Obvious question: Are there programs with these instructions in the wild?

AlyssaRowan · on Sept 11, 2017

Yes.

This kind of technique, and the exploitation of minor CPU errata, can be used to help differentiate processor models and steppings.

That in turn allows a currently widespread DRM system to download personalised portions of object code that rely on properties specific to the licensed hardware in order to execute properly, in an attempt to counter debugging, emulation and transfer - continuing a tradition practised in copy protection techniques since at least the 6502, maybe even earlier.

amelius · on Sept 11, 2017

Is there a term for that, similar to "security by obscurity"?

Open-Sourcery · on Sept 12, 2017

how does "Identification by exploitation" sound.

inetknght · on Sept 10, 2017

I would love to know the answer to that. Something tells me that we need to fix disassemblers before we can answer it though.

k__ · on Sept 10, 2017

Do they have any benefit over the valid instructions?

tyingq · on Sept 11, 2017

Has happened in the past...

http://www.rcollins.org/secrets/opcodes/SALC.html