|
Speculative Store Bypass
Speculative Store Bypass (SSB) () is the name given to a hardware security vulnerability and its exploitation that takes advantage of speculative execution in a similar way to the Meltdown and Spectre security vulnerabilities. It affects the ARM, AMD and Intel families of processors. It was discovered by researchers at Microsoft Security Response Center and Google Project Zero (GPZ). After being leaked on 3 May 2018 as part of a group of eight additional Spectre-class flaws provisionally named ''Spectre-NG'', it was first disclosed to the public as "Variant 4" on 21 May 2018, alongside a related speculative execution vulnerability designated " Variant 3a". Details Speculative execution exploit Variant 4, is referred to as Speculative Store Bypass (SSB), and has been assigned . SSB is named Variant 4, but it is the fifth variant in the Spectre-Meltdown class of vulnerabilities. Steps involved in exploit: # "Slowly" store a value at a memory location # "Quickly" load that value fr ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Speculative Execution
Speculative execution is an optimization technique where a computer system performs some task that may not be needed. Work is done before it is known whether it is actually needed, so as to prevent a delay that would have to be incurred by doing the work after it is known that it is needed. If it turns out the work was not needed after all, most changes made by the work are reverted and the results are ignored. The objective is to provide more concurrency if extra resources are available. This approach is employed in a variety of areas, including branch prediction in pipelined processors, value prediction for exploiting value locality, prefetching memory and files, and optimistic concurrency control in database systems.Lazy and Speculative Execution |
Rogue System Register Read
Spectre refers to one of the two original transient execution CPU vulnerabilities (the other being Meltdown), which involve microarchitectural timing side-channel attacks. These affect modern microprocessors that perform branch prediction and other forms of speculation. On most processors, the speculative execution resulting from a branch misprediction may leave observable side effects that may reveal private data to attackers. For example, if the pattern of memory accesses performed by such speculative execution depends on private data, the resulting state of the data cache constitutes a side channel through which an attacker may be able to extract information about the private data using a timing attack. Two Common Vulnerabilities and Exposures IDs related to Spectre, (bounds check bypass, Spectre-V1, Spectre 1.0) and (branch target injection, Spectre-V2), have been issued. JIT engines used for JavaScript were found to be vulnerable. A website can read data stored i ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Wired (magazine)
''Wired'' (stylized as ''WIRED'') is a monthly American magazine, published in print and online editions, that focuses on how emerging technologies affect culture, the economy, and politics. Owned by Condé Nast, it is headquartered in San Francisco, California, and has been in publication since March/April 1993. Several spin-offs have been launched, including '' Wired UK'', ''Wired Italia'', ''Wired Japan'', and ''Wired Germany''. From its beginning, the strongest influence on the magazine's editorial outlook came from founding editor and publisher Louis Rossetto. With founding creative director John Plunkett, Rossetto in 1991 assembled a 12-page prototype, nearly all of whose ideas were realized in the magazine's first several issues. In its earliest colophons, ''Wired'' credited Canadian media theorist Marshall McLuhan as its "patron saint". ''Wired'' went on to chronicle the evolution of digital technology and its impact on society. ''Wired'' quickly became recognized ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Digital Trends
Digital Trends is a Portland, Oregon-based tech news, lifestyle, and information website that publishes news, reviews, guides, how-to articles, descriptive videos and podcasts about technology and consumer electronics products. With offices in Portland, Oregon, New York City, Chicago and other locations, Digital Trends is operated by Digital Trends Media Group, a media company that also publishes Digital Trends Español, focusing on Spanish speakers worldwide, and a men's lifestyle site The Manual. The site offers reviews and information on a wide array of products that have been shaped by technology. That includes consumer electronics products such as smartphones, video games and systems, laptops, PCs and peripherals, televisions, home theater systems, digital cameras, video cameras, tablets, and more. According to third-party web analytics provider SimilarWeb, the site received over 40 million visits per month . From 2014 to 2021, Digital Trends' editorial team was led b ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
The Verge
''The Verge'' is an American technology news website operated by Vox Media, publishing news, feature stories, guidebooks, product reviews, consumer electronics news, and podcasts. The website launched on November 1, 2011, and uses Vox Media's proprietary multimedia publishing platform Chorus. In 2014, Nilay Patel was named editor-in-chief and Dieter Bohn executive editor; Helen Havlak was named editorial director in 2017. ''The Verge'' won five Webby Awards for the year 2012 including awards for Best Writing (Editorial), Best Podcast for ''The Vergecast'', Best Visual Design, Best Consumer Electronics Site, and Best Mobile News App. History Origins Between March and April 2011, up to nine of ''Engadget''s writers, editors, and product developers, including editor-in-chief Joshua Topolsky, left AOL, the company behind that website, to start a new gadget site. The other departing editors included managing editor Nilay Patel and staffers Paul Miller, Ross Miller, Joann ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
ZDNet
ZDNET is a business technology news website owned and operated by Red Ventures. The brand was founded on April 1, 1991, as a general interest technology portal from Ziff Davis and evolved into an enterprise IT-focused online publication. History Beginnings: 1991 to 1995 ZDNET began as a subscription-based digital service called "ZiffNet" that offered computing information to users of CompuServe. It featured computer industry forums, events, features and searchable archives. Initially, ZiffNet was intended to serve as a common place to find content from all Ziff-Davis print publications. As such, ZiffNet was an expansion on an earlier online service called PCMagNet for readers of PC Magazine. Launched in 1988, PCMagNet in turn was the evolution of Ziff Davis' first electronic publishing venture, a bulletin board, which launched in 1985. On June 20, 1995, Ziff-Davis announced the consolidation of its online information services under a single name, ''ZD Net''. The service had ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Heise Online
Heise (officially ''Heise Gruppe'', formerly ''Verlag Heinz Heise'') is a German media conglomerate headquartered in Hanover, Lower Saxony. It was founded in 1949 by and is still family-owned. Its core business is directory media as well as general-interest and specialist media from the fields of computer technology, information technology, and internet culture. Another focus of its business activities is portals for price and product comparisons. History In 1949, Heinz Heise founded the publishing house named after him in Hanover-Badenstedt. The company's first product was an address book for the town of Bünde, later joined by the telephone directory for Einbeck. Gradually, other cities and regions were added to the product range. In addition, Heise expanded the program to include non-fiction topics, such as manuals on law. By 1960, sales had risen to over one million marks. In 1972, Heinz Heise handed over the management of the company to his son Christian. Under his leade ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
C't - Magazin Für Computertechnik
''c't'' – ' (''Magazine for Computer Technology'') is a German computer magazine, published by the Heinz Heise publishing house. The 5.71 meter high tower from the 587 published c't editions up to the 30th anniversary has been in the foyer of the publishing house since October 2013 History and profile The first issue of the magazine was the November/December 1983 edition. Originally a special section of the electronics magazine '' elrad'', the magazine has been published monthly since December 1983 and biweekly since October 1997. A Dutch edition also exists which is published monthly. In addition, since 2008 a Russian licensed-title version named ' is published in Moscow.25 Years c’t A Chronicle ', As of: 7 December 2008 The magazine is the second most popular German-language computer magazine with a sold circulation of about 315,000 (; printed circulation: 419,000). With 241,000 subscriptions it is the computer magazine with the most subscribers in Europe. ''c't'' cov ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Ubuntu (operating System)
Ubuntu ( ) is a Linux distribution based on Debian and composed mostly of free and open-source software. Ubuntu is officially released in three editions: ''Desktop'', ''Server'', and ''Core'' for Internet of things devices and robots. All the editions can run on the computer alone, or in a virtual machine. Ubuntu is a popular operating system for cloud computing, with support for OpenStack. Ubuntu's default desktop changed back from the in-house Unity to GNOME after nearly 6.5 years in 2017 upon the release of version 17.10. Ubuntu is released every six months, with long-term support (LTS) releases every two years. , the most-recent release is 22.10 ("Kinetic Kudu"), and the current long-term support release is 22.04 ("Jammy Jellyfish"). Ubuntu is developed by British company Canonical, and a community of other developers, under a meritocratic governance model. Canonical provides security updates and support for each Ubuntu release, starting from the release date and unt ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Ars Technica
''Ars Technica'' is a website covering news and opinions in technology, science, politics, and society, created by Ken Fisher and Jon Stokes in 1998. It publishes news, reviews, and guides on issues such as computer hardware and software, science, technology policy, and video games. ''Ars Technica'' was privately owned until May 2008, when it was sold to Condé Nast Digital, the online division of Condé Nast Publications. Condé Nast purchased the site, along with two others, for $25 million and added it to the company's ''Wired'' Digital group, which also includes ''Wired'' and, formerly, Reddit. The staff mostly works from home and has offices in Boston, Chicago, London, New York City, and San Francisco. The operations of ''Ars Technica'' are funded primarily by advertising, and it has offered a paid subscription service since 2001. History Ken Fisher, who serves as the website's current editor-in-chief, and Jon Stokes created ''Ars Technica'' in 1998. Its purpose was ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
L1 Terminal Fault
Foreshadow, known as L1 Terminal Fault (L1TF) by Intel, is a vulnerability that affects modern microprocessors that was first discovered by two independent teams of researchers in January 2018, but was first disclosed to the public on 14 August 2018. The vulnerability is a speculative execution attack on Intel processors that may result in the disclosure of sensitive information stored in personal computers and third-party clouds. There are two versions: the first version (original/Foreshadow) () targets data from SGX enclaves; and the second version (next-generation/Foreshadow-NG) () targets virtual machines (VMs), hypervisors (VMM), operating systems (OS) kernel memory, and System Management Mode (SMM) memory. A listing of affected Intel hardware has been posted. Foreshadow is similar to the Spectre security vulnerabilities discovered earlier to affect Intel and AMD chips, and the Meltdown vulnerability that also affected Intel. AMD products are not affected by the For ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
