Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Trustworthy Computing Mini-Poll
From: Simon Richter <Simon.Richter () hogyros de>
Date: Wed, 18 Dec 2002 17:43:13 +0100


On Mon, Dec 16, 2002 at 04:12:51PM -0500, smcalearney () infosecuritymag com wrote:
Information Security would like to ask your opinion on Microsoft's
Trustworthy Computing initiative. Please answer the following questions:

I have different questionnaire:

1. Do you think the TC initiative (as it currently is) is a good thing?

2. Would you buy TC enabled
    - CPUs?
    - CD/DVD readers?
    - Graphics/sound cards?

3. Would you be interested in a CPU that only allows code to execute in
    a lower ring if the code was signed by
    - the owner of the computer?
    - the owner of the computer, with the option to build a web of
    - a set of companies, selected by the owner?
    - a set of companies, selected by a government agency?
    - a set of companies, selected by OS vendors?
    - an OS vendor?

4. Would you be interested in a solution that would allow your computer
to query for sensitive information (passwords, passphrases) securely,
for example by blinking a LED to indicate that you are in secure mode
and that the stuff you type is actually read only by a trusted
application (like the login program)?

This stuff has some interesting potential if you do it right. The
question I have to ask you is whether you think the risks involved are
too great for the gain achieved (so all of this should be dropped), or
whether you think it would make sense to e.g. form a lobby group and ask
for the "owner + web of trust" solution. It is technically doable and in
the line of liberalism, so I think it has a good chance of becoming law.


GPG Fingerprint: 040E B5F7 84F1 4FBC CEAD  ADC6 18A0 CC8D 5706 A4B4

Attachment: _bin

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]