The Electronic Frontier Foundation (EFF) published a paper on "trusted computing". Unlike most documents on this subject, which are quite decisively on one side or the other, this one takes care to be quite balanced. For example, the discussion of sealed storage is very positive, and the section on misconceptions demolishes a number of fears.
Moreover, beyond a good critique, the paper offers a solution to one problem:
A simple measure we call Owner Override could fix the problem by restoring others' inability to know for certain what software you're running -- unless you decide you would be better off if they knew. Owner Override subtly changes the nature of the security benefit provided by attestation. Currently, attestation tells remote parties whether the software on your computer has been changed. Attestation plus Owner Override would let remote parties know if the software on your computer has been changed without your knowledge. Thus, detection of illicit activity would still be practical. If, however, you had made deliberate changes on your own computer, you could conceal them, just as you can today, to prevent someone else from using your choices as a reason to discriminate against you.
Read von Lohmann's reflection, too.
Comments