[ciot1CDM]

For Intel, it's a enterprise marketing bullet, for the rest of us it's an opportunity to secure our systems the way we want, however that capacity has been denied us.

The ideal security mechanism would provide us with a per cpu key from Intel, which we use to update our own user key to the cpu, and only user signed firmware is loaded.

The exact mechanism of this can be handled in many ways.

Right now, we locked out, and primed for being snooped on without our consent.

I like Intel's engineering, but everything else I could do without.

And ARM is no better. I'd say worse actually, but I'm not going to defend that.

Please, please, AMD do the "right thing" with Zen. Allow us to be in command of our security, so we may delegate it to those we trust with the technical know how, be it OS vendors, or our IT departments, or our own selves.

[Natanael_L]

USB Armory seems to be doing exactly what you ask for with ARM TrustZone. You own the SoC and can set your own master keys.

[mjevans]

I like the idea of a physical reset and wipe everything to factory method; it's OK (and probably more ideal) if it takes a while.

[bubuga]

Bootable drives already let you do that, and they exist for decades now.

Heck, just access the HD where you boot your OS from and reimage it.