Trusted Computing And You

sebFlyte writes "There's an interesting look at the Trusted computing initiative running over on ZDNet UK, written by security guru Bruce Schneier. He looks at the suggestions for best practice made in a recent policy document, and Microsoft's 'Machiavellian manoeuvring' to stall said document. He posits their moves are to avoid having to enforce such best-practice when it comes to Vista's DRM and other copy-restriction technology." From the article: "This sounds great, but it's a double-edged sword. The same system that prevents worms and viruses from running on your computer might also stop you from using any legitimate software that your hardware or operating system vendor simply doesn't like. The same system that protects spyware from accessing your data files might also stop you from copying audio and video files. The same system that ensures that all the patches you download are legitimate might also prevent you from, well, doing pretty much anything."

Let me be the first

[$RANDOMLUSER]

To say I don't trust "Trusted Computing".

Re:Let me be the first

[garcia]

To say I don't trust "Trusted Computing".

You don't have to trust it. I don't trust the government but I have to put up w/it. Sadly, that's what we have allowed the corporations to become.

Another layer of governance over us.

Ethics

[millahtime]

Well, trusted computing should start with a trustworthy company. That means good, consistant company ethics and ethical people working and representing the company.

Re:Ethics

[garcia]

No, it means that *I* control my computer and content -- not someone or something else that isn't under my direct control.

They need to stop fucking twisting words around because it's good marketing doublespeak.

Call it what it is. A fucking privacy and ethics violation.

Re:Ethics

[saintp]

switch ($decade) {
case "the 50's":
   s/the Boogyman/Communist agitators/g;
   break;
case "the 60's":
   s/the Boogyman/acid-eating hippies/g;
   break;
case "the 70's":
   s/the Boogyman/disco/g;
   break;
case "the 80's":
   s/the Boogyman/mutual assured destruction (and Grenada!)/g;
   break;
case "the 90's":
   s/the Boogyman/evil hackers and George Michael/g;
   break;
case "the 00's":
   s/the Boogyman/terrorists/g;
   break;
}

Will people realize in time?

[rob_squared]

I'm seriously wondering this. Will people realize the things that Trusted Computing and DRM can do to them? I'm not talking about the slippery slope of "restricting" anti-government documents or mobsters using Trusted Computing to commit crimes. I'm talking about the loss of rights to use media and information THAT YOU BOUGHT, NOT rented, or licensed.

We, as computer users see it coming, just like a satellite sees the storm. We just have to keep broadcasting.

The problem with "trusted" computing

[WCMI92]

Is that YOU, the computer OWNER is not trusted. This is the first step towards taking actual ownership away from the owner and handing it over to the manufacturer after the fact.

Which is why I do not support Digital Restrictions Management.

because of lock in.

[leuk_he]

As bruce pointed out MS might have an own agenda.

I think this is a reason:

TC faq

The second, and most important, benefit for Microsoft is that TC will dramatically increase the costs of switching away from Microsoft products (such as Office) to rival products (such as OpenOffice). For example, a law firm that wants to change from Office to OpenOffice right now merely has to install the software, train the staff and convert their existing files. In five years' time, once they have received TC-protected documents from perhaps a thousand different clients, they would have to get permission (in the form of signed digital certificates) from each of these clients in order to migrate their files to a new platform. The law firm won't in practice want to do this, so they will be much more tightly locked in, which will enable Microsoft to hike its prices.

Why Trusted Computing Will Fail

[WombatControl]

Trusted Computing will be DOA. It's a pipe dream, and it will never work.

Not because it's technically unfeasible, but because the market won't stand for it. Let's say that Microsoft declares that Word 2006 will only open "trusted" documents. Total lock-in. Would any sane business buy in?

Absolutely not. My company still uses Word 2000 - and many of Microsoft's problems stem from the fact that they have to bend over backwards not to break legacy APIs and file formats. If Joe and Jane Sixpack find that they can't play their old DVDs on their new PeeCee, they're taking the thing back. If their old MP3s don't play, they'll take it back.

Look at the failure of Divx (the self-destructing DVD format). It had some major studio support, and yet it was practically stillborn. Users drive technology, and users don't like to have to deal with jumping through hoops. The only reason XP's Product Activation crap didn't result in a backlash is because 99% of users never had to deal with it since they got XP with their new PC - preinstalled and pre-activated.

That's why Trusted Computing will fail, even though parts of it are a good idea. Microsoft can't force people to accept it. The real world of economics doesn't work that way. They can't force people to upgrade, and as long as they have to support legacy data, they can't totally lock down the system.

I dislike Microsoft as much as anyone, and for all the clout they have in the market, they can't do everything. Trusted Computing will either be full of holes (likely) or a major flop depending on how much security they apply.

Interestingly enough ...

[vlad_petric]

In security speech Trusted != Trustworthy. If you say that X is "Trusted", it simply means that the security of the system depends axiomatically on X being secure. So if X is secure, everything is ok, but if it is insecure, it breaks the whole system. "Trusted" doesn't actually say whether X is secure or not (that's what "Trustworthy" is for), it just makes a statement about the security of the whole system depending on the security of X.

Having learned that, a few companies (I believe M$ was one of them) changed from "trusted" to "trustworthy"

Features of Vista

[SEWilco]

Vista allows you to:

• Play Minesweeper.
• Download trusted security updates for Minesweeper.

Flawed Argument

[DreadSpoon]

Your whole argument is based on the assumption that Windows would only allow use of locked formats.

Of course it won't work that way, it'd be corporate/product suicide.

However, only Windows will be able to use these locked formats. Which means that once locked formats come into circulation, you will always forever after have to use the Microsoft-mandated access method. Your old DVDs will still play on your new PC, and your new DVDs will still play on your new PC, but they won't play on your Linux box or your OS X box and so on.

Locked formats will be rare for years to come. It has to wait for market uptake. You won't see locked DVDs released right away, because that means that all existing electronics will be broken, which again would be corporate/product suicide. It'll be years after DRM is already integrated into those electronics, when a large quantity of the user base has those DRM-capable electronics, that you'll see locked formats released on a large scale. Years after people have seen no detriment form DRM and have already accepted their DRM-capable electronics has standard. Years after, for the vast majority of the populace, the DRM actually doesn't hurt them in any way, because it only stops the real thieves and the Free Software nerds.