Trusted Computing comes under attack

Alan Cox, a lead Linux kernel developer and security architect, said that trusting computing has often been used to lock customers into buying a particular software and to prevent rival software makers from competing on that platform.

"What we've seen so far in the games console industry has been directed as if users are scum -- 'this console has lots of fancy hardware so you can't run games we haven't written'. This has been a very negative thing and has been used as a way of cutting down competition," Cox said, at a conference on Trusted Computing held in London last Thursday.

The Trusted Computing Group is developing industry standard specifications for trusted computing building blocks. It has claimed that that the technology will create a safer computer environment, reduce business risks and protect end-user data.

Ross Anderson, a professor of security engineering at Cambridge University who spoke at the same event, agreed with Cox that trusted computing could be used to reinforce monopolies and lock in customers. He claimed the Information Rights Management (IRM) technology that Microsoft introduced in Office 2003, which aims to protect customer's information from unauthorised access, makes it more difficult for companies to migrate to alternative desktop products.

"Imagine that all your customers start using information rights management, if you then want to change to OpenOffice you will have to go to every customer and get their [authentication] certificate," Anderson claimed. "Switching then becomes more difficult -- it's no longer a matter of migrating the data that you control, but migrating data that is controlled by many people."

Anderson claimed that the PC industry is moving towards a different business model where hardware is subsidised by software purchases. He predicted that by 2008, people may be able to buy an "OfficePlan" for US$29.95 a month, which will give them free hardware on which they can use Microsoft Office applications. The increasing use of this business model would have negative implications for free software vendors. "Companies won't let people run free software on the free hardware," Anderson said.

But Trusting Computing is not inherently "evil", according to Cox, who said that the technology could be useful for preventing tampered software from accessing a network, or to help protect auditing and virus tools from being compromised.

"Trusted Computing is a tool. There's a lot of political debate, that it's really evil or good. But it's only a tool," he said "A lot of people would rather it went away, but we only need to understand what the negatives are so people don't misuse it."

One important step would be to stop using the phrase Trusted Computing, as it is "very misleading", according to Cox. He suggested that it is referred to as "proving and provisioning" instead, to make it clear that it is predominantly about approval, rather than safety.

"An approval system doesn't protect you, whereas Trusted Computing gives you the impression that it's your friend," he said.

ZDNet UK's Ingrid Marson reported from London. For more coverage from ZDNet UK, click here.

• Related stories

• Alerts

Add your opinion

Trusted computing Anonymous -- 30/01/06 (in reply to #120128264)

If it's my computer, I will say what runs on it, thank you.
If it's my employer's computer, he or she can say what it does.
The usual practice is that vital backups are un-encrypted, but physically secure. To encumber the backups in any way is to compromise the ability of the business to recover from a disaster.

• Reply to comment
• Report offensive content

Here Here Jose A. Agudo -- 31/01/06 (in reply to #120128265)

"If it's my computer, I will say what runs on it, thank you."

I couldn't have said it better myself. I believe Trusted Computing is just a "baked-in" extension of DRM. Alan Cox's description of IRM is a perfect example of how Trusted(or is it Treacherous?) Computing is used to achieve vendor lock-in. And we all know how vendor lock-in is a bad thing.

• Reply to comment
• Report offensive content

nothing new Anonymous -- 31/01/06

DRM and Trusted Computing is just another way for Microsft to fight free open source software all in the name of protecting users because they don't know any better.

I know for one I am sick of being told by companies what I can do with equipment/software/music that I buy.

If I buy a song I should be able to put it in a device in my car, in my bedroom, in my office, at my work, and any other fricken place I want to without paying more than once.

If I buy a laptop I should ALWAYS be able to write my own software and put it on their whether it is an os, bios, or anything else.

This isn't even about open source to the conusmer but it is to microsoft and this is really about civil and consumer rights.

I know one thing my money will go to laptop manufacturers that will always let me install the os of my choice.

Microsoft thinks hardware will be free and it should be the software that will cost money.

what they really mean is they want to control what hardware gets sold and what it has on it.

they really have to be stopped and I hope the DOJ is watching what their future business plan is.

if a company has to resort to this kind of "innovation" to fight open source - well I would say it is time to sell your microsoft stock because this shows they are a slowly dying dinosaur.

• Reply to comment
• Reply to story
• Report offensive content

• Just In

• Most Popular

• Most Discussed

Reader Services

Popular Topics

Essentials