Reply to post: Re: Downgrade attack?

CTS who? AMD brushes off chipset security bugs with firmware patches

whitepines Silver badge

Re: Downgrade attack?

I realized that I was somewhat more inflammatory than intended here. I'm only referring to the PSP vulnerabilities here, the other vulnerabilities are likely fixable with proper patches. The PSP stuff is more of a design flaw than anything else, a design flaw shared across Intel and other vendors. Basically, the problem is that with the central vendor-controlled firmware signing schemes, once a single ME/PSP version is cracked the entire useful purpose of that processor (preventing unauthorised code from booting on the low level firmware side) is gone, leaving only the DRM and other restrictions that harm the end user.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon


Biting the hand that feeds IT © 1998–2019