If someone has physical access to the computer would the IME neutralization / disabling etc… be reversible ?
Also, does a properly functioning IME (in any way whatsoever) make it easier for someone with physical access to the computer to bypass ssd full disk encryption (let’s assume the best encryption available) ?
Thanks for the quick response. So for a solid privacy setup the idea would be to have a Librem computer to guard against remote access and then combine with ssd full disk encryption in case someone gains physical access (maybe add Librem key too)?
Those are the two main “armors” right ? I know you can also add firewall / router defenses but is there anything else one can do that has as big an effect as combining IME disabling / neutralization and encryption?