AMD CPUs are vulnerable to a severe new side-channel attack

Cutting corners: All AMD processors released since 2013 are vulnerable to a pair of new side-channel attacks, “Collide + Probe” and “Load + Reload.” Both exploit weaknesses in AMD’s L1D cache way predictor, a tool that predicts where data is stored in the processor, to detect when that data is accessed. By combining the new exploits with existing methodologies, researchers from the Graz University of Technology were able to crack open all the secrets of AMD processors in labs and real-world servers.

Processors run a lot of software concurrently and essential to systems’ security is keeping programs separate so that one can’t see what the other is doing, but new research into AMD’s processors has uncovered flaws that allow data to be shared between programs running on the same core.

“The key takeaway of this paper is that AMD’s cache way predictors leak secret information,” says the research paper from the Austrian team.

In both new exploits, collectively called “Take A Way” flaws, attacking software begins by picking an address corresponding with the target data’s address. The attacker then accesses the data stored in their version of the address, but that creates a link based on the address within the cache and the way predictor. The route the processor will take to access that address next time is guaranteed to be quite quick. But if the address is triggered a third time, then the processor will get to it slowly.

All the attacker has to do, then, is bring up that address at regular intervals. If it comes up quick then the victim hadn’t accessed it during the interval, but if it takes a while, it was accessed. This allows the attacker to monitor when the victim accesses data stored within the processor, without knowing where that data is, and without the requirement of sharing memory with the victim.

Coinbase 3

AMD CPUs are vulnerable to a severe new side-channel attack 1

From there the researchers paired the exploits with existing attack patterns and weaknesses to stir up some trouble. They constructed a covert channel between two pieces of software that are not meant to be able to communicate. They were able to break ASLR (address space layout randomization) which is a key step in accessing processor memory. Subsequently, they were able to leak kernel data and even crack AES encryption keys.

In short, that’s the better part of the processor cracked open. It’s not easy to do, and it involves combining a lot of different exploits in some complex ways, but it’s possible. AMD has yet to respond to the paper’s allegations, and perhaps most importantly, announce if this can be fixed via a firmware update and at what kind of performance cost. The flaws reportedly affect some older Athlon CPUs as well as all Ryzen and Threadripper processors.

There are quite a few of these hardware exploits out and about, though most of them up until now have targeted Intel processors. There haven’t been any attacks recorded in the wild yet. Furthermore, defenses against this specific attack shouldn’t be too difficult to implement according to the researchers. The team claims they notified AMD of their findings last August, so the company has had a long time to react and hopefully have a software update to remedy most of the issues soon. They do suggest that a watertight seal might involve physical updates to the architecture though.

Masthead Credit: Michael Dziedzic on Unsplash

AMD CPUs are vulnerable to a severe new side-channel attack 2
About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews



bitcoin
Bitcoin (BTC) $ 47,657.00
ethereum
Ethereum (ETH) $ 3,582.49
cardano
Cardano (ADA) $ 2.43
tether
Tether (USDT) $ 1.00
binance-coin
Binance Coin (BNB) $ 423.50
xrp
XRP (XRP) $ 1.10
solana
Solana (SOL) $ 154.50
polkadot
Polkadot (DOT) $ 34.84
dogecoin
Dogecoin (DOGE) $ 0.239806
usd-coin
USD Coin (USDC) $ 1.00
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 47,657.00
ethereumEthereum (ETH)
$ 3,582.49
tetherTether (USDT)
$ 1.00
bitcoin-cashBitcoin Cash (BCH)
$ 632.83
litecoinLitecoin (LTC)
$ 187.67
bitcoinBitcoin (BTC)
40.306,15
ethereumEthereum (ETH)
3.029,91
tetherTether (USDT)
0,845755
bitcoin-cashBitcoin Cash (BCH)
535,22
litecoinLitecoin (LTC)
158,72
bitcoinBitcoin (BTC)
34,349.97
ethereumEthereum (ETH)
2,582.17
tetherTether (USDT)
0.720775
bitcoin-cashBitcoin Cash (BCH)
456.13
litecoinLitecoin (LTC)
135.27

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021
Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021
What Role Do Cryptocurrencies Play In The Era Of Ransomware Attacks?
June 9, 2021

Blockchain/Cryptocurrency Questions and Answers

Beginner’s Guide to Investing in Cryptocurrency
August 9, 2021
Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021
Solana
What Is Solana (SOL) And How Does It Work?
June 26, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin47,778 0.55 % 0.90 % 3.67 %
Ethereum3,597.0 0.88 % 2.94 % 2.86 %
Cardano2.450 1.37 % 3.93 % 1.09 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Binance Coin424.70 0.22 % 2.44 % 2.58 %
XRP1.100 0.50 % 0.73 % 0.52 %
Solana155.07 0.00 % 3.27 % 18.10 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
Dogecoin0.2410 0.74 % 1.73 % 6.07 %
USD Coin1.000 0.10 % 0.08 % 0.25 %

bitcoin
Bitcoin (BTC) $ 47,657.00
ethereum
Ethereum (ETH) $ 3,582.49
cardano
Cardano (ADA) $ 2.43
tether
Tether (USDT) $ 1.00
binance-coin
Binance Coin (BNB) $ 423.50
xrp
XRP (XRP) $ 1.10
solana
Solana (SOL) $ 154.50
polkadot
Polkadot (DOT) $ 34.84
dogecoin
Dogecoin (DOGE) $ 0.239806
usd-coin
USD Coin (USDC) $ 1.00