(github.com)

132 points cl3misch | 1 comments | 17 Jun 24 22:44 UTC | HN request time: 0s | source

Show context

voidbert ◴[18 Jun 24 00:20 UTC] No.40712750[source]▶

>>40712020 (OP) #

Please consider the risks of the following vulnerability before deciding whether or not to undervolt: https://plundervolt.com/

replies(6): >>40712818 #>>40712825 #>>40712902 #>>40713134 #>>40713189 #>>40713668 #

dannyw ◴[18 Jun 24 01:22 UTC] No.40713134[source]▶

>>40712750 #

Isn’t SGX mostly used for DRM, remote attestation, and other anti-consumer stuff in practice today?

I haven’t came across a use case of SGX that benefits me.

replies(3): >>40713437 #>>40715703 #>>40717485 #

1. bobbiechen ◴[18 Jun 24 13:16 UTC] No.40717485[source]▶

>>40713134 #

SGX is actually deprecated on client devices like PCs, so it is rather difficult to use it in anti-consumer ways now (and as mentioned in a sibling thread, makes this rather irrelevant to the topic of undervolting your own PC).

In my experience (working in the field at Anjuna), SGX and other Confidential Computing are quietly used on the server-side in enterprises a lot. It's a part of defense-in-depth, often to protect critical secrets and cryptographic keys, or the systems that manage them.

↑

Intel-undervolt: CPU undervolting and throttling configuration tool for Linux