Researchers have developed TEE.Fail, a side-channel attack capable of extracting cryptographic keys from trusted execution environments in modern CPUs, including Intelβs SGX and TDX, and AMDβs SEV-SNP. This attack leverages physically inspecting memory traffic on DDR5 servers, risking data breaches and virtual machine integrity. #IntelSGX #AMDSEVSNP
Keypoints
- The TEE.Fail attack exploits physical memory interposition to extract secrets from CPU-based TEEs.
- It uses inexpensive off-the-shelf equipment to physically inspect DDR5 memory traffic.
- The attack can compromise cryptographic keys, including ECDSA and attestation keys, in updated systems.
- Existing encryption modes like AES-XTS are not sufficient to prevent these physical side-channel attacks.
- AMD and Intel have stated they do not plan to provide mitigations for these types of physical attacks.
Read More: https://thehackernews.com/2025/10/new-teefail-side-channel-attack.html