Welcome to WebmasterWorld Guest from 220.127.116.11
Forum Moderators: open
Already over 20 million PCs worldwide are equipped with a tiny security chip called the Trusted Platform Module, although it is as yet rarely activated. But once merchants and other online services begin to use it, the TPM will do something never before seen on the Internet: provide virtually fool-proof verification that you are who you say you are.
In fact, with TPM, your bank wouldn’t even need to ask for your username and password — it would know you simply by the identification on your machineI hope I'm not the only one to be alarmed about that statement.
Unless the word trusted has taken on a new meaning there is no way to ever trust a home PC short of biometrics. Corporate networks are often also behind secure doors. Homes are vunerable to theft, and how many people don't even bother with a logon on their PC? Even that provides minimal protection once a machine has been stolen.
In a discussion many years ago, I proposed something similar (but vastly less complex) but in the end I was convinced that it would be a waste of time, etc. unless everyone was fitted with an identity chip (rather like pets commonly have but a little more complex).
This technology will have its uses but it won't protect Windows or any other software for long. And it doesn't identify the operator of the computer. I don't see it as a big thing but maybe I'm missing something.
virtually fool-proof verification
Lets see what happens when a thief steals a computer and then goes online and empties your bank account because the "bank knew who you were". Or when some 13 year old starts making copies of the chip in his bedroom. All of this "virtually" fool proof stuff is nonsense. If someone can figure a way to secure something then there is always someone who can unsecure it and abuse it.
If I clear my disk and give my machine to some charitable organization would the banks etc identify the user of the used machine as the orginal user.
What if someone steals your machine would the bank assume the user was you and dump all your money from the bank.
Seeing that most upgrade their computers nearly every year how would you get banks to identify the new machine as you?
Not fool proof by a mile.
It would give as much of security as a cutout cardboard image of a dog place on your lawn would protect your house.