Linux Plumbers Conference 2024

Name: Linux Plumbers Conference 2024
Start: 2024-09-18T05:00:00+02:00
End: 2024-09-20T23:30:00+02:00
Location: No location set

18–20 Sept 2024

Europe/Vienna timezone

LPC 2024 - Overview
LPC blog
Attend
Health & Safety
Call for Proposals
Schedule Overview
Join the Chat
Watch Live (Free)
Topics
Graphic Resources
Anti-harassment policy
Contact
FAQs
LPC 2023 site

2024

contact@linuxplumbersconf.org

Attack vector controls for speculation mitigations

20 Sept 2024, 15:20

20m

"Room 1.31-1.32" (Austria Center)

"Room 1.31-1.32"

Austria Center

123

x86 Microconference x86 MC

David Kaplan (AMD)

There are currently more than a dozen command line options related to x86 CPU speculation bugs, and it takes a security expert to understand them all and when they can be safely disabled. This talk will discuss a recent RFC that proposes simpler “attack vector” based controls which would allow admins to select a set of mitigation options based on how the system is being used. For instance, if the system only runs trusted VMs, then guest-to-host mitigations should be disabled. The goal is to make it easier to select appropriate and consistent mitigation options, and potentially recover lost performance.

David Kaplan (AMD)

Attack vector controls.pdf

Video

Linux Plumbers Conference 2024

2024

Attack vector controls for speculation mitigations

"Room 1.31-1.32"

Austria Center

Speaker

Description

Primary author

Presentation materials