Token Daily - SGAxe

Samson Mow - @Excellion

RT @real_or_random: "We [...] show an extraction of SGX private attestation keys from within SGX’s quoting enclave, as compiled and signed by Intel. With these keys in hand, we are able to sign fake attestation quotes, just as if these have initiated from trusted and genuine SGX enclaves." Ouch. https://t.co/bmnmTR1lpc

23 48

Peter Todd - @peterktodd

18 42

Mason & Co. - @masonic_tweets

RT @P3b7_: There was one security feature not broken on SGX. It's not the case any more, SGX attestation keys are now extracted - https://t.co/lrOvVabgBt

29 62

Jeff Garzik - @jgarzik

RT @themadstephan: After 5 months of work, we can finally share the full version of the CacheOut attack paper (https://t.co/ruHkCYjPHq). As a bonus, here is also an attack that breaches SGX attestation, recovering private EPID keys (https://t.co/IKPSFqnRKC). Get your own attestation quote today!

256 505

Daniel Ƀ - @csuwildcat

192 361

Jonathan Hope - @jhope30203

171 322

Andrew Miller - @socrates1024

RT @SGAxe_AaaS: @mkskeller Your quote "Should've used proper MPC." has been signed. Your quote and instructions can be found at https://t.co/y6gGIAsNFm. Visit https://t.co/c9VO7x0aLA for more information. https://t.co/2c5Mmp7Req

3 7

Pieter Wuille - @pwuille

RT @matthew_d_green: Wow. SGX completely broken, again. https://t.co/YqNNJd3yL3

56 126

Andrew "Not cool enough for an ETH scam" Glidden - @asglidden

This seems bad. https://t.co/ApEC1sQWY5

1 0

cmnamost 4 weeks ago

Intel patched it but oof, Unfixed for five months. Are CPUs from other manufacturer's safe, or will we be seeing these types of attacks on AMD/ARM too?

convenience_store 4 weeks ago

I just spent the last half hour reading the comments to that Ars Technica article you linked. The sense I get is that analogous setup on an AMD processor is implemented differently (separate from the CPU) so isn't vulnerable to these particular attacks.  I also get the strong sense that Intel has gone [the way of Boeing](https://newrepublic.com/article/154944/boeing-737-max-investigation-indonesia-lion-air-ethiopian-airlines-managerial-revolution), a sentiment shared by a few of the commenters there.  Personally I'll probably be changing my Signal PIN to a longer alphanumeric one stored in a password manager unless and until we hear how it either didn't affect secure value recovery or that it's been addressed.

Forodhir beta user :wrench: 4 weeks ago

I wonder what Signal will have to say about this. Will they defend the security of their system or move to a new one?

AutoModerator 4 weeks ago

Welcome to r/patient_hackernews! Remember that in this subreddit, commenting requires a special process:

Declare your intention of commenting by posting a pre-comment containing only the single letter R. (This pre-comment will not be visible to others.)
Wait 24 hours or more (you will receive a reminder).
You can then post a new comment with your actual reply in the same location.

Comments that don't abide by the 24h delay will be automatically removed.

NOTE: since step 3 is not mandatory, pre-comments can also be left as a way to set up a reminder to check up on the discussion in 24h.

More information on how this forum works.

I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.

qznc_bot2 4 weeks ago

There is a discussion on Hacker News, but feel free to comment here as well.

See all

Trending this week..

Polkadot/Substrate Portal

Sale of the Century: The Inside Story of Ethereum's 2014 Premine

Bitcoin Mining Difficulty Sets New Record High 2 Months After Halving

Subscribe
David King

Coming Soon
Subscribe
Meltem Demirors

Coming Soon
Subscribe
Balaji S. Srinivasan

Coming Soon
Subscribe
Sarah Tavel

Coming Soon
Subscribe
Steven Waterhouse(7)

Coming Soon
See all

TokenSoft

TokenSoft is the volume leader in compliant token sales.
Dharma

The open protocol for tokenized debt.
Coinbase

A secure online platform for buying, selling, and storing digital currencies.
Lightning

A second layer, off-chain scaling proposal for bitcoin.
Coda (o1)

Ensuring the blockchain is inexpensive and accessible to everyone.
0x

An open protocol for decentralized exchange on the ethereum blockchain.
See all

Stay up to date on all things crypto and blockchain

Trending this week..

© 2020 Token Daily

Stay up to date on all things crypto and blockchain

Trending this week..

© 2020 Token Daily

🙌 Login to Token Daily