Gr33nJ3ll0 - Slashdot User

Submission + - Researchers automate Spectre exploits, find additional side-channel

Submitted by ffkom on Thursday February 15, 2018 @05:54PM

ffkom writes: In a new paper MeltdownPrime and SpectrePrime: Automatically-Synthesized Attacks Exploiting Invalidation-Based Coherence Protocols researchers describe an automated tool to write exploit code for Spectre-type attacks, tailored to different CPU architectures.

While using their tool, they also identified another side-channel that can be used for a new Spectre-variant they call "SpectrePrime": Instead of using speculative reads to fill caches, they use speculative writes that cause detectable changes to cache states, even when ultimately not executed.

In other news, one of the original Spectre researchers found Microsoft's compiler changes to mitigate Spectre type-1 attacks to be largely ineffective.

Comment Re:damages (Score 1) 236

by Gr33nJ3ll0 on Saturday March 19, 2016 @04:05PM (#51733113) Attached to: Jury Orders Gawker To Pay $115 Million To Hulk Hogan In Sex Tape Lawsuit

Those "racist comments" were released in the video, which resulted in the loss of said job. Whatever he was making before, he's not making now, because of the video.

Comment Re:They had a warrant... (Score 3, Informative) 138

by Gr33nJ3ll0 on Wednesday January 06, 2016 @01:56PM (#51249789) Attached to: An FBI Hacking Campaign Targeted Over a Thousand Computers

They took over a known child pornography site, and continued to operate it. They used an existing service (not set up a new one) and monitored existing users (nothing about enticing new ones). I don't see this as being hugely different from sitting outside an business known for selling drugs, and writing down the info of everybody who goes in, or tapping the lines, and recording phone numbers. Further they got a warrant to do exactly that.

Comment Breakin' the law, breakin' the law (Score 2) 410

by Gr33nJ3ll0 on Tuesday December 29, 2015 @12:20PM (#51202401) Attached to: Drone Ban Extends 30 Miles Around DC, Per FAA

Seems likely the only thing this is going to do is make a lot of people law breakers.

Comment Re:I'm 8 hours in (Score 5, Funny) 367

by Gr33nJ3ll0 on Tuesday November 10, 2015 @04:43PM (#50904087) Attached to: "Fallout 4" Release Raises Questions About Reviews of Buggy Games

Either way it's going to be a bunch of crazies waving things around and talking about the end of life as we know it!

Comment Re:Privacy (Score 1) 279

by Gr33nJ3ll0 on Monday August 03, 2015 @04:28PM (#50243273) Attached to: Inside the Failure of Google+

Leaving on the lid undermines the idea that the frog is making a choice to stay in the pot.

Comment Re:Why the Secret Service did what they did. (Score 1) 111

by Gr33nJ3ll0 on Monday June 29, 2015 @02:38PM (#50013451) Attached to: Interviews: Ask Steve Jackson About Designing Games

Slight correction: Steve Jackson Game's line editor was also talking to a number of known hackers. Still REALLY stupid, but a little less stupid than just talking to a reporter.

Comment New Autoduel? (Score 1) 111

by Gr33nJ3ll0 on Monday June 29, 2015 @02:37PM (#50013443) Attached to: Interviews: Ask Steve Jackson About Designing Games

Autoduel on the Apple IIe was my gateway in to a lifetime of joyous experiences involving a number of geeky board games and models. First was Car Wars, followed by Battletech, Warhammer 40K, and so on. I've always loved Car Wars, but it really feels like the complex physics and movement mechanics in the game can best be simulated via the computer. Have you had any success getting modern video game companies interested in doing a new version? PS. Had the honor of meeting you at a convention about 10 years ago, it was a real treat, nice to find out that some of your heroes are pretty decent folks in real life.

Comment Re:bundle (Score 1) 212

by Gr33nJ3ll0 on Thursday June 11, 2015 @10:13PM (#49895817) Attached to: Ask Toolbar Now Considered Malware By Microsoft

It's not far wrong. GWT is a plague, even if it's not technically malware per se.

Comment Re:Fuelless (Score 2) 265

by Gr33nJ3ll0 on Monday June 01, 2015 @10:38PM (#49819593) Attached to: Fuel Free Spacecrafts Using Graphene

I hear there are DnD forums on the internet.....

Comment Re:Not surprised (Score 4, Informative) 311

by Gr33nJ3ll0 on Wednesday February 25, 2015 @11:57PM (#49134109) Attached to: Reddit Imposes Ban On Sexual Content Posted Without Permission

The Free Speech provision of the constitution covers government, not private, censorship. Further, you've never been guaranteed freedom from the consequences of said speech, like having it removed because it's unpopular.

Comment Re:Unequal application of the law (Score 1) 176

by Gr33nJ3ll0 on Thursday February 12, 2015 @07:36PM (#49043125) Attached to: EFF: Hundreds of S. Carolina Prisoners Sent To Solitary For Social Media Use

They already do: http://www.nytimes.com/2015/02...

Comment Re:oh boy! (Score 4, Funny) 253

by Gr33nJ3ll0 on Tuesday November 04, 2014 @01:33PM (#48311137) Attached to: Tech Recruiters Defend 'Blacklists,' Lack of Feedback, Screening Techniques

Hmmm replies to a post about how the grandparent doesn't have DB experience with a DB joke. Sure you're not a recruiter? :)

Comment Re:Next step - beer! (Score 1) 308

by Gr33nJ3ll0 on Wednesday September 24, 2014 @05:05PM (#47987977) Attached to: Irish Girls Win Google Science Fair With Astonishing Crop Yield Breakthrough

Budweiser. Not strictly a "rice" beer, but it's definitely one of the adjuncts.

Comment Re:Startup? (Score 1) 92

by Gr33nJ3ll0 on Friday July 11, 2014 @10:45PM (#47436305) Attached to: Lyft's New York Launch Halted By Restraining Order

When it's left the cute and precious stage?

Slashdot Top Deals