|
-
July 15th, 2002, 11:31 PM
#1
Junior Member
MS Palladium - Yay or Nay???
http://www.epic.org/privacy/consumer...palladium.html
excerpts
"Through software and hardware controls, Palladium would place Microsoft as the gatekeeper of identification and authentication. Additionally, systems embedded in both software and hardware would control access to content, thereby creating ubiquitous Digital Rights Management schemes that can track users and control use of media. ..."
"Known Elements of the Palladium System
The system purports to stop viruses by preventing the running of malicious programs.
The system will store personal data within an encrypted folder.
The system will depend on hardware that has either a digital signature or a tracking number.
The system will filter spam.
The system has a personal information sharing agent called "My Man."
The system will incorporate Digital Rights Management technologies for media files of all types (music, documents, e-mail communications). Additionally, the system purports to transmit data within the computer via encrypted paths. "
And from http://www.wired.com/news/antitrust/0,1551,53805,00.htm
"Microsoft's recently announced R&D project, which includes chipmakers Intel and AMD as partners, aims to combine software and hardware extensions to traditional PC architecture. Palladium's goal: Move security-conscious applications out of the server room and back onto the Windows desktop, by soothing both consumer fears about privacy and corporate concerns over piracy."
...
"At its simplest, Palladium provides a tamper-proof vault for data on the desktop. "One of the areas the PC needs to grow in is its resistance to certain kinds of attacks," said Geoffrey Strongin, platform security architect for AMD.
Those attacks include Web-based cracking and viruses, ripping CDs, modification of application programs, and sniffs of users' passwords and other personal data, according to Strongin. "
...
"In theory, the Palladium system would be safe from any attacks short of physically opening the box and tapping into the hardware.
To support Palladium, AMD and Intel are reportedly developing new versions of the x86 chip, the platform used for Intel's Pentium and AMD's Athlon. According to Strongin, these chips support a new "Trusted" execution mode that allows cryptographically authenticated programs access to a separate memory area.
The CPU is augmented by a security coprocessor, which holds a unique pair of crypto keys. The coprocessor is a separate component not for security but for manufacturing reasons. Unlike today's CPU chips, each coprocessor must be personalized with a crypto string stored in non-volatile memory –-- more akin to a smartcard than an Athlon.
Strongin suggested smartcard makers may manufacture the coprocessors, which would then be combined with Intel or AMD CPU chips to create a Palladium-ready motherboard.
A corresponding software component, called the Trusted operating root (or just "the nub" by Microsoft engineers), would work in conjunction with the CPU and its coprocessor.
Together, the nub and coprocessor are designed to encrypt data in such a way that no other combination of nub and coprocessor would be able to decrypt it. Change a single bit of code or move the data to another computer, and it is unreadable. This is the core of Palladium, according to Strongin and Peter Biddle, a Microsoft product unit manager leading Palladium's development.
"It's like having Kerberos (cryptographic authentication) between applications, instead of between computers on the network," Biddle said. Applications on the PC would be unable to read from or write to one another's Palladium-protected data. "To the rest of the system, that part of memory is invisible -- it does not exist," Biddle said.
Microsoft plans to publish the source code for the nub, he added, because the system is secure using crypto algorithms rather than proprietary code. "
_________________
If you lived here you\'d be home by now.
-
July 16th, 2002, 12:38 AM
#2
 Linux Fan...
"Known Elements of the Palladium System
The system purports to stop viruses by preventing the running of malicious programs.
The system will store personal data within an encrypted folder.
The system will depend on hardware that has either a digital signature or a tracking number.
The system will filter spam.
The system has a personal information sharing agent called "My Man."
The system will incorporate Digital Rights Management technologies for media files of all types (music, documents, e-mail communications). Additionally, the system purports to transmit data within the computer via encrypted paths. "
Bah.... 90% of those things listed Microsoft already promised with Windows, or can be done by using/making programs to effectivly fit the need. Two words I tell you, two words:
Bull ****.
In theory, the Palladium system would be safe from any attacks short of physically opening the box and tapping into the hardware.
I'm not sure whether I should shoot somebody or laugh...
...This Space For Rent.
-[WebCarnage] 
-
July 16th, 2002, 12:40 AM
#3
Kinda like giving them the keys to your car...
And letting them drive.
"Where do you want to go today? Never mind, I
think I have a better idea, just shut up and
move to the back of the bus!"
I came in to the world with nothing. I still have most of it.
-
July 16th, 2002, 01:08 AM
#4
-
July 16th, 2002, 01:13 AM
#5
Senior Member
This is all nice an good to think about but it is really vaporware becuase it doesn't exsist. and if M$' track record for getting it right the first time is anything, and they say it can't be cracked. Someone somewhere will find away, it is the nature of this beast. Someone builds it and then someone finds away to unbuild it and make it work a different way.
I have problems with letting big brother run everything in the world...(Think I am really going to start running LINUX on a day to day basis)... What is the % of systems that run on M$ platform... starts one to wondering about all of this. what if someone, somewhere, wanted to be able to read all the data running on that platform... all thry need to do is build it into the code... (or maybe they already have....?!?!)
My other Computer is a 4000 node Beowulf Custer 
-
July 16th, 2002, 01:29 AM
#6
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Its called pimp ****, pimp **** If anyone wants to know why I have this name its because I do have a big one and I was dating this girl and banging her mother also so like I said it's pimp **** , pimp **** And Yes I am a hacker not because I said so, because my family says it, friends say it, girlfriend's says it. I will always find a way to beat security always have always will remember that and yes I am A cracker