[mopsi]

> Could a user tell it's happening? What signals would indicate this? Is it increased CPU usage disguised as a system process?

Intel AMT allows redirecting graphics output and keyboard/mouse/USB input over network connection. It's like a hardware device connected to HDMI port to capture screen and to USB ports to send inputs, but it's built right into the motherboard. It doesn't spawn a process in the operating system or use resources to any meaningful degree. The OS knows about AMT only what the hardware tells it, if anything at all.

Unlike software-based remote desktop solutions (VNC, TeamViewer), it's independent from the operating system. As long as the system is connected to power, AMT can run. You can log into a fully shut down computer, power it on and see boot logos and access BIOS before the OS even begins to load. You can use AMT to install operationg system on a PC with completely empty hard drive by virtually attaching a CD/DVD or USB install media.

It's extemely powerful management interface, but it's close-sourced and has a history of serious security flaws.

[pmlnr]

Occasionally all these features would be quite useful if it was documented and accessible for mere mortals.

[mopsi]

It is documented and accessible. Not to the extent many people want, but enough to use it. If your CPU and motherboard combination supports remote management, you can usually turn it on by pressing Control+P during boot (launches configuration screen; see motherboard's manual if it doesn't) and then use freely available software like Manageability Commander from Intel's site to manage the PC.

Mandatory disclaimer: it's highly recommended to keep the network port with active management interface isolated in a separate network with no internet access.

[myself248]

Go play with Mesh Commander....

[Animats]

It would be a really good idea to have something on your corporate network listening for management engine traffic.

[thulecitizen]

Thank you for answering my questions, really insightful!