> fTPM tampering is out of scope since the ME is the root of all trust in the systemI’m wondering about this assumption. Hasn’t the ME previously been shown to be fairly straightforward to exploit?
ME has had exploits, but it has also had patches.
Does anyone know if…
Link: Safeboot: Booting Linux Safely