Slashdot Mirror
UK Government Pushing For 'Trusted Computing'
Motor writes "As has long been expected — we are now beginning to see governments pushing for the use of so-called 'trusted computing' — chips installed in all computers that effectively remove control of the PC from its owner. While there may be security advantages to some of the ideas, few can doubt that it represents a fundamental shift in the IT world. A radical move away from an open technology landscape and towards a system that denies all access unless you have the right credentials. Governments will demand the right credentials to access their services — meaning approved software stacks (i.e Windows) with the right digital signatures. Vernor Vinge had it right ."
My Linux machine is well-protected and I don't need your meddling nor do I need Microsoft's.
The U.S. has been doing it to itself with an insane tax code, and product liability laws from the netherworld. Europe is going down the road of not trusting its people.
This is the entirely wrong way to think. Like most technologies, this one has good uses and bad uses. To ban a technology because of bad uses is no different whether it's you doing it or a government doing it.
Lack of TPM is a deal breaker for many businesses and individual - being able to encrypt a laptop in a way that the HD can't be used if removed from the machine, and can't be booted without verifying biometric data against the TPM signed data means that even with the machine, it's just a brick without the user.
The first time around, privacy advocates were concerned that TPM would be used by the big corps to lock in the sofware more efficiently than any dongle, and create a DRM hell. But it didn't, because the vast majority of users aren't interested in paying extra for such a feature. But those who are haven't changed the playing field.
Fuck. Off.
I will be the final arbiter of what runs on MY computers. Not some nebulous "trusted computing" that is in the back pocket of proprietary software conglomerates. There's no point in it unless the real agenda is to wrest control from users' hands. (The recent "secureboot" crap for Windows 8 is a prime example.) It's my computer. It's my data. It's not yours. It won't ever be yours. And no amount of fearmongering will convince me you have my best interests in mind.
Kiss my ass. No, really. Not on the left cheek, not on the right cheek, but RIIIIGHT in the MIDDLE.
It's the Stay-Puft Marshmallow Man.
Actually, no, Richard Stallman had it right long before Vernor Vinge.
DRM has never been about getting paid, it has always been about keeping control. And for all the shit Microsoft got about Palladium, the Apple zealots sure turned a 180 in 2007.
But the zealots are right about one thing - the iPhone is the future of computing. And that future is a boot stamping on a human face, forever.
Because the certificate authorities have a really proven track record.
Also, it really helps against buffer overrun exploits which in now way is a common thing...
The usual bollocks, in other words.
I found a fast warez site: http://warez.it.kth.se
Except that BitLocker, like other such programs, is susceptible to a cold-boot attack. http://en.wikipedia.org/wiki/BitLocker_Drive_Encryption
I agree on all counts except for one thing ... If you click through to the article (Vinge had it right), she's talking about his idea that it rises slowly without any disaster to get people to go for it. Surely Vinge built on ideas from others, everyone does. But they're specifically talking about how accepting we all are (will be?) toward it. In his Rainbows End, a character specifically says that we traded freedom for safety, implying that it was a willing transition.
Imagine if you weren't allowed to use roads because a bus company complained about your driving 3 times. --skunkpussy
The article quite clearly states that the government wants *its own* computers to have TPM installed, it doesn't mention anything about home users.
The European Union is specifically not a country, not for any intents or any purposes. What the EU has is a common foreign policy and a system of rules that minimizes the impact of national borders on commerce.That's it. And the common foreign policy is on top of the foreign policy of each member state, not a replacement for it. The EU is much more a loosely federated club with very lax rules and even laxer enforcement.
Wanna know what a weak federal government looks like? Look at the EU.
Those who can, do. Those who can't, sue.
This sounds less like requiring a TPM for access to, say, the jobcentreplus website (i.e. requiring TPM for the general public) and more an attempt to stem the tide of embarrassing governmental data breaches, i.e. requiring new government and MOD hardware to be a bit less rubbish in terms of data security. Requiring new hardware to access government services for eh general public won't happen, simply because there'd need to be a way to grandfather in all the non-protected devices in public libraries, distributed through government programs, etc.
The UK does not produce anything except some biscuits and cereals (biscuits = cookies).
They are way down on the list of things we make; our pharmaceutical, engineering, chemical and booze industries are much bigger. Here's a moderately recent list of UK exports.
Quidnam Latine loqui modo coepi?
The first time around, privacy advocates were concerned that TPM would be used by the big corps to lock in the sofware more efficiently than any dongle, and create a DRM hell. But it didn't, because the vast majority of users aren't interested in paying extra for such a feature. But those who are haven't changed the playing field.
You, my friend, are either blindly naive or an idiot. The article blatantly and clearly states that primary purpose of this is to create DRM hell. The only reason it hasn't so far is that any products that use this are FAR less useful than products that don't use it and thus worth much less to the market. A nice government mandate will eliminate any ability of the market to make choices about such things. This has NOTHING to do with security. It has everything to do with control and the governments and established elite are finding that they are losing it. Wake up. Please.
From the fine article:
Owen Pengelly, deputy director of policy at the Office for Cyber Security..."Building the most resilient cyber defences in the world will not help if you are suffering from intellectual property theft,"
Who is John Galt?
A chip that allows utter control of a computer remotely, and security advantages ?
underground crime networks wouldnt blink an eye and would not waste even a '0-day' before they hack them to their advantage.
Politicians are stupid from an i.t. perspective. They shouldnt be allowed to talk on anything i.t.
Read radical news here
No need to panic: this is a suggestion from an UK civil servant. Even if it did became policy one day the work would be farmed out to a least-cost supplier, the project would be 5 years overdue and 6 times over budget. If it ever made it into anyone's home it would be cracked by 12 year old in her lunch break :-)
That is indeed one of the reasons why this will not work: there are people using all kinds of different OSes, including all the mobile ones, desktop OSes and whatnot. If the UK government were to only allow devices with the trusted computing built-in both the hardware and software they'd be instantaneously removing access for everyone who is used to using mobile devices to access those services.
Another case of government not understanding technology, yet still pushing everyone to adopt it.
oh, i think it understands that part alright. if you have TPM and signing keys to it you can run whatever you like. this is pretty cool feature for servers and workspace hardware. if you have the keys, that's it.
BUT the whole point here is not about technology so much as about taking away people's access to the hardware they supposedly own (which, coincidently, would also nicely decrease number of "kinds of different OSes" people use and even number of their versions). and there are a looot of organizations besides the government that would benefit from such unethical and dirty move. and all of them don't give a damn about how people do and/or want use their hardware. it's about lockdown, it's about using your tech in a way someone else devised for you.
and that "mobile devices" industry you speak of has been like that for years, maybe decades.
ever heard about signed or even encrypted altogether OS kernels; bootloaders that check those signatures and deny boot; boards that modified in a slight, insufficient way to benefit its performance, but sufficient enough to make unfeasible hassle of bringing up its support in another OS without insider knowledge ? you should have, HTC recently made quite a news with graciously giving away keys to some of its customers. a rarity.
all while Nokia's N900 allows you to run Maemo, MeeGo, Android, pure GNU/Linux (which means that pretty much any distribution is not a problem to get running) and this list is short only because:
1) some core software components are still closed and spec-data is not available
2) proprietary OSes vendors have no interest in allowing anyone to run their OSes without their explicit permission since its purchase by end-users is not in theirs business plans, only shoving down users throats by the middle-men is.
it's short but for others it's nonexistent, an even bigger rarity in contrast to the majority where you, a customer, just fucked without an option (and no, being a forced luddite by not buying any tech is not a real option).
a Portable PC, not just "phone" or "tablet", but even Nokia don't want you to have it and deliberately shutting down N-projects and providing shitty marketing and lousy distribution for N900, N9 and refuses to sell N950 altogether.
it's just one small step for this shit coming to desktop, general computing, world. this kind of step.
of course it can be easily mitigated by legislating a law obligating PC vendors giving away keys together with hardware. but who would want that ? not many enough people.
so, "not understanding" that people "using all kinds of different OSes" is not the case here. they just don't give a fuck about people's needs. most people don't give much fuck about their needs even and prefer to lie to themselves that they take joy and happiness in unquestionably serving their abusers needs, bathing in willful ignorance until their very death.
PS: i must say, Slashdot's comment-making page is ugly, awkward, unproductive, slow, as if it were WYSIWYG while actually being embarrassingly featureless, mess.
like it were made to mostly write small, substance-less, inflammatory comments or nothing at all. or maybe i'm missing something.
who dares wins
Speaking at a seminar on the subject organised by Wave Systems,
Wave Systems' entire business model is built around DRM-enforcement hardware, a business model they've been failing with for at least a decade (they also have backing with lots of venture capital from companies hoping it'll eventually pay off big, so they can afford to to continue to fail for years to come). Since he was speaking at an event they sponsored then of course he's going to endorse "trusted" computing. It was just a sound bite to keep the sponsors happy and make sure they covered his speaking fees and lunch bill, nothing more.
Where you sit drooling and not involved, I mean come on... that was the ideal right? Stupid drooling and desiring to buy and be like those on TV.
That declined with the Internet, and of course the loss of financial control and distribution of media.
The powers that be don't like the Internet right wikileaks?
"If any question why we died, Tell them because our fathers lied."
There are too many issues of lock-in and lock-out associated with so-called "Trusted Computing", in particular the potential to block users from installing their operating system of choice on the hardware they own.
So far the TPM initiatives deployed by the vendors have failed one after the other. X-Box, PS3, smart phones -- every TPM system I know of to date has failed to provide the protection promised, while restricting freedom of choice by the general public.
As a result, the only ones who really benefit from TPM are those who want to implement hardware DRM (digital restrictions management.) I'm not willing to give up my software freedoms to support the media companies.
I do not fail; I succeed at finding out what does not work.
http://www.guardian.co.uk/technology/2006/jun/29/guardianweeklytechnologysection5
Vinge was an OPTIMIST. The "SHE" (secure hardware enviornment) is a dangerous and probable prosal but only one of five scenarios.