Intel® AMT supports the HTTP digest authentication method to authenticate the user before allowing administrative operations. In order to protect the Intel® AMT devices from BORE attacks (Break Once, Run Everywhere), it is recommended that each device is configured with a unique password. This approach would require the management solutions to maintain a database to map a device unique identifier to the Intel® AMT digest password. Specifically, when multiple management solutions are managing the Intel® AMT device, maintenance and synchronization of these credentials can be challenging. ISR-0001: Intel® AMT Digest Master Password is a recommendation to address the interoperability between multiple management solutions when using digest authentication.
ISR-0001: Intel® AMT Digest Master Password