Mastodawn

📬 WireTap: Sicherheitsfunktion der Intel SGX-Prozessoren überlistet
#ITSicherheit #GeorgiaTech #Intel #Interposer #PurdueUniversity #SoftwareGuardExtensions #TamperEvidentVerfahren #Wiretap https://sc.tarnkappe.info/58930c

WireTap: Sicherheitsfunktion der Intel SGX-Prozessoren überlistet

Wenn man vor Ort eine zusätzliche Hardware nutzt, kann man mit dem WireTap-Angriff die Sicherheitsfunktion der Intel SGX-Prozessoren umgehen.

TARNKAPPE.INFO

Show thread

Nemo_bis 🌈Feb 28, 2020

@loweel @filippodb @manuel Teniamo presente il punto di partenza, programmi #Microsoft che telefonano casa tutto il tempo e cellulari che non conoscono la crittazione nemmeno per sentito dire.

Quanto al server #Signal, va bene se ti piace la backdoor #Intel (#SoftwareGuardExtensions #SDX): https://signal.org/blog/private-contact-discovery/
Del resto il #TreacherousComputing è quasi ovunque.

Quanto all'autogestione c'è il governo francese che usa @matrix ma ci devi spendere dei soldi.

Technology preview: Private contact discovery for Signal

At Signal, we’ve been thinking about the difficulty of private contact discovery for a long time. We’ve been working on strategies to improve our current design, and today we’ve published a new private contact discovery service. Using this service, Signal clients will be able to efficiently and s...

Signal Messenger

ITSEC News Jan 28, 2020

New ‘CacheOut’ Attack Targets Intel CPUs - Researchers have release a new proof-of-concept attack targeting a new Intel Speculative-type bug ... more: https://threatpost.com/new-cacheout-attack-targets-intel-cpus/152323/ #microarchitecturaldatasampling #microarchitecturalattack #softwareguardextensions #speculativeexecutionbug #vulnerabilities #cve-2020-0549 #cpul1cache #zombieload #cacheout #fallout #hacks #intel #ridl #mds

New ‘CacheOut’ Attack Targets Intel CPUs

Researchers have release a new proof-of-concept attack targeting a new Intel Speculative-type bug called CacheOut present in most Intel CPUs.

Threatpost - English - Global - threatpost.com