RE: Homeland Security Official Suggests Outlawing Rootkits

["Brian Azzopardi" <brian () gfi com>]

> Sony would pay.

With Vista + HDCP + TPM they won't need to.

Starting from the boot sequence and all the way to the video output
there will be a trusted unbroken chain, in theory anyway*, of components
that do not trust you - the owner of the machine.

Brian


*It seems that a part of the chain, HDCP, is not invulnerable:
http://en.wikipedia.org/wiki/HDCP


-----Original Message-----
From: Barrie Dempster [mailto:barrie () reboot-robot net] 
Sent: Friday, February 17, 2006 4:29 PM
To: Brian Azzopardi
Cc: Fergie; funsec () linuxbox org
Subject: RE: [funsec] Homeland Security Official Suggests Outlawing
Rootkits

On Fri, 2006-02-17 at 16:03 +0100, Brian Azzopardi wrote:
<snip>
> Additionally, starting with Vista x64, only corps who pay an annual 
> license fee to Verisgn for a certificate to sign their drivers with 
> will be able to play in kernel-land.

Sony would pay. Although this measure as it stands is pointless as the
signing process will likely be cracked very quickly and a 3rd party
patch released to "fix" the problem. 

--
With Regards..
Barrie Dempster (zeedo) - Fortiter et Strenue

"He who hingeth aboot, geteth hee-haw" Victor - Still Game

blog:  http://reboot-robot.net
sites: http://www.bsrf.org.uk - http://www.security-forums.com
ca:    https://www.cacert.org/index.php?id=3

  
This mail was checked for viruses by GFI MailSecurity. 
GFI also develops anti-spam software (GFI MailEssentials), a fax server (GFI FAXmaker), and network security and 
management software (GFI LANguard) - www.gfi.com 


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.