• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Yet Another Speculative Malfunction: Intel Reveals New Side-Channel Attack, Advises Disabling Hyper-Threading Below 8th, 9th Gen CPUs

Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Cause its based on prediction mechanism, which gave Intel CPU that "edge" over AMD. Prediction is sorta speculative, isnt it? :D Its just a guess (naming, not how it works).

Speculative execution is utilized in all modern CPUs. This is not Intel's secret "edge" sauce.

I am definitely not a fan of the black box inside Zen approach, though.

Me neither. The only thing I like about Intel ME over AMD pse is that one beast has been decently reverse engineered, AMDs is more or less a complete black box.

To be fair no one has editors or proofreaders these days. Or know how to spell "hippothetical".

You... are sadly correct. Please let me hate you for it, if only out of principle...
 
Joined
Jul 24, 2009
Messages
1,002 (0.18/day)
Speculative execution is utilized in all modern CPUs. This is not Intel's secret "edge" sauce.



Me neither. The only thing I like about Intel ME over AMD pse is that one beast has been decently reverse engineered, AMDs is more or less a complete black box.



You... are sadly correct. Please let me hate you for it, if only out of principle...

It is Intel secret sauce. Difference is that AMD has just one simple layer of prediction, while Intel has quite deep prediction and that deep (long) prediction is source of both performance and majority of these low level hacks.
 
Joined
Mar 6, 2017
Messages
3,332 (1.18/day)
Location
North East Ohio, USA
System Name My Ryzen 7 7700X Super Computer
Processor AMD Ryzen 7 7700X
Motherboard Gigabyte B650 Aorus Elite AX
Cooling DeepCool AK620 with Arctic Silver 5
Memory 2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s) XFX AMD Radeon RX 7900 GRE
Storage Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s) Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case Lian Li LANCOOL II MESH C
Audio Device(s) On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply MSI A850GF
Mouse Logitech M705
Keyboard Steelseries
Software Windows 11 Pro 64-bit
Benchmark Scores https://valid.x86.fr/liwjs3
A few percentage points of performance loss here, a few percentage points of performance loss there, sprinkle in a few more percentage points of performance loss and then what? Will we be back in the performance days of the old Sandy Bridge days? If suddenly we're looking at some real loss in performance, someone's head is going to roll inside the halls of Intel.

Granted, the performance loss won't be as noticeable for us average users but if you're operating a data center or cloud computing infrastructure the likes of Microsoft Azure, Amazon AWS, etc. then Intel is going to be in for a world of hurt. Big companies tend to not take "oh well, you lost some performance" as nicely as you or I. If a cloud computing infrastructure suddenly needs to install 25% more computing hardware due to performance loss that's going to result in them having to use more power and get more/bigger air conditioners which of course is going to require more power which of course means more cost and more expensive services for the end user. Not good at all.
 
Last edited:
Joined
Jul 24, 2009
Messages
1,002 (0.18/day)
A few percentage points of performance loss here, a few percentage points of performance loss there, sprinkle in a few more percentage points of performance loss and then what? Will we be back in the performance days of the old Sandy Bridge days? If suddenly we're looking at some real loss in performance, someone's head is going to roll inside the halls of Intel.

Granted, the performance loss won't be as noticeable for us average users but if you're operating a data center or cloud computing infrastructure the likes of Microsoft Azure, Amazon AWS, etc. then Intel is going to be in for a world of hurt. Big companies tend to not take "oh well, you lost some performance" as nicely as you or I. If a cloud computing infrastructure suddenly needs to install 25% more computing hardware due to performance loss that's going to result in them having to use more power and get more/bigger air conditioners which of course is going to require more power which of course means more cost and more expensive services for the end user. Not good at all.

With everything enabled and HT disabled, I think even regular user will notice performance drop.

That said, if someone is gamer and doesnt expose themselves to any threat, there is no reason to actually care about these attacks more than any kind of malware, virus, trojan and so on.. Its just not really important for normal user or player.
 
Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
It is Intel secret sauce. Difference is that AMD has just one simple layer of prediction, while Intel has quite deep prediction and that deep (long) prediction is source of both performance and majority of these low level hacks.

Citation? Everything I know about CPUs including Ryzen has indicated quite the opposite. Ryzen uses a friggin neural net for prediction if we believe AMD marketing, which would be arguably more conplex.
 
Joined
Jan 15, 2015
Messages
362 (0.10/day)
if someone is gamer and doesnt expose themselves to any threat
Going onto the Internet with a computer that can be remotely hacked is exposure.

I am not moved by all the comments that downplay these various vulnerabilities. We can debate these specific ones but should also assume that there are more. There is a lack of oversight to prevent bad security design. It's ridiculous to have to rely on random third parties like Google and CTS to find out what the vulnerabilities are. We have serious vulnerabilities going back to Nehalem and are just now being informed about them?

There is a lot wrong with the situation. We need to have a government agency devoted to providing security to the public, one that is completely walled off from spycraft and policing — with the exception of the spy agencies being required to provide all data on vulnerabilities to said security research/publicity agency. Given the massive breaches of things that the public is supposed to trust, like credit raters, things are not working with the laissez-faire approach. Congress needs to change its mindset, where it's a scandal for "private" e-mails to be handled "insecurely" and, simultaneously, the public is patronizingly lectured by Wired writers that they should never expect to have the slightest shred of privacy for e-mail nor anything else. This kind of monarchic mentality is failing in our globalized networked world.
 
Last edited:

HTC

Joined
Apr 1, 2008
Messages
4,664 (0.77/day)
Location
Portugal
System Name HTC's System
Processor Ryzen 5 5800X3D
Motherboard Asrock Taichi X370
Cooling NH-C14, with the AM4 mounting kit
Memory G.Skill Kit 16GB DDR4 F4 - 3200 C16D - 16 GTZB
Video Card(s) Sapphire Pulse 6600 8 GB
Storage 1 Samsung NVMe 960 EVO 250 GB + 1 3.5" Seagate IronWolf Pro 6TB 7200RPM 256MB SATA III
Display(s) LG 27UD58
Case Fractal Design Define R6 USB-C
Audio Device(s) Onboard
Power Supply Corsair TX 850M 80+ Gold
Mouse Razer Deathadder Elite
Software Ubuntu 20.04.6 LTS
It is Intel secret sauce. Difference is that AMD has just one simple layer of prediction, while Intel has quite deep prediction and that deep (long) prediction is source of both performance and majority of these low level hacks.

The way i understood it was that AMD has some sort of security checks while doing this prediction thing but Intel defers the security checks to after the prediction thing. Did i understand correctly? Dunno: perhaps someone more knowledgeable can clarify.

AMD's approach isn't perfect or it wouldn't be affected by Spectre-like attacks but it's certainly better then Intel's because there's quite a few of these speculation based attacks Intel's susceptible to while AMD's not.
 
Joined
Mar 6, 2017
Messages
3,332 (1.18/day)
Location
North East Ohio, USA
System Name My Ryzen 7 7700X Super Computer
Processor AMD Ryzen 7 7700X
Motherboard Gigabyte B650 Aorus Elite AX
Cooling DeepCool AK620 with Arctic Silver 5
Memory 2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s) XFX AMD Radeon RX 7900 GRE
Storage Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s) Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case Lian Li LANCOOL II MESH C
Audio Device(s) On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply MSI A850GF
Mouse Logitech M705
Keyboard Steelseries
Software Windows 11 Pro 64-bit
Benchmark Scores https://valid.x86.fr/liwjs3
It doesn't hurt that since AMD's Zen architecture is new when compared to Intel's Core architecture. AMD has the benefit of new thinking, designing in an era where security is taken more seriously.
 
Joined
Jan 15, 2015
Messages
362 (0.10/day)
It doesn't hurt that since AMD's Zen architecture is new when compared to Intel's Core architecture. AMD has the benefit of new thinking, designing in an era where security is taken more seriously.
Security wasn't taken seriously when Nehalem was designed? I assure you that it was by some important entities/people. People weren't born yesterday. Security has always been recognized as serious by anyone with a decent IQ — back to the origins of human society.

In fact, for all we know, baked-in vulnerabilities were seen as seriously useful — perhaps a bit like AMD's modern black box inside Zen. It wouldn't surprise me one bit if the US has custom vulnerabilities added to products. We find out about the old ones and are encouraged to buy the latest ones. Everyone wins except ordinary people. Perhaps in a world without obvious spycraft this would be paranoid thinking.

Since we don't have the kind of agency/agenda that I outlined above, we are treated to the "who knows?" laissez-faire lifestyle, where people like Snowden give us occasional glimpses of what's behind the mirror. If we were to gain said agency and it were to remain uncompromised then we would be in a far better position to know what the state of security is.
 

HTC

Joined
Apr 1, 2008
Messages
4,664 (0.77/day)
Location
Portugal
System Name HTC's System
Processor Ryzen 5 5800X3D
Motherboard Asrock Taichi X370
Cooling NH-C14, with the AM4 mounting kit
Memory G.Skill Kit 16GB DDR4 F4 - 3200 C16D - 16 GTZB
Video Card(s) Sapphire Pulse 6600 8 GB
Storage 1 Samsung NVMe 960 EVO 250 GB + 1 3.5" Seagate IronWolf Pro 6TB 7200RPM 256MB SATA III
Display(s) LG 27UD58
Case Fractal Design Define R6 USB-C
Audio Device(s) Onboard
Power Supply Corsair TX 850M 80+ Gold
Mouse Razer Deathadder Elite
Software Ubuntu 20.04.6 LTS
It doesn't hurt that since AMD's Zen architecture is new when compared to Intel's Core architecture. AMD has the benefit of new thinking, designing in an era where security is taken more seriously.

Correct me if i'm wrong but Bulldozer isn't affected either, or is it? And what about Athlon / Phenom CPUs?
 
Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
I am not moved by all the comments that downplay these various vulnerabilities. We can debate these specific ones but should also assume that there are more. There is a lack of oversight to prevent bad security design. It's ridiculous to have to rely on random third parties like Google and CTS to find out what the vulnerabilities are. We have serious vulnerabilities going back to Nehalem and are just now being informed about them
It is more these aren't really "flaws" per say, but using the design as intended in incredibly clever ways to execute timing based inference attacks.

Of course it took a while, this whole category of attacks is fricking bizzarely genius. It took a long time just for someone to think to try it.

Correct me if i'm wrong but Bulldozer isn't affected either, or is it? And what about Athlon / Phenom CPUs?

Spectre class attacks affect both. I am unsure about Meltdown beyond ARM and Intel. MDS is Intel-only.

There is a lot wrong with the situation. We need to have a government agency devoted to providing security to the public, one that is completely walled off from spycraft and policing — with the exception of the spy agencies being required to provide all data on vulnerabilities to said security research/publicity agency. Given the massive breaches of things that the public is supposed to trust, like credit raters, things are not working with the laissez-faire approach. Congress needs to change its mindset, where it's a scandal for "private" e-mails to be handled "insecurely" and, simultaneously, the public is patronizingly lectured by Wired writers that they should never expect to have the slightest shred of privacy for e-mail nor anything else. This kind of monarchic mentality is failing in our globalized networked world.


I really do not see this helping at all.
 
Joined
Mar 6, 2017
Messages
3,332 (1.18/day)
Location
North East Ohio, USA
System Name My Ryzen 7 7700X Super Computer
Processor AMD Ryzen 7 7700X
Motherboard Gigabyte B650 Aorus Elite AX
Cooling DeepCool AK620 with Arctic Silver 5
Memory 2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s) XFX AMD Radeon RX 7900 GRE
Storage Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s) Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case Lian Li LANCOOL II MESH C
Audio Device(s) On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply MSI A850GF
Mouse Logitech M705
Keyboard Steelseries
Software Windows 11 Pro 64-bit
Benchmark Scores https://valid.x86.fr/liwjs3
Security has always been recognized as serious by anyone with a decent IQ
Um... there you go, you mentioned "with a decent IQ". The problem that I see with Intel is the performance at all costs thinking brought about by marketing drones and C-Level idiots. The designers may have wanted more security and they may have well been able to do so if not for the marketing and stuffed suits in the board room.
 
Joined
Jan 15, 2015
Messages
362 (0.10/day)
It is more these aren't really "flaws" per say, but using the design as intended in incredibly clever ways to execute timing based inference attacks.

Of course it took a while, this whole category of attacks is fricking bizzarely genius. It took a long time just for someone to think to try it.
Perhaps. Or, it could be that they're seen as having outlived their usefulness and/or there are better vulnerabilities, like the Zen black box, out there. Remember how Microsoft so aggressively pushed Windows 10 on people? It is in the interest of spycraft to get people onto the better vacuum cleaners. It "makes" money. Chip sellers sell new chips. Motherboard makers sell new boards. Stores get sales. States get taxes. Et cetera. That's just one angle that provides the incentive.

The fact that we're in this shabby laissez-faire state suggests that it's in the interest of those in power.

trparky, the importance of security isn't something people just discovered.
 
Joined
Mar 6, 2017
Messages
3,332 (1.18/day)
Location
North East Ohio, USA
System Name My Ryzen 7 7700X Super Computer
Processor AMD Ryzen 7 7700X
Motherboard Gigabyte B650 Aorus Elite AX
Cooling DeepCool AK620 with Arctic Silver 5
Memory 2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s) XFX AMD Radeon RX 7900 GRE
Storage Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s) Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case Lian Li LANCOOL II MESH C
Audio Device(s) On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply MSI A850GF
Mouse Logitech M705
Keyboard Steelseries
Software Windows 11 Pro 64-bit
Benchmark Scores https://valid.x86.fr/liwjs3
I don't fault the designers of Nehalem, I put the fault on the marketing departments along with the C-Level people at the top. They wanted more performance at all costs so as to make more profit. Unfortunately the thinking process of people in marketing doesn't mesh with the thinking processes of the people doing the real hard science.

Now that we've seen that that kind of marketing thinking is not a good idea and that performance at all costs is a really bad way of doing things, perhaps we won't be seeing the same kinds of exploits in future architectures.
 
Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024

There's no perhaps about it. These aren't backdoors and they'd function horribly as such due to the minimal bandwidth provided by their nonnetworked, timing based inference nature. All the attacks share that as a trait, except this latest one improves it into the realm of usability vs near uselessness (you cam use privelege escalation to install something more useful).

The AMD blackbox psp is not new. We've had Intel ME for like, forever. If the NSA wants toys it'd use these and there isn't even evidence to support that.

I don't fault the designers of Nehalem, I put the fault on the marketing departments along with the C-Level people at the top. They wanted more performance at all costs so as to make more profit. Unfortunately the thinking process of people in marketing more often than not does not often mesh with the thinking processes of the people doing the real hard science.

I don't blame anyone. This is literally a way of attacking that is incredibly bizzare, and the world has never seen it before. You simply could not have seen it coming and the only reason Intel is the first casualty is size.
 
Joined
Mar 6, 2017
Messages
3,332 (1.18/day)
Location
North East Ohio, USA
System Name My Ryzen 7 7700X Super Computer
Processor AMD Ryzen 7 7700X
Motherboard Gigabyte B650 Aorus Elite AX
Cooling DeepCool AK620 with Arctic Silver 5
Memory 2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s) XFX AMD Radeon RX 7900 GRE
Storage Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s) Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case Lian Li LANCOOL II MESH C
Audio Device(s) On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply MSI A850GF
Mouse Logitech M705
Keyboard Steelseries
Software Windows 11 Pro 64-bit
Benchmark Scores https://valid.x86.fr/liwjs3
I don't blame anyone.
I do, then again my bias against marketing and C-level drones could be showing in my posts here. I generally have no use for the people at the top, they tend to get in the way of people who really do want to make the world a better place.
 
Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Joined
Jan 15, 2015
Messages
362 (0.10/day)
The AMD blackbox psp is not new. We've had Intel ME for like, forever.
Bulldozer, Piledriver, Phenom? As for evidence, we are just now finding out about vulnerabilities that go back to Nehalem.

It's hardly the case, particularly in our very laissez-faire state, that we have all data/knowledge about the state of security, the kind of knowledge that our representatives have.

R-T-B said:
You simply could not have seen it coming
Citation needed. This is simply speculation.

And, if you don't think the agency I described, that would be devoted to providing security for the public instead of merely spycraft and policing, will do anything significant to enhance the situation what do you propose? Continuing to rely on random third parties with their own agendas like Google and CTS? Hoping that no one but saints have the knowledge of vulnerabilities that have been around so long.

The black box AMD Zen thing is something you said you don't like. Well, without my agency to publicize the state of security for the public and have oversight mechanisms to ensure better practices, how are you going to do anything about it? Complaining isn't going to accomplish anything.
 
Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Bulldozer, Piledriver, Phenom?

Piledriver I believe uses the PSP for memory init, and it started there. Bulldozer I am unsure of, and Phenom had nothing but the fact remains I have found no evidence to support the existence of a backdoor in Intel ME via wireshark and reverse engineering the binaries. You'd think if it was anywhere it'd be there, were the NSA a factor at all.

More here for my thoughts and background:


This project is on hold, yes, but I stay sharp. Clients pay me for commercial "firmware nuetering." I daresay paranoia works to my advantage but that is no reason to encourage it.
 
Joined
Jan 15, 2015
Messages
362 (0.10/day)
Piledriver I believe uses the PSP for memory init, and it started there. Bulldozer I am unsure of anf Phenom had nothing but the fact remains I have found no evidence to support the existence of a backdoor in Intel ME via wireshark and reverse engineering the binaries. You'd think if it was anywhere it'd be there, were the NSA a factor at all.

More here for my thoughts and background:

We had no evidence of these vulnerabilities that existed since Nehalem until now. Didn't Snowden leak stuff about hardware being added surreptitiously to routers and other equipment? Wasn't there something about an encryption standard being intentionally broken during the design process? Also, I wasn't just talking about Intel ME. I was talking about AMD's Zen black box, the very same one you just said you are unhappy about. What are you going to do about it other than hope?

The bottom line is that we can be satisfied with hoping that our interests are being represented or we can demand security that we are able to fully trust, because the knowledge and oversight are mandated and delivered. The establishment of the EPA massively reduced pollution. We could have, though, been content with the promises made by the polluters.
 
Joined
Aug 20, 2007
Messages
21,469 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
We had no evidence of these vulnerabilities that existed since Nehalem until now.

Because as I stated, they use an incredibly ingenious way to attack the processor. I'm still flabberghasted anyone ever thought to try this, ever.

Didn't Snowden leak stuff about hardware being added surreptitiously to routers and other equipment?

Routers yes and I HAVE seen evidence for that. Some has even been in the news. Use one of the open firmwares, is my advice. Also, encrypted dns over 1.1.1.1 or similar. You need this if you want to even pretend the government isn't logging you.

Wasn't there something about an encryption standard being intentionally broken during the design process?

AES may have a backdoor, I assume you mean... and yes. I'd try others where possible. It also could be a reference to the long broken DES standard though.

What are you going to do about it other than hope?

What I've been doing: Educating, providing knowledge tools and where needed, services.

The bottom line is that we can be satisfied with hoping that our interests are being represented or we can demand security that we are able to fully trust, because the knowledge and oversight are mandated and delivered. The establishment of the EPA massively reduced pollution. We could have, though, been content with the promises made by the polluters.

Yes, and I'd be happy with a simple "citizens privacy" government watchdog. What you were describing sounded much, much bigger and either way would never have foreseen Spectre. I guess I agree with the sentiment but not the conclusion.
 
Last edited:

HTC

Joined
Apr 1, 2008
Messages
4,664 (0.77/day)
Location
Portugal
System Name HTC's System
Processor Ryzen 5 5800X3D
Motherboard Asrock Taichi X370
Cooling NH-C14, with the AM4 mounting kit
Memory G.Skill Kit 16GB DDR4 F4 - 3200 C16D - 16 GTZB
Video Card(s) Sapphire Pulse 6600 8 GB
Storage 1 Samsung NVMe 960 EVO 250 GB + 1 3.5" Seagate IronWolf Pro 6TB 7200RPM 256MB SATA III
Display(s) LG 27UD58
Case Fractal Design Define R6 USB-C
Audio Device(s) Onboard
Power Supply Corsair TX 850M 80+ Gold
Mouse Razer Deathadder Elite
Software Ubuntu 20.04.6 LTS
Some preliminary tests @ Phoronix, without HT disabled.

They'll be releasing benches since Spectre / Meltdown in the coming days.
 
Joined
Jul 1, 2011
Messages
362 (0.07/day)
System Name Matar Extreme PC.
Processor Intel Core i9-12900KS 5.3GHZ All P-Cores ,4.2GHZ All E-Cores & Ring 4.2GhZ
Motherboard NZXT N5 Z690 Wi-Fi 6E
Cooling CoolerMaster ML240L V2 AIO with MX6
Memory 4x16 64GB DDR4 3600MHZ CL16-19-19-36-55 G.SKILL Trident Z NEO
Video Card(s) Nvidia ZOTAC RTX 3080 Ti Trinity + overclocked 100 core 1000 mem. Re-pasted MX6
Storage WD black 1GB Nvme OS + 1TB 970 Nvme Samsung & 4TB WD Blk 256MB cache 7200RPM
Display(s) Lenovo 34" Ultra Wide 3440x1440 144hz 1ms G-Snyc
Case NZXT H510 Black with Cooler Master RGB Fans
Audio Device(s) Internal , EIFER speakers & EasySMX Wireless Gaming Headset
Power Supply Aurora R9 850Watts 80+ Gold, I Modded cables for it.
Mouse Onn RGB Gaming Mouse & Logitech G923 & shifter & E-Break Sim setup.
Keyboard GOFREETECH RGB Gaming Keyboard, & Xbox 1 X Controller & T-Flight Hotas Joystick
VR HMD Oculus Rift S
Software Windows 10 Home 22H2
Benchmark Scores https://www.youtube.com/user/matttttar/videos
Been buy intel CPUs since my first build 1998 but my next build will be AMD sorry intel you lost you intel.
 
Top