The free software Foundation: built-in Intel processor subsystem ME very insecure-Intel, Intel, CPU-IT information

IT information the free software Foundation (FSF) said the current Intel platform processor has a built-in low-power subsystem Management Engine (referred to ME), this system is great, and should not be controlled by the user, threats to user privacy and security.

FSF calls this subsystem architecture increasingly complex over the past decade, to perform more tasks, contains one or more processor cores, memory, and the system clock, internal bus, retention of protected memory, and has its own operating system and applications, you can access the system's main memory and network.

A crucial point is, ME full access to and control of a computer, including starting and shutting down the system, read from a file in memory and check all programs that are running, track keystrokes and mouse movements, to screen the screen, and even includes a network interface proved to be safe, you can enable the attacker to embedded rootkit programs to achieve the goal of intrusion.

Given the freedom of the subsystem is currently unable to update firmware of shielding or closed, therefore FSF advised users to abandon Intel platform in order to ensure their own security.

自由软件基金会：Intel处理器内置子系统ME极不安全 - Intel,英特尔,CPU - IT资讯

IT资讯讯 自由软件基金会（FSF）日前表示，现有Intel平台处理器都内置了低功耗子系统Management Engine（下简称ME），该系统权限极大，而且不被用户控制，威胁用户隐私和安全。

FSF称，该子系统在过去十年间架构日益复杂，能够执行更多任务，包含一个或多个处理器核心、内存、系统时钟、内部总线、保留的受保护内存，并且拥有自己的操作系统和应用程序，可以访问系统主内存和网络。

关键一点是，ME能够完全访问和控制电脑，包括启动和关闭系统，读取内存中的文件，检查正在运行的所有程序，跟踪按键和鼠标移动，对屏幕进行截屏，甚至包括一个被证明不安全的网络接口，可以让攻击者植入rootkit程序来达到入侵的目的。

鉴于该子系统目前无法通过更新自由固件的方式进行屏蔽或者关闭，因此FSF劝用户抛弃Intel平台，以保证自己的系统安全。