Page tree
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 166 Next »

Kantara Initiative    

Hello Kantara participants 
Our cloud service provider Digital Ocean, has advised us of a threat that could possibly affect some of the Kantara community.
Intel has discovered a security vulnerability called L1 Terminal Fault. Red Hat has a good video explaining it here. Digital Ocean uses Intel processors. The video explains a vulnerability where a malicious application in another cloud server that is running on the same processor core could conceivably read memory from our cloud server. While the attacker would not be able to target Kantara specifically, it could conceivably be randomly assigned a shared processor core whereby possibly personal data from pages in Confluence and/or Mailman with restricted access could be in the processor's memory. Intel and Digital Ocean are working diligently on the issue and will advise us of progress, so we can advise you. Please note that some of the fixes for this issue may significantly slow down our server infrastructure temporarily (the need to turn off hyper-threading). Thanks for your forbearance.

Kind regards, Kantara Staff

The Kantara Initiative is the global consortium improving trustworthy use of identity and personal data through innovation, standardization and good practice.

Join. Innovate. Trust.

Few, if any, organisations can succeed at all of stages of digital transformation in isolation.
Kantara Initiative brings together the right thought leaders and industry representation - vendors, adopters, governments, standards bodies - to address all transformation stages.


  • All Spaces
Space: Approval Programs
Space: Archived Groups
Space: BoT - Liaison Sub Committee (PRIVATE)
Space: DG - Identity Proofing and Verification Use Cases
Space: General Information
Space: Leadership Council
Space: Privacy & Identity Protection in mobile Driving License ecosystems - DG
Privacy & Identity Protection in mobile Driving License ecosystems
Space: Privacy Enhancing Mobile Credentials (PEMC)
Space: R&D Program
Space: WG - ANCR
Space: WG - Federation Interoperability
Space: WG - FIRE
Space: WG - Healthcare ID Assurance
Space: WG - Identity Assurance New
Space: WG - ISI
Space: WG - Open Trust Taxonomy for OAuth2
Space: WG - User Managed Access
Space: WG - User-Managed Access Developer Resources


  • No labels