AMD's EPYC SEV encryption reportedly "SEVered" by German researchers

Unfortunately a key detail is missing. It needs full admin access on the host, which truns this into a Bug not a Security Flaw. Sad to see the same kind of fake news as with the amdflaws. But it seems like the SEV feature does not truely isolate the hyper-visor, maybe we will get there soon.
 
BFBC2033 said:
Unfortunately a key detail is missing. It needs full admin access on the host, which truns this into a Bug not a Security Flaw. Sad to see the same kind of fake news as with the amdflaws. But it seems like the SEV feature does not truely isolate the hyper-visor, maybe we will get there soon.
Click to expand...

Thanks for the correction, the article has been updated. A note has also been added at the base of the article to credit you for your help.
 
This attack apparently requires a modified hypervisor to work along with a service on the virtual machine that will provide access to resources. Basically the hypervisor fiddles with the physical location of logical memory locations and then accesses those via a resource providing service on the virtual machine.

I don't think that this would be an issue if you are running your own virtual machine setup as you could use secure boot to protect the hypervisor from tampering. As for third party VM hosting, how well do you trust the third party?
 
You must log in or register to reply here.

Similar threads

WYP
ASUS launches a range of server-grade hardware for AMD's EPYC 4004 CPUs
Replies
0
Views
276
WYP
WYP
WYP
Sony's PS6 will be turbocharged by AMD's X3D tech - leaker claims
Replies
1
Views
170
NeverBackDown
N
WYP
A day has passed and AMD's RX 9060 XT is still available at its MSRP
Replies
2
Views
102
AngryGoldfish
AngryGoldfish
WYP
The Last of Us Part 2 Remastered's PC version is reportedly finished
Replies
0
Views
316
WYP
WYP
WYP
Nvidia's RTX 5090 will reportedly feature dual-slot cooling solution
Replies
4
Views
536
AlienALX
AlienALX
Back
Top