The 2018 Pwnie Nominee For Most Innovative Research

TLBleed

Credit: Ben Gras, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida

The folks at VU might be on to something. This research presents a side-channel against the TLB, which cannot be partitioned between processes in software (by application or OS). The provided example employs machine learning and a tiny bit of brute forcing to determine a complete 256bit EdDSA key being used by a concurrent hyperthread–truly ahead of the curve.

TLBleed