Slashdot: Intel and AMD Trusted Enclaves, a Foundation For Network Security, Fall To Physical Attacks

Oct 2, 2025

—

Source URL: https://it.slashdot.org/story/25/10/01/229239/intel-and-amd-trusted-enclaves-a-foundation-for-network-security-fall-to-physical-attacks?utm_source=rss1.0mainlinkanon&utm_medium=feed
Source: Slashdot
Title: Intel and AMD Trusted Enclaves, a Foundation For Network Security, Fall To Physical Attacks

Feedly Summary:

AI Summary and Description: Yes

Summary: Researchers have introduced two significant hardware attacks, Battering RAM and Wiretap, that compromise Intel SGX and AMD SEV-SNP trusted enclaves. These attacks exploit flaws in deterministic encryption and pose serious risks for cloud computing security, highlighting vulnerabilities in trusted execution environments.

Detailed Description: The text discusses two groundbreaking hardware-based attacks that expose critical security vulnerabilities in widely used technologies for protecting sensitive data in cloud environments. These attacks underline the ongoing challenges in ensuring the integrity and confidentiality of data processed in trusted execution enclaves (TEEs) provided by Intel and AMD.

– **Key Attacks**:
– **Battering RAM**:
– Compromises both Intel SGX and AMD SEV-SNP.
– Allows attackers to view and actively manipulate encrypted data.
– Can introduce software backdoors or corrupt data.

– **Wiretap**:
– An attack that can passively decrypt data protected by SGX.
– Operates invisibly, making it a stealth threat.

– **Technological Context**:
– Intel’s SGX and AMD’s SEV-SNP technologies are designed to secure sensitive operations and data in cloud settings by creating encrypted enclaves.
– These technologies are recommended by major cloud providers for safeguarding confidential information, which is critical for applications like Signal and WhatsApp.

– **Implications**:
– The findings by researchers illustrate that existing protections are not foolproof, raising questions regarding the trust and effectiveness of current hardware-based security measures.
– The attacks emphasize the need for continuous improvement in security protocols as well as the reevaluation of compliance and regulatory measures specifically related to cloud computing security.

These developments call for heightened awareness among security professionals responsible for infrastructure security, particularly those involved in safeguarding sensitive data in cloud environments. The attacks demonstrate that, while there are mechanisms in place to protect data, new vulnerabilities are continuously being discovered, demanding an adaptive security framework that prioritizes the identification and mitigation of emerging threats.

01 1 10 2 3 5 a Act adaptive adaptive security AI All allow alt AMD and app Application applications Arch art as at ated attack attacker attackers attacks aware awareness AWS backdoor backdoors based based attacks based security being Bi bot by C challenge challenges CI Cloud cloud computing cloud computing security cloud environment cloud environments Cloud Provider cloud providers co Col compliance Computing confidential information confidentiality Context continuous continuous improvement critical Current D data de demand demo design deterministic development developments DoT e effective effectiveness emerging emerging threats enclave encrypted data encryption end environment environments evaluation execution exp exploit flaws for framework g Go gs H hardware Hardware Attacks hardware-based security high Highlight HR http HTTPS implications in information infrastructure infrastructure security integrity Intel Intel SGX io Iron J k Key l law led Li line Link logic low M major cloud providers making man measures mini mitigation N network network security new NGO NIST no non o of on ons operation operations OPM ory oS over per physical attacks pro process professionals proof protection protocol protocols ps Q question R raising rate RCE re red regulatory regulatory measures research researchers responsible Risk risks Ro RoT Rust s safe SAP search sec secure security security framework security measure security measures security professionals security protocols Security Vulnerabilities sensitive data settings Sig Signal size software source specific SSE stealth T tech technological technologies ted text the threat threats to Tor TP trust trusted enclaves Trusted Execution Environment Trusted Execution Environments TSA two UN under up US use V val Valuation vulnerabilities Ware Well WhatsApp Wi x z