Skip to main content

New Flaw in Intel Processors Makes Performance Drop by Upto 8%


A new type of Spectre, or security flaw, has been discovered in Intel processors. It works differently than the ones found earlier.

Spectre, a security flaw in processors, is a hardware-level defect which puts user data in risk as it lets hackers easily read user activity. It was first discovered in Intel processors and later in new AMD processors too, which means millions of devices, since the past two decades, have had this vulnerability.

Intel has released several software patches for people with ‘older’ processors as a workaround to the vulnerability, however, these patches significantly reduced the processors’ performance. Though the company had somewhat contained the earlier defect, a new Spectre variant, called Variant 4, has been found by Intel and Microsoft.
This time, the defect makes the same areas of data vulnerable, however, extracts this data in a different manner as compared to the previous flaw discovered in January, says Intel in a blog post. The company has released patches for the Variant 4, but these fixes will also cause performance hits.

Samsung Galaxy J8 Brings Infinity Display & Dual Cameras At Midrange Price


Medium Risk

Intel says that the Variant 4 exploit is “medium risk” in comparison because the company has already minimized the problem in the early patches. Additionally, this flaw uses a “Speculative Store Bypass”, which can cause a processor to send and store data in less-secure places. According to US-CERT’s advisory, this could allow attackers to access older instants of data.
Like the other GPZ variants, Variant 4 uses speculative execution, a feature common to most modern processor architectures, to potentially expose certain kinds of data through a side channel. In this case, the researchers demonstrated Variant 4 in a language-based runtime environment.  While we are not aware of a successful browser exploit, the most common use of runtimes, like JavaScript, is in web browsers.
The company says that there has not been any breach by exploiting Variant 4 for now, it has launched a complete fix for this flaw which has already been made available to vendors and other manufacturers that use Intel chips.

2-8% Performance Drop

Leslie Culbertson, Intel’s executive VP of security said that the company’s test computers took a performance hit of between 2-8% after getting patched for Variant 4. It’s entirely up to the manufacturers to use it, Intel says, the patch will be disabled by default and third-parties can enable it if they want to.
The reason this is important is because Intel has been a go-to processor supplier since more than two decades. Most of the world’s computers run the company’s processors, even high-profile governmental institutions rely on them and have been carrying out sensitive tasks on computers running Intel processors over the years.
These defects are hardware-level, meaning the processors were built with this design flaw, which is why Intel, among other companies including AMD, have found themselves under fire.
Microsoft’s security advisory details how attackers could use this exploit in web browsers, you can check out their findings here.
Labels:

Comments

Post a Comment

Popular posts from this blog

Develop your own game by learning these free courses

We recently recommended courses you should learn before you will launch your first startup in order to avoid some common mistakes. In Quick Tips today, we’ll recommend you some free courses that will help you make your first game and begin your career as a developer. Before we highlight the details of the courses you ought to take, here are some introductory courses which will prepare you to learn these courses more effectively; Java Programming Basics  – Prepare yourself for programming on Android and the Web Introduction to JavaScript  – Create animations and understand variables and strings. When you have gone through those courses above then proceed to ones given below to develop your first game: 1. Create a 2048 game in just 1 day For those who have zero experience in programming and don’t want to take the above courses, then enroll in this course from Udacity. You will learn the basics of HTML and CSS as well as their interaction with JavaScript. ...
Post a Comment
Read more

Huawei Mate 10 Pro: A Premium Flagship With Some Odd Omissions

When Huawei had launched, they were known as a brand that mostly dealt with budget smartphones and even their flagships were not up to the standards that people expected at that time. However, times have now changed and leading the innovation front nowadays is Huawei. A few of their flagships in the recent year or so have been nothing short of impressive but this year’s Mate 10 line up has changed the brand image forever and consumers now know that Huawei is a serious market player and should not be taken lightly. We’ve already reviewed the  Mate 10 Lite and there was a lot to like about that phone. Today we have with us the most expensive one of the bunch, the Mate 10 Pro. For a more in-depth review and understanding of various Mate 10 Pro features, do watch the video review linked below. Design Like most of the flagships in the industry, Huawei also makes use of some premium material on the Mate 10 Pro. You have curved Gorilla Glass on the front and back and where th...
Post a Comment
Read more

The upgraded Google News app is now available on iOS and Android

One of the more intriguing announcements at Google IO 2018 was of  a new Google News app  to take the place of the Google Play NewsStand, which was initially launched in 2013.  After describing the new Google News app  in a dedicated page for the app on its website, Google has now officially released the app on the  App Store  and  Google Play . Google Play NewsStand was used as a resource to get news around the world. The news would be of every category, even the news which doesn’t interest the user. Whereas with this new Google news app, the artificial intelligence of Google shows you the news you want to see, which you usually search for on Google. According to Google , the Google News app now  “uses a new set of AI techniques to take a constant flow of information as it hits the web, analyze it in real time and organize it into storylines.”  Artificial intelligence(AI) gives the app an ability to process and sort the news from...
Post a Comment
Read more