When security researchers encounter a security vulnerability, it’s usually because a programmer messed up somewhere. A buffer overflow here. An unsanitized input there. They all add up to introduce an element of insecurity. Meltdown and Spectre are different. These two threatening issues aren’t the result of program running on the computer, but rather the computer itself. Flaws buried deep in the architecture of most modern CPUs have presented a golden opportunity for bad actors to access priveleged information held in memory. Most computers contain iron-clad spaces where data can pass securely in an unencrypted, visible form. These work by limiting… This story continues at The Next Web
The post Spectre and Meltdown are just as bad as you think. appeared first on Eli Logan.