This blog post was authored by Troy Fridley and Omar Santos of Cisco PSIRT.
On Mar 9 2015, the Project Zero team at Google revealed findings from new research related to the known issue in the DDR3 Memory specification referred to as “Row Hammer”. Row Hammer is an industry-wide issue that has been discussed publicly since (at least) 2012.
The new research by Google shows that these types of errors can be introduced in a predictable manner. A proof-of-concept (POC) exploit that runs on the Linux operating system has been released. Successful exploitation leverages the predictability of these Row Hammer errors to modify memory of an affected device. An authenticated, local attacker with the ability to execute code on the affected system could elevate their privileges to that of a super user or “root” account. This is also known as Ring 0. Programs that run in Ring 0 can modify anything on the affected system. Read More »
Tags: cybersecurity, DRAM, Exploit, psirt, row hammer, rowhammer, security
It’s always interesting and often entertaining to observe how competitors promote their products and what they choose to focus on—and more importantly, what they choose not to focus on and what they hope people won’t ask questions about.
Consider yet again how a competitor chooses to position their “purpose built” AP vs. the Cisco Aironet 3700 802.11ac Access Point Series.
This competitor frequently (and somewhat obsessively) points out that its 802.11ac AP has dual “active” 800 MHz cores while the Cisco AP3700 has only one “active” 800 MHz core. This is not completely true since it completely overlooks the fact that the Cisco AP3700 also has a dedicated CPU core and DSP for each radio subsystem.
Furthermore, it also overlooks that the dual “active” cores in the competitor’s AP share 512 MB of DRAM. The single “active” core of the AP3700 has dedicated 512 MB of DRAM. Also each radio subsystem has a dedicated 128 MB DRAM (for 768 MB total DRAM in the AP3700).
Why is all of this important? Read More »
Tags: 11ac, 802.11ac, access point, AP, architecture, ASIC, client, compute, Computing, design, device, DRAM, efficiency, hardware, HD, HDX, high density, Industry, infrastructure, LAN, MB, memory, memory management, Mhz, mobile, mobility, network, networking, performance, rf, system, wi-fi, wifi, wireless, wlan