https://www.infoq.com/news/2021/04/intel-hidden-instructions/ BT Toggle Navigation Facilitating the spread of knowledge and innovation in professional software development English edition * English edition * Chinese edition * Japanese edition * French edition Contribute Search [ ] [Search] Sign Up / Login Email [ ] Password [ ] [Login] Forgot password ? InfoQ Account Email [ ] [Send Recovery Email] Back to login Resend Activation [ ] [Resend] Back to login Login with: Google Microsoft Twitter Facebook Don't have an InfoQ account? Sign Up Notifications 1 Login to unlock InfoQ's new features * Stay up to date and get notified * Like your favorite content * Follow your favorite editors and peers Sign Up / Login Don't have an account? Register Here Logo - Back to homepage 2,094,349 May unique visitors News Articles Presentations Podcasts Guides Topics Development * Java * Kotlin * .Net * C# * Swift * Go * Rust * JavaScript Featured in Development * Improving Video Encoding System Efficiency @Netflix Susie Xia discusses the video encoding system used by Netflix, and the tools and techniques used to analyze performance and to improve the system efficiency. Improving Video Encoding System Efficiency @Netflix All in development Architecture & Design * Architecture * Enterprise Architecture * Scalability/Performance * Design * Case Studies * Microservices * Service Mesh * Patterns * Security Featured in Architecture & Design * Rebuilding Twitter's Public API Steve Cosenza discusses why Twitter's multi-tenant API platform was built with Scala, GraphQL, and how Twitter uses SLOs for monitoring and alerting in production. Rebuilding Twitter's Public API All in architecture-design AI, ML and Data Engineering * Big Data * Machine Learning * NoSQL * Database * Data Analytics * Streaming Featured in AI, ML & Data Engineering * Scaling & Optimizing the Training of Predictive Models Nicholas Mitchell presents the core building blocks of an entire toolchain able to deal with challenges of large amounts of data in an industrial scalable system. Scaling & Optimizing the Training of Predictive Models All in ai-ml-data-eng Culture & Methods * Agile * Diversity * Leadership * Lean/Kanban * Personal Growth * Scrum * Sociocracy * Software Craftmanship * Team Collaboration * Testing * UX Featured in Culture & Methods * Frank Trainer on SOLID architecture, Technical Excellence and Development as a Team Sport In this podcast Shane Hastie, lead editor for culture & methods, spoke to Frank Trainer of Saggezza about technical excellence, writing code for your teammates and not yourself, and the importance of SOLID architecture principles. Frank Trainer on SOLID architecture, Technical Excellence and Development as a Team Sport All in culture-methods DevOps * Infrastructure * Continuous Delivery * Automation * Containers * Cloud * Observability Featured in DevOps * Shifting to Continuous Documentation as a New Approach for Code Knowledge Documentation is an important part of code development. However, documentation quickly becomes stale as code changes. Continuous documentation focuses on three principles: continuously verifying documents, documenting when it is most needed, and coupling the documentation to the code. Shifting to Continuous Documentation as a New Approach for Code Knowledge All in devops EventsNew Helpful links * About InfoQ * InfoQ Editors * Contribute * About C4Media * Diversity Choose your language * En * Zhong Wen * Ri Ben * Fr InfoQ Live June InfoQ Live June Prevent Cloud and Serverless security challenges Virtual Event on June 22, 2021, 9 am EDT / 3 pm CEST InfoQ Live June InfoQ Live July Accelerate your software delivery with modern DevOps practices Virtual Event on July 20th, 9 am EDT / 3 pm CEST Take The Survey Help us improve InfoQ Your feedback will directly help us evolve how we support you. InfoQ Homepage News Two Hidden Instructions Discovered in Intel CPUs Enable Microcode Modification Development InfoQ Live (June 22nd) - Overcome Cloud and Serverless Security Challenges . Book your spot! Two Hidden Instructions Discovered in Intel CPUs Enable Microcode Modification This item in japanese Like Print Bookmarks Apr 05, 2021 2 min read by * Sergio De Simone Security researchers Mark Ermolov, Dmitry Sklyarov, and Maxim Goryachy discovered two undocumented x86 instructions that can be used to modify the CPU microcode. The instructions can only be executed when the CPU runs in debug mode, which makes them not easily exploitable, though. Being able to modify a CPU's microcode means you can re-program its instructions to do whatever you want. Usually, modifying CPU microcode is necessary to fix vulnerabilities and other types of bugs, which requires the CPU architecture to provide a mechanism to do it. CPU microcode updates are provided in encrypted form and the secret key that can decrypt them resides in the CPU itself. Getting access to the two instructions allows an attacker to bypass this barrier, says Goryachy: In my opinion, on[e] of the main achievement [of] these instructions [is] bypassing the microcode update verification. Yes, you [are] right - it allows to craft your own persistent microcode patch without external debugger. According to Ermolov, the two instructions are decoded in all processor modes, including user mode, but they will raise an undefined instruction exception unless the CPU is running in so-called red state. The red state is one of four possible DFx states supported by Intel System on a Chip, along with green, orange, and DAM. While the green state is used for normal CPU operation, the red and orange states enable debug access to all or parts of the CPU IPs. On the good side of things, getting an Intel CPU to enter the red state is not easy to accomplish. In fact, it should never happen unless there are vulnerabilities in the Intel Management Engine (ME), an almost undocumented subsystem present in all Intel CPUs since 2008 that Intel says is required to provide full performance. Security researchers have in some cases claimed it is a security threat and users should disable it. As a matter of fact, several vulnerabilities in Intel ME have been discovered in the past. Among others, Ermolov, Sklyarov, and Goryachy described a method to extract the secret key that is used inside the CPU to decrypt microcode updates, which also led to the possibility of executing your own microcode on the CPU or reading Intel's microcode. The three researchers have posted a video demonstrating how to access the two instructions with only root/admin privileges. This requires uploading a custom UEFI to SPI flash and then rebooting the system, which definitely requires having physical access to it. Ermolov, Sklyarov, and Goryachy are working on a disclosure paper and a full PoC. For the moment, Intel has refused to acknowledge the possibility of accessing the two hidden instructions as a vulnerability. InfoQ will continue to provide detailed reporting about this as new information will become available. We need your feedback How might we improve InfoQ for you Thank you for being an InfoQ reader. Each year, we seek feedback from our readers to help us improve InfoQ. Would you mind spending 2 minutes to share your feedback in our short survey? Your feedback will directly help us continually evolve how we support you. Take the Survey Rate this Article Adoption ( ) ( ) ( ) ( ) ( ) Style ( ) ( ) ( ) ( ) ( ) [ ] [Submit] [ ] [Submit] [ ] Author Contacted This content is in the Enterprise Architecture topic Related Topics: * Development * Intel * SOA * Enterprise Architecture * Security * Architecture * SOA Platforms * Security Vulnerabilities * Cloud Computing * Cloud Security * Related Editorial * Related Sponsored Content + GraphQL at Enterprise Scale * Related Sponsor [ApolloOddy] Level up your GraphQL skills with practical, interactive trainings on Apollo's all-new learning platform, Odyssey! Related Content * New Exploit Breaks Current Spectre Defenses; Fixes Hard without Performance Impact * Three-Node Quantum Network is a Step Towards the Quantum Internet * Q&A with AWS VP of Compute Services Deepak Singh about AWS App Runner * Overcome Cloud & Serverless Security Challenges. Join Security Experts at InfoQ Live - June 22 * Cameron Purdy Explains Ecstasy - A New Cloud Native Environment Cameron Purdy Explains Ecstasy - A New Cloud Native Environment * ASP.NET Core 6 to Challenge Python and Node * Java News Roundup - Week of May 31st, 2021 * Zesty Disk Provides Automatic Scaling for AWS EBS * Google Cloud Announces Managed Machine Learning Platform Vertex AI * Putting Arduino and the ESP32 at Work for STEM Education * The InfoQ eMag: Kubernetes and Cloud Architectures The InfoQ eMag: Kubernetes and Cloud Architectures * Virtual Group Coaching: How to Improve Group Relationships in Remote Work Settings Virtual Group Coaching: How to Improve Group Relationships in Remote Work Settings * .NET 6: Collections Improvements * TypeScript 4.3 Improves Property Write Types * Shifting to Continuous Documentation as a New Approach for Code Knowledge Shifting to Continuous Documentation as a New Approach for Code Knowledge * Microsoft Announces Event Hubs Premium in Preview * How Testers Can Contribute to Product Definition * AceQL Releases Open-Source JDBC-over-HTTP Driver * CDK for Terraform Adds Go Support and Improves Asset Construction * GitHub Study Explores What Makes Developers Have a Good Day * Rebuilding Twitter's Public API Rebuilding Twitter's Public API * Software Engineering at Google: Practices, Tools, Values, and Culture Software Engineering at Google: Practices, Tools, Values, and Culture * Uber Reveals Its API Gateway's Architecture * Microsoft Retires Azure Blockchain * .NET MAUI Preview 4 Is Here * Microsoft's Low-Code Strategy Paints a Target on UIPath and the Other RPA Companies Microsoft's Low-Code Strategy Paints a Target on UIPath and the Other RPA Companies * CMU Develops Algorithm for Guaranteeing AI Model Generalization * AWS Announces the General Availability of Lambda Extensions * OpenJDK Discusses Post-SecurityManager Practices * Amazon SNS Gains Message Archiving and Analytics via Amazon Kinesis Data Firehose * .NET News Roundup: Microsoft Build, .NET 6, MAUI, Visual Studio 2019, Project Reunion * Pyodide Brings Python and Its Scientific Stack to the Browser with WebAssembly * Scaling & Optimizing the Training of Predictive Models Scaling & Optimizing the Training of Predictive Models * Inspect & Adapt - Digging into Our Foundations of Agility Inspect & Adapt - Digging into Our Foundations of Agility * Facebook Compression Algorithm Zstandard 1.5 Improves Performance * Java News Roundup - Week of May 24th, 2021 * Bridgecrew's Yor Provides Automated Tagging for Infrastructure as Code * Microsoft and Elastic Partner to Offer Elastic Stack on Azure * Google Fuchsia Debuts on the Google Nest Hub * Evolution of Azure Synapse: Apache Spark 3.0, GPU Acceleration, Delta Lake, Dataverse Support Evolution of Azure Synapse: Apache Spark 3.0, GPU Acceleration, Delta Lake, Dataverse Support The InfoQ Newsletter A round-up of last week's content on InfoQ sent out every Tuesday. Join a community of over 250,000 senior developers. View an example Enter your e-mail address [ ] [ ] Select your country [Select a country] [ ] I consent to InfoQ.com handling my data as explained in this Privacy Notice. [Subscribe] We protect your privacy. Hello stranger! You need to Register an InfoQ account or Login or login to post comments. But there's so much more behind being registered. Get the most out of the InfoQ experience. Tell us what you think [ ] [ ] Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p [ ] Email me replies to any of my messages in this thread [Post Message] Community comments Watch thread Close Your Reply Quote original message [ ] [ ] Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p [ ] Email me replies to any of my messages in this thread [Post Message] Cancel Close Your Reply [ ] [ ] Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p [ ] Email me replies to any of my messages in this thread [Post Message] Cancel Close OK Discuss * Development + Putting Arduino and the ESP32 at Work for STEM Education + GitHub Study Explores What Makes Developers Have a Good Day + Pyodide Brings Python and Its Scientific Stack to the Browser with WebAssembly * Architecture & Design + Rebuilding Twitter's Public API + Uber Reveals Its API Gateway's Architecture + Microsoft's Low-Code Strategy Paints a Target on UIPath and the Other RPA Companies * Culture & Methods + Frank Trainer on SOLID architecture, Technical Excellence and Development as a Team Sport + Virtual Group Coaching: How to Improve Group Relationships in Remote Work Settings + How Testers Can Contribute to Product Definition * AI, ML & Data Engineering + CMU Develops Algorithm for Guaranteeing AI Model Generalization + Scaling & Optimizing the Training of Predictive Models + Microsoft's ZeRO-Infinity Library Trains 32 Trillion Parameter AI Model * DevOps + Overcome Cloud & Serverless Security Challenges. Join Security Experts at InfoQ Live - June 22 + Zesty Disk Provides Automatic Scaling for AWS EBS + Shifting to Continuous Documentation as a New Approach for Code Knowledge The InfoQ Newsletter A round-up of last week's content on InfoQ sent out every Tuesday. Join a community of over 250,000 senior developers. View an example * Get a quick overview of content published on a variety of innovator and early adopter technologies * Learn what you don't know that you don't know * Stay up to date with the latest information from the topics you are interested in Enter your e-mail address [ ] [ ] Select your country [Select a country] [ ] I consent to InfoQ.com handling my data as explained in this Privacy Notice. [Subscribe] We protect your privacy. QCon Software Development Conferences Sign up to get notified when registration opens for the next QCon Plus software engineering conference. November, 2021 Home Create account Login QCon Conferences Events Contribute InfoQ Editors About InfoQ About C4Media Media Kit Diversity Events * InfoQ Live June 22nd, 2021 * InfoQ Live July 20th, 2021 Follow us on Youtube187K Followers Linkedin16.1K Followers RSS19K Readers Twitter48k Followers Facebook20K Likes AlexaNew Stay in the know The InfoQ Podcast[infoq-podc] Engineering Culture Podcast[engineerin] The Software Architects' Newsletter[architects] General Feedback feedback@infoq.com Advertising sales@infoq.com Editorial editors@infoq.com Marketing marketing@infoq.com InfoQ.com and all content copyright (c) 2006-2021 C4Media Inc. InfoQ.com hosted at Contegix, the best ISP we've ever worked with. Privacy Notice, Terms And Conditions, Cookie Policy BT Is your profile up-to-date? Please take a moment to review and update. Email Address* [ ] Note: If updating/changing your email, a validation request will be sent Company name: [ ] Keep current company name Update Company name to:* [ ] Company role: [ ] Keep current company role Update company role to:* [ ] Company size: [ ] Keep current company Size Update company size to:* [ ] Country/Zone: [ ] Keep current country/zone Update country/zone to:* [--- Select a country --- ] State/Province/Region: [ ] Keep current state/province/region Update state/province/region to: [] [ ] Subscribe to our newsletter? [ ] Subscribe to our architect newsletter? [ ] Subscribe to our industry email notices? [ ] By subscribing to this email, we may send you content based on your previous topic interests. See our privacy notice for details. [ ] Subscribe to our Special Reports newsletter? [Submit] You will be sent an email to validate the new email address. This pop-up will close itself in a few moments. *