Now we just need cryogenics
InsurgentRat
link
fedilink
English
111Y

This sounds like a giant security risk?

m-p{3}
link
fedilink
31Y

Depends if the RAM is encrypted, and how secure the TPM is.

InsurgentRat
link
fedilink
6
edit-2
1Y

I admit to being out of the game for a while but how common is RAM encryption?

wouldn’t the overhead violate half the point of RAM?

@d3Xt3r@lemmy.nz
link
fedilink
3
edit-2
1Y

There’s always a tradeoff in computing between security v/s performance/overhead, so the value of it depends on your threat model, and the attack vectors you’re expecting.

Anyways, RAM encryption is generally “available” in various forms, depending on the mobo, CPU, software used etc, but it’s not commonly enabled/used. Most AMD boards (at least, mid-range and above should) have an option in the BIOS to enable Secure Memory Encryption (SME). This allows the OS to selectively encrypt memory pages, making use of a hardware AES engine that sits outside of the CPU.

There’s also Transparent SME (TSME), which encrypts the entire memory and works completely independent of the OS and software. Usually only high-end/workstation boards have this, and it also requires a Ryzen PRO CPU. TSME also has a much lower overhead, I recall reading somewhere it’s something like only 5%.

I believe Intel also has something similar, but I never looked into it.

AMD have a whitepaper available with an overview on how this stuff works, if you’re interested: https://www.amd.com/system/files/TechDocs/memory-encryption-white-paper.pdf

FaceDeer
link
fedilink
151Y

Sounds more like a very small security risk, to me. For most people if someone steals their laptop it doesn’t really matter what kind of RAM is in it.

If you’re in some kind of high-security role then use a laptop with volatile RAM instead. Non-volatile will probably be more expensive than the old stuff for quite a while so it’s not going anywhere.

Maybe, it depends how it works.

Memory is often unencrypted and/or contains encryption keys. Many programs rely on the assumption that it’s cleared on powerdown for security.

Depending on how this memory enters the long term state it seems that a lot of legacy software might become vulnerable to a really simple attack.

Pulling the plug might no longer be something that forces someone to engage in rubber hose analysis.

FaceDeer
link
fedilink
41Y

Many programs rely on the assumption that it’s cleared on powerdown for security.

In a world with ULTRARAM those programs will need to be rewritten to operate under new assumptions.

InsurgentRat
link
fedilink
71Y

Sure of course of course but umm have you seen software?

There are still windows xp computers on the internet.

It’s not insurmountable, and of course I have no idea if/how this will roll out.

Just it seems to mess with a rather deep assumption we have about how computers operate when we develop software and threat models.

bedrooms
link
fedilink
51Y

The better example is that there are still programs compiled in Win 95 running here and there if I’m correct.

FaceDeer
link
fedilink
11Y

Sure, but anyone who’s still running WindowsXP on their laptop wants to suffer.

As always, the security-minded will be able to secure their devices and everyone else will not care until it bites them. ULTRARAM isn’t revolutionary in that regard.

Create a post

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community’s icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

  • 1 user online
  • 60 users / day
  • 170 users / week
  • 619 users / month
  • 2.31K users / 6 months
  • 1 subscriber
  • 3.28K Posts
  • 67K Comments
  • Modlog