http://fm.csl.sri.com/LAW/2009/dobry-law09-HAP-Challenges.pdf (linked in PTSecurity's blogpost) might have the answer to your question, but it's not accessible for me.

On Tue, Aug 29, 2017 at 3:57 PM, Leah Rowe <info@gluglug.org.uk> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256



On 29/08/17 19:15, Timothy Pearson wrote:
> On 08/29/2017 06:10 AM, Rene Shuster wrote:
>> Wow.
>
> My favorite part is where the NSA itself basically admits that the
> ME can't be trusted!  I wonder if they are looking at other
> architectures or if this HAP bit was enough for their needs?
>
>

So is this completely disabled, and not just "neutralized"?

- --
Leah Rowe

Libreboot developer and project founder.

Use free software. Free as in freedom.
https://www.gnu.org/philosophy/free-sw.html

Use a free BIOS - https://libreboot.org/
Use a free operating system, GNU+Linux.

Support computer user freedom
https://fsf.org/ - https://gnu.org/

Minifree Ltd, trading as Ministry of Freedom | Registered in England,
No. 9361826 | VAT No. GB202190462
Registered Office: 19 Hilton Road, Canvey Island, Essex SS8 9QA, UK |
Web: https://minifree.org/

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEE+JRrnG26iGmvPhSA/0W3TPnRz5QFAlmlxzoACgkQ/0W3TPnR
z5RHPwf/TOLN0lvoyrFHZ1aj3QXCG/1pp5CmuIWU0NuEO4d2YyTyjT1NkdLzTmuG
1E1fNmbBN1XIciScmDPcXrccQzcwTI9LcY9Gt7E00Uf9Pxt/GkOIiaPWQN85E6NE
KLepNuz6pSrNvYkWhVxrDe2Ft3nRflxyPbcUFNzjFz+zm7MmfoBJ0WFT7p9y6/zy
l5LNGsiBgb/48141TzQNOF32dZUF1LGS0xrkkH7xhm2B9dnZVJjafN3tfdFmUHRw
dONkLqN7J+cHJzfbzriNFdHWpdRhlK+urdqtTBt/UxWVF1YKjygvdZ6ONXmKLOXl
QUOjOnstdU/oljH256ml3HSH0XhBiA==
=UEAF
-----END PGP SIGNATURE-----



--
Tech III * AppControl * Endpoint Protection * Server Maintenance
Buncombe County Schools Technology Department Network Group
ComicSans Awareness Campaign