Researchers break Intel SGX by creating $30 device to control CPU voltage

2020-11-16 05:30

Researchers at the University of Birmingham have managed to break Intel SGX, a set of security functions used by Intel processors, by creating a $30 device to control CPU voltage.

Break Intel SGX. The work follows a 2019 project, in which an international team of researchers demonstrated how to break Intel's security guarantees using software undervolting.

A team in the University's School of Computer Science has created a $30 device, called VoltPillager, to control the CPU's voltage - thus side-stepping Intel's fix.

This research takes advantage of the fact that there is a separate voltage regulator chip to control the CPU voltage.

Zitai Chen, a PhD student in Computer Security at the University of Birmingham, says: "This weakness allows an attacker, if they have control of the hardware, to breach SGX security. Perhaps it might now be time to rethink the threat model of SGX. Can it really protect against malicious insiders or cloud providers?".

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/7tKWWGO3_Mo/

#CPU #intel #researcher #SGX

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Intel		6314	31	755	708	45	1539

News URL

Related news

Related vendor