Who's afraid of Spectre and Meltdown?

Speaker: Alexandre Oliva

Track: Security

Type: Long talk (45 minutes)

Room: Auditório

Time: Jul 20 (Sat), 16:00

Duration: 0:45

Architectural bugs Spectre and Meltdown have caused major panic and still worry many. Oddly, some proposed mitigations that require installing proprietary blobs have not caused similar worries, despite growing awareness about prevalent data collection, built-in backdoors and the risks of placing too much trust in software and hardware designers with interests not aligned with those of users. Whom can we trust, then? What lessons are there for the Free Software community? Being suspicious of Web blobs and foggy computing, and not victimizing anyone through them, do we have anything to fear but fear itself?