Thanks for the info, blibbet. My Intel ME "notorious" comment is mainly based on the issues raised in https://libreboot.org/faq/#intel.
On Tue, Mar 1, 2016 at 11:02 AM, Blibbet <blib...@gmail.com> wrote: > > On 02/29/2016 09:16 PM, Bob Summerwill wrote: > [...] > > * Samsung KNOX, using Trustonic's TEE ( > > https://www.trustonic.com/technology/trusted-execution-environment) > which > > sounds much like the notorious Intel ME to me. Does anybody here have > > experience of Trustonic TEE, and can confirm that. or explain what it > does > > better than me? I think it's more proprietary software on-silicon, > which > > constrains what you can run on your own device. > [..] > > https://en.wikipedia.org/wiki/Trusted_execution_environment#Implementations > > Most ARM chips have TrustZone or some other TEE. Most Intel systems have > a Mangement Engine. Most AMD systems have a Platform Security > Processor. There are open source implementations of TEE, like OP-TEE. > TEEs protect 'untrusted' software stacks (Windows, Linux, Android, > etc.). It can be helpful for security, and may also be misused by > attackers to abuse security and privacy. It is 'notorious' if you want > to reconfigure a system in a way that the vendor would consider > something more a security attack than a normal use case of a consumer. :-( > > > _______________________________________________ > Replicant mailing list > Replicant@lists.osuosl.org > http://lists.osuosl.org/mailman/listinfo/replicant > -- b...@summerwill.net
_______________________________________________ Replicant mailing list Replicant@lists.osuosl.org http://lists.osuosl.org/mailman/listinfo/replicant