Heads are coreboot version anti evil maid. is this correct?
@kzlz It depends a little bit on what you mean exactly by “a version of”.
Anti Evil Maid (AEM) usually refers to a specific way to ensure that any change to the files that are used to boot can be detected.
It takes its name from a class of attacks called “evil maid attacks”, where the goal of the attacker is to modify a system without being detected.
To do that AEM relies on a feature of Intel processors called the Intel Management Engine (Intel ME).
Heads also aims at making sure that evil maid attacks would be detected, but it does so through different means. In particular, it doesn’t rely on Intel ME.
So both projects could be said to be “anti evil maid” mechanisms (lowercase), but Heads is not a version of Anti Evil Maid (a.k.a AEM in capitals).
Does that make sense, answer your question?
Now, for more details about both AEM and Heads, and why you may prefer one to another in any given context, I’d suggest starting from the topic that @fsflover linked above and asking more questions there if needed. 
3 Likes