• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

German Government Warns Key Entities Not To Use Windows 8

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
the German Government pushed back against the initial report.

http://www.zdnet.com/german-government-refutes-windows-backdoor-claims-7000019739/

It's not that they are concerned so much about a backdoor but that the Win 8 OS and TPM v2.0 combination could result in data loss in the even of hardware damage or that if there is a vulnerability in the TPM that it could be exploited.

In the opinion (translated), the BSI "warns neither the public nor the [German] government prior to any deployment of Windows 8."

"The BSI is currently facing, however, some critical aspects related to specific scenarios in which Windows 8 is operated in combination with a hardware that has a TPM 2.0," it added.
The German federal agency notes that certain groups of users can use Windows 8 and a TPM chip that offer an "increase in safety."

It does, however, also reiterate that the use of Windows 8 in combination with a TPM 2.0 is accompanied by "accompanied by a loss of control over the operating system and the hardware used." It explains that for federal users and computers running critical infrastructure — such as water, electricity, and gas networks — may face "new risks." These computers should be one of, if not the most secure devices running in a country, as they control infrastructure critical to life and well being.

"Generally it should be possible [for] IT users to maintain a self-determined and autonomous dealing with information technology," the opinion read, which any IT professional will know is good, solid advice on the part of any reliable information security person or agency.

The opinion also explains that should Windows 8 or the TPM chip malfunction or become damaged in some way, it can lead to the conditions that "prevent further operation of the system."

The BSI is, essentially, talking about "bricking" computers. And it's right to. If there is a malfunction, it could lead to Windows 8 stopping working, and a situation where data may be lost. Worse, it could lead to the computer or hardware being "permanently withdrawn from use."

The opinion does state (translated): "In addition, the newly established mechanisms can also be used for sabotage by third parties."
Click to expand...

Of course maybe Germany is just being coy and really is concerned about a backdoor but really doesn't want to upset an economic and military ally.

Who knows?




=====
 
TPM FUD is what you post, when you run out of ideas.

Sure, there are ways to compromise TPM, but there are ways to compromise your CPU/keyboard/mainboard/network etc.

If someone was sufficiently motivated to get a backdoor to your computer, they wouldn't need to use TPM to do so. This alone makes TPM appear reasonably benign. Especially because it's an open standard resulting from a consortium of players. Much easier to blackmail only Intel/AMD/ARM into building backdoors into their CPUs.

It's also much easier to debug something like a TPM than it is to debug a CPU, from a simple complexity of the device standpoint.

One of the real dangers of TPM is that the burned in keys are leaked. I wonder what the security is at the plant where the keys are generated...
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top