Skip to main content

AMD’s defenses against Spectre V2 may be inadequate

Just a few days ago, Intel and ARM chips were once again found to be affected by the Spectre V2 vulnerability, also known as branch history injection (BHI). AMD processors were thought to be safe at the time.

Unfortunately, further research shows that AMD is not immune to Spectre V2, and its previous measures may be inadequate, bringing performance drops of up to 54%.

The AMD Ryzen 5000 APU against a red background.

Spectre and Meltdown flaws were first found in December 2017, and during the initial attack, Intel, Arm, and AMD chips were all affected. When Spectre reemerged just last week, AMD seemed to get away unscathed due to the different architecture of its chips, but Intel and Arm chips were hit hard.

On Intel CPUs, Spectre is a proof-of-concept exploit that introduces malicious code into the computer’s kernel, opening the door to a wide range of vulnerabilities, such as the extraction of personal data and passwords. Spectre V2 is said to affect Intel processors released within the last few years, including the latest Intel Alder Lake CPUs.

Get your weekly teardown of the tech behind PC gaming
Check your inbox!

This time around, AMD initially seemed to be doing fine in the face of BHI, but according to Intel researchers, AMD’s chipset may still have code exposures. AMD, just like the other two chip giants, had introduced certain security measures when Spectre was first discovered in 2017. Experts from Team Red assured that these measures are still in place and are helping its chips avoid the attack. This may not be quite as true as AMD would like it to be.

As detailed by the VUSec group at Vrije Universiteit Amsterdam, AMD used the Retpoline strategy to mitigate Spectre V2. According to the research team, the generic Retpoline code is inadequate and insufficient to combat Spectre V2. AMD disagrees with this, stating that its own hardware does a better job of utilizing the Retpoline strategy.

Phoronix benchmarks of AMD CPUs.
Image source: Phoronix Image used with permission by copyright holder

Phoronix has also analyzed the performance of AMD CPUs with the Retpoline mitigations enabled and found performance drops of up to 54% in some tests. This implies that AMD’s solution, while seemingly effective in mitigating the attacks this time around, may have an adverse impact on Zen-based processors.

AMD was made aware of the findings of these research teams and issued an official recommendation, talking about the affected products and their mitigation measures. Using Linux, users can choose which mitigation against Spectre V2 is being used at boot time. AMD continues to encourage users to utilize the generic Retpoline.

The Intel research team that wrote a paper about this seemingly disagrees with the approach, stating: “The effectiveness of this mitigation can be compromised by the inherent race condition between the speculative execution of the predicted target and the architectural resolution of the intended target, since this can create a window in which code can still be transiently executed.”

Wccftech compiled the various sources and initially shared the news. One could assume that Intel would be pleased to find issues with AMD’s chips, but with vulnerabilities as large as Spectre V2, chipmakers tend to work together in order to minimize risks. However, AMD seems confident in its fixes.

Editors' Recommendations

Monica J. White
Monica is a UK-based freelance writer and self-proclaimed geek. A firm believer in the "PC building is just like expensive…
AMD and Intel duke it out in the GPD Win Max 2, and there’s a clear winner
A small GPD Win Max 2 laptop being held by two hands while playing a game with a Viking on the screen

GPD Win Max 2, the recently announced upcoming gaming console/handheld laptop hybrid, was just tested in a series of rather extensive benchmarks. Seeing as the GPD Win Max 2 comes in two variants, one with an AMD processor and one with Intel, both of them were compared to each other.

Sometimes, benchmark results can be inconclusive, but this time around, the winner is very clear to the point of it almost feeling unfair. AMD scored a resounding victory, but is there any hope for redemption for the Intel version of the console?

Read more
AMD Ryzen 7000 mobile specs revealed, may rival Intel’s best
AMD Ryzen processor render.

A new leak gives us more insight into the specifications of the upcoming AMD Dragon Range and AMD Phoenix CPUs. Both of these lineups are the next-generation Zen 4 processors made for laptops, although each will have its own niche.

AMD Phoenix - A Zen 4 & RDNA 3 MONSTER - Specs & Performance | Dragon Range - 16 Cores For MOBILE

Read more
Intel Arc A380 struggles against AMD’s worst RDNA 2 GPU
Gunnir A380 Photon graphics card in front of its box.

Intel Arc Alchemist A380 is Intel's first desktop graphics card in the lineup, and as of today, the first reviews of the GPU started rolling in as the embargo had been lifted. Unfortunately, the first look at Intel Arc doesn't bode well for the card.

According to early reviews, Intel's A380 struggles to compete even against the most low-end GPUs made by AMD and Nvidia.

Read more