Aptio® and MegaRAC® OpenEditions, Available on GitHub Today
The key to MegaRAC OpenEdition’s flexibility is a robust “common core” concept that delivers a highly-managed source base with high ROI, and a complete Service Processor Solution for wide product deployments. MegaRAC OpenEdition includes dedicated support, code patches and security advisories that all AMI customers trust and expect.
Aptio OpenEdition, with all the benefits of Aptio V, now available in open source. Firmware features support for the latest UEFI specifications and the security, fast boot and touch support that today’s platforms require.
Tektagon™ XFR is a new jointly-developed platform firmware security solution from two of the leading names in PFR – AMI and Lattice Semiconductor – to bring the industry an integrated, fully-featured, pre-verified and secure Platform Root-of-Trust solution that is flexible, scalable, low cost, and easy to implement. The solution uses the Lattice Sentry stack, featuring a low-power Lattice MachXO3D™ secure control FPGA running pre-verified, PFR-compliant IP, to implement Platform Root of Trust on a server’s motherboard. The Tektagon™ XFR firmware then orchestrates the connection between the Platform Root of Trust and other on-board components, such as SoCs and RoCs, to confirm the firmware they are running is valid.
This solution enables developers to quickly and easily implement system-level cyber resiliency that is pre-validated as compliant with NIST Platform Firmware Resiliency (PFR) Guidelines (NIST SP 800-193), making it easy for developers with limited hardware security expertise or limited time-to-market to implement PFR on the latest industry-standard server platforms.
AMI Firmware Solutions Powered by Intel® Memory Resilience Technology
AMI® Firmware Solutions boost effectiveness for Data Center Platforms with Intel® Memory Resilience Technology: Predict future memory failures in real-time and ensure data center operation and continuity
AMI firmware products have long been known for their effectiveness in the data center with powerful, reliable UEFI and BMC Management firmware for server platforms. Now, they ascend to a new level of power and productivity with the adoption of Intel Memory Resilience Technology – leveraging a multi-dimensional model and algorithms to predict future memory failures in real-time and ensure data center operation and continuity in both Aptio® V UEFI Firmware and MegaRAC® BMC Firmware from AMI.
Leveraging Intel® SGX secure enclaves, AMI TruE enables secure computing, easy to deploy workload attestation and secure application keys without compromising confidentiality – to deliver a secure data center solution that is scalable, extensible and built for cloud-to-edge applications. It establishes and tracks the servers’ trusted compute status in the data center, complies with data security regulations and provides remediation for untrusted platforms. Adding support for these key security features makes AMI TruE a reliable and easily deployed solution for data centers and cloud service providers that delivers functional computing, attestation, confidential computing and cloud execution without compromise.
AMI TruE® Trusted Environment Platform Security Solution
With attestation from AMI TruE, you gain a trust agent running at the OS level to determine platform trust by comparing hash information to known trusted hashes. A custom installed and managed attestation server will keep all the various hashes collected across the data center and track which ones are trusted or untrusted. When a node is found to be untrusted, it can be scheduled for automatic firmware updates based upon data center policy.
At AMI, we propel innovations for compute ecosystems worldwide. Our foundational technologies ensure that the world’s systems get and stay online. We proudly offer best-in-class UEFI and remote management firmware, security solutions, development tools and utilities for top-tier manufacturers of desktop, server, mobile, and embedded/IoT systems. Find the resources you need for our products here.
Stefano Righi SVP, Global Security Software Group What is the CVE-2021-44228 vulnerability? CVE-2021-44228 (see CVE-2021-44228) is a zero-day exploit announced on December 9th 2021 that affects applications that leverage the ubiquitous log4j v2 library. It allows...