Mole: Breaking GPU TEE with GPU-Embedded MCU

Shouldn’t blame the GPU TEE on ARM Mali GPU, but the Shim-Style GPU TEE’s credit chain.

March 20, 2025 · 4 min · 1824 words · Ben Chan

FlushTime: Towards Mitigating Flush-based Cache Attacks via Collaborating Flush Instructions and Timers on ARMv8-A

Depowering the timer to mitigate flush-based cache attacks

February 6, 2025 · 8 min · 3754 words · Ben Chan

SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon

Hacking Apple Silicon by macOS. Kinda ironic.

January 24, 2025 · 9 min · 4415 words · Ben Chan

GoFetch: Breaking Constant-Time Cryptographic Implementations Using Data Memory-Dependent Prefetchers

Apple f**ked up. Is it really worthy to trade security off for such little performance gain?

July 9, 2024 · 14 min · 6605 words · Ben Chan