The attacks do *not* rely on recovering from SIGSEGV. The speculated execution t... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

caf on Jan 4, 2018 | parent | context | favorite | on: Reading privileged memory with a side-channel

The attacks do not rely on recovering from SIGSEGV. The speculated execution that accesses out-of-bounds or beyond privilege level happens in a branch that's predicted-taken but actually not-taken, so the exception never occurs.

314 on Jan 4, 2018 [–]

Ah, ok - then I read the paper wrongly. i’ll go back and have another look.

Edit: yes, I missed the details in section 4.1 when I skimmed through. I’m not familiar with the Kocker paper, but I assume the training looks like this?

for(int i=0 i<n; i++) if(i==n-1) do_probe();

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact