☆ Yσɠƚԋσʂ ☆@lemmy.ml to Security@lemmy.mlEnglish · 1 month agoWebsites have a new way to spy on visitors: Analyzing their SSD activityarstechnica.comexternal-linkmessage-square6linkfedilinkarrow-up122arrow-down10cross-posted to: privacy@lemmy.mltechnology@beehaw.org
arrow-up122arrow-down1external-linkWebsites have a new way to spy on visitors: Analyzing their SSD activityarstechnica.com☆ Yσɠƚԋσʂ ☆@lemmy.ml to Security@lemmy.mlEnglish · 1 month agomessage-square6linkfedilinkcross-posted to: privacy@lemmy.mltechnology@beehaw.org
minus-square☂️-@lemmy.mllinkfedilinkarrow-up2·1 month agowhy do webpages have access to my fucking ssd in the first place
minus-square☆ Yσɠƚԋσʂ ☆@lemmy.mlOPlinkfedilinkarrow-up3·1 month agooh not directly, but the code on the page can do a timing attack to see how long it takes to read and write a large file which can be used to fingerprint your ssd
minus-square☂️-@lemmy.mllinkfedilinkarrow-up1·1 month agoyeah that’s what i mean. this shit has to be abstracted away, seriously. complex javascript on webpages is full of holes.
minus-square☆ Yσɠƚԋσʂ ☆@lemmy.mlOPlinkfedilinkarrow-up3·1 month agoTiming attacks are tricky because a lot of the time people don’t even think of them as a vector.
why do webpages have access to my fucking ssd in the first place
oh not directly, but the code on the page can do a timing attack to see how long it takes to read and write a large file which can be used to fingerprint your ssd
yeah that’s what i mean. this shit has to be abstracted away, seriously.
complex javascript on webpages is full of holes.
Timing attacks are tricky because a lot of the time people don’t even think of them as a vector.