TLBleed: When Protecting Your CPU Caches is Not Enough

I&#x27;m beginning to think that running <i>any</i> software on the same physical machine where secure code needs to run is a liability. Someone could backdoor a stupid useless utility and grab important keys.<p>What scares me is virtualization; could this attack be practical on EC2 across guests instead of hyperthreading? (I know there&#x27;s a very large difference in the way these two concepts work)<p>Finally, how exactly is this possible with a EDDSA or Ed25519 based ECC curve? The claim to fame there is that because they don&#x27;t branch, side channel attacks are much harder.

Is there anything more substantial about this out there? We can update the link if so.

Previous discussion: <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=17350278" rel="nofollow">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=17350278</a><p>Connection(s):<p><a href="https:&#x2F;&#x2F;www.mail-archive.com&#x2F;source-changes@openbsd.org&#x2F;msg99159.html" rel="nofollow">https:&#x2F;&#x2F;www.mail-archive.com&#x2F;source-changes@openbsd.org&#x2F;msg9...</a><p><a href="https:&#x2F;&#x2F;www.mail-archive.com&#x2F;source-changes@openbsd.org&#x2F;msg99161.html" rel="nofollow">https:&#x2F;&#x2F;www.mail-archive.com&#x2F;source-changes@openbsd.org&#x2F;msg9...</a>

More details today at The Register <a href="https:&#x2F;&#x2F;www.theregister.co.uk&#x2F;2018&#x2F;06&#x2F;22&#x2F;intel_tlbleed_key_data_leak&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.theregister.co.uk&#x2F;2018&#x2F;06&#x2F;22&#x2F;intel_tlbleed_key_d...</a>