August 20, 2021 09:25 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/YkKVbK2_CAI/new-linux-syscall-enables-secret-memory-even-the-kernel-cant-read
New Linux Syscall Enables Secret Memory Even the Kernel Can't Read
RoccamOccam writes: After many months of development, the memfd_secret() system call was finally merged for the upcoming 5.14 release of Linux. There have been many changes during this feature's development, but its core purpose remains the same: allow a user-space process to create a range of memory that is inaccessible to anybody else -- kernel included. That memory can be used to store cryptographic keys or any other data that must not be exposed to others. Reportedly, it is even safe from processor vulnerabilities like Spectre because secret memory is uncached mapped.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/YkKVbK2_CAI/new-linux-syscall-enables-secret-memory-even-the-kernel-cant-read
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot