This maybe a dumb question but i became paranoid all of a sudden and wanted some answers because i can’t find it anywhere else nor can i sleep without it. Like even if i did flash linux on a lets say amd laptop couldn’t the chip itself be spying on me ? Also i understand bootloaders are stored or rom is there a way to know what else is stored on it are roms open source ? Are cpu’s open source and companies like asus store their logos and shit on their mother boards so what else could they be storing ? Are there open source alternatives for these parts ? Are we all being privacy cautios for nothing ? I know we can use firewall but wouldn’t the chip integrated have the ability to bye pass it ?
I know there are linux laptops but having a pre installed linux and some switches isn’t gonna solve the problem do they use open source roms and motherboard ? Are there any fully open source chipsets ? I want to know the same about smartphones too ?
IMPORTANT EDIT : Please don’t suggest alternatives like dumb phone i wanna know if there is any way to know or ensure we are not spied upon while using smartphones or laptop . And i don’t care about my os spying on me or the apps apps or web spying on me all i wanna know is if the hardware i use are spying on me and if not how do you know ? . Also which is better in terms of open source and privacy intel or amd ?
ANOTHER IMPORTANT EDIT : I am also not concerned by my isp tracking me or someon hacking me as i said all i care about is the hardware doing me in .
LAST EDIT I HOPE : AS I SAID MULTIPLE TIMES AND STILL PEOPLE UNDERSTAND IS I DON’T CARE IF ANYTHING OTHER THAN THE HARDWARE IS SPYING ON ME . LIKE ARE YOU TELLING ME THAT TOP CYBERSECURITY WORKERS OR ELITE HACKERS ARE JUST HOPING THEIR HARDWARE IS NOT SPYING ON THEM AND THERE IS NO WAY FOR AN ELITE HACKER OR CYBERSECURTY WORKER TO ENSURE THEY ARE NOT BEING SPIED BY THEIR HARDWARE OR IS THERE NO OTHER FULLY OPEN SOURCE HARDWARE THEY CAN BUY ?I’M NOT INTERNET SHOUTING OR WANTING TO BE RUDE I JUST WANNA GET THE POINT ACROSS ALSO PLEASE DON’T AVOID THIS AND ANSWER SOMETHING ELSE I JUST WANNA KNOW THIS SPECIFIC THING.
EDIT: LET ME MAKE IT VERY CLEAR I’M JUST A RUN OF THE MILL GUY BYING RUN OF THE MILL LAP AND PHONE AND USING IT I AM NOT BEING TRACKED BY NSA I’M SURE OF THAT BECAUSE I AM NOT THAT INTERESTING EVEN IF I WERE ITS NOT THE QUESTION UNLESS THE CIA OR NSA IS MAKING 1000 OF LAPS TO CATCH ME . YOU HAVE NO OBLIGATION TI ANSWER ME AND I AM GRATEFULL FOR YOUR ANSWERS BUT PLEASE ANSWER WHAT I WANT TO KNOW I FEEL LIKE YOU GUYS AND GALS DON’T EVEN COME CLOSE TO THE SUBJECT.
You don’t. It’s possible that the firmware or bootloader is doing evil things. They have access to hardware in a way your OS may not detect.
The seminal paper in this area is On Trusting Trust. That link isn’t to the original, but it has a nice overview.
The best way to prevent this kind of spying is through air gaps: ie, no network. Realistically, most of us don’t want to do that.
At some point, you need to ask yourself what your threat model is. If you’re going to have severe consequences from doing something in range of the device, maybe you wanna do it elsewhere.
This is the original: https://dl.acm.org/doi/10.1145/358198.358210
Not op but this seems false and irrelavent to what theu are asking. Their problem could be solved by making the chip ipen source .
You would also have to make the die visible. Just because “source code” is open doesn’t prove the development chain hasn’t been compromised. That’s the gist of the paper referenced above. If a bad guy swaps their design for the open source design when the chips are fabbed, you’ll never know by looking at the source.
LIKE ARE YOU TELLING ME THAT TOP CYBERSECURITY WORKERS OR ELITE HACKERS ARE JUST HOPING THEIR HARDWARE IS NOT SPYING ON THEM AND THERE IS NO WAY FOR AN ELITE HACKER OR CYBERSECURTY WORKER TO ENSURE THEY ARE NOT BEING SPIED BY THEIR HARDWARE
Yes.
Professional ELITE HACKERS who work for governments need to leave their electronic devices outside secure facilities for precisely this reason.
Similarly, government networks that are air gapped have their hardware physically destroyed when it’s decommissioned because it’s impossible to be sure that it’s secure.
Easy. It’s far too expensive to implement, both in money and man-hours. Especially man-hours.
The amount of people required to personally surveil the general populace is way too exorbitant, AND they have to monitor their own people to prevent leaks. The logistics explodes well before this becomes feasible.
Then there’s discoverability. Once such hardware is out there, it’s only a matter of time before it falls into the hands of someone capable of dissecting it. Given that such spying methods would be ‘sold’ to federal management on the grounds of national security, there’s an interest in not having it fall into such hands. Therefore, these methods are reserved for high-profile targets. Not the average Joe citizen.
To summarize: Too expensive (money), too expensive (logistics), and too expensive (R&D). Unless you’re on Interpol’s most wanted list or something, you don’t need to worry about this.
Well here is my take: there are only like, 35 personalities that exist in the world with slight individual variations. You posting this tells any data scraper which one you fall under. People are in general extremely predictable. So once the algo has sorted you, they dont have to actively listen to you at all. The algo already knows what choices you perceive yourself as having in your life and when you are likely to make those decisions
Heck, the utility company knows if your going through a divorce based on changes in when and how the bill is paid.
Google knows if your getting laid based off location data
If you dont want to be spied on there is only one way my friend. Only lurk the web from one place, never post, only lurk. And just leave your phone in the closet or wherever when your not using it, turned off. The algo’s et al will still draw conclusions from this, but at least they will be incorrect
deleted by creator
I know, my point is ultimately that your looking at it wrong. The hardware doesnt need to be involved in any special hidden way for any entity to create a profile about you. Also, are you working on top secret tech or something? Why would you consider yourself worth spying on? This isnt an insult, you genuinly seem concerned to me, I hope you can find the answers you seek
