[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
From: "podmo" <podmo@xxxxxxxxxxx>
Date: Tue, 20 Dec 2016 01:04:19 -0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 19 Dec 2016 20:05:29 -0500
Importance: Normal
In-reply-to: <20161220040553.4b462d83@natsu>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAD2Ti2-o6stvGEVB8exdPKPZztdEVXif+esRx5YKw6=EH1qYLA@mail.gmail.com> <06644443913d1e6dca1b8bb2c14343d3.webmail@localhost> <20161218030837.45d8837b@natsu> <cf39e040-77c8-1059-e9b2-3d9e8f984564@gmx.com> <ef5daec3420c95d30751295ba62a746a.webmail@localhost> <e32886a7-8c5f-100d-2950-d3cb76314bb1@dea.spamcon.org> <01e49a0c4c4fc03e09b5f34eff99fd44.webmail@localhost> <20161220040553.4b462d83@natsu>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On 19 Dec 2016 23:05 Roman Mamedov wrote:
>
> It can mess with your apps, OS and
> security in all sorts of interesting ways, and you can NOT be absolutely
> certain that it doesn't.

No, but you can say the same about any complex system unless you built it
yourself. How do you know for sure the processor you are using doesn't
have an undisclosed equivalent to ME? If it's been audited, how do you
know the company doing the audit isn't compromised? Not much point
rehashing the entire Trusting Trust discussion.

I'm going to rely on Intel not wanting to sabotage their own company but
still wish they would provide better documentation and while I'm at it, an
easily accessible jumper or BIOS switch to disable it. Meanwhile, I'll
focus on standard security practices such as OS hardening, network
firewalling, sandboxing, etc. I'm fully prepared to retract this if actual
evidence shows up but at this point all of these have a better ROI against
attackers than chasing shadows or worrying about FUD.

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: Ivan Markin

References:
- [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: grarpamp
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: podmo
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: Roman Mamedov
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: Joe Btfsplk
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: podmo
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: Milton Scritsmier
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: podmo
- Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
  - From: Roman Mamedov

Prev by Author: Re: [tor-talk] NoScript problems after TBB 6.08 update
Next by Author: [tor-talk] How to unsubscribe (was Re: confusion over verification instructions for build verification on Mac OS X)
Previous by thread: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
Next by thread: Re: [tor-talk] Intel ME / AMT + NSL vs Tor Nodes
Index(es):
- Author
- Thread