arxiv 1801 01207 what is meltdown
play

arXiv:1801.01207 What is meltdown? Meltdown is a hardware exploit - PowerPoint PPT Presentation

Dec 10, 2022 •277 likes •369 views

arXiv:1801.01207 What is meltdown? Meltdown is a hardware exploit that allows unprivileged user to access system memory . Meltdown takes advantage of speculative execution , in particular its ability to meltdown security barrier

  1. arXiv:1801.01207

  2. What is meltdown? Meltdown is a hardware exploit that allows unprivileged user to access system memory . Meltdown takes advantage of “speculative execution” , in particular its ability to “meltdown” security barrier between user and system memory spaces on Intel processors.

  3. Why should I care? arXiv:1801.01207 I can read your saved password on Firefox or Chrome!

  4. How does meltdown work? Step 1: setup “covert channel” to monitor a “probe array”. cache hit Step 2: access system memory, raising a segmentation fault. segmentation fault speculative execution Step 3: use speculative execution to cache memory value. Step 4: use covert channel to read cached value.

  6. What to do? 1. Update your browsers! (e.g. Chrome, Firefox) 2. Update operating system – yes, that means Windows updates too 3. Wait for Intel’s microcode/firmware update - Intel’s current patch is buggy

  7. Performance Hit arXiv:1801.04329

  8. References: Google Project Zero broke the news Meltdown and Spectre is the official website Proof-of-principle code by paboldin

Recommend

SO(32) heterotic string theory Hajime Otsuka (Waseda U.) based on arXiv:1801.03684 [hep-th] JHEP

SO(32) heterotic string theory Hajime Otsuka (Waseda U.) based on arXiv:1801.03684 [hep-th] JHEP

Hypercharge flux in SO(32) heterotic string theory Hajime Otsuka (Waseda U.) based on arXiv:1801.03684 [hep-th] JHEP 05 (2018) 045 arXiv:1808.XXXXX [hep-th] (with K. Takemoto) PPP2018 @ YITP, Kyoto Why (super)string theory ? Quantum

673 views • 28 slides
Algorithms for the Separation of Orbit Closures of Matrices (arXiv:1801.02043) Harm Derksen

Algorithms for the Separation of Orbit Closures of Matrices (arXiv:1801.02043) Harm Derksen

Algorithms for the Separation of Orbit Closures of Matrices (arXiv:1801.02043) Harm Derksen (University of Michigan) joint work with Visu Makam (IAS) SIAM conference on Applied Algebraic Geometry July 12, 2019 Harm Derksen Algorithms for

639 views • 38 slides
Meltdown or "Holy Crap: How did we do this to ourselves" Abstract Meltdown

Meltdown or "Holy Crap: How did we do this to ourselves" Abstract Meltdown

Meltdown or "Holy Crap: How did we do this to ourselves" Abstract Meltdown exploits side effects of out-of-order execution to read arbitrary kernel- memory locations Breaks all security assumptions given by address space

159 views • 13 slides
Spectre and Meltdown Clifford Wolf q/Talk 2018-01-30 Spectre and Meltdown Spectre

Spectre and Meltdown Clifford Wolf q/Talk 2018-01-30 Spectre and Meltdown Spectre

Spectre and Meltdown Clifford Wolf q/Talk 2018-01-30 Spectre and Meltdown Spectre (CVE-2017-5753 and CVE-2017-5715) Is an architectural security bug that effects most modern processors with speculative execution It allows a program

441 views • 16 slides
Introductiontothelarge chargeexpansion Domenico Orlando Introduction Whos who S. Reffert

Introductiontothelarge chargeexpansion Domenico Orlando Introduction Whos who S. Reffert

INFN | Torino 17 June 2020 | SNS arXiv:1505.01537 , arXiv:1610.04495 , arXiv:1707.00711 , arXiv:1804.01535 , arXiv:1902.09542 , arXiv:1905.00026 , arXiv:1909.02571 , arXiv:1909.08642 , arXiv:2003.08396 , arXiv:2005.03021 and more to come

1.06k views • 89 slides
Spectre/Meltdown at eCG: Rebooting 80k cores Bruno Bompastor Adrian Joian Cloud Reliability Team

Spectre/Meltdown at eCG: Rebooting 80k cores Bruno Bompastor Adrian Joian Cloud Reliability Team

Spectre/Meltdown at eCG: Rebooting 80k cores Bruno Bompastor Adrian Joian Cloud Reliability Team 2018 10 Brands In Multiple Countries NL/DE Datacenters Spectre/Meltdown - Meltdown: melts security boundaries which are normally enforced by

305 views • 26 slides
Introductiontothelarge chargeexpansion Domenico Orlando Introduction Whos who S. Reffert

Introductiontothelarge chargeexpansion Domenico Orlando Introduction Whos who S. Reffert

INFN | Torino 15 September 2020 | Crete Center for Theoretical Physics arXiv:1505.01537 , arXiv:1610.04495 , arXiv:1707.00711 , arXiv:1804.01535 , arXiv:1902.09542 , arXiv:1905.00026 , arXiv:1909.02571 , arXiv:1909.08642 , arXiv:2003.08396 ,

1.75k views • 142 slides
Alargecharge torulestrongcoupling Domenico Orlando Introduction Whos who S. Reffert (AEC

Alargecharge torulestrongcoupling Domenico Orlando Introduction Whos who S. Reffert (AEC

INFN | Torino 8 Oct 2019 | Bridging perturbative and nonperturbative physics arXiv:1505.01537 , arXiv:1610.04495 , arXiv:1707.00711 , arXiv:1804.01535 , arXiv:1902.09542 , arXiv:1905.00026 , arXiv:1909.02571 , arXiv:1909.08642 and more to come

1.02k views • 62 slides
Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure

Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure

Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure Coding Universit degli Studi di Genova December 3rd, 2018 Overview Meltdown breaks memory isolation and allows a process to read the entire

335 views • 18 slides
Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure

Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure

Meltdown Overview of a security vulnerability Stefano Ottolenghi @ Binary Analysis and Secure Coding Universit degli Studi di Genova December 3rd, 2018 Overview Meltdown breaks memory isolation and allows a process to read the entire

526 views • 25 slides
Bipartitions from Algebras of Observables arXiv:1909.12851 w/ Oleg Kabernik (UBC) and Ashmeet

Bipartitions from Algebras of Observables arXiv:1909.12851 w/ Oleg Kabernik (UBC) and Ashmeet

Quantum State Reduction: Generalized Bipartitions from Algebras of Observables arXiv:1909.12851 w/ Oleg Kabernik (UBC) and Ashmeet Singh (Caltech) Jason Pollack jpollack@phas.ubc.ca Theory Group Seminar Prior Work: UT Austin 1801.09770 (OK)

979 views • 61 slides
CPU Side-Channel Attacks the Meltdown Attack Heechul Yun 1 This Week: Hardware Security

CPU Side-Channel Attacks the Meltdown Attack Heechul Yun 1 This Week: Hardware Security

CPU Side-Channel Attacks the Meltdown Attack Heechul Yun 1 This Week: Hardware Security Introduction Meltdown Papers Spectre Attacks: Exploiting Speculative Execution, IEEE Security and Privacy (S&P), 2019 (Dustin)

726 views • 44 slides
Meltdown & Spectre Attacks Overview An analogy CPU cache and use it as side channel

Meltdown & Spectre Attacks Overview An analogy CPU cache and use it as side channel

Meltdown & Spectre Attacks Overview An analogy CPU cache and use it as side channel Meltdown attack Spectre attack Microsoft Interview Question Stealing A Secret Secret: 7 Guard with Memory Eraser Restricted Room CPU

732 views • 30 slides
SWANBOURNE HISTORY GROUP INTERPRETATION OF THE SWANBOURNE CENSUSES 1801 TO 1911 (c) LJRodgers

SWANBOURNE HISTORY GROUP INTERPRETATION OF THE SWANBOURNE CENSUSES 1801 TO 1911 (c) LJRodgers

SWANBOURNE HISTORY GROUP INTERPRETATION OF THE SWANBOURNE CENSUSES 1801 TO 1911 (c) LJRodgers 23.11.12 What is a Census? Definition from the Office of National Statistics: Every ten years since 1801 the nation has set aside one day for

987 views • 21 slides
arXiv:1801.00084v1 [hep-ex] 30 Dec 2017 measurement will accumulate 21 times the BNL statistics

arXiv:1801.00084v1 [hep-ex] 30 Dec 2017 measurement will accumulate 21 times the BNL statistics

THE MUON g - 2 EXPERIMENT AT FERMILAB Wesley Gohn a for the Muon g -2 Collaboration University of Kentucky, Lexington, KY, USA Abstract. A new measurement of the anomalous magnetic moment of the muon, a ( g 2) / 2, will be performed at

153 views • 4 slides
Michael Duff Imperial College London based on [arXiv:1301.4176 arXiv:1309.0546 arXiv:1312.6523

Michael Duff Imperial College London based on [arXiv:1301.4176 arXiv:1309.0546 arXiv:1312.6523

Twin supergravities from ( Yang - Mills ) 2 Michael Duff Imperial College London based on [arXiv:1301.4176 arXiv:1309.0546 arXiv:1312.6523 arXiv:1402.4649 arXiv:1408.4434 arXiv:1602.08267 arXiv:1610.07192 A. Anastasiou, L. Borsten, M. J.

534 views • 31 slides
Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Jon Masters, Computer

Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Jon Masters, Computer

Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Jon Masters, Computer Architect, Red Hat, Inc. jcm@redhat.com | @jonmasters 2 Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Overview

2.11k views • 184 slides
Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Jon Masters, Computer

Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Jon Masters, Computer

Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Jon Masters, Computer Architect, Red Hat, Inc. jcm@redhat.com | @jonmasters 2 Exploiting modern microarchitectures: Meltdown, Spectre, and other attacks Overview

1.58k views • 140 slides
Transient Execution Attacks: Lessons from Spectre, Meltdown, and Foreshadow Jo Van Bulck

Transient Execution Attacks: Lessons from Spectre, Meltdown, and Foreshadow Jo Van Bulck

Transient Execution Attacks: Lessons from Spectre, Meltdown, and Foreshadow Jo Van Bulck imec-DistriNet, KU Leuven jo.vanbulck@cs.kuleuven.be jovanbulck ISSE Brussels, November 6, 2018 A primer on software security Secure

897 views • 58 slides
Reconstruction of the 1801 Discovery Orbit of Ceres via Contemporary Angles-Only Algorithms A

Reconstruction of the 1801 Discovery Orbit of Ceres via Contemporary Angles-Only Algorithms A

Dynamical Astronomy & Astrodynamics Reconstruction of the 1801 Discovery Orbit of Ceres via Contemporary Angles-Only Algorithms A Presentation to the General Meeting of the Denver Astronomical Society Friday, April 7, 2017 University of

284 views • 27 slides
Revere was founded by Paul Revere in 1801 We believe we are the oldest basic manufacturing

Revere was founded by Paul Revere in 1801 We believe we are the oldest basic manufacturing

Revere was founded by Paul Revere in 1801 We believe we are the oldest basic manufacturing company in the United States Revere does not produce RevereWare as that subsidiary was sold to Corning 25 years ago. Revere produces copper sheet,

1.28k views • 116 slides
Meltdown an and Sp Spectre vu vuln lnerabili litie ies th the ch chall llenge is is up!

Meltdown an and Sp Spectre vu vuln lnerabili litie ies th the ch chall llenge is is up!

2/21/2018 Meltdown an and Sp Spectre vu vuln lnerabili litie ies th the ch chall llenge is is up! Jos van Eijndhoven Synopsys {040CODERS.nl} Meetup 20180215 Jos van Eijndhoven Profession: IC design tools, Hobby: Processor design

545 views • 15 slides
MATTER BISPECTRUM BEYOND HORNDESKI ( ) based on 1801. 07885 SH , T. Kobayashi, S.

MATTER BISPECTRUM BEYOND HORNDESKI ( ) based on 1801. 07885 SH , T. Kobayashi, S.

MOGRA2018, August 8-10 ,2018 Shinichi Hirano Rikkyo U. MATTER BISPECTRUM BEYOND HORNDESKI ( ) based on 1801. 07885 SH , T. Kobayashi, S. Yokoyama (Nagoya U.), T. Hiroyuki (Nagoya U.) SH , T. Kobayashi, D. Yamauchi (Kanagawa U.),

659 views • 30 slides
The Entropy of a Hole in Space-Time Based on: arXiv:1305.0856, arXiv:1310.4204, arXiv:1406.nnnn

The Entropy of a Hole in Space-Time Based on: arXiv:1305.0856, arXiv:1310.4204, arXiv:1406.nnnn

The Entropy of a Hole in Space-Time Based on: arXiv:1305.0856, arXiv:1310.4204, arXiv:1406.nnnn with Vijay Balasubramanian, Borun Chowdhury, Bartek Czech and Michal Heller Jan de Boer, Amsterdam Related work in: arXiv:1403.3416 - Myers, Rao,

347 views • 34 slides

More recommend