What we're about

Polyglot Vancouver's bi-monthly reading group. We read papers related to software engineering or computer science topics then meet in person to discuss them.

We have a code of conduct (http://www.meetup.com/Polyglot-Vancouver-Reading-Group-Software-Eng-CS/about/), please follow it, and don't hesitate to contact an organizer if anyone is not following it.

We moved from Google+, you can check there for archival purposes (https://plus.google.com/communities/110886264051164890990).

Upcoming events (1)

Spectre is here to stay: An analysis of side-channels and speculative execution

The Paper The paper: https://arxiv.org/abs/1902.05178 Format We start at 6:10, don't be late! The discussion lasts for about 1 to 1.5 hours, depending upon the paper. • Read the paper (done before you arrive) • Introductions (name, and background) • First impressions (1-2 minutes this is what I thought) • Structured review (we move through the paper in order, everyone gets a chance to ask questions, offer comments, and raise concerns) • Free form discussion • Nominate and vote on the next paper • Adjourn for food and/or drink at Steamworks (https://www.google.ca/maps?ion=1&espv=2&q=steamworks&bav=on.2,or.&biw=1674&bih=956&dpr=2&um=1&ie=UTF-8&sa=X&ved=0ahUKEwjTpLXtqb_MAhVC0mMKHWLiBLcQ_AUIBigB) Abstract The recent discovery of the Spectre and Meltdown attacks represents a watershed moment not just for the field of Computer Security, but also of Programming Languages. This paper explores speculative side-channel attacks and their implications for programming languages. These attacks leak information through micro-architectural side-channels which we show are not mere bugs, but in fact lie at the foundation of optimization. We identify three open problems, (1) finding side-channels, (2) understanding speculative vulnerabilities, and (3) mitigating them. For (1) we introduce a mathematical meta-model that clarifies the source of side-channels in simulations and CPUs. For (2) we introduce an architectural model with speculative semantics to study recently-discovered vulnerabilities. For (3) we explore and evaluate software mitigations and prove one correct for this model. Our analysis is informed by extensive offensive research and defensive implementation work for V8, the production JavaScript virtual machine in Chrome. Straightforward extensions to model real hardware suggest these vulnerabilities present formidable challenges for effective, efficient mitigation. As a result of our work, we now believe that speculative vulnerabilities on today's hardware defeat all language-enforced confidentiality with no known comprehensive software mitigations, as we have discovered that untrusted code can construct a universal read gadget to read all memory in the same address space through side-channels. In the face of this reality, we have shifted the security model of the Chrome web browser and V8 to process isolation. Getting There Mobify is near the Vancouver City Centre Canadaline and Skytrain Stations and there is pay parking available. Come up to the 4th floor, wait for someone to let you in.

Photos (6)

Related topics