All newer Intel microprocessors are provided with Software Guard Extensions (SGX) which allow software programs to run in their own little safe corner of the processor. These safe areas are created on demand and have their own memory, isolated from other system software like hypervisors and the operating system itself.
[caption id=”attachment_3201” align=”aligncenter” width=”700”] Overview how Intel’s SGX protects you. Picture Source: Intel[/caption]
Ohio State University researchers have uncovered a new variant of the Spectre vulnerability and documented it in a recently released paper. The new menace is dubbed SgxPectre. It allows the safe areas created by SGX to be cracked open like old nuts. The University research shows that Intel SGX is not all it’s cracked up to be and is vulnerable to attack.
[caption id=”attachment_3202” align=”aligncenter” width=”504”] How SGX works. Picture Source: Intel[/caption]
A patched version which addresses the weakness is already available. You can download it over the official Intel page or via mirror from our friends station-drivers. Please ensure you update to the latest version as soon as possible, there is right now no proof-of-concept (PoC) in the wild which really compromises all aspects of Intel’s SXG but you can bet on it that the bad guys picking it up or already started working on it.
Another huge hole and another software update is required to fix this, some people might see this as something annoying - I don’t - because that’s the daily business now which we have to care more about. Security is nothing you get from installing the right application it’s something which you need to work on it constantly with updating your products, keep track of changes and and and.
The question who is responsible in case there is a security breach or if the compromised system used an older vulnerable attack isn’t answered yet and we need mechanism to ensure to get really the latest software always via the OS, Linux has some ‘Store’ application which automatically updates your software - Windows has it’s own Store which waste it’s potential with useless apps instead of given the OS a chance to get signed applications directly like the Linux way from there. This is beyond me and at the end the user might run into a malware problem because he downloads fake updates from unknown sources. All of this isn’t answered and the SGX protection can’t cover this, we try to build strategies around the apps to make it more secure but the mechanism which really infect you are known for years and there is no solution.