MINIX: The Most Popular OS in the World, Thanks to Intel

Megalith

Megalith

24-bit/48kHz
Staff member
Joined
Aug 20, 2006
Messages
13,000
If you have a modern Intel CPU (released in the last few years) with Intel’s Management Engine built in, you’ve got another complete operating system running that you might not have had any clue was in there: MINIX. That’s right. MINIX. The Unix-like OS originally developed by Andrew Tanenbaum as an educational tool — to demonstrate operating system programming — is built into every new Intel CPU.

The first thing that jumps out at me here: This means MINIX (specifically a version of MINIX 3) is in all likelihood the most popular OS shipping today on modern Intel-based computers (desktops, laptops and servers). That, right there, is absolutely crazy. The second thing to make my head explode: You have zero access to “Ring -3” / MINIX. But MINIX has total and complete access to the entirety of your computer. All of it.
 
I'd have to wonder if Android has more active "installs" than Intel ME chips worldwide.
 
Chupachup said:
And just another reason not to by Intel:meh:
Click to expand...
Because AMD do not have an equiv... Oh wait they do.

Via are probably the only x86/64 cpu manufacturer that does not have this. This needs to be stopped and since the industry won't regulate time for gov'n todo it.... Unless it is gov'n that forced the concept/backdoor in which case we are boned
 
naib said:
Because AMD do not have an equiv... Oh wait they do.

Via are probably the only x86/64 cpu manufacturer that does not have this. This needs to be stopped and since the industry won't regulate time for gov'n todo it.... Unless it is gov'n that forced the concept/backdoor in which case we are boned
Click to expand...
What's the AMD equivalent?
 
{NG}Fidel said:
What's the AMD equivalent?
Click to expand...

None.

You would think that Intel by now would have known better then to try another version of what they tried to implement before, can not see this as something that would get their sales up and even if it did the headache of tracking the most important piece of software through all kinds of hacks is just an enormous headache.
 
Among the things that this crap can do:

"In addition, thanks to Minnich and his fellow researchers' work, MINIX is running on three separate x86 cores on modern chips. There, it's running:
  • TCP/IP networking stacks (4 and 6)
  • File systems
  • Drivers (disk, net, USB, mouse)
  • Web servers

MINIX also has access to your passwords. It can also reimage your computer's firmware even if it's powered off. Let me repeat that. If your computer is "off" but still plugged in, MINIX can still potentially change your computer's fundamental settings.

And, for even more fun, it "can implement self-modifying code that can persist across power cycles". So, if an exploit happens here, even if you unplug your server in one last desperate attempt to save it, the attack will still be there waiting for you when you plug it back in."

Combine that with W10 and nvidia telemetry and we have absolutely zero privacy.

Yes, the fanbois will say "how about google and facebook", not the same layers, but noted.
 
Monkey God said:
Wrong.

http://www.amd.com/en-us/innovations/software-technologies/security
Click to expand...

LOL maybe you need to learn to read :)
Security built right into your hardware
AMD gives you a dedicated AMD Secure Processor1 built into select AMD Accelerated Processing Units (APUs). ARM® TrustZone®, a system-wide approach to security, runs on top of the hardware creating a secure environment by partitioning the CPU into two virtual “worlds.” Sensitive tasks are run on the AMD Secure Processor – in the “secure world” – while other tasks are run in “standard operation.” This helps ensure the secure storage and processing of sensitive data and trusted applications. It also helps protect the integrity and confidentiality of key resources, such as the user interface and service provider assets.
Click to expand...

There has been an ARM cpu inside AMD cpu which is not software ;) But software can be used to do what is described here but it is not on chip ..It simply uses the ARM cpu.
 
Pieter3dnow said:
LOL maybe you need to learn to read :)


There has been an ARM cpu inside AMD cpu which is not software ;) But software can be used to do what is described here but it is not on chip ..It simply uses the ARM cpu.
Click to expand...
That arm core is undoubtedly running some software. AMD isn't just gonna stick an extra core into their chip and not have it do anything.
 
Darakian said:
That arm core is undoubtedly running some software. AMD isn't just gonna stick an extra core into their chip and not have it do anything.
Click to expand...

You can search for the in depth video itself somewhere on AMD where they describe how the feature works. The arm chip was not even used before while it was already in the cpu.

On SEV it is explained how it functions exactly but it is nothing but a software solution accessing the arm core. http://developer.amd.com/amd-secure-memory-encryption-sme-amd-secure-encrypted-virtualization-sev/
 
The other plus in AMD's column is the fact that they're much more open with the inner workings of their chips than Intel.
 
Ha! I still have Tanenbaum's book on my shelf. Never thought anybody would actually use MINIX for anything serious though.
 
Pieter3dnow said:
You can search for the in depth video itself somewhere on AMD where they describe how the feature works. The arm chip was not even used before while it was already in the cpu.

On SEV it is explained how it functions exactly but it is nothing but a software solution accessing the arm core. http://developer.amd.com/amd-secure-memory-encryption-sme-amd-secure-encrypted-virtualization-sev/
Click to expand...

I'll look for that video, but I'm dubious that the arm core doesn't run some OS.
 
You must log in or register to reply here.
Back
Top