(Please note: these are my "running notes" from a session; unedited and comin' at ya....where it says, "EJN:" - that indicates my comment not the session.)
Nash: Directions on msft security
=================================
The Internet: everyone connected. This power brings connectivity and *risk*. Risk flows to all device types (in numbers).
Need: a security model that provides protection to that proliferation....expect newer applications that have greater value. Corporate boundaries disappear. The ability to provide control in that atmosphere demands a change.
Right: a right to a trustworthy computing environment.
Platform that is trustworthy: applications and hardware.
4 areas of focus: security, privacy, reliability & biz integrity.
EJN: Nash is summarizing the pre-conditions to an identity switch...ie, the proliferation of a distributed network that moves toward handling high-value interactions.
response: fundamentals, architecture, innovation = Platform evolution.
EJN: heard most of this presentation at RSA, so I'm working on an article.
Mike Atalla with the Rights Management Server demo -- pretty cool stuff. Think of being able to put policy rules around your email....ie, when you say "confidential - do not fwd," people actually *can't*.
Nash is onto En-scub (palladium). Think of en-scub (the nexus) as a slimmed down operating system that can operate more securely.
Key thing: in the long term, to enable the things that are aspired to by the internet -- it only becomes attainable if "we" (msft") can deliver an environment of trust.
NGSCB components:
1. strong process isolation
2. sealed storage
3. secure path to and from user
4. attestation
(drill down)
1. roots protection in the hardware; secure kernel (the "nexus"); mediates processes via nexus to isolate apps.
benefits: prevents machine misconfiguration; protects apps and info; end user - my private info is protected from bad software.
2. Walled data; encrypts data based on hardware secrets; protects keys with hardware/nexus; protects data on a per-app basis.
benefits: keeps stored data inaccessible to bad software; end user - my info is private.
3. more secure collaboration; establishes security btwn user and program; prevents snooping and spoofing; proves user presence.
benefits: conforim confidentiality of transaction; confirm integrity; "fingertip to eyeball" security.
4. Attestation (most important) - authenticate trustworthiness; defines the secure environ; defines what should be trusted; verifies that things remain trustworthy; extends how trust works beyond the desktop.
benefits: know what can run; decide who/what to trust; delgate trust decisions ot someone else (can); endu user - software can't hijack my browser.
(intel takes the stage)
(demonstrating NGSCB) -- first time ever seen live; they're hacking into machines. using the hacks to look for "account numbers" - first in a non-En-Scub environment; then in an En-Scub environment.
An demonstrating the "secure channel" via a chat application. (trying to use a key stroke logger).....
Cool stuff -- all shown to protect the user (not the Record company -- disappointing, i know).
Posted by ejnorlin at May 6, 2003 02:39 PM