I'm pretty sure there are models in use without TrustZone as it is not available on the oldest ARM processors. However, I don't know which models do or do not implement it, and my search engine skills are failing to let me find out easily.
As for more poll options - I would not object. On the other hand, it can be an engaging exercise to construct a poll that fits within the constraints. In any event, they are not exactly rigorous, but they do serve to generate interesting talking points.
(Score: 1, Interesting) by Anonymous Coward on Monday January 14 2019, @12:45PM
by Anonymous Coward
on Monday January 14 2019, @12:45PM (#786423)
And in fact TrustZone is disabled on ANY ARM processor whose bootstrap doesn't use a signed kernel, last I checked.
If the stage0 bootloader doesn't authenticate the stage1 bootloader/kernel as authentic to the vendor key then TrustZone is never initialized.
This is because TrustZone is only truly used for device encryption and media/software company DRM, neither of which is considered trustworthy if the end user has control of it. Bugs in it that allow 3rd parties to exploit it are preferable to end user control, because the end user is the product and financial extraction target, not the customer.
(Score: 2) by takyon on Thursday January 10 2019, @03:33PM (5 children)
I don't know if there are ARM models in use without TrustZone. So I just didn't care.
Really, I would love the ability to have more than 8 poll options, excessive as it may be.
[SIG] 10/28/2017: Soylent Upgrade v14 [soylentnews.org]
(Score: 1) by pTamok on Thursday January 10 2019, @04:57PM
I'm pretty sure there are models in use without TrustZone as it is not available on the oldest ARM processors. However, I don't know which models do or do not implement it, and my search engine skills are failing to let me find out easily.
As for more poll options - I would not object. On the other hand, it can be an engaging exercise to construct a poll that fits within the constraints. In any event, they are not exactly rigorous, but they do serve to generate interesting talking points.
(Score: 1) by Ethanol-fueled on Friday January 11 2019, @02:17AM (2 children)
Atom?
(Score: 3, Informative) by takyon on Friday January 11 2019, @02:57AM (1 child)
https://libreboot.org/faq.html [libreboot.org]
Various Intel Atom CPUs do contain Management Engine. I'm having trouble finding a full list though. Maybe Intel is poisoning the search results.
[SIG] 10/28/2017: Soylent Upgrade v14 [soylentnews.org]
(Score: 3, Informative) by RamiK on Sunday January 13 2019, @01:00PM
BayTrail forwards had the TXE: https://www.win-raid.com/t624f39-Intel-Trusted-Execution-Engine-Drivers-Firmware-amp-System-Tools.html [win-raid.com]
compiling...
(Score: 1, Interesting) by Anonymous Coward on Monday January 14 2019, @12:45PM
And in fact TrustZone is disabled on ANY ARM processor whose bootstrap doesn't use a signed kernel, last I checked.
If the stage0 bootloader doesn't authenticate the stage1 bootloader/kernel as authentic to the vendor key then TrustZone is never initialized.
This is because TrustZone is only truly used for device encryption and media/software company DRM, neither of which is considered trustworthy if the end user has control of it. Bugs in it that allow 3rd parties to exploit it are preferable to end user control, because the end user is the product and financial extraction target, not the customer.