Security considerations on Intel Management Engine

Since a while Intel has an embedded Management based on an ARM CPU integrated into the Chipset. This is called Management Engine and does several hardware near things. What makes this really interesting are the following things:
- it can communicate with the network and do weird things to your hardware- probably even upload new cpu microcodes
- it gets updated with BIOS, so if your System is more than one year old, there won't be any patches anymore. Firmware updates to the Network Chip are uncommon and endusers will probably never get handed out the corresponding firmware
- sourcecode is not available- at least not for me even working for an IHV (not for the Network Chip, not for the Management engine)

Trackbacks

  1. PingBack

Comments

Display comments as (Linear | Threaded)

  1. tripi says:

    Hey all, You could have carried out a fantastic job. I'll definitely stumbleupon that plus in our highly recommend so that you can friends and neighbors. I'm sure are going to took advantage of this amazing site.


Add Comment


Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.