Go Back   OC3D Forums > [OC3D] General Forums > OC3D News
Reply
 
Thread Tools Display Modes
 
  #11  
Old 14-11-19, 06:52 AM
Kleptobot's Avatar
Kleptobot Kleptobot is offline
Member
 
Join Date: Dec 2012
Location: Melbourne Australia
Posts: 247
Quote:
Originally Posted by demonking View Post
Companies should be fined heavily when these exploits are exposed on hardware that has been in the wild for years. Every other industry would, Imagine your work had not been complying with HS regulations for the last 5 years and then they were exposed or a car manufacturer had been selling a product that was not safe (at the end of the day this is all under the safety arm). They would drowning in fines and poor press. Perhaps then Intel ect will act on these sooner and spend more time on developing secure products before they release. with all these security updates going back as far as spectre, I wonder how much performance users of previous generations have lost. The feeling that they could have been mis-sold a product due to these is very real and some may be forced to upgrade due to this.
They are not valid comparisons. There are no regulations on how resistant to side channel exploitation a processor must be, nor would it be reasonable to create any.

Reply With Quote
  #12  
Old 14-11-19, 08:40 AM
Warchild Warchild is offline
OC3D Elite
 
Join Date: Feb 2013
Location: Norway, Oslo
Posts: 5,530
Quote:
Originally Posted by demonking View Post
Companies should be fined heavily when these exploits are exposed on hardware that has been in the wild for years. Every other industry would, Imagine your work had not been complying with HS regulations for the last 5 years and then they were exposed or a car manufacturer had been selling a product that was not safe (at the end of the day this is all under the safety arm). They would drowning in fines and poor press. Perhaps then Intel ect will act on these sooner and spend more time on developing secure products before they release. with all these security updates going back as far as spectre, I wonder how much performance users of previous generations have lost. The feeling that they could have been mis-sold a product due to these is very real and some may be forced to upgrade due to this.
Incredibly illogical to put 100% of blame on the Company. Companies can have the best security experts in the world at any given time, but then if that one genius hacker came along and was able to hack anything they wanted, that would bankrupt the world by your methods.
You have to give them the benefit of the doubt that they were not aware of these exploits.
Reply With Quote
  #13  
Old 14-11-19, 10:36 AM
tgrech tgrech is offline
OC3D Elite
 
Join Date: Jun 2013
Location: UK
Posts: 1,525
What demonking says makes a lot of sense from an abstract societal perspective but I think massively underestimates the complexity of a CPU. It takes over 30,000 people and half a decade to design a modern x86 CPU, and the end result is a network beyond the complexity of the whole Earths road systems. This means security vulnerabilities are essentially mathematically inevitable in any modern CPU, and no matter how much money you throw at attempting to fix, find or avoid them, you'll never be able to find them all. It's abit like trying to design a whole city from scratch, with no sharp edges that someone could crack their head on anywhere within it, under a strict deadline.

The saving grace is that this level of complexity means that hopefully, no one else will either, or at least when they do it becomes public very quickly, or that it's a friendly government or a respected security company who finds them.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump










All times are GMT. The time now is 03:10 PM.
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2019, vBulletin Solutions, Inc.