Slashdot Mirror

← Back to Stories (view on slashdot.org)

Major PC Makers Adopt Trusted Computing Schema

Posted by Zonk on from the can-I-borrow-a-cup-of-data? dept.

An anonymous reader wrote to let us known about a News.com story regarding so-called trusted computing, and its adoption by the major PC manufacturers. From the article: "The three largest computer makers--Dell, Hewlett-Packard and IBM--have started selling desktops and notebooks with so-called trusted computing hardware, which allows security-sensitive applications to lock down data to a specific PC." Interestingly, while Microsoft is said to be behind the idea support won't be forthcoming for trusted computing until they release Longhorn next year, making this a hardware-vendor lead initiative.

37 of 418 comments (clear)

  1. The end is coming and people want it!?!? by garcia · · Score: 4, Insightful

    At the time, digital-rights advocates raised concerns that the technology could be used by software makers and media companies to control people's PCs, putting Microsoft on the defensive. The dispute even led the software giant to change the name of its technology from Palladium to the Next-Generation Secure Computing Base, or NGSCB.

    And yes, we all know that now that the name of their security technology is different Microsoft can't "team up" with the hardware makers to lock down PCs to a single OS. It wouldn't be in the best interests of either side to do that right? Oh wait, MSFT already has contractual agreements that basically force this to happen why not take it a step further and make people not only pay extra for the OS pre-installed/distributed w/the PC but also make them have no choice but to run it once they get it.

    I love the wording in the article... Oooh it's the hardware vendors taking the initiative and not Microsoft (like Microsoft is always at the forefront of technology or something). Is that supposed to make me feel better that the entire computing platform will be locked down leading to the end of free distribution of anything, the Internet as we know it, etc?

    Didn't Ben Franklin say something about this? Yeah.

    1. Re:The end is coming and people want it!?!? by tabkey12 · · Score: 5, Informative

      I think it is important that you read this document from IBM which points out that the technology they will be introducing will not lock you down to a specific Operating System.

      --
      Get a free iPod Nano 4GB!
    2. Re:The end is coming and people want it!?!? by rideaurocks · · Score: 5, Funny

      We won't restrict you to one operating system!
      You can choose from Windows 95, Windows 98, Windows ME, Windows NT, Windows 2000, AND Windows XP.

      Heck we've even got some old Windows 3.1 disks here if you want 'em. How's that for choice?!

    3. Re:The end is coming and people want it!?!? by garcia · · Score: 5, Insightful

      Oh you can boot Linux but you won't be using it in any useful way. IIS will dominate the webservers in the world because their's will run on the "secure global information network".

      Linux will fall into worthless obscurity because it will run on one of the various unsecure networks that the majority of computer users will never "want" to see. After all the only people that use unsecure computing are terrorists and those that are against the RIAA/MPAA/MSFT/GOV metroplex.

    4. Re:The end is coming and people want it!?!? by JWW · · Score: 4, Funny

      Of course 90% of future computer viruses will be spread on the "secure global information network".

    5. Re:The end is coming and people want it!?!? by demachina · · Score: 5, Interesting

      "Don't want to interoperate with the rest of the secure users out there? Don't use hardware that is tied to THE secure OS."

      If trusted computing reaches the point you can't get on the Internet unless you are running it, and at that point trusted computing means your completely relinquish control of your computer and your privacy, then maybe geeks should take this opportunity to start a network of their own free of corprate and government control. Think Pirate Radio except for the internet, the Pirate's Web, or Alternet.

      At least at a local level you should be able to create a wirless mesh network free of the shackles the government and corporations are inevitably going to try to put on the Internet in the name of "security", "safety" and to protect their monopolies on music and films.

      Its going to be a little harder to do the long haul part of the network, since you are going to have to do a lot of hops and latency will be terrible. Thankfully as disk drives and hardware get cheaper people can make liberal use of mirrors to that there are local copies of valuable stuff like Wikipedia and open source archives.

      You will also probably be confined to latency sensitive online games only in your local community.

      All in all I'm not sure it would be such a bad thing because:

      - It would foster a greater sense of local community involvement, which is sorely lacking on the Internet.

      - It would compel geeks to be resourceful and roll up their sleeves instead of just open up their wallet and dole out cash to the giant, abusive telecommunications giant every month.

      - I wager the Internet is going to be in a pretty steady decline in usefulness as governments and corporations seek to exert ever more control over it and try to extract subscriptions and fees for anything interesting, or saturate you with advertising. Its also a near inevitability that they will seek to wipe out bit torrent, all p2p or anything that is used by pirates, even when they also have legitimate uses.

      - People might start appreciating the value of the freedom things like open source give you once corporation controlled governments start taking them away. You usually don't value something until you lose it. Maybe it will be just the thing to ignite a sustainable and powerful political movement to regain control of our governments. As it is everyone is to fat, dumb and happy to do anything about it so corporation controlled governments are eviscerating out civil rights and no one give a damn as long as they have their porn, video games and reality TV.

      All in all I favor college radio, which is the closes thing to pirate radio you can usually find. They play interesting, eclectic mixes of often good music because they are putting out content they like, not content that ClearChannel and the RIAA want to shove down peoples throats and make them like simply by depriving them of anything better.

      Not sure that the Internet might not be rejuvenated if it goes back to its BBS, Modem roots. I wonder if spam, spyware, script kiddies and the like will be lesser or greater on the Pirate's net versus the "trusted" computing Internet. I wager the free lancers would be worse on the Pirate's net but the corporate controlled spam, spying, privacy invasion and intrusion will be worse on the "trusted" internet.

      I wager we can pull off an Alternet as long as unregulated wireless is tolerated by the government and continues to improve. If once the Alternet starts rolling and the government, corporations seek to outlaw unregulated wireless and wipe it out, then it gets to be more interested. Could we run a usable and interesting mesh network in the face of a hostile, corporate controlled police state trying to wipe it out.

      --
      @de_machina
    6. Re:The end is coming and people want it!?!? by arr28 · · Score: 4, Interesting

      See the Trusted Computing FAQ for the many reasons why this is a bad idea and why lock-in will in fact be a result, despite IBM's claims to the contrary. Written by Ross Anderson, Professor of Security Engineering at the UK's leading univeristy, this article is an excellent primer.

    7. Re:The end is coming and people want it!?!? by demachina · · Score: 3, Insightful

      Dude, if you are forming your world view based on the alternate reality that is South Park you are the one with issues here :)

      South Park shreds everyone equally, its only fair they give liberal college grads and hippies equal time. Its comedy, satire, parody....laugh.

      Not sure I said they are out to "get us". The corporate part of the combine are out to milk us for all the profit they can squeeze out of us. The government part is out to exert the maximum control over us that they can get away with(i.e. as much as we let them), and most of them are out to steer pork to their rich friends and corporate benefactors. When they retire from politics most of them rake in fat paybacks from the companies and people they bestowed the pork upon.

      Just go back and read the history of the Medicare "reform" bill, the one with the supposed drug benefit for seniors. It was written by drug, healthcare, and insurance companies for their benefit, not for the benefit of seniors or tax payers. They basically bought the Medicare adminstrator, he was job shopping with these very companies while the bill was being negotiated, with White House permission though it was a blatant conflict of interest. He intentionally concealed the cost of the bill, threatened his subordinates who wanted to give the real number to Congress, and outright lied when he told everyone it would be $400 million which was exactly the highest figure that would pass Congress. As soon as it passed the Bush adminsitration admitted it would really be at least $500 billion. A month or two ago it was jacked up to $720 billion. There is in fact no limit on how much it will cost because the drug companies told Congress to add a clause forbidding Medicare from negotiating fair prices for the drugs it buys as part of the drug benefit. The drug companies can charge as much as they feel like and will. Don't be surprised when it really kicks in the Republican's will declare Medicare in a fiscal crisis and either jack up our payroll taxes or cut benefits.

      If you think corporations don't control the American government at this point you are either naive, clueless or not paying attention.

      I doubt the corprate/government combine is going to take the net to trusted computing suddenly, it will probably happen slowly and gradually so no one freaks. But you just have to look at Slashdot to see that governments/corporations are in full scale war against bittorrent and p2p, the NSA is getting geered up to spy on everyone, not just those outside America.

      Seems to me its a good idea to take advantage of all the goodness that is wireless and mesh and at least start building community networks that retain some freedom. Fact is the Internet and your beloved giant telecom company ISP's and government are going to do no nothing but charge more, outlaw more and allow less and less as time goes by.

      --
      @de_machina
  2. How about... by turtled · · Score: 4, Insightful

    How about trusted users? The computers aren't the problem, it's the users. It takes a confident voice to say, I'm person X and I am working on the mainframe, I need your username and password. Big words like mainframe scare people. People can't be trusted.

    --
    "I cannot think of any need in childhood as strong as the need for a father's protection." -- Sigmund Freud
  3. Backups? by mattspammail · · Score: 5, Interesting

    What happens when your PC dies? How do you recover using the now useless backups? There's bound to be a way to bypass that. Sounds like the data requires a physical key (sentry?). Someone somehow will bypass it.

    --
    Now accepting PayPal donations!
  4. Note to self: by Stick_Fig · · Score: 5, Funny

    Hug my mac tightly tonight, and trust it to only have one master: me.

    --
    ShortFormBlog: Writing a little. Saying a lot.
  5. **Ker-PLONK** by stevens · · Score: 5, Funny

    ...that was the sound of me moving from x86 to PPC.

    (As long as debian keeps up support.)

    1. Re:**Ker-PLONK** by avalys · · Score: 5, Funny

      Ker-BOOM, that's the sound of a mailbox exploding...

      --
      This space intentionally left blank.
  6. Your computer won't trust you by FunWithHeadlines · · Score: 3, Interesting

    Just remember, folks: "Trusted computing" is an Orwellian phrase that actually means your computer won't trust you. So if you want your computer to have to ability to say to you, "Sorry, I won't play that MP3 file" or "Sorry, that movie is not authorized for this PC," well step right up. Barnum & Co. -- er, sorry, I mean major PC hardware companies have some new machines to sell to you.

    1. Re:Your computer won't trust you by LiquidCoooled · · Score: 4, Insightful

      I don't care about that mp3 file, or that movie.

      I care about a future where I am still able to download, modify and share OSS software.

      If executables have to be validated and signed for trustworthyness, then everyone will need to compile their own.

      The "legit" version of firefox may work, but modify the source and compile your own, and it won't play in your windows system. Don't even think of taking it to your friends' house.

      (somebody please tell me I am wrong about this)

      --
      liqbase :: faster than paper
    2. Re:Your computer won't trust you by Anonymous Coward · · Score: 5, Insightful

      Notice the "safety in numbers" flocking together of these vendors. None of them dare take such a step alone, because they know damned well that the publicity will be bad... and people won't buy their hardware. But put together and nice consortium of the largest hardware makers... and boom, everything's ok and fuck the consumer since he no longer has much choice.

    3. Re:Your computer won't trust you by FunWithHeadlines · · Score: 3, Informative
      Sadly, you are not wrong. From the Stallman article I linked:

      "Treacherous computing puts the existence of free operating systems and free applications at risk, because you may not be able to run them at all. Some versions of treacherous computing would require the operating system to be specifically authorized by a particular company. Free operating systems could not be installed. Some versions of treacherous computing would require every program to be specifically authorized by the operating system developer. You could not run free applications on such a system. If you did figure out how, and told someone, that could be a crime."

    4. Re:Your computer won't trust you by justforaday · · Score: 4, Funny

      So if you want your computer to have to ability to say to you, "Sorry, I won't play that MP3 file" or "Sorry, that movie is not authorized for this PC," well step right up.

      Well, I'll buy it only if it says those things in that cool HAL 9000 voice...

      --
      I'll turn into a supernova and burn up everything. Well I'll turn into a black little hole and you'll turn into string.
    5. Re:Your computer won't trust you by ceeam · · Score: 3, Funny

      > "Well, I'll buy it only if it says those things in that cool HAL 9000 voice..."

      <voice type=5-yr-old-girl pitch=High> Sorry, HAL 9000 voice files are not authorized for this PC </voice>

  7. Before posting any comments... by Anonymous Coward · · Score: 5, Informative
    ..please read this:

    http://www.cl.cam.ac.uk/~rja14/tcpa-faq.html

    this: http://www.gentoo.org/news/20050202-trustedgentoo. xml and, linked from there, this:

    http://www.research.ibm.com/gsal/tcpa/tcpa_rebutta l.pdf

  8. This doesn't have to be controlled by Microsoft by tabkey12 · · Score: 4, Interesting

    If Linux gets in on the game then surely this could be a positive thing for computer users.

    See the Trusted Gentoo project for example.

    Until we see locked down BIOSes then this is hardly a threat to Linux if it responds quickly.

    --
    Get a free iPod Nano 4GB!
    1. Re:This doesn't have to be controlled by Microsoft by pentalive · · Score: 5, Insightful

      When trusted computing was a USB chip that the os could ignore, I did nothing - my os did ignore it.

      When the trusted computing chip was needed to run Windows, I did nothing, I did not run windows.

      When the trusted computing chip checksummed the bios, I did nothing, I could still boot linux.

      When the trusted computing chip could lock out the bios or any OS not signed I did nothing...

      my computer no longer worked.

  9. Catchy slogan by Anonymous Coward · · Score: 5, Funny

    Trustworthy computing... brought to you by a monopolist convicted using anti-trust laws.

  10. rms' writing about trusted computing by latroM · · Score: 4, Informative

    rms on trusted computing

  11. Nothing new by afidel · · Score: 5, Interesting

    IBM has had the hardware in place in their laptop line for the last several years. It makes repairs which require a motherboard swap a PITA because you have to be sure to order the part with the crypto in place if your current system had one, which might not know about the first time you do one, resulting in a several day delay....

    --
    There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
  12. Problem for Apple by vijayiyer · · Score: 4, Interesting

    This sort of crap runs contrary to Apple's philosophy, and I don't think they'll want it in their hardware (heck, they don't even copy protect their OS). However, they may get forced into it for compatibility. I believe in trusted computing - I trust myself not to be dumb.

  13. Locking data to a PC... by Anonymous Coward · · Score: 3, Insightful

    ... is bound to be a pain in the arse if you get a new PC.

    I suspect that the idea is that you'd use hardware-based encryption (which must be optional, otherwise general removable media would be worthless) and the OS would be expected to support it through some service layer. But anything it does in hardware should be emulatable in software. So, the solution is only truly useful if all parties agree to play nice. That seems to be a ludicrous expectation.

    It seems to me that the strategy is wrong. There's no mechanism that isn't ultimately circumventable, so simply eliminate the complex hurdles and work such that there's nothing to circumvent and no reason to do so (change the model of how you operate).

  14. not a big deal really... by havaloc · · Score: 4, Insightful

    ...this is something that businesses want (ones that already control your computing environment, like at work), and I really don't see it being aimed at the typical consumer.
    I would also say that there will always be a market for open computers. The market always has ways around this.

  15. Balkanization by Concern · · Score: 4, Insightful

    I don't know how thoroughly we've all digested it yet, but open source has arrived, and in addition to changing what people expect of their software, it has raised the bar considerably for corporations like Microsoft. It is already eating their breakfast in the server space, and it is growing to the point where in a few more years there is potential to threaten their client desktops as well, starting with businesses and other large, lucrative deployments. We as an industry are starting to recognize, and ultimatly demand, the benefits of freedom.

    On the one hand I like Microsoft buying into the wild-eyed "Alamo" mentality of the content trust, trying to arm wrestle every customer for control, because the more aggressive they get with Digital Restrictions Management, the more it will drive everyone into the arms of competitors, including open and free software.

    I wish I could say I thought trusted computing was doomed to fail, but frankly I think it can be considerably successful. If the end result is that your computer is not managed by you, and 3rd parties like Microsoft can take the XBox busines model (and probably, simplicity of interface) deeper into PC territory, this is probably a relief for a variety of consumers beleaguered with "general purpose" computing and all that it entails, viruses, spyware, etc. Better software architecture could solve their problems, but outside control can solve it almost as well.

    I guess what will ultimately happen is balkanization, as more aggressive attempts at controlling the platform will split consumers into low and high ends. At the low end, the "game console" converges into a media system and a simple home computer, where every application is trusted and the vendor is the gatekeeper. They'll be happier because, like video consoles today, the hardware is cheap and the costs are deferred into the software and services. At the high end, the general purpose PC that is currently a staple in the home will fade into niche status - a tool for hobbyists and professionals. What fills the void in between, in the end, is hopefully a free-software-based system that is simple enough for all consumers to use, that provides them with an alternative to commercial products, perhaps marketed by a white knight corporation much as IBM has taken free software to the server world.

    --
    Tired of Political Trolls? Opt Out!
  16. Oh boy... a secure PC, at last! by ka9dgx · · Score: 4, Funny
    I can hardly wait. This will mean I don't have to run a virus scanner any more! I can get rid of that pesky firewall box, and save some power. I also can stop worring about spyware, worms, spam, phishing, or any other nasty things that happen to Windows PCs on the internet!

    It's going to be so nice, knowing that my data in my PC can't be taken away, erased, trashed, or otherwise caused to be lost. This will keep my stuff secure, for me.

    Finally, I'll be able to trust my computer.

  17. Re:what does this really mean? by Anonymous Coward · · Score: 3, Funny
    Who controls these "keys"?
    I think this guy does.
  18. free bios + the right to read by Anonymous Coward · · Score: 3, Interesting

    It's time to push for an hard for a free bios. You can help if you
    can figure out how to install a new bios on a computer, especially a
    laptop. I don't know why we can put linux on an xbox but nobody can
    get a free bios on a laptop.

    Stick to AMD machines, avoid Intel and IBM. Heh, IBM. We talk like
    they're our allies but they're pushing patents and treacherous
    computing. They're a _much_ bigger threat than SCO ever was.

    If you haven't yet read stallman's dystopian short story The Right To Read,
    this might be a good time.

    Treacherous computing is the reason I'm a GNU+linux user.

  19. This won't work... by Zog+The+Undeniable · · Score: 3, Insightful
    Look how many people rejected region coding on DVDs. They just buy Far East-sourced players that ignore the region coding (or can easily be switched to do so) and someone will produce non-TC computers if there's the same demand.

    I think MS and Intel have underestimated people's determination not to be shafted by The Man.

    --
    When I am king, you will be first against the wall.
  20. This won't make me popular around here... by Skweetis · · Score: 4, Interesting
    ...but I would like to see some sort of hardware-enforced secure context available on commodity computer systems. I would like the hardware to remain completely backward-compatible with all existing operating systems and software, and certainly not stop the owner of the system from doing anything they could previously do. I would like this as I'm working up a p2p MMOG protocol as a hobby project, with the goal of being able to host a world with tens or hundreds of thousands of users on minimal hardware by offloading most of the processing onto the network. Anyone who's played an MMOG for any length of time probably knows that this would be unworkable because of the potential for hacks that would give unscrupulous players an advantage. However, it could work if the networking code could be run in a sufficiently secure context, which I believe can only be provided at the hardware level. I would like to see something like this, as it could allow for MMOGs to be hosted with much smaller hardware and network resources, significantly reducing the cost to the player.

    Of course, such a system would have undesirable uses as well, DRM and the like...

  21. Not gonna happen, by Anonymous Coward · · Score: 3, Insightful

    I don't know what country you live in, but in the USA our laws are made by corporations. If "pirate networks" gain in popularity, they will be outlawed and people who promote them or run them will be put in jail.

  22. Whats the difference between this and by whois · · Score: 3, Insightful

    hardware dongles? Or DVD CSS for that matter?

    You might say "but but but but but but" this is going to be different, more secure, stronger.

    Or something. But you're still going to be selling the public hardware, that they control. Hell, some of these computers will never be accessing the internet or any network at all. How will you control what they do after you turn them into the hands of the customer?

    You made hardware dongles for expensive programs, they were broken. You made hardware copy protection for console game platforms, it was broken (even when games were shipped as a cartridge, eventually people made cloners)

    You've made DVD players you thought were unbreakable, unleashed them on the masses, then they were broken, so to spite everyone you created new laws to try to stop people from doing it (DMCA)

    You created directTV and dish network. They're hacked. And before that? Satallite TV was scrambled, but there were descramblers.

    ANY hardware based "encryption" or "dongle" or "trusted computing initiative" is security through obscurity. Do you think every person who ever worked for all these conglomerate companies will be able to keep a secret?

    The first person who finds out you use pins 1 and 6 on the chip to pass keying information will end up leaking it to the public. Said public will start watching those pins and find out what needs to be sent to "ok" a program running.

    So you tell me your "dongle" is smack dab in the middle of the CPU, no sniffing possible?

    Someone will just realease the keys then. It's only a matter of time. In the meantime, you're just blowing smoke up the asses of all the customers you have who want this product, and pissing off all the customers who don't want this product.

    Give it a rest. PC's were pretty cool until you started breaking them. If you make them too hard to use, the world as a whole will find something new to play with.

    HP is already on the fritz because they've merged too many times and found out they can't be the next IBM. Imagine if everyone stops buying from you and starts buying from a toaster company?

  23. my paper on the subject by woodforc · · Score: 3, Interesting

    A few years back, when I was a law student, I wrote my law review student note on trusted computing (published last year). I've made it available here if anyone is interested. Not sure I still agree with the thesis but hey, I was ensconced in academia when I wrote it.

    http://actusre.us/cjam/woodford.pdf

    --
    "Advice is what we ask for when we already know the answer but wish we didn't." --Erica Jong