this post was submitted on 13 Feb 2024
33 points (81.1% liked)

Privacy

31837 readers
132 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 8 months ago (1 children)
[–] [email protected] 7 points 8 months ago* (last edited 8 months ago) (4 children)

https://puri.sm/posts/reverse-engineering-the-intel-management-engine-romp-module/

Because parts of it have already been reverse engineered, we know it runs a modified version of Minix, and I would think that if a backdoor had been found during the reverse engineering process, that it would have been huge fucking computer security news.

It's only a backdoor in the sense that Intel was practicing security through obscurity instead of real security. There is proof an attacker could abuse the IME, but there is not proof it's an intended backdoor for use by Intel in spying on their customers.

EDIT: Further, as an all-AMD user, I almost never see this same scrutiny applied to the AMD Platform Security Processor. We know far less about it, and it deserves the same level of scrutiny, honestly.

[–] [email protected] 4 points 8 months ago

that it would have been huge fucking computer security news.

Nope. If someone found such a backdoor, it is more likely he/she sold it to the three letter agencies, who love hoarding vulnerabilities like that.

[–] [email protected] 2 points 8 months ago

Damn, thanks.

I was afraid for a second if my decision was bad for the server to use Intel with ME instead of a very specific hardware with coreboot.

I think this would cost me 1000€ instead of 120€ just for being paranoid.

[–] [email protected] 1 points 8 months ago

I agree the word "backdoor" is used too often