DaveSimmons
Elite Member
- Aug 12, 2001
- 40,730
- 670
- 126
The Finnish researchers said they couldn't afford to buy a Ryzen setup to test. Many academics do not have million-dollar research grants. Associate professors without tenure get paid peanuts and can barely pay their bills.
https://arstechnica.com/information...erthreading-exploit-that-pilfers-crypto-keys/
So no, they aren't being "politically correct" or lying about AMD.
My reading of this is a threat level much lower than Spectre and Meltdown. You have to be able to run native code on the same core as the crypto library, and the library has to be vulnerable to timing attacks.
That's on the same core NOT just on the same CPU. I'd hope that by now that Google, Azure and AWS cloud setups all avoid sharing cores between customers.
. “(The real reason is we don’t have the [hardware] to test it on at the moment, so we have to wait.)”
https://arstechnica.com/information...erthreading-exploit-that-pilfers-crypto-keys/
So no, they aren't being "politically correct" or lying about AMD.
My reading of this is a threat level much lower than Spectre and Meltdown. You have to be able to run native code on the same core as the crypto library, and the library has to be vulnerable to timing attacks.
That's on the same core NOT just on the same CPU. I'd hope that by now that Google, Azure and AWS cloud setups all avoid sharing cores between customers.