[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
From: Joe Btfsplk <joebtfsplk@xxxxxxx>
Date: Sat, 17 Dec 2016 16:45:01 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 17 Dec 2016 17:45:27 -0500
In-reply-to: <20161218030837.45d8837b@natsu>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAD2Ti2-o6stvGEVB8exdPKPZztdEVXif+esRx5YKw6=EH1qYLA@mail.gmail.com> <06644443913d1e6dca1b8bb2c14343d3.webmail@localhost> <20161218030837.45d8837b@natsu>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 6.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1

On 12/17/2016 4:08 PM, Roman Mamedov wrote:

On Sat, 17 Dec 2016 21:48:51 -0000
"podmo" <podmo@xxxxxxxxxxx> wrote:

It cannot be used to access all your data remotely. That
only works if you have all AMT features enabled, and you have a special
device called a BMC card plugged into your computer and connected to the
network.

The whole point of Intel AMT is that you CAN manage your computer remotely
without it having a separate BMC plugged in (e.g. see [1]). AMT itself is in
effect an integrated BMC by its own. After that the entire "well-written,
rational response" falls apart, the author clearly has not even a single clue
of what he's trying to talk about.

[1]
http://support.radmin.com/index.php?/Knowledgebase/Article/View/9/9/How-to-set-up-Intel-AMT-features

I'm no expert on Intel ME capabilities (by any stretch), but from thelittle I read from more "professional" sources, it does provide abilityto remotely access computers.Assuming they have the expertise & required data access to it. Thoseprofessional sources could also have some things wrong, or partlywrong. Confirmed technical details on this topic aren't exactlypublished on Intel's site.

If it gets to the point where it's common knowledge to every hacker howto even partially misuse the ME, then Intel will have made a gravebusiness decision. At that point, they'd have to discontinue it,perhaps give refunds for unusable computers or issue permanent fixes -to close the holes. If it becomes common knowledge & they don't takedrastic action, they'd suffer tremendously. That's not to say theymight not leave a better protected opening for government agencies.

What are all the countries - businesses, governments around the worldgoing to do? Buy computers that are open books to even 1 or 2 top levelagencies of a few key "democratic" countries, much less hackers freelytrading (Intel ME) "Both the keys and the toolchain, as well as thesource code," as Podmo stated?

I doubt it.
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: podmo

References:
- [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: grarpamp
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: podmo
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: Roman Mamedov

Prev by Author: Re: [tor-talk] Self-deleting scripts in http connections
Next by Author: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
Previous by thread: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
Next by thread: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
Index(es):
- Author
- Thread