Intel CPUs Vulnerable to New 'BranchScope' Attack

Page 1 of 2 12 LastLast
    Intel CPUs Vulnerable to New 'BranchScope' Attack

    Intel CPUs Vulnerable to New 'BranchScope' Attack


    Posted: 27 Mar 2018


    Researchers have discovered a new side-channel attack method that can be launched against devices with Intel processors, and the patches released in response to the Spectre and Meltdown vulnerabilities might not prevent these types of attacks.

    The new attack, dubbed BranchScope, has been identified and demonstrated by a team of researchers from the College of William & Mary, University of California Riverside, Carnegie Mellon University in Qatar, and Binghamton University.

    Similar to Meltdown and Spectre, BranchScope can be exploited by an attacker to obtain potentially sensitive information they normally would not be able to access directly. The attacker needs to have access to the targeted system and they must be able to execute arbitrary code.

    Researchers believe the requirements for such an attack are realistic, making it a serious threat to modern computers, “on par with other side-channel attacks.” The BranchScope attack has been demonstrated on devices with three types of Intel i5 and i7 CPUs based on Skylake, Haswell and Sandy Bridge microarchitectures.

    Experts showed that the attack works even if the targeted application is running inside of an Intel SGX enclave. Intel SGX, or Software Guard Extensions, is a hardware-based isolated execution system designed to prevent code and data from getting leaked or modified.

    BranchScope is similar to Spectre as they both target the directional branch predictors. Branch prediction units (BPUs) are used to improve the performance of pipelined processors by guessing the execution path of branch instructions. The problem is that when two processes are executed on the same physical CPU core, they share a BPU, potentially allowing a malicious process to manipulate the direction of a branch instruction executed by the targeted application.

    Read more    : Intel CPUs Vulnerable to New Attack | SecurityWeek.Com
    Ground Sloth's Avatar Posted By: Ground Sloth
    27 Mar 2018


  1. tecnogaming
    Posts : 4
    Windows 10
       New #1

    Please god, not this again...
      My Computer
    Quote Quote

  3. Ground Sloth
    Posts : 349
    Windows 10
    Thread Starter
       New #2

    Are they saying that it only affects Intel processors, or are they saying that it has only been tested on Intel processors?
      My Computer
    Quote Quote

  4. Faith
    Posts : 1,560
    Windows 10 Home 20H2 64-bit
       New #3

    AMD should also be affected in some way if it's in relation to Spectre 2. It's possible that this was tested soley on Intel though.

    in a statement, Intel says: We have been working with these researchers and we have determined the method they describe is similar to previously known side channel exploits. We anticipate that existing software mitigations for previously known side channel exploits, such as the use of side channel resistant cryptography, will be similarly effective against the method described in this paper. We believe close partnership with the research community is one of the best ways to protect customers and their data, and we are appreciative of the work from these researchers.
    As predicted, more branch prediction processor attacks are discovered | Ars Technica
      My Computer
    Quote Quote

  6. clam1952
    Posts : 856
    Windows 10 Pro 21H2 build 19045.2193 Dual Boot Linux Mint
       New #4

    Have these "Experts" got nothing better to do than look for unheard of never used possible exploits? Are they on some kind of look how clever we are ego trip?
      My Computers
    Quote Quote

  7. pyramid10
    Posts : 287
    win 10 home
       New #5

    The attacker needs to have access to the targeted system and they must be able to execute arbitrary code.
    If the attacker has physical access, then security has already been compromised.

    If the attacker has remote access, then security has already been bypassed.

    So the concern is strictly espionage. A mole or double-agent working normally while the injected code retrieves sensitive info.
      My Computer
    Quote Quote

  8. Ground Sloth
    Posts : 349
    Windows 10
    Thread Starter
       New #6

    clam1952 said:
    Have these "Experts" got nothing better to do than look for unheard of never used possible exploits? Are they on some kind of look how clever we are ego trip?

    Microsoft is offering rewards for new speculative execution exploits. Whether or not this is a good idea is debatable.

    Microsoft Announcing Speculative Execution Bounty Program Launch - Windows 10 Forums
      My Computer
    Quote Quote

  9. Scottyboy99
    Posts : 2,297
    Windows 10 Pro (64 bit)
       New #7

    clam1952 said:
    Have these "Experts" got nothing better to do than look for unheard of never used possible exploits? Are they on some kind of look how clever we are ego trip?
    My thoughts too. Pretty tired of all this. All they seem to be doing is ‘alerting’ these underworld types to the possibilities with these big reveals.
      My Computer
    Quote Quote

  10. Flashorn
    Posts : 81
    Windows 7 Ultimate
       New #8

    Why would they put this out there in the first place??

    These Holes should be taken care of in their respective labs and Then give us a patch.

    Now, they are just fueling the fires of all hackers.

    I just wish they would use a bit of common sense but, I guess common sense isn't very common.
      My Computers
    Quote Quote

  12. lehnerus2000
    Posts : 1,811
    W7 Ultimate SP1 (64 bit), LM 19.2 MATE (64 bit), W10 Home 1703 (64 bit), W10 Pro 1703 (64 bit) VM
       New #9

    clam1952 said:
    Have these "Experts" got nothing better to do than look for unheard of never used possible exploits? Are they on some kind of look how clever we are ego trip?
    So you are saying, as long as nobody looks for holes, none exist and therefore no one is exploiting them?
      My Computer
    Quote Quote

 

  Related Discussions
Hello, I just installed Windows 10 64 bit on a Pentium E5400 which was not supposed to be supported according to this table: Does My Intel(R) Processor Support Microsoft Windows(R) 10? It's Wolfdale and it worked with build 1809. What does it...
Read more: Intel Delays Mass Production of 10 nm CPUs to 2019
Latest Intel CPUs
in Drivers and Hardware

I love keeping up on the latest and greatest, and Intel is at it again! Say hello to the 10 core, 20 thread i7-6950x: http://ark.intel.com/products/94456/Intel-Core-i7-6950X-Processor-Extreme-Edition-25M-Cache-up-to-3_50-GHz Obviously between...
Read more: Research shows antivirus products vulnerable to attack | ZDNet
Here we go again.....:rolleyes: All Flash versions vulnerable to remote control attack until next week | ZDNet
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 10:49.
Find Us




Windows 10 Forums