The Combined Impact Of Mitigations On Cascade Lake Following Recent JCC Erratum + TAA

CochainComplex replied

26 November 2019, 03:44 AM
Originally posted by stormcrow View Post

And this is likely still just the tip of the iceberg. Researchers are concentrating on Intel because of huge invested interests- data centers from Google and such are standardized on Intel processors. This means AMD and POWER haven't had as much attention. There's likely bugs in them that will likewise have performance hits when disabled or worked around. Researchers are also starting to turn their attention to GPUs and security implications. This is ignoring the problem with the black boxes that are IME, PSP, and the base band microcontrolers on most server motherboards. We're going to need flow charts and time line illustrations for hardware generations affected by which bugs color coded by security implication sorted by deployment concerns (desktop/workstation, embedded, virtual machines only, etc).

..mhh Yes, you are somehow right. But according to intel's most recent pr campaign I m very sure that they have a whole department dedicated to find amd bugs. Once they find some holes they will be used to set up a campaign against amd. It wouldn't be the first time for intle to act sneaky.
Leave a comment:
starshipeleven replied

25 November 2019, 01:26 PM
Originally posted by milkylainen View Post

For the average Joe...
Does Windows always update microcode or does it rely on the hw vendor to do it?

The latter, Microcode updates are provided by the vendor to Microsoft. THey may or may not test it (and I mean literally, they did ship obviously broken shit in the past for Pentium Anniversary edition for example)
Leave a comment:
carewolf replied

25 November 2019, 06:42 AM
Originally posted by thelongdivider View Post

It is not affected by tsx in particular.

Does it even have TSX? I think TSX is one of the Intel extensions AMD hasn't picked up.
Leave a comment:
Michael replied

25 November 2019, 06:42 AM
Originally posted by carewolf View Post

Disabling HT and enabling TSX is a weird combination. Wouldn't the paranoid extreme be to disable both?

It was mainly to show the maximum mitigation impact.
Leave a comment:
carewolf replied

25 November 2019, 06:40 AM
Disabling HT and enabling TSX is a weird combination. Wouldn't the paranoid extreme be to disable both?
Leave a comment:
oleid replied

25 November 2019, 01:24 AM
Originally posted by caligula View Post

ARM isn't any better. Most ARM phones now come with locked bootloaders. Huawei won't even provied you the keys anymore.

Sony has open bootloader. At least on the phones you get sailfish os for.
Leave a comment:
caligula replied

24 November 2019, 11:12 PM
Originally posted by R41N3R View Post

I just got rid of 1 Intel system 3 weeks ago, so this means there are now just 2 remaining on my side. Sadly proprietary firmware is everywhere, that cannot be audited or improved at all, so switching away from Intel only helps to be less affected by these vulnerabilities.

ARM isn't any better. Most ARM phones now come with locked bootloaders. Huawei won't even provied you the keys anymore.
Likes 1
Leave a comment:
R41N3R replied

24 November 2019, 07:07 PM
I just got rid of 1 Intel system 3 weeks ago, so this means there are now just 2 remaining on my side. Sadly proprietary firmware is everywhere, that cannot be audited or improved at all, so switching away from Intel only helps to be less affected by these vulnerabilities.
Likes 3
Leave a comment:
stormcrow replied

24 November 2019, 04:01 PM
Originally posted by milkylainen View Post

What a gigantic mess all these microarch f-ckups have created...
Keeping track of all this is proving to be a major PITA, even if I have no problems grasping the information.
Even the pretty tech-savvy are probably going to feel at a loss trying to grasp this mess.

And this is likely still just the tip of the iceberg. Researchers are concentrating on Intel because of huge invested interests- data centers from Google and such are standardized on Intel processors. This means AMD and POWER haven't had as much attention. There's likely bugs in them that will likewise have performance hits when disabled or worked around. Researchers are also starting to turn their attention to GPUs and security implications. This is ignoring the problem with the black boxes that are IME, PSP, and the base band microcontrolers on most server motherboards. We're going to need flow charts and time line illustrations for hardware generations affected by which bugs color coded by security implication sorted by deployment concerns (desktop/workstation, embedded, virtual machines only, etc).
Likes 2
Leave a comment:
numacross replied

24 November 2019, 03:18 PM
Originally posted by milkylainen View Post

Does Windows always update microcode or does it rely on the hw vendor to do it?

It does for Windows 10, but the latest microcode is not pushed through Windows Update yet.
Likes 2
Leave a comment:

Announcement

The Combined Impact Of Mitigations On Cascade Lake Following Recent JCC Erratum + TAA

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment: