Trusted Computing Group Formed

An anonymous reader writes "How does it come that the formation of the Trusted Computing Group goes unnoticed at /.? On Wednesday, heise had the story. At last, we will get `easily-accessible specifications for trusted computing standards that will ultimately let people work, conduct transactions, and use computing devices with a new level of confidence' ..."

Re:Great

[chrisseaton]

I hope that's mean't to be a joke, mate.

Apple is buying the record company - not the other way round.

From the About Us section of TCG's website

[mikeophile]

TCG Members

Promoters
* AMD
* Hewlett-Packard
* IBM
* Intel Corporation
* Microsoft

Contributors
* Atmel
* Infineon
* National Semiconductor
* Nokia
* Philips
* Phoenix
* Sony
* STMicroelectronics
* VeriSign, Inc.
* Wave Systems

Adopters
List available shortly.

ie, when there are any

Translation

[watzinaneihm]

Mandatory babelfish translation

Or a zdnet article

Interesting quote

related articles

"Although TCG is being billed as the TCPA's successor, most of the TCPA's members had no idea of its imminent demise. The TCG sent out a mass e-mail message to all of the former group's members this morning at roughly the same time the press release announcing the TCG's formation went out."

-- eWEEK: Trusted Computing Group Forms

Re:It's because ...

[CynicTheHedgehog]

I would have just modded you down, but I'm tired of this kind of ignorance. There are multiple forms of trusted computing, some innocent, others questionable. Since 2000 IBM has offered an (optional) ESS (Electronic Security Subsystem) in their Thinkpads and Netvistas. All it is is an embedded smart card with a keypair and some crypto functions. It's a passive device...if you feal like encrypting something then you have a convenient mechanism with which to do it. Before that, in 1998, SISTex offered the Assure EC networking device that merely served as a secure interface between an IBM compatible workstation software, local resources, and the network.

TCPA specifies a similar device (the Trusted Platform Module), only it also has a few registers used to store and report security integrity metrics as well. Again, a totally passive device. From what I gather, the idea is that the BIOS and/or OS will use these registers to store the version of software, virus checkers, etc. Another system can query these registers to see if you have what they're looking for in the way of security (I wouldn't want to accept E-mail from a server that, say, wasn't patched for Code Red).

So there's a key stored in your TPM. Worried about privacy? Don't be. That key is never used except to sign other keys, alias IDs, that you use temporarily to conduct transactions. Like getting an alias for your credit card number when buying something online.

All of these are passive devices that you, the operating system, or third party apps may or may not use. None of these technologies have functions that allow the conditional execution of code based on security metrics. That is an abuse that must be built into the OS, which can be done today in software.

Then there's Palladium, which is *not* TCPA. It's not even based on the TCPA. It's similar, but it consists of both hardware and software components (Windows) and is potentially much more sinister. Palladium's only member is Microsoft, and I don't really trust that. But I don't have to, because there are now ubiquitous, open standards (TCPA) that will likely take favor.

We need trusted computing. It's coming. You can help yourselves by at least being informed:

"The Need for TCPA" (David Safford, IBM)

"Clarifying Misinformation on the TCPA" (David Safford, IBM)

Re:It's because ...

[Alsee]

I would have just modded you down, but I'm tired of this kind of ignorance...

"The Need for TCPA" (David Safford, IBM) [ibm.com]

"Clarifying Misinformation on the TCPA" (David Safford, IBM)

I have read both of those documents by David Safford. They certianly do counter many false arguments against TCPA, but they do NOT in fact counter valid criticism of TCPA! His defence of TCPA completely fails. The last two paragraphs of my second E-mail exactly why.

I actually had a brief E-mail correspondence with David Safford. He replied to my first E-mail, and failed to respond to my second E-mail. Here is the exchange:

----------

ME: TCPA - simple solution to eliminating opposition

I just finished reading "Why TCPA" and "TCPA Misinformation Rebuttal". There is a simple way to eliminate virtually all of the opposition to TCPA.

None of the benefits of "Why TCPA" rely on security against the owner of the machine. The "TCPA Misinformation Rebuttal" claims that TCPA is not designed to to be secure against physical access. Every criticism of TCPA that I know of is based on fact that the owner of the machine is DENIED access to contents of the TCPA chip.

The solution should be obvious, include a physical switch to enable access to the contents of the TCPA chip. Perhaps a button that needs to be held down during power-up. This gives the critics everything they want and it in no way interferes with the claimed purposes of TCPA - it's not supposed to be secure against physical access anyway!

Any resistance to including such a switch can only be proof that the critics are right. Maybe I'm cynical, but I don't think the TCPA alliance will ever approve it. I believe the driving force behind TCPA is to make computers "secure" AGAINST their owners and so corporations can make PC's "trustworthy" tools against the "untrusted" owners.

I'd love to be proven wrong. If TCPA comes with an "owner override switch" I'll be the first person to run out and buy it.

----------

Savid Spafford's reply:

It is not intended to be secure against owner authorized physical access (ie access from someone who knows the pin for a given TCPA protected key.) We certainly do want to defend against theft of a laptop. We don't want to had over your encrypted filesystem master key to someone who has stolen your machine.

TCPA does have a TPM_TAKE_OWNERSHIP command, which, given physical access to the machine, resets the chip, deleting all user level keys.

Thus the physical owner of the machine can take full control, but cannot see any secrets from any prior owner.

dave safford

----------

Me:
Thanks for your reply.

"We certainly do want to defend against theft of a laptop."

Contradiction.
Your TCPA Rebuttal said "TCPA chips have not been designed to resist local hardware attack". If it can protect a stolen laptop then tamper resistance is not "pure speculation", it's already here. It voids the claim "show[ing] that TCPA was not designed for DRM" and instead shows that TCPA "requires...you don't trust the owner".

It is not intended to be secure against owner authorized physical access (ie access from someone who knows the pin for a given TCPA protected key.)

Great! If you think my idea for a mere switch to enable access was too simplistic then feel free to require the owner to supply a PIN to enable the export of the unencrypted keys. Of course, the owner needs to be able to know the PIN and to hand it to the TPM at will. A repeat TAKE_OWNERSHIP would still wipe out old keys.

And it can still be secure against thieves because they don't have the owner PIN.

Your TCPA rebuttal was informative and dispelled some false criticisms, but it did not address the real source of the criticisms. Between your email and "Why TCPA" and the TCPA website I still haven't seen a single justification to deny an owner access to his keys. To