Menu
Home Explore People Places Arts History Plants & Animals Science Life & Culture Technology
On this page
Load value injection
Microprocessor security vulnerability

Load value injection (LVI) is an attack on Intel microprocessors that can be used to attack Intel's Software Guard Extensions (SGX) technology. It is a development of the previously known Meltdown security vulnerability. Unlike Meltdown, which can only read hidden data, LVI can inject data values, and is resistant to the countermeasures so far used to mitigate the Meltdown vulnerability.

In theory, any processor affected by Meltdown may be vulnerable to LVI, but as of March 2020[update], LVI is only known to affect Intel microprocessors. Intel has published a guide to mitigating the vulnerability by using compiler technology, requiring existing software to be recompiled to add LFENCE memory barrier instructions at every potentially vulnerable point in the code. However, this mitigation appears likely to result in substantial performance reductions in the recompiled code.

Related Image Collections Add Image
We don't have any YouTube videos related to Load value injection yet.
We don't have any PDF documents related to Load value injection yet.
We don't have any Books related to Load value injection yet.

See also

References

  1. "Load Value Injection". software.intel.com. 2020-03-10. Retrieved 2020-03-11. https://software.intel.com/security-software-guidance/software-guidance/load-value-injection

  2. Cimpanu, Catalin. "Intel CPUs vulnerable to new LVI attacks". ZDNet. Retrieved 2020-03-11. https://www.zdnet.com/article/intel-cpus-vulnerable-to-new-lvi-attacks/

  3. Alcorn, Paul (10 March 2020). "New Load Value Injection Vulnerability Found In Intel Chips". Tom's Hardware. Retrieved 2020-03-11. https://www.tomshardware.com/uk/news/load-value-injection-vulnerability-found-in-intel-chips

  4. Claburn, Thomas (10 Mar 2020). "Meltdown The Sequel strikes Intel chips – and full mitigation against data-meddling LVI flaw will slash performance". www.theregister.co.uk. Retrieved 2020-03-11. https://www.theregister.co.uk/2020/03/10/lvi_intel_cpu_attack/

  5. Cimpanu, Catalin. "Intel CPUs vulnerable to new LVI attacks". ZDNet. Retrieved 2020-03-11. https://www.zdnet.com/article/intel-cpus-vulnerable-to-new-lvi-attacks/

  6. "An Optimized Mitigation Approach for Load Value Injection". software.intel.com. Retrieved 2020-03-11. https://software.intel.com/security-software-guidance/insights/optimized-mitigation-approach-load-value-injection

  7. Cutress, Ian. "Load Value Injection: A New Intel Attack Bypasses SGX with Significant Performance Mitigation Concerns". www.anandtech.com. Retrieved 2020-03-11. https://www.anandtech.com/show/15608/load-value-injection-a-new-intel-attack-bypasses-sgx-with-significant-performance-mitigation-concerns