☆ Yσɠƚԋσʂ ☆@lemmy.ml to Security@lemmy.mlEnglish · 8 hours agoWebsites have a new way to spy on visitors: Analyzing their SSD activityarstechnica.comexternal-linkmessage-square7fedilinkarrow-up124arrow-down11cross-posted to: privacy@lemmy.mltechnology@beehaw.org
arrow-up123arrow-down1external-linkWebsites have a new way to spy on visitors: Analyzing their SSD activityarstechnica.com☆ Yσɠƚԋσʂ ☆@lemmy.ml to Security@lemmy.mlEnglish · 8 hours agomessage-square7fedilinkcross-posted to: privacy@lemmy.mltechnology@beehaw.org
minus-square☂️-@lemmy.mllinkfedilinkarrow-up3·6 hours agowhy do webpages have access to my fucking ssd in the first place
minus-square☆ Yσɠƚԋσʂ ☆@lemmy.mlOPlinkfedilinkarrow-up5·5 hours agooh not directly, but the code on the page can do a timing attack to see how long it takes to read and write a large file which can be used to fingerprint your ssd
minus-square☂️-@lemmy.mllinkfedilinkarrow-up2·5 hours agoyeah that’s what i mean. this shit has to be abstracted away, seriously. complex javascript on webpages is full of holes.
minus-square☆ Yσɠƚԋσʂ ☆@lemmy.mlOPlinkfedilinkarrow-up4·2 hours agoTiming attacks are tricky because a lot of the time people don’t even think of them as a vector.
why do webpages have access to my fucking ssd in the first place
oh not directly, but the code on the page can do a timing attack to see how long it takes to read and write a large file which can be used to fingerprint your ssd
yeah that’s what i mean. this shit has to be abstracted away, seriously.
complex javascript on webpages is full of holes.
Timing attacks are tricky because a lot of the time people don’t even think of them as a vector.