Skip to content
← Logi Options+

How can we improve Logi Options+?

Logi Options+: Idea

Categories

JUMP TO ANOTHER FORUM

(thinking…)

v3 GoFetch memory dependent prefetch exploits 01:15 26/03/2024

GoFetch memory dependent prefetch exploits 01:15 26/03/2024 (c)RS

GoFetch Vulnerability:

Exploits DMPs present in certain processors (e.g., Apple Silicon, newer Intel) to leak sensitive information.

DMPs aim to improve performance by prefetching data the processor might need based on past access patterns.

Malicious actors can trick DMPs into prefetching data from memory locations they shouldn't access, revealing sensitive information like cryptographic keys.

*

How the Virus Works :

GoFetch memory dependent prefetch, exploits rely on exploiting performance boosting statistic logs,

Virus works by analysing High Precision Timers & the Runtime Analytics Process,
If those facts are unavailable.. Then the virus procedural analytics would not work!
Praise the quality of the analytics process!

Analyses data from High Precision Timers and Runtime Analytics Process.

These analytics likely reveal patterns in memory access that the virus exploits to trigger DMP behavior and leak information.

If these analytics are unavailable, the exploit presumably fails.

Countermeasures

Restrict access to analytics data: Only certified applications (whatever that means) should access the data DMPs rely on.

Permissions: Similar to Android, keep performance data and timers private, requiring explicit permission for access.

Delayed delivery: False or delayed data might not be as effective but could slow down attackers (unlikely to be a real solution).

Sandboxing: Isolate untrusted applications in a virtual machine (VM) to limit their ability to exploit the system.

That being said; I believe the virus works by analysing High Precision Timers & the Runtime Analytics Process,
If those facts are unavailable.. Then the virus procedural analytics would not work!

you can however praise the quality of the analytics process!

Rupert S

*

The thoughts to process:

One or Two Facts,

Facts worth noting about the statistics required to exploit the cpu internals:

One

Keep the statistics away from the non certified virus..
keep them Admin..

Two

Unshared performance statistics & timers; don't get processed!
keep the properties personal permissions like android.

Three

Lies about statistics are not allowed...
However delayed delivery affects little but a code developer...

Four,

Applications have to have been trusted to gain statistics

You can contain the bug with analytic observation of the data query and if no permission is granted...

Boot them to VM virtual "reality" aka delayed and a fabrication of certainty.

GOD Loves you...
Jahova

RS

https://science.n-helix.com/2024/03/gofetch.html

https://www.theregister.com/2024/03/25/gofetch_security_exploit_demoed/

https://science.n-helix.com/2022/10/ml.html

ML tensor + ONNX Learner libraries & files
Model examples in models folder

https://is.gd/DictionarySortJS
https://is.gd/UpscaleWinDL

https://is.gd/HPC_HIP_CUDA

https://is.gd/UpscalerUSB_ROM

https://is.gd/OpenStreamingCodecs

The perfect Proposal RS

1 vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Anonymous shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment