Hacker News new | ask | show | jobs
by szbalint 2586 days ago
Google attempted to fix Chrome against Spectre but gave up, so what you're saying about no feasible attack is not true.

See: https://v8.dev/blog/spectre

> we quickly discovered that software mitigation of all possible leaks due to Spectre was infeasible.

Are there many other security issues that are easier to exploit with potentially higher impact? Sure. Does this mean that Spectre is fixed or can be mitigated in software? No. It's a bit like the formerly theoretical timing attacks against TLS: attacks only get better.
2 comments
scandinavian 2586 days ago
As said in that very blog, no attacks have been observed. Spectre has been out for a year and a half. Can you show me any indication of any feasible attack on firefox or chrome, that has a PoC or at least proof that it can be utilized for anything remotely useful?

However this conversation might be meaningless, as it seems we have a different definition of what constitutes a feasible attack.

I still maintain my opinion that not turning on mitigations is safe for personal computing.

link
szbalint 2586 days ago
This conversation reminds me of discussions around cryptographic hash functions:

https://slideplayer.com/slide/12035043/69/images/28/Reaction...

Google clearly considered it an important enough issue to spend considerable resources on trying to mitigate Spectre and in the end only gave up because they didn't find a feasible way to do so. They emphatically didn't conclude that it's fine because attacks are impractical.

This attitude was learned the hard way though: about a decade ago the PoC or gtfo attitude was prevalent among browser makers and large tech companies. Theoretical vulnerabilities were dismissed if no immediate proof of concept was provided.

What changed this was a bunch of security/cryptographical vulnerabilities. MD5 was known to be theoretically week for years and years, but when researchers minted their "can break every SSL/TLS connection" intermediate certificate to finally make browser vendors move on the issue, it was too late.

You see with systemic issues, in cryptography or hardware, by the time you actually demonstrate a PoC, things are way too late: it takes years if not half a decade (as in MD5's case, or with older TLS versions) to deprecate insecure things, if you look at the timelines.

So for issues in fundamental building blocks, it's more or less irrelevant if there is a working PoC today or not: if we don't move to fix the underlying issue and start acting on a roadmap to move away from insecure things, people _will_ come up with a working exploit that allows practical attacks. If mitigation is only attempted at that point then we're being left vulnerable for years to come.

link
scandinavian 2586 days ago
>it's more or less irrelevant if there is a working PoC today

By that logic, all current crypto is already broken and we should only use quantum safe crypto.

You guys threat model for your personal computers are way beyond most of the planet, so I will concede and agree that you should not use browsers or run untrusted code until new CPU's are released. That is pretty much the only thing that will match your threat model.

link
qes 2586 days ago
"all possible leaks" is not the same as "no feasible attack"
link