Saturday, January 06, 2018

Raspberry Pi not vulnerable to Spectre, Meltdown: well explained

Why Raspberry Pi isn't vulnerable to Spectre or Meltdown - Raspberry Pi

"... Spectre and Meltdown... affect all modern Intel processors, and (in the case of Spectre) many AMD processors and ARM cores. Spectre allows an attacker to bypass software checks to read data from arbitrary locations in the current address space; Meltdown allows an attacker to read data from arbitrary locations in the operating system kernel’s address space (which should normally be inaccessible to user programs).

Both vulnerabilities exploit performance features (caching and speculative execution) common to many modern processors to leak data via a so-called side-channel attack. Happily, the Raspberry Pi isn’t susceptible to these vulnerabilities, because of the particular ARM cores that it uses."
link from: Programming Newsletter - O'Reilly Media

(Raspberry Pi Founder ) "Eben Upton provides an excellent primer on some concepts in modern processor design to help folks better understand how so-called side-channel attacks get some modern processors to leak data."

Raspberry Pi - Teach, Learn, and Make with Raspberry Pi