It changes the scope from "access to device = no security" to "access to device by NSA people with a very specific set of skills and most likely some prep work = no security" and I won't fight it, it's right. Not possible for the random HN user though and it still means some very specific circumstances.
Circumstances that need someone to compromise my laptop at some point after it got out of the factory. From reading the Wikipedia article it's not clear ME leaves a backdoor or store user passwords or keys somewhere on the computer in case an NSA agent needs to access data.
I think my encrypted devices are safe, unless the NSA or a nation state wants its data.
Hmm. Seems you need to enable ME in my laptop BIOS.
Can it be easily done if the BIOS is locked down ?
And then what's the next step ? You start the laptop, give it an IP through MAC address on the router or direct Ethernet link, connect to ME but how do you get to the data off of the encrypted partition/OS ?
It changes the scope from "access to device = no security" to "access to device by NSA people with a very specific set of skills and most likely some prep work = no security" and I won't fight it, it's right. Not possible for the random HN user though and it still means some very specific circumstances.
Circumstances that need someone to compromise my laptop at some point after it got out of the factory. From reading the Wikipedia article it's not clear ME leaves a backdoor or store user passwords or keys somewhere on the computer in case an NSA agent needs to access data.
I think my encrypted devices are safe, unless the NSA or a nation state wants its data.