On 29/08/2020 09:14, The Natural Philosopher wrote:
> On 28/08/2020 13:38, Martin Gregorie wrote:
>> I'm really disapointed that there hasn't been more work done on both
>> hardware as OS design to make cross-process interference impossible and
>> to properly implement hardware protection rings to stop application-level
>> code clobbering the OS and the OS from clobbering to low-level drivers.
>
> Problem is look-ahead caching
>
> Modern processors use it to gain speed, but it blows away process
> compartmentalisation.
>
It doesn't blow it away; it makes a very very difficult and very very
ineffective attack theoretically possible.
I'm pretty certain none of these timing related speculative execution
vulnerabilities have ever been found being used "in the wild" by
malicious hackers.
--
Brian Gregory (in England).
--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | FidoUsenet Gateway (3:770/3)
|