Google Cloud and Intel released results today from a nine-month audit of Intel's new hardware security product: Trust Domain Extensions (TDX). The analysis revealed 10 confirmed vulnerabilities, but to fix it, they'll need help from chipmakers.
hardware security product: Trust Domain Extensions . The analysis revealed 10 confirmed vulnerabilities, including two that researchers at both companies flagged as significant, as well as five findings that led to proactive changes to further harden TDX's defenses. The review and fixes were all completed before theIntel Xeon processors, known as “Sapphire Rapids,” which incorporate TDX.
Security researchers from Google Cloud Security and Google's Project Zero bug-hunting team collaborated with Intel engineers on the assessment, which initially turned up 81 potential security issues that the group investigated more deeply. The project is part of Google Cloud's Confidential Computing initiative, a set of technical capabilities toThe security stakes are incredibly high for massive cloud providers that run much of the world's digital infrastructure.
“It's not trivial because companies, we all have our own intellectual property. And in particular, Intel had a lot of IP in the technologies that they were bringing to this,” says Nelly Porter, group product manager of Google Cloud. “For us to be able to be incredibly open and trusting each other is valuable. The research that we're doing will help everybody because Intel Trusted Domain Extension technology is going to be used not only in Google, but everywhere else as well.
Researchers and hackers can always work on attacking hardware and online systems from the outside—and these exercises are valuable because they simulate the conditions under which attackers would typically be looking for weaknesses to exploit.
Norge Siste Nytt, Norge Overskrifter
Similar News:Du kan også lese nyheter som ligner på denne som vi har samlet inn fra andre nyhetskilder.
Try all Adobe apps with a one month Creative Cloud sub, just $45Sample Adobe, and save!
Les mer »
Classified docs leak not a 'surprise' but shows need for reforms: Senate intel chair“This is a problem that we shouldn't be totally surprised at,' Senate Intelligence Committee Chairman Mark Warner said on ThisWeekABC regarding the leak of classified U.S. military and intelligence documents.
Les mer »
Limit access to most secret US documents, Senate intel panel head saysToo many people have access to the U.S. government's closest secrets and a central entity should oversee the classification process, the chairman of the Senate Intelligence Committee said on Sunday, addressing leaks of documents in an online chat group.
Les mer »
Russians are weaponizing passports in occupied Ukraine—U.K. intelUkrainian politician Lyudmila Denisova said weeks into the war that Ukrainian citizens were having their passports seized and replaced with Russian ones.
Les mer »