Rick Welykochy rick at praxis.com.au
Sun Jan 28 10:17:19 AEDT 2007

Roger Clarke wrote:
> [Peter Gutmann is a well-known and highly-reputed crypto whizz]
>           A Cost Analysis of Windows Vista Content Protection
>                Peter Gutmann, pgut001 at cs.auckland.ac.nz
>        http://www.cs.auckland.ac.nz/~pgut001/pubs/vista_cost.html

Deja vu!


It is well worth discussing the impending release of Vista. There
are a number of issues we could tangentialise (!), e.g.

(*) Content protection mechanisms, as mentioned in the abstract for
     the above article; Microsoft seems to be attempting a product-based
     lock-in for content provision, i.e. all major content distributors
     will be forced to use Vista's DRM scheme for mass distribution
     to PC-based systems. Can anyone say "monopoly"? I use that word
     since I strongly doubt that the DRM system (which is hardware
     software based) is "open" and "interoperable" by any definition
     of the word.

(*) Increased system requirements, i.e. will there be a need for yet
     another wholesale upgrading of PC hardware across the board?

(*) In a relateed vein, given increased requirements, will the big
     users of Microsoft software hold back on deploying Vista? There are
     indications that the answer is Yes.

(*) Even more security holes: if their past record is anything to
     go by, Microsoft will be adding heaps of new features to the
     product without addressing existing security concerns; as has
     already been observed, Vista will protect Hollywood's content
     and yet still does not offer a secure way to access your bank

Regarding the gotterdammerung of Windows security, it will most
likely take the actual twilight of the Internet (i.e. last dying gasps)
before anything is done to stop the plague of the March of the
Windows Zombies. "Allowing" Vista onto the Internet without
adequate independent vetting is insanity, pure and simple, imnsho.


