The founder of Atari, a video game developer, said at a conference that trusted platform module (TPM) technology will help makers of software, including video game creators, to win the war against software piracy, which reduces sales of titles aimed at personal computers. But there is a big question whether this is correct and TPM will really help.
“There is a stealth encryption chip called a TPM that is going on the motherboards of most of the computers that are coming out now. What that says is that in the games business we will be able to encrypt with an absolutely verifiable private key in the encryption world – which is un-crackable by people on the Internet and by giving away passwords – which will allow for a huge market to develop in some of the areas where piracy has been a real problem,” said Nolan K. Bushnell, the founder of Atari, at Wedbush Morgan Securities annual management access conference, reports Gamesindustry.biz web-site.
A Trusted Platform Module offers a combination of hardware and software cryptographic methods to secure data. Each TPM comes with its own cryptographic key, which is unique. On the one hand, TPM can ensure that certain programs or unauthorized users cannot access certain data, on the other hand, it sports such features as remote attestation, which allows software developers to ensure that a program is used strictly on one system. But such limitation may raise concerns particularly from video games enthusiasts who upgrade PC hardware pretty often and will hardly appreciate purchases of games that they already own.
Very few systems nowadays support TPM, but the usage of the technology is increasing and in several years time TPM may become much more common. It should be noted that even though the unique RSA key that is recorded into a device during production is still vulnerable while a program that has obtained it from the TPM is utilizing it to complete encryption/decryption operations.
It is interesting to note that security of Blu-ray and HD DVD movies that use protection scheme Advanced Access Content System (AACS), which is also based on “un-crackable” keys (which were unique for titles, but not discs), was compromised in several quarters after the first high-definition movies hit the market. Still, Mr. Bushnell believes that protecting video games is considerably easier.
“Piracy of movies and music is probably unstoppable because if you can watch it and you can hear it, you can copy it. Games are a different thing, because games are so integrated with the code. The TPM will, in fact, absolutely stop piracy of gameplay. As soon as the installed base of the TPM hardware chip gets large enough, we will start to see revenues coming from Asia and India at a time when before it didn’t make sense,” he said.
Comments currently: 14
Discussion started: 05/27/08 06:22:56 PM
Latest comment: 06/01/08 09:50:41 AM
Expand all threads |
Collapse all threads
[1-8]
1.
Did Atari seriously believe people will be dumb enough to buy into its Traitorous Prosecution Militia scheme after how StarFarts driven off sales?
[Posted by: UBS | Date: 05/27/08 06:22:56 PM]
2.
I wouldnt say "absolutely" stop piracy, but it may detour it somewhat to people who dont know to mod pcb chips like game consoles.
[Posted by: gman | Date: 05/27/08 09:21:12 PM]
3.
I personally support such protection against any piracy that will eventually destroy the PC gaming industry. If every game is copied and stolen illegally, who is going to make PC games any more?
[Posted by: CharlieX | Date: 05/27/08 11:30:34 PM]
+ expand thread (1 answer)
- collapse thread
I mostly buy my PC games used on EBay. How is this DRM / TPM going to effect the used PC game market? Anyone know? Does this mean no more used games? What if I buy a new PC?
This DRM / TPM could backfire and further hurt the PC gaming industry, and push more gamers over to consoles.
[Posted by: EndPCNoise | Date: 05/28/08 01:11:04 PM]
4.
Yea.... Sure this will work! lmfao, just like vista was gonna be uncrackable right? Just give it up, hackers will ALWAYS win.
[Posted by: Darcwolf | Date: 05/28/08 03:34:24 AM]
5.
With BIOS and OS support, TPMs do allow for absolute security. HDCP was broken not due to an encryption failure, but a key management failure. In a TPM-enabled OS, there is end-to-end key security. The only way to break this security is to bus-sniff between the CPU and the TPM. With the inclusion of TPMs in the CPU core itself, this becomes impossible.
Also: "It should be noted that even though the unique RSA key that is recorded into a device during production is still vulnerable while a program that has obtained it from the TPM is utilizing it to complete encryption/decryption operations."
The private key never leaves the TPM. The TPM is requested to perform a decryption, rather than simply hand out the keys.
Of course, the whole point of including TPMs is to support DRM and vendor lock-in. It's completely anti-consumer, and it's only hope of getting widespread is by stealth. MS failed at sneaking it into Vista due to the outcry, but I suspect they'll try again for Windows 7. They're making progress on the hardware side, however, more so with AMD than Intel.
[Posted by: Cynic | Date: 05/28/08 06:17:35 AM]
+ expand thread (4 answers)
- collapse thread
I'd argue that you're taking too negative a view of this.
As regards MS and Vista: they actually did incorporate support for the TPM--it's used with the BitLocker function to provide (in principle) unbreakable encryption for the user's data. Contrary to what you imply here, MS have never been very keen on implementing features which amount to support for (other people's) DRM schemes, although they have done it subsequent to industry pressure simply because not doing so would mean that Windows (XP and Vista) users would not be able to watch HD content--and that is something that consumers typically do, in fact, want, for example. The TPM offers in principle very worthwhile functionality, but like anything, it can be used for both 'good' and 'evil', as it were. However, all current implementations that I know of also allow the TPM to be disabled if the customer doesn't want it due to privacy concerns, for example. Consider that MS doesn't seem to particularly care if its own products get pirated, judging by the deliberately lame copy protection schemes they use (do you think they really couldn't do better if they wanted to?), then there is not much chance that they will want to protect someone else's revenue stream beyond the extent necessary to prevent them from getting sued.
Anyway, in regard to the content of the post, I will not be in the least bit surprised when the anticipated "huge market" in Asia and India completely fails to develop. Videogames, as with all entertainments, are not a necessity for life, so the game industry can't force people to buy its products. I expect that most people who are playing the pirated copies would never have bought them anyway, and will just do without if piracy becomes impossible in the future. Aside from which, many games are apparently not even relatively stable before several patches, so I think that strong (i.e. unhackable) cryptographically-assured content protection is probably too much to expect as a given. If things like that were feasible, and if game developers (read: _not_ the publishers) actually cared to implement them in the first place, then they could certainly be introduced without requiring a TPM. The Module is certainly the entertainment industry's lobby groups' wet dream when described in the terms used here, but the reality is somewhat different.
[Posted by: MTX | Date: 05/28/08 01:58:26 PM]
I should also add that, unlike MS's original 'Palladium' Trusted Computing implementation (which Bruce Schneier has argued was mainly an attempt at screwing over the entertainment industry), the actual Trusted Platform spec, such as it is today, very strongly favours the trust of the physical owner of the Module. That is, as far as I can see, there's nothing to stop someone implementing a fake TPM as a purely software-based driver which will behave as the user dictates rather than as third parties would expect--e.g. it might provide consistent but completely wrong hashes in order to provide proper remote attestation regardless of any modification or misuse the user may make of the software.
Of course, such fake TPMs would be treacherous to anyone wanting to use them for DRM, because only the user would know for sure whether their TPM was trustworthy or not. The only way DRM could be implemented with such untrustworthy implementations around is by tying content to TPMs that the content provider already trusts because they have had a direct hand in manufacturing them (e.g. in portable media devices that they make and into which they can write keys). Therefore, it seems to me very unlikely indeed that the TPM could possibly be the answer that the entertainment industry is looking for, because the whole point of DRM is that they don't trust the consumer--so they obviously can't trust the TPM owned by the consumer either. The point of Trusted Computing is to provide a chain of trust, and for DRM purposes as applied to consumer PCs, the first link in that chain doesn't even exist.
[Posted by: MTX | Date: 05/28/08 05:06:04 PM]
"I will not be in the least bit surprised when the anticipated "huge market" in Asia and India completely fails to develop"
Completely agree here :)
"I think that strong (i.e. unhackable) cryptographically-assured content protection is probably too much to expect as a given"
It wouldn't be the developers implementing such a system. It'd be MS. With NGSCB, it's trivial to securely lock a piece of software to a single machine. All the complex stuff is built into the OS.
"there's nothing to stop someone implementing a fake TPM as a purely software-based driver which will behave as the user dictates rather than as third parties would expect"
Yes and no. There's nothing to stop someone making a software TPM (or even an unauthorized or modified hardware TPM). However, such a TPM would not be usable in Windows. It's like website SSL certificates - there's nothing stopping you using a self-generated certificate, but browsers will recognise that it didn't come from Verisign et. al. and show a warning. In the case of TPM-secured software, it'll simply refuse to work. So closer to Vista x64's required driver signing I suppose.
"the actual Trusted Platform spec, such as it is today, very strongly favours the trust of the physical owner of the Module"
Umm, no. In fact, it has NO trust of the physical owner of the module. That's the whole point (and the source of the "trusted" in the name).
What you're thinking of is a mechanism called "owner override", which has been rejected by the TCG. Not unreasonably, I might add, as it breaks most of the "good" functionality as well.
"Consider that MS doesn't seem to particularly care if its own products get pirated, judging by the deliberately lame copy protection schemes they use"
At the moment, there is exactly one mechanism out there for pirating Vista x64 - ACPI table modification (SLP2/SLIC). This option is only open because of the OEMs (they didn't want to spend the time to individually activate each machine at the factory). The rest of the system is pretty watertight, and if MS hadn't bowed to pressure from the OEMs you can bet that this one hole wouldn't exist.
MS sees the TPM as a huge opportunity for many reasons. It kills piracy, help lock people into their software, and is a nice wedge to use against Linux. They just have to find a way to make it acceptable to consumers.
[Posted by: Cynic | Date: 05/29/08 04:11:59 AM]
"There's nothing to stop someone making a software TPM (or even an unauthorized or modified hardware TPM). However, such a TPM would not be usable in Windows. It's like website SSL certificates - there's nothing stopping you using a self-generated certificate, but browsers will recognise that it didn't come from Verisign et. al. and show a warning. In the case of TPM-secured software, it'll simply refuse to work. So closer to Vista x64's required driver signing I suppose."
It really depends, I suppose, on whether MS would sign the driver for it or not. It certainly would be within their capacity to refuse to do so, I agree--but, at least at present, MS seems to be aiming for compatibility with anything except badly written unstable drivers and outright malware. The driver-signing mechanism of Vista is not itself protected by TPM and can be hacked as well, although obviously it's in most people's best interest not to do so. Of course, it's also possible to make a BIOS hack or particular hardware which is compatible with and appears sufficiently like another manufacturer's product that a pre-existing signed driver would be applicable, so it would still be difficult to reliably identify rogue TPMs. The problem is that the TPM, as it's sold, contains only a randomly-generated RSA key pair, so if a software vendor wants to use it for DRM then they need to have some way of getting their keys into the device securely--and since they can't rely on the pre-existence of other well-known keys as a signature of authenticity, it will be very hard for them to tell if their software is communicating with a real TPM which fulfils the spec, or one which flagrantly breaks it.
"In fact, it has NO trust of the physical owner of the module. That's the whole point (and the source of the "trusted" in the name)."
This is not really what I meant. To clarify, I meant that the only people who can trust the 'trustworthiness' of the TPM itself are those who can verify that it is, in fact, a proper TPM. It seems to me that unless there is going to be some initiative in the future for all TPMs to have a certain key burnt into them, there is no way in principle for anyone to do this who has not had physical contact with it. Moreover, the spec states that tamper-resistance is not a strong requirement, so it seems unlikely that there would be any move toward building in a secret private key because, like with the commonly used media content protection systems, it would be extracted sooner or later and the whole system would be compromised. I agree with you that 'owner override' is not a very sensible concept but the fact remains that it's still within the power of the owner to clear all the information in a TPM except the random RSA key pair, so for any third party to require particular information to be there is, at the least, going to introduce serious compatibility issues. Then the question becomes, will the media industry implement strong DRM that doesn't work with many consumers' equipment, or will they just make the compromise of assuming that anything appearing like a TPM to their software will follow the spec? Neither is a good situation for them.
"At the moment, there is exactly one mechanism out there for pirating Vista x64 - ACPI table modification (SLP2/SLIC)."
Well, there are also some methods which involve the new VLK infrastructure. Although Vista's copy protection is better than that of previous MS products, the fundamental point is that MS makes a blacklist of product keys they don't like--they don't, however, make a whitelist of valid keys. Consequently they implicitly tolerate a low level of piracy (or a high level, depending on how quickly they put keys onto the blacklist) and it's possible to circumvent all of the anti-piracy mechanisms by using a valid but completely spurious key (and associated key server). This is at best a serious hindrance to piracy, but it's not an all-encompassing solution as would be a key whitelist.
In regard to MS vs. Linux: assuming that Linux supports the TPM (which it does), then I can't see any reason why this gives MS an advantage. Unless you mean that it can in principle allow software vendors to exclude all other software from a computer other than what they approve of? I don't know about you, but personally I'd not be very willing to buy a computer which was factory-locked to using a certain set of software, and I'm pretty sure that there are enough people out there feeling similarly to ensure that such computers won't become predominant any time soon. I can't see this changing for as long as the TPM is an optional component, unverifiable by third parties.
[Posted by: MTX | Date: 05/31/08 04:01:35 AM]
6.
This technology will be rejected by consumers and will facilitate a movement to open sourced based gaming platforms, similar to the way that music labels are being cut out of the music business. As soon as you establish your DRM bloat, an open alternative will enter to undercut sales and end around your market control. On a side note, it's incredibly ironic that Bushnell is taking this DRM route, since his whole career is founded on thieving IP from Baer.
[Posted by: whickywhickyjim | Date: 05/28/08 11:32:14 AM]
7.
Stop Software Piracy 4 Good = to WISHFUL THINKING.
You can only delay it for awhile.
People when it comes to making easy money (gain) and greed have the power and tanacity to always find a way around the obstacle.
From the tomb robbers of dead pharaohs to Drug smuggling.
The BEST way to takle piracy (And the Drug Trade or everything providers that is agains the law) is to kill off Demand. A lesson as old as humanity itself and yet still difficult to comprehend.
[Posted by: huh | Date: 05/29/08 04:33:54 AM]
+ expand thread (1 answer)
- collapse thread
Judging by the success of consoles and the decline of the PC gaming industry, I think the PC gaming industry couldn't be doing a better job of killing off demand if they tried.
[Posted by: EndPCNoise | Date: 05/29/08 01:47:35 PM]
8.
Anyway, in regard to the content of the post, I will not be in the least bit surprised when the anticipated "huge market" in Asia and India completely fails to develop. Videogames, as with all entertainments, are not a necessity for life, so the game industry can't force people to buy its products. I expect that most people who are playing the pirated copies would never have bought them anyway, and will just do without if piracy becomes impossible in the future.
-Posted by: MTX
The BEST way to takle piracy (And the Drug Trade or everything providers that is agains the law) is to kill off Demand. A lesson as old as humanity itself and yet still difficult to comprehend.
-Posted by: huh
Coming from someone who stays in one of the top software pirating countries, where the opening cost of doom3 is about 1/3 the minimum wage of an average security guard, where McD pays about 1 USD(current exchange, not when it was stronger) per hr, and its a "liveable" income, it will NOT be anti-piracy measures that suddenly makes Asia(india is part of asia btw) pay for their softwares. It will be cheaper prices.
But the laws of economics and exchange rates says it won't happen? A neighboring country is looked upon as the manufacture of "top" quality pirated goods(non-software), but lo and behold, where is their video and software piracy? They somehow manage to sell their games and VCDs and DVD for a very reasonable amount. IIRC, a game in my country would cost from 3-5 times the amount, after exchange rates.
(i lived in that country for a while, so I did some research on my own.)
My dad, who used to work there, buys original DVDs there when he can.
A pirated DVD here would cost about 1/2-1/3 the price of an original there while it is 1/10 the cost here. There is simply no demand nor worthwhile profit margin to pirate largescale like my country does.
I dont know how or what they do, but I would buy original if it was as cheap as that. Just imagine paying USD 200 for an USD 40 game. Forever. And minimum wage was cut in half. Would you pirate? (DL=free, or USD10 in boxed DVD.)
[Posted by: ZG | Date: 06/01/08 09:50:41 AM]
[1-8]
Make Home Page
Add to Favorites
Print article
Send link to friend
Digg this
Post to del.icio.us
Post to Slashdot
