On Sun, Sep 22, 2013 at 7:56 PM, d.nix <d....@comcast.net> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > > On 9/22/2013 2:23 PM, Jerry Leichter wrote: >> On Sep 21, 2013, at 10:05 PM, d.nix wrote: >>> Hah hah hah. Uh, reading between the lines, color me *skeptical* >>> that this is really what it claims to be, given the current >>> understanding of things... >>> >>> http://www.intel.com/content/www/us/en/enterprise-security/what-is-vpro-technology-video.html >> >>> > The question isn't whether it's what it claims to be. It is that. But > is it's *more* than it claims to be. > > Yes, in my haste I neglected the "only" disclaimer bit; it is indeed a > means by which the *rightful owner/administrator* might perform very > useful tasks. The obvious crux of the biscuit is *who else* has > access, and what can they do surreptitiously? Painting with a broad brush, part of the solution is a remote administration board that can''t be removed. Cf, Fujitsu LOM (Lights Out Management), HP ILO (Integrated Lights Out) HP RILO (Remote Integrated Lights Out), Compaq RIB (Remote Insight Board), and Dell DRAC (Dell Remote Access Card).
As for who has access, that depends on the quality of the implementations. https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4784. Jeff _______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography
