Updated NSA Guidance on Side-Channel Vulnerabilities

Short information for the weekend. On February 1, 2019, the U.S. National Security Agency (NSA) published updated guidelines on side-channel vulnerabilities.


Advertising


First details about side-channel vulnerabilities in CPUs became known a year ago under the terms Meltdown and Spectre. In 2018, more variants of side-channel attacks were released. I became aware of this discussion via my Twitter channels.

On 1 February 2019, the US CERT has pointed out the following: The National Cybersecurity and Communications Integration Center (NCCIC), which is part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review the NSA Cybersecurity Advisory. The National Security Agency (NSA) has published two documents on the subject:

Updated Guidance for Vulnerabilities Affecting Modern Processors
Hardware and Firmware Security Guidance GitHub website


Advertising


This entry was posted in Security and tagged . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *