Until the release of Windows 11, the upgrade proposition for Windows operating systems was rather straightforward: you considered whether the current version of Windows on your system still fulfill…
The article focuses a lot on the security of the boot process, but there’s no reason the TPM can’t be used for DRM as well (as an example, https://ieeexplore.ieee.org/document/5283799). It’s correct when it points out the locked down nature of consoles and phones.
We could conceivably be in for a future where Windows refuses to run code that’s not validated even after the OS boots. Or where it sees pirated software on the system and refuses to function in some manner until the software is removed/corrected to its liking.
There are so many possibilities here and all of them are bad.
Forced online accounts so Microsoft always knows when/where you login
Stored encryption keys so Microsoft could theoretically provide access to any computer the government requests
Telemetry already reporting god only knows what metrics about what and how you use your software
Forced AI that literally watches everything you do on your screen storing it in a known location making for a valuable target and also potentially/likely being used to create more telemetry and insights into your habits
Eventual full control over your hardware by enforcing “trusted platform” restrictions
It’s so fucking brazen I’m gobsmacked. As an elder Millennial, I get it, I can already hear most of you tallying in your head if having to care about your OS is gonna be the final straw . This is no longer a nerdy request to please use Linux, this is a five alarm fire. Add to all this how much Microsoft is in bed with the US government and potential issues with all that on the horizon and I really, truly believe it’s time to switch, for your own good.
Please. Even if you’re not going to run out and install Linux tomorrow, you need to start mentally preparing yourself for the inevitability of the task. Get yourself accustomed to the idea and when you’re ready to dip your toes in, just know how many resources are out there for you.
And to the Linux community out there, there are going to be a lot of newcomers who don’t have the technical skills to undertake this and enjoy/appreciate this in the same way as you do. Be kind to them, the need for us to support each other has never been greater. Please.
“Treacherous computing” is a more appropriate name, because the plan is designed to make sure your computer will systematically disobey you. In fact, it is designed to stop your computer from functioning as a general-purpose computer. Every operation may require explicit permission.
As of 2022, the TPM2, a new “Trusted Platform Module”, really does support remote attestation and can support DRM. The threat I warned about in 2002 has become terrifyingly real.
Actual, honest to god reasons to upgrade to Windows 11 are already vague and questionable. Your average user probably doesn’t even see any particular reason and only perceives the nuisance of it. But it’s hard to fully close your iron fist around a platform when TPM enablement is so sparse in the consumer space. So what better way to do it than a mandatory OS upgrade with it as a system requirement and assure all (or a vast majority of) systems align at once?
Of course there are ways for stubborn users to skirt those requirements, but that misses the primary point of Trusted Computing. While the OS may baseline function to some degree, there’s no telling what functionality may be crippled by not being in a trusted state. EDIT: For example, this could easily tie into games with anti-cheat such that they will refuse to run on Windows 11 unless TPM is enabled.
I don’t know the future any better than anyone else, I’m just trying to read the winds at the moment. I suspect they may not try to pull the entire trap closed all at once and that Windows 11 may continue to more or less function as we’ve seen past iterations. But the pieces will be in place by then and it’s only a matter of time before some greedy exec gives the word …
I suspect they may not try to pull the entire trap closed all at once and that Windows 11 may continue to more or less function as we’ve seen past iterations
Microsoft will be taking a page from Google playbook. Google has be gradually reducing the “openness” of their android platform. They now have these “security checks” enforced on android. Meaning that it’s trivial for an application to determine if the phone a “genuine android” or not.
This’ll trickle into webbrowser too (if it’s not already in browsers like chrome). It’s only a matter of time before web pages will be able to determine if they’re running on a “secure OS” and fail to run. It’ll start out with your banking website, then expand to shopping websites, ultimately every page will enforce it (“oh, I see you have an unauthorized browser plug in installed. We care about your security, therefore we won’t run. Please restore your device to it’s secure defaults.”)
This future is so horrible and Linux with its 4% market share won’t change anything.
And what’s particularly galling about this is that it’s never made any sense to me. Are you telling me an Android app, on compromised hardware or otherwise, could send malformed data that would for instance deposit $1M into my bank account? That doesn’t sound like an issue of local security. An app is just a frontend, all validation would still be through the banking infrastructure.
I’ve been daily-driving Linux for over a decade at this point so you don’t need to convince me, and I’ll just spin up a Windows VM for things aren’t picky about baremetal OS installs, but also don’t play nice with WINE.
TPM was known to be a DRM Trojan horse in 2004. Then everyone forgot about that fact.
Sure, pushing Linux is just a new angle, but don’t think for a second that TPM has any purpose other than making your own computer trust a cabal of corporations over you, the owner. And if there is a critical mass of TPM standardized hardware, such that a “trusted” environment is the standard, it will lock you out of major use cases on all “untrusted” systems, including Linux.
Hey man, yeah, I get it. I worry a lot about sounding like a conspiracy theorist; a real Chicken Little.
But when I look internally and ask myself why I make these posts, why I conspire so much about unknown futures, I come to two most likely outcomes:
I’m trying to trick you into installing Linux for some reason. Selfishly I guess if there’s a larger userbase demanding support for things then I can expect better support for myself. Or I’m just trying to sound like a pompous smartass in front of internet strangers. But those are a little obtuse.
I see a bunch of people standing in what I perceive (possibly incorrectly, but nonetheless) a trap and I’m shouting, “Hey, get outta there now before it springs!” because I have general empathy towards other people.
Worst case I’m wrong and I look a fool. I really don’t have a problem with that. I know who I’d trust if the positions were switched 💯
I had an ipod that was filled with “pirated” (ripped) audio files, never owned a single itunes purchased song, and have used Windows on many computers that didnt have OneDrive setup and never experienced either of those.
Do you have some sources for those cause I’d be interested to read about them.
The article focuses a lot on the security of the boot process, but there’s no reason the TPM can’t be used for DRM as well (as an example, https://ieeexplore.ieee.org/document/5283799). It’s correct when it points out the locked down nature of consoles and phones.
We could conceivably be in for a future where Windows refuses to run code that’s not validated even after the OS boots. Or where it sees pirated software on the system and refuses to function in some manner until the software is removed/corrected to its liking.
There are so many possibilities here and all of them are bad.
It’s so fucking brazen I’m gobsmacked. As an elder Millennial, I get it, I can already hear most of you tallying in your head if having to care about your OS is gonna be the final straw . This is no longer a nerdy request to please use Linux, this is a five alarm fire. Add to all this how much Microsoft is in bed with the US government and potential issues with all that on the horizon and I really, truly believe it’s time to switch, for your own good.
Please. Even if you’re not going to run out and install Linux tomorrow, you need to start mentally preparing yourself for the inevitability of the task. Get yourself accustomed to the idea and when you’re ready to dip your toes in, just know how many resources are out there for you.
And to the Linux community out there, there are going to be a lot of newcomers who don’t have the technical skills to undertake this and enjoy/appreciate this in the same way as you do. Be kind to them, the need for us to support each other has never been greater. Please.
DRM is already the primary purpose of trusted compute if you read shareholder meeting transcripts; security is a marketing side effect.
Ya boy Richard Stallman agrees and has been saying this for years (although this article is more recentish), https://www.gnu.org/philosophy/can-you-trust.en.html
Actual, honest to god reasons to upgrade to Windows 11 are already vague and questionable. Your average user probably doesn’t even see any particular reason and only perceives the nuisance of it. But it’s hard to fully close your iron fist around a platform when TPM enablement is so sparse in the consumer space. So what better way to do it than a mandatory OS upgrade with it as a system requirement and assure all (or a vast majority of) systems align at once?
Of course there are ways for stubborn users to skirt those requirements, but that misses the primary point of Trusted Computing. While the OS may baseline function to some degree, there’s no telling what functionality may be crippled by not being in a trusted state. EDIT: For example, this could easily tie into games with anti-cheat such that they will refuse to run on Windows 11 unless TPM is enabled.
I don’t know the future any better than anyone else, I’m just trying to read the winds at the moment. I suspect they may not try to pull the entire trap closed all at once and that Windows 11 may continue to more or less function as we’ve seen past iterations. But the pieces will be in place by then and it’s only a matter of time before some greedy exec gives the word …
Microsoft will be taking a page from Google playbook. Google has be gradually reducing the “openness” of their android platform. They now have these “security checks” enforced on android. Meaning that it’s trivial for an application to determine if the phone a “genuine android” or not.
This’ll trickle into webbrowser too (if it’s not already in browsers like chrome). It’s only a matter of time before web pages will be able to determine if they’re running on a “secure OS” and fail to run. It’ll start out with your banking website, then expand to shopping websites, ultimately every page will enforce it (“oh, I see you have an unauthorized browser plug in installed. We care about your security, therefore we won’t run. Please restore your device to it’s secure defaults.”)
This future is so horrible and Linux with its 4% market share won’t change anything.
Agreed.
And what’s particularly galling about this is that it’s never made any sense to me. Are you telling me an Android app, on compromised hardware or otherwise, could send malformed data that would for instance deposit $1M into my bank account? That doesn’t sound like an issue of local security. An app is just a frontend, all validation would still be through the banking infrastructure.
I’ve been daily-driving Linux for over a decade at this point so you don’t need to convince me, and I’ll just spin up a Windows VM for things aren’t picky about baremetal OS installs, but also don’t play nice with WINE.
You’re making up scenarios so you can get outraged over them and push linux lol.
TPM was known to be a DRM Trojan horse in 2004. Then everyone forgot about that fact.
Sure, pushing Linux is just a new angle, but don’t think for a second that TPM has any purpose other than making your own computer trust a cabal of corporations over you, the owner. And if there is a critical mass of TPM standardized hardware, such that a “trusted” environment is the standard, it will lock you out of major use cases on all “untrusted” systems, including Linux.
And that deserves a lot of outrage.
Hey man, yeah, I get it. I worry a lot about sounding like a conspiracy theorist; a real Chicken Little.
But when I look internally and ask myself why I make these posts, why I conspire so much about unknown futures, I come to two most likely outcomes:
Worst case I’m wrong and I look a fool. I really don’t have a problem with that. I know who I’d trust if the positions were switched 💯
Didn’t Apple brick ipods if they had pirated audio files?
Didn’t Microsoft push a few updates that BSOD Windows OS if you weren’t setup for their OneDrive cloud?
Doesnt seem very made up.
I had an ipod that was filled with “pirated” (ripped) audio files, never owned a single itunes purchased song, and have used Windows on many computers that didnt have OneDrive setup and never experienced either of those.
Do you have some sources for those cause I’d be interested to read about them.
I currently have a modded iPod mini with 128Gb of music, around 1Gb of which was bought from iTunes.
It works perfectly fine. Remarkably so, in fact. Damn things 20 years old, I can plug it into my M2 Macbook and sync music like always.
Strange cause that must be bricked according to the person I replied to lol
Apple are shithouses under Cook, but they’re not that bad.
Yet.
This may come to shock you but not everyone has the same experiences as you.
Which is why I asked you for some sources for your claims. I told you my experience and that I’d never heard of what you’re saying happened.
So do you have any sources or did you just make it up?