-
Sure, there are (and there will be) vulnerabilities, hence the firmware patches. Any complex product will have issues, but you make it sound as if they're baked intentionally. SGX enclaves vulnerabilities (and TEE implementations in general) are sought after prize in hacker competitions, so there's an additional incentive. You can hardly call side channel attacks "baked-in" without some hard proof. -
AES-NI-related vulnerabilities are far from being the only vulnerabilities in Intel CPUs:Originally posted by clavko View Post
You're most likely already using openssl binaries compiled to use AES-NI acceleration instructions within modern CPUs. Tinfoil may not be warranted this time
Leave a comment:
-
it'll be fun to see what new security vulnerabilities Intel managed to bake into this accelerator.Leave a comment:
-
Hope to see something like this in ArrowLake in the future, it will definitely shine in zfs/btrfsLeave a comment:
-
Intel Preparing IAA Crypto Compression Driver - Kernel Crypto API Use For Accelerators
Phoronix: Intel Preparing IAA Crypto Compression Driver - Kernel Crypto API Use For Accelerators
In addition to Intel's Linux patches in recent days working on broad performance optimizations that can benefit all hardware there has also been some Intel-specific kernel improvements being worked on like the Sapphire Rapids C0.2 idle state support that was published for review on Monday. Also coming out from the covers on Monday was a new patch series for the "iaa_crypto" driver to improve the Linux support for Intel's In-Memory..
Leave a comment: