Dear ARM-netbook and Coreboot readers,
In FSFE context we're looking for examples regarding firmware restrictions on modern computer hardware. This so that we can shed light on the difficult situation you are all too familiar with. Examples are:
- Trusted Platform Module (TPM) chips - Secure Boot - Intel - Management Engine - Advanced Management Technology - Boot Guard
It will be great if you can add some from the top of your head, ideally including some references. I'll be doing my own research as well, but your hints will greatly help this process.
Kind regards, Nico Rikken
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 07/08/2015 03:35 PM, Nico Rikken wrote:
Dear ARM-netbook and Coreboot readers,
In FSFE context we're looking for examples regarding firmware restrictions on modern computer hardware. This so that we can shed light on the difficult situation you are all too familiar with. Examples are:
- Trusted Platform Module (TPM) chips
- Secure Boot
- Intel
- Management Engine
- Advanced Management Technology
- Boot Guard
It will be great if you can add some from the top of your head, ideally including some references. I'll be doing my own research as well, but your hints will greatly help this process.
Kind regards, Nico Rikken
AMD's Platform Security Processor (PSP) is another example -- the x86 portion of the processor won't start unless the PSP says it's OK, and the PSP firmware is signed such that it cannot be replaced with a free software equivalent.
- -- Timothy Pearson Raptor Engineering +1 (415) 727-8645 http://www.raptorengineeringinc.com
Nico Rikken wrote:
- Intel
- Management Engine
- Advanced Management Technology
I think you are confusing these two terms. Please read the book http://www.apress.com/9781430265719 to learn about Intel's platform security technology.
//Peter