john_If I understood correctly, they are trying to save Intel's architecture designs, by trying to find a way to secure them with hardware patches for known problems.
They could end up hitting their head on a wall for the next 3-4 years like what they are doing all this time with their 10nm, if they take that road and still have to face future security problems that are still unknown. Intel should consider changing it's architecture and make security a priority.

john_If I understood correctly, they are trying to save Intel's architecture designs, by trying to find a way to secure them with hardware patches for known problems.

voltageAt least they have taken it seriously, and responded as quickly as possible, and are still at correcting. The outlines of process is proof. KUDOS to Intel for implementing properly. Not many companies are as responsive with issues.

TheGuruStudBut that's an IPC hit. Nah, we'll just leave the flaws.

PrEziHave we read the same article?
"set up back in 2017 " --- doesn't mix with --- "as quickly as possible"
and ---- ""theory and possible implementation options" level. It will take a long time for it to find its way inside working Intel CPUs - if it ever does, really, since for now, it's just a speculative solution " --- doesn't mix with --- "still correcting" --- nor --- "implementing".

Either drunk or trolling much?

Crackong( Joke )
Hardware patches ?
How to ?
Like a x299 VROC Key ?

R-T-BNot if it's on-silicon, no.

TheGuruStudIntel's STORM says that the SAPM approach would carry a performance hit

R-T-BI mean, the whole industry is reeling from the speculative execution thing. At least intel is trying. AMDs Spectre vulnerabilities have as far as I can tell been filed under "doesn't matter."

TheGuruStudThe context is that Intel was never going to fix it, b/c they knew it will incur a perf penalty.

Intel's offensive security research team counts with around 60 workers who focus on proactive security testing and in-depth investigations. ... The new solution would implement a resistant hardware fix in the CPU's memory that essentially includes blocks for known speculative-access hacks, such as the ones that hit Intel CPUs hard such as Meltdown, Foreshadow, MDS, SpectreRSB and Spoiler.

Vayra86Basically this article says 'We've studied the problem for considerable time now, and the best we've got is some hunch of what might work in some cases, maybe... but we haven't really tested it yet'

I'll take a job like that, easiest money ever.

Strategic Offensive... while the battlefield is already littered with dead bodies. Keep at it boys!

bugI'm not sure why you have to be so mean. For a little bit of context, buffer overflow exploits have been known for decades and nobody has been able to fully mitigate them so far. Speculative execution is yet another attack channel, what would you like to see Intel do about it? Go back to 80486?

Vayra86That makes the sudden existence of this focus group even more laughable doesn't it? In 2017 its suddenly 'a priority' so we get a fancy name to make believe something happens...

Call it mean... its just weak marketing failing hard IMO. And it only happens because we're out of options and saying 'No, what we have today is not fixable' is apparently worse than lying about it. This happens everywhere. Look at the climate discussion. We're heading towards the same inevitable conclusion, that we created monsters we'll never tame unless we are prepared for hard and painful resets.

Its a human thing, to look away from the core of a problem and fix what's there with bandaids...

bugWell, yes. Marketing wouldn't be marketing if it wasn't lame. It's probably in their job description or something.

But besides marketing, you seem to be questioning the engineering. Engineering can't simply get rid of speculative execution because the performance would tank hard. And going for a new design, as you suggest, is even riskier, because with the current architecture, at least you have a good idea of what needs to be mitigated and (hopefully) where and how to mitigate it. Of course, Intel can't sit on their current architecture forever, so at some point they'll have to bite the bullet and switch anyway. In the meantime, having a group of engineers dedicated to fixing these is the best possible news. Labeling said group as proactive and then saying it's working on currently known vulnerabilities is laughable, though. I'm hoping when they said "proactive" they meant the group is taking care of these vulnerabilities in future designs. But until Intel comes out and says just that, this may well be just my wishful thinking.

Vayra86If they couldn't fix it in the past decade, why now?

Vayra86The initiative itself isn't bad, and no, I don't question the engineering. I just question this focus group's effectiveness. Its not just the marketing part of it - but the timing of it, and the actual contents of this article. What have they got, now? A fancy report that says they've got a few ideas, with zero practical use. Time is not on their side either. Its nearly 2020 already. By the time they have any sort of idea of what to do, the hardware itself is long gone.

The optimist reading this article says 'great, hope they get there'. I'm a pessimist and I say 'money down the drain, won't change a thing'. If they couldn't fix it in the past decade, why now?

If its for future designs...that means Intel is inherently telling us they will keep pushing leaky hardware to the market for the foreseeable future (like they have been doing already for a few years now, does nobody question why the gen releases keep coming like they do?). I'm not seeing the positive there either... What Intel should be doing is get to results, and not talk about it. There is no positive spin here, and every time they try to get there, they fail hard. This company still hasn't bitten the bullet, but still tries to soften the blow in the most cost effective way. Understandable, but not commendable.

londisteDecade? Spectre was discovered and reported a little over 2 years ago.

Vayra86Well... publicly yes. The idea that architectures had a vulnerability like it isn't that new but it was long classified as irrelevant.

Vayra86The initiative itself isn't bad, and no, I don't question the engineering. I just question this focus group's effectiveness. Its not just the marketing part of it - but the timing of it, and the actual contents of this article. What have they got, now? A fancy report that says they've got a few ideas, with zero practical use. Time is not on their side either. Its nearly 2020 already. By the time they have any sort of idea of what to do, the hardware itself is long gone.

Grog6I'd be way more interested on when they expect to SHIP a fix for all these vulnerabilities.