Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Trustworthy Computing Mini-Poll
From: "Bruce Ediger" <eballen1 () qwest net>
Date: Mon, 23 Dec 2002 08:16:43 -0700 (MST)

On Sun, 22 Dec 2002, Simon Richter wrote:

I believe they have thought about this. Trusted software can only be
debugged on a special "developer" machine. My personal favourite would
be the "carefully crafted" DVD, which uses a buffer overflow in a player
routine (where people optimize for speed over security anyway). :-)

So, let me get this straight:

(1) TCPA will only protect us against the what's traditionally been
the least virulent form of computer viruses, file infectors.
(2) TCPA won't help the spam situation.
(3) Only specially licensed machines can run a debugger.
(4) TCPA machines won't allow us to copy arbitrary files - the hardware
or something prevents us from copying some "magic" files.

The upshot of #3 seems like "you can compile programs only if you you've
got a special license", but I don't know if the whole thing goes that far.

Why on earth would I pay money for such a deliberately, cynically crippled
piece of hardware?  "Sure, Mr Gates and Mr Grove!  I'll pay a thousand
dollars for your new Tee Vee I mean Pee Cee!"  You've got to be kidding
about all this.  Surely a free market won't allow this kind of crippling
to take place - it will have to be performed by some kind of government

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]