Researchers have been trying
Posted: Thu Feb 13, 2025 4:01 am
Researchers have managed to disable the Intel Management Engine
Sergey Stelmakh | 08/30/2017
IncreaseResearchers have been trying for years to disable Intel ME, which has access to almost all data on the computer and the ability to execute third-party code.
for years to disable Intel ME, which has access to almost all data on the computer and the ability to execute third-party code.
Mark Ermolov and Maxim Goryachy, specialists from the russia whatsapp data Technologies information security company, have discovered a way to disable the Intel Management Engine (Intel ME) subsystem. The latter is a separate microprocessor that operates independently of the CPU and performs tasks that need to be separated from the OS: processing protected content (DRM), implementing TPM (Trusted Platform Module) modules and low-level interfaces for monitoring and managing equipment. An operating system based on the MINIX OS code is responsible for the operation of Intel ME.
Previously, the microcontroller that controls the Intel ME was manufactured by Intel under license from ARC International. It was a 32-bit RISC processor with a set of capabilities specifically configured "for the customer", but starting with the PCH (Platform Controller Hub) chipsets of the 100th series, Intel completely redesigned this chip. The transition to the x86 architecture was made.
Intel ME is pre-installed by the company on all modern processors and, due to the fact that it is responsible for the viability of not only the CPU, but also other subsystems, it was believed that it cannot be disabled. However, researchers have proven the opposite. They managed to find a hidden option in the ME program code to disable the HAP (High Assurance Platform) mode. The latter is used to organize secure interdepartmental access to confidential data and classified information in American government agencies. In fact, HAP is a targeted program supported by the US government, the NSA and high-tech companies. Experts found that this option allows you to completely deactivate the main Intel ME controller in Intel chips by installing an undocumented bit in one of the firmware files.
Sergey Stelmakh | 08/30/2017
IncreaseResearchers have been trying for years to disable Intel ME, which has access to almost all data on the computer and the ability to execute third-party code.
for years to disable Intel ME, which has access to almost all data on the computer and the ability to execute third-party code.
Mark Ermolov and Maxim Goryachy, specialists from the russia whatsapp data Technologies information security company, have discovered a way to disable the Intel Management Engine (Intel ME) subsystem. The latter is a separate microprocessor that operates independently of the CPU and performs tasks that need to be separated from the OS: processing protected content (DRM), implementing TPM (Trusted Platform Module) modules and low-level interfaces for monitoring and managing equipment. An operating system based on the MINIX OS code is responsible for the operation of Intel ME.
Previously, the microcontroller that controls the Intel ME was manufactured by Intel under license from ARC International. It was a 32-bit RISC processor with a set of capabilities specifically configured "for the customer", but starting with the PCH (Platform Controller Hub) chipsets of the 100th series, Intel completely redesigned this chip. The transition to the x86 architecture was made.
Intel ME is pre-installed by the company on all modern processors and, due to the fact that it is responsible for the viability of not only the CPU, but also other subsystems, it was believed that it cannot be disabled. However, researchers have proven the opposite. They managed to find a hidden option in the ME program code to disable the HAP (High Assurance Platform) mode. The latter is used to organize secure interdepartmental access to confidential data and classified information in American government agencies. In fact, HAP is a targeted program supported by the US government, the NSA and high-tech companies. Experts found that this option allows you to completely deactivate the main Intel ME controller in Intel chips by installing an undocumented bit in one of the firmware files.