Magic Packet

Date: 2017-12-06 11:54 pm (UTC)
From: (Anonymous)
Even though AMT isn't active on non-corporate machines, is it unreasonable to assume, that it could be remotely activated?

A mechanism whereby the ME activates its full AMT feature set on receiving a magic packet doesn't seem that far fetched. All that's required is the ME listening for some magic number in an IP packet, which may include an encrypted payload instructing the ME what to do.

This would make be virtually undetectable, since the ME has access to strong crypto and possibly (?) a public key controlled by Intel or another entity.

This may sound like a conspiracy theory (and actually be one), but the risk seems real, and the implications drastic, since the ME has far more control over the system than its owner or user.
From:
Anonymous
OpenID
Identity URL: 
User
Account name:
Password:
If you don't have an account you can create one now.
Subject:
HTML doesn't work in the subject.

Message:

If you are unable to use this captcha for any reason, please contact us by email at support@dreamwidth.org


 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.

Profile

Matthew Garrett

About Matthew

Power management, mobile and firmware developer on Linux. Security developer at Google. Ex-biologist. @mjg59 on Twitter. Content here should not be interpreted as the opinion of my employer.

Expand Cut Tags

No cut tags