LaGrande, TCPA, and Palladium

← Back to Stories (view on slashdot.org)

LaGrande, TCPA, and Palladium

Posted by michael on Saturday November 2, 2002 @09:21AM from the ties-that-bind dept.

An anonymous reader writes "Intel's Paul Otellini gave a talk to developers where Intel's project called "LaGrande" was mentioned. This project is aimed to create a "safer computer environment", that would consist of an advanced TCPA implementation. Some of the features it has deal with physically "protected execution, protected memory, and protected storage". When talking on LaGrande, Otellini said "it's a core technology that things like the Microsoft Palladium initiative can take advantage of to build much more stable platforms.""

16 of 254 comments (clear)

Min score:

Reason:

Sort:

The scariest part by darkpenguin · 2002-11-02 09:27 · Score: 5, Insightful

However the most negative single feature of TCPA and Palladium is the nature of Palladium and the philosophy that has driven Microsoft's development and promotion of Palladium. I think this is probably the scariest part of the whole deal. They recognize what could happen but they press forward regardless.
The sad thing is.... by Ezekiel+Zachariah · 2002-11-02 09:28 · Score: 5, Insightful

Most people who hear about these projects don't really understand how little control or privacy these projects will leave us. As far as stable, thats just funny...These projects will not give us more stable software, just buggy software that will let us do less. Next they will be telling us about CPUs and HDs that require MS to work correctly. and I have the first coherent post on this subject :)

--
"/. = :)"
1. Re:The sad thing is.... by shoppa · 2002-11-02 09:33 · Score: 4, Insightful
  
  These projects will not give us more stable software, just buggy software that will let us do less.
  That's the beauty of the thing. They add complexity, but the slightest bug in the complex software will probably be exploitable to make encrypted data available to "normal" (e.g. non-approved-by-the-Intel-Microsoft-hegemony) programs.
  Just like growing the government has historically added more layers of beauracracy, making the people safer from the more-massive-and-slower-moving government.
2. Re:The sad thing is.... by jbolden · 2002-11-02 09:41 · Score: 5, Insightful
  
  I doubt it. In non protected mode you won't be able to decrypt the files. In protected mode the "exploiting program" will be running in a sandbox. One of the fundamentals of capacity systems (which is where the ideas behind palladium came from) "if programs can communicate they can collude".
3. Re:The sad thing is.... by jbolden · 2002-11-02 09:56 · Score: 3, Insightful
  
  In terms of usage:
  
  1) Fair usage writes on media
  2) The right to copy and email many types of files on my own system
  3) The right to use international software without in running in a virtual environment (i.e. international software is unlikely to get certified)
  
  In terms of privacy
  Most content on my system will be registered to my name.
4. Re:The sad thing is.... by ealar+dlanvuli · 2002-11-02 10:04 · Score: 3, Insightful
  
  because we all know the algorithm for discovering the private keys won't be cracked within a year...
  
  With that many eyes really wanting to break your encryption (basically everyone who can break encryption in the entire world) you stand no chance. I wouldn't doubt MS choses some retarded block style assignemnt method that allows you to throw out 90% of the private keys before you even begin to brute force.
  
  --
  I live in a giant bucket.
5. Re:The sad thing is.... by ealar+dlanvuli · 2002-11-02 10:13 · Score: 5, Insightful
  
  and what happens when you can no longer turn it off?
  
  (the first shot is always free...)
  
  --
  I live in a giant bucket.
6. Re:The sad thing is.... by Anonymous Coward · 2002-11-02 10:15 · Score: 5, Insightful
  
  Microsoft is a monopoly. "Trusted Office" will not run with Palladium disabled. "Trusted Mediaplayer" will not run with Palladium disabled. Same for Trusted Outlook Express, Trusted Internet Explorer, Trusted Windows, Trusted whatever. You may still be able to turn your computer physically on without enabling Palladium, but you will quickly find it is no more than a paperweight unless you enable Palladium.
  
  As for Linux, I wouldn't count on being able to run it in the future if Palladium continues unchecked. M$ wants a 'trusted path' to the keyboard and to the mouse - and presumably to the network too. Linux may very well lose the ability to access those devices (either through technical or through legal means), making it 100% useless.
  
  As for the notion that M$ would NOT abuse their monopoly powers, well I wouldn't count on that...
7. Re:The sad thing is.... by cheezedawg · 2002-11-02 10:53 · Score: 3, Insightful
  
  Not agreeing with you != troll.
  
  The people I know in the security business agree that the problem is impossible to solve without hardware support. If you haven't noticed, there is a huge demand for digital content, and there is a lack of supply of that content because the media companies fear piracy. This is a defensive move by Microsoft/AMD/Intel, because someday somebody was always going to find a way to allow media companies to distribute this content without fear of piracy, and that person is going to make a lot of money.
  
  er the OS (palladium) decides what is trusted , otherwise the certificates are useless, and the certificates are issued by microsoft.
  
  I have been reading the documentation available, like here where Microsoft says:
  
  Only the user decides what "Palladium" applications get to run. Anyone can write an application to take advantage of "Palladium" APIs without notifying Microsoft (or anyone else) or getting its (or anyone else's) approval.
  
  I have also been reading enough to know that most of the information out there about Palladium is untrue.
  
  --
  "The defense of freedom requires the advance of freedom" - George W Bush
8. Re:The sad thing is.... by Alsee · 2002-11-02 13:40 · Score: 5, Insightful
  
  Why does it need a key? Palladium-locked data isn't going to jump all around the net--it's going to stay right at home, and be accessed only by the program that wrote it.
  
  It is a cryptographic system, it kas keys. The way access is restricted to approved programs is by signing the programs with a key.
  
  Palladium-locked data isn't going to jump all around the net
  
  Yes, a signifigant amount of Palladium data WILL be bouncing around the net. Content delivery, patch delivery, every time you try to view certain kinds of DRM files you'll be bouncing locked data off of an approval server. One of the feature Microsoft is hyping is that you can send locked E-mails to people.
  
  Microsoft's marketing hype about Palladium is extremely misleading. It does not do the good things they say it does, and it does do the bad things they say it's not intended to do. Palladium is Bad News (unless you happen to want to sell DRM content or you happen to want an ultimate lock-out against competition).
  
  -
  
  --
  - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
9. Re:The sad thing is.... by Alsee · 2002-11-02 14:56 · Score: 4, Insightful
  
  The media that will most likely be restricted is media that is not available at all right now (legally) because the media producers fear piracy.
  
  In a computer EVERYTHING is data. Media=content=data. Programs themselves can be locked inside the palladium system, as can the entire operating system, or websites. Anything and everything on a computer can be locked behind the Palladium wall, and all it takes is someone at a company to say "Heay, if we use Palladium on [something/everything] it then we could [do whatever]".
  
  Do you have any doubt that patches are going to be wrapped in Palladium "for your own protection"? Do doubt that websites that require Palladium will be as common as websites require cookies or require javascript?
  
  Fair usage is a pretty muddy area, anyway.
  
  The outter boundries of fair use are not well defined, but large areas are crystal clear. Courts have clearly and consistantly stated a wide varietey things are fair use, and that fair use is an ABSOLUTE exemption from copyright protection. You can't casually dissmiss fair use merely because there exist some areas that are unclear.
  
  >The right to copy and email many types of files on my own system
  - In general, you do not lose this "right".
  
  Unless the application goes out of it's way to enable you to move a file, you lose this right for every file within Palladium.
  
  The cases where you do lose it, it is not legal to copy the file anyway.
  
  Bullshit. (Pardon my french) Not every instance of moving a file is a violation of copyright law, and files inside Palladium are not necessarily covered by copyright protection. As I said before, anything and everything can and will end up inside Palladium. It's quite possible wind up with content to which YOU ARE THE COPYRIGHT HOLDER to be locked up on your machine, unable to move them.
  
  The user still decides what software is trusted or not.
  
  Then you do not understand Palladium at all. Trustworthy computing has ZERO to do with you trusting your machine or you trusting/not-trusting programs. YOU DO NOT GET TO DECIDE WHAT IS TRUSTED. Palladium is all about corporations not trusting YOU. THEY get to decide weather they trust your hardware. THEY get to decide weather they trust your operating system. THEY get to decide weather they trust your program. THEY get to decide weather they trust your data.
  
  privacy is maintained
  
  IF and ONLY IF the program chooses to do so. Palladium makes it trivial for programs to track you uniquely if they choose to, and companies are already trying to do this almost every chance they get.
  
  -
  
  --
  - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
10. Re:The sad thing is.... by Planesdragon · 2002-11-02 19:53 · Score: 3, Insightful
  
  Content delivery, patch delivery, every time you try to view certain kinds of DRM files you'll be bouncing locked data off of an approval server. One of the feature Microsoft is hyping is that you can send locked E-mails to people.
  
  Ok, so part of Palladium will involve internet transport--but not all of it.
  
  Palladium's chief change, as I understand it, is a "secured disk area" where only the actual program that writes the data can read the data.
  
  Microsoft's marketing hype about Palladium is extremely misleading. It does not do the good things they say it does, and it does do the bad things they say it's not intended to do. Palladium is Bad News (unless you happen to want to sell DRM content or you happen to want an ultimate lock-out against competition).
  
  Sorry, I don't consider DRM a bad thing. A trusted PC interface means that those-that-publish will be able to do so electronically without knowing that it's going to be pirated the next day.
  
  Neither do I consider a program being able to lock its own files a bad thing--since MS would be shooting themselves in the foot operatability-wise if it's impossible to tell the program to move the files to "public space."
Re:I think these technologies are a good thing by TRACK-YOUR-POSITION · 2002-11-02 10:33 · Score: 3, Insightful

In case you haven't noticed, most of the big attacks that really impact ordinary users seem to be with code that the user has agreed to run--be it an email forwarding virus or spyware, the user instructed the computer to run the offending code. So how is Palladium supposed to help? If it blocks non-Microsoft endorsed code, it's as evil as Slashdot claims it is. If it runs the offending code, as instructed to by the Outlook or Internet Explorer user, then all of that fancy hardware security added up to exactly nothing.
Re:Useful services, devil is in the details by TRACK-YOUR-POSITION · 2002-11-02 11:17 · Score: 4, Insightful

I agree good things can come from some DRM-type solutions in theory--the problem is that outside of theory the asymmetries of the marketplace mess everything up.
Theoretically, if anyone doesn't like this-or-that DRM enabled feature of a product, they just shouldn't buy the product. But there's a flaw in this reasoning--just as everyone here who screams bloody murder about TCPA is probably going to have to buy a TCPA computer at some point (because that's the only kind they'll sell). Large well-organized corporations simply have vastly more negotiating power than individual consumers in deciding these sorts of things. You deciding not to buy the latest songs from the record companies doesn't phase them, but if large corporations decide not to sell products with feature X, then you'll just do without feature X, period.
Which means, left to its own ends, the marketplace will encourage software/hardware suppliers to set anti-fair use restrictions once DRM is common. Basically they'll turn their paper EULAs into draconian DRM restrictions.
Now, one can get on a high horse and just say "well I'll just run Linux and not purchase DRM content and never have to put up with any of that!" Yeah, we'll see how long that makes sense once all music, all movies, and many e-mails require Palladium. Most people use computers for communication--so if they refuse to buy the kind of computer that allows them to send and receive information from the kinds of computers other people buy, then your computer is going to become very useless. Palladium has far more potential to make this a reality than Microsoft Office file formats or Internet Explorer ever could. Remember, in a world of network effects, you're only as free as your neighbor.
So, while it may be true (if we're lucky) that TCPA can be used from any OS (though as you say, applications and content would need to be re-written to support it), from a utilitarian view things are going to start sucking for ordinary users unless one of two things takes place:
1. The government or some other entity outside the marketplace has veto power over allowable DRM policies, and uses it liberally.
2. We can encourage all consumers to say "palladium is the devil!", because even with the advantages you describe, it would still be a very bad thing from the users point of view.
Re:Useful services, devil is in the details by boy_of_the_hash · 2002-11-02 11:27 · Score: 3, Insightful

You have obviously never been denied entry to a site because you are not using IE. What happens when you become a second class citizen on the net - because your machine is not TCPA enabled? The Open source development model that you describe is all well and good but what happens when I want to recompile my kernel? How is that possibly going to be compatible with a palladium like service? But I don't think that's enough of a reason to pull back from this stuff. If you break your own spine, you will probably never walk again, but don't let that knowledge cause you to 'pull back from this stuff'!
Re:Could this be a Good Thing? by Todd+Knarr · 2002-11-02 18:43 · Score: 4, Insightful

It will not stop your MP3s from playing. They'll just play in a protected address space. Or maybe they won't depending on your player software.

I think you misunderstand the use of the protected area. Your MP3s will be encrypted. the keys to decrypt them will be stored in the protected area. Only "trusted" programs will be allowed access to the protected area, so only "trusted" programs will be able to get the keys and decrypt the MP3s. One requirement for "trust" will be that the player provides no way to save the unencrypted datastream anywhere. Possibly it might not even send the stream to a sound card unless that sound card was also "trusted".

The fundamental problem isn't even the word "trust", it's who can trust the computer. This whole thing isn't intended to insure that you can trust your computer or the software on it. It's to insure that other people (eg. the RIAA, MPAA, Microsoft) can trust your computer. Trust it, that is, to do only what they tell it it can do and nothing else. If you wonder why MS would want that, think back a couple of years to their floating of the idea of annual subscriptions for Windows licenses. Now imagine the glee when they discover a way to guarantee that, if they impose that, you the user can't do a thing to bypass their check of whether you've paid or not because the hardware won't let you touch that data.