September 13, 2025

Geetika Technosoft Blog

Attack that defeats AMD chip security possible, unlikely

4 years ago
0 0
Read Time:1 Minute, 46 Second

AMD likes to crow about how its Epyc server processors can encrypt the content of virtal machines while they’re in operation so they are secure and isolated, preventing other VMs on the processor from accessing the encrypted contents.

Well, researchers from the Technical University of Berlin have found a weakness in that feature, known as Secure Encrypted Virtualization (SEV), and published a theoretical attack that defeats the protection.

The paper ”One Glitch to Rule Them All: Fault Injection Attacks Against AMD’s Secure Encrypted Virtualization” details how the researchers succeeded in mounting a voltage fault-injection attack.

Basically it’s a shock to the Epyc’s system. Integrated circuits need to operate within specific temperature, clock stability, and perhaps most important, voltage ranges. Purposefully manipulating one of these parameters is called a glitching attack because it throws the integrated circuit out of stable operating parameters.

The German researchers used a voltage-glitching attack to show that manipulating the input voltage to AMD chips, they can induce an error in the ROM bootloader of the secure processor, allowing them to gain full control of the processor and its contents.

“By manipulating the input voltage to AMD systems on a chip (SoCs), we induce an error in the read-only memory (ROM) bootloader of the AMD-SP, allowing us to gain full control over this root-of-trust,” the researchers say in their paper.

“Furthermore, we showed that the glitching attack enables the extraction of endorsement keys. The endorsement keys play a central role in the remote attestation mechanism of SEV and can be used to mount remote attacks. Even an attacker without physical access to the target host can use extracted endorsement keys to attack SEV-protected VMs. By faking attestation reports, an attacker can pose as a valid target for VM migration to gain access to a VM’s data,” the researchers wrote .

Source: Attack that defeats AMD chip security possible, unlikely | Network World

Don’t hesitate to contact us:

Geetika Technosoft Pvt Ltd
E-mail : crm@gtechnosoft.in
T: 1800 212 6124
#GeetikaTechnosoft
#ManagedITService
#ITExpertsConsultation
#GloablITServiceProvider
#Quality
#Trustworthiness
#NetwokWorld
#DataCenter
#AMDChip

About Post Author

admin

arghya.das@gtechnosoft.in
https://gtechnosoft.in/blog
Happy
Happy
0 %
Sad
Sad
0 %
Excited
Excited
0 %
Sleepy
Sleepy
0 %
Angry
Angry
0 %
Surprise
Surprise
0 %
Tags:

More Stories

Telecom companies want OTT players to pay for 5G infrastructure, plan to go to DoT and TRAI

2 years ago

Google Maps to expand ‘Immersive View’ to routes: What it means, and the cities getting it

2 years ago

Google’s ChatGPT rival Bard gets new features, drops waitlist in 180 countries and more

2 years ago

You may have missed

Telecom companies want OTT players to pay for 5G infrastructure, plan to go to DoT and TRAI

2 years ago

Google Maps to expand ‘Immersive View’ to routes: What it means, and the cities getting it

2 years ago

Google’s ChatGPT rival Bard gets new features, drops waitlist in 180 countries and more

2 years ago

Wipro appoints Soeren Lorenzen as Chief Growth Officer for APMEA

2 years ago