The 'Specter' and 'Meltdown' vulnerabilities exposed by the Intel CPU have evolved into a global security incident, and although their attacks have been done on a laboratory basis and have not caused any public losses, some of the hidden problems behind this are thought-provoking .
Today at noon, TPU author focused on the 'Coffee Lake' processor, which is 8 generations of Core.
Reportedly, Google said the loopholes in Project Zero team as early as last June informed Intel, and Coffee Lake is released in September of this year, listed in October, That is learned of the loopholes, can be listed during the promotion, Intel made no mention of this.
Facts have proved that 'Specter' and 'Meltdown' also affect the Coffee Lake processor, Longhorn, a security researcher at Twitter, said Intel should not run out of lawsuits.
At the same time, some commented that, Intel Several generations of processors, such as Skylake / KabyLake / Coffee Lake, may require further microcode updates (which eventually translate to BIOS updates), and simple OS-level patches are not completely resolved.
Another ironic thing is that Intel CEO sold $ 22 million worth of shares before the loophole burst, while Intel shares stumbled over the past two days, and his motives are now being questioned by the media.
According to a domestic preliminary study to kill soft, This type of vulnerability belongs to the CPU design logic flaw, it is difficult to repair , The current common KPTI (kernel page table isolation) patch will result in at least 5% performance loss.
Finally, Intel claimed that its patches will be immune to 'Specter' and 'Meltdown' after it has been patched, But TheReg, the UK's first media-exposed loophole, underlined today that Specter is far more trickier than expected and may take years to repair.
