New physical attacks are quickly diluting secure enclave defenses from Nvidia, AMD, and Intel

A new physical attack called TEE.fail has been released that compromises trusted execution environments (TEE) from Nvidia, AMD, and Intel. This low-cost, three-minute attack involves inserting a small hardware device between a memory chip and its motherboard slot after compromising the operating system kernel. Unlike previous attacks, TEE.fail works with DDR5 memory, affecting the latest TEE protections. Chipmakers exclude physical attacks from their threat models but often provide unclear statements about security assurances. Users frequently make incorrect or misleading claims about these protections, focusing on network edge server scenarios where physical access is a concern. Security researcher HD Moore notes that despite vulnerabilities, vendors continue to sell and users believe in the effectiveness of TEEs for such use cases.

Explore how the topics in this article connect to other news stories