☆ Yσɠƚԋσʂ ☆@lemmy.ml to Security@lemmy.mlEnglish · 2 months agoWebsites have a new way to spy on visitors: Analyzing their SSD activityarstechnica.comexternal-linkmessage-square9linkfedilinkarrow-up128arrow-down11cross-posted to: privacy@lemmy.mltechnology@beehaw.org
arrow-up127arrow-down1external-linkWebsites have a new way to spy on visitors: Analyzing their SSD activityarstechnica.com☆ Yσɠƚԋσʂ ☆@lemmy.ml to Security@lemmy.mlEnglish · 2 months agomessage-square9linkfedilinkcross-posted to: privacy@lemmy.mltechnology@beehaw.org
minus-square☂️-@lemmy.mlcakelinkfedilinkarrow-up5·2 months agowhy do webpages have access to my fucking ssd in the first place
minus-square☆ Yσɠƚԋσʂ ☆@lemmy.mlOPlinkfedilinkarrow-up5·2 months agooh not directly, but the code on the page can do a timing attack to see how long it takes to read and write a large file which can be used to fingerprint your ssd
minus-square☂️-@lemmy.mlcakelinkfedilinkarrow-up3·2 months agoyeah that’s what i mean. this shit has to be abstracted away, seriously. complex javascript on webpages is full of holes.
minus-square☆ Yσɠƚԋσʂ ☆@lemmy.mlOPlinkfedilinkarrow-up4·1 month agoTiming attacks are tricky because a lot of the time people don’t even think of them as a vector.
why do webpages have access to my fucking ssd in the first place
oh not directly, but the code on the page can do a timing attack to see how long it takes to read and write a large file which can be used to fingerprint your ssd
yeah that’s what i mean. this shit has to be abstracted away, seriously.
complex javascript on webpages is full of holes.
Timing attacks are tricky because a lot of the time people don’t even think of them as a vector.