DOCSLIB.ORG

Intel® Technology Journal | Volume 13, Issue 1, 2009

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Intel® Technology Journal | Volume 13, Issue 1, 2009 INTEL ® TECHNOLOGY JO TECHNOLOGY Intel® Technology Journal MARCH 2009 Advances in Embedded Systems Technology U RNAL | RNAL A DVANCE S I N EMBEDDED S Y S For further information on embedded systems technology, please visit the Intel® Embedded TEM About the Cover Design Center at: http://intel.com/embedded/edc S TECHNOLOGY For further information about the Intel Technology Journal, please visit http://intel.com/technology/itj VOL ISBN 978-1-934053-21-8 13 | ISSU E 01 | MARCH 2009 9 781934 053218 7 35858 20967 0 $49.95 US Copyright © 2009 Intel Corporation. All rights reserved. Intel, and the Intel logo, are trademarks of Intel Corporation in the U.S. and other countries. Intel® Technology Journal | Volume 13, Issue 1, 2009 INTEL® TECHNOLOGY JOURNAL Advances IN EMBEDDED SYSTEM TECHNOLOGY Articles 01 Performance Analysis of the Intel® System Controller Hub (Intel® SCH) US15W ....................6 02 Configuring and Tuning for Performance on Intel® 5100 Memory Controller Hub Chipset Based Platforms ............................................................................................... 16 03 Solid State Drive Applications in Storage and Embedded Systems ...................................... 29 04 Fanless Design for Embedded Applications .......................................................................... 54 05 Security Acceleration, Driver Architecture and Performance Measurements for Intel® EP80579 Integrated Processor with Intel® QuickAssist Technology ...................................... 66 06 Methods and Applications of System Virtualization Using Intel® Virtualization Technology (Intel® VT) .............................................................................................................................. 74 07 Building and Deploying Better Embedded Systems with Intel® Active Management Technology (Intel® AMT) ........................................................................................................ 84 08 Implementing Firmware for Embedded Intel® Architecture Systems: OS-Directed Power Management (OSPM) through the Advanced Configuration and Power Interface (ACPI) .... 96 09 A Real-Time HPC Approach for Optimizing Intel Multi-Core Architectures .......................... 108 10 Digital Signal Processing on Intel® Architecture .................................................................. 122 11 IA-32 Features and Flexibility for Next-Generation Industrial Control ................................. 146 12 Low Power Intel® Architecture Platform for In-Vehicle Infotainment .................................... 160 Table of Contents | 3 Intel® Technology Journal | Volume 13, Issue 1, 2009 Intel Technology Journal Publisher Managing Editor Content Architect Richard Bowles David King Todd Knibbe Program Manager Technical Editor Technical Illustrators Marleen Lundy David Clark Richard Eberly Margaret Anderson Content Design Peter Barry Todd Knibbe Marcie M Ford Atul Kwatra Technical and Strategic Reviewers Steven Adams Dennis B Fallis Michael G Millsap Peter Barry Al Fazio Udayan Mukherjee Mark Brown Rajesh Gadiyar Staci Palmer Tom Brown Javier Galindo Michael A Rothman Jason M Burris Gunnar Gaubatz Lindsey A Sech Lynn A Comp Byron R Gillespie Shrikant M Shah John Cormican Marc A Goldschmidt Brian J Skerry Pete Dice Knut S Grimsrud Durgesh Srivastava Richard Dunphy Chris D Lucero Edwin Verplanke Jerome W Esteban Lori M Matassa Chad V Walker Intel Technology Journal | 1 Intel® Technology Journal | Volume 13, Issue 1, 2009 Intel Technology Journal Copyright © 2009 Intel Corporation. All rights reserved. ISSN: 1535-864X ISBN 978-1-934053-21-8 Intel Technology Journal Volume 13, Issue 1 No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 750-4744. Requests to the Publisher for permission should be addressed to the Publisher, Intel Press, Intel Corporation, 2111 NE 25th Avenue, JF3-330, Hillsboro, OR 97124-5961. E mail: [email protected]. This publication is designed to provide accurate and authoritative information in regard to the subject matter covered. It is sold with the understanding that the publisher is not engaged in professional services. If professional advice or other expert assistance is required, the services of a competent professional person should be sought. Intel Corporation may have patents or pending patent applications, trademarks, copyrights, or other intellectual property rights that relate to the presented subject matter. The furnishing of documents and other materials and information does not provide any license, express or implied, by estoppel or otherwise, to any such patents, trademarks, copyrights, or other intellectual property rights. Intel may make changes to specifications, product descriptions, and plans at any time, without notice. Third-party vendors, devices, and/or software are listed by Intel as a convenience to Intel’s general customer base, but Intel does not make any representations or warranties whatsoever regarding quality, reliability, functionality, or compatibility of these devices. This list and/or these devices may be subject to change without notice. Fictitious names of companies, products, people, characters, and/or data mentioned herein are not intended to represent any real individual, company, product, or event. Intel products are not intended for use in medical, life saving, life sustaining, critical control or safety systems, or in nuclear facility applications. Intel, the Intel logo, Celeron, Intel Centrino, Intel Core Duo, Intel NetBurst, Intel Xeon, Itanium, Pentium, Pentium D, MMX, and VTune are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United States and other countries. †Other names and brands may be claimed as the property of others. This book is printed on acid-free paper. Publisher: Richard Bowles Managing Editor: David King Library of Congress Cataloging in Publication Data: Printed in 10 9 8 7 6 5 4 3 2 1 First printing March 2009 2 | Intel Technology Journal Intel® Technology Journal | Volume 13, Issue 1, 2009 INTEL® TECHNOLOGY JOURNAL Advances IN EMBEDDED SYSTEM TECHNOLOGY Articles 01 Performance Analysis of the Intel® System Controller Hub (Intel® SCH) US15W ....................6 02 Configuring and Tuning for Performance on Intel® 5100 Memory Controller Hub Chipset Based Platforms ............................................................................................... 16 03 Solid State Drive Applications in Storage and Embedded Systems ...................................... 29 04 Fanless Design for Embedded Applications .......................................................................... 54 05 Security Acceleration, Driver Architecture and Performance Measurements for Intel® EP80579 Integrated Processor with Intel® QuickAssist Technology ...................................... 66 06 Methods and Applications of System Virtualization Using Intel® Virtualization Technology (Intel® VT) .............................................................................................................................. 74 07 Building and Deploying Better Embedded Systems with Intel® Active Management Technology (Intel® AMT) ........................................................................................................ 84 08 Implementing Firmware for Embedded Intel® Architecture Systems: OS-Directed Power Management (OSPM) through the Advanced Configuration and Power Interface (ACPI) .... 96 09 A Real-Time HPC Approach for Optimizing Intel Multi-Core Architectures .......................... 108 10 Digital Signal Processing on Intel® Architecture .................................................................. 122 11 IA-32 Features and Flexibility for Next-Generation Industrial Control ................................. 146 12 Low Power Intel® Architecture Platform for In-Vehicle Infotainment .................................... 160 Table of Contents | 3 Intel® Technology Journal | Volume 13, Issue 1, 2009 FOREWORD Pranav Mehta Sr. Principal Engineer & CTO Embedded & Communications Group Intel Corporation “ An embedded device is a “So, what do you mean by an embedded device?” is a question I get asked fre- quently. Many in academia and industry alike have offered and debated versions differentiated compute platform of its definition. While many achieve varying degrees of admirable brevity, insight, that is either invisible, being and accuracy, often these definitions leave an impression that embedded devices are somewhat less capable, outdated technology. Having been associated with Intel’s part of a larger infrastructure, or embedded products group for almost two decades, I find such characterizations predetermined to expose limited lacking. Yes, embedded devices have their special requirements, from technical as well as business perspectives, but less capable technology is certainly not one of capabilities in deference to a them. At the risk of inflaming the definition debate, here is my version as an Intel technologist: An embedded device is a differentiated compute platform that is dominant usage.” either invisible, being
Load more

Recommended publications
  • Beyond BIOS Developing with the Unified Extensible Firmware Interface
    Digital Edition Digital Editions of selected Intel Press books are in addition to and complement the printed books. Click the icon to access information on other essential books for Developers and IT Professionals Visit our website at www.intel.com/intelpress Beyond BIOS Developing with the Unified Extensible Firmware Interface Second Edition Vincent Zimmer Michael Rothman Suresh Marisetty Copyright © 2010 Intel Corporation. All rights reserved. ISBN 13 978-1-934053-29-4 This publication is designed to provide accurate and authoritative information in regard to the subject matter covered. It is sold with the understanding that the publisher is not engaged in professional services. If professional advice or other expert assistance is required, the services of a competent professional person should be sought. Intel Corporation may have patents or pending patent applications, trademarks, copyrights, or other intellectual property rights that relate to the presented subject matter. The furnishing of documents and other materials and information does not provide any license, express or implied, by estoppel or otherwise, to any such patents, trademarks, copyrights, or other intellectual property rights. Intel may make changes to specifications, product descriptions, and plans at any time, without notice. Fictitious names of companies, products, people, characters, and/or data mentioned herein are not intended to represent any real individual, company, product, or event. Intel products are not intended for use in medical, life saving, life sustaining, critical control or safety systems, or in nuclear facility applications. Intel, the Intel logo, Celeron, Intel Centrino, Intel NetBurst, Intel Xeon, Itanium, Pentium, MMX, and VTune are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United States and other countries.
    [Show full text]
  • Computer on Module
    Module COM Carte réceptrice Computer On Module Réduction du coût de votre développement Installation, maintenance et mise à jour simplifiées Diminution des risques inhérent à un développement Disponibilité sous 30 jours de votre produit Applications : • Terminaux de vente & Affichage Dynamique • Vidéosurveillance numérique • Médical • IP TV • Appareils de mesure & tests en ligne • M2M • Terminaux de jeux • Géolocalisation • Automatisation industrielle & contrôle de procédés • Serveurs informatiques • Militaire & Police Notre service ODM DTD Les règles générales du service ODM DTD : Le fabricant s'engage à gérer l'achat et le stockage des composants Le service ODM DTD n'est assuré que dans le cadre de l'utilisation courant qui permettent la fabrication d'un Computer On Module. Dans des modules AAEON aux formats : ETX, XTX and COM Express le cas où la fabrication de la carte réceptrice requière des composants modules. spécifiques ou sujet à des minima de quantité en commande (MOQ), Les frais d'études pour la réalisation de la carte réceptrice sont le client s'engage à acheter et à consigner ces composants chez basés sur les spécifications arrêtées avec le client à la signature de Equipements Scientifiques. la commande. Toute modifications de ces spécifications par la suite pourra emmener des frais supplémentaires à la charge du client. La Définitions 1 jour fourniture d'une carte réceptrice sous 30 jours ouvrés est incluse dans les frais d'études. Les corrections nécessaires après le test du prototype Etude du circuit 5 jours sont prises en charge par le service ODM DTD. Ces corrections seront Routage du PCB 9 jours vérifiées par le client avant le démarrage de la pré-série.
    [Show full text]
  • Industrial Platform Service
    latform P ndustrial I ervice S s stic ‧Manufa gi Ver. 211A ign cturing‧Lo es ‧D Consulting‧Product Portwell, Inc. was founded in 1993 and entered the Industrial Computing Platform Providers (IACPP), but also an associate PC market in 1995 by developing single-board computers. member of Intel® Embedded and Communications Alliance Today, our continuous development of leading-edge products (ECA), as well as Advanced Telecom Computing Architecture has resulted in strong growth in market share and revenue, a (ATCA) and an executive member of PCI Industrial Computer fi rm place on the Taipei stock exchange (TAISDAQ), and has Manufacturing group (PICMG). established Portwell a major worldwide supplier of specialty Portwell, Inc. has worldwide operation in the U.S.A., Taiwan, computing application platforms and services. Portwell, Inc. Japan, China, Netherland, United Kingdom, and India. is not only a member of the selected group of Intel® Applied Portwell Engine (PE) Building Whether you are working on a computer board or turnkey standards such as ISO 9001/14000/13485, OHSAS and system, Portwell is the perfect partner to help you deliver your RoHS, customers have taken advantage of our dedicated and products to market on time as well as maintain longevity of sophisticated engineering resource to satisfy their requirements product life cycle. With 18 years experience in the design and for the design, manufacturing and logistics of application- manufacture of specialty computer boards and systems, Portwell specifi c computer boards, customized computer chassis, and not only provides a one-stop resource for off-the-shelf products, specifi c computer system confi gurations.
    [Show full text]
  • How to Hack a Turned-Off Computer Or Running Unsigned
    HOW TO HACK A TURNED-OFF COMPUTER, OR RUNNING UNSIGNED CODE IN INTEL ME Contents Contents ................................................................................................................................ 2 1. Introduction ...................................................................................................................... 3 1.1. Intel Management Engine 11 overview ............................................................................. 4 1.2. Published vulnerabilities in Intel ME .................................................................................. 5 1.2.1. Ring-3 rootkits.......................................................................................................... 5 1.2.2. Zero-Touch Provisioning ........................................................................................... 5 1.2.3. Silent Bob is Silent .................................................................................................... 5 2. Potential attack vectors ...................................................................................................... 6 2.1. HECI ............................................................................................................................... 6 2.2. Network (vPro only)......................................................................................................... 6 2.3. Hardware attack on SPI interface ..................................................................................... 6 2.4. Internal file system .........................................................................................................
    [Show full text]
  • Download/Face- Modules/Documents/Face-Modules-Hw-Specifications.Pdf
    I PC H “ CompuLab Ltd. Revision 1.2 December 2013 Legal Notice © 2013 CompuLab Ltd. All Rights Reserved. No part of this document may be photocopied, reproduced, stored in a retrieval system, or transmitted, in any form or by any means whether, electronic, mechanical, or otherwise without the prior written permission of CompuLab Ltd. No warranty of accuracy is given concerning the contents of the information contained in this publication. To the extent permitted by law no liability (including liability to any person by reason of negligence) will be accepted by CompuLab Ltd., its subsidiaries or employees for any direct or indirect loss or damage caused by omissions from or inaccuracies in this document. CompuLab Ltd. reserves the right to change details in this publication without notice. Product and company names herein may be the trademarks of their respective owners. CompuLab Ltd. 17 HaYetsira St., Yokneam Elite 20692, P.O.B 687 ISRAEL Tel: +972-4-8290100 http://www.compulab.co.il http://fit-pc.com/web/ Fax: +972-4-8325251 CompuLab Ltd. Intense PC Hardware Specification Page 2 of 74 Revision History Revision Engineer Revision Changes 1.0 Maxim Birger Initial public release 1.1 Maxim Birger Memory Interface updated Super-IO Controller peripheral section added RS232 serial com port info added 1.2 Maxim Birger HDMI Block Diagram updated DP Block Diagram updated CompuLab Ltd. Intense PC Hardware Specification Page 3 of 74 Table of Contents Legal Notice ..................................................................................................................................................
    [Show full text]
  • Dell Optiplex 7060 Desktop Setup
    OptiPlex 7060 Small Form Factor Setup and specifications guide Regulatory Model: D11S Regulatory Type: D11S004 Notes, cautions, and warnings NOTE: A NOTE indicates important information that helps you make better use of your product. CAUTION: A CAUTION indicates either potential damage to hardware or loss of data and tells you how to avoid the problem. WARNING: A WARNING indicates a potential for property damage, personal injury, or death. © 2018 Dell Inc. or its subsidiaries. All rights reserved. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries. Other trademarks may be trademarks of their respective owners. 2018 - 06 Rev. A01 Contents 1 Set up your computer.....................................................................................................................................5 2 Chassis.......................................................................................................................................................... 8 Front view........................................................................................................................................................................... 8 Back view............................................................................................................................................................................9 3 System specifications.................................................................................................................................. 10 Chipset...............................................................................................................................................................................10
    [Show full text]
  • Intel X86 Considered Harmful
    Intel x86 considered harmful Joanna Rutkowska October 2015 Intel x86 considered harmful Version: 1.0 1 Contents 1 Introduction5 Trusted, Trustworthy, Secure?......................6 2 The BIOS and boot security8 BIOS as the root of trust. For everything................8 Bad SMM vs. Tails...........................9 How can the BIOS become malicious?.................9 Write-Protecting the flash chip..................... 10 Measuring the firmware: TPM and Static Root of Trust........ 11 A forgotten element: an immutable CRTM............... 12 Intel Boot Guard............................. 13 Problems maintaining long chains of trust............... 14 UEFI Secure Boot?........................... 15 Intel TXT to the rescue!......................... 15 The broken promise of Intel TXT.................... 16 Rescuing TXT: SMM sandboxing with STM.............. 18 The broken promise of an STM?.................... 19 Intel SGX: a next generation TXT?................... 20 Summary of x86 boot (in)security.................... 21 2 Intel x86 considered harmful Contents 3 The peripherals 23 Networking devices & subsystem as attack vectors........... 23 Networking devices as leaking apparatus................ 24 Sandboxing the networking devices................... 24 Keeping networking devices outside of the TCB............ 25 Preventing networking from leaking out data.............. 25 The USB as an attack vector...................... 26 The graphics subsystem......................... 29 The disk controller and storage subsystem............... 30 The audio
    [Show full text]
  • Thinkcentre M58p with Intel AMT White Paper
    ThinkCentre M58p with Intel Active Management Technology First Edition (October 2008) Contents About this document . .v Intel ME configuration. .10 Intel AMT setup and configuration . .13 Driver description . .18 Chapter 1. Introduction to Intel vPro and Intel AMT technology . .1 Chapter 6. Web user interface . .19 Acronyms . .1 Access the Web user interface . .19 Provision the Intel AMT system . .19 Chapter 2. Lenovo ThinkCentre Logging onto the client system . .19 computer equipped with Intel AMT Function in Web user interface . .20 technology . .3 Appendix A. Two examples of Intel Chapter 3. ISV solution introduction . .5 AMT setup and configuration: SMB mode and enterprise mode . .23 Chapter 4. Main features of computers Intel AMT setup and configuration steps - SMB built with Intel AMT . .7 mode . .23 Intel AMT setup and configuration steps - Enterprise mode . .23 Chapter 5. Intel AMT setup and configuration based on Lenovo Appendix B. Default configuration ThinkCentre M58p . .9 values for Intel MEBx . .25 Associated Intel AMT setup and configuration in BIOS . .9 Intel MEBx setup and configuration . .10 Appendix C. Notices . .27 Entering MEBx configuration user interface. .10 Trademarks . .28 Changing Intel ME password . .10 iii iv ThinkCentre M58p with Intel AMT White Paper About this document ® This document provides information about the application of the Intel Active ® ® Management Technology (Intel AMT) for Lenovo ThinkCentre M58p desktop computers. It provides a step-by-step approach to successfully use the Intel AMT technology. This document is intended for trained IT professionals, or those responsible for deploying new computers throughout their organizations. The readers should have basic knowledge of network and computer technology, and be familiar with these terms: TCP/IP, DHCP, IDE, DNS, Subnet Mask, Default Gateway, and Domain Name.
    [Show full text]
  • Focus on Your Core Competency the COM Express Standard
    Computer-On-Modules Focus on your Core Competency The COM Express Standard – A Computer-On-Module (COM) provides a convenient solution for Adaptable to Your Specific Needs OEMs that need computing functionality but are not interested in COM Express was developed and is maintained by PICMG investing the time and resources into designing a single board (PCI Industrial Computer Manufacturers Group). COM computer. There are several COM standards, one of the more Express was released in the summer of 2005 and is the popular being COM Express (also referred to as COM.0). COM most widely used COM standard. The standard defines the Express modules contain the CPU, memory, common peripherals physical size, interconnect, and thermal interface for a COM. (USB, SATA) and an I/O interface (PCI and PCI Express). OEMs that The original COM Express specification was written to use COM Express modules design a carrier board that contains any support peripherals that were available at the time of release required I/O interfaces not found on the COM Express module as – including USB 2.0, SATA, PATA, Ethernet, VGA, LVDS, well as connectors for external I/O. A COM based solution allows SDVO, PCI, and PCI Express Gen 1. Several pinout types an OEM to focus on their core competency and not the design and were defined by PICMG with each one having a specific maintenance of a single board computer. combination of peripherals, expansion interfaces and connector layout. The most widely used COM Express A COM Express based solution with a custom carrier board offers module is a type 2, followed by type 1.
    [Show full text]
  • Focus on Your Core Competency the COM Express Standard
    Computer-On-Modules Focus on your Core Competency The COM Express Standard – A Computer-On-Module (COM) provides a convenient solution for Adaptable to Your Specific Needs OEMs that need computing functionality but are not interested in COM Express was developed and is maintained by PICMG investing the time and resources into designing a single board (PCI Industrial Computer Manufacturers Group). COM computer. There are several COM standards, one of the more Express was released in the summer of 2005 and is the popular being COM Express (also referred to as COM.0). COM most widely used COM standard. The standard defines the Express modules contain the CPU, memory, common peripherals physical size, interconnect, and thermal interface for a COM. (USB, SATA) and an I/O interface (PCI and PCI Express). OEMs that The original COM Express specification was written to use COM Express modules design a carrier board that contains any support peripherals that were available at the time of release required I/O interfaces not found on the COM Express module as – including USB 2.0, SATA, PATA, Ethernet, VGA, LVDS, well as connectors for external I/O. A COM based solution allows SDVO, PCI, and PCI Express Gen 1. Several pinout types an OEM to focus on their core competency and not the design and were defined by PICMG with each one having a specific maintenance of a single board computer. combination of peripherals, expansion interfaces and connector layout. The most widely used COM Express A COM Express based solution with a custom carrier board offers module is a type 2, followed by type 1.
    [Show full text]
  • Class-Action Lawsuit
    Case 3:20-cv-00863-SI Document 1 Filed 05/29/20 Page 1 of 279 Steve D. Larson, OSB No. 863540 Email: [email protected] Jennifer S. Wagner, OSB No. 024470 Email: [email protected] STOLL STOLL BERNE LOKTING & SHLACHTER P.C. 209 SW Oak Street, Suite 500 Portland, Oregon 97204 Telephone: (503) 227-1600 Attorneys for Plaintiffs [Additional Counsel Listed on Signature Page.] UNITED STATES DISTRICT COURT DISTRICT OF OREGON PORTLAND DIVISION BLUE PEAK HOSTING, LLC, PAMELA Case No. GREEN, TITI RICAFORT, MARGARITE SIMPSON, and MICHAEL NELSON, on behalf of CLASS ACTION ALLEGATION themselves and all others similarly situated, COMPLAINT Plaintiffs, DEMAND FOR JURY TRIAL v. INTEL CORPORATION, a Delaware corporation, Defendant. CLASS ACTION ALLEGATION COMPLAINT Case 3:20-cv-00863-SI Document 1 Filed 05/29/20 Page 2 of 279 Plaintiffs Blue Peak Hosting, LLC, Pamela Green, Titi Ricafort, Margarite Sampson, and Michael Nelson, individually and on behalf of the members of the Class defined below, allege the following against Defendant Intel Corporation (“Intel” or “the Company”), based upon personal knowledge with respect to themselves and on information and belief derived from, among other things, the investigation of counsel and review of public documents as to all other matters. INTRODUCTION 1. Despite Intel’s intentional concealment of specific design choices that it long knew rendered its central processing units (“CPUs” or “processors”) unsecure, it was only in January 2018 that it was first revealed to the public that Intel’s CPUs have significant security vulnerabilities that gave unauthorized program instructions access to protected data. 2. A CPU is the “brain” in every computer and mobile device and processes all of the essential applications, including the handling of confidential information such as passwords and encryption keys.
    [Show full text]
  • Intel Management Engine Deep Dive
    Intel Management Engine Deep Dive Peter Bosch About me Peter Bosch ● CS / Astronomy student at Leiden University ● Email : [email protected] ● Twitter: @peterbjornx ● GitHub: peterbjornx ● https://pbx.sh/ About me Previous work: ● CVE-2019-11098: Intel Boot Guard bypass through TOCTOU attack on the SPI bus (Co-discovered by @qrs) Outline 1. Introduction to the Management Engine Operating System 2. The Management Engine as part of the boot process 3. Possibilities for opening up development and security research on the ME Additional materials will be uploaded to https://pbx.sh/ in the days following the talk. About the ME About ME ● Full-featured embedded system within the PCH ○ 80486-derived core ○ 1.5MB SRAM ○ 128K mask ROM ○ Hardware cryptographic engine ○ Multiple sets of fuses. ○ Bus bridges to PCH global fabric ○ Access to host DRAM ○ Access to Ethernet, WLAN ● Responsible for ○ System bringup ○ Manageability ■ KVM ○ Security / DRM ■ Boot Guard ■ fTPM ■ Secure enclave About ME ● Only runs Intel signed firmware ● Sophisticated , custom OS ○ Stored mostly in SPI flash ○ Microkernel ○ Higher level code largely from MINIX ○ Custom filesystems ○ Custom binary format ● Configurable ○ Factory programmed fuses ○ Field programmable fuses ○ SPI Flash ● Extensible ○ Native modules ○ JVM (DAL) Scope of this talk Intel ME version 11 , specifically looking at version 11.0.0.1205 Platforms: ● Sunrise Point (Core 6th, 7th generation SoC, Intel 100, 200 series chipset) ● Lewisburg ( Intel C62x chipsets ) Disclaimer ● I am in no way affiliated with Intel Corporation. ● All information presented here was obtained from public documentation or by reverse engineering firmware extracted from hardware found “in the wild”. ● Because this presentation covers a very broad and scarcely documented subject I can not guarantee accuracy of the contents.
    [Show full text]