Re: DRM, Intel, Sony, virtualization and backdoors
From: Peter Grandi (pg_nh_at_0502.exp.sabi.UK)
Date: 06/12/05
- Next message: vividh siddha: "Re: Urgent Requirement for Linux Developers!"
- Previous message: Bernd Paysan: "Re: DRM, Intel, Sony, virtualization and backdoors"
- In reply to: Tony Nelson: "Re: DRM, Intel, Sony, virtualization and backdoors"
- Next in thread: Peter Grandi: "Re: DRM, Intel, Sony, virtualization and backdoors"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Sun, 12 Jun 2005 15:10:06 +0100
[ ... ]
>>> In this fine picture of a happy future there is also an
>>> added bonus: the ''all your bases are belong to us'' effect,
>>> where ''us'' is whoever has the ''keys'' to the hypervisor,
>>> especially if the hypervisor is remotely accessible as in
>>> Intel's AMT (and most likely also in the case of the Cell
>>> hypervisor).
[ ... ]
>> Heh, wait until "hackers" get hold of the hypervisor 'keys'
>> and the technology to exploit them. That'll likely put a
>> quick stop to Hollywood's dreams of media monopolism.
> The chips would have the public keys. (I expect that each
> agency would have its own key.)
Here ''key'' does not necessarily mean a crypto key, even if for
example it is such in an Xbox etc. It is whatever ''knowledge''
allows one control over the hypervisor in the CPU or the chipset.
It could be a carefully designed ''flaw'', even if that risks
discovery, much less so though in a chip than in sw.
The sort of ''keys'' corporate IT managers would users are
likely to be configurable, a bit like setting the BIOS password
(while the Xbox ''key'' is factory set). They will then probably
be stored in some non volatible memory in the CPU or chipset or
some other chip attached to it.
The big problems are:
* The extraordinary amount of power over the CPU/chipset given
to the owner of the ''keys'' thanks to the AMT backdoor.
* That operation of that backdoor most likely is or can be made
essentially undetectable by the user, because I guess that it
is designed to be transparent to the OS, both on the CPU and
in the chipset.
* That it can be made undetectable _who_ has the keys to operate
the backdoor, as short of extraordinary effort it is hard to
exclude that there may be more keys than officially announced,
as correctly inferred here:
> It might even be manageable to give each chip its own secretly
> hidden public keys, as well as publicly acknowledged private
> keys for which the public key for DRM is available, thus
> limiting the damage.
[ ... ]
- Next message: vividh siddha: "Re: Urgent Requirement for Linux Developers!"
- Previous message: Bernd Paysan: "Re: DRM, Intel, Sony, virtualization and backdoors"
- In reply to: Tony Nelson: "Re: DRM, Intel, Sony, virtualization and backdoors"
- Next in thread: Peter Grandi: "Re: DRM, Intel, Sony, virtualization and backdoors"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
