[Arm-netbook] extraordinary claims ...

freebirds at fastmail.fm freebirds at fastmail.fm
Sun Jul 8 14:51:53 BST 2012


Michael Zucchi and Gordon Bobic, please do not unsubscribe. If you do
not want to read my posts, skip them. Michael Zucchi, I do disagree with
your summary of my posts on freedombox foundation's mailing list. On
both forums, I posted solely on open hardware and privacy which is
certainly on topic. I inquired whether ARM has remote monitoring like
Intel AMT and AMD DASH. Members asked why I am asking. I explained my
abuser hires crackers. Members ask evidence. Why and the evidence is off
topic. I try to refocus the thread back to open hardware and privacy. 

There is little clear detailed information on how TrustZone and Mobicore
function. Reading threads at the forums.arm.com does not reveal much.
Indeed, today, Josua reasked the same question he asked two weeks ago on
ARM's forum: "Thanks a lot.But the more documents I read , I am more
unclear on fundamental concept . If anyone can please explain what is
'virtualisation' and what does ARM mean by saying they provide a
hardware enforced virtualisation"
http://forums.arm.com/index.php?/topic/15990-arm-trustzone/

So far, no answers to my question on Mobicore at
http://forums.arm.com/index.php?/topic/16030-mobicore-in-trustzone/
Apparently, ARM's forum does not know. Who does? 

Henrik Nordström appreciate your answers on TrustZone and Mobiore. You
may want to post your same answers on forums.arm.com. Henrik Nordstrom
thanks for explaining that TrustZone and Mobicore cannot be disabled by
the user. I am reasking how to tell if an ARM device has been
preinstalled with Mobicore or updated with Mobicore.

Henrik Nordstrom, I disagree with your statement: "Systems with OOB
monitoring is also easily detected, as this is a advertised and well
known feature when implemented in the hardware. There is no manufactures
who add stealth OOB management & monitoring, and anyone doing so would
get detected quickly."

As I discussed on the freedombox foundation's mailing list, Intel AMT
and AMD DASH provide discrete OOB monitoring and is practically
undetectable. Intel AMT and AMD DASH are not "advertised and well known
feature." Computer manufacturers specifications do not disclose this.
Nor do Intel's and AMD's processor spec sheets disclose this. It took
many weeks of research to find specs. Why? Because Intel AMT is not in
the processor, it is in the chipset.

Intel's AMT for netbooks is listed in the specs of their mobile express
chipset. For example, my Asus netbook 1015PE has an Atom N450. My Asus
1015PX netbook has Atom N455/N570/ processor. My MSI L1350D netbook has
an Atom N455. Finally, I found Intel® Atom™ Processors 400 and 500
Series with Intel® 82801HM I/O Controller at
http://www.intel.com/p/en_US/embedded/hwsw/hardware/atom-400-500/features.
Then I looked up Intel® 82801HM I/O Controller at
http://ark.intel.com/products/29823/Intel-82801HM-IO-Controller. The
controller has AMT.

The information on Intel AMT, AMD DASH, TrustZone and Mobicore is
obscure. Do you think ARM is going to disclose all the apps runing in
Mobicore such as Mobicore's Mobisecure.

Regardless how easy it would be for a cracker to crack TrustZone and
Mobicore, companies and government who have access to the apps and data
running in it can resell it under the table to information brokers who
resell it investigators and other governments.

I cancelled my netbook order with Tom Cubie. I ordered a Lemote Yeeloong
A2 that was released in 2008. The only Yeeloong forum is in China and it
has not been active since 2011. I hope I won't have technical problems
with the Yeeloong. If I do, I will buy a SheevaPlug introduced in 2009
or go further back in history and buy a Pentium 4 or Celeron M prior to
Intel introducing AMT, TPM, TXT, virtualization, etc.
 

On Sun, Jul 8, 2012, at 11:44 AM, Michael Zucchi wrote:
> 
> All i've done is provided a link to public information which I 
> summarised very briefly - it's the sort of thing I thought anyone would 
> do when confronted with claims of unfair treatment where relevant 
> information was readily available, check both sides.  But it is up to 
> others to assess this information and make up their own mind.
> 
> As far as it comes to judgement (and honestly, you think it's ok to tell 
> someone what they're allowed to think do you?), at best these are simply 
> off-topic ramblings for this list, but I didn't state that previously, 
> nor did I (or do I) ask for them to be `silenced'.
> 
> So I'm not sure what it is i am supposed to have deprived you of, it's 
> not like I can ban this person from the list, and their email address is 
> readily available to continue your conversation even if i could.
> 
> No harm done, i'll just go elsewhere with my time as clearly I have 
> nothing to offer here.
> 
> 
> On 07/07/12 22:00, lkcl luke wrote:
> > On Sat, Jul 7, 2012 at 1:55 AM,<freebirds at fastmail.fm>  wrote:
> >
> >> I will continue to research ARM TrustZone and ARM TEE on my own and
> >> refrain from posting on these topics.
> >
> >   so.   michael zucchi: congratulations.  you've just deprived me and
> > everyone else on this list of access to an area of research into
> > security, thanks to your inflexible belief system and your lack of
> > tolerance for others.
> >
> >   don't *ever* do that again.  don't you DARE judge people.
> >
> >
> >> On Sat, Jul 7, 2012, at 09:56 AM, Michael Zucchi wrote:
> >
> >>> One can not easily verify the veracity of the other claims of this
> >>> person, but the technical ones can be assessed by an expert: and seem to
> >>> have been already.
> >
> > _______________________________________________
> > arm-netbook mailing list arm-netbook at lists.phcomp.co.uk
> > http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
> > Send large attachments to arm-netbook at files.phcomp.co.uk
> >
> 
> 
> _______________________________________________
> arm-netbook mailing list arm-netbook at lists.phcomp.co.uk
> http://lists.phcomp.co.uk/mailman/listinfo/arm-netbook
> Send large attachments to arm-netbook at files.phcomp.co.uk

-- 
http://www.fastmail.fm - Accessible with your email software
                          or over the web




More information about the arm-netbook mailing list