Meltdown and Specter: What Do They Hide About Vulnerabilities?

Experts on processor security, including one referred to paper of Meltdown, are reported to disagree as to whether the solution to Specter's vulnerability requires modifications to the hardware or whether software updates can resolve the issue.

Meltdown's vulnerability could be the focus of future malware attacking processor operations even in hibernated systems, according to experts.Spectre

"The theory of Specter and Meltdown is hard to understand," said Anders Fogh, a security researcher at G-Data and an expert in the field of processor security. “If it was used in the past, it would only be in advanced attacks. But now that the , we are very likely to see Meltdown-based malware attacks relatively quickly.”

Meltdown - like Specter - is a flaw that allows information to be disclosed, but by itself is not suitable for some remote code execution. So the researchers' concern is about future combined attacks with other malware, which will aim to intercept passwords and cryptographic credentials from unpatched systems.

The Meltdown exploit is easy to pull off, but relatively easy to fix, while Spectre, by all accounts, makes things more difficult. Daniel Genkin, a postdoctoral researcher at of Pennsylvania and the University of Maryland, he said in that revealed the vulnerabilities, that a permanent patch against Specter requires a hardware redesign.

Anders Fogh of G-Data questioned Genkin's point of view, indicating to the Registry that the repairs that have already been released increase the difficulty of such an attack.

"Withdrawal of processors is not possible anyway," he said. "The next step is to convince our customers to install the patches."

With Fogh's logic, however, those who have the necessary knowledge (see intelligence services) could find out how to exploit the vulnerability.

On the other hand, Werner Haas, a representative of Cyberus Technology and a member of one of the three independent teams that discovered and reported Meltdown, said that achieving a comprehensive protection against Specter is very simple and may involve an "ongoing process" with software fixes and hardware modifications.

"The Specter scenario is not that simple, as cross-application attacks are unlikely without even OS participation," said Haas.

"Therefore, a general solution like Meltdown seems unlikely. Therefore, I expect combined repairs to hardware / software defects along with the warning that the fight against Spectre will be an ongoing process. "

Here, let us mention that immediately after the announcement of the vulnerabilities CERT announced that the only way to repair Meltdown and Spectre was to replace the CPU.

“The underlying vulnerability is caused primarily by choices of CPU architecture," the CERT researchers wrote. "Full removal of the vulnerability requires replacing the vulnerable CPU."

A little later and without anyone knowing what was going on under the table CERT recalled, and a representative of Agnes Kwan said: "CERT has updated the vulnerability note to correct some inaccuracies."

Of course, we would not expect Intel to declare anything different, since the CERT report's assumption would cause strong turbulence in the company, with the corresponding cost.

iGuRu.gr The Best Technology Site in Greeceggns

Get the best viral stories straight into your inbox!















Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).