About AMD-SB-7025 and AMD-SB-3013: Technical research papers provided to AMD (15-Oct-2024)

Preface: Examples of side channel attacks include timing attacks, cache-based attacks, and network traffic analysis. Mitigating side channel attacks involves implementing secure coding practices, employing cryptographic algorithms resistant to side channels, and minimizing timing differences.

Background: Cache side channel attacks can infer the secret information processed by the victim by measuring the victim’s cache usage patterns. While the L1 and L2 caches are core-private, the LLC is shared between cores, so LLC-based attacks can be performed when the victim and attacker are not executing on the same core.

Security Focus:

AMD-SB-7025 – Researchers from Azure® Research, Microsoft® have provided to AMD a paper titled “Principled Microarchitectural Isolation on Cloud CPUs” in which they outline a method for potentially mitigating cache side-channel attacks.

Ref: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7025.html

AMD-SB-3013 – Researchers from Graz University of Technology, Austria, have reported a way for a malicious hypervisor to monitor performance counters and potentially recover data from a guest VM.

Ref: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3013.html

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.