Follow

> We discover ÆPIC Leak, the first [...] CPU bug that leaks stale data from the microarchitecture WITHOUT using a side channel. [...] leaks stale data incorrectly returned by reading undefined APIC-register ranges.
> ÆPIC Leak is like an uninitialized memory read in the CPU itself.

What a wonderful time to be alive. aepicleak.com/

"A privileged attacker (Administrator or root) is required to access APIC MMIO. Thus, most systems are safe from ÆPIC Leak. However, systems relying on SGX to protect data from privileged attackers would be at risk, thus, have to be patched."

@freakazoid which is what Signal uses on their servers.

Details on how they use it and what it protects were laid out in what seems like a phophetic post by Manny just a month ago!

medium.com/@maniacbolts/signal

@adam Thanks for sharing! Fortunately, they seem quite aware that it's not particularly reliable.

I expect that at some point in the future I will have to stop using/recommending Signal in favor of something fully peer-to-peer.

@adam Not because of anything nefarious the Signal folks do but because they'll have to shut down if/when we lose the war on e2ee, or because their ability to make security guarantees will gradually erode over time.

@freakazoid Are you eyeing any p2p chat apps in particular? I've tried a few and some are decent but I haven't found one that is the killer app yet.

@adam @freakazoid to be clear Signal has claimed that they’re not impacted this for what it’s worth

@niconiconi@cybre.space ooh, can this potentially be used to break some forms of drm?

@niconiconi

> most systems are safe from ÆPIC Leak. However, systems relying on SGX to protect data from privileged attackers would be at risk

Ah cool, so this affects Signal's private contact discovery.

@niconiconi ... it seems like this might be useful against people using those enclaves (the SGX enclaves mentioned) for ✨ eeeevil ✨ at least? For example, DRMsters, perhaps, they sound basically tailor made for that sort of (imo) evil. IDK what they're used for in practice though I just skimmed a PDF on them briefly

@niconiconi (not that i'd do anything like trying to bypass drm, of course! totally.)

@niconiconi That's what you get for trusting the hardware engineers instead of making GNU/CPU.
For some reason, the Q/A's selection doesn't work without nonfree JavaScript, hmm.
Sign in to participate in the conversation
Cybrespace

cybrespace: the social hub of the information superhighway jack in to the mastodon fediverse today and surf the dataflow through our cybrepunk, slightly glitchy web portal support us on patreon or liberapay!