Google Wants LLVM To Mainline x32 ABI Support

JS987 replied

26 January 2013, 09:14 AM
Originally posted by LightBit View Post

This slides says 2m11s is needed on 64-bit

Function get_random_int is different in latest kernels. Slides claim that it worked only for local attacker.
Leave a comment:
LightBit replied

25 January 2013, 04:49 PM
Originally posted by JS987 View Post

It is maybe also possible to detect it on 32-bit, but on 64-bit attack would last much longer, which means much higher probability of detection.

This slides says 2m11s is needed on 64-bit
Leave a comment:
JS987 replied

25 January 2013, 04:09 PM
Originally posted by LightBit View Post

Why it can't be detected on 32-bit?

It is maybe also possible to detect it on 32-bit, but on 64-bit attack would last much longer, which means much higher probability of detection.
Leave a comment:
LightBit replied

25 January 2013, 03:14 PM
Originally posted by JS987 View Post

Brute force attack isn't always possible and can be detected.

Why it can't be detected on 32-bit?
Leave a comment:
JS987 replied

25 January 2013, 12:13 PM
Originally posted by LightBit View Post

Shall we use 128-bit pointers just to prevent brute force attack?
40-bit (64-bit) can be brute forced quite fast.

Brute force attack isn't always possible and can be detected.
Leave a comment:
LightBit replied

24 January 2013, 04:06 PM
Originally posted by JS987 View Post

I have 2^45 virtual memory according to /proc/meminfo

If I understand correctly x32 is more for low memory devices.

Originally posted by JS987 View Post

According to http://www.stanford.edu/~blp/papers/asrandom.pdf 64-bit is more secure because of more bits of randomization.

Shall we use 128-bit pointers just to prevent brute force attack?
40-bit (64-bit) can be brute forced quite fast.
Leave a comment:
JS987 replied

24 January 2013, 10:20 AM
Originally posted by LightBit View Post

1. ASLR is just makes attacks harder.
2. Attacker can reduce searching to virtual memory size. (so ASLR is more efficient with 64-bit pointers, only if you have more than 2^32 virtual memory)

I have 2^45 virtual memory according to /proc/meminfo
According to http://www.stanford.edu/~blp/papers/asrandom.pdf 64-bit is more secure because of more bits of randomization.
Leave a comment:
LightBit replied

24 January 2013, 09:08 AM
Originally posted by JS987 View Post

32-bit pointers are insecure because of inefficient Address space layout randomization (ASLR).

1. ASLR is just makes attacks harder.
2. Attacker can reduce searching to virtual memory size. (so ASLR is more efficient with 64-bit pointers, only if you have more than 2^32 virtual memory)

Last edited by LightBit; 24 January 2013, 09:11 AM.
Leave a comment:
JS987 replied

24 January 2013, 08:22 AM
32-bit pointers are insecure because of inefficient Address space layout randomization (ASLR).
Leave a comment:
smitty3268 replied

18 January 2013, 02:56 AM
Originally posted by fernandoc1 View Post

Ok, you are right.
Let's take advantage of the latest and greatest closed source features from Adobe's Flash Player which was always great and had the best support for every operating system (outstanding stability on Linux) and with the best 3D API's to make the best games the Web has ever seen.

I'd probably just use Steam instead.
Leave a comment:

Announcement

Google Wants LLVM To Mainline x32 ABI Support

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment: