photon v2
Cooling
Black Ice Gen 2 GTX360 x2
Cooling
EK-Vector Radeon VII - Copper + Plexi
Case
Thermaltake Core X5 Tempered Glass Edition
Operating System
Clear Linux
Monitor
Acer XF270HUA
Keyboard
Cherry MX Board 6.0
Mouse
Logitech G600
Mouse
Alugraphics GamerArt
Audio
Definitive Technology Incline
Audio
SMSL M8A
▲ hide details ▲
WannaBeOCer is offline  
post #15 of 73 (permalink) Old 03-07-2020, 08:45 AM
Robotic Chemist
 
Asmodian's Avatar
 
Join Date: Aug 2009
Location: San Jose, California
Posts: 2,668
Rep: 194 (Unique: 130)
Quote: Originally Posted by Schmuckley View Post
This isn't just some AMD-specific exploit, it's a javascript thing.
No. The researchers implemented a proof of concept in javascript but it is an issue with AMD's L1D cache predictor. This is a side channel attack similar to many of the recent Intel ones. Why you assume it is at all similar to making javascript malware infected clone sites in 1998 I have no idea. You seem to have just seen the word "javascript" and failed to read any further.
Asmodian is offline  
post #16 of 73 (permalink) Old 03-07-2020, 08:45 AM
u broke 666 rep :(
 
skupples's Avatar
 
Join Date: Apr 2012
Location: Fort Lauderdale
Posts: 23,499
Rep: 681 (Unique: 361)
dude says just use netscape.

R.I.P. Zawarudo, may you OC angels' wings in heaven.
If something appears too good to be true, it probably is.
Best R0ach Quote of all time : TLDR: Haswell might be the last legit gaming platform unless mice get their own non-USB interface on some newer architecture.
KAIHL Switches < CHERRY Switches, 10/10, blind taste test @ work.
skupples is offline  
post #17 of 73 (permalink) Old 03-07-2020, 09:06 AM
Not a linux lobbyist
 
rluker5's Avatar
 
Join Date: Feb 2014
Location: Wisconsin
Posts: 2,025
Rep: 55 (Unique: 42)
Problem solved!
Attached Thumbnails
Click image for larger version

Name:	Screenshot (60).jpg
Views:	44
Size:	94.5 KB
ID:	331252  


L5
(17 items)
Lea2
(11 items)
L7
(11 items)
CPU
5775c
Motherboard
Maximus VII Hero
GPU
Aorus 1080ti Waterforce
RAM
16 Gb Gskill Trident @ 2400,cas10,1.575v
RAM
8 Gb Gskill Trident @ 2400,cas10,1.575v
Hard Drive
1Tb Team ssd
Hard Drive
seagate barracuda 3T
Hard Drive
Optane 900p 480G OS
Optical Drive
Asus BW-16D1HT
Power Supply
EVGA Supernova 1300 G2
Cooling
Cooler Master MasterLiquid Pro 120 (cpu)
Cooling
2 140mm case fans, 2 120mm
Case
Fractal Design R4 (no window)
Operating System
W10 64 pro
Monitor
panasonic TC-58AX800U
Audio
Focal Elear, Nova 40, 598se, HE4xx, DT990pro w b.boost earpads
Audio
SoundbasterX AE-5, onboard
CPU
4770k
Motherboard
Asus Z87 Deluxe
GPU
Fury Nitro
RAM
8Gb klevv urbane 2133
Hard Drive
ROG Raidr 240Gb pcie
Hard Drive
1Tb WD blue
Power Supply
Pc Power&Cooling silencer Mk2 950w
Cooling
Deepcool Lucifer V2
Case
DIYPC P48-W
Operating System
W10 64 pro
Monitor
40"tv
CPU
4980hq
Motherboard
Asus H81T/CSM
RAM
8Gb 1600 samsung
Hard Drive
Samsung 850 evo 120gb
Power Supply
Skyvast 90w brick for hp pavilion something
Cooling
SilverStone Tek Super Slim
Case
SilverStone Tek PT13B
Operating System
W10 64 pro
Monitor
24" samsung 1080p
Keyboard
Logitech K400+
Other
Intel wifi ac card and noname antennas
▲ hide details ▲
rluker5 is offline  
post #18 of 73 (permalink) Old 03-07-2020, 09:12 AM
mfw
 
ToTheSun!'s Avatar
 
Join Date: Jul 2011
Location: Terra
Posts: 7,853
Rep: 467 (Unique: 223)
Quote: Originally Posted by Darren9 View Post
I got this feeling that AMD micro-code updates to fix exploits won't be quite as smooth experience for everyone as it was with Intel, we'll see though
And you say that based on what?

CPU
Intel 6700K
Motherboard
Asus Z170i Pro Gaming
GPU
Gigabyte 2070 Super Windforce OC
RAM
G.skill Trident Z 3200CL14 8+8
Hard Drive
Samsung 850 EVO 1TB
Hard Drive
Crucial M4 256GB
Power Supply
Corsair SF600
Cooling
Noctua NH C14S
Case
Fractal Design Core 500
Operating System
Windows 10 Education
Monitor
ViewSonic XG2703-GS
Keyboard
Vortex Race 3 RGB
Mouse
Glorious Odin
Mousepad
Gigabyte AMP500
Audio
Fiio E17K v1.0 + Beyerdynamic DT 1990 PRO (Dekoni pads)
▲ hide details ▲
ToTheSun! is offline  
post #19 of 73 (permalink) Old 03-07-2020, 10:16 AM
BOINC Cruncher
 
Diffident's Avatar
 
Join Date: Apr 2014
Location: Bawlmer, MD
Posts: 1,673
Rep: 103 (Unique: 70)
Quote: Originally Posted by rluker5 View Post
Problem solved!

Amateur. You should use w3m.


Click image for larger version

Name:	screen1.png
Views:	61
Size:	700.4 KB
ID:	331258

Team Boinc! - Forum Folding War Team
Gentoo Linux - Telemetry Free Since 1999!
Washington Capitals 2018 Stanley Cup Champions
Boinc Desktop
(15 items)
CrunchAholic
(10 items)
NAS
(7 items)
CPU
AMD Ryzen 7 1700X
Motherboard
ASRock X370 Taichi
GPU
AMD Radeon VII
RAM
HyperX Predator
Hard Drive
Samsung 970 EVOPlus
Power Supply
EVGA 850 G2
Cooling
Watercool Heatkiller IV PRO AM4 CPU Block
Cooling
EKWB Coolstream XE 240 Radiator
Cooling
EKWB Coolstream PE 360 Radiator
Cooling
Watercool Heatkiller 150mm Tube Res
Case
Thermaltake View 31 Tempered Glass RGB Edition
Operating System
Gentoo Linux
Monitor
Alienware AW3418DW
Keyboard
Coolermaster Masterkeys Pro S
Mouse
Roccat Kone EMP
CPU
Intel Xeon E5-2670
CPU
Intel Xeon E5-2670
Motherboard
Asrock Rack EP2C602
GPU
EVGA 1070ti FTW
GPU
EVGA 1070ti FTW
RAM
64 GBs Samsung M939B1K70CHD-CH9 PC3-10600R
Hard Drive
Samsung HD322HJ
Power Supply
Corsair AX1200
Case
Rosewill RSV-L4000
Operating System
Gentoo Linux
CPU
i3-4130T
Motherboard
GIGABYTE GA-H97N-WIFI
RAM
CORSAIR CMX16GX3M2A1600C11
Hard Drive
Western Digital Red 10 TB x3
Hard Drive
Western Digital Red 8 TB
Case
Fractal Design Node 804
Operating System
Gentoo Linux
▲ hide details ▲


Diffident is offline  
post #20 of 73 (permalink) Old 03-07-2020, 11:49 AM
New to Overclock.net
 
m4fox90's Avatar
 
Join Date: Sep 2017
Posts: 594
Rep: 15 (Unique: 13)
Why is it that every security "flaw" in AMD processors is discovered by people being paid by Intel?

Silence in the Snow
(12 items)
CPU
Ryzen 3900X
Motherboard
ASRock X370 Taichi
GPU
RTX 2080Ti Black Edition/Hydro Copper
RAM
G.Skill RipJaws V 16 GB
Hard Drive
Samsung 960 EVO 500GB
Hard Drive
2x WD 1 TB SSD
Power Supply
EVGA G3 1000W
Cooling
EK PE360 + Hardware Labs Black Ice GTS360
Cooling
EK Supremacy EVO
Case
Lian Li PC-O11 Dynamic
Operating System
Windows 10 Home
Monitor
Predator XB271HU
▲ hide details ▲
m4fox90 is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off