Skip to main content

A speed benefit in solid-state disk design opens them up for attack

ssd design contains data corruption vulnerability ps4 pro how to7
Image used with permission by copyright holder
Solid-state disks (SSDs) offer some serious benefits over their older hard-disk drive (HDD) siblings. SSDs are faster by orders of magnitude than HDDs, and they’re fundamentally more reliable — particularly for mobile devices where moving parts can be affected by movement and drops.

As SSD pricing has dropped from being significantly more expensive than HDDs to only a little more expensive, the price-to-performance ratio has improved to where SSDs have become by far the preferred storage device. However, some new information suggests that SSDs aren’t perfect and bring a unique vulnerability to particular kinds of attacks, as ExtremeTech reports.

The details are complex and require digging into the details of how SSDs are designed and how they work. Researchers at Carnegie Mellon University were the first to uncover the flaw, and their findings are covered in copious technical detail in a recently published paper.

In simpler terms, the vulnerability affects particular kinds of SSDs that are based on multilevel cell (MLC) technology, which make up the majority of those currently being sold and developed. The vulnerability in question does not affect older single-level cell (SLC) devices. The most advanced 3D NAND flash used in some SSDs are not affected yet but could be affected in future designs.

The vulnerability leverages a design quality of MLC-based SSDs that actually confers some benefits, including lower latency and better performance. The problem stems from the fact that data is written into a buffer directly from the individual flash cell that’s going to be written and not from the SSD’s flash controller.

Again, it’s all very technical, but basically, data can be corrupted by an attacker introducing interference and introducing errors during the programming process. That can result in corrupted data and actual damage to an SSD.

The solution would be to buffer data into the SSD flash controller and allow the controller to correct errors. The problem with this response is that it would also increase latency by around 5 percent and thus reduce performance — something that manufacturers might not be quick to do in the consumer market in particular given the important of raw speed to selling SSDs.

In any event, there’s something else to worry about to go along with the waves of malware and ransomware attacks we’ve seen lately. Our SSDs aren’t as safe as we thought they were, and that’s all we needed.

Editors' Recommendations

Mark Coppock
Mark has been a geek since MS-DOS gave way to Windows and the PalmPilot was a thing. He’s translated his love for…
A new wave of powerful laptops rises to challenge the MacBook Pro
Apple MacBook Pro 16 downward view showing keyboard and speaker.

The MacBook Pro got really powerful in its most recent update. The 16-inch M3 Max configuration bumps the graphics performance significantly, making it unlike anything you can buy for professional content creators.

But Windows laptops are responding. There's a new wave of non-gaming laptops that are integrating GPUs up to an RTX 4070 and challenging the performance of the MacBook Pro -- often at a much lower price.
Samsung Galaxy Book4 Ultra

Read more
How to insert a checkbox in Word on Windows and Mac
A person using a computer in bed.

Whether you’re outlining a recipe or putting together a daily to-do list, Microsoft Word is a great tool for keeping all your ideas and information organized. Beyond its word processing capabilities, you’ll even be able to create electronic checkboxes that you can tick and untick. It’s really easy to do, and we put together this step-by-step guide to teach you how.

Read more
The most common Zoom problems and how to fix them
zoom privacy feature freeze active users meeting office

Is Zoom giving you problems and you're not quite sure how to solve them? Fortunately, troubleshooting Zoom issues doesn't always have to be difficult. You can actually fix quite a few of its problems yourself. To help get your Zoom calls working properly, we’ve collected the most common Zoom problems users face and have provided easy solutions to be able to fix them.

If you also use m or are making the switch to Zoom because of issues with Teams, check out our guide to fixing Microsoft Teams problems; maybe you will find a solution there so you won't have to make the switch.
Webcam or audio not working

Read more