Newsportal USENET - Re: Another security vulnerability

Re: Another security vulnerability

Sujet : Re: Another security vulnerability
De : SFuld (at) *nospam* alumni.cmu.edu.invalid (Stephen Fuld)
Groupes : comp.arch
Date : 11. Jun 2024, 06:30:39

Autres entêtes

Organisation : A noiseless patient Spider
Message-ID : <v48jtf$srn2$1@dont-email.me>
References : 1 2 3 4 5 6 7 8 9 10 11 12
User-Agent : XanaNews/1.21-f3fb89f (x86; Portable ISpell)

MitchAlsup1 wrote:

Stephen Fuld wrote:

MitchAlsup1 wrote:

Anton Ertl wrote:

mitchalsup@aol.com (MitchAlsup1) writes:
I am resurrecting this thread to talk about a different cache
that may or may not be vulnerable to Spectré like attacks.
> > Consider an attack strategy that measures whether a disk
sector/block is in (or not in) the OS disk cache. {Very similar
to attacks that figure out if a cache line is in the Data Cache
(or not).}
> > Any ideas ??

If you want to claim that there is a vulnerability, it's your job
to >>> demonstrate it.

That being said, filling the OS disk cache requires I/O commands,
typically effected through stores that make it to the I/O device.
In cases where the I/O is effected through a load, the I/O device
is in an uncacheable part of the address space (otherwise even
non-speculative accesses would not work correctly, and speculative
accesses would have caused havoc long ago), and the load is
delayed >>> until it is no longer speculative.

It seems to me that there are 4 service intervals:
a) in application buffering--this suffers no supervisor call
latency b) hit in the disk cache--this suffers no I/O latency
c) hit in the SATA drive cache--this suffers only I/O latency
d) Drive positions head and waits for the sector to arrive

That's all true except if the "disk" is actually an SSD.

I believe that the service intervals are fairly disjoint so there
can be identified with a high precision timer. My guesses::
a) 50ns
b) 300ns
c) 3µs
d) 10ms

An SSD reduces d significantly. Probably still disjoint, but not
nearly as much.

An SSD should reduce d to c.

Not quite. There is still a controller withuin the SSD that executes
some code to perform its functionality (e.g. mapping, wear leveling,
bad block bypassing, etdc). So d will be greater than c, but not by as
much as it would be if it were a spinning disk,

Do SSDs have their own cache ??

Usually, yes.

--
- Stephen Fuld
(e-mail address disguised to prevent spam)

Les messages affichés proviennent d'usenet.

Date	Sujet	#	Auteur
24 Mar 24	Another security vulnerability	58	Stephen Fuld
24 Mar 24	Re: Another security vulnerability	4	MitchAlsup1
25 Mar 24	Re: Another security vulnerability	2	Stefan Monnier
26 Mar 24	Re: Another security vulnerability	1	Michael S
26 Mar 24	Re: Another security vulnerability	1	Michael S
24 Mar 24	Re: Another security vulnerability	10	Lawrence D'Oliveiro
25 Mar 24	Re: Another security vulnerability	1	Stefan Monnier
25 Mar 24	Re: Another security vulnerability	8	Stephen Fuld
25 Mar 24	Re: Another security vulnerability	7	Lawrence D'Oliveiro
26 Mar 24	Re: Another security vulnerability	5	MitchAlsup1
26 Mar 24	Re: Another security vulnerability	4	Lawrence D'Oliveiro
27 Mar 24	Re: Another security vulnerability	3	Stephen Fuld
28 Mar 24	Re: Another security vulnerability	2	Lawrence D'Oliveiro
28 Mar 24	Re: Another security vulnerability	1	MitchAlsup1
26 Mar 24	Re: Another security vulnerability	1	Michael S
25 Mar 24	Re: Another security vulnerability	18	Thomas Koenig
25 Mar 24	Re: Another security vulnerability	16	Anton Ertl
26 Mar 24	Re: Another security vulnerability	13	Lawrence D'Oliveiro
26 Mar 24	Re: Another security vulnerability	12	Anton Ertl
5 Jun 24	Re: Another security vulnerability	11	MitchAlsup1
5 Jun 24	Re: Another security vulnerability	9	Anton Ertl
11 Jun 24	Re: Another security vulnerability	8	MitchAlsup1
11 Jun 24	Re: Another security vulnerability	6	Stephen Fuld
11 Jun 24	Re: Another security vulnerability	5	MitchAlsup1
11 Jun 24	Re: Another security vulnerability	4	Stephen Fuld
11 Jun 24	Re: Another security vulnerability	3	Terje Mathisen
11 Jun 24	SSDs (was: Another security vulnerability)	2	Stefan Monnier
11 Jun 24	Re: SSDs	1	Chris M. Thomasson
11 Jun 24	Re: Another security vulnerability	1	MitchAlsup1
11 Jun 24	Re: Another security vulnerability	1	MitchAlsup1
26 Mar 24	Re: Another security vulnerability	2	Anton Ertl
26 Mar 24	Re: Another security vulnerability	1	Anton Ertl
25 Mar 24	Re: Another security vulnerability	1	Michael S
25 Mar 24	Re: Another security vulnerability	22	Anton Ertl
26 Mar 24	Re: Another security vulnerability	21	Michael S
27 Mar 24	Re: Another security vulnerability	20	Thomas Koenig
27 Mar 24	Re: Another security vulnerability	2	Thomas Koenig
27 Mar 24	Re: Another security vulnerability	1	Thomas Koenig
27 Mar 24	Re: Another security vulnerability	1	Anton Ertl
27 Mar 24	Re: Another security vulnerability	16	Anton Ertl
27 Mar 24	Re: Another security vulnerability	15	MitchAlsup1
28 Mar 24	Re: Another security vulnerability	4	MitchAlsup1
29 Mar 24	Re: Another security vulnerability	3	Paul A. Clayton
29 Mar 24	Re: Another security vulnerability	2	Paul A. Clayton
30 Mar 24	Re: Another security vulnerability	1	MitchAlsup1
3 Apr 24	Re: Another security vulnerability	10	Stefan Monnier
3 Apr 24	Re: Another security vulnerability	9	Thomas Koenig
3 Apr 24	Re: Another security vulnerability	6	MitchAlsup1
4 Apr 24	Re: Another security vulnerability	5	Thomas Koenig
4 Apr 24	Re: Another security vulnerability	4	MitchAlsup1
4 Apr 24	Re: Another security vulnerability	1	MitchAlsup1
7 Apr 24	Re: Another security vulnerability	2	Paul A. Clayton
8 Apr 24	Re: Another security vulnerability	1	MitchAlsup1
5 Apr 24	Re: Another security vulnerability	2	Stefan Monnier
5 Apr 24	Re: Another security vulnerability	1	MitchAlsup1
25 Mar 24	Re: Another security vulnerability	3	John Savard
25 Mar 24	Re: Another security vulnerability	2	Michael S
26 Mar 24	Re: Another security vulnerability	1	Lawrence D'Oliveiro