←back to thread

Intel x86 considered harmful – survey of attacks against x86 over last 10 years

(blog.invisiblethings.org)
276 points chei0aiV | 1 comments | 27 Oct 15 14:51 UTC | HN request time: 0s | source
Show context
pjc50 ◴[27 Oct 15 16:01 UTC] No.10458874[source]
"System management mode" is a tremendous wart and should be removed wholesale, with Intel adopting a more ARM-style trusted boot chain with explicit cooperation from the OS or hypervisor. And while you're at it, kill UEFI and install a pony for me.

(Seriously, SMM serves either bizarre ILO features that high-end vendors like but are rarely used, or security agencies looking for a layer to hide in.)

replies(5): >>10459094 #>>10459158 #>>10459893 #>>10460557 #>>10462796 #
1. StillBored ◴[27 Oct 15 18:00 UTC] No.10459893[source]
ARM is doing all the same things intel has. EL3/Secure mode is basically intel SMM. For every "feature" intel has there is a similar version for ARM64.