- Aug 14, 2014
Welcome to Overclockers Forums! Join us to reply in threads, receive reduced ads, and to customize your site experience!
If I ever heard someone gained access with no help from Intel, I would call the individual non-human, because it would require a bot network that is on par of a NSA data center to create the computing power necessary to break through the encryption.
and remote control of the CPU
The bigger and more disturbing question is why the hell would Intel do this in the first place. The only answer I can justify is espionage.
Easy solution is buy AMD.
This is an issue because you can't disable it on many systems, and it is an entry point to potentially spy on your system or plant false evidence in memory. All you can do is unplug your network cable (and if you have a laptop hope Intel doesn't include their own wifi drivers in the ME firmware in the future). Eventually RSA will become vulnerable to brute force, or someone will abscond with Intel's signing keys for the ME firmware and write boot sector malware to flash a compromised version, and then you'll have a nice bot net army that can't be repaired let alone detected by normal anti-malware software. You can hope it won't happen until all these Intel systems are obsolete and unused, but that doesn't negate the fact that these sideband entry points need to support being disabled by the end user.
Granted, if you have a router between you and the internet, it takes quite a bit of paranoia to really be concerned for your own system, since the ME firmware's secondary MAC and IP would be obviously shown in your network map. That doesn't negate concern for the huge population of technically moronic fools out there who just plug their computer into their modem and have no idea about networks beyond what their ISP advertises to them.
Did you read anything that I posted? The likely hood of someone (read: something) to get in is astronomical! NDA holds me back from completely saying what the entire procedure steps to utilizing this feature. But from first hand experience, I can tell you, NONE of your motherboards have the capability to gain access of to this node. Virtually everyone is safe.
I didnt know Intel had one of these, who is to say it isnt present in AMD as well ? or ARM? but that is further down the rabbit hole than my education allows me to go.
I worry about everything when it comes to this sort of thing, but even Im with wagex on this one... not particularly worried. The only way to ensure complete safety from this sort of thing is to build your own CPU Disclosure from Intel is another matter however. From the article they seem to be pleading that no one will try to crack it if no one knows about it... well someone found it I guess. Which is why I should be able to know about it, in order to calculate my own risk when making CPU decisions
Or maybe make your own OS?
How could intel know what to do in the OS if YOU made the OS? Make some false things (Code?) to confuse and stuff like that, I know making your own OS is really hard, But it might be harder to intel or any other company to "crack" the code and do stuff.
Correct me if im wrong
2 things :
1) making your own OS isn't *that* difficult. Making a nice a polished OS that works really well? That might be a problem. If you are interested in reading about making your own Linux distro check out "Linux From Scratch" for a step by step guide
2) the article claimed that all this stuff is "transparent" to the OS, which it goes on to explain means that it operates outside of the OS and no matter which one you run Windows / Linux or whatever.
As I said though I'm about as worried about this as I am about a plane dropping out of the sky on my head: possible but not likely and if it does happen then I get squished