Feeds

MS, Intel and friends want to keep your data safe

'Open' alliance uses e-trust figleaf to cover control-freak nuts

  • alert
  • submit to reddit

Beginner's guide to SSL certificates

Microsoft and Intel have both managed to screw up over unique ID numbers, but here comes the second wave assault; with the aid of Compaq, Hewlett-Packard and IBM they've formed the "open" Trusted Computing Platform Alliance (TCPA) "focussed on building confidence and trust of computing platforms in e-business transactions by creating an industry standard for security technologies in personal computing environments." And do you know, today's release doesn't mention unique IDs once. The TCPA is inviting other companies to join in to develop a "new hardware and software specification" that will result in "a more trusted and secure personal computing platform based on common standard." If we skip the ecstatic applause from the two rentaquotes in the TCPA release (no quotes from the principals, funny that) we start to get to what meat there is. "Companies [managing networks of PCs] need a common standard to simplify the way they deploy, use and manage security elements on personal computers." One might observe that, although that may well be, it has a lot more to do with a corporation's central control of its users than, er, trust in e-commerce. "The goal of the new alliance," it continues, "is to create a base-level security standard that would complement existing technologies, and enhance security at the level of the platform hardware, BIOS and operating system." Call The Register luddite, but as we see it this is addressing the issue of data security rather than trust. Sure, on a personal level you're worried about people getting at your data on your local machine or LAN, but that's an issue that could be fixed by companies (no names, no pack drill) writing software with less holes in it. Sure, you're worried about people you do business with misusing the personal data they glean from you, but that's a legislative issue, right? And finally, you're obviously worried about people stealing your credit card details, but can't that be fixed with a smart card or, if you want to get really clever, retinal image technology? We note that Compaq's keen on fingerprints - that works, so what's the rest of this guff about? The plotters propose a specification proposal for TCPA by second half next year, and say it will "help define security operations in several critical areas." These may (they're currently still investigating) include secure storage of confidential information, generation of random numbers used to create public and private (our Italics, that one's still rumbling then) encryption keys and electronic signing of data used to authenticate the identity of the sender. Scary, no? Not according to our friends. "Recognising that privacy is extremely important, the TCPA specification will allow a computer owner [note choice of word, corporate serfs - wouldn't you have preferred "user"?] to maintain complete control over information contained by the system." Trust them. ®

Internet Security Threat Report 2014

More from The Register

next story
Bladerunner sequel might actually be good. Harrison Ford is in it
Go ahead, you're all clear, kid... Sorry, wrong film
Euro Parliament VOTES to BREAK UP GOOGLE. Er, OK then
It CANNA do it, captain.They DON'T have the POWER!
Musicians sue UK.gov over 'zero pay' copyright fix
Everyone else in Europe compensates us - why can't you?
I'll be back (and forward): Hollywood's time travel tribulations
Quick, call the Time Cops to sort out this paradox!
Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!
Now my lawyers have bailed 'cos I'm 'OFFICIALLY' BROKE
Forget Hillary, HP's ex CARLY FIORINA 'wants to be next US Prez'
Former CEO has political ambitions again, according to Washington DC sources
prev story

Whitepapers

10 ways wire data helps conquer IT complexity
IT teams can automatically detect problems across the IT environment, spot data theft, select unique pieces of transaction payloads to send to a data source, and more.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
The total economic impact of Druva inSync
Examining the ROI enterprises may realize by implementing inSync, as they look to improve backup and recovery of endpoint data in a cost-effective manner.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.