Hacker News new | ask | show | jobs
by def_ConGame 2816 days ago
So it's a back door. And a hamfisted one at that.

It's not a coding error. It's built to do exactly what it looks like it's supposed to do: diminish any ordinary person's claim of total control over the behavior of the system, such that, should the need arise, a trained hand can lift the proper latch and intervene, to gain the upper hand, ostensibly so "the good guys" win.

The good guys being those that ordered Intel into compliance with such requirements.
1 comments
omegaworks 2816 days ago
>The good guys being those that ordered Intel into compliance with such requirements.

There is vast case law surrounding our first amendment right to refuse this kind of coercion. No one can force you to present something as yours against your will (at least, if they want it to hold up in court).

What is more likely is that Intel won a great many more government contracts by doing this. They'd make tons of money doing it, so they did it. And if they didn't do it, their competitor would. That's how the system works in this country.

We shouldn't excuse them so readily.

link
confounded 2816 days ago
They also won government contracts by not doing it; the High Assurance Platform mode (‘setting the HAP bit’) was a feature implemented by Intel for the NSA, incidentally discovered by security researchers.

Dell sold laptops with this as an option until they were asked not to.

It would be pretty easy for a sizable country or even a wealthy US state to demand that these ‘secure’ co-processors can be disabled at the user’s discretion, via regulation.

From the NSA’s perspective, having the keys to the backdoor is an asset, but having a backdoor at all is a huge liability, now they’re not the only game in town. US businesses and citizens simply have more to lose.

Honestly, I think it’s laziness and inertia more than conspiracy.

link
_emacsomancer_ 2816 days ago
> From the NSA’s perspective, having the keys to the backdoor is an asset, but having a backdoor at all is a huge liability, now they’re not the only game in town. US businesses and citizens simply have more to lose. Honestly, I think it’s laziness and inertia more than conspiracy.

You're assuming (fully) rational actors. It's fairly easy to have blindspots when they are (at least temporarily) useful.

link
gcb0 2815 days ago
nobody is seeing this for what this really is: Apple users compromised by internal agent.

Nation states already paid google employees to target gmail etc. now they targeted an apple employee to make this mistake which allows any targeted attack into those companies that gives mbp to developers very easy to carry out remotely, as this probably leave the remote capabilities put in place for the NSA wide open.

link
Sephr 2816 days ago
> Dell sold laptops with this as an option until they were asked not to.

Source?

link
robin_reala 2816 days ago
https://www.reddit.com/r/linuxhardware/comments/7grglm/how_t...
link