Comment by BlueTemplar
4 years ago
AFAIK I can easily disable Secure Boot in the UEFI.
Is there an easy way to disable TPM / Intel IME / Intel SGX / AMD PSP ?
(I'm only aware that Dell can disable Intel IME on request... but only if you're a company buying a large amount of PCs ?)
At least with the hardware I'm familiar with, you can turn off the TPM via the BIOS. IME/SGX/PSP, not so much.
> you can turn off the TPM via the BIOS
In theory you can. In practice, programs will refuse to run if you do this: https://www.techspot.com/news/91138-valorant-anti-cheat-syst...
That goes for Secure Boot too, btw.
Yeah, hence the normalization (or lack thereof) of those features being critically important to the discussion.