Re: about smartcards (Re: TPM support status ?)

[Robert Millan <rmh@aybabtu.com>]

On Thu, Aug 20, 2009 at 10:11:31PM +0200, decoder wrote:
> Robert Millan wrote:
>>> This is wrong. Smartcards of course have a an interface to interact 
>>> with  them.
>>>     
>>
>> Yes, but it's usually just a button or similar.  It doesn't behave like a
>> computer.
>>   
> What I meant is the software interface. There are crypto protocols to  
> interact with a smartcard and they are similar to the TPM protocols.

Ok, I guess we're losing the big picture.  Maybe I should explain what I
have in mind.

We provide free software.  Software which comes with the freedom to modify,
among others.  We want all users to be able to enjoy this freedom.

In order for free software to be usable by everyone, we need it to be a valid
replacement for proprietary software.  For example, if proprietary software
can read a book, we want free software to be able to read this book too.

HOWEVER, when this proprietary software is being authenticated by a TPM, it
can gain ability to open files that free software cannot.  This scheme can
also be used against other proprietary programs, but it can't be used to
favour free software, simply because it would render it unmodifiable (hence
not free anymore).

So, my concern is that TPM makes it possible for certain parties to ban free
browsers, free document viewers, free media players, etc, from accessing
certain files, websites, or resources in general.

My concern is NOT about people using authentication mechanisms.  Smartcards,
fingerprints, passwords, whatever.  I don't care what they're used for.  I
just care that users can use free software and retain the freedom to
modify it.

>> No, you can't.  What you can do is use the smartcard for authentication
>> in a computer that has been previously rigged against its user.  In this
>> case it is the computer which implements DRM, not the card.
>>   
> The TPM module itself does not implement DRM either... It provides the  
> necessary crypto routines, a smartcard does so too.

It's completely different.  A smartcard can't be used by a third party to
coerce you into installing a specific program.  A TPM can be.

>>   "Either you use this TPM to certify you're running Crippleware Reader
>>    2.0 or you can't read this book"
>>   
> You can use a smartcard as well for that purpose. Crippleware Reader 2.0  
> can cryptographically make sure that the smartcard is attached, and  
> refuse to work otherwise.

I don't care if Crippleware Reader refuses to work.  It's a non-free
application, so refusing to work is not to be unexpected.

However, if I use a free reader, this reader can do everything Crippleware
can do, and more.  We can have it send data to a smartcard, have it signed,
then send it to anyone else, etc.  The smartcard has no way to tell if it's
dealing with the non-free program or not.

> And you can make the Smartcard a requirement  
> to read the book.

Without a TPM, the smartcard can be a requirement to *decrypt* the book.  Once
it's decrypted, I can do anything I like with it, like printing, modifiing,
etc, as long as I'm allowed by law (see "fair use doctrine").

-- 
Robert Millan

  The DRM opt-in fallacy: "Your data belongs to us. We will decide when (and
  how) you may access your data; but nobody's threatening your freedom: we
  still allow you to remove your data and not access it at all."