Kudos to [@marcan](https://social.treehouse.systems/@marcan) for finding a "chicken bit" in Apple's M2 and M1 chips that disables DMP, the optimization that leaks secret encryption keys. This is significant. A couple caveats, though:
-- This isn't officially supported, or even documented anywhere, by Apple. It appears to turn off the DMP but no one knows (yet) what else it might turn off.
-- This can only be done on Linux, at least for now. There's no known way for MacOS to support using these bits.
https://infosec.exchange/@marcan@treehouse.systems/112238390873024938
Dan Goodin /
npub1z3…8qvzu
2024-04-12 15:51:45
Author Public Key
npub1z3lwfekw80j4ngzg6ky3ks202xr6uwnd4jttxzsd4euc9l55euvq48qvzuPublished at
2024-04-12 15:51:45Event JSON
{
"id": "06443e8b2d5d3850a8ce71ff9cc8a923fb140bb86d6e73b502ff043822705b96",
"pubkey": "147ee4e6ce3be559a048d5891b414f5187ae3a6dac96b30a0dae7982fe94cf18",
"created_at": 1712937105,
"kind": 1,
"tags": [
[
"p",
"058a6d106c5e6719008ce4db3f64c846caf49925227a39533d12a846fbab21ee"
],
[
"proxy",
"https://infosec.exchange/users/dangoodin/statuses/112259046128696814",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/dangoodin/statuses/112259046128696814",
"pink.momostr"
]
],
"content": "Kudos to [@marcan](https://social.treehouse.systems/@marcan) for finding a \"chicken bit\" in Apple's M2 and M1 chips that disables DMP, the optimization that leaks secret encryption keys. This is significant. A couple caveats, though:\n\n-- This isn't officially supported, or even documented anywhere, by Apple. It appears to turn off the DMP but no one knows (yet) what else it might turn off.\n\n-- This can only be done on Linux, at least for now. There's no known way for MacOS to support using these bits.\n\nhttps://infosec.exchange/@marcan@treehouse.systems/112238390873024938",
"sig": "6f610edab69cc8d726d86679f90f6751660fc8b6019be7145c0123869f950b3247f5fcab92d4f080a5b990065afa62eb0d5bd4fcbc89267504c5158bb1b8a70c"
}