Viewing a single comment thread. View all comments

Intel_ME_is_Third_Reich wrote (edited )

Oh wow, thank you so much for doing an AMA on here!

Igor Skochinsky stated in last year's CCC that (IRC) it was unlikely that the ME was specifically built to allow the NSA to spy on everybody following the discovery of that special mode specifically crafted for the US admin. Do you agree with him on this? Or do you think that this is still irrelevant since the ME is a huge attack surface anyway and can be remotely exploited by anyone?

Also do you think that AMD processors and APUs for 2013 and previous years are now the go to for anyone who doesn't want something like the ME or PSP on their processors and who wants the best performance possible?

Finally what are your thoughts on Qubes OS? :)


libreleah OP wrote

Intent is irrelevant. What matters is that the ME is demonstrably insecure, and can be used to invade systems against the will of their users. Whether Igor's correct is not relevant, as far as I'm concerned.

AMD is just as bad as Intel nowadays, but some of their chipsets are supported in Libreboot (KCMA-D8 motherboard and KGPE-D16)

I have no strong feelings one way or the other, regarding Qubes OS. I'm not convinced that true isolation is possible in software. I believe that hardware-based isolation (having multiple physical systems) is better. I do my computing in very much the style of Qubes, but with multiple physical systems.