Platform Embedded Security Technology Revealed

Platform Embedded Security Technology Revealed is an in-depth introduction to Intel’s platform embedded solution: the security and management engine. The engine is shipped inside most Intel platforms for servers, personal computers, tablets, and smartphones. The engine realizes advanced security and management functionalities and protects applications’ secrets and users’ privacy in a secure, light-weight, and inexpensive way. Besides native built-in features, it allows third-party software vendors to develop applications that take advantage of the security infrastructures offered by the engine.

Intel’s security and management engine is technologically unique and significant, but is largely unknown to many members of the tech communities who could potentially benefit from it. Platform Embedded Security Technology Revealed reveals technical details of the engine. The engine provides a new way for the computer security industry to resolve critical problems resulting from booming mobile technologies, such as increasing threats against confidentiality and privacy. This book describes how this advanced level of protection is made possible by the engine, how it can improve users’ security experience, and how third-party vendors can make use of it.

It's written for computer security professionals and researchers; embedded system engineers; and software engineers and vendors who are interested in developing new security applications on top of Intel’s security and management engine.

It’s also written for advanced users who are interested in understanding how the security features of Intel’s platforms work.

Xiaoyu Ruan is an expert in cryptography and computer security. Xiaoyu currently serves as a staff engineer and security research with the chipset and software IP group (CSG) of Intel Corporation. In this position, he is responsible for architecting and designing security features and applications, such as digital right management (DRM), of the security and management engine for Intel's chipset products, which are embedded in PCs, servers, tablets, and smartphones. Before joining Intel, Xiaoyu was as a principal security engineer with Corsec Security, where he helped hardware and software vendors design cryptography and security modules and obtain FIPS 140 compliance certificates from NIST. Xiaoyu obtained his Ph.D. and M.S. degrees in computer engineering from the North Dakota State University, and B.S. degree in electrical engineering from Fudan University of China. He is an author of 15 peer-reviewed journal and conference papers in the areas of cryptography, security, and information theory.