Slashdot Mirror
Should We Be Afraid of TPM Chips?
AcidArrow asks: "I was looking to buy a new laptop and since I wanted to be on the bleeding edge, I thought one with the new core duo chips would be just what I need. Among the features on the laptops I was looking was 'Trusted Platform Module chip for the safety of your data'. Now, I don't know of any real uses for a TPM chip yet, but is this something that should worry me, or keep me from buying a laptop with said 'feature'? I don't intend to use it and I would like to disable it, if possible, but I don't want to make it easier for anyone to track down what I'm doing on my laptop."
It seems slashdotters are so afraid of these chips they won't even comment on them.
TPM in itself isn't bad. It is when it is grossly abused is the concern.
I would imagine if you want to use future version of windows (and/or media player), this chip will be necessary. I can only speculate that it aids in the decryption of copywrited content
"When life gives you lemons, don't make lemonade. Make life take the lemons back!" -- Cave Johnson
I'm afraid of Jar Jar Binks and all the bad acting in The Phantom Menace.
-- Boycott Shell
Is it possible to get a model of said laptop without a TPM chip? It should be. If you go to Dell and buy a laptop, you're for the most part, able to customize nearly everything to suit your needs. Would the TPM chip be any different. I read about them and see no reason for most people to have any use of them. Nothing like shoving new or unwanted technology down everyone's throats.
What's the matter, James? No glib remark? No pithy comeback?
.. yourself, personally, for your own uses. If the TPM 'feature' is only something that a mfr, or software vendor, can exploit to protect data, then its something that you definitely don't want to use.
.DOC files to your USB stick, encrypted to your own TPM serial, for example - then I would say yeah, its something that can be used.
.. so far, the only use for it appears to be in keeping MP3 and other Media files, which you did not author, local to your own machine.
.. like, if I could get my Cubase/Protools session files stamped specifically to my machine, and they can't be used anywhere else, under certain circumstances that could be very handy ..
.. yeah .. it just goes round and round.
But if there were uses for TPM which directly translated into a user feature - like being able to save
But frankly, TPM isn't there for you. Its there for software vendors and 'media suppliers' to use in branding content to your machine. Whether thats good or not, is entirely up to whether or not the end user wants less control over where the data can travel
I'd be interested to hear cases where TPM-stamps can be used to actually protect user-author'ed data, though. Would be handy for studio-type people
But that sort of protection is just as easily provided by tools like GPG and such, and still would depend on the software vendor exploiting that feature, so
; -- the corruption of government starts with its secrets. a truly free people keep no secrets. --
Firstly you can disable the chip from BIOS or driver software
Secondly there are some good uses for it: I use it to store web site passwords, keys and certificates. On my laptop (Thinkpad T43) it is connected to the fingerprint scanner so I can enforce two-factor auth. (finger swipe AND passphrase). I also store the keys for encrypted disk volumes in the TPM (also part of the software IBM/Lenovo offers for the TPM).
No software can access the TPM without my consent, because it requires finger and password.
Call every retailer in your area and ask specifically what stock they have without TPM's. Let's all do it... twice a week.
...seems to have a TPM chip. Thinkpads, MacBook Pros, some Gateway machines, just about every major new laptop manufacturer that I know of has already installed TPM chips in their laptops.
The important thing to remember, though, is that a TPM chip means nothing if you don't use an OS or software that utilizes the chip for nefarious purposes. If you stick to Windows XP, current versions of OS X (they only use the TPM chip to see if it is a genuine Macintosh), or a free OS (like Linux or BSD), then they won't utilize the TPM chip to restrict your moves. However, you might want to check out any upgrades to the proprietary OSes or proprietary software before you upgrade. You might also want to avoid DRM'd media as well and find alternatives before it is too late.
Now, if you really don't want a TPM chip in your machine, just buy the last model of the machine that you want that doesn't have a TPM chip. Apple, for example, still sells their G4 line of PowerBooks and iBooks. You'll have to weigh the advantages/disadvantages; do you want to sacrifice performance over a trusted computing chip that has little control depending on your software choices?
No one knows right now? Till, I don't buy things with lots of secrets and a cloud of uncertainty surrounding it.
-----
One is born into aristocracy, but mediocrity can only be achieved through hard work.
You need a clue because your Apple bashing makes no sense since TPM was on x86/Wintel first and the 4C who came up with did not include Apple.
TPM is wrong, the way it is implimentented on PC and now MAC is a big kiss on the crack for the music and software industry.
Basically your PC was rooted when you bought it.
The thing is like the "Terminator", it can't be bargined with, disabled and in most cases is hidden from view from the OS. It also will not stop being a backdoor in hardware so that your use of that PC/MAC can be tracked and to make sure your soon to be leased OS/productivity packages are up to date.
It's a brave new world out there folks so be safe...
But those damn TPS reports, that's something to be afraid of!
We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower
Looking at a TPM-equipped laptop causes no harmful effects, but the implant under your skin, triggered by a 'Post Slashdot question', has been activated and Project Big Brother is now underway. All your activities are being monitored, and your thought patterns are being recorded for future reference.
You might as well have the laptop. May I suggest the one with the built-in webcam so it'll be easier for all of us. Don't even bother asking about 'suspend' or 'hibernate'.
Stupid, perhaps. Off-topic, sure. But redundant? No way!
-- Boycott Shell
Now that Linux supports it, I'd get one in a heartbeat. It could be pretty useful for authentication and security. As for companies who would want to use the chip against me, I don't really give a shit, since I don't use their software anyway.
Firstly you can disable the chip from BIOS or driver software
1. Is this even the case with the new Intel macs?
2. If you disable the chip from bios, can the OS re-enable it without your consent?
Irritable, left-wing and possibly humorous bumper stickers and t-shirts
There's nothing to fear of the chips themselves. If you want to fear something, fear what could be done with the chips. But even so, it has been stated many times that you, the user, will have final say in what happens on your computer. If you want to disable the chip, go ahead. However, some 'features' will be disabled if the chip is not present (DRM'd media for example).
Personally, I'm all for the TPM chip, because it would make for stronger security for keychains, etc. It's just another hardware crypto module, as well as a few other things (trusted boot, as one).
TPMs are neither good nor evil per default and there is
nothing magic in them, just some well known crypto cast into hardware.
If you want to know what they do or can do,
grab the specs from the TCG homepage and read em,
no one to stop you.
If you want to try them yourself, grab the TPM kernel emulator module,
or use a real chip, Linux ships drivers with every new kernel.
Use the freely available software lib from IBM (called Trousers),
hell, lately even first Java bindings appeared for those who
don't want to get much dirty.
you're only supposed to be afraid of the cover sheet. didn't you get the memo?
Keep in mind that TPM also stands for "The Phantom Menace," and that is NOT a good thing. (Okay, except for the light sabre battle at the end, which was the best thing in all three prequels.)
Yes, I got the memo. It's right here. I just forgot. It won't happen again.
We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower
As others have pointed out, there are a lot of factors. However, something to consider is what do you want to support? If you want to support DRM and such technologies, then go ahead and buy it. The media companies will eventually look and say "hey there's all the TPM chips out there. let's use them" and then the world is screwed over as they won't let their stuff play on something without it or with TPM disabled. So personally, I try to get something without it.
Now, I do have an AMD64 system that has on in it - but I run Linux on that system (for now, my fiance wants Windows so it might be Windows in the future...not sure) and I have the chip disabled. I bought the system from a friend, so didn't have much say. However, any system I do buy I will look at that very closely.
Also, if you are looking for one without, I helped my sister buy an AMD64-based HP laptop a few months ago. After we go it, I found out that it didn't have TPM at all. I think it was like a z6000 or something. Any how...it's a good laptop, and doesn't have it.
But to the point, consider what you want to support and where you want the industry to go. Because the only way to get them to listen is through your wallet - $$ is your voting power. I chose not to buy it. Others may chose to buy it, but most that get it probably don't know about it. And, as has been pointed out, TPM can really screw you over if its part of your backup authentication mechanisms or similar (encryption, authentication, DRM, etc.).
Truth is like the sun. You can shut it out for a time, but it ain't goin' away. - Elvis Presley (source: imdb.com)
We don't see the world as it is, we see it as we are.
-- Anais Nin
>> "Saying "TPM in itself isn't bad" is like saying "punching random people in the face isn't, in itself, bad." Sure, there may be some isolated situations where that's true, like when your fist is covered with a fluffy foam glove that gently dispenses cash to whomever it hits. However, in most actual, relevant interpretations of the behavior, it is in itself bad."
;)
Obviously, you need to be introduced to this.
Did you get the memo?
After studying up on TPM & TC, I decided to buy a box last Dec, rather than risk having TPM/Treacherous Computing inflicted on me this year. Anybody care to guarantee that the TPM modulule & TC is impossible for HW & SW vendors to abuse? If not, I'm confident I made the right decision.
If you want your life to be different, live it differently.
Just found this article, it's an interesting read:a l.pdf
http://www.research.ibm.com/gsal/tcpa/tcpa_rebutt
In short it says, chip does nothing more than encrypt/decrypt data. It can't execute any code and is not made to be resistant to owner attack (e.g. timing cryptanalysis will work on it!). The only key(s) it controls are generated on-chip and never leave the chip [unencrypted]; there's no external "trusted authority" which manages the keys - so remote revokation is out of the question.
Ergo, you have nothing to be afraid of if you're running current version of WindeXP or any version of *nix
Did you know that "FTW" ("for the win") is a direct translation of "Sieg Heil"?
Intel LaGrande aims to 'protect' every IO path inside your computer, but this is still a work in progress - first TPM on every computer, the rest will be added piece by piece until the puzzle is complete.
5 09/):
Gigabit ethernet controller with built-in TPM (http://www.broadcom.com/press/release.php?id=700
"Broadcom® Controllers Integrate TPM 1.2, Enabling OEMs to Offer Hardware-Based Security as a Standard Feature on All PCs
Platforms With TPM 1.2 Hardware Will Be Ready for Enhanced Security Functionality in the Next Microsoft OS (Code Name Longhorn) Expected to Ship in 2006 Breaking the Adoption Cost Barrier, Broadcom Has Integrated TPM 1.2 Functionality in Its Latest NetXtreme® Gigabit Ethernet Controller, Which Will Be Demonstrated This Week at the Windows Hardware Engineering Conference 2005"
You might already have it and not know it (the above link is almost one year old).
Your PDA/Mobile device/... will be next (http://www.arm.com/news/8308.html/):
"NDS Announces Availability Of Mobile DRM Application Based On ARM TrustZone Technology
NDS implements the first OMAv2 DRM solution leveraging the ARM TrustZone Software API which together delivers interoperable security and reduced porting costs"
Do you seriously believe that you are going to get the keys?
The real question is, why dont you?
http://www.linuxjournal.com/article/6633
To be cynical about it, Intel makes great heaping piles of money from Linux servers. Why would they want to put an end to that again? I missed that part where Intel would suddenly go bokers and dispose of huge piles of cash just to become a Tool of the Man (tm).
"There is more worth loving than we have strength to love." - Brian Jay Stanley
The whole point of the TPM is that you don't get the keys. Otherwise, you could just as well use software encryption.
Didn't he just say in the very post you responded to how there was an article in Linux Journal about using your own keys?
"There is more worth loving than we have strength to love." - Brian Jay Stanley
No, you don't get the private component of the endorsement key pair, because that would make the attestation capability have no global meaning.
Yes, exactly - the point is that you CAN sign it yourself, in other words making the chip do whatever you like. It only verifies that chip was used to sign it.
TPM is a tool like any other, capible of misuse to be sure but with the power in the hands of the user also capable of great good. It is only when TPM is used to lock a user out of doing something with the hardware they bought that I take issue with it.
If I can buy a TPM enabled computer, and install Linux on it then there simply is no problem. And there is FAR too much money in Linux not to provide computers where that is possible. Don't forget that IBM is going to all Linux desktops and they will need laptops too. There are plenty of huge companies with vested interests in making sure most TPM enabled computers are open for the user to install things on.
"There is more worth loving than we have strength to love." - Brian Jay Stanley
I don't think we have the same view here. Whether you run Linux, Windows, or OS XI doesn't make a difference. You will not be able to fake attestations (that other people believe) unless you can extract the private endorsement key.
Yes, and? That is kind of the point of the thing. That is good. That is what it does.
Bear in mind there are two things that you could dislike about TPM. The first is attestation which affects whether programs on other machines will trust you (based on the data in the attestation). The second is sealed storage, which could store data on your system that you can't recover if you run a program/OS that lets you create such ciphertext.
I disagree with that, as I am fine with both of those things since they are just byproducts of use.
The only use of TPM I disagree with is operating systems to disallow me to write something like a driver and add it to the system if I so choose. I want the ability to sign things myself in such a way the operating system trusts it. So I am in love with TPM so long as I have control.
I think you are confused about where I stand.
"There is more worth loving than we have strength to love." - Brian Jay Stanley
So everything is fine then. I just use my own OS with my own data ot data that allows me to do what I like with it.
Sure it can be used in a DRM scenario but they can also encase kittens in giant blocks of lucite to keep you from touching them. Wouldn't buy that either.
"There is more worth loving than we have strength to love." - Brian Jay Stanley