Speculative execution attacks such as Spectre and Meltdown exploit microarchitectural optimizations to leak information across security domains. These vulnerabilities often stay undetected for years, because we lack the tools for systematic analysis of CPUs to find them.
In this talk I present Revizor, a tool that can automatically detect microarchitectural leaks in black-box CPUs. The talk will cover the key ideas behind Revizor, as well as the most recent extensions and CPU vulnerabilities it found.