Monday, December 21, 2009

Anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r TXT Attack

Earlier this year our team has presented an attack against Intel TXT that exploited a design problem with SMM mode being over privileged on PC platforms and able to interfere with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 SENTER instruction. The Intel response was two-fold: to patch cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 SMM implementation bugs we used for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 attack (this patch was for both cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 NVACPI SMM attacks, as well as for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 SMM caching attack), and also to start (intensify?) working on STM specification, that is, we heard, planned to be published sometime in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 near future. STM is a thin hypervisor concept that is supposed to provide protection against (potentially) malicious SMMs.

Today we present a totally different attack that allows an attacker to trick cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 SENTER instruction into misconfiguring cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 VT-d engine, so that it doesn’t protect cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 newly loaded hypervisor or kernel. This attack exploits an implementation flaw in a SINIT AC module. This new attack also allows for full TXT circumvention, using a software-only attack. This attack doesn't require any SMM bugs to succeed and is totally independent from cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 previous one.

The press release is here.

The full paper is here.

The advisory published by Intel today can be found here.

Enjoy.

4 comments:

Gynvael Coldwind said...

Great work! The paper is quite a nice X-mas present from your team, thanks ;>

simo said...

Looking forward to reading cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 material, awesome work as always Joanna.

Arthur said...

As always, excellent work on your teams efforts to help us all get to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 bottom of (in)security. Just be sure to let us know if we ever make you mad Joanna ;)

Othman Esoul said...

Duflot referred to ACPI tables and security concerns affecting TPM on at least two papers, not sure if you are aware of it, but this work is just great!