Sujet : Re: Hidden Operating Systems in Chips vs. Secure, Auditable OSes: A Cybersecurity Comparison
De : Danni (at) *nospam* hyperspace.vogon.gov (R Daneel Olivaw)
Groupes : comp.os.linux.securityDate : 13. Jun 2025, 09:50:20
Autres entêtes
Organisation : To protect and to server
Message-ID : <102gooc$2efr3$1@paganini.bofh.team>
References : 1
User-Agent : Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 SeaMonkey/2.53.21
🇵🇱Jacek Marcin Jaworski🇵🇱 wrote:
Cześć!/Hi!
Did you know about "Intel Management Engine (ME)" or "AMD Platform Security Processor (PSP)" if no then read now:
<https://puri.sm/posts/hidden-operating-systems-in-chips-vs-secure-auditable-oses-a-cybersecurity-comparison>
This problem has been known for years - even before that critical vulnerability (Intel-SA-00086) from 2017.
The article says "The Management Engine in Intel devices is disabled to the extent possible", whatever that means. It does not say anything about AMD, and there is also no reference to any known problems with AMD's PSP.
Apart from that, the article is a sales pitch for Purism Products and is very much aimed at potential customers in the US. "Made in USA" is also not exactly a badge of trust any more, although I'm not sure which alternatives could be considered better.
Hidden Operating Systems in Chips vs. Secure, Auditable OSes: A Cybersecurity Comparison
Re: Hidden Operating Systems in Chips vs. Secure, Auditable OSes: A Cybersecurity Comparison