The "Hertzbleed" vulnerability

by
corbet
from LWN.net on (#60BX7)
Today's branded, logo-equipped vulnerability is known as Hertzbleed; it affects x86processors (at least) and can be exploited in some situations to extractcryptographic keys from a remote server.

Hertzbleed takes advantage of our experiments showing that, undercertain circumstances, the dynamic frequency scaling of modern x86processors depends on the data being processed. This means that, onmodern processors, the same program can run at a different CPUfrequency (and therefore take a different wall time) whencomputing, for example, 2022 + 23823 compared to 2022 + 24436.
External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments