{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2019:AV4JOM2HXLPGXH2MQ3Z2JDXXC7","short_pith_number":"pith:AV4JOM2H","canonical_record":{"source":{"id":"1905.05726","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2019-05-14T17:14:37Z","cross_cats_sorted":[],"title_canon_sha256":"ebf7bda94b8f7358d8d1c15c265dcf981193017977c2b9d6ffeb385747cc1cc8","abstract_canon_sha256":"93e55473e1c3747945619d1d171a008078da66979b548336c020b12b8b7f1cde"},"schema_version":"1.0"},"canonical_sha256":"0578973347bade6b9f4c86f3a48ef717de2baed17e5f1875a26129669b93c436","source":{"kind":"arxiv","id":"1905.05726","version":1},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1905.05726","created_at":"2026-05-17T23:46:13Z"},{"alias_kind":"arxiv_version","alias_value":"1905.05726v1","created_at":"2026-05-17T23:46:13Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1905.05726","created_at":"2026-05-17T23:46:13Z"},{"alias_kind":"pith_short_12","alias_value":"AV4JOM2HXLPG","created_at":"2026-05-18T12:33:12Z"},{"alias_kind":"pith_short_16","alias_value":"AV4JOM2HXLPGXH2M","created_at":"2026-05-18T12:33:12Z"},{"alias_kind":"pith_short_8","alias_value":"AV4JOM2H","created_at":"2026-05-18T12:33:12Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2019:AV4JOM2HXLPGXH2MQ3Z2JDXXC7","target":"record","payload":{"canonical_record":{"source":{"id":"1905.05726","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2019-05-14T17:14:37Z","cross_cats_sorted":[],"title_canon_sha256":"ebf7bda94b8f7358d8d1c15c265dcf981193017977c2b9d6ffeb385747cc1cc8","abstract_canon_sha256":"93e55473e1c3747945619d1d171a008078da66979b548336c020b12b8b7f1cde"},"schema_version":"1.0"},"canonical_sha256":"0578973347bade6b9f4c86f3a48ef717de2baed17e5f1875a26129669b93c436","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-17T23:46:13.725101Z","signature_b64":"ztUULMVgHH6gtMcAQvlPEE+nrPc+nMWv2QTohNRk2P9ZKdPS6f1avUdLgZCaHSCNvQaSUJSdN8hG71HiHNMrDg==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"0578973347bade6b9f4c86f3a48ef717de2baed17e5f1875a26129669b93c436","last_reissued_at":"2026-05-17T23:46:13.724635Z","signature_status":"signed_v1","first_computed_at":"2026-05-17T23:46:13.724635Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1905.05726","source_version":1,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-17T23:46:13Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"RFlguhLi5m1MJztGPmG+C+b3QVBt2EZDa0PjYyGD3+4agHgNQYDuXa1Oc4xm3ELJtdSW71uc1iGod8YHf+IaBw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-25T21:34:53.026814Z"},"content_sha256":"1161d8232a75eb1e86d58fdca54d2c7572eb39a9b6e134d63e842ba3f492fb6e","schema_version":"1.0","event_id":"sha256:1161d8232a75eb1e86d58fdca54d2c7572eb39a9b6e134d63e842ba3f492fb6e"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2019:AV4JOM2HXLPGXH2MQ3Z2JDXXC7","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"ZombieLoad: Cross-Privilege-Boundary Data Sampling","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Daniel Gruss, Daniel Moghimi, Jo Van Bulck, Julian Stecklina, Michael Schwarz, Moritz Lipp, Thomas Prescher","submitted_at":"2019-05-14T17:14:37Z","abstract_excerpt":"In early 2018, Meltdown first showed how to read arbitrary kernel memory from user space by exploiting side-effects from transient instructions. While this attack has been mitigated through stronger isolation boundaries between user and kernel space, Meltdown inspired an entirely new class of fault-driven transient execution attacks. Particularly, over the past year, Meltdown-type attacks have been extended to not only leak data from the L1 cache but also from various other microarchitectural structures, including the FPU register file and store buffer.\n  In this paper, we present the ZombieLo"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1905.05726","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-17T23:46:13Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"+ixb4EGUoEN7ldPXQF89VxRPQTuJqER6ujXSL3L0HgLq0XbHkf0dtv//wKt0QMdyOzHnGcRtivL36zGF0JKYBA==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-25T21:34:53.027514Z"},"content_sha256":"53a5a8b3f24761de66e83ef9e10dc79cd6b8c7b6eac7c8061ffc178a3f9655a1","schema_version":"1.0","event_id":"sha256:53a5a8b3f24761de66e83ef9e10dc79cd6b8c7b6eac7c8061ffc178a3f9655a1"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7/bundle.json","state_url":"https://pith.science/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-05-25T21:34:53Z","links":{"resolver":"https://pith.science/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7","bundle":"https://pith.science/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7/bundle.json","state":"https://pith.science/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7/state.json","well_known_bundle":"https://pith.science/.well-known/pith/AV4JOM2HXLPGXH2MQ3Z2JDXXC7/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2019:AV4JOM2HXLPGXH2MQ3Z2JDXXC7","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"93e55473e1c3747945619d1d171a008078da66979b548336c020b12b8b7f1cde","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2019-05-14T17:14:37Z","title_canon_sha256":"ebf7bda94b8f7358d8d1c15c265dcf981193017977c2b9d6ffeb385747cc1cc8"},"schema_version":"1.0","source":{"id":"1905.05726","kind":"arxiv","version":1}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1905.05726","created_at":"2026-05-17T23:46:13Z"},{"alias_kind":"arxiv_version","alias_value":"1905.05726v1","created_at":"2026-05-17T23:46:13Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1905.05726","created_at":"2026-05-17T23:46:13Z"},{"alias_kind":"pith_short_12","alias_value":"AV4JOM2HXLPG","created_at":"2026-05-18T12:33:12Z"},{"alias_kind":"pith_short_16","alias_value":"AV4JOM2HXLPGXH2M","created_at":"2026-05-18T12:33:12Z"},{"alias_kind":"pith_short_8","alias_value":"AV4JOM2H","created_at":"2026-05-18T12:33:12Z"}],"graph_snapshots":[{"event_id":"sha256:53a5a8b3f24761de66e83ef9e10dc79cd6b8c7b6eac7c8061ffc178a3f9655a1","target":"graph","created_at":"2026-05-17T23:46:13Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"In early 2018, Meltdown first showed how to read arbitrary kernel memory from user space by exploiting side-effects from transient instructions. While this attack has been mitigated through stronger isolation boundaries between user and kernel space, Meltdown inspired an entirely new class of fault-driven transient execution attacks. Particularly, over the past year, Meltdown-type attacks have been extended to not only leak data from the L1 cache but also from various other microarchitectural structures, including the FPU register file and store buffer.\n  In this paper, we present the ZombieLo","authors_text":"Daniel Gruss, Daniel Moghimi, Jo Van Bulck, Julian Stecklina, Michael Schwarz, Moritz Lipp, Thomas Prescher","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2019-05-14T17:14:37Z","title":"ZombieLoad: Cross-Privilege-Boundary Data Sampling"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1905.05726","kind":"arxiv","version":1},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:1161d8232a75eb1e86d58fdca54d2c7572eb39a9b6e134d63e842ba3f492fb6e","target":"record","created_at":"2026-05-17T23:46:13Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"93e55473e1c3747945619d1d171a008078da66979b548336c020b12b8b7f1cde","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2019-05-14T17:14:37Z","title_canon_sha256":"ebf7bda94b8f7358d8d1c15c265dcf981193017977c2b9d6ffeb385747cc1cc8"},"schema_version":"1.0","source":{"id":"1905.05726","kind":"arxiv","version":1}},"canonical_sha256":"0578973347bade6b9f4c86f3a48ef717de2baed17e5f1875a26129669b93c436","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"0578973347bade6b9f4c86f3a48ef717de2baed17e5f1875a26129669b93c436","first_computed_at":"2026-05-17T23:46:13.724635Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-17T23:46:13.724635Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"ztUULMVgHH6gtMcAQvlPEE+nrPc+nMWv2QTohNRk2P9ZKdPS6f1avUdLgZCaHSCNvQaSUJSdN8hG71HiHNMrDg==","signature_status":"signed_v1","signed_at":"2026-05-17T23:46:13.725101Z","signed_message":"canonical_sha256_bytes"},"source_id":"1905.05726","source_kind":"arxiv","source_version":1}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:1161d8232a75eb1e86d58fdca54d2c7572eb39a9b6e134d63e842ba3f492fb6e","sha256:53a5a8b3f24761de66e83ef9e10dc79cd6b8c7b6eac7c8061ffc178a3f9655a1"],"state_sha256":"88b58121aa0985e7d2b0c6e1fa36998fbdd69ab94b4eaf52d5e826d70d8e7b68"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"bFCeoHSIbIk9SOdF/523YzWlklmR7RG98Fp6Qi2+Q2JGkvPOPOLajxCbNEa+2mQruqJ2cU0B1mHrr4IVRMJ7BA==","signed_message":"bundle_sha256_bytes","signed_at":"2026-05-25T21:34:53.031430Z","bundle_sha256":"1146eb306255a4377f9bbb6f8700835bf91f3bdceec2c964750dc6e3b6edde2e"}}