eWeek Microsoft Watch
Advertisement
Advertisement
April 8, 2008 2:12 PM

Yes, But Is Microsoft Trustworthy?



Joe Wilcox
Joe Wilcox

News Analysis: Microsoft finally dropped its big RSA Conference announcement: A call for trust.

I'm not at RSA, where Craig Mundie, Microsoft's chief research and strategy officer, unveiled the company's "End-to-End Trust" vision. (Microsoft doesn't use hyphens; I added them.) Microsoft's objectives are troubling and shouldn't be misunderstood. While issuing a call to the industry and for vendor neutrality, Microsoft's proposal mainly benefits its own platforms.

As is typical of this kind of announcement, Microsoft's goals are broad and nebulous. Microsoft wants to:

  • Create a so-called "trusted stack" for authentication from the operating system.

  • Develop an identity system facilitating online "authentication, authorization, access and audit." (I will simply die if Microsoft uses AAAA as the acronym.) I got that from Microsoft's press release, which should have referred to I4A (identity claims, authentication, authorization, access, and auditing).

  • Align technological, "social, political and economic forces."

Microsoft's first step will be integration of Credentia's U-Prove technology, which was acquired last month. U-Prove's security approach is trendsetting, based on a concept sometimes referred to as "minimal disclosure."

In a short blog post, Craig Wittenberg, a Microsoft identity and access technical strategy architect, explained: "Microsoft's vision of end-to-end trust will require strong authentication across hardware, software, people and data (when desired). We refer to this as a 'trusted stack.'"

In two-page summary titled "Creating a More Trusted Internet," which Microsoft published today, Scott Charney, corporate vice president of the Trustworthy Computing group, added little concrete to the nebulous goals:

"We believe there are three key pieces to creating greater trust on the Internet. The first is creation of a trusted stack where security is rooted in hardware and where each element in the stack (hardware, software, data and people) can be authenticated in appropriate circumstances. The second piece involves managing claims relating to identity attributes. We need to create a system that allows people to pass identity claims (sometimes a full name perhaps, but at other times just an attribute such as proof of age or citizenship).
"This system must also address the issues of authentication, authorization, access and audit. Finally we need a good alignment of technological, social, political and economic forces so that we make real progress. The goal is to put users in control of their computing environments, increasing security and privacy, and preserving other values that we cherish such as anonymity and freedom of speech."

Charney's 23-page whitepaper "Establishing End to End Trust"—also published today—is a pretty good read. He identifies real online privacy and security problems (overstating some of them) and lays out broad principles for improving trust.

The last section, "The Obvious Challenges," identifies those nebulous "forces" that must come into alignment. Charney makes the tough observation that social and economic values often aren't in alignment with one another or with broader privacy and security safeguard objectives. For the social, he rightly observes: "An anonymous world cannot be the ultimate objective, either, particularly in a world marked by identity theft." He correctly concludes that "economic forces can drive certain behaviors...even when those decisions do not serve security well."

It's the technological goals that bug me. Maybe my years of covering Microsoft have made me cynical. The use of "stack" and "operating system" means Windows to me. Then there is Microsoft's press release subtitle about "broad collaboration to extend Trustworthy Computing to the Internet." Doesn't that mean the extension of Microsoft security technologies?

What does Trustworthy Computing really mean? I've heard Microsoft use the term for years in constantly changing contexts. At one time, Trustworthy Computing referred to Windows Vista's security platform. Then, poof! In fairness to Microsoft, the broader, nebulous concepts outlined in Mundie's October 2002 whitepaper haven't much changed. But the realization of those concepts in real products is more questionable, particularly Windows.

I commend Microsoft's leadership initiative but question its objectives. The security "stack" is supposed to be hardware-based at the core, which could mean platform independence. But Microsoft's inclusion of "operating system," presumably means Windows, whether desktop or mobile device. More importantly, I don't see enough in the proposal about the Internet cloud. On the contrary, Microsoft's call for end-to-end trust ignores the cloud, which should be one of the most—if not themost—important points.

Charney's paper rain dances all around the cloud, but doesn't make precipitation. The approach is hardware-and-software centric, even though trust is needed in online scenarios.

I do trust Microsoft to promote its platforms, which is what this so-called broad industry call is really about. Microsoft wants to use trust as differentiator for Windows and its other platforms. Considering how often Windows is hacked or patched, how trustworthy is that?

Create, Communicate, Collaborate with IT Professionals at Ziff Davis Enterprise IT Link.

Posted by Joe Wilcox on April 8, 2008 2:12 PM

| Comments (5) | del.icio.us | digg.com | Trackback | Post a Comment
TrackBack

TrackBack

http://www.microsoft-watch.com/cgi-bin/mte/mt-tb.cgi/13222

Comments (5)

brnzn :

Could this re-casting of trusted computing be a response to the rise of OpenID?

Posted by brnzn | April 8, 2008 8:19 PM

billybob :

I see a new UAC popup...

"The website you are trying to connect to is not running ISO approved 'Secure Application Stack' and will cause a virus. You may continue but your computer could be damaged. What would you like to do?"

[Yes] [No] [Cancel] [Allow]

Posted by billybob | April 8, 2008 8:35 PM

portuno :

This smacks of a remake of "Hailstorm: the Vaudeville Act".

Posted by portuno | April 9, 2008 12:57 AM

Pinball :

If my analysis of "Establishing End to End Trust" is correct, then all of those who have complained about Vista's constant authentications and accused MicroSoft of "selling out" to the music and video recording industries have completely missed the point.

MicroSoft Corporate Vice President Scott Charney's conclusions are telling: "But a key
question remains: As we become increasingly dependent on the Internet for all our daily activities, can we maintain a globally connected, anonymous, untraceable Internet and be dependent on devices that run arbitrary code of unknown provenance? If the answer to that is 'no,' then we need to create a more authenticated and audited Internet environment--one in which people have the
information they need to make good trust choices." One of the essential components to that vision is software authentication: "The operating system must be verifiable based upon keys stored in the hardware (e.g., 'trusted boot'). This allows the device to claim that the operating system has not been tampered with to bad effect."

Am I the only one who notices striking similarities between this and "Digital Rights Management" and "Windows Genuine Advantage?"

I think it is clear that DRM is not a feature of Vista imposed by the recording industry, it is MicroSoft's vision of the future, and "Genuine Advantage" is a prototype for "trusted computing." This would explain why both "Genuine Advantage" authentication and DRM were bundled into the operating system, rather than into a DVD player or driver (DRM) or required only for initial activation (WGA). It also explains why the dysfunctional and intensely unpopular "Genuine Advantage" is being added to applications (such as the Office suite).

Charney may not have used the buzz-word "cloud," but he did make it very clear that this paper is about radically transforming the way that we use the internet: "Thus, this paper is an invitation to discuss how one might fundamentally 'change the game,' and . . . create a meaningfully more secure and privacy-enhanced Internet."

If this were only to apply to MicroSoft products, it would be MicroSoft's suicide note. Instead, Charney makes it very clear that he sees EVERY action on the desktop, the network, or the internet as requiring constant authentication. Clearly, MicroSoft expects to provide the tools, or at least to set the standards. If you do not want to play "the game," you will just have to sit on the sidelines.

Who says that MicroSoft cannot innovate? Unfortunately, this innovation may be a vision for MicroSoft opportunity, but it is a nightmare for most of the rest of us.

Posted by Pinball | April 9, 2008 7:07 PM

Earthceuticals :

"arbitrary code of unknown provenance"

That is the problem here, anybody who can get their hands on a copy of visual basic can write code that when it is executed... will overwrite the operating kernel of windows o.s. that executes the code. Now for the solution... is it the above scenario? Or should it simply be protecting the o.s. kernel? The above scenario seems a long way around protecting a kernel IMHO. Even if we want or need to force rights management... what's wrong with protecting the kernel o.s.? To me, these are separate issues.

Posted by Earthceuticals | April 14, 2008 11:13 PM

Post a Comment

 
 


RSS Syndication
Advertisement

Advertising & Search

Business Applications

Channel

Corporate

Desktop & Mobile

Developer

Games & Consumer

Interoperability

Marketing

Messaging & Collaboration

Operating Systems

Podcasts

Security

Server

Storage

Vista

Web Services & Browser

Advertisement
Microsoft Watch     Contact Us | Advertise | Site Map
Ziff Davis Enterprise

Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
RSS Feeds | White Papers | ROI Calculators | Tech Podcasts | Tech Video |

Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
eWEEK | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
Publish | eWeek Security | Strategic Partner | Web Buyer's Guide | Windows for Devices

Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | IT Marketplace | igrep

Use of this site is governed by our Terms of Use and Privacy Policy

Copyright ©1996-2007 Ziff Davis Enterprise Inc. All Rights Reserved. Microsoft Watch is a trademark of Ziff Davis Enterprise, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.
Ziff Davis Enterprise