TLBleed

Short description: cryptographic side-channel attack on processors using simultaneous multithreading

TLBleed is a cryptographic side-channel attack that uses machine learning to exploit a timing side-channel via the translation look-aside buffer (TLB) on modern microprocessors that use simultaneous multithreading.^[1]^[2] (As of June 2018), the attack has only been demonstrated experimentally on Intel processors; it is speculated that other processors may also potentially be vulnerable to a variant of the attack, but no proof of concept has been demonstrated.^[3] Recent news from AMD indicates that their processors are not vulnerable to this attack.^[4]

The attack led to the OpenBSD project disabling simultaneous multithreading on Intel microprocessors.^[2]^[5] The OpenBSD project leader Theo de Raadt has stated that, while the attack could theoretically be addressed by preventing tasks with different security contexts from sharing physical cores, such a fix is currently impractical because of the complexity of the problem.^[2]

References

↑ Williams, Chris (2018-06-22). "Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about" (in en). https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/.
↑ ^2.0 ^2.1 ^2.2 Varghese, Sam (25 June 2018). "OpenBSD chief de Raadt says no easy fix for new Intel CPU bug" (in en-gb). https://www.itwire.com/security/83347-openbsd-chief-de-raadt-says-no-easy-fix-for-new-intel-cpu-bug.html.
↑ Halfacree, Gareth (June 25, 2018). "Researchers warn of TLBleed Hyper-Threading vuln" (in en-GB). http://www.bit-tech.net/news/tech/cpus/researchers-warn-of-tlbleed-hyper-threading-vuln/1/.
↑ Williams, Chris (2018-06-22). "Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about" (in en). https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/.
↑ Varghese, Sam (21 June 2018). "OpenBSD disables hyperthreading support for Intel CPUs due to likely data leaks" (in en-gb). https://www.itwire.com/security/83301-openbsd-disables-hyperthreading-support-for-intel-cpus-due-to-likely-data-leaks.html.

External links

Research Paper

0.00

(0 votes)

[1] Williams, Chris (2018-06-22). "Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about" (in en). https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/.

[varghese25june-2] 2.0 ^2.1 ^2.2 Varghese, Sam (25 June 2018). "OpenBSD chief de Raadt says no easy fix for new Intel CPU bug" (in en-gb). https://www.itwire.com/security/83347-openbsd-chief-de-raadt-says-no-easy-fix-for-new-intel-cpu-bug.html.

[3] Halfacree, Gareth (June 25, 2018). "Researchers warn of TLBleed Hyper-Threading vuln" (in en-GB). http://www.bit-tech.net/news/tech/cpus/researchers-warn-of-tlbleed-hyper-threading-vuln/1/.

[4] Williams, Chris (2018-06-22). "Meet TLBleed: A crypto-key-leaking CPU attack that Intel reckons we shouldn't worry about" (in en). https://www.theregister.co.uk/2018/06/22/intel_tlbleed_key_data_leak/.

[5] Varghese, Sam (21 June 2018). "OpenBSD disables hyperthreading support for Intel CPUs due to likely data leaks" (in en-gb). https://www.itwire.com/security/83301-openbsd-disables-hyperthreading-support-for-intel-cpus-due-to-likely-data-leaks.html.

[1]

[2]

[3]

[4]

[5]

Anonymous

Search

TLBleed

Namespaces

More

Page actions

See also

References

External links

Navigation

Navigation

Help

Translate

Wiki tools

Wiki tools

Anonymous

Search

TLBleed

See also

References

External links

Navigation

Wiki tools

Page tools

Other projects

Categories