• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Intel Explains Key Difference Between "Coffee Lake" and "Whiskey Lake"

Joined
Aug 20, 2007
Messages
21,535 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Better known as bad engineering.

I mean, I'd never have thought to use timing based inference. People cannot possibly anticipate everything, even engineers. ARM, PPC etc made the same "bad engineering" mistakes afterall.
 

hat

Enthusiast
Joined
Nov 20, 2006
Messages
21,747 (3.29/day)
Location
Ohio
System Name Starlifter :: Dragonfly
Processor i7 2600k 4.4GHz :: i5 10400
Motherboard ASUS P8P67 Pro :: ASUS Prime H570-Plus
Cooling Cryorig M9 :: Stock
Memory 4x4GB DDR3 2133 :: 2x8GB DDR4 2400
Video Card(s) PNY GTX1070 :: Integrated UHD 630
Storage Crucial MX500 1TB, 2x1TB Seagate RAID 0 :: Mushkin Enhanced 60GB SSD, 3x4TB Seagate HDD RAID5
Display(s) Onn 165hz 1080p :: Acer 1080p
Case Antec SOHO 1030B :: Old White Full Tower
Audio Device(s) Creative X-Fi Titanium Fatal1ty Pro - Bose Companion 2 Series III :: None
Power Supply FSP Hydro GE 550w :: EVGA Supernova 550
Software Windows 10 Pro - Plex Server on Dragonfly
Benchmark Scores >9000
It's true that shit just happens. I've seen new injection molds come in that didn't work right, and new presses that usually seem to take months of troubleshooting before they work properly for some reason. Again totally different beast but it still comes down to the same... somebody made something and it sucks, needs work before it's ready...

As for product names, look out for Intel Flacca Lake, it'll make you lose your mind :laugh:
 
Joined
Jun 10, 2014
Messages
2,988 (0.78/day)
Processor AMD Ryzen 9 5900X ||| Intel Core i7-3930K
Motherboard ASUS ProArt B550-CREATOR ||| Asus P9X79 WS
Cooling Noctua NH-U14S ||| Be Quiet Pure Rock
Memory Crucial 2 x 16 GB 3200 MHz ||| Corsair 8 x 8 GB 1333 MHz
Video Card(s) MSI GTX 1060 3GB ||| MSI GTX 680 4GB
Storage Samsung 970 PRO 512 GB + 1 TB ||| Intel 545s 512 GB + 256 GB
Display(s) Asus ROG Swift PG278QR 27" ||| Eizo EV2416W 24"
Case Fractal Design Define 7 XL x 2
Audio Device(s) Cambridge Audio DacMagic Plus
Power Supply Seasonic Focus PX-850 x 2
Mouse Razer Abyssus
Keyboard CM Storm QuickFire XT
Software Ubuntu
These are very clever timing based attacks that are very general in nature. Sorry, but that isn't the NSA's style at all.

If you ask me, these appear A LOT more like sn honest error in design.
Yes, as I've mentioned, until someone comes up with evidence otherwise, there is no basis for calling this an intentional exploit.

And yes, while these timing attacks might be easy to "exploit" in test cases, they are hard to exploit for something useful. It seems like most of these may be leaking a few bytes at the time, some may not work reliably, and may not even be able to target arbitrary addresses. And even then, we are still talking about just a few bytes/sec for a thread eating up a core, so if your plan was to dump the memory of an Amazon EC2 hypervisor, let's say 1 TB of data, you're going to be busy for a while. Memory in the OS kernel is divided into small blocks called pages, and even if you manage to dump most of these intact, you still have the problem of the page table constantly changing while dumping, so you essentially have no way of reassembling it, and any useful data you can find have to be limited to single memory pages which are readable without the rest of the file. Bugs are of course bad and should be fixed, but we're still talking about an absolute edge case here, which will be much harder to execute successfully in uncontrolled environments.
 
Last edited:
Joined
Mar 7, 2007
Messages
1,426 (0.22/day)
Processor E5-1680 V2
Motherboard Rampage IV black
Video Card(s) Asrock 7900 xtx
Storage 500 gb sd
Software windows 10 64 bit
Benchmark Scores 29,433 3dmark06 score
I mean, I'd never have thought to use timing based inference. People cannot possibly anticipate everything, even engineers. ARM, PPC etc made the same "bad engineering" mistakes afterall.

"God help us we're in the hands of engineers" one of my favorite movie quotes of all time.
god-help-us-were-in-the-hands-of-engineers.jpg
 
Last edited:

HTC

Joined
Apr 1, 2008
Messages
4,664 (0.76/day)
Location
Portugal
System Name HTC's System
Processor Ryzen 5 5800X3D
Motherboard Asrock Taichi X370
Cooling NH-C14, with the AM4 mounting kit
Memory G.Skill Kit 16GB DDR4 F4 - 3200 C16D - 16 GTZB
Video Card(s) Sapphire Pulse 6600 8 GB
Storage 1 Samsung NVMe 960 EVO 250 GB + 1 3.5" Seagate IronWolf Pro 6TB 7200RPM 256MB SATA III
Display(s) LG 27UD58
Case Fractal Design Define R6 USB-C
Audio Device(s) Onboard
Power Supply Corsair TX 850M 80+ Gold
Mouse Razer Deathadder Elite
Software Ubuntu 20.04.6 LTS
Yes, as I've mentioned, until someone comes up with evidence otherwise, there is no basis for calling this an intentional exploit.

And yes, while these timing attacks might be easy to "exploit" in test cases, they are hard to exploit for something useful. It seems like most of these may be leaking a few bytes at the time, some may not work reliably, and may not even be able to target arbitrary addresses. And even then, we are still talking about just a few bytes/sec for a thread eating up a core, so if your plan was to dump the memory of an Amazon EC2 hypervisor, let's say 1 TB of data, you're going to be busy for a while. Memory in the OS kernel is divided into small blocks called pages, and even if you manage to dump most of these intact, you still have the problem of the page table constantly changing while dumping, so you essentially have no way of reassembling it, and any useful data you can find have to be limited to single memory pages which are readable without the rest of the file. Bugs are of course bad and should be fixed, but we're still talking about an absolute edge case here, which will be much harder to execute successfully in uncontrolled environments.

The problem is Intel seems to have chosen to do some security checks after certain operations, to increase performance. Unfortunately for Intel, these security checks can be bypassed by these exploits, even if "slowly", but they can be.

"We believe Intel CPUs do almost no security checks up-front, but defer checks until instruction retire. As a result we believe similar issues will be coming in the future.

"We asked repeatedly, but Intel provided no advance notice. We did not even receive replies to our requests for dialogue."

If indeed this is the case, Intel is @ fault here because they opted for a way of doing things that was less secure just to have more performance.

https://www.itwire.com/security/840...-more-intel-cpu-flaws-likely-to-be-found.html
 
Joined
Aug 13, 2009
Messages
3,252 (0.58/day)
Location
Czech republic
Processor Ryzen 5800X
Motherboard Asus TUF-Gaming B550-Plus
Cooling Noctua NH-U14S
Memory 32GB G.Skill Trident Z Neo F4-3600C16D-32GTZNC
Video Card(s) AMD Radeon RX 6600
Storage HP EX950 512GB + Samsung 970 PRO 1TB
Display(s) HP Z Display Z24i G2
Case Fractal Design Define R6 Black
Audio Device(s) Creative Sound Blaster AE-5
Power Supply Seasonic PRIME Ultra 650W Gold
Mouse Roccat Kone AIMO Remastered
Software Windows 10 x64
Last edited:
Joined
Mar 18, 2015
Messages
2,963 (0.83/day)
Location
Long Island
From the moment I see Spectre or meltdown mentioned, I stop reading ... at least until I read that 1st "Oh crap, look what happened to be because of..." story.

As for the naming schemes,I was hoping that one of them would clean up up posts and type / input what I intende but screwed up cuz was "into the cups" and had a few.
 
Top