Slashdot Mirror
Dartmouth Project Combines Linux With TCPA
SiliconEntity writes "A new project from Dartmouth College demonstrates significant advances in combining Linux with TCPA. The software turns a Linux PC into a 'virtual secure coprocessor', which is able to check that none of its software is compromised and even (in a future version) prove its integrity to a remote system. Full GPL source code is available for the 2.4 kernel.
This work is separate from the earlier IBM research which also combined Linux with TCPA, with the new project apparently more complete and with a road map towards a very functional Linux based trusted computing system. This could be an important technology for Linux to challenge Microsoft as it pushes forward with NGSCB (aka Palladium)."
This is innovation. Microsoft, from what I understand is planning a pay-for-it system where trusted means, that someone bought a liscence. IT will be interesting to see how well ms-trusted-apps stand up to a similar test.
I think you'll find Linux will have it well before MSFT does... and it'll work... and it won't require special hardware either. And you'll be able to double check the source code instead of having to take it on trust...
Donald 'Duck' Dunn: We had a band powerful enough to turn goat piss into gasoline.
>Full GPL source code is available for the 2.4 kernel
Please make sure that all the efforts are undertaken to remove any references to the construct 'main()' as it will infringe on SCO copyrights
Desi Noise, Live!
From the PDF :
The exact relation between TCPA and the former Palladium is not clear; one suspects that at some point in the TCPA design process, Microsoft decided to withdraw and build their own variant.
This probably means the two technologies will not be compatible with eachother, files created under one will not be able to be opened under the other.
correction... just managed to get into the site... it will require a "Trusted Computing Module" on the motherboard.
Donald 'Duck' Dunn: We had a band powerful enough to turn goat piss into gasoline.
The TCPA is a comitee and is not something that belongs to Microsoft, although they are part of this comitee. IBM are also working on a TCPA technology. Palladium, or whatever it is called now, is perhaps the most "famous", but definately not the only one.
Where's an actual secure coprocessor?
Kids today are tyrants. They contradict their parent, gobble their food, and tyrannize their teachers. - Socrates 400 BC
http://216.239.33.104/search?q=cache:nZrXhIU65ocJ: www.cs.dartmouth.edu/~sws/papers/msmw03.pdf:&hl=en &ie=UTF-8
I hate to break it to you but MS did NOT create TCPA!!!!
Perhaps you mean they where following in MS's footsteps by creating an OS that works with TCPA? WTF is wrong with you? Haven't you ever heard of the term vaporware? lol....true I think it's safe to say MS actually has one but which do you think is going to produce one first to the market? TCPA isn't MS's pet project...it isn't MS's IP...
Sounds like just the thing I need. That hacked together script that I currently use to md5sum all my important system binaries + files and verify them against the Known Goods database every 2 minutes is going out the window along with chkrootkit just as soon as I can go over every LOC with an STM and run this fine piece of software. Thanks be to you my fellow linux-users, I have finally found people who wear more layers of foil on their heads than I.
Anti-social? My code is just platform-specific.
Well, it's been fun using Linux. Off to *BSD now, I guess.
The difference between Palladium and TCPA (Trusted Computing Platform Architecture) may be not obvious at the technological level but it is very simple - TCPA aims at integrity of kernel and system components - to assure you that your system can be trusted. It is easy to achieve with open software, because the system must defend itself from attacs from outside. Palladium, on the other hand, uses similar technology to make sure that the user does not do anything else than what is allowed by content owners. In that case software openness is impossible - otherwise you could do some harm to their system - attacking from inside...
So similar architecture from technical point of view - but different aims yield different results.
You can defy gravity... for a short time
We want to fight Palladium by fighting acceptance of the idea that the computer should control the user and how he can access the data on his own machine, NOT by developing something functionally equivalent that happens to run under Linux.
Building a DRM system of our own, even if it is open and standards based, just strengthens the paradigm that will leed to an Internet where no data can be accessed as plaintext, applications that are allowed read data have to be accepted and certified by the media industry, and computers exist no longer to enable, but to control, their users.
Please protest against Palladium, TCPA, and all the other DRM proposals by refusing to have anything to do with them: not by strengthening their hand.
(And before somebody replies that TCPA isn't about DRM: Bullshit! Look up what an "endorsement key" is in the TCPA vocabulary.)
*inserts obligatory SCO commment about 'compromised software'*
Quid festinatio swallonis est aetherfuga inonusti?
Africus aut Europaeus?
Who will be the first to start selling mod chips for pc computers?
as part of their plan to seize the internet and digital stuff in general, they get to hitch Linux up like a draft horse to do it.
Something that was supposed to set computers free is being used to help lock them down.
It's Christmas everyday with BitTorrent.
I love this bit from the microsoft ngscb pagen "Data can be protected with a secure pathway from the keyboard through the computer to the monitor screen, preventing it from being secretly intercepted or spied on" Yeah like this is a major security problem with current day computing. I've always wondered if my information is secure between my keyboard and the monitor :)
Its the end of the world as we know it...
(I could have typed more, but then I would probably owe RIAA 150.000$ per slashdot user who read this)
(all 5 of them since I have a bad karma)
// instant - "I for one welcome our new Decaff Coffee-Flavoured-Coffee Overlords"
Think about this for a moment before you call me a troll, mark this post as flamebait, or bash me for being a MS supporter on the issue. It's not funny, it's serious.
Palladium/TCPA is a security measure, not just a DRM platform. Enabling DRM is impossible in the sense that DRM doesn't cover the analog hole. As long as people have the ability to reproduce video and audio, DRM will only prevent people who do not have other recording mechanisms from copying raw data. Digital cameras get cheaper each day. Multimedia devices are falling in price and becoming higher quality every day. Today I saw a $50 DVD/CD/MP3 player. Star Trek like systems will be here before most of us die of cancer.
Now lets get back to our topic. Security. Palladium. The thing which Palladium prevents is unsigned code from executing. It's literally a form of sandbox for x86 code. Say that you write a program which attempts to install itself into my system registry and that installer mechanism isn't signed, my computer can prevent you from installing software on it. Of course, if I (as the user of the machine) am given the choice, and let you install the software anyway, knowing it is unsigned, then at least I can share the blame for the insecurity.
Bill Gates is no stupid man. It is right that these systems are systems based on trust. If you don't trust Microsoft, it doesn't work. If the magic key-granting-key for granting root keys is ever discovered or hacked at Microsoft headquarters in Redmond, then the game is over. Of course, in the Linux world, that magic key is somewhere else. Maybe there is a new key for each distribution.
Now, I'm not saying that this system doesn't have potential for being abused. If I sign my worm for Red Hat Linux, then the protection system is useless. Worms might still be able to get inside via the older flawed software. Microsoft needs legacy applications to continue its business. The reason that MS owns so much of the computer market is that it had so much of the application share before and it didn't ruin feature compatibility with newer versions, among MS apps and with 3rd parties that were important.
The initial hole in Palladium is the same hole in DRM: In order for it to be successful, it has to work. DRM doesn't work (analog hole, memory and simulation based attacks), and Palladium may make a huge dent in internet worms, but it won't stop Macro Viruses or prevent IE from popping up new windows.
Palladium is one step in the right direction: locking down the OS to only perform installs of "trusted"/signed software. There are several other serious security measures which need to be taken:
1) Buffer Overflow prevention
2) Unsigned Device Driver prevention, and strict certification of Device Drivers
3) Lock-Down of all user and administration activities into appropriate accounts
4) Making all of the above trivial to set up for a newbie
Microsoft isn't much farther along than Linux in any of these areas, but Linux won't gain any momentum among novice users if it doesn't improve in ease of use. The next 4 years should be very interesting in the software market. The industry has matured a great deal recently after its adolescence period/dot com crash.
Could it be that the Enforcer developers didn't know about the classical tool for Amiga, Michael Sinz' Enforcer? It now comes with source, if you haven't noticed.
I cant wait for this to blow up in everyone who supports its face.
They will say now that "its about security" and due to all the recent hype around virii sobig.f,y and u.name.it they will have a lot of cluesless users all around the world - and executives (who are just as clueless - but with "power" and money)) backing them.
One day humanity will look back at the 90s/00s with regret.
// instant - "I for one welcome our new Decaff Coffee-Flavoured-Coffee Overlords"
The long term problem with IBM's model of the TCPA is exactly the same with that of clipper chip encryption, the owner of the PC does NOT control the attestation master keys. This leads to the same escrow agent model which is far to open to exploitation by The New American Corporate Soviet.
See
:-)
http://citeseer.nj.nec.com/anderson96two.html
Get a new name people
I suggest
"BRUNO THE CIRCUS BEAR" which is suitable for the frenzy that surrounds "secure" TCPA style computing...
Tom
Someday, I'll have a real sig.
You cannot copy the keys inside TCPA hardware. I'll explain what this means (if you don't like reading about technicalities, just skip to the final paragraph)
Every time you buy a new PC with TCPA you will not be able to copy the old TCPA keys on your old PC to your new PC. This means you will completely lose access to your videos and your music which you legally purchased and used on your old PC. Effectively you have to buy another set of keys to regain access to your videos and your music collections.
TCPA and other DRM technologies are being pushed by the publishing industry and hardware manufacturers like IBM who want to sell more of their hardware equipped with DRM to make it attractive to commercial content locked-down publications.
TCPA means LOCK-down, LOCK-out, LOCK-up enabler. Avoid getting anything with TCPA.
Why oil price increase equals economic trouble (Score: Interesti
Food can be protected with a secure pathway from the mouth through the bowels to the toilet, preventing it from being secretly intercepted or spied on as well, but that doesn't make eating safe.
And how does this prevent people from looking over your shoulder?
Couldn't this be defeated by running a Pentium-with-palladium emulator. It would implment all the normal instructions (like add, jmp, etc) properly, it would handle the authentication instructions by always saying yes, and it would handle encryption and decryption opcods with noops. For the icing on the cake, it could log all keys sent to it to /var/www/html/keys.txt.
You would start with a freshly formatted harddrive (prefferably non-DRM crippled, but as long as it can run Linux and your emulator, it's fine) and install Linux on it. Then you would install your Pentium emulator with fake DRM support (a bit like Wine). Then you would install your Windows-with-DRM through the emulator. All the DRM software wouldn't know the difference.
Assuming that a DRM system will allow unsigned code to run (and just stop you from modifying/copying signed data), this will allow crackers and rippers to make perfectly functional non-DRM programs and media files that will run on normal (DRM-crippled) systems, and if not, then there will be a HUGE incentive to get uncrippled machines, much like mod chips for game consoles.
As per your request, please bend over and wait for further instructions.
Thank you.
So what is TCPA?
A good nifty hardware thing that will include DRM, DCMA, RIAA into the hardware so the software cannot override it. Visit the URL and replace the word "security" with "distribution of illegal material according to RIAA".
Well, no thanks. I don't want. And I wish linux never has it.
before the signed version fo Sobig appears?
how long until
For securing most office desktops and servers, NGSCB appears to replace a problem of file and ACL management with a problem of key management. Which you might be able to offload to the vendors at the cost of handing over control (as well as money).
You need to look at how the trust would be *really* managed. In a NGSCB FAQ is the reassuring statement: "One of the most important design goals of NGSCB is to ensure that people are in complete control of the computers they own. That means that the owner has complete control of all of the software that runs on the computer -- in a more visible and powerful way than is possible on any PC today." The problem is in how this actually works.
Yes, you can cryptographically sign executables; and even sign them with the system-unique key, so they can't even run on another system. But how do you practically manage these keys?
It seems that there are several options:
a) "Trust Microsoft/other vendor" - (note the quote above implies this is *not* the model used) - vendor signs *all* valid code. Including all those nice add-on programs that might compete with that vendor. I'm sure I really do not want to hand over that much control.
b) "Trust the user" - user gets to sign all code on their PC. But then the same tools can be used by trojan software to get themselves installed by deceit. So it's not really more secure than sticking "execute" permission bits on valid programs.
c) "Trust IT department (for businesses)" - has more potential, but at the local resource cost of trying to establish whether trusted code is trustworthy - on thousands of systems.
Each has its problems, and none of these are a good defense against classic buffer overflow attacks - or simply exploiting poorly-designed but signed code? And what precautions are needed against key loss? Long-term access to vital corporate data protected by DRM scares me.
Is there a simpler way?
Many of the purported benefits could be achieved by much simpler mechanisms:
a) Using execute (x) permission bits correctly, and lock down ACLs. If all code loaded onto a system always had execute bit cleared, and there was a separate process to explicitly grant permisson (chmod), this would defend aginst most rogue code. Installation would be more tedious (as it has to be in NGSCB-protection), though some simple code-signing could be used to automate that. But administrating fine-grained security will probably be costly, whatever technologies are used.
b) Use write-protected filing systems. I'm old enough to remember when hard disks had write-protect switches. They worked very well! Software-enforced write protection, as in some BSD systems, is the next best thing. Run-from-CD systems such as Knoppix have similar benefits. Of course, you need an operating system designed to segregate read-only data from read-write data. Not so easy with Windows registry.
c) technologies such as exec-shield (http://www.kerneltrap.org/node.php?id=644) and the OpenBSD stack and execution protection (http://www.openbsd.org/33.html) have great short-term potential.
Other uses for NGCSB
It's not all negative, I can see some benefits of having secure storage on PCs.
Being able to store unique device keys (e.g. ssh server keys) would be nice. You can do this today with smartcards or USB tokens, apart from the small issue that neither are fitted to systems by default.
Being able to store cached credentials and passwords in a secure area that even administrators cannot read would improve confidence that users could not be impersonated. This needs very careful design, of course, on which items of software can be trusted to read the secure data.
And for dedicated appliances such as firewalls, having a trusted boot sequence would give more confidence that the system software could not be corrupted.
Andrew Yeomans
...able to check that none of its software is compromised and even (in a future version) prove its integrity to a remote system.
How do you do that? I mean, how do you prove that the system is secure and not just pretending to be secure by doing *almost* all of the things that would be needed to be secure?
I could understand how a system could (eg) verify a signature on a kernel in order to boot it up, but this is a Linux system, therefore:
1. Its open source. You must (by requirements of the GPL) be given everything you need to compile a derivitive work of this. If the kernel is signed, that means the keys must be supplied with the source code, otherwise part of the build environment which isn't normally shipped with the compiler or major components of the operating system isn't included.
2. Has the kernel module loading facility been disabled? If it has, its crippled and worthless. If it hasn't, then you can load a module that pretends to be part of the kernel, accesses the DRM hardware and pretends to the outside world to be a secure environment when, in fact, it isn't.
Anyone else notice the irony of having a Microsoft sponsored advertisement under a article detailing linux & TCPA.
I did before I wrote this, but it was'nt that fun anyway. I think.
// instant - "I for one welcome our new Decaff Coffee-Flavoured-Coffee Overlords"
The TPM is a hardware component that implements the security model. It so happens that this exists on a bunch of modern IBM laptops. It is disabled by default.
Background: The TPM contains a number of PCRs. These are (roughly) hashes of bits of code -- the BIOS, the bootloader, the kernel, etc. The TPM also contains a private/public key pair which is generated when you reinitialize the TPM (i.e. the private key is not known to anybody).
The TPM can be used to encrypt a blob of data using the private key. It can also mark the encrypted blob such that it will only decrypt it if (some set of) the PCRs have the *same* value.
What is this good for?
This means that you can tell if your kernel has been modified in a very secure way. If your application is stored encrypted on disk, then you can ask the TPM to decrypt it (probably you just ask it for the key). It will only perform this operation *if* the boot process was the same as when the application was setup.
It means that someone with a boot floppy cannot get to your data (different boot process). You could also arrange to have the data protected from single-user mode.
However, there is a downside -- upgrading the OS becomes really tricky!
You're very right. Encryption is *not* the same as DRM/PALLADIUM, or even TCPA. If I send you an encrypted email, the fact that it's encrypted doesn't prevent you from printing it out or forwarding it to someone once you've decrypted it. Computers should obey their users, not vice-versa.
Every time you buy a new PC with TCPA you will not be able to copy the old TCPA keys on your old PC to your new PC. True.
This means you will completely lose access to your videos and your music which you legally purchased and used on your old PC. Not necessarily true, because TCPA hardware doesn't directly contain keys to these items. It only contalins keys to your OS. Your OS contains keys to your DRM-enabled apps. Your apps have the keys to your multimedia.
If your apps are able to move keys from one computer to another, there's no problem. If they are not, do not use these applications. Moving (not copying) keys from place to place is a basic function that should be supported by every DRM-enabled app.
Are there any websites that offer high quality streaming video? Or even high quality downloadable movies? How about high quality MP3s? Anything at all the publishers are offering "legally" in a format of higher quality than I have been getting (for years) absolutely free via USENET?
How about plain ol' "information" websites? Hmmm... let's see. Geocities might be a good example. No streaming video (big deal) but they host tens of thousands of home pages. So does AOL. So let's say they decided to use this Palladium-Longhorny stuff to keep their "members pages" available only to those willing to use their client software.
Uhhhh... so what? I can't recall the last time I visited a geocities page (much less an AOL members page), and I'm pretty sure if I go over the proxy logs I'll not find anything more than a few "404" pages with their name on'em. Yahoo? I used to read a couple of their groups, but they're gonna send spam to you one way or another so I quit that long ago. There's just as much content in usenet, and I get to call the shots.
See? This doomsday scenario really isn't much different than what we have now - it's just more of the same but with encryption. I really don't give a shit if universal wants to put their movies online and lock them away behind MS-centric operating systems, because I wouldn't use the service even if they slapped a Penguin on the door and made the "movie viewer" part of the RH12 base distribution. I wouldn't use it because a) I don't have broadband and b) if I want my own copy of a movie I will rent the DVD and rip it myself, or do a sneakernet trade for a copy from someone I trust to do a good job of it.
"Content providers" will lock away only as much as is economically viable. If there's no money in it, they won't lock any of it away. But right now they have it all "locked" away (at least as much as they are able). So what does any of this "evil" new technology change?
Having a system I can trust even if it's hanging out on a raw IP is a very good thing. If the tradeoff I have to accept is that Universal will use the same technology to sell movies to people with plenty of disposable income, more power to'em.
They have zero bugs, right?
So what now?? You have M$ approved Linux??
Under no circumstances will I have anything to do with this Orwellian crap that they are forcing on us.
It's like jumping in a cold lake, at first you're shocked, but after being in it a little while you say, "See, it's not so bad after you get used to it..."
All of this TCPA and DRM and Palladium crap is not about security, it's about KONTROL.
You won't be able to do ANYTHING without permission from someone else.
You'll have to ask for permission to use your computer..
THEY KONTROL YOU
TCPA needs an agreed-upon, standard microkernel around which different OSes could be built. A whole bunch of new open source OSes and, yes, new Microsoft OSes. This microkernel would be developed by an independent body and signed by DRM-loving vendors. Because it would be very small, and change very rarely, there should be little problem with it. Yes, end-users won't be able to modify it; that's the price one pays. They won't want to do it very much because the microkernel provides very little functionality.
Hardware vendors would release drivers for their wares that would work with this microkernel. These drivers would be otherwise OS-independent and would include decryptors and decoders needed for playing content. The vendors would get their drivers signed, too. (And open-source OSes will get closed-source drivers for free: a nice bonus!)
The rest of the OS and the entire universe of user apps would need not be trusted at all. They would run in user space and be totally unprivileged.
So I think open-source people should approach TCPA and offer to work together along these lines. There's nothing to lose, and much to gain, so why not at least try it?
[ Disclaimer, I'm one of the primary developers. ]
That is blatantly not true. Whoever does the "Take Ownership" command of the TPM controls the master key. In the case of the Enforcer, the admin is the one that owns the TPM.
Omen
[ Disclaimer, I'm one of the primary developers. ]
Thanks, we think so too. ;-)
Omen
This calls into question the wording of the GPL. Perhaps it needs to explicitly forbid using GPL software to create certain kinds of restrictions.
Monopolies are inherrently evil. This is a step towards creating a new kind of monopoly, and thus should be disabled before it starts.
One needs to question the ethics of anyone who would work on such a project. And one definitely needs to be dubious of any company that would sponsor it. And any purportedly educational system that would foster such research. That something can be done is not sufficient reason to do it. This thing is so wide open to abuse by already powerful and abusive groups that no decent person would have anything to do with it. Except, perhaps, to sabotage it.
All legitimate proposals that I have heard for uses that it could properly serve can be dealt with by other means which are less open to abuse.
I think we've pushed this "anyone can grow up to be president" thing too far.
This leads to the same escrow agent model which is far to open to exploitation by The New American Corporate Soviet.
The latter link explains
The old sentence gets even more valid with TCPM. We all are used to the fact that binaries are tied to the computers we're using. Buy a new computer to replace your crashed old one, find out you have to use a newer version of the kernel to support Bozo Gadget 2.78, reinstall your binary application from backup, find out that your new system has glibc 3.14 where the old binaries were linked against libc 1.41, yell an expletive, dig for the source, recompile. Been there, done that.
With TCPM, this will only be stricter, not fundamentally different. Use the Source and you'll be fine.
Wasn't TCPA evil last month ? GPL'ed software that use TCPA. Where is the world going to ?
No GNU has been Hurd during the making of this comment.
It's a sad, but yes, legislation to protect fair use is very necessary. Previously, fair use was a defense against a copyright infringement suit, and nobody worried about it being taken away because it wasn't technically possible. Now, we see that it is technically possible to mostly (but not completely) to make fair use impossible.
That's not bad in itself, except that with legislation like the DMCA, although fair use may always be technically possible, can now be made legally impossible. For example, format shifting DVDs, which would be fair use, is now probably illegal.
Normally, even the ability to destroy fair use on a technological and legal level isn't enough, because it won't sell. The rights of fair use are worth quite a lot to consumers, and they would pay for them. Unfortunately, there's no real competition in any content industry, so if the entire industry decides to mandate technically and legally protected DRM, it is forced on the consumers, who have no other choice.
The unfortunate combination of advances in cryptography, reactive legislation, and poor market dynamics are putting fair use rights in jeopardy. There ought to be a law!
Litigious bastards
Whoever does the "Take Ownership" command of the TPM controls the master key.
False. The TCPA design specification explicitly requires that the owner MUST NEVER be permitted access to the TPM master key. The entire purpose of TCPA is to keep this key secure against the owner.
If the Take_Ownership command gave you access to this key then there would be nothing wrong with TCPA.
-
- - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
Your analog hole arguement is flawed because in the future there will be no analog devices. They exist now but soon they will stop making them and the existing ones will all break in time. The whole point of DRM is that it has to be pervasive. You will not be able to record a video off your computer screen using a digital video camera because the camera will have DRM in it as well. Everything will. There will be a black rectangle where your screen is on the video because the camera will recognise that it is "protected content" from the watermark and will not record that section of the image. All computers and monitors will be DRM enabled so there will be no way of stripping the watermark out before you display it.
TPCA/Palladium is being developed because it is useful for DRM. It may have other uses but they could be achieved in other ways. All security problems (defined as users/programs doing things that the computer owner doesn't want done) can be handled at the firmware/OS level (with the possible addition of a lock on the case so a user can't pull the battery on the CMOS). Putting this functionality in hardware is only necessary if the owner of the computer themselves is not trusted (i.e. a DRM setting).
Why if all this security stuff is such a pressing problem does Windows not allow for only running signed binaries already? Or Linux for that matter? 99 percent of this can be implemented at the OS level already. And the rest could be achieve by flashing a new secure bios. The reason it has not been done is a) there is no real problem that merits it and b) if it was done it would compete with a hardware solution, which is necessary for DRM.
I wrote about that. Luckily, each card vendor can write driver(s) for their range of cards and get them signed. These drivers would work in any OS that uses the microkernel.
hen, it will be impossible to visit those sites with an untrusted OS. It will be impossible to build a PC, compile Linux, compile Mozilla, and use that to browse the web. The freedom of disorganized amateurs to create useful computer systems will be gone.
From Hollywood charging for content? Jessus fucking christ, get out of that chair and go outside. Or even try typing "www.google.ru" instead of just "google." There's a whole fucking world out there, and Hollywood doesn't conmtrol it. The US government doesn't even control it.
And the more pressure there is for this sort of thing, the greater will be the effort made to destabilize it, both from within and without.
Sorry, but the US doesn't own the internet. And the US doesn't make all the computers in the world - in fact, most of them come from parts made in China, a country that would love to see US dominance further destabilised.
shut up Alsee. No one cares what you think about TCPA. Fact is that you are completely off-base, as shown in a previous discussions about TCPA. Just shut your trap and leave. If you really did read all those specs, and you had a real argument, the world would know about it by now. Of all the talk against TCPA, your argument is never mentioned. Odd isn't it? You would think that if you had a real argument, some tech-minded writer would pick up on it in an instant. Of course, if you did read up on the specs, you wouldn't have been able to post your 3500 comments to slashdot. We doubt you actually know what you're talking about.
Look at current implementations of DRM, e.g. iTunes. They do not show any sign of being as draconian as you describe. Why? Because otherwise people wouldn't use them, that's why.
Perhaps you don't know, but there's a DRM shop operating in the US. It's called iTunes. Maybe you should look at how it works. It's nothing like you describe. Perhaps you should ask yourself why.
As businesses stake their very existence on the Internet, PCs, PDAs, and other key computing platforms, the trustworthiness of these platforms has become a vital concern.
Why is that? Should I just take their word for it? Is my car being trusted by the interstate when I take it for a spin? Why must we add this layer?
More Information
A programmer is a machine for converting coffee into code.
If TCPA designers didn't have digital restrictions management firmly in mind, then please explain non-migrable storage.
Will I retire or break 10K?
but there's a DRM shop operating in the US. It's called iTunes.
When[1] iTunes Music Store stops operating, do downloaded phonorecords[2] remain playable?
[1] I say "when" not "if" because the Beatles' record label has the power to go to court and make this a "when".
[2] "phonorecords" are to sound recordings as "copies" are to every other kind of copyrighted work.
Will I retire or break 10K?
(the following applies to the United States of America)
Is my car being trusted by the interstate when I take it for a spin?
Yes. There should be a rectangular placard on the back of your car, called a "license plate." This is issued by the state governments that fund highway construction.
Will I retire or break 10K?
AFAICT, yes. If in doubt, burn all of them to CDs, because you can.
No, the Beatles can't shut down iTunes downloads already made. Can they sut down an iPod? I think not.