Slashdot Mirror

← Back to Stories (view on slashdot.org)

Intel Demos McAfee Social Protection

Posted by samzenpus on from the protect-ya-neck dept.

MojoKid writes "During the Day Two keynote address at Intel Developer's Forum, Renee James, Senior Vice President and General Manager of Intel's Software & Services Group, talked about software development, security and services in an 'age of transparent computing.' During the security-centric portion of the keynote, James brought out a rep from Intel's McAfee division to show off a beta release of their McAfee Social Protection app. If you're unfamiliar, McAfee Social Protection is a soon to be released app and browser plug-in for Facebook that gives users the ability to securely share their photos. As it stands today, if you upload a photo to Facebook, anyone viewing that photo can simply download it or take a screen capture and alter or share it wherever they want, however they want. With McAfee Social Protection installed though, users viewing your images will not be able to copy or capture them. In quick testing, various attempts with utilities like Hypersnap, Snagit or a simple print screen operation to circumvent the technology only resulted in a black screen appearing in the grab. Poking around at browser image caches resulted in finding stored images that were watermarked with the McAfee Security logo."

41 of 183 comments (clear)

  1. Analog hole by Anonymous Coward · · Score: 5, Insightful

    * takes out camera phone and copies that supposedly uncopyable image

    1. Re:Analog hole by Martin+Blank · · Score: 5, Interesting

      Even better: running it in a virtual machine and taking a screenshot of the VM console.

      --
      You can never go home again... but I guess you can shop there.
    2. Re:Analog hole by TranquilVoid · · Score: 5, Interesting

      Precisely, it's a borderline useless idea that requires too much integration with a single company for it to catch on. I gather this works by requiring the app to even view the photos, so this makes it incredibly restrictive. I personally have a zero-app policy on Facebook, but I suppose a lot of people are almost tricked into installing apps - "Click here to see friend X's exciting breakfast pic!".

      Next, a Facebook app by itself is insufficient. Pure HTML/JavaScript is sandboxed, so it requires you also install a McAffee toolbar so it can hook into the OS. They are unlikely to have a Linux version and, if they do, there are plenty of ways around it. You could hack the kernel if you really had to.

      Of course they're not trying to secure an online banking system, just tap into any internet privacy fears that have trickled into the minds of the technically uninclined.

    3. Re:Analog hole by jrumney · · Score: 5, Insightful

      Precisely, it's a borderline useless idea that requires too much integration with a single company for it to catch on.

      But its on Facebook, so they've already got the perfect target audience for borderline useless ideas that require too much integration with a single company to catch on.

    4. Re:Analog hole by semi-extrinsic · · Score: 4, Funny

      Shouldn't that be "Zyng!"?

      --
      for i in `facebook friends "=bday" 2>/dev/null | cut -d " " -f 3-`; do facebook wallpost $i "Happy birthday!"; done
    5. Re:Analog hole by dan_in_dublin · · Score: 2

      or .. - uninstall mcafee plugin and copy image - use alternate browser which doesnt have plugin - capture url of image and download seperately - .... this may not be the dumbest thing i've ever heard but it's up there. the subsequent step is for facebook to apply drm and content protection to media on facebook. soon after mass migration of users to another social network. lets see what direction that share price keeps going in

    6. Re:Analog hole by tsa · · Score: 2

      What's uninstall? What's a browser? What's this url you speak of? The majority of FaceBook users have no idea what you are talking about.

      --

      -- Cheers!

    7. Re:Analog hole by Joce640k · · Score: 2

      It's not just an app, it's a browser plug-in. This is still-born.

      --
      No sig today...
  2. Pointless by Robadob · · Score: 3, Interesting

    So it prevents the person with McAfee Social Protection installed from saving images from Facebook? I don't get the purpose of this, unless they expect it to become government mandated to be installed on all computers.

    1. Re:Pointless by Robadob · · Score: 5, Insightful

      The article was a bit misleading, but from watching the video its just a facebook app which blocks print screens/copy paste of images you upload through it. Doubt it will take long for tools which bypass this, and chances are the photos will stay within mcaffee social share rather than the general facebook albums, which will prevent a large number of people from using it.

    2. Re:Pointless by icebike · · Score: 2

      Exactly.

      Why would anyone install this software, all it does is limit the installer, not anyone else.

      So everyone who gets saddled with this software on their computer, saves the images with an Android phone, or Linux, or Mac computer.
      Problem solved. And a hack for removing the watermark ought to be possible about 37 minutes after the images find their way onto the net.

      I can see why your mom might buy you a computer infected with this technology, but I can't see why any any adult would buy one for themselves.

      --
      Sig Battery depleted. Reverting to safe mode.
    3. Re:Pointless by Robadob · · Score: 2

      Oh damn, i wonder if McAfee is going to manage to bundle it with all newly bought pc's, same as them and norton try to do with their a/v products.

    4. Re:Pointless by gman003 · · Score: 4, Funny

      Presumably the """only""" way to view the images at all will be with this plug-in installed, for definitions of "only" so loose I had to put sarcasm quotes around my sarcasm quotes.

      And knowing Facebook's userbase, they'll probably just use the analog hole - take a photo of their screen. Hell, some of them do it already, being too stupid to operate PrtScrn or even the snipping tool.

    5. Re:Pointless by jrumney · · Score: 2

      That's OK, because everyone who is going to install this software has already sent out Facebook status updates asking their friends to unsubscribe them from their feed so they can have privacy on Facebook. So noone without the software installed is going to see the photos anyway.

    6. Re:Pointless by loufoque · · Score: 2

      You'll have to explain to me how a web browser can disable basic OS functionality like print screen.

  3. VM? by dskoll · · Score: 5, Insightful

    What if you run everything in a virtual machine and take a screenshot of the VM window?

    Sounds like snake-oil to me.

    1. Re:VM? by cultiv8 · · Score: 4, Funny

      Then you DIE! (Or are in violation of EULA).

      --
      sysadmins and parents of newborns get the same amount of sleep.
    2. Re:VM? by starfishsystems · · Score: 2

      VM consoles are typically tty, so that wouldn't do much good. But you're right in a more general sense. Any system (it certainly doesn't have to be a VM) which supports remote windowing (X Windows, rdesktop, Citrix for example) provides all the bitmap you need, and its security is exactly as strong as the window server.

      --
      Parity: What to do when the weekend comes.
    3. Re:VM? by psithurism · · Score: 4, Insightful

      I work in this space and have never understood the appeal...

      We who know what is going on rarely grasp the appeal for things like this. I thought two seconds about most of my semi-computer able friends and realized this could easily take off:

      Friend1: OMG, Friend2 your photos are insecure!
      Friend2: WTF?
      Friend1: Yeah, you didn't digitally protect them! Your just asking for internet baddies to steal all your images, stalkers to download them, and spammers to use you for their advertisements! Securing your photos is more important than anti-virus!
      Friend2: OMG! OMG! I'm going to get digital protection right now!

      I sure hope this dies before friends 1 and 2 start trying to convince me to secure my photos. I already know what they'll say: "As someone who knows computers you should know better! Your setting a bad example for Friend2." and "Why didn't you warn me how vulnerable my photos were?!" respectively.

  4. Computers work by COPYING data by orionpi · · Score: 2

    The latest example of managers who don't get that computers work by copying data.

  5. Seriously? by upuv · · Score: 4, Funny

    Is it April already?

  6. Dump the Framebuffer? by Anonymous Coward · · Score: 2, Interesting

    FRAPS (a game recording tool) can take screenshots of the raw framebuffer contents.

    They really haven't thought this through, but I spose it would stop causal copying.

  7. Re:So.. by NoNonAlphaCharsHere · · Score: 5, Funny

    McAfee has been spending 100% of their efforts on not making any friends for years.

  8. Already Broken by sexconker · · Score: 5, Informative

    Start
    Magnifier
    100% Zoom
    Views > Full screen
    Print Screen
    Start
    Paint
    Paste

    1. Re:Already Broken by ChumpusRex2003 · · Score: 3, Informative

      I haven't tried IE or firefox, but magnifier doesn't work on Chrome windows. The magnified view just shows an empty page.

      I'm guessing that whatever chrome is doing - openGL, or whatever it is using to composite the pages, bypasses whatever layer magnifier hooks into.

      Similarly, the mcafee tool probably works by using graphics hardware overlays, and rendering the image directly into the graphics buffer, and then using hardware compositing. This works quite well to defeat low-end screen capture software. The better software, such as FRAPS, is capable of capturing the overlays, and then re-compositing the final image in software.

  9. Re:Watermark and Object Protection by RLiegh · · Score: 2

    But that still leaves running it in a virtual machine and taking a snapshot that way.

  10. Lack of clue by symbolset · · Score: 5, Insightful

    How does a project like this even ship without at least one person involved saying "Hey, wait..."?

    --
    Help stamp out iliturcy.
    1. Re:Lack of clue by Anonymous Coward · · Score: 4, Insightful

      Selling security doesn't require that the product being sold actually work.

  11. Re:Jokes on them by Raistlin77 · · Score: 4, Insightful

    Just to be clear...

    You're going to take a picture of the picture on your PC monitor with your phone, then you're going to drive to an internet cafe to put the picture in an email (presumably) to yourself, then drive back home again to save it?

    If this is what it would take for you to defeat this, then I'd say the joke's on you.

  12. Rebadged corporate crapware by benjfowler · · Score: 2

    It looks like a tremendous pain in the butt to use, although some naiive people who don't understand computers might think it'll protect themselves from themselves.

    FWIW, I"ve worked in a bank before, and they had some awful McAfee crud running on the client workstations where if you attempted to do a screen grab, it would overwrite the data on the clipboard with black pixels -- a pain in the arse when you're trying to do consulting or tech support. McAfee had some similarly annoying crudware installed on all the bank's machines, which only granted write access to USB keys unless they'd been encrypted and 'blessed' by the company's IT department.

    Obnoxious garbage, designed to inconvenience users. I think there's a bit of Catholic hair-shirt thinking going on here: make the tools and processes as painful as possible, to make clients think they're doing something productive and virtuous, and justify the license fees they're paying the security software racket^H^H^H^H^H^Hindustry.

    I'd hazard a guess that some sad, fat middle manager deep in the bowels of McAfee dreamt this up, hoping that turning security software from a product (with loads of free alternatives) into a hard-to-clone for-pay service would generate more revenue.

  13. Re:Downside: requires app/plug-in by lgw · · Score: 5, Insightful

    * The photos are hosted on a McAfee server

    Oh, won't that be enteraining when the central DB eventually gets hacked and all the photos are released.

    --
    Socialism: a lie told by totalitarians and believed by fools.
  14. Intel acquired McAfee 2 years ago for $7.68B by Gordo_1 · · Score: 2

    and this idiocy is what they've got out of it so far? Where's all the "security-built-right-into-the-hardware" goodness they've been using to justify the acquisition?

  15. Don't post it in the first place? by ezakimak · · Score: 2

    If you don't want people to have a copy your photo, then don't share it in the first place. It's that simple. Once you publish, it's out, simple as that.

    Why don't people understand these simple concepts?

    No different than "Hey, Robert told me a secret--it's supposed to be just for me, so don't tell anyone else!..."

  16. Snake oil, right up until Hollywood hears about it by zeraien · · Score: 2

    Someday all computers, tablets, cameras and phones will come with a hardware chip that will detect whatever watermark they embed into the image/video and prevent you from doing anything with the image other than seeing it. Even your camera will detect it and just not record anything. It's already around to some extent in the form of Macrovision, HDCP and other similar technologies that are used to prevent you from snapping screenshots or recording stuff off of your screen. After all, Intel does make lots of those chip things...

    I'm a pessimist, so I'll give it 5 years.

    Or someone will come up with a way to encode the image so that it can only be viewed through human eyes, but creating some fancy brain-pattern thing, any alteration of the image, and the pattern is destroyed, leaving only gibberish behind... that would be cool. But also scary.

  17. Re:in other news by aaronb1138 · · Score: 4, Insightful

    Sorry, McAfee AV will still be crap.

    It's biggest problem isn't the fact that their virus definitions miss the most virii, worms, and malware of any that I have used. It's the fact that their software tends to kludge up a system and break compatibility all to frequently. Then there are the times when it does find a virus, and instead of removing it, just pegs the CPU at 100% and does nothing to stop the problem. I would find this last situation reasonable with some virus truly hardcore at ripping out AV, but I was able to remove the last one by just deleting the cached .exe from the system and rebooting. Sucked that it took 10 minutes to get that far because the McAfee processes made the system slow as a 386.

    Intel made a bad buy. Even Microsoft had the foresight to just start fresh and develop AV on their own instead of buying a pile of steaming poo to polish. I've felt bad for most of the companies McAfee has bought out in the past. Too often the response to support requests is, "Buy the new McAfee edition of the product you already own." even when McAfee hasn't held the company long enough to have gotten farther than the rebranding process.

  18. Just broke their plugin by timepasser · · Score: 5, Interesting

    Here's the write-up: http://blog.securitee.org/?p=241

  19. Re:in other news by Zontar+The+Mindless · · Score: 2

    i'd rather have mcafee make me a sandwich or something and leave security and privacy to the experts.

    I'd like to have that engraved on a plaque that I could present to people who tell me their machines must be secure because they run McAfee.

    --
    Il n'y a pas de Planet B.
  20. Re:Downside: requires app/plug-in by Zontar+The+Mindless · · Score: 2

    * The photos are hosted on a McAfee server

    Oh, won't that be enteraining when the central DB eventually gets hacked and all the photos are released.

    Dunno about you, but I stuck a bag of Insta-Pop in the m-wave as soon as I read the summary.

    --
    Il n'y a pas de Planet B.
  21. Re:McAfee is like the lottery.. by Zontar+The+Mindless · · Score: 2

    So do McAfee--this group just doesn't include any of the users.

    --
    Il n'y a pas de Planet B.
  22. WTF? by dell623 · · Score: 2

    You want a photo to NOT be shared around the internet, so obviously the logical thing to do is to upload it to Facebook?

    No, the logical thing to do is to not share it, rather than trusting it to a poor cousin of DRM when pretty much all DRM schemes have been cracked within days.

    This one? Took someone a few minutes: http://it.slashdot.org/comments.pl?sid=3113117&cid=41320371

    Security companies are becoming pathetic cash grabbing monsters. The contracting PC industry is hurting them because they can't peddle more and more antivirus licenses. Microsoft security essentials, windows firewall, and tools like Malwarebytes are hurting them because they are free and work better than their bloated expensive 'security' programs.

    So now they're using weird FUD to try and break new markets, releasing 'antivirus' apps for mobile operating systems that do absolutely nothing: http://crave.cnet.co.uk/mobiles/android-security-apps-are-mostly-useless-says-report-50007252/

    And now this bullshit...

  23. impossible by amoeba1911 · · Score: 2

    You see the image on your computer means that it's already been copied to your computer and you can do whatever you want with it. Use a packet sniffer to get the data being passed, reverse engineer the applet to see what method/key it uses for decryption... or just run in a VM and take a screenshot. McAfee has reached a new low....

    Stupid things like this are on par with perpetual motion machines when it comes to stupidity and shortsightedness.