Slashdot Mirror
IBM Hardwires Encryption Into Chips
zenwarrior writes "Reported by CNET, a new chip technology termed Secure Blue by IBM will keep users' data encrypted and secured at virtually every moment on essentially anything in which the chip can be used. Data is even encrypted in RAM, leaving display for users' viewing as almost the last place it isn't encrypted. This has to be considered decidedly anti-Homeland Defense by the current administration. If so, when will we see it if ever?"
Like the last adminstration would have liked this tech? Face it - neiter party in DC likes anything that takes power away from them.
My guess: In media center PCs in 3... 2... 1...
Interesting report but I would like to see more details, what type of encryption is being used? I think this would be a great thing, however, I can see it being blocked from ever reaching the market due to home security risks, unless there is a backdoor installed which really makes it kinda pointless in the first place.
Regardless it is very interesting that they say this technology can be used on any chip and not just powerPC's, also is the encrypted data tied to the chip or the system, how would this effect SMP systems, or virtual partitions?
GeekServ Unix Consulting Services (http://www.geekserv.com)
This can help you, the end-user secure your data, but is also a necessary component of a DRM hardware solution.
"This has to be considered decidedly anti-Homeland Defense by the current administration."
Unless they designed the backdoor to be inserted....
Anti-Homeland Defense, maybe, but avoiding data leakage will make it very attractive to RIAA / MPAA and other copyright protection lobby groups.
So Maybe we get to see what happens when the RIAA face off against the Department for Homeland Security and the CIA - that would be one I would like to see (Maybe we should just watch them fight them nuke them both from orbit - only way to be sure).
Cliche, yes. But true. Throwing up more doors is only going to add another layer of UI headache, and it won't do anything to address the issue of say, FBI agents losing their laptops in bars...(http://www.theregister.co.uk/2001/07/18/fb i_loses_hundreds_of_laptops/)
This article is short on details about the encryption, and it says nothing at all about the current Homeland Security opinion on said technology. I sure know people care about having their data safe and that is a huge problem. Ask the FTC about that. Discussing this further without more facts could just be a waste of time. This is a simple technology "We done it!" announcement. Nothing more.
If it works, content companies will lobby the gov like never before (picture hundred-mile-high stacks of dollar bills) for the ultimate DRM. Gov will say "no problem" as long as it has the customary back door to let the spooks in.
The good: it helps to protect your data -but for display output (your eyes need analog signals -well, unless you use some sort of VR goggles with ecrypted link)
The bad: it helps to protect, or MDR as it were (DRM), that which you might not have created but obtained (one way or another).
The nice: it does it on-the-fly (no, not the Spanish kind)
The article does not specify that the new technology would be under the user's complete control - in fact they even mention it could be used for DRM.
So essentially the {%please place the name of your bogie man here%} could get at your information even while the majority of users thought they were protected by this new technolgy.
Who said they would have liked it? The Clinton administration was about as republican as it gets. But it's always the current administration that's under the spotlight. Don't worry -- if and when the Democrats next hold the presidency, everyone will rip them apart for stripping away freedoms as fast as they can. But until then, it's Bush and the cronies who are fucking you over, and so they're the ones that get all the criticism. Criticizing Clinton is, at this point, an exercise in political futility. He can't really do much damage at this point.
And what will happen if you will replace the logic board of those computers? Will all your data be gone even for you?
But I looked through the IBM Press Room and didn't see anything about this technology. Why post a story about "IBM planning to release on Monday..." when you can just wait for a real release from the company to happen. At the moment I'd like to share this info with colleagues who do research in hardware security but can't find a good source to send them to.
So if I understand this right they are putting an encryption module in what is effectively an embedded system (or could be an embedded system). Now encryption in embedded systems has some problems. Namely they are trivially defeated because the key has to be stored in clear text, on the system. So they keys are usually easy to find since they have to be stored somewhere in clear text and have a pointer to them, also in clear text. Now this would be a DMCA violation to break it but I don't think that would stop anyone bent on doing something illegal anyway. Now I might be wrong about this, since these could be networked systems in theory but I see this being applied to things like media center boxes. I know that these often are networked but what happens in a network outage or any disruption in service? I can't access my entire hard drive because it's encrypted? That doesn't make sense to me. I don't know about anyone else but every ISP I've had has had SOME connectivity problem. I see this as another area where legitimate users may feel the need to 'break' DRM just to get something to work right and get the product they paid for.
How's this going to work? hehe, How long before we buy our PCs from China?
Yes, but only the current administration is guilty of illegal domestic surveillance for political purposes. Sort of like a leak isn't a leak when it's secretly authorized as a leak, right?
This technology is clearly meant to keep consumers from getting to data they (thought they) bought. If every link in the chain is encrypted, right up to the tamper proof screen and speakers (which will destroy their keys as soon as one attempts to open it, rendering them useless), digital copies of protected media aren't possible anymore.
One small step for IBM, one giant leap for DRM...
However, there's still hope: making tamper proof hardware is very difficult. Making hardware that's not vulnerable to side channel attacks is extremely difficult. And lots of existing cryptographic systems are weak due to misuse of the cryptographic building blocks (think WEP for example). And then there's the weaknesses that are introduced on purpose, to satisfy certain three-letter agencies.
Well, unless I can varify the code or make the chip from a copy of it's mask myself - I am pretty much taking it on faith from IBM that it is secure from the eyes of the government. (no offense IBM, but I prefer the security of open review) Untill independent sources can take the chip and put it under an electron microscope and say: Yes it's designed secure - then it's pretty much not secure. An if it's firmware that can be re-programmed, then it is especially not secure if the governments hands get on it anywhere in the distribution chain.
I would like a gadget like this that plugs between my motherboard and hard drive and encrypts all the data going to the HD in real time, transparent to the OS.
And what happens when something is exploited...?
The question with encryption is never if but always when it will be hacked.
Oh well, I'd guess you'd have to buy newer hardware without the exploit (but with the backdoor of course)
Error 407 - No creative sig found
Hey man. What's that encryption on that thing?
Double ROT26.
Woo. That's gonna be TOUGH to crack!
Chas - The one, the only.
THANK GOD!!!
This has to be considered decidedly anti-Homeland Defense by the current administration. If so, when will we see it if ever?
What the hell that statement means ? I can't develop or sell security products like encryption in Amerika without some big brother green-light or what ?
They have had this for sometime now on mainframes. The biggest reason this is is alot of mainframes for a long time did not even have floating point processors! They had a separate chip to do any encryption. The application of it in this case IS new and it looks like, to me, that the OS has to have a driver for the chip and will have to be written such that it can decrypt the data on the fly. No easy task.
Gorkman
What happens when your hardware breaks?
"Sorry, you're data's gone, we don't have copies of the private keys. Looks like you need to pay a hacker to crack the data for you."
Dear diary: Today I stuffed some dolls full of dead rats I put in the blender.
A good use for a technology similar to this would be harddrives with embedded crypto. When you boot your laptop, it would ask you for a passphrase. This passphrase is used to create a key (by using a hash function).
Your harddrive automatically and transparently encrypts and decrypts everything that's on your harddrive with this key. So unless you enter the correct key, your system won't boot, as the computer will see seemingly random bits on the harddrive.
So if your laptop gets stolen, no more worries about stolen data!
1. Implement legally unexportable cryptographic algorithm in hardware.
2. Lobby for said algorithm/hardware to be mandated for government agencies' equipment. (because it's about homeland security, you know)
3. Profit!!!
Or something like that...
Apparently what they're putting in the chips is, at least, encryption/decryption routines. Aside from the obvious questions (what happens when you want to change algorithms?), the important question is whether they're including digital keys as well.
The single factor that makes "trusted computing" evil is that there's a digital key (the "attestation" or "endorsement" key) baked into the TPM which the owner of the machine is prevented from accessing or changing. If all the keys were accessible to the owner, it would be a purely beneficial technology. With the anti-owner feature, it becomes an engine of DRM, censorship, and vendor lock-in on a vast scale, and at a fundamental level absolutely prevents security and privacy for the computer owner.
So the question is which category this IBM tech falls into. And that in turn depends on whether digital keys will be baked into the processor, or whether it's only a set of routines that any software can use under the owner's control.
Triple-ROT52? +3 Informative? Shame on you, moderators.
Yes. You can't develop encryption without homeland security going after you.
Of course, you can't develop an unencrypted system without the RIAA going after you.
-- 'The' Lord and Master Bitman On High, Master Of All
"IBM has built a prototype of Secure Blue using its own PowerPC processor technology. However, the system will work with any processor design, including those from Intel and Advanced Micro Devices that are used in PCs. An IBM representative said the company has not had discussions with Intel or AMD on including Secure Blue in their processors."
Who is doing this, big blue or PLA?
If there's a demand and a US company doesn't meet it, it means that a foreign company will. Remember when ITAR restrictions were relaxed for cryptography? Governments didn't like its proliferation, but the horse had bolted anyway. Besides, business can out-lobby homeland security concerns, and if someone wants your data badly enough, they'll start by cutting off your toes.
It sounds like this is aimed at closing the analog hole, rather than at protecting users.
These people are less likely concerned with your security and more likely concerned with making it impossible for you to get at the bits of digital media content; that's because right now, you can still capture digital audio and video if you know where to look in memory.
Seriously, reading that core dump won't be easy...
On a similar topic, Lacie released a portable hard drive with built in encryption (Triple DES) and a fingerprint reader.
It probably won't protect data from the govt (assume they can read anything), but it's a good idea if you travel and need the capacity.
http://www.lacie.com/products/product.htm?pid=106At some point the data-stream needs to be decrypted and presented to the user and at that point the data is no longer secure and subject to being copied.
Unless the government restricts the importation or interstate sale of high-resolution digital video cameras and/or imposes a prohibitive excise tax on otherwise unregulated sales.
Until monitor/speaker/etc manufacturers decided to allow encryption in their hardware
What is HDCP other than encryption inside a monitor?
Hardware encryption - bad
:(
Hardware DRM - good
Since when "homeland security" became Big Brother?
That might make debugging a little more difficult.
Janek must have figured out a way to solve those problems without the key, and he hard wired it into that chip!
So, is this just IBMs version of the TPM? I thought the TPM can be used to encrypt/decrypt entire filesystems as well.
Not one that relies on draconian hardware chips that prevent you from having control over your computer.
I'm sorry, what? According to wide report, as of the new Intel macs, Apple is in fact using draconian hardware chips that prevent you from having control over your computer, and is reportedly using these specifically to keep you from running OS X on unauthorized hardware. (Though, hilariously enough, that's according to wide report. There is no hard evidence I've seen one way or the other that these chips are or aren't even in the new macs to begin with! All reports of TPM in the Intel macs are based on sort of circumstantial evidence from reports of the developer betas of the Intel macs. Since the actual release of the Intel macs, everyone has gone silent on the subject, and Google doesn't turn up any attempts I can find to take apart the Intel macs and the kernel to see whether TPM is in there. Apparently though the slashdot and tech blogger crowd were angry and opposed to Palladium/TPM for three or five years nonstop since it was announced, they just fell silent once they saw how shiny the new iMacs are.)
You are of course correct that they aren't, of course, using these chips for iTunes or the iPod. Yet. But if the chips are in the machines, they could start using them for such purposes at any time. The iTunes DRM already subtly changes with each iTunes version (the jHymn backup utility still doesn't work with the iTunes 6.0 DRM).
Though all of my computers since I was six years old have been Apples, if it's true that Apple is using TPM in their machines now, it would seem I'm going to be using Linux from now on. I was rather annoyed at the prospect of having to suffer a hardware platform transition (again) to begin with, but I can at least understand the reasoning behind that. But I'm absolutely not willing to pay for a computer if there's this ticking TPM time bomb buried in it that means, if someday the OS vendor changes their mind, a single OS update could sweep through and my computer would no longer be mine.
Irritable, left-wing and possibly humorous bumper stickers and t-shirts
My main fear is that the better part of the internet is going to be pushed underground because the gov't wants to read your email and the corps want to charge Google for letting you search for anything.
If these people get their way, there will be no incentive for intelligent people to use an above-ground internet.
I scream. You scream. I assume that means we're both acquainted with the problem. We proceed.
Regardless of whether Homeland Security likes it or not, there is definitely a market for the technology. In fact, the government (of the people by the people) might even mandate such technology directly or indirectly by punishing companies for allowing consumer data to be stolen. In a reasonable world the government (of the people by the people) shouldn't need too many more stories like the Fidelity data loss to start trying to legislate solutions to the laxity of companies around security. Another option is that market forces push companies to tighten security: eg HP threatens to quit using Fidelity services unless security is tightened. Either way, legistation or market forces, there is a growing market for this technolgoy.
I don't see how it's anti-Homeland Defense. I mean, IBM did put in the backdoor, didn't they?
Never forget, the Clipper chip was on Clinton's watch.
That's an extension of the Russian Vodka GutROT-105% algorithm.
It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
Now there may exist easy work-arounds, but I am not to concerned about being target by someone who knows what they are doing. The people who want to steal my stuff are just trying to resell the hardware for their next hit. Just want to make it frustrating for the morons who steal.
--
So who is hotter? Ali or Ali's sister?
It is good news indeed to see new support for hardware encryption. VIA has offered hardware encryption for some time now, including a very nice Random Number Generator. It's Quantum even. I just hope IBM has a performance increase similar to that of VIA. A lack of backdoors would also be a plus.
Encrypted in Ram. Ok, I am not that paranoid, but maybe one of the paranoid people here might answer me how the HELL this should "increase my security". I can see the benefit of an encrypted HD. But Ram? Where do I gain securty from encrypted Ram?
Unless I'm a content provider, of course, and don't want my customer to read it properly. Who're they trying to fool here?
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
AFAIK, this technology would only address a number of physical security threats. Adversaries would be stopped from stealing hard drives, or trying to pick up any bits which leak into the environment (maybe through EM signals). While these problems are important to solve, this technology is far from a be-all end-all solution.
Since the protection only occurs in hardware, one can still exploit the same software-based attack vectors that have been around for ages. Encryption is done even below the OS. If some Trojan horse got kernel-level priveleges and looked at physical RAM, it would see the plaintext and not the ciphertext, All the problems of network security still abound. as data sent out on the network is not protected.
I'm not sure how this could be used for DRM. I guess Secure Blue could be extended to give or take keys over the network, and data can be transmitted as ciphertext and stored as-is into RAM. Can someone explain how this would work? TPMs can be used for DRM, but they work quite differently.
I disagree that the screen is the only place for seeing data unencrypted. Devices will need DMA access to memory, and Secure Blue would have to decrypt the data before sending it down the bus. How is leakage protected in this case?
As long as all that "Republican" means to you is "They cut taxes and they hate abortion", Clinton wasn't a republican.
I suppose that works, though, because "he cut taxes and he hates abortion" is the only possible definition of "Republican" loose enough that it could reasonably include big-government big-spending nation-building pro-liberalized-immigration George W. Bush.
Unless the user has to switch to CGA 80x25 text mode or if the encrypted data is a bitmap already suitable to blt to the video framebuffer, the user interface of the user's operating system will have access to the unencrypted plaintext.
Just imagine fitting some kind of data capture trojan into the target machine's font renderer. Is this a vector of attack which has been concidered?
Besides, this all does nothing to help against the classical hardware man-in-middle attacks such as a keystroke sniffer device between the keyboard and the computer.
Interesting idea but I think we will all be better served with a new ethernet wire protocol which is simple, transparent and secure. A truely worthy challenge which would benefit the majority of users and would be non-trivial to design.
No sig. Move along - nothing to see here.
They don't care how secure the implementation is so long as they have a backdoor.
They don't want to be able to swipe your unencrypted data from your RAM. They want to be able to derive your key (or just look up your key) and decrypt it themselves.
rumors are that the xbox360 is already using fully encrypted ram. look at its L2 cache miss latencies.
We'll see it when it's required for the next generation of RIAA/MPAA distribution formats, that's when!
Remember that charming comparison:
Reichssicherheitshauptamt, the main division of the Nazi SS translates out as Reich (Homeland) Sicherheit (Security) Huptampt (Department).
And IBM does have a history with those fine people.
The question is whether they remain driven by immediate profit over human rights or whether they're so ashamed of their past that they'll now do anything they can to distance themselves from such organizations.
Actually, before the Constitution was signed there was no such thing as a "Career Politician." Ever wonder where the "Nomination" process came from?
Originally, someone elected to office did not run for office - it was considered ungentlemanly. Instead, people would nominate who they thought would be a good choice for office, and those people would be the ones who were on the ballot. No campaigning. No campaign finance. No corruption.
Over the 20-30 years following the signing of the Constitution, it became increasingly popular for someone who wanted nomination to run for office; this was made possible by the fact that those eligible to gain positions of power were no longer limited to those of Royal blood - e.g., the rise of the "Common Man."
And the rest, as they say, is history. Campaigning, campaign finance, corruption, and the rise of the career politician who will say anything to get elected and then do nothing but abuse his position.
The days of the honest politician are gone - not because none of them are honest, but because in this country, none of them can afford to be.
We are the fire that lights our world.. and we are the fire that consumes it.
brain for sale 1603
Actually, before the Constitution was signed there was no such thing as a "Career Politician.
Oh really? What about Governors and mayors, and the various people who were instituted by The Crown? I think there were career politicains, just not entirely in a democratic context, and maybe not so much on our side of the pond. I think a career of politics was something that the founding fathers were particularly afraid of, along with opressive governments, taxation without representation, and extremist religion influencing the offices, among other things.
Constitutional rights may be respected, repealed, or modified; but they must never be ignored.
Imagine Condoleezza Rice in red hot pants running down the halls of irony, the desperately dilatory demons of delay at her heels, sports bra in the laundry, flinging her Patriot Act at the screen... Who woulda thunk IBM would ever turn out to be the guys in white hats?
``Tension, apprehension & dissension have begun!'' - Duffy Wyg&, in Alfred Bester's _The Demolished Man_
As AES is the most widely-implemented and most "standard" algorithm, that's probably what they'll use. Another possibility is MARShttp://domino.research.ibm.com/comm/research_p rojects.nsf/pages/security.mars.html IBM's AES candidate, but it was supposedly rejected due to difficulties implementing it in hardware.
Another poster, who doesn't apparently understand the concept, commented that the lack of "CPU overhead" or software implementation will "limit it's usefulness". This is nonsense. Modern (hell, just about ALL) encryption algorithms are designed with hardware implementations in mind, and can perform quite well. Hardware performance was in fact a key issue in the AES competition.
Paolo Attivissimo's blog provides plenty of documented, photo and other evidence that the new Macs do have TPM chips in them. He started out skeptical but soon got plenty of pictures of motherboards from the new Macs. They plainly have Infineon TPM chips in them. It's not clear what if anything they are being used for, but there is no doubt that Intel Macs have TPMs.
Dallas (now part of Maxim) has been doing this kind of stuff for years with their DS5002/5240/5250 series CPUs (http://www.maxim-ic.com/products/microcontrollers /secure/). Of course these are 8-bit devices that are used primarily for Pin-pad type devices at the Point-of-sale.
LEAF = Law Enforcement Access Field and the way I remember it it was a largely publicized deliberate weakening of the
encrypted output so that the coming generation of DHS Megacity Streetjudges like Judge Dredd aka as "Law Enforcement"
could decrypt. Back in the days when Clinton tried to get a handle on Crypto with Clipper the NSA developed algorithm
called Skipjack which was to be used int he chip was still a "National Security" secret and supposed to stay that way.
Needless to say the clipper scheme all thanks to the LEAF was broken in little to no time.
This piece of silicone will have a way to extract user key material and it will even be documented. The simplest thing
to implement something like this is prove to the chip that you have a certain "Law Enforcement Retrieval Authorization Key" to correctly sign the Command-APDU for "LAW ENFORCEMENT RETRIEVE USER KEY MATERIAL" and the chip will encrypt the key material to whatever public "Law Enforcement Retrieval Key" it has been burned with at the factory. The chip will have that kind of functionality. Depend on it.
Yes. Just as soon as the gov't/corps get a key to the back door.
What?
Good encryption is fine for keeping "real" criminals out of your stuff. They can't have you arrested for refusing to give up your key. The gov't, on the other hand... Keep a secret, go to jail.
What?
Maybe the Conservative party of Canada could open up an American franchise. I bet their brand of rational, secular, balanced conservativism could go far in the US if it got the chance. The conservatives, for their part, would probably dig the chance to work in an environment where the people aren't quite so adamant about having a robust set of social programs, thereby allowing taxes to be slashed down to the marrow. I'm not a fan of conservativism myself, but I can certainly respect it's more logical forms, like what the Reagan administration was trying to push.