Slashdot Mirror

← Back to Stories (view on slashdot.org)

LaGrande, TCPA, and Palladium

Posted by michael on from the ties-that-bind dept.

An anonymous reader writes "Intel's Paul Otellini gave a talk to developers where Intel's project called "LaGrande" was mentioned. This project is aimed to create a "safer computer environment", that would consist of an advanced TCPA implementation. Some of the features it has deal with physically "protected execution, protected memory, and protected storage". When talking on LaGrande, Otellini said "it's a core technology that things like the Microsoft Palladium initiative can take advantage of to build much more stable platforms.""

16 of 254 comments (clear)

  1. The scariest part by darkpenguin · · Score: 5, Insightful

    However the most negative single feature of TCPA and Palladium is the nature of Palladium and the philosophy that has driven Microsoft's development and promotion of Palladium. I think this is probably the scariest part of the whole deal. They recognize what could happen but they press forward regardless.

  2. The sad thing is.... by Ezekiel+Zachariah · · Score: 5, Insightful

    Most people who hear about these projects don't really understand how little control or privacy these projects will leave us. As far as stable, thats just funny...These projects will not give us more stable software, just buggy software that will let us do less. Next they will be telling us about CPUs and HDs that require MS to work correctly. and I have the first coherent post on this subject :)

    --
    "/. = :)"
    1. Re:The sad thing is.... by shoppa · · Score: 4, Insightful
      These projects will not give us more stable software, just buggy software that will let us do less.

      That's the beauty of the thing. They add complexity, but the slightest bug in the complex software will probably be exploitable to make encrypted data available to "normal" (e.g. non-approved-by-the-Intel-Microsoft-hegemony) programs.

      Just like growing the government has historically added more layers of beauracracy, making the people safer from the more-massive-and-slower-moving government.

    2. Re:The sad thing is.... by jbolden · · Score: 5, Insightful

      I doubt it. In non protected mode you won't be able to decrypt the files. In protected mode the "exploiting program" will be running in a sandbox. One of the fundamentals of capacity systems (which is where the ideas behind palladium came from) "if programs can communicate they can collude".

    3. Re:The sad thing is.... by ealar+dlanvuli · · Score: 5, Insightful

      and what happens when you can no longer turn it off?

      (the first shot is always free...)

      --
      I live in a giant bucket.
    4. Re:The sad thing is.... by Anonymous Coward · · Score: 5, Insightful

      Microsoft is a monopoly. "Trusted Office" will not run with Palladium disabled. "Trusted Mediaplayer" will not run with Palladium disabled. Same for Trusted Outlook Express, Trusted Internet Explorer, Trusted Windows, Trusted whatever. You may still be able to turn your computer physically on without enabling Palladium, but you will quickly find it is no more than a paperweight unless you enable Palladium.

      As for Linux, I wouldn't count on being able to run it in the future if Palladium continues unchecked. M$ wants a 'trusted path' to the keyboard and to the mouse - and presumably to the network too. Linux may very well lose the ability to access those devices (either through technical or through legal means), making it 100% useless.

      As for the notion that M$ would NOT abuse their monopoly powers, well I wouldn't count on that...

    5. Re:The sad thing is.... by cheezedawg · · Score: 5, Interesting

      1) Fair usage writes on media

      - The media that will most likely be restricted is media that is not available at all right now (legally) because the media producers fear piracy. Fair usage is a pretty muddy area, anyway.

      2) The right to copy and email many types of files on my own system

      - In general, you do not lose this "right". The cases where you do lose it, it is not legal to copy the file anyway.

      3) The right to use international software without running it in a virtual environment (i.e. international software is unlikely to get certified)

      - Certified by who? The user still decides what software is trusted or not.

      About privacy:

      Each palladium system has a unique 2048 bit public/private key pair. However, the public key is protected by hardware and cannot be tracked by a third party because of a system of nonces (outside parties will never see the same public key twice for the same system). Therefore, privacy is maintained.

      --
      "The defense of freedom requires the advance of freedom" - George W Bush
    6. Re:The sad thing is.... by Alsee · · Score: 5, Insightful

      Why does it need a key? Palladium-locked data isn't going to jump all around the net--it's going to stay right at home, and be accessed only by the program that wrote it.

      It is a cryptographic system, it kas keys. The way access is restricted to approved programs is by signing the programs with a key.

      Palladium-locked data isn't going to jump all around the net

      Yes, a signifigant amount of Palladium data WILL be bouncing around the net. Content delivery, patch delivery, every time you try to view certain kinds of DRM files you'll be bouncing locked data off of an approval server. One of the feature Microsoft is hyping is that you can send locked E-mails to people.

      Microsoft's marketing hype about Palladium is extremely misleading. It does not do the good things they say it does, and it does do the bad things they say it's not intended to do. Palladium is Bad News (unless you happen to want to sell DRM content or you happen to want an ultimate lock-out against competition).

      -

      --
      - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
    7. Re:The sad thing is.... by Alsee · · Score: 4, Insightful

      The media that will most likely be restricted is media that is not available at all right now (legally) because the media producers fear piracy.

      In a computer EVERYTHING is data. Media=content=data. Programs themselves can be locked inside the palladium system, as can the entire operating system, or websites. Anything and everything on a computer can be locked behind the Palladium wall, and all it takes is someone at a company to say "Heay, if we use Palladium on [something/everything] it then we could [do whatever]".

      Do you have any doubt that patches are going to be wrapped in Palladium "for your own protection"? Do doubt that websites that require Palladium will be as common as websites require cookies or require javascript?

      Fair usage is a pretty muddy area, anyway.

      The outter boundries of fair use are not well defined, but large areas are crystal clear. Courts have clearly and consistantly stated a wide varietey things are fair use, and that fair use is an ABSOLUTE exemption from copyright protection. You can't casually dissmiss fair use merely because there exist some areas that are unclear.

      >The right to copy and email many types of files on my own system
      - In general, you do not lose this "right".

      Unless the application goes out of it's way to enable you to move a file, you lose this right for every file within Palladium.

      The cases where you do lose it, it is not legal to copy the file anyway.

      Bullshit. (Pardon my french) Not every instance of moving a file is a violation of copyright law, and files inside Palladium are not necessarily covered by copyright protection. As I said before, anything and everything can and will end up inside Palladium. It's quite possible wind up with content to which YOU ARE THE COPYRIGHT HOLDER to be locked up on your machine, unable to move them.

      The user still decides what software is trusted or not.

      Then you do not understand Palladium at all. Trustworthy computing has ZERO to do with you trusting your machine or you trusting/not-trusting programs. YOU DO NOT GET TO DECIDE WHAT IS TRUSTED. Palladium is all about corporations not trusting YOU. THEY get to decide weather they trust your hardware. THEY get to decide weather they trust your operating system. THEY get to decide weather they trust your program. THEY get to decide weather they trust your data.

      privacy is maintained

      IF and ONLY IF the program chooses to do so. Palladium makes it trivial for programs to track you uniquely if they choose to, and companies are already trying to do this almost every chance they get.

      -

      --
      - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
  3. Great Name... by Ira-Waru · · Score: 5, Funny

    In the classic LucasArts adventure game Monkey Island 2, there is a character called Largo LeGrande. When we first meet him, IIRC, he tells Guybrush (the protangonist) that this island isn't safe, and then procedes to turn him upside down and shake all the money out of his pockets. Also, he has an oppressive embargo on the whole island (The Largo Embargo).

    Couldn't think of a better name, myself. :)

    --
    Such a price the gods exact for song: to become what we sing - Pythagoras
  4. Love ya Billy! by Spackler · · Score: 5, Funny

    Bill Gates is my hero!

    1. Create an insecure operating system

    2. Profit

    3. Blame computers for your insecurity

    4. Profit

    5. Get hardware vendors to make changes to compensate for YOUR buggy software

    6. Profit

    7. Prevent any software except yours from running securely

    8. Profit (by others demise)

    9. Take away everyones choice.
    10 Profit

    11. Blame the computers some more, as you take away more freedom

    12. Profit. Profit. Profit.

    When there is a wolf guarding the hen hose, why on earth would I need the shotgun named Linux?

  5. Useful services, devil is in the details by astrashe · · Score: 5, Interesting

    I was as afraid of palladium as the next guy before the details started to come out, but I think we ought to try to avoid the knee jerk reaction and think this stuff through more carefully.

    A lot of people are opposed to any scheme that can be used to thwart piracy. But in my view that's an extreme and unreasonable position, even when fair use issues are taken into account.

    For a long time it's seemed to me that the thing we ought to be working towards is an open system of distribution, one that can't be dominated by large media concerns, something that gives a guy who makes music at home the same sort of access to the market as the big record labels.

    To me, the issue is not whether or not my computer is capable of running some sort of protected DRM system -- the issue is whether or not it's capable of running alternative systems, if the existence of a palladium aware media player will break my mp3, ogg, and divx players, or my entire open source operating system. As I read these proposals, that's not the case, they won't break things.

    Microsoft has said explicitly that one of the key design goals of palladium was that it shouldn't break existing software.

    In my view, these sorts of services are useful, and we ought to be talking more about "how" then "if" they are implemented.

    In particular, we ought to be sure that software that will run under linux can provide the same sorts of services as a palladium enabled version of windows. I know that the applications themselves couldn't be truly open source (or at least you'd have to use a signed snapshot of an application that was developed using open source methodologies). But I don't think that's enough of a reason to pull back from this stuff.

    There are useful applications for this stuff.

    About a decade ago, one of the hot topics among crypto types was digicash -- cryptographic protocols invented by a guy named Chaum that try to mimic cash, especially its anonymity and security.

    One of the big problems was how to make microtransactions work when you're disconnected from the net. Imagine two palm os devices doing a transaction over infrared. Chaum's answer was to use tamper proof chips.

    Sure, on some level nothing is tamper proof, but it ought to be possible to make tampering difficult enough, expensive enough, and to cap the size of the transactions possible and the rate at which they can be made, in a way that would give people reasonable security. The NSA could hack the micropayment system, but they'd have to spend a million bucks, and all they could get back would be $50, or something like that.

    It seems to me that this kind of hardware could be seen as a more flexible kind of tamper proof chip.

    I think the goal should be that whatever hardware comes out should work with arbitrary operating systems. The trust chain should be decentralized.

    In other words, if I develop an electronic music distribution system, I should be able to develop apps for whatever OSs I choose to support, and I should be able to make my system recognize whatever signatures I feel are trusthworsthy. It ought to be possible for *anyone* to develop such a system, and to use the hooks into the hardware.

    The thing that worries me is that if all we say is "no, palladium is the devil" we won't have any voice in this stuff.

    1. Re:Useful services, devil is in the details by TRACK-YOUR-POSITION · · Score: 4, Insightful
      I agree good things can come from some DRM-type solutions in theory--the problem is that outside of theory the asymmetries of the marketplace mess everything up.

      Theoretically, if anyone doesn't like this-or-that DRM enabled feature of a product, they just shouldn't buy the product. But there's a flaw in this reasoning--just as everyone here who screams bloody murder about TCPA is probably going to have to buy a TCPA computer at some point (because that's the only kind they'll sell). Large well-organized corporations simply have vastly more negotiating power than individual consumers in deciding these sorts of things. You deciding not to buy the latest songs from the record companies doesn't phase them, but if large corporations decide not to sell products with feature X, then you'll just do without feature X, period.

      Which means, left to its own ends, the marketplace will encourage software/hardware suppliers to set anti-fair use restrictions once DRM is common. Basically they'll turn their paper EULAs into draconian DRM restrictions.

      Now, one can get on a high horse and just say "well I'll just run Linux and not purchase DRM content and never have to put up with any of that!" Yeah, we'll see how long that makes sense once all music, all movies, and many e-mails require Palladium. Most people use computers for communication--so if they refuse to buy the kind of computer that allows them to send and receive information from the kinds of computers other people buy, then your computer is going to become very useless. Palladium has far more potential to make this a reality than Microsoft Office file formats or Internet Explorer ever could. Remember, in a world of network effects, you're only as free as your neighbor.

      So, while it may be true (if we're lucky) that TCPA can be used from any OS (though as you say, applications and content would need to be re-written to support it), from a utilitarian view things are going to start sucking for ordinary users unless one of two things takes place:

      1. The government or some other entity outside the marketplace has veto power over allowable DRM policies, and uses it liberally.

      2. We can encourage all consumers to say "palladium is the devil!", because even with the advantages you describe, it would still be a very bad thing from the users point of view.

  6. Its a damn good thing .... by bizitch · · Score: 5, Funny

    for Intel and M$ that nobody has claimed the intelectual property rights on idiocy (yet).

    --
    ---- "Logoff! That cookie shit makes me nervous!" - A. Soprano
  7. Re:Could this be a Good Thing? by Todd+Knarr · · Score: 4, Insightful

    It will not stop your MP3s from playing. They'll just play in a protected address space. Or maybe they won't depending on your player software.

    I think you misunderstand the use of the protected area. Your MP3s will be encrypted. the keys to decrypt them will be stored in the protected area. Only "trusted" programs will be allowed access to the protected area, so only "trusted" programs will be able to get the keys and decrypt the MP3s. One requirement for "trust" will be that the player provides no way to save the unencrypted datastream anywhere. Possibly it might not even send the stream to a sound card unless that sound card was also "trusted".

    The fundamental problem isn't even the word "trust", it's who can trust the computer. This whole thing isn't intended to insure that you can trust your computer or the software on it. It's to insure that other people (eg. the RIAA, MPAA, Microsoft) can trust your computer. Trust it, that is, to do only what they tell it it can do and nothing else. If you wonder why MS would want that, think back a couple of years to their floating of the idea of annual subscriptions for Windows licenses. Now imagine the glee when they discover a way to guarantee that, if they impose that, you the user can't do a thing to bypass their check of whether you've paid or not because the hardware won't let you touch that data.

  8. Comment removed by account_deleted · · Score: 4, Informative

    Comment removed based on user account deletion