[cryptography] Fwd: Re: What is Intel® Core™ vPro™ Technology Animation

d.nix d.nix at comcast.net
Mon Sep 23 00:38:14 EDT 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



- -------- Original Message --------
Subject: Re: What is Intel® Core™ vPro™ Technology Animation
Date: Mon, 23 Sep 2013 05:56:48 +0200
From:
To: cypherpunks at cpunks.org

Security Evaluation of Intel's Active Management Technology
VASSILIOS VERVERIS

Master of Science Thesis
Stockholm, Sweden 2010

[...]
During production AMT platforms are equipped with one or more active
embedded hashed root certificates (factory default) from various SSL
vendors worldwide.
[...]
In our laboratory environment (see section 3) we have tested and found
that the ZTC remote provisioning can be implemented even while the Intel
AMT functionality is disabled within the BIOS as illustrated in Figure
3.6. Surprisingly the AMT platform broadcasts an ARP request packet upon
connecting to a wired network (typically a LAN) and follows the sequence
described in section 3.7.1. From this point and beyond the attacker
operates the SCS and could manipulate the PC according to his/her
malicious activities (see section 3.7.5) even while the Intel AMT is
disabled in BIOS.

http://kth.diva-portal.org/smash/get/diva2:508256/FULLTEXT01

- --
Hmmmm. That's not very reassuring.

DN
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.20 (MingW32)

iQEcBAEBAgAGBQJSP8W2AAoJEDMbeBxcUNAeYpgH/il2j/5ipVpRDsTjzOw0nPQH
MCiqNj9uqQGnAi9nCGHi99vFGax/IoTGcu/n7Tx+3Nqb9laacjyYu7lYREb5H/QR
cncppjotuIvNpVBhkLHES80cg71KmQ/UwwTHw1SCXCB7SIuYWaLELzcQyiK+4hj+
txlzxvx7sPEanksixZGTuR6ikq/H5RdHtDQoww/9eT2WmV+VXAGgm0ffs0sA4iQW
6aEGY1+dwi/+fOAWRjG4Wg51GsCpXeIsJ9ofjcwS8iWpyht51lwkvC6uladTXmoR
5iM9IAxPp/yz9CUkiFRNxAYMrjbMXt4xvXPgbzGM6rOYEGhqfSCv4s6671yxmDk=
=AibC
-----END PGP SIGNATURE-----


More information about the cryptography mailing list