Comment Re:I think Linus is right (Score 1) 548
Again: Please inform you how TCPA works.In every current desktop OS, applications never interface directly to the hardware, they do this through the OS libraries and the system kernel. Why would applications suddenly start interfacing directly with hardware now? Security hardware would need drivers, just like any other hardware.... Otherwise, access to security hardware would require involvement of the kernel, which would need to be trusted in this case.
Yes, the Kernel needs an interface to communicate with the TCPA-Features of the Hardware, but the Kernel don't need to be signed. The DRM-Application can test if it talk to the Processor, or to a imposter because of the key in the TCPA-Modul that is signed from the Hardwarevendor. Yes, the DRM-Application speaks with the OS-Interfaces and the OS-Interfaces talk to the TCPA-Module, but there is an encrypted End-to-End-Tunnel from the the Hardware to the DRM-Software. The DRM-Software can see that the public key from the TCPA-Module is signed from the Hardwarevendor, and the initial data from the application will be encryptet with this public key and therefore the Data can only decryptet by the private-key that lies in the Hardware. In this secure Chanel they generate a AES-Session-Key to encrypt the Data for the following Session. The only kernel you can build, is a Kernel that can copy the ENcryptet Data in some Datafiles, but every Datastream will encryptet with an new Session-Key, and so you can work a couple million years to decrypt a single session.
You can only make a Kernel that can get the Mediastreams UNencrypted outside the Processor, if you have the signing-key from the Hardwarevendor, and you can bet that this key lies on a networkless PC behind steel-reinforced doors.
TCPA will not kill Open-Source-Software and even on your 100% selfbuild Linux-from-Scratch you will be able to run DRM-Software that enables you to watch the newest Hollywood-Blockbuster - if you wish. The "only" thing that TCPA will bring, is that the big player from the Content-Industrie will put all their Content in encrypted bottles that you can only open with DRM-Software and TCPA-Hardware. This can be seen as a social problem, but it has nothing to do with render you unable to run your own software on a TCPA-Hardware. The social problem with DRM and TCPA can only be solved by law, or if the Community build enough open content.