some questuons about you!

some questuons about you!

some questuons about you!

Quote from: Sinocelt on July 19, 2020, 08:37:26
This laptop is everything I want. Now we'll have to see how much it costs. If it's a lot more expensive than a Renoir laptop despite being significantly slower (CPU-wise), then it'll look a lot less appealing.

I can't link to it, but look for today's "First benchmarks: AMD Ryzen 4000 excels in the Lenovo ThinkPad X13 Gen 1" article.

Two versions of the same machine, with the Intel version being a lot slower and a lot more expensive than the AMD version.

That's not a good sign that the Tiger Lake Lenovo ThinkPad X1 Nano will be competitive.

This laptop is everything I want. Now we'll have to see how much it costs. If it's a lot more expensive than a Renoir laptop despite being significantly slower (CPU-wise), then it'll look a lot less appealing.

Poor Intel. After more than five years, they finally produce a chip worth getting excited about, but AMD preemptively steals its thunder.

Quote from: ariliquin on July 16, 2020, 12:14:33
Where's our AMD option? Better security, performance and power consumption. If i'm paying for the best I want the best CPU.

Why would Intel help design laptops with AMD processors? Ask AMD why they're not helping OEMs more with their laptop designs.

Quote from: Anonym on July 15, 2020, 20:05:09
Full memory encryption *is* the solution, just not to the problem you are thinking about. It's a laptop, so it can easily get stolen or left behind. There are data security requirements (as in compliance) that are solved just by encrypting all data on the harddrive. The thing is, if your machine is in sleep mode instead of powered off, your data can still be stolen from RAM -- unless RAM is also fully encrypted, then it has the same security as the data on that encrypted harddrive.

I use hibernation. I thought it's well known that sleep is vulnerable. So, why would any sane and responsible person use sleep? But even that doesn't fully protect you. If you're relying on a post boot authentication and your boot drive is encrypted, then it has to be decrypted before you're authenticated. Oops. I don't even want to touch the topic of leaving laptops unattended in untrusted environments. How can you leave a laptop with sensitive data behind? Yes, mistakes happen but a mistake like this can ruin your career. It's one thing to be worried about it happening (which keeps you on your toes), it's another to actually screw up like this.

Encryption is interesting if you're worried about someone physically removing RAM modules and copying them. Which is not possible when they're soldered to motherboard. Because he's getting just the encrypted data and nothing else. If you're worried about DMA through a port (or rogue expansion card or bus analyzer), restricting access to memory is better as primary defense. If you can get through that, you might get through encryption as well. It's usually the implementation that gets attacked. Not the encryption itself.

Quote from: Anonym on July 14, 2020, 19:24:10

Quote from: S.Yu on July 14, 2020, 18:36:28
Ah ha, because TGL has vPro.
Too few ports but otherwise impressive looking package.

Ryzen Pro not only has a vPro equivalent (AMD DASH), but also features full RAM encryption (not just in the SGX enclave) and even has ECC memory support built into the silicon (while in Intel you'll need a Xeon).

No I was actually referring to why they skipped ICL, it was likely because it didn't have vPro. No stance regarding the lack of AMD but I'm guessing AMD's not being helpful enough with their support.

I don't always buy new laptops, but when I do I want hardware vulnerabilities from Intel in it.

Where's our AMD option? Better security, performance and power consumption. If i'm paying for the best I want the best CPU.

To those saying Intel has generously shared their Thunderbolt, USB 4, just saying nothing generous about it. USB, just a tactic given the changing market.

Be careful the Lenovo ideapad I bought sounded great until it quit working 1 year and three months after I bought it. Barely used it. Now it's a 600 dollar paper weight. No one from Lenovo support offered any help to fix the power issue. It wont even power on when plugged in.

The article states thunderbolt 3 x 2.  The slide indicates the ports are thunderbolt 4.  I presume the slide takes precedence and should be believed versus the article's statement.

Quote from: _MT_ on July 15, 2020, 13:22:33Full memory encryption is not the solution. You can find papers on that topic. And in particular Epyc's memory encryption was breached. Again, this feature is aimed at virtualization. I don't share hardware so I don't feel the heat of these problems as much.

Full memory encryption *is* the solution, just not to the problem you are thinking about. It's a laptop, so it can easily get stolen or left behind. There are data security requirements (as in compliance) that are solved just by encrypting all data on the harddrive. The thing is, if your machine is in sleep mode instead of powered off, your data can still be stolen from RAM -- unless RAM is also fully encrypted, then it has the same security as the data on that encrypted harddrive.

Heading in the right direction. Looks promising.

Quote from: 123 on July 15, 2020, 00:36:12

Quote from: Nemo7 on July 14, 2020, 22:23:20
Remember when they were mad at OEMs for not including Thunderbolt in more AMD laptops without knowing that thunderbolt is an Intel innovation. They should be glad that Intel is allowing everyone including AMD to use it in the first place. Intel even donated the TB3 to the latest USB4 standard to help the industry adaption.

TB3 is a vulnerability-riddled mess - just like Intel CPUs.
...
While I have no big love for AMD, they provide the most reasonable alternative to flawed Intel products at this point. From security standpoint, current AMD CPUs are designed better. For starters, they support full memory encryption unlike Intel, whose CPUs even in 2020 encrypt small enclave of memory at best, via SGX - which itself is a vulnerability-ridden mess.

FireWire suffered from the same vulnerability. It comes with RDMA. Great for performance, bad for security. It was a well known issue. Dealing with it costs money. And it wasn't seen as important enough. To customers. Because they ultimately pay for it. And the solution was a side effect - it was primarily about sandboxing virtual machines. It's a similar story with credit cards, for example. They only put out fires that actually burn them.

Full memory encryption is not the solution. You can find papers on that topic. And in particular Epyc's memory encryption was breached. Again, this feature is aimed at virtualization. I don't share hardware so I don't feel the heat of these problems as much.