IBM Shipping More PCs with Trust Chips

rts008 submits this EWeek story about IBM shipping more computers with trusted computing inside. Since the article mentions none of the downsides, we should: trusted chips will eventually be used by software manufacturers to make sure the computer's owner does not do anything with the software which the manufacturer does not want to permit.

Re:Paranoia or truth?

[Cyclops]

Yeah, paranoia is fun and all, but I wouldn't mind a few links to support the downsides claim.
You'ld think IBM would know better than to associate the word "Trust" with "Technology". That combination is like a buzzword for suspicion to the Tech-wise.

Are the `Trusted Computing' Frequently Asked Questions a good start for you?

You should also read Can you trust your computer? and The right to read, both by Richard Stallman

This last particular one is very insidious about effects made possible by Treacherous Computing.

Re:Trusted computing is already here...

[MoonBuggy]

Yes, it's already here in mobile phones and it's already been used to cripple a perfectly good handset's bluetooth stack meaning images can only be sent over the cell network at an extortionate data rate rather than being beamed straight across the gap between two bluetooth phones. I think I'll take my chances on the viruses thanks. BTW, I'm running some nice open source apps on my P900 which I doubt would've been created if they needed signing (maybe why I can get apps for my SE P900 but I never could for my T610) - hell, even Opera Mobile Browser came up with an 'unsigned code' warning when I installed it, but I can click 'install anyway' on the Symbian model and I'm quite happy with that - there's no override on the T610.

Re:michael

The hardware doesn't enforce crap. It provides a layer that can't be modified by software (ie: "trusted") to perform certain operations invoked by software.

Paranoia Sunday Apparently

[OS24Ever]

Man, did anyone read the article or check out how IBM markets them on their webpages? These things are for encrypting documents, passwords, storing things you don't want people to get to easily. I've sat through a few seminars and presentations from IBM and how they tout this is to protect your DATA from other people, not protect a copyright holder from you.

Re:Paranoia Sunday Apparently

[Alsee]

Seriously, how dis you expect them market it?

It's not like they are going to mention any of the nasty aspects. It's not like they are going to advertize DRM. They all try to deny it was designed specifically for DRM, but when pressed they virtally always admit that it just so happens that it's possible to write DRM software on top of this security system.

I've sat through a few seminars and presentations from IBM and how they tout this is to protect your DATA from other people

Next time you are at such a seminar try asking if you are permitted to know your own keys to your own data. If you want to be specific ask about your Private Endorsement Key and your Root Storage Key.

If it were designed for your protection there would be absolutely no reason for the technical specification to state that you are forbidden to know your own keys. No reason for the specs to directly state the system be SECURE AGAINST THE OWNER. To directly state that it MUST be impossible for the owner to recover his own data under certain circumstances.

Ask them how your computer giving out a remote attestation protects you. It flat-out does not. The only thing that remote attestation does is prove to someone else that you are properly restricted by the limitations of the Trust chip and reports to that other person the exactly what software you are running and what hardware you have. The purpose is so that the RIAA or whoever can ensure that you are properly bound within a DRM system and that the Trust chip will prohibit you from getting around that DRM system.

Once your Trust chip has provided that attestation then the RIAA or whoever can send you a music file or whatever. The Trust chip then forbids you to know the key to that file and forbids you to access that file except throgh the RIAA approved DRM enforcing music player.

If you have picked up the lingo at those seminars you will recognize that that song file has been SEALED to that DRM music player. That music player is the only software capable of unsealing and playing that file.

You might recognize that if that music player is modified by a trojan or virus that music player will no longer be able to open that sealed music file. Well, that ALSO means that if you the owner choose to intentionally alter that DRM music player (to defeat the DRM) it will also be unable to upen the sealed file. The system is not only secure against viruses and trojans, IT IS SECURE AGAINST YOU.

But here's the important part. All of those great things they tell you about, all of the security and protection it gives you.... you can get ALL of those benefits from an identical system where you DO know your keys. Lets say you have a printed copy of your keys sitting in a bank vault. The hardware is identical. Obviously identical hardware has identical capabilities and provides every single one of the benefits they sold you on. There is no possible way that knowing your key can reduce your systems ability to protect you.

They simply REFUSE to allow you to buy that identical system where you know your keys. The only reason to forbid you to know your keys to is secure your computer against you. If you knew you keys you could unlock any DRM file you wanted to. Not knowing your key leads to a huge list of problems and abuses. See my other posts for extensive lists.

If they let you have you key you would get all of the benefits and eliminate all of the problems and abuses. They refues to allow you such a system. That is malicious. The primary purposes is to secure the computer against you. That is malicious. It was designed specifically to support DRM and DRM-like things. They are just advertizing the personal security benefits that come along with any system that is secure enough for DRM.

Some people certainly are working on good and beneficial uses and purposes, but the fact is that you are not permitted to have a system without that poison pill of being forbidden to know your key.

-

Re:The beginning of the end?

[linguae]

AMD is a member of the Trusted Computing Group, along with MS, Sun, IBM, Intel, HP, Sony, and a whole slew of contributors and adopters of this technology, too.

The defenders of Trusted Computing

[CmdrNullo]

should be reading John Walker's Digital Imprimatur to see what its real purpose is.

Re:Trust will Wilt in Face of Taiwanese Engineers

[westlake]

Trusted computing appeals to your boss, the same guy who ordered padlocks fitted on every PC case at work. The guy who signs off on purchase orders for 100, 1,000, 10,000 PCs.

You build motherboards for export, you build to the specs demanded by your foreign clients, not the occasional hacker who posts a rant to Slashdot.

Re:Can I trust my computer?

[einhverfr]

Most fo the software I run consists of stable, widely accepted projects which have good maintenance records and a large community of coders behind them.

I trust this software more than I trust software from businesses who do not have the incentive to put out quality products....

Re:IBM

[Alsee]

I don't know what's going on in the Apple universe, but an inactive Trust Chip is already rolled into the Intel Prescott CPU. It eats up about 20% of the chip area.

There is a micrograph of the chip at the bottom of this page. La Grande is Intel's codename for Trusted Computing.

-

Re:IBM

[linguae]

You're correct. Both articles talk about how Steve Jobs and Apple don't support "trusted" computing.

TCPA versus Palladium

[Chris+Colohan]

This article refers to machines equipped with TCPA, not Palladium. These are different architectures. The TCPA design is a bootstrap architecture, which means that the boot process has to be changed such that each portion of the OS is validated as it is loaded -- a task that is probably much easier to do in Linux than Windows, since you can always compile a minimal Linux system with TCPA support and not worry about portions of the kernel which support legacy hardware and software. A major design feature of Palladium is you can avoid that headache, and instead try to get a secure subsystem up and running under an already running insecure operating system.

If you want to know more about the difference, you can read an article about it here.

Re:Paranoia or truth?

[Zorilla]

Aren't most of the evil ActiveX spyware launchers "certified" anyway? I really don't think Trusted Computing has anything to offer since the business world accepts spyware as valid.

Trusted != Trustworthy

[MacGabhain]

From a security standpoint, the word "Trusted" refers any entity (computer or not) which is able to violate the security policy, and thus is "trusted" not to do so. "Trustworthy" refers to entities which are reasonably believed to be sufficiently unlikely to violate the security policy, and thus are worthy of being trusted.

Given this particular definition, "trusted" is exactly the right thing to call this sort of hardware, although perhaps "blindly trusted computing" would be better.

Re:Can I trust my computer?

[Alsee]

Their actual plan is quite insidious and the Trusted Computing Group and hardware makers pretty effectively dodge issue of anti-trust.

The hardware will launch absolutely any operating system you like. However new software will refuse to insall or run unless the software publisher approves of your system. Music and movie and other datafiles will be inacccessible unless the publisher approves of your system. Websites will be unviewable unless they approve of your system.

And ultimately your ISP may deny you an internet connection unless they approve of your system.

Obviously everyone is going to approve of Microsoft's next operating system Longhorn. Most everyone is going to be running the next version of Windows, so their software and media and websites would be pretty much unusable if they didn't. They are also perfectly free to choose to approve of other operating systems. If they do bother approving other OSs they are still only going to do so if that system properly enforces DRM and pretty much the exact same rules and restrictions that Microsoft imposes and enforces.

There is already a project developing a Trusted Linux, and Trusted Solaris, and probably others.

So yeah, music downloads *might* be useable on Trusted Linux, IF they bother adding it to their approved list. And if you do run Trusted Linux, well, you have the exact same set of handcuffs impossed on you. And the Trust system completely defeats the GPL. If you attempt to modify your system in any way it ceases to be Trusted. Nothing will work on it anymore. The source code is entirely useless. Change it all you like, recompile it all you like, it simply doesn't WORK.

-

Re: IBM shipping more PCs with Trust Chips

[Alsee]

I'm not a "computer wizard" but isn't ALL of the data already stored in the hardware? Where else does one store their data? The Ether?

Normaly data is "in the hardware", but you can pull it up on the screen and see it and change it. It's not normally locked within the hardware and inaccessible.

The point of Trusted Computing is that there is a secret key locked inside a single chip and it never leaves that chip. You, the owner, are forbidden to see this key or to use it except in the way they permit you to use it.

And this key is used to lock (encrypt) pretty much all of the other data on your computer. You cannot look at or P2P your music files. You cannot even PLAY your music files, except in the manner the chip permits you to. Once you turn on the chip the chip owns your machine. It's not your computer anymore and you can't do squat except what other people specificly permit you to do.

And if you choose not to turn on the chip, well then none of the new software and files and websites work at all. You may ultimately be denied internet access unless you submit.

-

Re: IBM shipping more PCs with Trust Chips

[Alsee]

If the system software can access it, so can a hacker.

The entire point of Trusted Computing is that the system software CANNOT access it. No software can access the data except the exact and unmodified software to which it was bound.

When you start a program it hashes that program. The chip uses that hash to create a decryption key. If you change the software you change the hash. If you change the hash you end up with a different and useless decryption key.

And another part of the new hardware is that even the operating system will be unable to look at the memory belonging to a Trusted program.

You can't get at the data without the original program, you cannot modify the original program, and no other software can peek at that program's memory. Depending how they implement the hardware the RAM itself might even be encrypted, so even a hardware attack would be useless unless you could break into the self-destructing CPU itself.

There is a damn good reason they are spending billions on this new system. It simply is not vulnerable to all of the usual attacks. It's not your usual futile DRM scheme. This is a plan to change the fundamental nature of computers, to deny you ownership and control of your own machine.

-

Re:On sale: solderless mod kit for IBM PC XYZ

[Alsee]

I believe the way it works is that there's actually some sort of corusive material that will get released and literally destroy the chip.

No need. It has all sorts of tamper detection circutry. If you try to open it it simply wipe the master key from RAM or flash memory. Without that key the chip is usless. Once that key is wiped you can tamper all you like, there's nothing left of value.

Dah, dude, you can shut it off in the BIOS. It's not a bad thing.

If you shut it off it is impossible to install or run any of the new software. It is impossible to access any trusted files. It is impossible to read secure e-mail. It is impossible to view all of the new websites. The government and industry plan is that in a few years you will be denied internet access. The President's Cyber Security advisor called for that at it at a Gobal Tech summit in Washington DC. All part of securing the internet against viruses and terrorist cyber attack. Oh joy.

there's no sort of unique identifier or anything on this chip

Who the hell told you that?!

The Trusted Computing Group's own techinal specifications document that every chip contains a unique Private Endorsment key. It effectively is an ID number, but it's much more powerful than that. It allows your chip to transmit and receive messges that you cannot read.

you supply it with the private keys

No, it comes with the Private endorsment key. It internally generates the Root Storage Key and most every other signifigant key. Most of the other keys will will be generated inside some other Trust chip and passed to your chip encrypted, so that it's impossible for you to see or know them. For example the key to a DRM'd music file.

I guess you could give it a low level worthless key for encrypting things yourself, but you are NEVER allowed any access to or control over any signifigant key.

you could easily disable it and the software would know no difference

With the chip disabled it is impossible to access and of the encrypted files. Any Trusted software would simply fail to work.

There is no reason anyone should be concerned about TCPA. IBM has been a very responsible citizen here.

I admit many TCPA/Trusted Comuting critics are badly botching the critisisms. However they are botched versions of VALID criticisms. IBM and freinds certainly arent going to advertize any negative aspect of the system.

And the postive aspects they advertize - well you could get ALL of those benefits from an almost identical system. One where you know your key. Merely knowing you key cannot alter or reduce the functionality and capabilities of your machine. You still get all of the security benefits. Howver when you know your key the machine is no longer secure AGAINST YOU. You can unlock any file you like, such as a DRM'd music file. Your chip can no longer keep secrets from you.

And they REFEUSE to allow you to have such a good and beneficial system. They will only permit you to buy a system with the added poison pill of forbidding you to know your own key. One that can enforce DRM against you.

-

IBM TCPA Rebuttal Faq

[fluce]

IBM published http://www.research.ibm.com/gsal/tcpa/tcpa_rebutta l.pdf this FAQ about TCPA two years ago.

It aims to describe the difference between TCPA, MS Palladium and DRM, and explains what TCPA is usable for (crypt personnal data, store passwords,etc.), and what TCP is unusable for (restrain software execution).