Comment Re:Link to original paper (Score 2) 134
S/He could be complexly filigreed and still a douche.
S/He could be complexly filigreed and still a douche.
Yes, but it cannot observe what data from other processes is moving out of the cache The attacking process already has to know what bits the other process might have in the cache that they are attempting to time. The cache side-channel attacks are using statistical techniques... in artificially constructed scenarios: where only one other process has shared data you want to do a timing attack against.
Well yeah, that's kind of what the whole paper is about - the fact that they can analyze cache behavior to detect network and mouse activity on the system.
It's also $40 cheaper, which translates into a savings of > 25% of the device price.
You want Ubuntu on the "non-crippled" version? Good news: If you are willing to pay the additional $40, you ought to be able to install Ubuntu because the same hardware (minus some RAM/storage) has already been setup to run Ubuntu.
Is it the same hardware? This implies that it's not identical: The Ubuntu version of the Compute Stick has as a similar CPU -- if the CPU is different, how much of the rest of the chipset is different?
Does that implies that AMD CPUs are also 'vulnerable'?
RTFA:
It should be noted that the AMD cache
micro-architecture is exclusive, and thus the attacks described
in this report are not immediately applicable to
that platform
How is having your browser fail to work on many websites "FTW?"
Because if you want to ensure your security and privacy, you shouldn't use the web.
They cant even describe what happens.
" Once there, the software inside the bogus content launches a program that manipulates how data moves in and out of a victim PC’s cache"
Uh, if the website can launch programs to manipulate your CPU cache, that's a problem.
I suspect this is the old "set up a webgl context, read back a framebuffer, maybe you will see some old shit in the framebuffer" attack that Microsoft used to attack WebGL back in the day.
Sounds like typical OMG COMPUTERS!!!!!!! from the business crowd.
God how I wish everyone with an MBA would just get the fuck out of my way when I have grownup work to do.
If you understand the CPU architecture, any program that can control what happens within its address space can manipulate data moving in and out of the CPU cache.
For the last 24 years: LINUX ISN'T STUPID BLOATWARE! IT RUNS GREAT ON ANY HARDWARE!!!
Hardware maker in 2015: OK, you're right. Here ya go.
Fanboys: OMG!! CRIPPLED HARDWARE!!
It's still a valid complaint -- why give the Ubuntu device half the ram and 1/4 the storage? Even if Ubuntu *requires* less resources than Windows, the applications that people want to run may not. Chrome, in particular, seems to grow to consume all of my RAM whether I run it on my old 2GB laptop or my 16GB desktop. And the Windows device has 19GB of usable storage -- more than 3 times the total amount of storage on the Ubuntu stick, Ubuntu users store data too, especially on a device well suited to be a media player.
The SUV class of vehicle only exists because it was a loophole in the CAFE standards.
False. The SUV, although not by that name, predates the 1978 CAFE. Examples: Ford Bronco, International Scout, International travelall, Chevy/GMC Suburban, Chevy Blazer, Range Rover...
Had the North capitulated to the demands of the South, would the US still be a nation with slavery?
No, the the USA would have abolished slavery (whether through amendment or in each state) and the CSA would have abolished it sometime during the industrial revolution.
"Look! There! Evil!.. pure and simple, total evil from the Eighth Dimension!" -- Buckaroo Banzai