IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [intel]

For security questions specifically related to Intel processors or other Intel hardware.

30 questions
4
votes
3 answers

Do the Spectre and Meltdown CPU bugs affect AMD in addition to Intel?

If a server or or PC is running AMD CPUs, will those be affected by the Spectre and/or Meltdown bugs currently effecting Intel chips? Why or why not? What makes it affect one and not the other? How does architecture play a role?
TestinginProd
  • 908
  • 3
  • 9
  • 14
3
votes
2 answers

What CPUs does the Spoiler attack affect?

I see on different websites different information about the Spoiler Attack. Some websites say all Intel CPUs are vulnerable and other websites say only Intel Core CPUs are vulnerable. Are Intel Xeon CPUs vulnerable?
user201255
  • 31
  • 1
3
votes
0 answers

Minimum set of ACS features to secure remote PCIe devices

According to a Google blog post from 2017, Google has been experimenting with providing raw access to PCIe devices in a remote environment. They set out to discover what Access Control Service features (ACS, see section 4.3 of the Intel paper for…
forest
  • 64,616
  • 20
  • 206
  • 257
2
votes
0 answers

How dangerous is the ME on non-vPro CPUs?

I’ve seen plenty of Intel ME vulnerabilities and other security-related issues with the co-processor. However, most seem to be focusing on the extended ME features available on vPro CPUs, which allow complete remote control and function similarly to…
Robotic Extremeties
  • 148
  • 1
  • 5
2
votes
1 answer

Privacy implications of Intel CPU backdoors

I didn't follow all the episodes about backdoors in Intel CPUs What can intelligence or law enforcement agencies potentially do on a computer equipped with a vulnerable Intel CPU (connected to the Internet but not directly - behind a router)? Can…
user18362
  • 21
  • 2
2
votes
1 answer

KPTI - Meltdown - PoC Analysis

Based on this PoC: https://twitter.com/brainsmoke/status/948561799875502080 I see there are four rows outputed, the second one are two bytes of address of sys_read. What is the first one? Would third row be sys_write? I did some calculations on my…
dev
  • 937
  • 1
  • 8
  • 23
1
vote
1 answer

What is the latest version of ThinkPad laptops that doesn't have Intel Management Engine or similar remote controller built-in?

I work in cybersecurity and would like to find an older laptop that doesn't have the Intel Management Engine built-in, while still able to run a Debian OS well. I have an IBM ThinkPad t42 with 42T0273 system board laying around, which was introduced…
Eduard
  • 61
  • 3
1
vote
0 answers

Is it possible to debunk Intel Management Engine conspiracy theories using a data usage monitor device?

If there would be any backdoor in recent Intel CPU's, then it should send and receive data secretly. Isn't it possible to easily debunk this conspiracy theory by implementing a third physical device between the computer and the router to find out if…
Steve
  • 139
  • 1
1
vote
0 answers

How can access to Intel ME / AMT be disabled with firewall?

Short of flashing BIOS, there seems to be no way to disable the Intel ME. So, is there a reliable way to block access to Intel ME, such using HW firewall (Firewall in front of the machine, not running on the same machine)? If Intel ME was used…
Martin Vegter
  • 1,826
  • 4
  • 27
  • 39
1
vote
0 answers

How would one compare Cache Allocating Technology against MIT's Dynamically Allocated Way Guard for prevention of the Spectre side-channel Attack?

Upon research, I'm finding it difficult to identify a way to compare each solution. Is it correct in saying both solutions are software based? Therefore, could I compare overall PC perfomance with each software implementation?
Chris
  • 11
  • 2
1
vote
2 answers

How does the Intel CPU design flaw affect us?

Today, I saw this in the news. I'm hesitant to install the fix, because I've heard it would slow down IO 50%, which is not acceptable for me. But a guy said that the flaw allows JavaScript in the browser steal your information. Is this true? Worst…
Mithril
  • 137
  • 3
0
votes
0 answers

Feasibility of CPU Backdoors

Recently I was thinking of the feasibility of hardware backdoors in the CPU introduced by manufacturers at the behest of three letter agencies. I can think of two potential backdoors that seem extremely powerful, but want to see if they would be…
RubberbandMan
  • 1
0
votes
1 answer

Intel Ethernet Driver Advanced Settings for Security/Privacy

There are some settings found on Device Manager > Ethernet Driver > Advanced Tab. Are there suggestions for any of these settings? or any suggestion to improve ethernet driver security? Adaptive Inter-Frame Spacing Enable PME Energy Efficient…
Quvok
  • 1
  • 2
0
votes
1 answer

A new exploit in town: SWAPGS. How and why did it happen?

Apparently, there's a new speculative execution exploit in town on Intel CPUs: SWAPGS. It takes research on Meltdown and Spectre to the next level and targets the root of the CPU. This is not the first SE exploit, and probably won't be the last. But…
Mast
  • 444
  • 6
  • 14
-1
votes
2 answers

Extracting passwords from recycled machine using Spectre and Meltdown

With Spectre and Meltdown, hackers can extract your password from the CPU cache. If I give someone my computer without the hard drive, can he extract my passwords through the CPU?
justlinx69
  • 53
  • 6
1
2