Is the 'Secret' Chip In Intel CPUs Really That Dangerous? (networkworld.com)

← Back to Stories (view on slashdot.org)

Is the 'Secret' Chip In Intel CPUs Really That Dangerous? (networkworld.com)

Posted by msmash on Friday June 17, 2016 @08:40AM from the truth-is-out-there dept.

New submitter Miche67 writes: A recent Boing Boing blog post by Damien Zammit is stirring up fears, claiming Intel's x86 processors have a secret control mechanism that no one can audit or examine. And because of that, he says it could expose systems to undetectable rootkit attacks that cannot be killed.
Blogger Andy Patrizio, after talking with an Intel spokesperson, says the developer's argument has holes and he doesn't think Zammit will persuade Intel to replace the system with a free, open source option.

So, what we have is an open source crusader scaring the daylights out of people on a giant what-if scenario that even he admits couldn't happen in our lifetimes.

An Intel spokesperson told the publication: While the Intel Management Engine is proprietary and Intel does not share the source code, it is very secure. Intel has a defined set of policies and procedures, managed by a dedicated team, to actively monitor and respond to vulnerabilities identified in released products. In the case of the Intel Management Engine, there are mechanisms in place to address vulnerabilities should the need arise.

6 of 245 comments (clear)

Min score:

Reason:

Sort:

So .. Security by Obscurity. by Anonymous Coward · 2016-06-17 08:41 · Score: 5, Insightful

How nice ... Is there any history about how that has worked before?
1. Re:So .. Security by Obscurity. by msauve · 2016-06-17 10:01 · Score: 5, Insightful
  
  "Is there any history about how that has worked before?"
  
  Sure, FBI sends "National Security Letter" to Intel, demanding they open the door without telling anyone. FBI then has unrestricted access to Intel systems, worldwide, but "no, you can't see the source code, it's secure, we promise."
  
  --
  "National Security is the chief cause of national insecurity." - Celine's First Law
So is this a manufactured clickbait story? by CajunArson · 2016-06-17 08:44 · Score: 5, Insightful

So from what I can tell, this entire fiasco is basically some blogger who was clearly ignorant of how enterprise management features that have been present in hardware for *years* having an "OMG YOU TRANSMIT YOUR IP ADDRESS TO THE WORLD EVERY TIME YOU GO TO A WEBSITE!!" moment.
And it wasn't even that original since the same damn hissy fit gets thrown every year or so as memory serves, since this is by no means the first time I've heard the conspiracy theory.
So, either this guy is an idiot (not discounting that at all) or he managed to troll people into generating clicky clicky ad revenue by recycling conspiracy theories. Some of the people being trolled might be willing participants to boot.

--
AntiFA: An abbreviation for Anti First Amendment.
1. Re:So is this a manufactured clickbait story? by vux984 · 2016-06-17 11:04 · Score: 5, Informative
  
  and where it shares the same ethernet port as the main machine
  
  Seriously? How about... practically all modern intel PCs. (very very few of which have a dedicated magement port)
  "The Management Engine (ME) is an isolated and protected coprocessor, embedded as a non-optional part in all current (as of 2015) Intel chipsets."
  https://en.wikipedia.org/wiki/...
  So if you can find an modern Intel PC with a single ethernet port. It's got it.
  
  where you can't disable it in the BIOS
  Disabling AMT in bios, may not actually disable it, it may just disable exposing it as a device to the host operating system. There are *plenty* of posts from people who disabled AMT only to find it was still running, still picking up an address via DHCP, and still manageable via AMT management tools, even while the PC was "off".
  In general there generally are ways to disable it; I can't find a cite for a system where it literally couldn't be turned off.
  But.. even turning it off isn't reliable.
  "A Ring -3 rootkit was demonstrated by Invisible Things Lab for the Q35 chipset. [...] The ME rootkit could be installed regardless of whether the AMT is present or enabled on the system, as the chipset always contains the ARC ME coprocessor. "
  https://en.wikipedia.org/wiki/...
  So even where AMT was disabled, the co-processor is still physically there and may be reachable/exploitable.
  Oh, and i forgot to mention, it works with laptops on wifi too.
  "Intel AMT supports wired and wireless networks. For wireless notebooks on battery power, OOB communication is available when the system is awake and connected to the corporate network, even if the OS is down."
  I certainly don't think this article does any justice to the situation. But at the same time, the management engine stuff is a giant gaping security hole that does present serious and non-trivial to mitigate risks when exploits are found.
Yes by Opportunist · 2016-06-17 08:54 · Score: 5, Informative

Anything I cannot audit, I have to trust. I have no reason to trust Intel. So yes, it is potentially dangerous because I can neither audit nor trust it.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Re:Security by obscurity works quite well. by Anonymous+Brave+Guy · 2016-06-17 09:03 · Score: 5, Insightful

The term "security through obscurity" normally refers to the method being secret, not to secret information used to authenticate an actor within the system. More specifically, it normally refers to relying on the method being secret to make discovery of a vulnerability more difficult, rather than actually fixing the vulnerability. Clearly this is bad if an adversary becomes aware of that vulnerability anyway.

--
If you disagree, post your argument. (-1, Overrated) isn't your personal censorship tool for views you don't like.