LASER_oneXM

Level 30
Verified
Joined
Feb 4, 2016
Messages
1,907
Operating System
Windows 8.1
Antivirus
Kaspersky
#1
Academics from multiple universities have announced fixes for two severe security flaws known as Spectre and Rowhammer.

Both these fixes are at the software level, meaning they don't require CPU or RAM vendors to alter products, and could, in theory, be applied as basic software patches.

Spectre v1 fix for Linux

The first of these new mitigation mechanisms was announces on Thursday, last week. A research team from Dartmouth College in New Hampshire says it created a fix for Spectre Variant 1 (CVE-2017-5753), a vulnerability discovered at the start of the year affecting modern CPUs.

Their fix uses ELFbac, an in-house-developed Linux kernel patch that brings access control policies to runtime virtual memory accesses of Linux processes, at the level of ELF binary executables.

"The solution developed at Dartmouth uses ELFbac to securely partition a program's address space," researchers said. "This approach ensures that all data and code – including user secrets – are isolated from each other."

"The ELFbac policy approach denies access to Spectre and results in processing that is generally more secure," researchers added.

In an email to Bleeping Computer, a Dartmouth College spokesperson said the team is currently working on a paper to describe the research in more depth, and a dedicated website that will feature more details will be completed over the next couple of days.
 

upnorth

Level 26
Content Creator
Verified
Joined
Jul 27, 2015
Messages
1,511
#3
This is only for Linux right? So irrelevant to anyone using Windows
This might be interesting.
We're starting to see research into designing speculative execution systems that avoid Spectre- and Meltdown-like security problems. Here's one. I don't know if this particular design is secure. My guess is that we're going to see several iterations of design and attack before we settle on something that works. But it's good to see the research results emerge.
Secure Speculative Execution - Schneier on Security