On Thu, Jan 04, 2018 at 03:06:43AM -0600, Dr. Greg Wettstein wrote: > If we are talking about the issues motivating the KPTI work I don't > have any useful information beyond what is raging through the industry > right now. > > With respect to SGX, the issues giving rise to KPTI are characteristic > of what this technology is designed to address. The technical 'news' > sites, which are even more of an abomination then usual with this > issue, are talking about privileged information such as credentials, > passwords et.al being leaked by this vulnerability. > > Data committed to enclaves are only accessible by the enclave, even > the kernel, by definition, can't access the memory. Given current > events that is an arguably useful behavior.
Exactly. You could think adversary using meltdown leak utilizing malware as having same capabilities as peripheral connected to a bus, which we can defend against with SGX. /Jarkko -- To unsubscribe from this list: send the line "unsubscribe linux-doc" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
