Post · bonfire.cafe

@matthew_d_green@ioc.exchange · last month

Great article about how TEEs are providing much less security than folks believe they will. https://arstechnica.com/security/2025/10/new-physical-attacks-are-quickly-diluting-secure-enclave-defenses-from-nvidia-amd-and-intel/

Ars Technica

New physical attacks are quickly diluting secure enclave defenses from Nvidia, AMD, and Intel

On-chip TEEs withstand rooted OSes but fall instantly to cheap physical attacks.

Rapha3l

@rapha3l@social.g2od.ch replied · last month

@matthew_d_green

“From a user perspective, I don’t even have a way to verify where the server is. Therefore, I have no way to verify if it’s in a reputable facility or an attacker’s basement.”

@adfichter

Vielleicht ein weiteres Argument einige Sachen nicht in die Cloud zu stellen...

#dnip #digiges

Risotto Bias

@risottobias@toot.risottobias.org replied · last month

@matthew_d_green ah, so the @signalapp secure contact enclave is weakened?

#signal #blueteam #security

Derek Robson

@Robsonde@mastodon.social replied · last month

@matthew_d_green I don’t see it as “less security”

It’s more that they handle one attack vector very well and another vector very badly.

It’s then becomes a discussion about threat models.

If people have physical access to the server then all bets are off, but that’s not top of the threat model for most people.

Tony “Abolish ICE” Arcieri🌹🦀

@bascule@mas.to replied · last month

@matthew_d_green deterministic encryption strikes again!

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.1-alpha.8 no JS en

Automatic federation enabled