Intel platform development guides for OEMs often mention "Flash Descriptor Security Override" or "Intel ME Debug Mode" ("Service Mode" on Dell hardware), that could be enabled via different ways depending on the manufacturer. Intel also have some security override methods in its platforms specifications for OEMs. firmware rootkits), however it's possible to disable write protection using various servicing modes often provided by manufacturers. Usually most of those regions are not available for write for security reasons (e.g. The information stored in the Flash Descriptor can only be written during the manufacturing process as its read/write permissions must be set to Read Only when the computer leaves the manufacturing floor.įlash Descriptor contains AltMeDisable or High Assurance Platform (HAP) bits that disable Intel MEĪll these regions combined is a full flash memory available directly from OS. The maximum size of the Flash Descriptor is 4 KBytes. The descriptor is on the SPI flash itself and is not in memory mapped space like PCH programming registers. The Descriptor data structure describes the layout of the flash as well as defining configuration parameters for the PCH. The Flash Descriptor is a data structure that is programmed on the SPI flash part. Winbond W25Q64FV) in a same way as using external programmers, providing the ability to read and write the following flash parts:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |