modern programming is like,

"if you're using bongo.rs to parse http headers, you will need to also install bepis to get buffered read support. but please note that bepis switched to using sasquatch for parallel tokenization as of version 0.0.67, so you will need the bongo-sasquatch extension crate as well."

old-time programming is like,

"i made a typo in this function in 1993. theo de raadt got so angry he punched a wall when he saw it. for ABI compatibility reasons, we shan't fix the typo."

If you get lost in the multitude of side-channel protection tools, we have something for you: Brew your own obfuscated potion with Obelix 🧙.

In our @ieeessp
paper "Obelix: Mitigating Side-Channels Through Dynamic Obfuscation", we present a drop-in software solution to protect against a variety of side-channels at once.

How many is a variety and how do we brew this potion? Come and find out at Session 11 on Wednesday afternoon!

Paper link: https://computer.org/csdl/proceedings-article/sp/2024/313000a189/1WPcYic94rK
Joint work with Anja Rabich, @paetscan and Thomas Eisenbarth.

A newly discovered vulnerability baked into Apple’s M-series of chips allows attackers to extract secret keys from Macs when they perform widely used cryptographic operations, academic researchers have revealed in a paper published Thursday.

The flaw—a side channel allowing end-to-end key extractions when Apple chips run implementations of widely used cryptographic protocols—can’t be patched directly because it stems from the microarchitectural design of the silicon itself. Instead, it can only be mitigated by building defenses into third-party cryptographic software that could drastically degrade M-series performance when executing cryptographic operations, particularly on the earlier M1 and M2 generations. The vulnerability can be exploited when the targeted cryptographic operation and the malicious application with normal user system privileges run on the same CPU cluster.

https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/

Ever wondered what happens when side-channel resistant code meets a fancy prefetcher? Checkout our paper breaking constant time crypto on Apple CPUs.

https://gofetch.fail

Joint work with Boru Chen, @yingchenwang96, @PradyumnaShome, Chris Fletcher, @dkohlbre, @ricpacca

TikTok: Look! I discovered hot water melts frozen food faster!

Twitter: Look at this TikTok video showing how to defrost your food faster!

Yahoo news: Millions of Twitter users view TikTok video showing new life hack for melting frozen food!

Mastodon: Please read my academic white paper describing the impacts of public school system underfunding

Efficiency Report

#comic #webcomic #warandpeas #funny #comicstrip #comedy #lgbtq