Seguridad

Look both ways and watch out for side-channels!

It has been a while again since I've posted, I've been busy with the day job.

Given some recent research results, I thought I would briefly discuss side-channels.  In case you don't fully understand what a side-channel is I heard a great analogy from my boss, Intel Vice President Sridhar Iyengar (pro-tip:  it never hurts to compliment your boss occasionally :)).

Intel® Xeon® Processor E5-2600 v3 Accelerates Hadoop HDFS Encryption

The latest Intel® Xeon® processor with embedded Intel® Advanced Encryption Standard New Instructions (Intel® AES-NI) and the latest Cloudera distribution of Hadoop accelerate Big Data encryption.

Download cloudera-aes-ni.pdf

  • Desarrolladores
  • Servidor
  • Intel® AES-NI
  • cloudera
  • hadoop
  • Advanced Encryption Standard (AES)
  • encryption
  • Big data (datos a gran escala)
  • Centros de datos
  • Empresa
  • Seguridad
  • The Last Line Effect

    Copy-Paste

    I have studied numbers of errors caused by using the Copy-Paste method and can assure you that programmers most often tend to make mistakes in the last fragment of a homogeneous code block. I have never seen this phenomenon described in books on programming, so I decided to write about it myself. I called it the "last line effect".

    Null Pointer Dereferencing Causes Undefined Behavior

    I have unintentionally raised a large debate recently concerning the question if it is legal in C/C++ to use the &P->m_foo expression with P being a null pointer. The programmers' community divided into two camps. The first claimed with confidence that it wasn't legal while the others were as sure saying that it was. Both parties gave various arguments and links, and it occurred to me at some point that I had to make things clear. For that purpose, I contacted Microsoft MVP experts and Visual C++ Microsoft development team communicating through a closed mailing list.

    Intel AMT Alarm Clock

     

    Have you ever been working and had a patch come down from your IT department that you had to install now. Or how about a virus scan that brought your machine to a crawl in the middle of your work. If so, you may wish your IT department would use AMT Alarm Clock, a feature released in the 5.1 version of Intel Active Management Technology (AMT).

    Intel AMT WebUI Authentication issues with Internet Explorer

    If you have extended Active Directory (AD) for use with your AMT clients and Kerberos authentication, you may have issues connecting to the AMT WebUI for those machines when using Internet Explorer (IE). This is related to authentication settings.

    If you experience this problem, you can first try another browser (e.g. Firefox) to see if you can connect to the WebUI. If successful, then you can try the following configurations in your IE settings.

    Suscribirse a Seguridad