Ross's TCPA paper

Adam Shostack adam at zeroknowledge.com
Mon Jun 24 11:29:15 EDT 2002 

On Mon, Jun 24, 2002 at 08:15:29AM -0400, R. A. Hettinga wrote:
> Status:  U
> Date: Sun, 23 Jun 2002 12:53:42 -0700
> From: Paul Harrison <pth-02 at pacbell.net>
> Subject: Re: Ross's TCPA paper
> To: "R. A. Hettinga" <rah at shipwright.com>

> The
> important question is not whether trusted platforms are a good idea, but
> who will own them.  Purchasing a TCP without the keys to the TPM is like
> buying property without doing a title search.  Of course it is possible to
> _rent_ property from a title holder, and in some cases this is desirable.
> 
> I would think a TCP _with_ ownership of the TPM would be every paranoid
> cypherpunk's wet dream.  A box which would tell you if it had been tampered
> with either in hardware or software?  Great.  Someone else's TCP is more
> like a rental car:  you want the rental company to be completely responsible
> for the safety of the vehicle.  This is the economic achilles heal of using
> TCPA for DRM.  Who is going to take financial responsibility for the proper
> operation of the platform?  It can work for a set top box, but it won't fly
> for a general purpose computer.

In general, I'm very fond of this sort of ownership analysis.  If I
have a TCPA box running my software, and thinking that its mine, how
do I know there isn't one more layer?  Leave it off, and my analysis
is simpler.

I suspect that verifying ownership of the TPM will be like verifying
ownership of property in modern Russia: There may be a title that
looks clean.  But what does the mafia think?  What about the security
services?  There may even be someone with a pre-Bolshevik title
floating around.  Or a forgery.  Hard to tell.  It's annoying to have
one's transaction costs pushed up that high.

I can get very high quality baseline software today.  What I need for
my cypherpunk wet dreams is ecash, and a nice anonymizing network.
What I also need is that the general purpose computing environment
stay free of control points, in Lessig sense.


Adam


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com

More information about the cryptography mailing list