Tuesday, November 21st 2017
Researchers Find Glaring Intel ME Security Flaws, Company Outs Detection Tool
Security researchers have found glaring security flaws with Intel Management Engine, the on-chip micro SoC that, besides governing the functionality of the processor, provides on-chip management and security features. These security flaws render "potentially millions" of PCs and notebooks, based on Intel processors, according to the researchers. Intel on Monday released a Detection Tool application that lets you identify vulnerabilities in the Management Engine of your Intel processor-powered PC, and suggests updates to Intel Management Engine drivers, or points to BIOS updates from your PC manufacturer.
Updates to Intel ME are specific to TXE 3.0 (trusted execution engine version 3.0), which is featured on processors based on "Skylake," "Kaby Lake," and "Coffee Lake" micro-architectures, across client- and enterprise market segments, and Atom processors released in the past three years. Intel chronicled this security flaw further under Security Advisory 86, and released the SA-00086 Detection Tool.
Updates to Intel ME are specific to TXE 3.0 (trusted execution engine version 3.0), which is featured on processors based on "Skylake," "Kaby Lake," and "Coffee Lake" micro-architectures, across client- and enterprise market segments, and Atom processors released in the past three years. Intel chronicled this security flaw further under Security Advisory 86, and released the SA-00086 Detection Tool.