| 1 |
On Wednesday, 10 January 2018 01:46:08 GMT Rich Freeman wrote: |
| 2 |
> On Tue, Jan 9, 2018 at 8:33 PM, Corbin Bird <corbinbird@×××××××.net> wrote: |
| 3 |
> > On 01/09/2018 01:56 AM, Mick wrote: |
| 4 |
> > |
| 5 |
> > At this point, the only sure bet, is a non x86, x86_64, ARM, ARM64 CPU. |
| 6 |
> > |
| 7 |
> > Don't know enough to make a recommendation on a particular CPU arch at |
| 8 |
> > this |
| 9 |
> > point. |
| 10 |
> |
| 11 |
> Good luck with that... |
| 12 |
> |
| 13 |
> If you aren't hearing about Spectre fixes for a CPU it is most likely |
| 14 |
> because it is so obscure that nobody has bothered to check whether it |
| 15 |
> is vulnerable. |
| 16 |
> |
| 17 |
> Sure, there are some CPUs that have been tested and found to be ok. |
| 18 |
> However, almost anything modern is vulnerable to spectre. I just |
| 19 |
> wasn't something that was on anybody's radar. New CPUs are likely to |
| 20 |
> be resistant to these types of attacks regardless of vendor. |
| 21 |
|
| 22 |
Yes, but I would be surprised if new 'fixed' CPUs land anytime before 2019 ... |
| 23 |
if not 2020. I'd rather not be running an old Intel i7 which has not had its |
| 24 |
microcode patched all the way until then - if the complimentary microcode |
| 25 |
patch is *also* improving security besides speed, after the consequential |
| 26 |
kernel patches. |
| 27 |
|
| 28 |
|
| 29 |
> Sure, if I was about to place an order for 1000 CPUs tomorrow I'd |
| 30 |
> probably pick AMD over Intel to avoid the PTI overhead, but that is |
| 31 |
> about as far as I'd let these vulnerabilities affect purchase |
| 32 |
> decisions. There are lots of good reasons to go with ARM vs x86, but |
| 33 |
> this isn't really one of them. And outside of x86/ARM I think almost |
| 34 |
> any other CPU choice is going to be a niche item. |
| 35 |
|
| 36 |
I've seen Linus making statements back in 2016 of the year of the ARM laptop |
| 37 |
being upon us (Chromebook anyone?) and I've seen the 10nm Qualcomm Snapdragon |
| 38 |
835 ARM laptop by Asus featuring on CES 2018 with impressively long battery |
| 39 |
life, but I have no idea how it compares in performance terms with the equally |
| 40 |
vulnerable current x86 arch machines. That may be a different discussion |
| 41 |
anyway. |
| 42 |
|
| 43 |
Most vendors only sell Intel in their laptops. I could build a desktop I |
| 44 |
guess, but Ryzen is also affected by Spectre. With Intel's burning platform I |
| 45 |
want to jump off, but I'm not sure if spending money at this stage will |
| 46 |
materially improve my PC security ... or if it is wiser to wait for the next |
| 47 |
round of 'improved' CPUs. |
| 48 |
|
| 49 |
Are any of you planning to replace your Intel PCs and what are you considering |
| 50 |
as a replacement at present? |
| 51 |
-- |
| 52 |
Regards, |
| 53 |
Mick |
Archives