Jump to content

Question About CPU Security

LtStaffel
By LtStaffel
in CPUs, Motherboards, and Memory
 Share
Go to solution Solved by Naeaes,

Intel has a huge repository themselves. Just search at intel.com. Here's the whitepaper for AES-NI

Nobody asked this but Intel also has all the product specs and details listed on their site ark.intel.com

 

On a broader scale, this and most stuff like this are often not a necessity as in, the same functionality can be achieved with normal CPUs and good programming. However, having a specifically designed portion of the CPU chip or entirely separate chip perform the functions is great for speed and reliability.

For example, simple stuff like random number generation (a number-one mush-have for all data encryption) is a pain in the ass on the software-side. CPUs deal with exacts and absolutes by design so coughing up random numbers is near-impossible for them. Truly random being actually impossible. But a dedicated chip serves well to get random enough fast enough. 

 

Edit: The PDF-reader on the Intel website is god-awful. Save yourself time and nerves by downloading the PDF. :)

Posted

Hello,

I've seen a few CPUs advertise themselves as having security features.

 

Superior Security

The Intel Pentium G4400 Skylake processor employs advanced Intel data protection technology and Intel identity protection technology to ensure optimal data security. Intel AES New Instructions (Intel AES-NI), a set of instructions, enable fast and secure data encryption and decryption. Intel Secure Key consists of a digital random number generator that creates truly random numbers to strengthen encryption algorithms. Intel Software Guard Extensions (Intel SGX) provide applications the ability to create hardware enforced trusted execution protection for their applications’ sensitive routines and data. Execute Disable Bit, a hardware-based security feature, can reduce exposure to viruses and malicious-code attacks and prevent harmful software from executing and propagating on the server or network.

Can someone direct me to where I can learn about the actual programming and design in the hardware that makes these things possible? Also, do they even make a noticeable difference?

 

Thanks in advance

Join the Appleitionist cause! See spoiler below for answers to common questions that shouldn't be common!

Spoiler

Q: Do I have a virus?!
A: If you didn't click a sketchy email, haven't left your computer physically open to attack, haven't downloaded anything sketchy/free, know that your software hasn't been exploited in a new hack, then the answer is: probably not.

 

Q: What email/VPN should I use?
A: Proton mail and VPN are the best for email and VPNs respectively. (They're free in a good way)

 

Q: How can I stay anonymous on the (deep/dark) webzz???....

A: By learning how to de-anonymize everyone else; if you can do that, then you know what to do for yourself.

 

Q: What Linux distro is best for x y z?

A: Lubuntu for things with little processing power, Ubuntu for normal PCs, and if you need to do anything else then it's best if you do the research yourself.

 

Q: Why is my Linux giving me x y z error?

A: Have you not googled it? Are you sure StackOverflow doesn't have an answer? Does the error tell you what's wrong? If the answer is no to all of those, message me.

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Solution

Intel has a huge repository themselves. Just search at intel.com. Here's the whitepaper for AES-NI

Nobody asked this but Intel also has all the product specs and details listed on their site ark.intel.com

 

On a broader scale, this and most stuff like this are often not a necessity as in, the same functionality can be achieved with normal CPUs and good programming. However, having a specifically designed portion of the CPU chip or entirely separate chip perform the functions is great for speed and reliability.

For example, simple stuff like random number generation (a number-one mush-have for all data encryption) is a pain in the ass on the software-side. CPUs deal with exacts and absolutes by design so coughing up random numbers is near-impossible for them. Truly random being actually impossible. But a dedicated chip serves well to get random enough fast enough. 

 

Edit: The PDF-reader on the Intel website is god-awful. Save yourself time and nerves by downloading the PDF. :)

Link to comment
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing CPUs, Motherboards, and Memory

×