Login Backoff Mechanism after failed login attempts
Intel AMT prevents online attacks to the Intel AMT systems by including a backoff
mechanism, triggered by a certain number of successive failed login attempts. If an attacker
tries to login to the Intel AMT system by guessing a password, and Intel AMT detects ten
successive login failures, further login attempts are disallowed for a period of time. The
timeout period starts at 5 seconds and reaches 80 seconds during continuous attack. After
one hour of no attack the backoff mechanism is reset. This feature substantially impedes a
system attack using password guessing.