-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 08/29/2017 02:57 PM, Leah Rowe wrote:
On 29/08/17 19:15, Timothy Pearson wrote:
On 08/29/2017 06:10 AM, Rene Shuster wrote:
Wow.
My favorite part is where the NSA itself basically admits that the ME can't be trusted! I wonder if they are looking at other architectures or if this HAP bit was enough for their needs?
So is this completely disabled, and not just "neutralized"?
No, it's just neutralised. The kernel, etc. are still required to boot the platform, it's just that the higher level userspace components are disabled at runtime. So, if a flaw is found in the kernel, etc. the ME remains a serious security threat.
- -- Timothy Pearson Raptor Engineering +1 (415) 727-8645 (direct line) +1 (512) 690-0200 (switchboard) https://www.raptorengineering.com