Slashdot Mirror

← Back to Stories (view on slashdot.org)

LaGrande, TCPA, and Palladium

Posted by michael on from the ties-that-bind dept.

An anonymous reader writes "Intel's Paul Otellini gave a talk to developers where Intel's project called "LaGrande" was mentioned. This project is aimed to create a "safer computer environment", that would consist of an advanced TCPA implementation. Some of the features it has deal with physically "protected execution, protected memory, and protected storage". When talking on LaGrande, Otellini said "it's a core technology that things like the Microsoft Palladium initiative can take advantage of to build much more stable platforms.""

11 of 254 comments (clear)

  1. The scariest part by darkpenguin · · Score: 5, Insightful

    However the most negative single feature of TCPA and Palladium is the nature of Palladium and the philosophy that has driven Microsoft's development and promotion of Palladium. I think this is probably the scariest part of the whole deal. They recognize what could happen but they press forward regardless.

  2. The sad thing is.... by Ezekiel+Zachariah · · Score: 5, Insightful

    Most people who hear about these projects don't really understand how little control or privacy these projects will leave us. As far as stable, thats just funny...These projects will not give us more stable software, just buggy software that will let us do less. Next they will be telling us about CPUs and HDs that require MS to work correctly. and I have the first coherent post on this subject :)

    --
    "/. = :)"
    1. Re:The sad thing is.... by jbolden · · Score: 5, Insightful

      I doubt it. In non protected mode you won't be able to decrypt the files. In protected mode the "exploiting program" will be running in a sandbox. One of the fundamentals of capacity systems (which is where the ideas behind palladium came from) "if programs can communicate they can collude".

    2. Re:The sad thing is.... by ealar+dlanvuli · · Score: 5, Insightful

      and what happens when you can no longer turn it off?

      (the first shot is always free...)

      --
      I live in a giant bucket.
    3. Re:The sad thing is.... by Anonymous Coward · · Score: 5, Insightful

      Microsoft is a monopoly. "Trusted Office" will not run with Palladium disabled. "Trusted Mediaplayer" will not run with Palladium disabled. Same for Trusted Outlook Express, Trusted Internet Explorer, Trusted Windows, Trusted whatever. You may still be able to turn your computer physically on without enabling Palladium, but you will quickly find it is no more than a paperweight unless you enable Palladium.

      As for Linux, I wouldn't count on being able to run it in the future if Palladium continues unchecked. M$ wants a 'trusted path' to the keyboard and to the mouse - and presumably to the network too. Linux may very well lose the ability to access those devices (either through technical or through legal means), making it 100% useless.

      As for the notion that M$ would NOT abuse their monopoly powers, well I wouldn't count on that...

    4. Re:The sad thing is.... by cheezedawg · · Score: 5, Interesting

      1) Fair usage writes on media

      - The media that will most likely be restricted is media that is not available at all right now (legally) because the media producers fear piracy. Fair usage is a pretty muddy area, anyway.

      2) The right to copy and email many types of files on my own system

      - In general, you do not lose this "right". The cases where you do lose it, it is not legal to copy the file anyway.

      3) The right to use international software without running it in a virtual environment (i.e. international software is unlikely to get certified)

      - Certified by who? The user still decides what software is trusted or not.

      About privacy:

      Each palladium system has a unique 2048 bit public/private key pair. However, the public key is protected by hardware and cannot be tracked by a third party because of a system of nonces (outside parties will never see the same public key twice for the same system). Therefore, privacy is maintained.

      --
      "The defense of freedom requires the advance of freedom" - George W Bush
    5. Re:The sad thing is.... by Alsee · · Score: 5, Insightful

      Why does it need a key? Palladium-locked data isn't going to jump all around the net--it's going to stay right at home, and be accessed only by the program that wrote it.

      It is a cryptographic system, it kas keys. The way access is restricted to approved programs is by signing the programs with a key.

      Palladium-locked data isn't going to jump all around the net

      Yes, a signifigant amount of Palladium data WILL be bouncing around the net. Content delivery, patch delivery, every time you try to view certain kinds of DRM files you'll be bouncing locked data off of an approval server. One of the feature Microsoft is hyping is that you can send locked E-mails to people.

      Microsoft's marketing hype about Palladium is extremely misleading. It does not do the good things they say it does, and it does do the bad things they say it's not intended to do. Palladium is Bad News (unless you happen to want to sell DRM content or you happen to want an ultimate lock-out against competition).

      -

      --
      - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
  3. Great Name... by Ira-Waru · · Score: 5, Funny

    In the classic LucasArts adventure game Monkey Island 2, there is a character called Largo LeGrande. When we first meet him, IIRC, he tells Guybrush (the protangonist) that this island isn't safe, and then procedes to turn him upside down and shake all the money out of his pockets. Also, he has an oppressive embargo on the whole island (The Largo Embargo).

    Couldn't think of a better name, myself. :)

    --
    Such a price the gods exact for song: to become what we sing - Pythagoras
  4. Love ya Billy! by Spackler · · Score: 5, Funny

    Bill Gates is my hero!

    1. Create an insecure operating system

    2. Profit

    3. Blame computers for your insecurity

    4. Profit

    5. Get hardware vendors to make changes to compensate for YOUR buggy software

    6. Profit

    7. Prevent any software except yours from running securely

    8. Profit (by others demise)

    9. Take away everyones choice.
    10 Profit

    11. Blame the computers some more, as you take away more freedom

    12. Profit. Profit. Profit.

    When there is a wolf guarding the hen hose, why on earth would I need the shotgun named Linux?

  5. Useful services, devil is in the details by astrashe · · Score: 5, Interesting

    I was as afraid of palladium as the next guy before the details started to come out, but I think we ought to try to avoid the knee jerk reaction and think this stuff through more carefully.

    A lot of people are opposed to any scheme that can be used to thwart piracy. But in my view that's an extreme and unreasonable position, even when fair use issues are taken into account.

    For a long time it's seemed to me that the thing we ought to be working towards is an open system of distribution, one that can't be dominated by large media concerns, something that gives a guy who makes music at home the same sort of access to the market as the big record labels.

    To me, the issue is not whether or not my computer is capable of running some sort of protected DRM system -- the issue is whether or not it's capable of running alternative systems, if the existence of a palladium aware media player will break my mp3, ogg, and divx players, or my entire open source operating system. As I read these proposals, that's not the case, they won't break things.

    Microsoft has said explicitly that one of the key design goals of palladium was that it shouldn't break existing software.

    In my view, these sorts of services are useful, and we ought to be talking more about "how" then "if" they are implemented.

    In particular, we ought to be sure that software that will run under linux can provide the same sorts of services as a palladium enabled version of windows. I know that the applications themselves couldn't be truly open source (or at least you'd have to use a signed snapshot of an application that was developed using open source methodologies). But I don't think that's enough of a reason to pull back from this stuff.

    There are useful applications for this stuff.

    About a decade ago, one of the hot topics among crypto types was digicash -- cryptographic protocols invented by a guy named Chaum that try to mimic cash, especially its anonymity and security.

    One of the big problems was how to make microtransactions work when you're disconnected from the net. Imagine two palm os devices doing a transaction over infrared. Chaum's answer was to use tamper proof chips.

    Sure, on some level nothing is tamper proof, but it ought to be possible to make tampering difficult enough, expensive enough, and to cap the size of the transactions possible and the rate at which they can be made, in a way that would give people reasonable security. The NSA could hack the micropayment system, but they'd have to spend a million bucks, and all they could get back would be $50, or something like that.

    It seems to me that this kind of hardware could be seen as a more flexible kind of tamper proof chip.

    I think the goal should be that whatever hardware comes out should work with arbitrary operating systems. The trust chain should be decentralized.

    In other words, if I develop an electronic music distribution system, I should be able to develop apps for whatever OSs I choose to support, and I should be able to make my system recognize whatever signatures I feel are trusthworsthy. It ought to be possible for *anyone* to develop such a system, and to use the hooks into the hardware.

    The thing that worries me is that if all we say is "no, palladium is the devil" we won't have any voice in this stuff.

  6. Its a damn good thing .... by bizitch · · Score: 5, Funny

    for Intel and M$ that nobody has claimed the intelectual property rights on idiocy (yet).

    --
    ---- "Logoff! That cookie shit makes me nervous!" - A. Soprano