[16820] in cryptography@c2.net mail archive
Re: Dell to Add Security Chip to PCs
daemon@ATHENA.MIT.EDU (Mark Allen Earnest)
Sat Feb 5 13:27:41 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 04 Feb 2005 14:30:48 -0500
From: Mark Allen Earnest <mxe20@psu.edu>
Reply-To: mxe20@psu.edu
To: "Trei, Peter" <ptrei@rsasecurity.com>
Cc: Erwann ABALEA <erwann@abalea.com>,
Tyler Durden <camera_lumina@hotmail.com>, rah@shipwright.com,
cryptography@metzdowd.com, cypherpunks@al-qaeda.net
In-Reply-To: <017630AA6DF2DF4EBC1DD4454F8EE29704776C5F@rsana-ex-hq1.NA.RSA.NET>
This is a cryptographically signed message in MIME format.
--------------ms090106010304010501070004
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Trei, Peter wrote:
> It could easily be leveraged to make motherboards
> which will only run 'authorized' OSs, and OSs
> which will run only 'authorized' software.
>
> And you, the owner of the computer, will NOT
> neccesarily be the authority which gets to decide
> what OS and software the machine can run.
>
> If you 'take ownership' as you put it, the internal
> keys and certs change, and all of a sudden you
> might not have a bootable computer anymore.
>
> Goodbye Linux.
> Goodbye Freeware.
> Goodbye independent software development.
>
> It would be a very sad world if this comes
> to pass.
Yes it would, many governments are turning to Linux and other freeware.
Many huge companies make heavy use of Linux and and freeware, suddenly
losing this would have a massive effect on their bottom line and
possibly enough to impact the economy as a whole. Independent software
developers are a significant part of the economy as well, and most
politicians do not want to associate themselves with the concept of
"hurting small business". Universities and other educational
institutions will fight anything that resembles what you have described
tooth and nail.
To think that this kind of technology would be mandated by a government
is laughable. Nor do I believe there will be any conspiracy on the part
of ISPs to require to in order to get on the Internet. As it stands now
most people are running 5+ year old computer and windows 98/me, I doubt
this is going to change much because for most people, this does what
they want (minus all the security vulnerabilities, but with NAT
appliances those are not even that big a deal). There is no customer
demand for this technology to be mandated, there is no reason why an ISP
or vendor would want to piss off significant percentages of their
clients in this way. The software world is becoming MORE open. Firefox
and Openoffice are becoming legitimate in the eyes of government and
businesses, Linux is huge these days, and the open source development
method is being talked about in business mags, board rooms, and
universities everywhere.
The government was not able to get the Clipper chip passed and that was
backed with the horror stories of rampant pedophilia, terrorism, and
organized crime. Do you honestly believe they will be able to destroy
open source, linux, independent software development, and the like with
just the fear of movie piracy, mp3 sharing, and such? Do you really
think they are willing to piss off large sections of the voting
population, the tech segment of the economy, universities, small
businesses, and the rest of the world just because the MPAA and RIAA
don't like customers owning devices they do not control?
It is entirely possibly that a machine like you described will be built,
I wish them luck because they will need it. It is attempted quite
often and yet history shows us that there is really no widespread demand
for iOpeners, WebTV, and their ilk. I don't see customers demanding
this, therefor there will probably not be much of a supply. Either way,
there is currently a HUGE market for general use PCs that the end user
controls, so I imagine there will always be companies willing to supply
them.
My primary fear regarding TCPA is the remote attestation component. I
can easily picture Microsoft deciding that they do not like Samba and
decide to make it so that Windows boxes simply cannot communicate with
it for domain, filesystem, or authentication purposes. All they need do
is require that the piece on the other end be signed by Microsoft. Heck
they could render http agent spoofing useless if they decide to make it
so that only IE could connect to ISS. Again though, doing so would piss
off a great many of their customers, some of who are slowly jumping ship
to other solutions anyway.
--
Mark Allen Earnest
Lead Systems Programmer
Emerging Technologies
The Pennsylvania State University
--------------ms090106010304010501070004
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature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--------------ms090106010304010501070004--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
