Home » Tags

Side-Channel

Branch Privilege Injection: Compromising Spectre v2 Hardware Mitigations by Exploiting Branch Predictor Race Conditions

Intel mitigates the BHI & BTI, but incompletely

May 16, 2025 · 8 min · 3571 words · Ben Chan

FlushTime: Towards Mitigating Flush-based Cache Attacks via Collaborating Flush Instructions and Timers on ARMv8-A

Depowering the timer to mitigate flush-based cache attacks

February 6, 2025 · 8 min · 3754 words · Ben Chan

SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon

Hacking Apple Silicon by macOS. Kinda ironic.

January 24, 2025 · 9 min · 4415 words · Ben Chan

GoFetch: Breaking Constant-Time Cryptographic Implementations Using Data Memory-Dependent Prefetchers

Apple f**ked up. Is it really worthy to trade security off for such little performance gain?

July 9, 2024 · 14 min · 6605 words · Ben Chan