Closed akegalj closed 1 year ago
(I'm probably misunderstanding) but aren't Spectre/Meltdown timing attacks more an issue for in-browser (untrusted) code than on servers?
@teymour-aldridge we may be running untrusted code depending on the use case (I have a few ideas.)
This is a stub issue regarding Spectre and timing attacks raised here https://github.com/lunatic-solutions/lunatic/pull/26#issuecomment-789801540
@jtenner rised an issue that
clock_time_get
andclock_time_res
might be succeptible to https://en.wikipedia.org/wiki/Spectre_(security_vulnerability)@jocaml advised that we might add a parameter to specify max resolution
Some points from Spectre wiki: