Article: Intel’s Plans for 3DXP DIMMs Emerge
By: Adrian (a.delete@this.acm.org), December 2, 2018 7:01 am
Room: Moderated Discussions
Howard Chu (hyc.delete@this.symas.com) on December 2, 2018 4:53 am wrote:
> A lot of people travel with their laptop in Suspend-to-RAM state, so there's
> really no difference there. Don't take your hands off your laptop when traveling.
You are right, but I do not use Suspend-to-RAM, precisely for this reason.
Of course, it is good that everyone is able to choose what is more important for them, the convenience of Suspend-to-RAM or its security risk.
The problem with non-encrypted non-volatile DIMMs is that those would remove the possibility of choice in this matter.
If you would not like the risk, you would need to load a special kernel module or device driver, which would clear the memory at shutdown. That might be impossible in some environments and would nullify most advantages of a non-volatile memory.
>
> These days smartphones have as much RAM as laptops. People don't routinely
> walk around with their phones powered off, and phones are much more easily
> stolen than laptops. Seems like an unreasonable concern, or a risk that most
> people accept.
You are right again, but for this reason I take care to never have any sensitive information in my smartphone.
I also do not have any information stored in my laptop, when it is not in use, because I use an external SSD.
Non-encrypted non-volatile DIMMs would prevent me of following this policy, and unlike for the smartphone, I cannot avoid handling sensitive information with the laptop, because that is my main tool.
In its current form. AMD SME would not be applicable for NV DIMMs, because the encryption keys are not stored across resets.
It would have to be modified to receive the encryption key from an external source, at boot time.
Any form of storing the encryption keys inside, like in the existing SSDs with hardware encryption or in TPMs, is insecure by design and breaks the main assumption of cryptography.
> A lot of people travel with their laptop in Suspend-to-RAM state, so there's
> really no difference there. Don't take your hands off your laptop when traveling.
You are right, but I do not use Suspend-to-RAM, precisely for this reason.
Of course, it is good that everyone is able to choose what is more important for them, the convenience of Suspend-to-RAM or its security risk.
The problem with non-encrypted non-volatile DIMMs is that those would remove the possibility of choice in this matter.
If you would not like the risk, you would need to load a special kernel module or device driver, which would clear the memory at shutdown. That might be impossible in some environments and would nullify most advantages of a non-volatile memory.
>
> These days smartphones have as much RAM as laptops. People don't routinely
> walk around with their phones powered off, and phones are much more easily
> stolen than laptops. Seems like an unreasonable concern, or a risk that most
> people accept.
You are right again, but for this reason I take care to never have any sensitive information in my smartphone.
I also do not have any information stored in my laptop, when it is not in use, because I use an external SSD.
Non-encrypted non-volatile DIMMs would prevent me of following this policy, and unlike for the smartphone, I cannot avoid handling sensitive information with the laptop, because that is my main tool.
In its current form. AMD SME would not be applicable for NV DIMMs, because the encryption keys are not stored across resets.
It would have to be modified to receive the encryption key from an external source, at boot time.
Any form of storing the encryption keys inside, like in the existing SSDs with hardware encryption or in TPMs, is insecure by design and breaks the main assumption of cryptography.
| Topic | Posted By | Date |
|---|---|---|
| New article on Intel's 3DXP | David Kanter | 2018/07/23 10:02 AM |
| New article on Intel's 3DXP | Groo | 2018/07/23 01:53 PM |
| New article on Intel's 3DXP | Michael S | 2018/07/23 02:47 PM |
| New article on Intel's 3DXP | Teemo | 2018/07/23 05:38 PM |
| New article on Intel's 3DXP | Wes Felterw | 2018/07/23 09:41 PM |
| Flash DIMMs = bad idea | David Kanter | 2018/07/24 04:31 AM |
| Flash DIMMs = bad idea | Emil Briggs | 2018/07/24 06:30 AM |
| Flash DIMMs = bad idea | David Kanter | 2018/07/24 06:49 AM |
| Flash DIMMs = bad idea | Michael S | 2018/07/24 06:59 AM |
| Flash DIMMs = bad idea | Emil Briggs | 2018/07/24 08:29 AM |
| Flash DIMMs = bad idea | Doug S | 2018/07/24 08:49 AM |
| price | Michael S | 2018/07/24 03:16 PM |
| price | Doug S | 2018/07/24 03:32 PM |
| price | Michael S | 2018/07/24 03:49 PM |
| Flash DIMMs = bad idea | blaine | 2018/12/03 04:40 PM |
| Flash DIMMs = bad idea | Wes Felter | 2018/12/04 12:07 PM |
| Flash DIMMs = bad idea | RichardC | 2018/12/04 04:09 PM |
| Flash DIMMs = bad idea | Michael S | 2018/07/24 06:51 AM |
| Flash DIMMs = bad idea | Adrian | 2018/07/24 07:35 AM |
| Flash DIMMs = bad idea | Ricardo B | 2018/07/24 09:24 AM |
| Flash DIMMs = bad idea | bakaneko | 2018/07/24 06:55 PM |
| New article on Intel's 3DXP | Etienne | 2018/07/25 05:02 AM |
| New article on Intel's 3DXP | Howard Chu | 2018/12/01 06:23 AM |
| New article on Intel's 3DXP | Michael S | 2018/12/01 08:56 AM |
| New article on Intel's 3DXP | anon | 2018/12/01 09:21 AM |
| New article on Intel's 3DXP | Howard Chu | 2018/12/01 01:52 PM |
| New article on Intel's 3DXP | Adrian` | 2018/12/01 03:43 PM |
| New article on Intel's 3DXP | Adrian | 2018/12/01 11:05 PM |
| New article on Intel's 3DXP | Howard Chu | 2018/12/11 05:17 AM |
| New article on Intel's 3DXP | Adrian | 2018/12/11 05:42 AM |
| New article on Intel's 3DXP | Maynard Handley | 2018/12/11 08:20 AM |
| New article on Intel's 3DXP | wumpus | 2018/12/11 09:36 AM |
| New article on Intel's 3DXP | Anon | 2018/12/11 05:21 PM |
| New article on Intel's 3DXP | Maynard Handley | 2018/12/11 05:32 PM |
| New article on Intel's 3DXP | Anon | 2018/12/12 12:29 AM |
| New article on Intel's 3DXP | Maynard Handley | 2018/12/12 11:32 AM |
| New article on Intel's 3DXP | wumpus | 2018/12/12 12:07 PM |
| New article on Intel's 3DXP | Maynard Handley | 2018/12/12 12:41 PM |
| New article on Intel's 3DXP | Anon | 2018/12/12 03:55 PM |
| New article on Intel's 3DXP | Anon | 2018/12/12 03:49 PM |
| New article on Intel's 3DXP | Anne O. Nymous | 2018/12/12 01:14 AM |
| New article on Intel's 3DXP | anon | 2018/12/12 06:28 AM |
| New article on Intel's 3DXP | Maynard Handley | 2018/12/12 11:26 AM |
| New article on Intel's 3DXP | Anne O. Nymous | 2018/12/12 02:10 PM |
| New article on Intel's 3DXP | innocent bystander | 2018/12/12 10:34 PM |
| New article on Intel's 3DXP | anon | 2018/12/12 02:42 PM |
| New article on Intel's 3DXP | Howard Chu | 2018/12/02 05:53 AM |
| New article on Intel's 3DXP | Adrian | 2018/12/02 07:01 AM |
| New article on Intel's 3DXP | Howard Chu | 2018/12/02 11:34 AM |
| Intel's 3DXP availability | Etienne Lorrain | 2018/12/03 04:50 PM |
