Slashdot Mirror
Intel To Drop CPU ID Number
slashdoter writes: "Looks like Intel is giving up the ID number thing on the CPU. They will still have it on the PIII but the Willamette will be
like the older PII. " Guess the
boycott
over the fiasco is at an end. Cool that Intel listens to consumers.
I am a free CPU
The other thing is, why not just create two versions of the chip? For home users, we can get the version of the chip that does not have the serial number, and for those that want/need the serial number feature, they can create a version that has it. Better yet, make it a separate module that can be added to the CPU, so that while each CPU has a serial number, it cannot be accessed unless this module is added. If corporate/government users want this feature, I don't see why they shouldn't have it. For personal use, I'd say we have to have at least a choice or it should not be there at all.
As far as I know, Microsoft was embedding the MAC Address in documents created by their products... Which is how the guy that wrote the Melissa virus was caught. Not that that's a good thing!
:improved: one that actually obeyed your commands, and another that removed the embedded hardware info in Office docuents.
In a completely separate incedent, it was found that the Windows Registration Wizard was sending all the data about your configuration back to Microsoft, regardless as to whether or not a user said it was okay when they were presented with a dialog asking permission.
Two completely separate incidents, which took place a while back... After the fallout, Microsoft released 2 utilities... One that would replace the standard Windows registration wizard with an
Yes, a wonderful victory for consumers. But what about going after the root of the problem - marketing and insufficient legal protections?
I have this straight from one of Intel's senior researchers. The original concept was that the CPU ID would be used for tracking assets in an organization. Inventory type stuff. This was actually asked for by major IT departments.
/sbin/ifconfig
Then: The marketing dept. got hold of the ID number and started asking around about what it could be used for and someone said oooh, e-commerce! It was then that things got out of control and everyone got onto Intel for tracking them, etc.
The sad thing is that you don't need a CPU id if you allow your adversary to execute arbitrary code on your machine.(which you would have to do to allow someone to read your ID #) I mean a nice unique ID number is available by running
or just reimplemented in an undocumented way?
Even paranoids have enemies
Remember, the day when you found out about Intel PSN? It was devastating. I remember going to their newsgroups and publishing questions
-1 -, -2 -, -3 - maybe those were not very well articulated questions but, jeez, couldn't they try to answer?
The only responses from Intel rep's that me and other hundreds of people received was to move our questions away from Intel's newsgroup into other newsgroups.
They specifically did not like questions that mentioned overclocking their CPU's, even though they overclock their own CPU's all the time and sell them at higher prices (PII, PIII same core; Pentium 166 was an overclocked Pentium 150 - but only intel is allowed to do this.)
I am happy that AMD did not catch this desease of marking their processors with PINs, it would be a worse blow yet.
Now at least, I can go back the Intel's newsgroups and say: "told you so, suckers!"
You can't handle the truth.
--
--
E2 IN2 IE?
Folks,
I think the CPU ID idea used on the Pentium III CPU died real quickly because Microsoft never really supported the idea in Windows 98, Windows 98 Second Edition and Windows 2000. Given that's 85% of the operating system market, when Microsoft doesn't support the CPU ID#, nobody else is going to support it.
Raymond in Mountain View, CA
But that's all still really besides the point. :)
Digital identity in the right hands can give you the kind of freedom you've never imagined possible. Fully authorized digital identity or certificate in the hands of a third party you trust can be used to arbitrate your business and thus shield you from the more tiring elements of free capitalism such as direct mail marketing. Other elements of your identity, like all contact information, in the right hands can give you powerful roaming freedom, and in the wrong hands an endless nightmare of commercial bombardment.
In the Real World, we leave this sort of trust to the government, the community and society that we are a part of. We have enough trust in our own community to allow them to do things like keeping an elaborate registry on everyone; where they live, where they work and how much they earn. Our identity can be verified at every door and most financial transactions. We have a common agreement that this information will not be abused, and a legal system to enforce it where violations may occur.
Now, since the virtual world does not possess this kind of global authority, the need for verification and identification of an individual has driven us to temporary choices like ID numbers on processors. Quite laughable, actually, both the concept of associating a machine with a person and the worry of someone tracking these cyptic numbers over the Wild, Wild Web. Laughable, maybe, but hitting frighteningly close to home. A piece of our identity in the hands of someone we do not trust to treat us justly.
This will continue to be an issue when we learn to flash the badge of our strong digital identify in the online world. Who will you really let know who you really are? What will they do with this information, where will it be stored?
In God we trust, and God is dead. Now who will hold your number?
--
Jouni Mannonen
3D Evangelist
Jouni Mannonen | Game Designer, Consultant
CPU serial numbers are useful mostly for networking, inventory control, and copy protection. If you've had to deal with dongles, or FLEXLM, the License Manager from Hell, CPU serial numbers look like a big improvement. Dongles are notorious for having problems when you have more than one. They usually plug into the printer port (although USB dongles are appearing) and try, not too successfully, to be transparent. On my system, if the printer runs out of paper, the dongle can't respond to the license manager, and the licensed software stops running.
You're right. In the physical world, we do have these elaborate "registries" as you call them. But there's a difference between that and strong digital identity. With physical identity, we can always choose not to "flash the badge." With digital identity, you can't do that because you have no control whatsoever over what of your identity people see (you don't have much control in the physical world either, but you can still take precautions to completely hide your identity).
Now, if this "identity" could be stored on my machine and only my machine, and I could at my own discretion choose to hide it or not, that would be one thing. Perhaps CPU ID's would make a starting point, though MAC addresses would be better (they're cross-platform). But that's not how it works now, and businesses will never allow that (since then they have no control, and in business it's all about who controls what).
By the way, I notice people here saying MAC addresses are totally private. Not strictly true. Every Ethernet packet you send out is tagged with both your MAC and the MAC of the machine you're sending to; it's part of the Ethernet protocol. Now, these are both stripped out as soon as the packet passes through a non-Ethernet device (cable modem, DSL modem, T1, etc). But as long as there's only Ethernet between you and The Bad Guy (tm), he can still track that part of where you're going. Guess it's a Good Thing that the Net isn't Ethernet-only...