Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore a groundbreaking cybersecurity research presentation that unveils Branch Privilege Injection (BPI), a novel attack method that compromises Spectre v2 hardware mitigations in modern Intel processors. Learn how researchers from ETH Zurich discovered Branch Predictor Race Conditions (BPRC), a class of vulnerabilities that exploit asynchronous operations in branch predictors to violate hardware-enforced privilege and context separation mechanisms across all recent Intel CPUs. Discover three distinct variants of these vulnerabilities that breach critical security boundaries between user and kernel spaces, guest and hypervisor environments, and across indirect branch predictor barriers. Examine the technical details of how BPI enables arbitrary branch prediction injection tagged with kernel privilege from user mode, and understand the practical implications through an end-to-end exploit demonstration that successfully leaks arbitrary kernel memory from up-to-date Linux systems across six generations of Intel CPUs at speeds of 5.6KiB/s on Intel Raptor Cove architecture. Gain insights into the fundamental weaknesses in modern processor security mechanisms and the ongoing challenges in mitigating speculative execution vulnerabilities in contemporary computing systems.
