arXiv:1801.01207 What is meltdown? Meltdown is a hardware exploit - - PowerPoint PPT Presentation

arxiv 1801 01207 what is meltdown
SMART_READER_LITE
LIVE PREVIEW

arXiv:1801.01207 What is meltdown? Meltdown is a hardware exploit - - PowerPoint PPT Presentation

Dec 10, 2022 277 likes •372 views

arXiv:1801.01207 What is meltdown? Meltdown is a hardware exploit that allows unprivileged user to access system memory . Meltdown takes advantage of speculative execution , in particular its ability to meltdown security barrier

slide-1
SLIDE 1

arXiv:1801.01207

slide-2
SLIDE 2

What is meltdown?

Meltdown is a hardware exploit that allows unprivileged user to access system memory. Meltdown takes advantage of “speculative execution”, in particular its ability to “meltdown” security barrier between user and system memory spaces on Intel processors.

slide-3
SLIDE 3

Why should I care?

I can read your saved password on Firefox or Chrome!

arXiv:1801.01207

slide-4
SLIDE 4

How does meltdown work?

Step 1: setup “covert channel” to monitor a “probe array”. Step 2: access system memory, raising a segmentation fault. Step 3: use speculative execution to cache memory value. Step 4: use covert channel to read cached value.

segmentation fault speculative execution cache hit

slide-5
SLIDE 5
slide-6
SLIDE 6

What to do?

  • 1. Update your browsers! (e.g. Chrome, Firefox)
  • 2. Update operating system – yes, that means Windows

updates too

  • 3. Wait for Intel’s microcode/firmware update
  • Intel’s current patch is buggy
slide-7
SLIDE 7

Performance Hit

arXiv:1801.04329

slide-8
SLIDE 8

References: Google Project Zero broke the news Meltdown and Spectre is the official website Proof-of-principle code by paboldin