The issues it deals with aren't new (e.g., see viewtopic.php?t=22213) and with practical oligopoly power in the hands of main CPU makers (AMD isn't exempt here, if you research further), it isn't going away anytime soon...
To find supported hardware, look to the "Status" section of coreboot's wiki: https://www.coreboot.org/Welcome_to_coreboot.https://www.coreboot.org/ wrote:Coreboot is an extended firmware platform that delivers a lightning fast and secure boot experience on modern computers and embedded systems. As an Open Source project it provides auditability and maximum control over technology.
In related info, find for yourself how hard it is for an expert hardware engineer to come up with ways to circumvent the gaping security risk that Intel IME really represents -- as the EFF had already warned us (https://www.eff.org/deeplinks/2017/05/i ... disable-it):
- Deep dive into Intel Management Engine disablement
https://puri.sm/posts/deep-dive-into-in ... sablement/
https://puri.sm/learn/intel-me/ wrote:The Intel Management Engine is a separate independent processor core that is actually embedded inside the Multichip Package on Intel CPUs. It operates all-by-itself and separate from the main processor, the BIOS, and the Operating system, but it does interact with the BIOS and OS kernel. It is a black box of mystery code at the lowest level, in ring -2, with complete control over every part of the system.
FYI, this IME runs a full OS (Minix) -- complete with a Java based virtual machine... (https://en.wikipedia.org/wiki/Intel_Act ... y#Hardware)https://puri.sm/posts/purism-librem-laptops-completely-disable-intel-management-engine/ wrote:The Management Engine, part of Intel AMT, is a separate CPU that can run and control a computer even when powered off.