Author |
Topic: Intel CPU vulnerability (Read 295 times) |
|
ady
Junior Member
member is offline
Posts: 55
|
 |
Re: Intel CPU vulnerability
« Reply #1 on: Jan 3rd, 2018, 11:48pm » |
|
Put simply
I wouldn't believe a word they say
For me, my Intel is fine (actually it's fabby)
If I'm running a server farm business then they can toast my chips but they aint touching my PC
Got a 333 running (Overclocked) at 400 (85%load 20 hours a day) just now and it's great, the amount of work an intel can do is almost unbelievable
Maybe they don't like that and are having second thoughts, a nice way to boost profits is to have a 30% efficiency crisis
Never ever forget, these people have no shame and would sell their own mothers for a dollar
btw I'm still on XP (phew)
|
| « Last Edit: Jan 4th, 2018, 12:39am by ady » |
 Logged
|
|
|
|
ady
Junior Member
member is offline
Posts: 55
|
|
Re: Intel CPU vulnerability
« Reply #2 on: Jan 4th, 2018, 09:25am » |
|
The conspiracy nut industry is going to have a field day with this one
"One World Government to inject all computers with spyware" kinda thing
|
| « Last Edit: Jan 4th, 2018, 09:27am by ady » |
Logged
|
|
|
|
ady
Junior Member
member is offline
Posts: 55
|
|
Re: Intel CPU vulnerability
« Reply #4 on: Jan 5th, 2018, 07:31am » |
|
What's the probability of being hacked by this exploit if you're online a couple of times a day?
|
|
Logged
|
|
|
|
David Williams
Developer
member is offline
meh
Gender: 
Posts: 452
|
|
Re: Intel CPU vulnerability
« Reply #5 on: Jan 5th, 2018, 07:53am » |
|
on Jan 5th, 2018, 07:31am, ady wrote:| What's the probability of being hacked by this exploit if you're online a couple of times a day? |
|
Hopefully the probability is very low, otherwise I'm stuffed!
|
|
Logged
|
|
|
|
DDRM
Administrator
member is offline
Gender:
Posts: 321
|
|
Re: Intel CPU vulnerability
« Reply #6 on: Jan 5th, 2018, 08:29am » |
|
Hi Guys,
Outside my expertise, but the way I read the papers is that you'd still need to download malware, which could then read the kernel data.
If you want to try it, Richard explains on the other forum how to do it- it's quite an elegant trick! You only have a few clock cycles of pipelined commands before the processor realises it is being naughty, but just enough to read a forbidden byte, and use it as an offset to write to a buffer. Then the processor rubs out everything you've done - but if you check which byte in your buffer has been written most recently, you can work out the value of the byte you read, even though it's now been splatted!
My reading is that if you have adequate anti-virus/anti-malware protection in place you are unlikely to have a problem, but don't quote me on that! On the other hand, the performance hit of the workarounds is likely to be only a couple of percent for normal users (who are generally using their machine as a single user at any given time), so it probably makes sense to install the patches rather than risk it. Of course, with Windows 10 you probably don't have the option anyway - Microsoft WILL install it, regardless of your wishes, within a couple of weeks...
It sounds like the killer (and the bit that worries me) is going to be in servers and cloud services: they should have good security (though the frequency of headlines suggests it isn't THAT good!), but if anything gets through it, the exploit potentially lets someone get hold of my passwords etc at a time and place where they are totally outside my control. Those services are typically running massively parallel processes for multiple users, and that's where the big performance hits are going to be. So those servers face anything up to a 50% slower service, buying 50% more processors, or changing to AMD/ARM processors, since the main/difficult to fix problem is Intel-specific, due to differences in the microarchitecture (in other words, where the pipelining gets cut off when a priority violation occurs).
Best wishes,
D
|
|
Logged
|
|
|
|
David Williams
Developer
member is offline
meh
Gender:
Posts: 452
|
|
Re: Intel CPU vulnerability
« Reply #7 on: Jan 6th, 2018, 11:04pm » |
|
Well, Windows 10 on my 'vulnerable' Core i7 laptop installed an update a few hours ago which may, or may not, have patched the vulnerability. First thing I notice is the new game I'm developing took noticeably longer to load, as does the editor I wrote, but the game itself doesn't seem to run any slower (mind you, it's hard to tell because it's frame-rate independent). It's possible, of course, that this apparent slowdown in my program loading the game assets (mostly graphics) might have nothing to do with the Windows update.
|
|
Logged
|
|
|
|
ady
Junior Member
member is offline
Posts: 55
|
|
Re: Intel CPU vulnerability
« Reply #9 on: Jan 7th, 2018, 11:27am » |
|
As far as risk is concerned you're probably more likely to get run over by a car than be hacked by this exploit
They never issue probablities for these things do they
An industry awash with numbers guys and mathematics gurus and no-one ever gives a ball park probability
(I can understand 24/7 uptime automated server stuff needing updated though)
|
| « Last Edit: Jan 7th, 2018, 11:38am by ady » |
Logged
|
|
|
|
ady
Junior Member
member is offline
Posts: 55
|
|
Re: Intel CPU vulnerability
« Reply #10 on: Jan 7th, 2018, 11:56am » |
|
I stopped using AMD chips in the 1990s because I got occasional DOS errors which never happened with Intel chips
There seemed to be teeny weeny differences at the architectural level
|
|
Logged
|
|
|
|
|
