"CacheWarp: CISPA Researchers Discover New Security Vulnerability in AMD SEV Technology"
AMD developed Secure Encrypted Virtualization (SEV) to make its cloud services more secure, but even the latest versions of the security feature, SEV-ES (Encrypted State) and SEV-SNP (Secure Nested Paging), were vulnerable to a software-based attack. This discovery was made by CISPA researcher Ruiyi Zhang, who devised a type of attack called CacheWarp, which, in the worst-case scenario, allows attackers to gain in-depth access to data and even manipulate it. This was not possible with previous attack techniques. According to AMD, the vulnerability has been addressed with an update. This article continues to discuss the new security vulnerability in AMD SEV technology.
Submitted by grigby1
Submitted by grigby1 CPVI
on