Microsoft To Demo 'Palladium' At WinHEC

1010011010 writes "According to Microsoft Watch, Microsoft will be demonstrating Palladium (also known as 'Next-Generation Secure Computing Base') at WinHEC in May in New Orleans. The 'trusted root' is now called the 'Nexus' by Microsoft. Developers wishing to write 'Nexus-aware' applications will apparently have to pay a licensing fee to do so. The product manager for Palladium, Mario Juarez, says, 'It's important to note that nexus-aware applications will not hinder any apps or anything else running in the regular Windows environment.' I'm sure you can all hear the word 'yet' at the end of that sentence. There's talk of phasing in Palladium, starting with Longhorn Server in 2005. I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take. I, for one, am already planning to transition my company away from Microsoft software. Hopefully that won't get messed up by and dumb mandatory-palladium legislation from the Fritz types."

Did somebody say warez?

[shogun]

Let me be the first to point out the irony of someone called Juarez being in charge of an anti-piracy system.

Re:Did somebody say warez?

[r0de]

LOL

Re:Did somebody say warez?

[Gortbusters.org]

Sorry, you'll have to pay a license fee to point that out.

Re:Did somebody say warez?

[0x1337]

Its a fucking joke you idiot... why don't you go bitch about it to someone else.

Re:Did somebody say warez?

[BluRBD!E]

Erm...actually juarez is an adaptation used by the "elite" to make fun of ignorant new commers to the warez scene. For example, say I'm "elite" and sitting in a main distribution irc channel and some newbie comes in saying "HEY GUYS! GOT ANY WAREZ!?!?!?!" I may respond with "NAH WE AINT GOT ANY JUAREZ!!!!!!" Or at least something to that effect.

Re:Did somebody say warez?

[Jezral]

It's the only way we can be sure it'll work.

Just like they hire hackers/crackers for network security. ...it takes one to know one...

-- Tino Didriksen / ProjectJJ.dk

Big Brother is Watching.....

Y'know.....seems that Microsoft wants more and more of your information every day. Makes me glad that I don't have to deal with them very much...I don't have anything to hide, but really....it's just tacky.

Re:Big Brother is Watching.....

[vvikram]

I dont have anything to hide....

except probably your username?:)

Re:Big Brother is Watching.....

Right?! Don't have anything to hide. That line always gets me! You have a lot to hide: personal and financal information, passwords, usernames,.....

Ya, lot of people will say that info is out there anyway, nothing you can do. Wrong, you can make it as difficult for the bad guys to get as possible. You won't see a defeatist attitude when it comes to private/personal information when it comes to me protecting my 'stuff'.

P.S. I know you didn't mean it that way, just seems that some people give in to easy to giving away personal info.

Microsoft To Demo 'Palladium' At WinHEC??

[ahkbarr]

What a coincidence. I'm in WinHell!

All our bugs are belong to you!

Re:Microsoft To Demo 'Palladium' At WinHEC??

This reminds me of the time MS decided to demo Win98... I think the conversation went something like:

demo guy: Well, Bill. You just hook up the scanner and Windows will automatically find and install the drivers for it.

Bill: That's great!

demo guy: Yes. It is one of the great features of Windo- Oh, boy. That's not supposed to happen.

*BSOD appears on a 3 story screen*

*audience laughs*

*/me shudders after thoughts of the future run through my head*

I can see it now...

demo guy: You plug in your printer and WindowsPA automagically detects it and installs the printer drivers.

Bill: That's great!

demo guy: Yes. It is one of the great features of Win- Oh, boy. That's not supposed to happen...

*BSOD fills 3 story screen*

BSOD: All you data are belong to Microsoft.

*Audience laughs*

*/me laughs becasue /me is using Gentoo Linux!*

Re:Microsoft To Demo 'Palladium' At WinHEC??

[Zakabog]

Sad thing is, they laugh because BSOD's happen all the time. If they never happened they would look at the BSOD thinking "What's that? Never saw that before." but instead they laugh thinking "Hah I get like 3 of those a day it's so funny." Why do people think it's normal for a computer to crash every day? Then they go out and spend like $1,000 at best buy upgrading 2 things because their 1.5 ghz computer is too slow (which explains the crashing, of course...) and they needed a 3 GHz P4. And when that fails to fix any problems I get a phone call at around 9AM asking me to fix the computer :-/

Re:Microsoft To Demo 'Palladium' At WinHEC??

[Gajon]

Hey!!! I have this video here on my hard drive.. it is 1.63 mb, if anyone of you want it, email me at gajon(AAATTTT)unixmexico(doooottt)org and I'll send it to ya..

No one can tell you what the Nexus is

[burgburgburg]

You have to experience it for yourself.

Oh, and it does the opposite of setting you free.

Re:No one can tell you what the Nexus is

[hype7]

You have to experience it for yourself.

Oh, and it does the opposite of setting you free.

Here come the squiddies

That's what jumped to my mind, anyway :)

-- james

Re:No one can tell you what the Nexus is

[Khakionion]

Hmm...Thoughts come to mind of the Nexus from Star Trek: Generations...

Brainwashed Luser: "No, take me back, take me back to the Nexus!"

Re:No one can tell you what the Nexus is

[Gortbusters.org]

No no no, the nexus is happiness - if happiness was like a blanket that you could roll yourself up into. Time has no meaning in the nexus and you can do whatever you want.

Re:No one can tell you what the Nexus is

[Poeir]

If I didn't say this, someone else would.

Morpheus: I know exactly what you mean. Let me tell you why you're here. You're here because you know something. What you know you can't explain. But you feel it. You've felt it your entire life. That there's something wrong with the world. You don't know what it is, but it's there, like a splinter in your mind driving you mad. It is this feeling that has brought you to me. Do you know what I'm talking about?

Neo: The Nexus?

Morpheus: Do you want to know what IT is? The Nexus is everywhere. It is all around us, even now in this very room. You can see it when you look out your window or when you turn on your television. You can feel it when you go to work, when you go to church, when you pay your taxes. It is the world that has been pulled over your eyes to blind you from the truth.

Neo: What truth?

Morpheus: That you are a slave, Neo. Like everyone else you were born into bondage, born into a prison that you cannot smell or taste or touch. A prison for your mind. Unfortunately, no one can be told what the Nexus. is. You have to see it for yourself. This is your last chance.

Re:No one can tell you what the Nexus is

[scrod]

No one can tell you what the Nexus is

Well, I know Malcolm McDowell can.

Re:No one can tell you what the Nexus is

[Kpt+Kill]

well... happiness for the major corporations anyway

Re:No one can tell you what the Nexus is

[kfx]

the nexus is happiness - if happiness was like a blanket

A very thick, very wet blanket... And uncle Bill will tuck you in with plenty of cozy cinderblocks to hold it down...

Re:No one can tell you what the Nexus is

[DShard]

This blatent disregard of Paramounts copyrights is exactly why everyone NEEDS microsoft to fix computers from enabling us to abuse material, such as the screenplay quoted here. You obviously did not give a second thought of how that careless quoting used to illustrate your point actually dilutes the owners product (ie the screenplay, movie, soundtrack, Jean-luc action figures, your personal DVD collection, LCARS, Whoopie Goldberg, use of the term "Engage", things that have to do with space, bad scripts, and any reference to "Q" including and not limited to "Quit this listing of dribble")

Further, I hereby copyright this and all derivitive posts, and sanction the Nexus to come and save my interests because my business model is one that disenfranchises me from my customer. My intention is to get everyone who uses my product to hate me because I use the term customer and thief interchangably. Your viewing of this material and not having nexus on your system proves that final point.

Re:No one can tell you what the Nexus is

[jkabbe]

No, happiness was leaving the theatre knowing I would never have to see that movie again and that large amounts of alcohol would erase the memory of the experience. Thank you so very much for ruining my happiness.

How to convince people loss of control is good

[speedfreak_5]

"I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take."

Tell them if they don't they'll be supporting terrorism.

Re:How to convince people loss of control is good

[gmuslera]

Microsoft knows it better. After all, the actual problems are with users executing viruses and trojans, so giving control to Microsoft will keep users safe.

Re:How to convince people loss of control is good

Yesterday I gave up drugs because it supports terrorism. Tomorrow I'm going to switch to Microsoft platforms. But still, no one has told me where I want to go today.

Re:How to convince people loss of control is good

Shopkeeper: Take this computer, but beware: Windows carries a terrible curse.

Customer: Ooooh, that's bad.

Shopkeeper: But it comes with a free Media Player!

Customer: That's good!

Shopkeeper: The Media Player is also cursed.

Customer: That's bad.

Shopkeeper: But you get your choice of a free downloadable movie!

Customer: That's good!

Shopkeeper: The movies contain Digital Rights Management technology.

Customer: [stares]

Shopkeeper: That's bad.

Customer: Can I go now?

Re:How to convince people loss of control is good

Actually most virii and trojans wouldn't happen if Microsoft didn't implemented VBScript and many other "technologies" the way that they did.

Re:How to convince people loss of control is good

[tsa]

Simple. They tell them it's better than the rambling old good-for-nothing software they are using now. Works all the time.

Re:How to convince people loss of control is good

[1u3hr]

By changing the hardware spec so that nothing else will work.

Re:How to convince people loss of control is good

shuddup you commie pig!

Re:How to convince people loss of control is good

hahaha.. fucking brilliant...

Re:How to convince people loss of control is good

[jkabbe]

It doesn't need to. All Microsoft needs to do is convince corporations that loss of control is good (which is what they have been trying to do). Once this is firmly entrenched in corporations any user who wants to work on a file at home will need the same OS and programs to do so.

Re:How to convince people loss of control is good

[ReelOddeeo]

"I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take."

Since when does Microsoft have to convince anyone of anything?

Joe Fourpack will just buy his Dell with Palladium preinstalled. No convincing required.

The price is right. It's secure, right? It's from Microsoft, so it must be high quality? It's got shiny graphics, so it must be high quality?

Re:How to convince people loss of control is good

Customer: Can I go now?

Microsoft: No. Sorry, all your Shopkeeper, IT, and *you* are now belong to us.

Re:How to convince people loss of control is good

[chrisseaton]

So they'll have to convince Dell then - how are they going to do that?

Re:How to convince people loss of control is good

[ReelOddeeo]

If Dell wants to sell the latest Windows requiring Palladium, then they'll have to sell hardware which supports it. Just as is the case presently. Dell has to support hardware that supports, say, Windows XP.

If Dell doesn't, then they are at a competitive disadvantage.

Microsoft can run a $40 million ad campaign convincing Joe Fourpack that he needs Windows 2005 (or whatever it is called) because of all the benefits, including security and trust.

If the Joe Fourpacks of the world are now asking for this at their local Worst Buy or from Dell, then whoever doesn't give the customer what he (thinks he) wants is at a competitive disadvantage.

This argument seems very simple to me. Does this answer your question adequately?

Re:How to convince people loss of control is good

Chinese guy: "Take this monkey's paw but beware, it carries a terrible curse."

Homer: "That's bad."

Chinese guy: "But it comes with a free frogurt!"

Homer: "That's good!"

Chinese guy: "The frogurt is also cursed."

Homer: "That's bad."

Chinese guy: "But you get your choice of toppings!"

Homer: "That's good!"

Chinese guy: "The toppings contain potassium benzoate"

Homer: [stares]

Chinese guy: "That's bad"

Homer: "Can I go now?"

Re:How to convince people loss of control is good

[WNight]

It's not like people are going to start digitally signing buffer overflow exploits. Windows will still run them, and things like CodeRed will continue to work. Most of the bugs we see these days are exploits of poorly written code, not viruses. As in, the user doesn't have to click on anything.

Palladium will be useless as long as you can trick properly signed software into doing what you want. (Which just means, until Microsoft comes up with a secure OS and has a decent record on fixing new-found exploits....)

Re:How to convince people loss of control is good

[smallpaul]

Microsoft will tell corporate users that locked down desktops (locked down at the CPU level) are the solution to viruses, P2P music trading and other evils.

Another Microsoft Moment

[Taliesan999]

After having bought MS Visual Studio C# .Net, not realising that the "Standard" version doesn't play with non MS databases, I can't wait for the day when my OS/Computer refuses to let me use MySQL via ODBC because the drivers aren't signed/Palladium compatiable. I'll be so happy to be secure and safe from subversive and dangerous open source technolgies.

Re:Another Microsoft Moment

[drizuid]

That's a good point, my college gave copies of vistual studio .NET pro to compsci students free (MSDNAA) So I wasn't aware of that problem. For the price you have to pay for either standard or pro, you figure it would at least work as you expect it to.

Re:Another Microsoft Moment

[tshak]

.NET plays with any database just fine via Native drivers, OLE/DB, or ODBC. AFAIK the issue is that VS.NET doesn't fully support non MSSQL DB's within it's Server Explorer - a feature that I have never found too useful anyway.

Re:Another Microsoft Moment

[torre]

After having bought MS Visual Studio C# .Net, not realising that the "Standard" version doesn't play with non MS databases, I can't wait for the day when my OS/Computer refuses to let me use MySQL via ODBC because the drivers aren't signed/Palladium compatiable. I'll be so happy to be secure and safe from subversive and dangerous open source technolgies.

Uh... No. VS.Net only ships with Microsoft data drivers, but there is nothing stopping you from installing mySql server Oracle and any other database that has an ODBC driver (and there's a lot of them so i'm not going to link them all in here!).

Re:Another Microsoft Moment

http://msdn.microsoft.com/downloads contains a link to the ODBC .NET Data Provider.

Re:Another Microsoft Moment

[Taliesan999]

Actually there is, while ycan use an ODBC driver with C# at a programmatic level, the IDE happily tells you that only Access and SQL Server are supported when you attempt to use the IDE's tools to access the datasource, link it with controls etc. This is Visual Studio .Net Standard btw.

Re:Another Microsoft Moment

So your understanding of VS.NET is basically...

"oh mamma! It don't come with my favourite dbms right outta the box!". ...fucking idiot!

damn

[lingqi]

One day I will boot up WinPalidumb and a ghostly image of Whoppie Goldberg will lure me to this place of pure happiness.

Of course, being cool as I am I will realize that it's all fake and as harsh as real life^H^Hnux is, that's where we belong...

And I will bring back William Shatner; possibly saving (enter)price(line)?

*ducks*

Re:damn

That's funny, Pat, because it's true.

Unsure

[drizuid]

I think right now, they are so unsure of where they are going with this that the show really doesn't matter. Since the testing began, i've seen rumors of home versions and the like. The final product will most likely dramatically change from what is shown at the show.

Re:Unsure

[scott1853]

Let me give you the rundown on the demo.

1.) Attach scanner
2.) Wait for BSOD
3.) Convince everyone that's what its suppose to do now because Windows was able to detect it was an evil scanner sent to cause you enormous grief by not being WHQL certified.

Re:Unsure

The only rational post so far, and it doesn't have decent moderation. Of course, this is slashdot, and the post could be construed as somewhat pro-ms.

Microsoft To Demo 'Palladium' At WinHEC

Who will use that $$oftware anyway?

The fees!

[alpharoid]

I don't like the part about the fees. Palladium does seem to have one strong point in making its applications hard to exploit (even the badly-written ones).

So won't this hurt Linux and Open Source software in general? High fees would keep Microsoft's good competitors (Apache, for instance) away from Palladium, and then we'd have all the unbearable boasting about how IIS is more secure.

That would be a cheap trick... but one to expect.

Re:The fees!

[Gortbusters.org]

If anything, I think the fees would drive more people to develop their software on free platforms.

If you sell a hardware platform with your application, then the cost of the operating system is in your cost of goods and services for producing your app. I think this is one of the major arguments of Linux + Java. Though my disclaimer is that I'm not a product manager ;)

Re:The fees!

[NewbieProgrammerMan]

If anything, I think the fees would drive more people to develop their software on free platforms.

Damn straight. The only reason I haven't dropped Win2k on my main desktop in favor of Linux is that I still develop some software that only runs on Win32 (and I don't feel like being hassled with WINE). It looks to me like Microsoft is going to try and latch onto my wallet just for developing software for their platform, so the incentive to drop all my Windows-specific work is getting pretty significant.

Re:The fees!

[SiliconEntity]

Where does the article say anything about fees? That seems to be something the poster just made up on his own. I don't see anything in there about developers having to pay license fees to use Palladium. Do you?

Re:The fees!

[Billly+Gates]

But your arguements are rational and make sense.

Bussineses unfortunately like the idea of drm and anti-piracy.

I can see it now.

If they only write their programs for Windows they can lay off the mac version team and get rid of piracy all together! They can kill 2 birds with 1 stone. Adobe is even looking at canceling their mac versionsn to cut costs. Lets join palladium! The fee will pay for itself.

Sigh.

Palladium was designed for Microsoft and software publishers. Not consumers and the core market will probably eat this up.

Re:The fees!

[Jezral]

"If you sell a hardware platform with your application"

Isn't this exactly what Apple is doing?

MacOS only runs on Apple hardware (yes yes, I know you can fake it), which can kept it pretty low compared to Windows which works on any x86 platform.

Now Windows will be locked to hardware as well...

Is MS pulling another Apple out their sleeves?

-- Tino Didriksen / ProjectJJ.dk

Re:The fees!

From the article:

"Anyone will be able to build a nexus to work on NGSCB hardware," Juarez continues. "There will be some licensing issues involved."

Re:The fees!

[motorhead]

Q: Is MS pulling another Apple out their sleeves?

A: That's not a sleeve.

Re:The fees!

[trigeek]

You guys still don't get it! Microsoft no longer cares about developers! Most of the users out there don't use anything but Microsoft products. The users want an easy experience, and Microsoft (sort-of) provides that. It doesn't matter to Microsoft (or most of the users) how many developers defect to Open Source. Microsoft used to care about developers, but those days are over. If Microsoft wants an app written for Windows, it writes it.

Re:The fees!

[milkman_matt]

Adobe is even looking at canceling their mac versionsn to cut costs.

That was just a story on a 3GHz P4 outperforming a dual 1.25GHz G4 on a benchmark.. I don't think they're going to drop their Mac line based on one test..

-matt

Phasing in...

[Gortbusters.org]

starting in 2005? What are they going to be demoing exactly other than initial prototypes with some possible smoke and mirrors.

Didn't they bring out the 2003 server because of the longhorn delay?

Nexus?!

[C0LDFusion]

And when Nexus gets to version 6, will it be physically and emotionally indistinguishable from a human being? Will we have to hire Blade Runners to keep Tyrell Corpo...I mean, Microsoft's crazed creations off earth?

Nexus v.6: I want more life, fucker.
Bill Gates: Sorry. Planned obsolescence is a bitch.

Re:Nexus?!

[Gortbusters.org]

The nexus is separate from all time and space, it's like happiness, if happiness were a blanket and you could roll yourself up into it.

At least that's what Soren wanted in Generations. Or *cough* at least that's what I've heard from people who've watched the movie. *tip toe*..

Re:Nexus?!

Yes but the image of Roy doing Bill in made my whole evening.

Re:Nexus?!

He Said: I want more life, FATHER.

This was back when you could make good movies without long strings of profanities.

Re:Nexus?!

[MrNemesis]

Chew: You... Nexus 6...? I... I built your buffers!

Roy: Chew... if only you could have overflowed what I have overflowed with your buffers...

Re:Nexus?!

[C0LDFusion]

Check the book "Future Noir" the original screenplay and all versions of the script in which the scene was written with the word "Fucker". If you watch the lips, he even mouths it. However, in the US version (even the directors cut, which is anything but), the redub has stuck.

Before correcting, do some checking.

Re:Nexus?!

[C0LDFusion]

More like:

Chew: "You Nexus, huh? I make your code."

Roy: "Chew...if only you could see what I've seen with your spyware."

Security

[Axel2001]

While the idea of the technology isn't really all that bad, I question the intent of Microsoft in creating Palladium. If the technology is adapted in its "pure" form, Microsoft will be able to determine what you can and cannot do on your own personal computer - and they will make consumers pay for this "technology." It would be like adding the extra "feature" to an automobile that you can drive only to certain places - and charging more for this "technology." Where can you go today?

Re:Security

[enomar]

Working with your analogy, I guess the theory is to provide a car that can't be driven on dangerous bridges. This is surely a good thing, but like you say, MS should not be the one deciding what bridges are bad, especially when they require a fee to evaluate your bridge.

Couldn't the decision be based on a non-biased group or even a public voting system? What is stopping the OSS community from writing their own version of paladium? I guess there might be some hardware issues to iron out, but I'm no expert...

Re:Security

[ftobin]

Where can you go today?

Freedom is slavery.

Re:Security

[1010011010]

It's more like the Microsoft Metro -- you can go only to pre-determined, approved destinations, because the computer is running on rails through a tunnel. Only the elite can have cars, bicycles, or roller skates. Well, the elite, and terrorists such as Linus Torvalds.

Re:Security

[Tony-A]

Can't be driven out of unapproved driveways.
You're stuck.

Re:Security

[Hanji]

War is peace. Ignorance is strength.

Re:Security

Linux is good.

Paladium

[Shazzman]

I believe I can fly... I believe I can touch the skyyyy

Re:BUSH! NO! PEACE! YES!

[LibertineR]

Shut up ya fuckin hippie. Stay on topic or get the fuck out.

Assuming . . .

[jhylkema]

The demo doesn't BSOD like 98 did.

people love "security"... a bit too much...

[gasgesgos]

I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take


The government's already convinced people that loss of control in the name of "fighting evil" is wonderful, and that it should be accepted openly.

Hopefully people don't follow suit with Palladium, or pretty soon, the government will see that regulation of a person's own computer can be done easily and effectively.

solution: we all start using Linux (or in some cases, use Linux more) and move to Canada (or in some cases, stay there)





note: entire solution does not apply outside of US or Canada, your mileage may vary, see dealer for details, sweepstakes ends 11/05/72. Linux portion of solution applies to all humans, again, see dealer for details.

Re:people love "security"... a bit too much...

[unisol54]

Can-Linux ? neone ? :p

Re:people love "security"... a bit too much...

solution: we all start using Linux (or in some cases, use Linux more) and move to Canada (or in some cases, stay there)

Why Canada? The USA will just impose economic sanctions until Canada deals with "those nasty pirates".

Face it, until the USA is no longer an economic bully, laws all over the world will follow their lead.

Re:people love "security"... a bit too much...

[ShwAsasin]

If the US put sanctions on Canada, they could retaliate by stopping the flow of resources (wood, fresh water, energy, oil, minerals) to the US.

In Microsoft Russia

[SHEENmaster]

Longhorn knows all your secrets.

There has to be major anti-trust entanglements with Palladium. How the HELL did they trick the DoJ into believing Palladium is anything but a megalomaniacle attempt to control the software industry. Does the DoJ have to wait until after M$ seizes control before intervening?

Re:In Microsoft Russia

[bizitch]

Ummm - so you feel that the government is some kind of inteligent entity which can somehow discern these sorts of things - yes?

Oh - and that government is typically proactive instead of reactive...

Re:In Microsoft Russia

[InadequateCamel]

"How the HELL did they trick the DoJ into believing Palladium is anything but a megalomaniacle"

Kind of related to the earlier post about mispronunciation of Juarez, I read "Palladium is a Mega Monocle" and thought that maybe MS is taking this whole snooping and spying on their customers a little too seriously...:-)

2005

[Unregistered]

That gives us about 2 yrs to get linux ready to take over. Can we? Because if not, it will be vary bad. This is our chance. Once people are tied into palladium, they're stuck.

Re:2005

[no+reason+to+be+here]

linux is ready...for servers.

for desktops, we should try to get this ready by 2005.

Re:2005

[DoraLives]

Once people are tied into palladium, they're stuck.

Disagree. Tying into Malarkium(tm) is EXACTLY what will be required to, for once and for all, get people to drop MS like the bad habit it is. Once they feel the tendrils entwining every last fiber of their computers, it won't be long at all before the hatchets come out and the serious hewing begins.

MS is fixing to just HAND IT OVER to Linux on a Silver Platter, and they have no idea what they're doing. Serves 'em right, too.

Re:2005

WE!!?

You make it sound like more than 0.001% of /. readers have actually contributed more than hot air to the OSS movement.

Re:2005

[IamTheRealMike]

That gives us about 2 yrs to get linux ready to take over. Can we?

If by take over, you mean the corporate desktop, then probably. If you mean all computers everywhere, then probably not.

Because if not, it will be vary bad. This is our chance. Once people are tied into palladium, they're stuck.

But that's OK, because I don't understand how people get "tied" into Palladium. It provides hardware-backed authentication and code signing, I thought. I haven't seen any hard theories as to why this would be a bad thing yet, apart from the interesting post above about how licensing fees could be used to seal off open source software, so giving proprietary software the security advantage.

Anyway, people are already tied to Windows, Intel, Office, god knows how much else. It's not like there isn't already huge amounts of work to do.

Re:2005

The trick is that most media on net will need microsofts software layer, that tie the whole computer together.
This is not possible on Linux, and if Linux doesn't have enough marketshare movie companies and the like, will use Palladium.
So the next 2 years, will be the most exciting for Free software- because it will determine the next 10-20-?? years.

Re:2005

[RoLi]

In worst-case, Windows-Palladium apps don't run on Linux, which means pretty much the status quo (if you ignore Wine) so nothing really changes.

So, I don't see Palladium hindering Linux acceptance.

On the other hand, nobody likes Palladium, especially Windows pirates (= 90% of Windows users). If Joe Average won't be able to play his mp3s, he will install Linux, no questions asked.

If you ask me, Palladium is the best thing that can happen to Linux acceptance.

Re:2005

>>Once they feel the tendrils entwining every last fiber of their computers, it won't be long at all before the hatchets come out and the serious hewing begins

Do you have any idea of how pathetic that sounds?

Get real!

Re:2005

Mod this up for fuck's sakes!

Most /.ers don't really give a flying fuck for OSS and have better things to do with their time.

Re:2005

I've found and reported plenty of bugs.. that's my contribution.

And any software I write at home is GPLed.. but it's nothing that'll get much use (at least nothing I've done yet), so I don't know if I'm really contributing in that respect.

Re:2005

[zootread]

Well, right now I am an x86 user, using Debian Linux as my primary OS, and Windows for miscellaneous stuff. But the way Apple and Mac OS X is going, I think I will be a Mac user in 2005.

I really see Linux taking over the business desktop. Though I see Windows continuing to have a hold on the home user, with their games, etc. Though, yes, things can change a lot in two years.

Surreal

[mao+che+minh]

It is surreal how easily Microsoft is able to employ such blatant and souless cash grabs without sounding off alarms in the business sector. Microsoft is free to employ monopoly induced moves into various markets, orchestrate forced upgrade procedures, raise prices while limiting support, and engineer horrible licensing schemes without any fear of fall out.

Now MS can candidly tell consumers how they intend on outright controlling all of your data and even charge developers for the "privilage" of being able to conform.

I just can't see how so many pointy-hairs can examine Microsoft and it's products and decide that it would a good idea to spend so much money on it. Microsoft sales people are truly adept at their trade.

Re:Surreal

[Dr.+Bent]

Microsoft sales people are truly adept at their trade.

That's exactly the point. Microsoft is a company based on marketing, not engineering. That's why they almost always hire new college grads as programmers...anyone with any actual development experience would see right through all the marketing hype and realize how much thier products suck.

Actually, I would argue that Sun has the exact opposite problem. Love it or hate it, Java has made a huge impact on the software industry, but Sun has been thus far unable to greatly profit from it because they're all engineering and no marketing. If Sun recruited some of those evil, undead marketing gurus over at Microsoft, they could make a killing. If Microsoft hired some lab-rat engineers over at Sun (and actually gave them some resources), they might actually be able to deliver on 1/10 of the shit they promise....

Re:Surreal

[salesgeek]

It is surreal how easily Microsoft is able to employ such blatant and souless cash grabs without sounding off alarms in the business sector.

I'm wondering if this will be the case as more and more companies are faced with having to lay people off to buy software. Somehow I think that IT managers, especially in small firms will turn away from MS and look to Linux - if for no reason than personal job protection. Last I looked MCSEs were going for about $15/hour in the local market and Linux/Unix Admins were making substantially more.

Re:Surreal

[patter]

Maybe, look at it like this:

Let's say 80% of the computers used in business run Windows.

They all have not only and Office solution (that can readily be replaced), but an information management system(s) of some sort. It was developed for Windows, the companies that made the system have no Linux expertise (even though as in our case, many of the engineers use it on our own, most haven't built a multi-million dollar information system on it).

How easy is it for these people to switch?

The information system cost 20 million dollars to acquire. Windows license replacements cost say 1 million dollars per year. How long do you think the same management types that didn't believe us in the 70's when we said that the time to deal with Y2K was soon, will try to keep running Windows based systems to avoid spending another 20 million to develop a new information system in a depressed economy? Over 18 years, they're still ahead.. ;).

Open source isn't going to help here, someone making a living a big someone like IBM is now doing developing competing solutions is. That and convincing people to pay millions of dollars for software that has the source code freely downloadable on the Internet..

Really, there is still no alternative to Windows in these folks minds. Now if all us Linux savvy developers can get together and start marketing REAL business software (not browsers or office suites important though they are) that competes with and is superior in price and the obvious stability benefits.. maybe then will we see corporations be in a position to switch.

Personally, I believe the way to go is to develop competing solutions that use platform independent GUIs or thin clients and allow us to compete firstly on Windows, then on any other useful platform. Sadly I still think the GPL will keep this from being financially viable for many years to come (with people opting not to heavily invest in things that can be had for free).

Sigh.

Re:Surreal

[Surak]

Somehow I think that IT managers, especially in small firms will turn away from MS and look to Linux - if for no reason than personal job protection.

As much as I would love it if that were true, somehow I doubt it. I personally am beginning to think that M$ is so entrenched into companies that they'll literally do *anything* M$ says. :(

Re:Surreal

[Rinikusu]

ANd that's the exact reason why it's allowed, especially in a "free" market. Eventually, their "cash-grabbing" tactics will result in the loss of their customer base, costing them revenue hand-over-fist. See "linux migration". I *welcome* these actions as it finally causes complacent managers and bean counters to examine their business and decide, on a non-legislated level, that MS is a bad deal. The "anti-trust" case against MS didn't do *jack* to MS. Their own actions are burying them into the realm of obscurity. God bless the free market.

why doesn't everyone....

[UniverseIsADoughnut]

... Just sit back and wait and see what MS does. If you just take it for what it says now there isn't much of anything to go nuts over. Yes maybe something will come up that makes it Evil, though with something like this what one considers evil others consider good. If It turns out to be just as MS says it is going to be, what do you have to fear? You don't like the paying? sure that might not be so great, but then again this is most likely going to apply to major windows apps. You know the kind written by companies that people go out and buy. So adding a few cents to the price won't matter to anyone. I don't think anyone is going to go and pay to have there Hello World app 'Next-Generation Secure Computing Base' certified.

If your afraid of how it works or don't like it don't use it, don't use windows. With just what MS has said most all of what people go on about has no bases and is just stuff from tin foil hat people. Yes MS has done bad things. Maybe they will with this. But give them a chance with it, let them screw up before you chastise them.

Re:why doesn't everyone....

[mao+che+minh]

Why doesn't everyone just sit back and wait and see what MS does?

Because we already know what Microsoft will do: employ whatever tactics neccassary to insure their continued monopoly status and success - even if it means eliminating the private ownership of data as we know it. The rabid MS bashing going on isn't a sign of premature paranoia, rather, it is the natural reaction of those that have studied the company's history.

Re:why doesn't everyone....

[ATMAvatar]

But give them a chance with it, let them screw up before you chastise them.

Given one of the features in Palladium is supposed to allow for remote deletion of files by Microsoft, I'll have to decline giving them the chance to screw up. I see 2 major problems with this:

1. I don't trust Microsoft with this power. Should I run software Microsoft doesn't like, what's to stop it from deleting the software?

2. With Microsoft's famous security in software, coupled with this new feature, how long do you think it will take for a person to crack into a Microsoft server and issue commands to thousands of computers to delete files? Palladium may be designed to only run trusted programs to issue these commands, but I can't imagine gaining trusted access being much more difficult than grabbing administrater or root privledges on a machine.

Sure, you could set up your firewall to block the remote deletion commands, if you know what port it's using. I have philosophical issues with using firewalls to protect myself from the programs running on my computer, as opposed to protecting myself from outside threats, though. I'd much prefer not putting Palladium on my system. The risk is much too great, especially if I were to screw up configuring things to block this "feature"(and I'm hardly a good sysadmin).

Re:why doesn't everyone....

Because it's un-American. Preemption is the order of the day. Apply your post to the situation in Iraq.

Re:why doesn't everyone....

[drsmithy]

I don't trust Microsoft with this power. Should I run software Microsoft doesn't like, what's to stop it from deleting the software?

I really have to laugh out of sheer pity when I read stuff like this. What on Earth makes you think Microsoft would care enough about you to delete things of your machine ? More importantly, what makes you think they'd take the risk of being sued for deleting the wrong thing ? It really is the epitomy of paranoid ramblings.

Your second point, OTOH, is quite valid and reason in itself to avoid any piece of software that allows remote entities control over your machine. Even more worrying would be agreements with the US government - either openly or under-the-table - to allow them selective access to certain machines.

Palladium may be designed to only run trusted programs to issue these commands, but I can't imagine gaining trusted access being much more difficult than grabbing administrater or root privledges on a machine.

You haven't got much of an imagination then. Think multiple, simultaneous authorizations required by public/private keypairs kept on USB keychains in geographically separated safes that only a few people know the combinations of. And that's just something that occurred to me immediately - I'm sure someone with a real imagination could come up with some much more elaborate.

Re:why doesn't everyone....

[ATMAvatar]

What on Earth makes you think Microsoft would care enough about you to delete things of your machine ? More importantly, what makes you think they'd take the risk of being sued for deleting the wrong thing ?

My first point was actually much less of a concern to me. I probably should have noted its minor consideration. However, it's worth discussing anyways.

Depending on how the system is set up, it could be a relatively simple task to enter a particular file into a database and send mass-messages to systems to find and delete the file (blacklisting). This would require zero consideration on Microsoft's part whether or not you *personally* have the file.

I was under the impression that this feature was geared more towards integration with DRM controls, though, ultimately for the purpose of deleting pirated software/mp3s by checking for a digital signature and deleting files lacking them.

Note that lacking a digital signature would not necessitate the fact that a file is pirated. I doubt my brother would bother digitally signing mp3s from his (relatively small time)band. Older archived files of mine wouldn't be signed. Backing up to CD is nice, but I also like to have files handy on my drive.

As far as legal concerns go, Microsoft would probably have some disclaimer that would eliminate most of their liability. Also realize that there's a damage threshold before you can do anything - the damages need to be above $5k. The only *real* problem that would arise would be for the system to delete critical files on a corporate system. Even then, though... how many people would attribute the deletion to anything other than a cracker getting past security?

Even more worrying would be agreements with the US government - either openly or under-the-table - to allow them selective access to certain machines.

Oh, I doubt it would be selective at all. Eventually, the government would chisel out a deal where it gets unrestricted access to any machine(running Palladium, of course) it chooses.

You haven't got much of an imagination then. Think multiple, simultaneous authorizations required by public/private keypairs kept on USB keychains in geographically separated safes that only a few people know the combinations of. And that's just something that occurred to me immediately - I'm sure someone with a real imagination could come up with some much more elaborate.

Step back for a second and remember what company we're talking about ;)

Re:why doesn't everyone....

Yes MS has done bad things. Maybe they will with this. But give them a chance with it, let them screw up before you chastise them.

What I'm afraind of is that they *won't screw it up... from their point of view. In which case the computer buying public will have driven off the cliff and we will be deciding whether we like the view on the way down.

Re:why doesn't everyone....

[Dog+and+Pony]

I have philosophical issues with using firewalls to protect myself from the programs running on my computer, as opposed to protecting myself from outside threats, though.

And what, sir, is the difference? I've never heard of an outside threat that doesn't also include some software or the other on your computer, whether it be someone causing a buffer overflow in finger, or issuing delete commands via some weird microsoft built-in.

As for "philosophical issues"... everyone with a right mind or at least some experience *knows* that a good firewall will block *everything* you haven't said personally is OK, whether from outside *or* inside. I sure hope you are not one of those that blocks everything from the outside, and then let everything from the inside pass unchecked. That is a disaster just waiting to happen.

Re:why doesn't everyone....

Plus Billy's back door. And the NSA's back door. Etc. Intersting, too, that Microsoft is showing the windows source code to Russia and China. Wasn't it Russian hackers that got into their source control system a while back and inserted who-knows-what?

Re:why doesn't everyone....

You're forgetting something. Though you are probably right when you say MS has nothing to win by deleting my files (discussion-worthy material for some of us), but there are parties who DO have some gain by that.

Considering the fabulous record MS has in keeping it's software safe, it's not unimaginable that someone will be able to hack into the main trusted computing server. And if that's possible (and I am sure it will be), how dissastrous would blacklisting Windows itself be? Or Word? Or Linux? Why not? Considering this possible, DRM and Palladium do not make cyber-crime and / or cyber-terrorism HARDER, but it creates extra possibilities for cyber-criminals-to-be.

Apart from that, the fact that I won't be able anymore to play DRM files on the OS of my choice (which happens to be free) and the fact that I simply (as stated above by other) do NOT (NOT!) trust Microsoft, makes that I would seriously consider buying the meanest, badest computer in the world just before Paladium becomes a de-facto standard. And then keep that computer for the rest of my life.

Re:why doesn't everyone....

[Spoing]

As for "philosophical issues"... everyone with a right mind or at least some experience *knows* that a good firewall will block *everything* you haven't said personally is OK, whether from outside *or* inside. I sure hope you are not one of those that blocks everything from the outside, and then let everything from the inside pass unchecked. That is a disaster just waiting to happen.

While I generally agree, ATMAvatar had a point. To drive that home...

1. A firewall is NOT security.

If one port is open, or communication is initiated either direction over a port, you are implicitly trusting the software on your end to do the right thing and not be insecure itself . If you don't know what that software is doing you do not have security; you are hoping that the software you use isn't going to abuse your systems or allow others to do the same.

In this case, the software implicitly has full access and can make system changes. That's a big deal and looking at Microsoft's track record it is a level of trust that they have not earned.

Re:why doesn't everyone....

[ATMAvatar]

As for "philosophical issues"... everyone with a right mind or at least some experience *knows* that a good firewall will block *everything* you haven't said personally is OK, whether from outside *or* inside. I sure hope you are not one of those that blocks everything from the outside, and then let everything from the inside pass unchecked. That is a disaster just waiting to happen.

Let me put it another way... assuming you have a well-configured firewall, would you still knowingly install a program infected with a trojan?

Hmm

[ATMAvatar]

Developers wishing to write 'Nexus-aware' applications will apparently have to pay a licensing fee to do so.

And, I suppose it will only be a matter of time before Palladium dictates that only Nexus-aware programs will run. Nice business model.

About now...

Stuff like this makes me wonder about how the current group of Microsoft sympathisers on Slashdot can stand to post their nonsense. I won't name names, but they seem to be getting modded up to 5 often for just saying "how unfair all these anti-MS people are".

Well, tell me, how is Palladium good for us? Go on. You're always saying how silly people are for liking "freedom" (which you always put in quote marks).

So go on, go for it. I'm waiting.

Re:About now...

[JebusIsLord]

Okay, I'll bite. IN THEORY, that is in a perfect world, the idea of programs/documents needing authentication is a good idea. It would be great for administering desktops in an office environment for example. That is if I (as the admin) get to control the authentication server. IN PRACTICE, i see this as a move towards a closed development model (not as in closed-source, as in closed dev like consoles for instance where everyone needs to go through nintendo/sony/MS to publish software) where MS controls access. I could be wrong though, and the idea that we could finally stop idiot employees/customers etc from installing gator or emailing out confidential information by mistake is a nice one.

Re:About now...

[3141]

I agree with your fears, but even your best-case scenario sounds like a pain for perhaps 70% of computer users.

The risks far outweigh the benefits from a company that has shown itself repeatedly to be untrustworthy.

The comment about preventing employees installing software is misleading. NTFS and Unix permissions can prevent this (though it's tricky to get the balance on NTFS if people actually have to use the computer for more than a few specific tasks. I have been called out several times to fix people's new XP systems that will only run programs as the Administrator. Ironically enough, Microsoft games seem to be the worst offenders.

Regarding emailing out confidential information - that's a total red herring. If people have the ability to send email without physical human monitoring, the best you can have is a keyword search. Palladium would do nothing to prevent people leaking information, unless it was by preventing them installing an email client (which again is something that can be handled by permissions.)

Re:About now...

[JebusIsLord]

no, the idea is that documents will need authentication to be read, so if the document leaves the company it remains in encrypted form. This is a good thing in theory.

Re:About now...

Why not just password protect your documents?

Mandatory access control for all!

[QuantumG]

wow, this is the second post on Slashdot today where I'm mentioned mandatory access control. For those not in the know, consider a mainframe computer in a military installation. Clearly it makes no sense to go about classifying documents as "Restricted", "Secret" and "Top Secret" if the people with the clearance to read those documents have the discressional control to go and reclassify them at some lower level. The shared computer's operating system has the job of making sure only those who are authorized can access these documents.

Microsoft is taking the control out of users hands for just the same reason (and for anyone in denial, try to log in as "Administrator" on a WinXP machine). It wouldn't make sense for anyone to be able to bypass the mandatory access controls on a military mainframe, and if they can they have to be very very trusted.

I hear you out there! Screaming that your home computer isn't a shared, let alone military, machine. Well, here's a message for you: it's shared with all the people who write software for your computer. That's right, software has owners and when their software is on your computer they think they should have a say over how it is controlled. For better or worse, your choice to share your computer with the owners of this software is what is driving this effort.

Not that sharing is bad. It makes sense to share. You have the choice of who you share your computer with. I've chosen to share my computer with people who have similar views to me on what is a fair. These people write software that they license under so called "liberal" licenses -- the GPL and the BSD licenses for starters.

Re:Mandatory access control for all!

Yes, but I think I should have the right to determine the MAC (Mandatory Access Controls) for my own machine. If I cannot, then it is not really my machine now is it?

By the way, Linux has its own flavor of MACs in the form of reasonable policy management at the kernel level brewing with the LSM and SELinux (www.nsa.gov/selinux). Good stuff! And guess who determines the MACs for my machine. That's right! ME!!!

Re:Mandatory access control for all!

[ewhac]

Well, here's a message for you: [your computer is] shared with all the people who write software for your computer. That's right, software has owners and when their software is on your computer they think they should have a say over how it is controlled.

They are wrong.

My home is "shared" with a Nerf arrow launcher, a Sonicare toothbrush, a Panasonic TV set, and a Revere tea kettle (among other things). Neither Nerf, Sonicare, Panasonic, or Revere have the right to enter my home and tell me how I can or can't use these articles. Why? Because they gave up all rights and claims to those articles when they sold them to me.

Yet, somehow, software vendors have gotten it into their minds that they not only have the right to impose constraints and restrictions on their customers post-sale, they think this is normal, even a positive thing. They are utterly incapable of seeing the yawning inconsistency between what they claim is happening (a "license" to use the software) and what is actually happening (a cash-for-goods sale).

If we were to presume the software vendors are correct in their beliefs -- if we were to accept that a retail marketplace seller can impose restrictions on a buyer with little more than a shrinkwrap "agreement" -- then lawful innovation becomes impossible. The TV show Junkyard Wars would be illegal, as all the articles in that junkyard would have been obtained under contractual restrictions forbidding their use for anything other than what the vendor deemed proper. Using an old camping tent as a parachute for your rocket would land you in prison, because the vendor only granted permission for it to be used for outdoor camping activities. Likewise, using the Unreal engine as a basis for architectural walk-through simulations would get you carted away.

Thus, the analogy must be deemed to fail. There is no "sharing" going on here, because the software was sold to end users. Once sold, the end user gets final say over how it's used. Any other interpretation raises caveat emptor to unreasonable levels. I should not have to take Lawrence Lessig with me every time I go shopping at Fry's.

Besides, the computer industry got plenty vigorous and prosperous without these restrictions. No one has yet presented a convincing argument why that should change.

Schwab

Re:Mandatory access control for all!

[adri]

There's a big difference here. Microsoft are deciding, on your behalf, what you should be running.

The thing that really disgusts me, besides clicking the X and shutting down the Safari tab whilst trying to do some research, is that its bypassing a fundamental problem with software and 'desktop operating systems' - there really is too much trust.

Microsofts proposal doesn't fix the software to be more paranoid - its simply preventing the software from running in the first place.

It really really digusts me that something embedded in email can send out email. Very much.

Now, I have a vague recollection of something which I'd like an intrepid slashdot reader to find. It involved granting _libraries_ permissions to certain resources.

Imagine, for a moment, that you granted the libicmp library the only permission to the ICMP socket. When you linked to the libicmp library you'd be given specific entry points. Its now up to the library to verify that you're able to grab the ICMP socket - and it can also limit how often, how large, etc.

(If you still don't get it - think SUID-style libraries.)

Does anyone recall where this came from? I could have sworn I saw it in a Multics-related post.

Re:Mandatory access control for all!

[desdemona]

I think you're talking about Capabilities - the OS Eros is a 'proof-of-concept'. Processes are handed capability objects - like a connection to the ICMP socket - and physically can't do anything else. These capability objects could be as simple as a file descriptor; they could also do what you want and have logic in them to limit data size etc. Quite an interesting idea.

Re:Mandatory access control for all!

[insecuritiez]

You said: "Microsoft is taking the control out of users hands for just the same reason (and for anyone in denial, try to log in as "Administrator" on a WinXP machine)."

Your argument falls apart here. You can log on as the administrator, whether it be "administrator" or a member of the "administrators" group and you have as much control of your system as you did in Win2k. If you don't feel like you have enough control with the administrator, you can log on as "system" also through a number of tricks. One of them is using the "at" command (type in "help at" for more info) to schedule cmd.exe a few minutes in the future.

From my command line:
C:\Documents and Settings\Administrator>echo %username%
Administrator

Windows in no way gives you as much control over your comp as the super user in Linux but MS is not moving towards restricting control either.

Re:Mandatory access control for all!

Once sold, the end user gets final say over how it's used.

Does that mean that I can buy one copy of Microsoft NT, and install it on all 32 nodes of my Beowulf cluster? After all, a cash-for-goods sale happened, so I get final say over how it's used.

Re:Mandatory access control for all!

[ewhac]

Does that mean that I can buy one copy of Microsoft NT, and install it on all 32 nodes of my Beowulf cluster?

Nice try.

There's a difference between restrictions imposed by a vendor and restrictions imposed by the government. Right now, the government, in the form of copyright law, says you can't do that.

As it happens, because computers make it so easy to copy things, and because I see this form of infinite abundance as an overall Good Thing, I believe copyright needs to be fundamentally re-examined so that it can meaningfully exist in the modern world and the world to come. But for the time being, I pay for my software.

Schwab

Re:Mandatory access control for all!

[clare-ents]

My computer is mine and is shared with whoever I wish to share it with, my girlfriend, my cat, even some people on the internet.

It certainly is not shared with people who wrote the software for it any more than your computer is shared with me because you read my comment on slashdot.

What is in dispute is the right to own and use the stuff I purchased in a way that I want. And one of the restrictions of sale is that the former owner transfers me all those rights.

Re:Mandatory access control for all!

[hplasm]

Does that mean that I can buy one copy of Microsoft NT, and install it on all 32 nodes of my Beowulf cluster?

OOOO! Are you a sado-masochist?

Re:Mandatory access control for all!

[Tim+C]

for anyone in denial, try to log in as "Administrator" on a WinXP machine

I did so immediately after reading your comment. I'm somewhat confused - I was able to log in as "administrator" with no warnings, no fuss, and no loss of functionality. My normal user account, in fact, is a member of the administrators group (it's just easier that way).

Are you referring to the lack of an "administrator" icon on the welcome screen? If so, then you need to know 3 things:

1) the welcome screen can be switched off, leaving you with the "old-style" login prompt
2) from the welcome screen, if you hit ctrl-alt-delete a couple of times, the screen is replaced with the login prompt anyway
3) the welcome screen is not available on machines that are part of a domain

Perhaps before launching into your next anti-MS rant, you would do well to do a little research. There are plenty of reasons to bash them, but the supposed lack of ability to log into a machine running XP as the administrator account isn't one of them.

Re:Mandatory access control for all!

You can't do everything as administrator - there are accounts with more privilege, but you can't log in with their credentials.

Re:Mandatory access control for all!

[Tony-A]

The shared computer's operating system has the job of making sure only those who are authorized can access these documents.
Top Secret: Can Read any. Can write only Top Secret.
Secret: Can Read Secret or lower. Can write only Secret.
Restricted: Can Read Restricted or lower. Can write only Restricted.
Unrestricted: Can read/write only Unrestricted.

Now, what is the access level of system administrator, backup operator, software vendor? You're going to do anything like this on a pc??? You want any of that mess on a home computer??? Don't think so.

Re:Mandatory access control for all!

In fact, the computing industry was MORE vigorous and prosperous before word of these coming restrictions started. And with every layer of "control" that gets added, it gets less prosperous.

Congradulations, Senator Disney and Microsoft. You've killed the goose that laid the golden egg.

Re:Mandatory access control for all!

[Permission+Denied]

Thus, the analogy must be deemed to fail. There is no "sharing" going on here, because the software was sold to end users.

Not quite true. You don't buy Microsoft software - you lease it. You pay for the privilege of using it and you own the media on which it came. Since you own the CD, you can do whatever you want with it (frisbee, funny hat, etc.), but MS EULAs make it quite clear that your use of the software is restricted.

Re:Mandatory access control for all!

[Cerebus]

That's his point, which you completely missed. Software is effectively a cash-for-goods transaction and not a lease, no matter what the 'license' says. As a cash-for-goods transaction, software should be subject to the doctrine of first sale (look it up).

The attempt to recast software as a lease of rights rather than a cash-for-goods is immoral and (should it ever be tested in a court that isn't bought and paid for) ultimately invalid.

Re:Mandatory access control for all!

[ddimas]

Does that mean that I can buy one copy of Microsoft NT, and install it on all 32 nodes of my Beowulf cluster?

No, but you can with Linux. Or you can download it for free (as in beer).

Re:Mandatory access control for all!

[Cerebus]

That's a bullshit analogy and you know it. Sales of books and music are cash-for-goods transactions of non-material IP, but I don't have the right to copy and distribute them as I see fit. That's why we have copyright. Software is fundamentally no different than books and music. The 'innovation' of recasting software transactions as a license rather than a cash-for-goods is immoral and would be found invalid by any honest court.

Re:Mandatory access control for all!

I know it's kind of redundant, considering the other reply but I think I can contribute with this:

The problem with MS Palladium is not the mandatory access controls it imposes (in fact I tried to use MAC on my machine using NSA's selinux), but the fact that the keys are not under the user's (or user's OS/security manager) control is.
That leaves microsoft with the privilege of dictating your security policy (does microsoft have access to a military's mainframe security policy?, I think not).
In fact, I think the hardware part of Palladium (or at least something similar) could be a great thing, provided the keys (hence the security policy controls) remain with the user. It could probably be used to provide the trusted paths that are mentioned in this paper, preventing malicious programs from spoofing a legitimate service.
I believe that the best thing to do would be to try to use palladium's hardware as an advantage to the open source OSs, using it to enhance its security (if possible).

Re:Mandatory access control for all!

[lpontiac]

software has owners and when their software is on your computer they think they should have a say over how it is controlled.

Copyright is not "ownership" in the proper sense. It's an exclusive right to copy and redistribute.

Re:Mandatory access control for all!

[JWW]

The attempt to recast software as a lease of rights rather than a cash-for-goods is immoral and (should it ever be tested in a court that isn't bought and paid for) ultimately invalid.

And that has been a major goal of Bill Gates from the outset with Microsoft. He is the one to blame for this mess (you are correct in it being immoral). Software licensing has been the driving force leading us down this path that ends with the loss of control of your PC.

The letter Bill set to Woz and the Homebrew computer club spells it out completely (sorry for not providing a link). It is scary reading and points to exactly what happened and what is happening with Software Licensing.

Re:Mandatory access control for all!

So among the choices 0,1,infinity, you vote that when you buy software, you can do 0 installation of it. All you can do is stare at the shiny CD like a book.

Re:Mandatory access control for all!

Well, here's a message for you: it's shared with all the people who write software for your computer. That's right, software has owners and when their software is on your computer they think they should have a say over how it is controlled. For better or worse, your choice to share your computer with the owners of this software is what is driving this effort.

Nice try, but it falls flat on its face.

1. Copyright is NOT a recognition of property of any type. Read Thomas Jefferson's letters on patents sometime, and you'll find out that ideas (and by extension, expressions) CANNOT, in nature, be the subject of property -- precisely because they CAN be duplicated.

2. As others have pointed out, when a vendor SELLS you a copy of a software package, you own that copy. (More precisely, you own the media, and the vendor has given up the artificial Government restriction that prevented you from using the software on it.) Just because Sharp made my microwave oven does not mean that I have "chosen to share my home [and control of my home]" with Sharp. Your assertion that using purchased products should subject us to the arbitrary whims of the vendors after the sale is likewise absurd.

Re:Mandatory access control for all!

[QuantumG]

Thanks for once again missing the point. Maybe you're new to the game, so I'll explain. Microsoft does things slowly, very slowly. They slowly switched DOS users to WinNT. They made their software slower in every release to force you to upgrade your machine. Then when everyone had machines powerful enough to run NT they ditched DOS. Yah, now they only have one product to support. Now they're doing the same thing. Get used to using your computer without access to the Administrator account (by hiding the account from ordinary view and giving an alternative to using it anyway -- the Administrators group). When they remove the ability to use the Administrator account (which, BTW - I'm curious to know how you went about obtaining the Administrator password, I never set it when installing my copy of WinXP), you won't even notice because you'll still be able to do everything you could before (that they deem you fit to do), like install new software.

Re:Mandatory access control for all!

[QuantumG]

you totally missed the point. It's not YOUR machine. You may have paid for it but you're choosing to share it with people who don't trust you, and the only way they are going to do that is if you ceed control to someone they trust, i.e., Microsoft.

Re:Mandatory access control for all!

[QuantumG]

I'm reminded of Stallman's reasons for believing copyright needs revision. Basically the argument goes that we, the public, chose to give up a freedom that we couldn't really use for more copyright works. So, even though we were no longer allowed to use a printing press to make our own copies of books it didn't really matter because very few people had access to a print press anyway. It was a "good deal" to give up a freedom we didn't use for more books. But now-a-days we all have access to copying equipment and the deal no longer looks any good.

DRM is very similar. People are willing to give up a freedom they don't use (control over their operating system) for a gain they want (Britney mp3s). People who like to have control over their operating system obviously feel ripped off by the deal -- and who like's Britney anyways? But the vast majority of people never logged in as Administrator anyways, so they're not going to miss it.

Gonna be a long time coming

Until then, just suck it up and deal with us. Buy our jeans, watch our movies, listen to our music, and watch our bombs fall. Biotch.

america sucks

the whole world laughs at the stupid brainwashed citizens of america.

it's kind of sweet how you believe all this "land of the free, home of the brave" propoganda crap.

well actually it's just sad.

oh well.

Re:america sucks

[LibertineR]

Find somewhere more free than America, and go there then, Loser.

I'm sure you can find a nice dictatorship somewhere where your thoughts would be welcome.

Re:america sucks

Australia.
England.
Scotland.
Ireland.
France.
Germany.
Switzerland.
Poland.
Japan.

(no particular order)

Re:america sucks

[LibertineR]

Yeah, just read the reply to the other loser.

Loser.

Re:america sucks

[hurtta]

Sweden, Finland, and so on

Re:BUSH! NO! PEACE! YES!

GIVE EVIL nothing to OPPOSE and it will CEASE TO EXIST!

Are you posting this to oppose evil? If so, you might want to rethink your philosophy. Also, you DON'T HAVE TO use the ShiFt KEY!!!! REALLY!

Hahahaha....

haha ya right

Ya right that's what the ottomans where saying 90 years ago...

the otto-who?

exactly.

What i want to know

This seems to me like pretty clear trademark dilution of the Lexus-Nexus trademark. I don't know what "Lexus-Nexus" means, but i know it's what comes to mind when someone says "Nexus-aware."

Anyone agree or disagree on that?

Well, we'd like to, but...

What do we replace the following with:

1) Lightwave
2) Poser
3) Bryce
4) Premiere
5) Flash
6) Dreamweaver
7) Freehand
8) Sound Forge Studio

?

No, Blender doesn't replace Lightwave. Linux has no Poser or Bryce equivalent. There are some Premiere possibilities, but Linux won't do video capture. No Flash. Dreamweaver is probably the easiest to replace, but nobody has done it yet, and nobody has an image/table mechanism like Fireworks and Freehand.

We did the Linux desktop thing for years, and we were always hampered by the fact that we had to build everything EXCEPT our product. Now Linux is a server and doing very well.

Time to get a Mac I suppose.

Re:Well, we'd like to, but...

5) GPLFlash
8) Audacity

Hey boy

[sw155kn1f3]

It's not _your_ company anymore :)

Re:BUSH! NO! PEACE! YES!

Eat shit, you greasy pacifist hippies.

I am sick to death of the ludicrous anti-American ravings of you pissed-off geeks. Do you really believe the rest of us don't see right through your mental pathology? Your entire political philosophy boils down to this: "The cool kids picked on me in high school, and I can't get over it. I hate America"

You may not be WORSE THAN HITLER, but if anyone WORSE THAN HITLER ever comes along, he'll be depending on Useful Idiots like yourselves to make this earth a safe place for him.

If there were any justice in this world (and there isn't, thanks in large part to you dictator-appeasing ubermorons), YOU would be considered legitimate "Targets of Opportunity" for every God-fearing American choosing to exercise his second amendment rights.

Please wash the sacred blood of Iraqi dissidents and freedom fighters off your filthy hands, then fuck off, die, and fuck off again.

Who helped bomb them out of existance?

The US, that's who. Those poor fucks decided to take sides against the overwhelming power of American Sunshine. Now look at em.

We own you. Just deal with it dude. I understand that being a citizen of a lesser nation must suck at times, but don't player hate. It's not our fault that all of your women want to ride us hard and put us back in the stable wet.

Re:Who helped bomb them out of existance?

LOL.

What women would want a uncultured flag waving hick american? Maybe your white trash america skank bitches dig your rockin' chevy and your gnarly mullet but everyone else just thinks america is a sad joke.

haha you've been watching too much baywatch i think hahaha.

Hey even your buddies the french used to have an empire...

In the tradition offollowing with the "leader"....

[Mattygfunk1]

... I am arranging a group on SourceForge to bring "trusted computing" to linux!

One of our developers has already approached RMS but apparently he mumbled something about "GNU/trusted computing" before the developer hung up the phone.

________
Open source hosting @ $3 / Month - Cheap Web Site Hosting

Wait a sec....

[dethl]

Shouldn't this story be in the "Your Rights Online" page? Considering that clicking on Pallidum's EULA will be just like signing your soul over to the devil....I'll take an open source solution thank you very much.

Obligatory, How Long

till this will be cracked by a virus?

Sad Fact....

[ashitaka]

You were probably able to write all that without needing to consult the Matrix script.

Re:Sad Fact....

[Xayto]

yeh well, im sure theres alot of us out there that think the matrix rules, and have learnt the script of by heart, it gives me somthing to amuse my self during class.

Re:Sad Fact....

[Poeir]

No, I didn't. I'm a college student, I don't have any money. Just Googled for "can be told what the Matrix is" and "when you pay your taxes," then searched and replaced Matrix with Nexus. Then I realized, if MS has their way, this may not be too far off.

Missed the Point.

[torre]

The poster has missed the point and has confused two seperate issues into one. (DMR and machine security). If the poster had actually read the microsoft link from his own link he would have come up with the following quote"

" "Palladium" will not require digital rights management technology, and DRM will not require "Palladium." "

DMR is not the focus of Palladium (at least intially.... I say this with a grain of salt as you never know what they future will hold), but rather a seperate microsoft initiative spearheaded by the windowsmedia group and the Office group. I would be far more concerned about what these groups do than what Microsoft has outlined for Palladium.

Palladium is (or at least what is hoped, again i say this with a grain of salt, we'll only really know once the deliverables are shown) a combination of two big ideas. The first is to provide a system in which a user can trust stuff and allow it to run with sensitive information (eg, user data) and provide a sandbox where they can run stuff that they don't trust and know it won't do anything of consequence.

The second is to bring the PC hardware/Software to a more sofistated level, bringing up the bar as it would to what is now held by some of the mainframes. This serves two fold a purpose, one to weed out old hardware and hardware manufacturers that people keep using over and over that perhaps just don't have proper drivers which haul down the machine. Secondly, give greater credibility to the Wintel platform in all they're little political/business/OSS/User heart battles. At the end of the day, any time a user/admin/whomever sees something not function correctly (eg, system crash, failed performance of hardware eg... scanner won't scan) the first impulse is to blame Windows reguardless what caused the problem. I'm all for the improvement of the overall improvement of windows as any system that is improved makes a cost saving in both time and money at the end of the day.

There has been much speculation as to what Pallium will actually be. Most of it has been nonsense runned off by people with FUD as they're agenda. Little is known about what exactly will Pallium eventually encompase.... But what I do know is this. If it turns out that user restrictions are placed and people suddenly stop beind able to do certain things... then Microsoft will get a hit to they're bottom line and OS's like Linux and Mac OSX will suddenly have a massive inflow.

Give the public a little credit... The market doesn't have an absolute hold on them and if windows doesn't suit they're needs they'll jump off as though the ship is on fire. It's not like there aren't other capable alternatives. If there wasn't windows would have been regulated long time ago just like the telcos. But do you really think microsoft would alient people that much (or abolish competition for that matter) to be able to hurt themselves? I think not.

Re:Missed the Point.

[0x1337]

Its DRM not "DMR", Einstein. (Digital Rights Management) And although DRM (note the spelling, again) is different from Palladium - both are two evils of the same magnitude and both will be intertwined with each other.

Re:Missed the Point.

[SiliconEntity]

No offense bud, but take some care with your typing, okay? Between "Pallium" and "DMR" it's hard to figure out what you're saying.

And while you're right that Palladium is not the same as DRM, I've heard Manferdelli (the Microsoft manager) talk, and he very frankly admitted that the original motivation for the project was to support DRM. Then they realized they could generalize it and do a lot more with it.

I also disagree that Palladium provides a sandbox. Palladium applications can still be pretty damaging. They can delete all your files, or whatever, just like apps today. What Palladium does allow is that an application can encrypt its data and be confident that no one else can decrypt it. So you do gain a certain amount of security in that way. Palladium-aware apps can protect themselves in ways that old-style programs cannot. But there's no sandbox per se.

Your final point is right, if Microsoft really did turn this into the fascist nightmare that people are describing, they'd lose market share like crazy. Nobody is that committed to Microsoft. The fact is, Microsoft is petrified of losing customers - that's the only way they've managed to stay on top. They'll do anything, anything, to increase market share.

The whole point of Palladium is to try to find a compromise between the requirements of the media companies to allow PCs to be used to download movies and such, and the demands of end users to have control over their computers. Technically, Palladium achieves this - where users give up control, it is done voluntarily and in exchange for being allowed to download legal multimedia content. But that hasn't quelled the FUD.

Re:Missed the Point.

The first is to provide a system in which a user can trust stuff and allow it to run with sensitive information (eg, user data) and provide a sandbox where they can run stuff that they don't trust and know it won't do anything of consequence.

That doesn't require hardware support. You can already do this in multi-user systems (including WinNT/XP/2K) by creating a new unprivileged user and executing code as that user. If every user could create sub-users with limited privileges, the system would be protected from untrusted code (capability-based operating systems basically have this feature built in, but they're not popular yet). Java and .Net can do this too (running untrusted code in a sandbox). And I've seen an option in the WinXP "Run as a different user" dialog, something like "run as this user, but prevent the program from executing harmful code" (although there's no explanation about what this actually does).

This serves two fold a purpose, one to weed out old hardware and hardware manufacturers that people keep using over and over that perhaps just don't have proper drivers which haul down the machine

Windows already has support for signed drivers to prevent this exact situation. Microsoft has a compatibility lab which will test and certify drivers, to make sure they won't bring down the machine (among other things).

Secondly, give greater credibility to the Wintel platform in all they're little political/business/OSS/User heart battles. At the end of the day, any time a user/admin/whomever sees something not function correctly (eg, system crash, failed performance of hardware eg... scanner won't scan) the first impulse is to blame Windows reguardless what caused the problem.

This doesn't make much sense. Windows already has driver signing, and the driver name is displayed (or logged) when it crashes. But it doesn't really matter - most users will blame all their computer problems on Windows, Microsoft, or the computer itself. And the majority of users won't know what Palladium is (even if their computer supports it), or why this should stop them from blaming their problems on Windows.

Re:Missed the Point.

[adri]

* broken drivers, signed or unsigned, will always cause hardware issues. But then, I don't really have a fundamental problem with drivers signed by Microsoft just as much as I like 'certified hardware' to run Suse or Redhat on.

* the wintel CPU has 4 protection rings - but as far as I can tell "modern OSes" only use two of them. If you're after mainframe style security is VMS good enough?

Re:Missed the Point.

"Nobody is that committed to Microsoft"

I have to disagree here.It isn't like there are viable alternatives for the average user (at this time).

"Technically, Palladium achieves this - where users give up control, it is done voluntarily and in exchange for being allowed to download legal multimedia content.But that hasn't quelled the FUD."

I think I can do without downloading legal movies or music if it means freedoms of choice are sacrificed.Actually I'm sure I could do this now if I wanted.So what exactly is the consumers' benefit to this? I run anti-virus software and use a firewall and feel secure enough with my computer already.Being that there isn't a comercially acceptable alternative to windows, it's hard not to feel a certain amount of FUD.

Re:Missed the Point.

[Xpilot]

The poster has missed the point and has confused two seperate issues into one. (DMR and machine security)

The parent poster however has confused DMR with DRM. I don't think DMR would be amused :)

Re:Missed the Point.

[tabby]

We already have this on windows, linux and mac. Its called VMware and VirtualPC respectively. I run all my P2P spy-ware in a VM so it can't touch my system.

>The first is to provide a system in which a user
>can trust stuff and allow it to run with sensitive
>information (eg, user data) and provide a sandbox
>where they can run stuff that they don't trust and
>know it won't do anything of consequence.

Re:Missed the Point.

[torre]

No offence taken.... I should have run it through a spell checker before submitting... and for that I should be apologizing to the slashdot at large for having to read my obvious spelling mistakes!

However, I think I need to clarify my points, as I was making broad claims and you've picked up at least one that needs clarification.
I also disagree that Palladium provides a sandbox. Palladium applications can still be pretty damaging. They can delete all your files, or whatever, just like apps today. What Palladium does allow is that an application can encrypt its data and be confident that no one else can decrypt it. So you do gain a certain amount of security in that way. Palladium-aware apps can protect themselves in ways that old-style programs cannot. But there's no sandbox per se.

By sandbox I mean that non trusted code work under regular windows with presumably tighter restrictions (providing the default sandbox) and trusted code run in a freer app space. I do realize that a trusted app would have full control over its space ultimately have potential to create damage This ultimately then begs the question can you really trust a trusted app? On its defence (slightly), anyone willing to pay a license fee to become certified *should be* more trustworthy than some virus writer as they've got to cough up some cash make themselves apear secure!

I admit my def is not a true sandbox and a poor term to describe what I meant. But if that's not what is delivered (or at least some other variant that has obvious measures of secure/insecure code execution then the end users just won't get it) then they're not going to be any major credibility in the short run as to the whole push.

And while you're right that Palladium is not the same as DRM, I've heard Manferdelli (the Microsoft manager) talk, and he very frankly admitted that the original motivation for the project was to support DRM. Then they realized they could generalize it and do a lot more with it.

Now, I totally agree with you.... Palladium is a totally different beast then what was initially announced. Goes to show that the consumer still has some power over big companies and not the other way around. However, I must point out that in the end it doesn't matter what was the original idea was, it's what delivered that counts. Simple example, Microsoft was going to release the next generation help system having spent over 1/2 billion into the project. It was going to revolutionize how help is provided. It got canned. Bits and pieces of it pop up in office in the form of SmartTags and other things.. Apple also had a similar thing going before that... OpenDoc if I'm not mistaken.... got canned. An on the subject on failures, remember Microsoft Bob? It was suppose to revolutionize computers to beginners... that got canned after lack of consumer interest.

My long winded point (and I apologise for that) is that Microsoft can say what they want when they want it about it, but the reality is they won't release something that's going to hurt them (well much). Case in point, windows media even with it's DRM is relatively popular (cough even though it has divx to help with some of those numbers). And God knows why they're IM is so popular but they've capitalized on it and are making a "hip" integrated add-on (3 degrees) for it.

Anyhow.... The best policy when speaking about Palladium is to wait and see.... We really don't know the particulars which only lead to more speculation. A charge that can be directly aimed at Microsoft for leaving it so vague at times leaving ramped speculation impossible to avoid.

Btw... I hope my response is a tad better.... I'm working late and such my writing skills are simply not there right now...

Re:Missed the Point.

[71thumper]

You're right in that you CAN do many, if not most of these things now.

But my 60 year old parents will never figure it out. And honestly, they're not really interested in doing so. They just want to sit down, log in (if even that's not disabled, since their computer is at home), and USE their computer.

A computer that becomes more stable without them having to learn more about their computer is a good computer :) It's like CPUs. They are n ewer, and faster, making the computing process better. But they don't really care about the details of why the new CPU is faster.

Re:Missed the Point.

[Dot+Com+Drew]

Do you work for Wag Ed? Don't be offended but you sound very PR-ish. If so say hello to Sharpe for me.

Re:Missed the Point.

You're right in that you CAN do many, if not most of these things now.

But my 60 year old parents will never figure it out

I didn't mean the user would need to manage permissions/capabilities/etc. manually, I mean that operating systems can do these things on current hardware. It could be implemented in a completely automatic way.

For example, by default a program wouldn't be allowed to read or write files by default (except maybe in a directory for config files). When it wants to access a file, it asks Windows to display a file open/save dialog. Then the user selects a file, and Windows will allow it to access only that one file. The same idea could be applied to a directory selection dialog, so that install programs could write to their own directories. The user wouldn't have any idea this is happening, but their system would be protected from viruses.

I don't see how adding new hardware would make any of this easier for the user. And there's really no way to tell, since there's little technical information available on Palladium.

Re:Missed the Point.

[Alsee]

I call bullshit, though I admit you're probably just passing on missinformation that has been fed to the public.

I have read much of the TCPA spec and everything I could get my hands on about palladium. Yes, they aren't exactly the same thing, but that have a crucial point in common. They are both founded on a central requirement that the owner of the machine is not permitted access to his own encryption keys.

There is one and only one function for this requirement - to take control away from the owner of the machine, various forms of DRM.

I state it is a fact that you can get ALL of the claimed benefits (other than taking control away from the owner of a machine) and eliminate ALL of the opposition to the system simply by including a hardware switch to control access to the cryptographic keys.

The fact that they refuse to allow this is PROOF that the critics are right and the purpose(s) of the system and the "bad" ones - enforcing DRM and to further entrench the Microsoft monopoly.

-

Good Thing

[IchBinEinPenguin]

I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take.

I must have forgotten when they convinced me that Clippy was a Good Thing before forcing^H^H^H^H^H^H^Hintroducing it.

Seriously, do you really think they're going to even try to convince us? What's the point of having a monopoly if you can't (ab)use it?

Re:Good Thing

[SiliconEntity]

I must have forgotten when they convinced me that Clippy was a Good Thing

You notice they had to get rid of Clippy. People hated him. And let's not forget poor old Bob.

Microsoft is subject to market discipline just like every other company. The only reason they have a monopoly is that they've kept everyone happy enough. If they start doing things to make people unhappy, their monopoly will disappear faster than IBM's did.

how will this protect from viruses ?

[wotevah]

I am just wondering how signing all the executables will protect anyone from viruses. Most viruses today are macro or scripted.

It's worth nothing that the behemoth apps (Outlook, Word, Excel etc) are signed, they will probably keep their embedded superscripting features, so viruses will still happily run on them.

I am curious about buffer overflows. Stack checks are not infallible, code is not read-only and and I can't imagine the palladium system checking the signature for each 4k block as it runs (since if decent encryption is used it will be quite expensive in CPU time). So, will we have signed apps that might still have such bugs ?

Re:how will this protect from viruses ?

[torre]

am just wondering how signing all the executables will protect anyone from viruses. Most viruses today are macro or scripted. It's worth nothing that the behemoth apps (Outlook, Word, Excel etc) are signed, they will probably keep their embedded superscripting features, so viruses will still happily run on them.

Simple... suddenly secure Office apps will use .Net which runs the macros in a sandbox outside the secure zone. It has been on the drawing box for quite some time. Office 2003 will offer the first steps to .Net integration wich will ultimately add more security and control over these dumb macro exploits.

But the more obvious step would be to prohit you from manually launching such a script in the first place. Which is a step up. I've personally witnessed Computer Science Master and PHD students who should know better open up arbitrary code sent to them via email. Goes to show that sometimes even the knowledgeful are just as dumb as the users they often mock.

Re:how will this protect from viruses ?

[SiliconEntity]

I am just wondering how signing all the executables will protect anyone from viruses. Most viruses today are macro or scripted.

First, Palladium doesn't sign all the executables. As the article takes pains to mention, all the old Windows programs will still run. What Palladium does provide is "attestation", meaning that the secure hardware can report a hash of the secure part of the application to a remote server. That server can then decide based on the hash whether to trust the app.

As far as viruses, I think you're right that macro viruses wouldn't be stopped. The one advantage is that the scope of the damage might be limited, as any "sensitive" data on your computer could be encrypted using the Palladium hardware. So you could still get an email virus, but it couldn't access your bank account data.

Re:how will this protect from viruses ?

[Jason+Earl]

A sandbox for MS Office macros would be an excellent idea, but you don't need Palladium for that. You don't need .NET either.

Re:how will this protect from viruses ?

[torre]

A sandbox for MS Office macros would be an excellent idea, but you don't need Palladium for that. You don't need .NET either.

Obviously not. But such integration insures two things: Consistency and standardization. .Net already has its own sandbox machanisms and is being integrated into office 2003. Pallium, well, you got to give a reason to hunk over cash to the predicesor of Offic 2k3 ;)

Re:how will this protect from viruses ?

I've personally witnessed Computer Science Master and PHD students who should know better open up arbitrary code.

Just today my "professor" asked me what the command was to change directories. I told her "cd", then she cocked her head and asked me if I was sure.

It occured to me that I must be dreaming.. but I knew I wasn't.

Re:how will this protect from viruses ?

Either you are suggesting Java or a seperate sandbox for each application. Neither makes sense for Microsoft.

Re:how will this protect from viruses ?

[multi+io]

Simple... suddenly secure Office apps will use .Net which runs the macros in a sandbox outside the secure zone.

I see. M$ will try to improve security by using 30-years-old techniques like sandboxing, and then sell that to us as if Palladium had made it all possible in the first place. Clever, I'll admit.

But the more obvious step would be to prohit you from manually launching such a script in the first place.

, lauching it automatically instead? You might even *want* macros to have access to some of your data in order for them to be useful.

Re:how will this protect from viruses ?

Don't use '$' as 's'. It lessens the effectiveness of your entire comment.

Personally, I stop reading as soon as something like that (or 'microsquish', 'microsloth',...) shows up.

This story brought to you by the number 666...

[bad_fx]

for those of you too lazy to convert to base 10 by yourself :)

It's strange, but any time I see any thing in binary or hex I just have to convert to base 10... Is that some sort of early warning for OCD or something do you think?

Please think of the kittens...

I still develop some software that only runs on Win32

Did you know that every time you write line of win32 code God kills a kitten?

Brass Lining

[MSTCrow5429]

Well, on the bright side, compatibility should improve, if only because the only thing allowed on the system is Microsoft.

Re:Brass Lining

[Dictator+For+Life]

I'd call this a tin lining at the very best.

So now M$ says...

...all your codebases are belong to us ???

Re:So now M$ says...

that was stupid.

thoughts..

[Dave_bsr]

The first thing i thought was: "So, it starts."

Then I read some comments. You gotta pay to write software for windows. What crap! They have the desktop computer section by the balls, and they keep squeezing for more money.

But the more they squeeze, the more people get sick and leave. So in part, I welcome this. Maybe a few more people will get the idea and switch to something freer....something that ends with "ix" ... It keeps getting better all the time.

Re:thoughts..

Hmmm, ending in ix...

BSD... nope,
OS/2... nope,
BEOS... nope,
VMS... nope,
linux... nope,
dos... nope,

Ahhh, BSDOS2VMSLINUX-ix :)

Re:thoughts..

I think he meant Minix.

Re:thoughts..

[panaceaa]

something that ends with "ix"

I guess all the Linux users out there will have to sync their cvs clients back to Minix.

Re:thoughts..

[palmito]

....something that ends with "ix" ... It keeps getting better all the time.

Chix?

Wish this was a joke...

[inkswamp]

I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take.

Oh that's easy! All you have to do is convince everyone that having control over your computer just helps terrorists.

Sigh. Now if only I were kidding.

Re:Wish this was a joke...

[kaytea2k]

The big thing is if content providers will buy into this. Because if a Viacom, or Disney jumps on this boat we will see the greatest shift in the media market since cable. And isn't it funny that the TiVO folks just went bankrupt?

Re:Wish this was a joke...

[Loosewire]

wasnt that sonic blue?

Most asked question at Microsoft info sessions...

Where's the free stuff?

Here's how -

[FFtrDale]

They've been doing it for years. Neal Stephenson said it best in In the Beginning Was the Command Line":

Buyer: "Can't you see that everyone is buying station wagons?"

One place to find it is http://bang.dhs.org/be/beginning.html

There are several other places to find it; I just googled it again. And get a dead-tree version for your Dad, too (that's where mine went).

Longhorn

[mcbridematt]

starting with Longhorn Server in 2005
LOL!. I already have it. Just download any Longhorn 3683 or 4008 build and use a tool called TweakNT to switch OS editions. I did say that a syncronised release was likley with Longhorn didn't I?. WTF? You ask. Lookee here. Don't switch if you depend on Telephony though.

Ok, just hope it doesn't come into Windoze installers. That might put of hopes of YAWLL (yet-another-windows-longhorn-leak)

Palladium...

[StriderA]

Anyone else see this story title and immediatly think of a giant Palladium RPG session inside microsoft? Who knows, maybe it's just me. :)

I can see both sides of the DRM war

[zapp]

While I love my mp3s, downloading free images, music videos, tv shows, even copying a DVD to divx here and there ;) ... I can see both sides to the conflict.

I was always one of the people saying the Internet would revolutionize the world... that Information should be free, etc etc. And that's what it comes down to... the real world is based on selling goods, trading services, etc. These goods and services are of limited quantity, so they have value. Media on the Internet can be copied infinitelly, and thus has no value.

I am stepping out on a limb here, but is it possible the dot.com boom of the late 90's failed because of people trying to charge for things that were inherently worthless? What if your wallpapers.com website sold quality wallpaper images, but that were signed and could only be used by the person who bought it. (think: When I buy a painting to put on my wall, I can't send a copy to all my friends for free, can I? Isn't it the _same thing_??)

So there's the problem. Do you want the benefits of a media-rich world, where people can actually make MONEY, and succeed, and continue? How many GOOD sites have shut down because of lack of revenue?

Would it be worth it, if it were properly implemented and restricted, to put such a system in place to give the internet an actual economy?

Re:I can see both sides of the DRM war

Great idea. Create artificial scarcity to boost the economy. Well, it did work for drugs and prostitution, so who knows. But I'll stick with my old stuff, thanks very much.

~~~

Re:I can see both sides of the DRM war

[ddimas]

Oh goody! We can make things that are abundant artificially scarce an waste money on them. That will lead to a sane allocation of resources.

Maybe we should develop the internet economy based on intrinsic value, not gimmickry. Scarce things should be expensive, common things should be cheap. If you make common things expensive, you just waste scarce resources, like time.

Re:I can see both sides of the DRM war

It's digital, therefore it will be copied.
You can try to protect it, but eventually, it will be copied, and once it's copied it will never stop being copied.
Stick to atoms if you want to sell stuff.
Palladium schmalladium!

Re:I can see both sides of the DRM war

Media on the Internet can be copied infinitelly, and thus has no value.

The Declaration of Independence and the United States Constitution can be copied infinitely. Do you claim that they have no value?

WinHEC should be interesting

[Rat's_ass_donor]

Not because of Palladium, which will still be a series of white papers and some sample code, but because the rest of Longhorn should be far enough along to be rather interesting. Hopefully we'll get our first look at what the revised GUI brings to the table.

As for Palladium, it sounds quite appealing. Being able to run sensitive applications in a secure environment would be nice.

Windows XB

[yerricde]

And, I suppose it will only be a matter of time before Palladium dictates that only Nexus-aware programs will run.

If Microsoft is going to make the business model of the Nexus environment like that of the Xbox console, then why not just call it "Windows XB"?

Re:Windows XB

[1010011010]

Indeed. As far as I can tell, the XBox is the first deployment of a Palladium system. It's the mass-market trial. "Windows XB" is appropriate. One day, you'll be running "winword.xbe"

Those where the days...

[sokkelih]

Why dont you people bash Microsoft anymore? It used to be so much fun.=)

Re:Those where the days...

[Salsaman]

No need...now we just stand around and watch as MS keep shooting themselves in the foot.

Re:Those where the days...

[Loosewire]

Palladium says or opinions arnt trusted :-(

Stock response from Slashdot

Microsoft... tsk.
Palladium... hah.
Anything not unix... harumph!

Audacity lacks filters

[yerricde]

GPLFlash

GPL Flash can do only playback, not interactive graphical authoring.

Audacity

Audacity does not come with anywhere near the set of filters that high-end versions of Cool Edit and Sound Forge come with.

Linux fans are posers

[yerricde]

Blender doesn't replace Lightwave.

What are the three most important things that Blender lacks?

Linux has no Poser

What? Most of the Linux fans who post here are posers.

but Linux won't do video capture

Say what?

No Flash.

<rant>
Flash is useless if half your audience blocks application/x-shockwave-flash at the firewall. The common uses of Flash tend not to work over a 48 kbps connection, which 80 percent of Americans are behind. And if you haven't yet shelled out the cash for the upgrade to Flash MX, it's near-impossible to make Section 508 compliant Flash content for clients that do business with the USA government.
</rant>

But I see your point anyway.

Dreamweaver is probably the easiest to replace, but nobody has done it yet, and nobody has an image/table mechanism like Fireworks and Freehand.

I have never used those Very Expensive Programs. That said, the next version of Mozilla Composer can resize images and tables. But why are you using tables for layout anyway? Tables are so 1997; CSS is 2003. Almost nobody uses 4.x browsers anymore, and all 5.x and 6.x browsers have some form of CSS support.

Re:Linux fans are posers

3 things lightwave has that blender doesn't.

1. Global illumination rendering
2. High Dynamic Range Image (HDRI) scene lighting
3. A full monte carlo raydiosity renderer.
4. comprehensive and efficient polygon modeling tools (blender has a totally obfuscated interface)
5. comprehensive and efficient organic modeling tools
6.a free (as in as many nodes as you want) linux (and osx and win) network render client
7. LScript
8. A volumertic particle engine.
9. a nonlinear animation system (motion designer totally rocks!)
10. a hair/fur shader with long strands and full physics
11. i could go on and on...

there is a good reason that people buy lightwave. it is a very efficient tool and the developers totally listen to their customers.

that's why it's used in film and brodcast all the freakin time (for both modeling and rendering)

Black Hawk Down
Blade 2
Brotherhood of the Wolf
Kung Pow! Enter the Fist
Master of Disguise
No Good Deed
Panic Room
Star Wars Episode II: Attack of the Clones
The Time Machine
Undercover Brother
Final Fantasy
Jurassic Park III
X-Men

the list goes on, so what has blender been used in?

Re:Linux fans are posers

yeah, go here to check out even more

http://www.newtek.com/products/lightwave/product /p rojects_list.html

Speaking of mispronounciations...

[Randolpho]

... am I the only one who sees "WinHEC" and reads it as "WineHQ"?

'Cause I really did. I was all "What? Microsoft is embracing Wine? No wh-hay!" ;-)

Re:Speaking of mispronounciations...

WinHEC = Win Heck. Heck is another word for HELL! (Dilbert)

Re:Speaking of mispronounciations...

[ReelOddeeo]

... am I the only one who sees "WinHEC" and reads it as "WineHQ"?

When I see WinHEC, I read it differently. I figure that they used "Heck" because they couldn't use the stronger alternative word in polite company.

Re:Speaking of mispronounciations...

[Xenographic]

Nah, I see it as WinHECK, a lesser version of WinHELL [which is only for users :]

type safety

[yerricde]

I can't imagine the palladium system checking the signature for each 4k block as it runs

If the Java virtual machine manages to type-check code at load time, why can't the .NET virtual machine?

"But .NET isn't Palladium" you counter. Easy. Microsoft could specify that unmanaged code (i.e. non-.NET code) cannot run inside a nexus.

Re:type safety

[Qzukk]

If the Java virtual machine manages to type-check code at load time, why can't the .NET virtual machine?

Because at load time the buffer overflow hasn't happened yet, and the code hasn't been overwritten. Unless your idea of type checking is "Hm, reading from a socket into a 256 char array. Better allocate it 3 zillion chars, just in case".

Reverse the Sound

I remember seeing this vid when i was doing a video editing unit back in uni. I reversed the sound track, and to my surprise, you can hear the word 'Linux' uttered. I don't know whether it was just the editor i used, or whether it will always work. Have a go and see!

Re:Reverse the Sound

[jhylkema]

You must be referring to something like this.

(Note that I think it's total crap and a scam . . . I just thought the connection you made was interesting.)

Longhorn Server??

[Jugalator]

There's talk of phasing in Palladium, starting with Longhorn Server in 2005.

There is no planned server edition for Longhorn, much less with a fixed release date of 2005.

I was thinking

[Comster]

...that similar to the Xbox, which I hear is a sort of initial version of the Palladium/hardware security that we will be seeing... What will happen if this huge target does get cracked? Would it make it even more vulnerable than a target that is expected to be broken into every once in a while?

Bush IS Worse Than Hitler

And he doesn't need us "Useful Idiots," he's got enough support from brainwahed "Christians"(like any Protestants are getting into Heavan, LOL), and ethnocentric, xenophobic, conservatives.

Hooray for America. . .wait. . .I mean Zeig Heil!!

hm why?

[Richard_at_work]

, for one, am already planning to transition my company away from Microsoft software

But this sort of thing is brilliant for companies, as it cuts down on the damage a employee can do on their PC. It also restricts what data a sour employee can walk out of your company with.

I for one would like to be able to see a OpenSource application that works like a central repository and customises documents via steganograpghy whenever an employee checks out a sensative document. Then leaks can be tracked down to who checked the document out, and investigations proceed from there.

Re:hm why?

[multi+io]

But this sort of thing is brilliant for companies, as it cuts down on the damage a employee can do on their PC.

You can "lock down" current systems quite well. One could even think of building more restrictive security checks into the kernel. No need for hardware extensions. On the other hand -- if a manager has so little trust in his own employees, he should probably just fire them (or himself).

It also restricts what data a sour employee can walk out of your company with.

It's basically impossible to do that. As long as you have any kind of electronic access to a node on the internet that you control (even telephone lines would suffice), you can transmit any data to it. And even if somebody actually "cuts the wire", you still have non-Pd-enabled devices like paper or /dev/brain at your disposal.

Re:hm why?

Then leaks can be tracked down to who checked the document out, and investigations proceed from there.

I say: shoot the bastards!
Those employees only create problems.

Re:hm why?

[Loosewire]

It also restricts what data a sour employee can walk out of your company with.
Enron Guy
If only we had this technology :-(

John Howard is a coward

n/t

Re:Why is Cowboy Neal such a fag?

I'm straight but dreamt of having my cock sucked by another guy.

What does this dream mean?

Yoink

[Renraku]

In a press release addressed to the world from Bill Gates... "Hello citizens of the world. I would just like to congratulate all the owners of our Palladium-enabled operating system! You won't have to worry about viruses -- they won't run on your system. You won't have to worry about those nasty games such as Anarchy Online or Doom 3, either. We are only going to allow our operating system to run our software. Some of you have asked about the exclusion of 'Minesweeper' from this version of Windows. To be blunt, Minesweeper takes so much time and effort to produce, that we've decided to sell it as a separate product. That will be another $500, per computer, per user. That covers one year worth of updates. It will also require a CD-key and server verification! Once again, I'd like to thank the U.S. Government for helping us out, and you the people for voting with your dollars. Its clear that all the software manufacturers EXCEPT for Microsoft haven't lived up to your standards, so you'll never have to deal with them again!"

SELinux vs Palladium - fighting for "mindshare" ?

[sublum]

So, what's going on to keep the MSFT lap-dogs, and their potential customers, informed about SELinux -- and OpenBSD -- in response to the marketing of this "Palladium" thing? Seems like they might be for different sectors of the market (SELinux, OBSD for those who know what they're doing, MSFT-windows for the rest?), but that article doesn't give a lot of details about what "Palladium" is, anyway, no offense.

"trusted Windows technology platform" -- that, in itself, sounds hillarious.

Here's to waiting or digging for details on what this MSFT "nexus" thing is, beneath the flash, hubub, poop, and other marketing.

Now, do y'all get the impression that microsoft is playing this thing right into the workstations of "sensitive" federal offices? If they do this, and succeed in locking those offices into their platform -- if they haven't done so already -- it would be a major blow against the state of the competive market -- within and without "the government sector".

"Jane, how do you stop this crazy thing?!"

A prophecy

[Tyreth]

Woe to the companies who cannot escape before the time is up, for they shall be captured in the snares of that wicked serpent, and he shall show no mercy.

Their blood shall be upon their own hands.

Re:BUSH! NO! PEACE! YES!

GIVE EVIL nothing to OPPOSE and it will CEASE TO EXIST!

And what if opposing this "evil" leads into an even greater evil like breaking down the machinery of international collaboration, diplomacy and trust in treaties - just in order to get rid of one piss-ant tin-pot dictator who, thanks to contaiment by inspections, does not pose any direct threat to his neighbours or USA?

And don't bother telling me about how the Iraqis are suffering under his rule at the same time you advocate bombing the shit out of them. That's just too hypocritical and self-serving attempt at justifying an illegal war of aggression.

What is this? A drag fest?

[eddd]

From the article:
"We will be having a big coming-out showing on NGSCB at WinHEC," says NGSCB group product manager Mario Juarez."

Re:BUSH! NO! PEACE! YES!

Oh, I see, so we should all blindly follow you(while you eat up everything you hear on CNN, all of a sudden) or die.

Someone else once thought like that and that someone was Adolf Hitler.

You people amuse me, you sit around and argue that you are the real patriots, but then as soon as someone thinks something different than what you think they should(and I quote),fuck off, die, and fuck off again.

You sir, are a true a patriot. You love your country so much that you will defend it from a message board.
Well, I am against the war and I love my country too. It's funny, because I always thought that we loved our country for the freedom, that everyone no matter who they are can say what they want(among other things). But the type of behavior you advocate is comparable to a Nazi regime.

Perhaps, if people such as yourself would open their minds a little more violence would not be a problem.

Well, I'm done, go ahead and keep advocating that sort of behavior and treating your fellow man like dirt, and then when you get what you want you can come back here and try to lay the blame on someone else.

You tell me that I make no difference. Well at least I'm f***ing trying! What the f*** have you done!
--Minor Threat

I think the Lindows guys should run this link...

http://www.google.ca/search?q=nexus&ie=ISO-8859-1& hl=en&btnG=Google+Search&meta=

Hopefully that will post. If not delete the spaces if they appear. It's a search for the word nexus on Google....

It seems well used already.

I'm sure it's copyrighted already too. Isn't there a car aleady called that? Sounds familar..

Poetic justice. Stolen name on trustworthy computing.

Must remember to have all Linux computers by 2005.
Clocks ticking....
By 2007 Microsoft should be bankrupt.

Re:BUSH! NO! PEACE! YES!

Get your bravery from a six pack
Get your bravery from a half-pint
Drink your whiskey, drink your grain
Bottoms up and you don't feel pain

Go out and fight, fight
Bottled violence

Lose control of your body
Beat the shit out of somebody
Half-shut eyes don't see who you hit
But you don't take any shit

Go out and fight, fight
Bottled violence

Technology isolation

[Tailhook]

I, for one, am already planning to transition my company away from Microsoft software.

Just be sure that your goal here is in line with that of your employer. Or, if you are the boss, that you've thought about the implications for your customers and, therefore, you. Playing favorites with ones means is a risk few will take, so don't expect a lot of help.

Re:BUSH! NO! PEACE! YES!

[virus321]

Yes, I like Minor Threat, I like my music with a little thought behind it. Not mindless love song garbage.

It's not about consumers

This is not about selling tied-down boxen to consumers; it's about corporations. They do want to take control away from their worker's computers, so that those pesky people can't use them for anything but work ! To this end, many things have been tried with MS operating systems, but the problem is; none of them work completely: the setup of the OS won't allow for it; I've had Administrator on any tied down NT box they tried to make me use ! So here comes MS, with a solution out of the box; a completely tied down windows machine, that plays only signed applications. What more could a floor-manager want ?

There is no such thing called LH Server 2005

Longhorn is a client release. The server release has a different name ...

Momopoly

[tsa]

If this isn't momopoly abuse I don't know what is. For America I fear there is no hope since the outcome of The Trial, but I keep hoping (maybe naively) that the EC will ban this before it gets on the market.

Re:BUSH! NO! PEACE! YES!

Yeah. Luv is teh sux0rs. Luv is for brain dead fools.

How'bout them Apples?

[mrklin]

> I wonder how Microsoft will convince consumers that loss of control is a good thing.

Apple did it and it has only 5% of the market. Let that be a lesson.

(Disclaimer: Well, not really considering I have swtiched may laptop to an iBook and am loving the BSD-based little thing.)

Hello Palladium

Goodbye customers. this will surely kill the PC platform dead. When Palladium Kicks in it IS time for linux to take over, why? because Palladium takes away *everything* good about an IBM Compatible PC, it's freedom. It's freedom and innovation that made the PC great .. and now they want to take that all away again? gimme a break! This Palladium monstrocity *will not* work. unless they do something sneaky like roll it into the OS chunk by chunk. Of course there are the people that will do *whatever* microsoft say just because they say so, and it's those people that *might* give this horrible excuse for a platform some kind of a chance. Frightening huh?

Re:Hello Palladium

[aflat362]

this will surely kill the PC platform dead

PC == Personal Computer

PC == Windows Box || Linux Box || Mac Box || etc. . .

IBM Compatible PC

I may be wrong but This is an OLD term going back to the days when IBM PCs were king and ran DOS. Any non IBM manufactured PC that ran DOS was said to be compatable. I wish people would say Windows when they mean Windows. When I think IBM compatable I think IBM operating systems like OS/390 or AIX.

besides the improper use of terms this guy is a NUT anyway. . . All rambly and stuff

soon

[m1chael]

ms will opensource windows and keep palladium closed.

Re:soon

no they won't .. they *can't* you numskull.
because MS don't own all the parts of windows.
They don't write all of that code themself dummy.
Even if they do "Open source windows" u can gurantee for the reason above, it *won't* be all of it.

It's simple.

Allow palladium to get anywhere
and wave goodbye to freedom and innovation.

Can you say "Na�ve"?

[nmg196]

I love the way that everyone is just flaming Microsoft, without any knowledge at all of what Palladium is or what the Nexus is or what the implications are of the system. I'm glad I'm not an open source sheep...

Nick...

Re:Can you say "Na�ve"?

I'm glad I'm not an open source sheep...

you'd miss the payments from m$, wouldn't you? =)

Re:Can you say "Na�ve"?

[Titusdot+Groan]

Ummm, yes. Yes I can say naïve. It's pronounced 'Nick'.

Microsoft has shown it's willing to use every trick in the book to maintain market share, in fact they've been convicted of such abuses before. To be concerned about a new tool that will give them unprecedented control is not being "an open source sheep".

You do know that Microsoft can already charge an arm and a leg to get a certificate into the trusted root list on Windows? Imagine how much they will be able to charge when you can't even run software with out certification.

Re:Can you say "Na�ve"?

[Alsee]

I love the way that everyone is just flaming Microsoft, without any knowledge at all of what Palladium is or what the Nexus is or what the implications are of the system.

Some of those doing the flaming do in fact know what they are talking about. See my other post.

-

Re:In the tradition offollowing with the "leader".

[Quelain]

I think you're more likely to get a GNU/FOAD from RMS on that one....

Mental Illness Alert!

Anger problem.

Same Sh*t, Different Hardware

[ahodgkinson]

IBM and Intel, and a few other hardware manufacturers, probably with support from Microsoft, tried something similar back in 2000.

Then it was called Content Protection for Recordable Media (CPRM). This was hardware based system that encrypted the data on hard disks. The idea was that they would sell hard disks with hardware based encryption and key management. The goal was to provide a platform for DRM. One description can be found at The Register.

There was a lot of noise in the press for a couple of months after the announcements as the public opposition was voiced. Then the initiative quietly died.

It's not surprising that CPRM dissapeared, since no one could force you to use CRPM based hardware. Why would customers go out and upgrade/replace their perfectly good hard disks with something that imposes (to the ordinary user) complex and difficult to understand restrictions? Particularly when when normal unrestricted hard disks would still to be available.

I suspect (and hope) that Palladium will suffer a similar fate. Most people resist forced upgrades. Over the years, Microsoft has tarnished its reputation by continualy forcing users to upgrade. As the Windows cost/ownership hassle has increased, the minority of non-upgraders has grown and now includes even a few major corporations. Worse, it's also caused some previously loyal customers to switch to Unix and Linux.

With Palladium, the upgrade will require a new Palladium enabled PC, not just more memory and a faster CPU. This, combined with the restrictions, will make people even more reluctant. If Microsoft actually forces the upgrade, say by discontinuing support and sales of previous Windows versions, they risk a customer revolt. Microsoft realizes this (as evidenced by the recent Palladium name changes and smoke and mirrors announcements) and is treading cautiously.

• Note: I wonder if the real motive is to stop piracy of MS Office. Microsoft have managed to get most of the world hooked on Office and if they could get all the pirate copy owners to pay up, they'd have a pretty nice revenue stream.

My personal belief is that DRM is an unreachable utopia. It only takes one person to crack an instance of DRM protected media or indeed the DRM system itself. Once this has happened, then there's nothing anyone can do, technically or legally, to stop distribution of the unprotected digital content. Given the financial incentives there are plenty of clever minds willing to devote a lot of energy to cracking DRM systems. I'm not saying this is legal/moral, I'm just pointing out that it's inevitable that DRM systems will be attacked.

In the end, forcing copy protection schemes on users doesn't solve the problem and just ends up annoying the users. Examples of failed DRM are all around us: DVD's, Adobe's e-books, etc. Remember 'dongles'? They failed too. As Bruce Schneier says, encryption doesn't stop anyone, it only slows them down.

Alan Hodgkinson

Re:Same Sh*t, Different Hardware

[ddimas]

I agree. The only thing it does do is force the support of many different formats that do the smae thing, many of them sub-optimaly.

They are the same organization.

Haven't you heard? The U.S. government is now a subsidiary of Microsoft. Or is it the other way around?

Palladium and anti-virus

[sheriff_p]

I wrote what I consider to be a fairly informative article on Palladium and the impact on the anti-virus industry here:

http://www.virusbtn.com/magazine/archives/200209/p alladium.xml

Summary:

- It's foolish to expect it'll stop viruses
- Microsoft will have the anti-virus industry by the short and curlies
- Microsoft PR is impressively ... uh ... PR-ish ;-)

Facts vs opinion

Why dont you people bash Microsoft anymore? It used to be so much fun.=)

Indeed. Increased activity from MS-Astroturfers in prep for April's roll-out?

Also notice the change in strategy by MS-apologists and MS-Astroturfers: steer the argument away from discussion of facts into a discussion of taste/style/opinion then conclude with a statement that taste/style/opinion is of equal merit.

Microsoft knows that its products cannot compete on technical merits which is why the EULA forbids publishing benchmark results. It also knows that Enron-style book keeping can't keep up t the illusion of profit indefinitely.

Intels new processor =protected area for paladium.

I read where Intel is designing the new procsesors with features for MSofts Paladium. It will have a protected memory/cache inside the processor that can't be accessed and for the sole purpose of decrypting/encrypting stuff in this area with additional processor instructions or MSofts s/w.
Thus this area is for DRM usage and what not that the user can't tap into.

"I wonder how Microsoft will convince..."

[Joey7F]

"I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take. "

Not long. A glimpse from the future...

Microsoft Windows XP2 makes your favorite operating system even more user friendly.

Tired of viruses, spyware, and popup ads that aren't from Microsoft? So are we, so XP2 utilizes a brand new technology called Palladium. You can now be confident that only Microsoft tested, and approved programs can run on your computer.

Security is a good thing (TM)

Back to the present...

--Joey

Re:"I wonder how Microsoft will convince..."

[mrkurt]

Tired of viruses, spyware, and popup ads...

Of course, Microsoft has been beaten to the punch on this, as right now, running Linux, Mozilla 1.3, and Evolution takes care of all of these concerns, with no loss of control over one's machine.

*sigh* [thinks on how to publicize this...]

Re:"I wonder how Microsoft will convince..."

*sigh* [thinks on how to publicize this...]

You start by not showering and living in your parents basement. Second, you write tons of unintegrated crappy apps that look terrible and have poor documentation. Third, always comment on how software freedom is the most pressing issue in the entire world.

Wars, pestilence, famine, and death are all secondary to the worst threat the world has ever faced, the Microsoft EULA.

Re:"I wonder how Microsoft will convince..."

[TheAwfulTruth]

That editorial statement was completely false, there is no need to actually use it as a launching pad for more anti-MS FUD.

Could you please explain where the loss of control in Palladium is? You can't, because there is none. And in fact, as you intimated (albeit sarcasticly), it actually increases a users control over their own system.

This is something that Linux will have to copy sooner or later and at that point it will be hailed as the best security measure ever invented.

Re:"I wonder how Microsoft will convince..."

[Joey7F]

There is not from an experienced user's perspective. However, most people will just accept the "trusted computing" initiative and further solidify an Microsoft monopoly. If you want to be "trusted" it will likely involve giving Microsoft a fair amount of dough.

This does not mean the effort isn't well intended or that it is going to be the end of freedom for computing. It simply means that Microsoft will need yet another eye on them.

--Joey

It's not irony ..

That makes sense, to defeat your enemy you must *KNOW* your enemy. or at least as much about them as you possibly can.

Who Cares

Who Cares.

Darn!

[turgid]

I darn you to WinHEC, a Fate Worse than Death!

Use MDAC

MDAC is good, don't have to buy SQL Server

It's the marketing

[nicotinix]

I have read many good points here and I am sure there are more. But let's face it, what it really comes down to is marketing. 95% or people have no clue and just believe what they are told.

Decisionmakers, who are arguably more informed, are being swayed by "better" marketing. I remember going to a Miscrosoft OEM event in 92. I got to meet Bill Gates and a bunch of other executives. We had a great party with George Benson playing live. It was impressive. Now that takes care of another 3% and the remaining 2% are just written off as a pain in the butt.

As much as it pains me, I predict a huge success for Palladium and I vow NEVER to let it enter ANY of my systems.

Fritz types?

[_pruegel_]

Yeah, I know, OT but English is not my mother tongue. I thought, Fritz was some reference to the Germans but this does not really make sense here, does it? What does "Fritz types" mean?

Re:Fritz types?

[_pruegel_]

Ok I found it myself using Google. It's about the "Fritz chip" and Senator Fritz Hollings. From The Paladium Project: It's called the Fritz chip in honour of Senator Fritz Hollings of South Carolina who has been tireless in his efforts to get laws passed restricting the use of computers

Re:Fritz types?

[jonatha]

Yeah, I know, OT but English is not my mother tongue. I thought, Fritz was some reference to the Germans but this does not really make sense here, does it? What does "Fritz types" mean?

It's a reference to Ernest "Fritz" Hollings, Democratic U.S. Senator from South Carolina, who has been the driving force behind "mandatory DRM" legislation.

You may also know him as the "Senator from Disney."

That's xbox - home/coorporate computer edition

The xbox does exactly that. The developers probably have to for the XDK and pay a royality fee to MS.

2005 until it is *introdouced*

[Kjella]

Many people are running an old OS for many years. It's not like everybody has switched to WinXP either. Personally I know quite a few that are likely to stay on Windows 2000 until it is EOL'd.

But yeah, I imagine it could be pretty anal pretty soon. Import email and contacts from Outlook to Evolution? Sorry, protected by Palladium. Open that .doc file? Sorry, protected by Palladium. Watch that not-a-CD/DVD-but-shiny-disc? Sorry, Palladium only.

With their new "trusted" programs they will seek to destroy interoperability with Linux. Weakening interoperability with their own old products is just a bonus to make people upgrade. If you have read up on monopoly theory, they want to "obsolete" their old products anyway, to avoid competing with "themselves".

If you ask what the incentive for the consumer will be, it'll be the lack of choice. Don't want to buy a copy-crippled CD? Do you think they'll give you an unprotected one? I expect Microsoft to work hard to provide "exclusive" applications and content that you can only get on a Palladium-enabled machine.

Also remember that Microsoft has considerable leverage themselves to provide Palladium-only software, in particular when it comes to MS Office. If they can portray Win/Office Palladium as a superior combo (anti-trust yadda yadda) they *will* sell well.

Kjella

My take on trusted computing...

[El+Camino+SS]

IF you really want trusted computing, do what I do...

Never put ANYTHING IMPORTANT on a computer with worldwide access. It's that simple. If you are deathly afraid of theft, pull the broadband out of the wall. That's trusted computing. I call it trusting yourself. It is the only way.

Trusted computing is a hoax. It is a concept that goes against human nature. Throughout history there have been criminal activities. People will always try to get something illegally, or through so little effort that it is nearly criminal.
The only method to trusted computing is the old methods, file it up, lock it up, seperate it, let only trusted members near it, and apply human protocols to make sure it stays secure. Just like we have been doing with sensitive things for generations.
Anyone that believes that this "trusted computing" scam won't be ripped apart in under a month is insane.

Stick with the human methods. No amount of code will ever save you from security problems, no matter how deep the code runs.

How will microsoft get consumers to buy it?

[walker2030]

Well, quite simple. Microsoft will actually package Nexus (Drug also know as 2C-B) with the product.

1st and 1st

[ryanvm]

"What street are you on?"

"I'm on First and First. How can the same street intersect with itself? I must be at the nexus of the universe!"

- Jerry Seinfeld and a lost Kramer, in "The Maid"

BSOD Frequency

[Latent+Heat]

The BSOD problem is usually in the application inasmuch as Windows doesn't just die on its own. An application makes a call on a NULL object pointer inside a thread . . . and well, you get the idea. I know, I run apps like this -- my own, when they are being debugged. Of course one has the darndest time fixing such a bug because the program always crashes inside one or another Windows call where a debugger or trace statements do not go, and if you do this enough times, Windows BSOD's.

I run Windows 98 for weeks on end (Web surfing, compiling programs, testing compiled programs) with hardly a BSOD, and when I do get BSOD's they are mostly attributable to something I did to an application during development, which I can track down with a lot of gnashing of teeth.

If you are BSODing 3 times a day, it is some or another software you are running. Yeah, yeah, it is Windows' fault because there is very little defensive programming (validation of parameters of API calls) inside Windows, but it has to be some application that is doing it.

Re:BSOD Frequency

[Ivan+Raikov]

If you are BSODing 3 times a day, it is some or another software you are running.

That's the problem right there, running an application, even a small one. I have found Windows to be extremely stable if you simply don't mess with it by running applications. But users insist on doing just that, poking and prodding, clicking and dragging, making demands on the OS, and then they're surprised when the thing crashes and blame Microsoft. Same thing with viruses, users running things, and clicking on things, and displaying things with executable content, busy, busy, busy subverting the function of what is otherwise a very stable operating system.

Re:BSOD Frequency

[fitten]

I have a number of boxes that run Windows that run 24/7 (except for the patch reboots) used for development, SQLServer, etc. and I haven't seen a BSOD in around 2 years.

Very important rule for Windows: Buy and use only name-brand, quality hardware. If you buy cheap crap hardware that you've never heard of then you get what you deserve.

Re:BSOD Frequency

[peaworth]

that run Windows that run 24/7 (except for the patch reboots)

So you reboot, what, every couple of days then?

Conference Naming...

[Jerk+City+Troll]

Originally, the WinHEC conference was called "WinHELL", but public relations decided that "HELL" would not be suitable for young children, including the immature people who insist on running Windows.

There are three ways to stop Microsoft on this.

[Morky]

Airstrikes, airstrikes, airstrikes.

All your base...

[flupps]

All your Next-Generation Secure Computing Base are belong to us...

Just don't upgrade

[walterbyrd]

By the time this paladium comes out, 3ghz PCs will be the norm. How much do you need for a word processor?

Ignor the paladium chips, and just use the old 3ghz chips. Run old XP or switch to Linux, or Mac.

Eh, no biggie.

[nege]

I never worry too much about Windows and MS...as long as they are not backed / enforced by the type of legislation mentioned in the post, you still have a CHOICE. And as far as I am concerned, the more DRM and cripling technologies that MS puts in its OS, the more I and other users will be switching to Linux (I am about half and half these days).

MS will ace this demo.

[MongooseCN]

The goal of Palladium is to prevent users from running certain software on their system, and as we all know MS Operating Systems are great at preventing things from running.

Is Palladium suppose to carry over to things off the computer? Because I know many businesses that wouldn't run if they used Windows.

Penis envy..

It seems he's touched a sensitive spot,no? Did your woman leave,deciding she'd like it better here in the USA?
Well if she didn't,I bet she wishes she would have.And that's just something your sorry foreigner ass will have to live with.
Her,dreaming of some liberating cock,from heroic Americans,and you standing there with a limp dick in your hand and ashamed look on your face.She sneers at you with contempt as you turn to hide your inadequacy,knowing she might be stuck with a little man..

No, you are wrong!

You know full well that when you "buy" software, you are paying for a license to use it, and you agree and accept the license agreement on software you install on your computer. If you don't like it or agree or accept it, don't install it and get your money back.

Seems pretty simple to me.

I think I am wrong..

[Neck_of_the_Woods]

I think I am wrong but can't let it go. Didn't people bash Apple for making them submit program code back in the day?

No idea why that is a splinter in my brain.

"bring out the 2003 server"

[sirshannon]

the "2003" server was originally supposed to be released at the same time as XP Pro and Home. So, to answer your question, no.

When Windows becomes the OS of the United States

[DukeLinux]

This was stated in the body, but I think that there could some truth in the assertion that Windows Palladium could become mandated by law. M$ does a nice job greasing the political wheels in Washington as seen by the (in)Justice department cave-in under Bush/As(shole)croft. Yep, M$ Windows could be mandated to "fight terrorism" and improve the economy (Bill's). Please visit me in jail...I will give up my Linux only when you pry the keyboard (rodent optional) from my cold dead hands....

Typical

[Erris]

Actually there is, while ycan use an ODBC driver with C# at a programmatic level, the IDE happily tells you that only Access and SQL Server are supported when you attempt to use the IDE's tools to access the datasource, link it with controls etc

Great! You can download the driver but M$ refuses to play with it. I suppose you can get the "pro" version and it will work for now?

not real

[Erris]

It is surreal how easily Microsoft is able to employ such blatant and souless cash grabs without sounding off alarms in the business sector.

The alarm whent off more than a year ago, despite the blither of the B$ trade rags and even they are looking around in panic. Anyone in IT not over 50 is looking hard at M$ alternatives. Anyone in IT who has not set up a Linux box yet is incompetent, a fanboy or both. The pooch is screwed and no amount of dumping can save them from free software that works better then their own.

at run time

[yerricde]

Because at load time the buffer overflow hasn't happened yet, and the code hasn't been overwritten.

The Java virtual machine enforces mandatory bounds checking on arrays, and I'm pretty sure the .NET virtual machine does so as well. Remember that managed code does not use pointers.

secrets

[Erris]

Now, what is the access level of system administrator, backup operator, software vendor? You're going to do anything like this on a pc??? You want any of that mess on a home computer??? Don't think so.

Now that's an iteresting question. How can I be root on a machine that contains information I should not look at and don't want to know about? I can imagine encryption scheemes based on files maintained by a user that I can't read. Hey, you might even try to use some kind of fancy authentication software like Kerbos. There has to be a way to do it with software and that can be translated on any platform. In any case, the answer is NOT to give control to M$ through Paladumb. In fact, you should never trust closed source code with anything important.

Unfortunately...

[HiThere]

Unfortunately, they don't need to convince my boss. He's quite convinced that we must go with MS, and that there's nothing wrong with it anyway, and "if they get too overbearing, their customers will stop them". He doesn't seem to get that "their customers" means him.

Effort is already underway.

[Erris]

Unless you have been lost at sea for the last two years, you must have noticed that:

• Hacking has been associated with anti-US activity and war time sabotage.
• Copying files has been criminalized by the No Electronic Theft act and DMCA.
• Modifying hardware has been criminalized by the DMCA
• A massive propaganda effort has been launched to support this kind of control.

The propaganda effort is most distrubing and effective. It includes the first item but also includes children's shows, such as The Proud Family, intimidation and guilt by association. The argument goes that unrestricted copying will deprive artists of their livelyhoods. Paradoxially, people are being made to think that their own work has no value and is open to all. The best example of this is the "no expectation of privacy" for email. The government's efforts to get at that information and the images they have created for people like Kevin M, are very distrubing. The upshot is that people are starting to believe that they have no control over their computers or personal data, but that this is a necessary and good thing. Many government, entertainment, publishing and telcom groups have the same goal in mind.

In the short term they will sugar coat things by promising more movies and other entertainment for your PC if only you give up a little control. As soon as enough people have given up enough control for long enough laws will be passed to enforce that control universally.

This effort represents the greatest threat to free speech and press ever. If hardware control is placed on all devices capable of copying digital data, there will be no free presses.

Is this a "In Soviet Russia" joke?

[TomDLux]

In Redmond Washington, the programmer pays to be allowed to write software ...

The Way I See It

[RighteousFunby]

1: Microsoft sees Partition Magic, who come up to them and ask for certification. M$ say "Fine, just take out the ability to fiddle with Linux/other non Windows partitions". N00bs buy software, don't care. Linux dualbooters buy software, find their software is crippled and go apeshit. Red Hat, SUsE, Gentoo et al get assraped.

2: Microsoft refuses certification for Corel Wordperfect Office, Lotus SmartSuite, OpenOffice.org (yeah fucking right!!!). Microsoft becomes ultimate monopoly. Goto 1.

3: Little granny uses her computer, then finds it fucked because grandson used a non-trusted product. Little granny gets pissed off at computers. Little granny never goes back.

4: Mr Goodboy buys a new PC with a box set of Red SuSE GNU/Linux. Tries to remove Palladium, can't-Palladium fucked his hard disk by write protecting it whenever it wasn't running! Mr Goodboy formulates plot involving BillyBoy and some whips.

5: Profit!

i have a confession to make . . .

[LifesABeach]

i can see wind-doze zombies, they're everywhere, and they don't know they're wind-doze zombies!

Decoding binary name

[SporkLand]

101011010 or whatever the guys/gals code up top is, converts to 666 in decimal.

Bill Finally Getting What He Wants

[g_goblin]

I think Bill is finally getting what he wants. The control of millions of desktops at his fingertips. This would be his own super computer that only allows software to be installed which services his media center in his new home. It's obvious to me.

Seriously though, I think if this really happens, my app development will be totally *NIX and Windows will go out the window and into the shallow end of the gene pool. More feed for the herd.

Suck It!!!!!

WinHEC...

[Junior+J.+Junior+III]

So, when they actually roll Palladium out for real, will we all be in WinHELL?

Doomsday scenario

[Junior+J.+Junior+III]

ISPs require that anyone connecting to them be using Palladium. That'd pretty much be the end of the road for Free (liber) desktops.

Maybe MSFT gets the government to pass a law in the interest of national security, to prevent "hackers" from using "rogue" OSes like Linux to run amok on the internet. Apple users scream foul, but no one cares abou them since they're only 3% of the market. Corporate Unix users don't care either, because they have special "professional" level accounts with their ISPs, and aren't bounded by "consumer grade" service restrictions, and as long as their servers still work, they're happy.

Think it couldn't happen?

Borg Nexus

[Sajma]

It's eerily appropriate that Microsoft calls the place through which all things pass "the Nexus". The Borg have a Nexus, too: a set of stabalized wormholes through which Borg cubes can reach the entire galaxy (Voyager final episode). Things that make you go "hmmmm..."

Name change...

[Alsee]

There has been quite a bit of negative press about Palladium so Microsoft has changed the name of the project to "Next-Generation Secure Computing Base". They want to be able to say anyone criticizing Palladium is talking about something that no longer exists. They made sure it does not have a catchy acronym to make it hard to comoplain about it, it is NGSCB.

I hereby propose we pronounce "Next-Generation Secure Computing Base" as NAGSCAB. That's a nice ugly title for it.

-

Funny?

Quote a Matrix scene, replace the word "Matrix" with "Nexus," and suddenly that's +5 Funny?

Slashdot is in the pits.

Simple: Here is how they will do it.

[grolschie]

I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take

Simple, they are planning on making people so dependant on their plaform, that they will have to upgrade if they wish to continue on the Windows platform. Much how they forced people on Win95 and WinNT to upgrade if they wish to continue to run certain software designed for Windows platform or to keep their computers secure.

Examples that come to mind:

• Anything that requires DirectX9 or newer.
• Anything that requires IE6 or newer.
• Anything that requires the new Windows installer eg: Sonic Foundary's AcidPro 3 or newer.
• Anything that requires the .NET framework.
• Any product that relies on the Media Player 7 or better.

This time, they will get away with it easily because:

• Excuses like: "The new features required by product x cannot be implemented in these older OS's without a complete rewrite from the ground up."
• They have set a precedent by doing it already.
• The new licensing scheme is setting them up for this strategic move.
• MS generated FUD regarding Open Source Sofware and alternative OS's.

Their goal is to get people so dependant on their system:

• Companies will have invested soo much money on MS technologies, that to write it off would be hard to justify.
• Systems, Databases, E-Commerce all built on expensive MS "solutions" have got many by the balls already.
• The sheer number of people who have done it the MS way for years, and the cost of educating these people.
• Much like any country under oppressive dictatorship. It's sometimes easier to go with the flow, rather than revolt.

Re:I think the Lindows guys should run this link..

[grolschie]

Isn't there a car aleady called that?

Try "Lexus". ;-)

Re:america sucks -hhmmmm.....

New Zealand, Canada, England, Scotland, Holland, France, all come to mind.

America is NOT free. Kids can't even pray (even silently) in a public school grounds. Freedom of speech, first ammendment, freedom of religion, blah blah blah.

It would seem the the "Land of the Free" has imprisoned many "suspected" terrorists without trial for well over a year in Cuba. No lawyer. Presumed guilty, no chance to prove innocence.

The "Land of the Free" also has the largest number of people locked away in it's prisons also.

Somebody spilling bleach doesn't count...

...as a chemiccal attack.

How long?

I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take.

How long did it take for the media to announce that >50% of the people were now in favor of the war on Iraq?

loss of control

[DunbarTheInept]

From the blurb:

I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take.

If someone is already a Microsoft customer, then that person already believes loss of control is a good thing, or they wouldn't be a Microsoft customer.

There's no need to "convince" consumers.

[ElGanzoLoco]

"I wonder how Microsoft will convince consumers that loss of control is a good thing, and how long the convincing will take.

It's simple: they won't tell anything toanybody; end-users will happily go buy new Palladium-enabled computers (and the rare birds actually *looking* at the box they're buying will see a cool "Palladium/Secure" logo, think "hey, cool, less virii and evil hackers around!" and buy it). And when everybody will be palladium-enabled, well, it will be too late for anybody to step back.

I mean, Microsoft has come to a point where they don't even need to market/explain their products. This is what is happening with XP: poor anticipation, few upgrades from previous versions of Windows to XP, yet XP is shipped with virtually every new PC on the planet.
99% of the people who buy computers, when asked if its a PC or Mac or what, just *don't know*. And don't care. Turn on, type text, save, print, turn off until next essay/letter/whatever. And don't try to explain why Palladium is a screwed scheme, or that Open Source is cool, or that OS X is what they need: they'll just go with the typical "oh, y'know, I don't know about computers, I don't understand what you're talking about, and I just want to type text anyways".
This settles it: the unsuspecting end users will be screwed before they even notice.

But then what about companies and businesses? Well, the press (even here in relatively "computer-illiterate" France) has issued worried articles about Palladium. But no-one cares because companies will never, ever switch to anything that's not Microsoft. I mean, they've become accustomed to running NT servers, Windows clients, Outlook/Entourage/Explorer/Word/Excel/PowerPoint. All their proprietary, custom-tailored software has been written for DOS/Windows exclusively, often (always?) by third-party companies and I wouldn't be surprised to learn that they haven't bothered to save the source code. (Read, all their vital software is TIED to Microsoft platforms)

Yet, it sucks. But then, you know, life as a whole sucks as one big fscking whore, so it's a non-issue...

Palladium - Marketing vs Reality

[Adrian+Lopez]

I don't know what MS is doing to market Palladium these days, but their old marketing hook - that Palladium allows users to protect their privacy by limiting what others can do with their personal data - is misleading, manipulative and underhanded.

As a way to protect people's privacy, Palladium is useless. If you as a recepient of somebody else's data are able to read it, then you're also able to copy it: you can use a camcorder to copy video, a tape recorder to copy audio, and a pencil to copy text. The copies will be reduced in quality, but the message itself can still be disseminated.

As a way to protect redistribution of copyrighted material, it is "good enough": because analog copies of movies and music are significantly reduced in quality, and because copies of protected software are non-functional (hacked copies excepted), content producers benefit significantly from such a system.

People who think Palladium is purpose neutral - that it has significant uses outside of DRM - should give some thought to whether such tight control is really necessary to achieve a reasonable degree of privacy and security.

Make no mistake, Palladium's primary purpose isn't to enhance consumer privacy and security, it's to cater to the whims of content producers. It will be a sad day when I can no longer move my software from one computer to another, or when I'm no longer able to print out documents without the publisher's permission, or when I'm only allowed limited-time access to software or documents I've purchased.

German speakers!

[LibertineR]

You are such a fool.

Every one of the countries you mentioned, including Canada if you consider Quebec, would be speaking GERMAN now if not for the U.S.

Feel free to head to any one of them, and then convince these governments to start picking up the tab for their own National Defense, without the support of the America.

Just see how far that gets you, you idiot.

Freedom isnt free.

I can say, "uninformed", will that do?

[anthonyx]

I love the way that everyone is just flaming Microsoft, without any knowledge at all of what Palladium is or what the Nexus is or what the implications are of the system.

With the ever open(cough) and absolutely honest(cough, cough) Microsoft Corporation dispensing the information, will I ever have even a chance of discovering the truth of such things?

Dare I trust the information they have provided or the assurances they have given?!?

What of Microsoft's business partners in this, can I trust them? How confident can I be that they have been neither manipulated nor influenced?

Do I want Microsoft involved in anything that has to do with authentication?

Can I count on the wisdom of my fellow consumers to protect me from scams that should have no chance of working in a free market?

caveat emptor

I hope

they all have heart attacks and die on stage during the presentation and that the demo machnes burst into flames, then SATAN pops out of the burning boxes and with a huge sickle, whacks their heads off as they are on their knees grabbing their chests in pain..

"Signed" safe software

[dh003i]

According to Palladium:

Safe software = made by Microsoft

Unsafe software = everything else