German Gov. CONFIRMS: Key Entities Not To Use Windows 8 with TPM 2.0, Fearing Control by ‘Third Parties’ (Such As NSA) (http://www.testosteronepit.com/home/2013/8/25/german-gov-confirms-key-entities-not-to-use-windows-8-with-t.html)
"Loss of Control Over the Operating System and the Hardware"

I expected the German Federal Office for Security in Information Technology (BSI) to contact me in an icily polite but firm manner and make me recant, and I almost expected some goons to show up with an offer I couldn’t refuse, and I half expected Microsoft to shut down my computers remotely and wipe out all my data and make me, as the Japanese say, cry into my pillow for weeks, or something. But none of that happened.
Instead, the BSI officially confirmed on its website the key statements in what has become my most popular article ever. On my humble site alone, it was read over 44,000 times so far, received over 2,090 Facebook “likes,” and was tweeted over 530 times. Here it is: LEAKED: German Government Warns Key Entities Not To Use Windows 8 – Links The NSA (http://www.testosteronepit.com/home/2013/8/21/leaked-german-government-warns-key-entities-not-to-use-windo.html).

Internal documents from the BSI that were leaked to Die Zeit (http://www.zeit.de/digital/datenschutz/2013-08/trusted-computing-microsoft-windows-8-nsa/seite-1) described how Windows 8 in conjunction with the new Trusted Platform Module (TPM 2.0) – “a special surveillance chip,” it has been called – allowed Microsoft to control computers remotely through a built-in backdoor without possibility for the user to opt in or opt out. The goal is Digital Rights Management and computer security. Through remote access via this backdoor, Microsoft determines what software is allowed to run on the computer, and what software, such as illegal copies or viruses and Trojans, should be disabled. Keys to that backdoor are likely accessible to the NSA – and in an ironic twist, perhaps even to the Chinese.

Users of Windows 8 with TPM 2.0 (the standard configuration and not an option) surrender control over their machine the moment they turn it on. For that reason, according to the leaked documents, experts at the BSI warned the German Federal Administration and other key users against deploying computers with Windows 8 and TPM 2.0.

The BSI could have brushed off these leaked documents as fakes or rumors, or whatnot. But instead, in response to “media reports,” it decided to clarify a few points on its website (https://www.bsi.bund.de/DE/Presse/Pressemitteilungen/Presse2013/Windows_TPM_Pl_21082013.html;jsessionid=5F95A9EB23 07BDADF689B6907EA4F378.2_cid359), and in doing so, confirmed the key elements. Here are the salient points:

For specific user groups, the use of Windows 8 in combination with TPM may well mean an increase in security. This includes users who, for various reasons, cannot or do not want to take care of the security of their system, but trust that the manufacturer of the system provides and maintains a secure solution. This is a valid user scenario, but the manufacturer should provide sufficient transparency about the potential limitations of the architecture and possible consequences of its use.



From the perspective of the BSI, the use of Windows 8 in combination with TPM 2.0 is accompanied by a loss of control over the operating system and the hardware. This results in new risks for the user, specifically for the Federal Administration and critical infrastructure.



It explains how “unintentional errors” could cause hardware and software to become permanently useless, which “would not be acceptable” for the Federal Administration or for other users. “In addition, the newly established mechanisms can also be used for sabotage by third parties.”
Among them: the NSA and possibly the Chinese.

The BSI considers complete control over the information technology – including a conscious opt-in and later the possibility of an opt-out – a fundamental condition for a responsible use of hardware and operating system.



Since these conditions have not been met, the BSI has warned the “Federal Administration and critical infrastructure users” not to use the Windows 8 with TPM 2.0. The BSI said that it remained in contact with the Trusted Computing Group as well as with makers of operating systems and hardware “in order to find appropriate solutions” (whole text in German (https://www.bsi.bund.de/DE/Presse/Pressemitteilungen/Presse2013/Windows_TPM_Pl_21082013.html;jsessionid=5F95A9EB23 07BDADF689B6907EA4F378.2_cid359)).

This alleged connection between Windows and the NSA isn’t new. Geeks have for years tried to document how Microsoft has been cooperating with the NSA and other members of the US Intelligence Community in designing its operating systems. For example, rumors (http://www.infopackets.com/news/government/2007/20070726_does_windows_vista_send_information_to_th e_government.htm) bubbled up in 2007 that computers with Vista, at the time Microsoft’s latest and greatest (and much despised) operating system, automatically established a connection to, among others, the Department of Defense Information Center and Halliburton Company, back then the Darth Vader of Corporate America.

The Windows 8 debacle comes on top of the breathless flow of Edward Snowden’s revelations and paint a much more detailed picture of how the NSA’s spying activities are dependent on Corporate America. These revelations are already slamming tech companies [my take: US Tech Companies Raked Over The Coals In China (http://www.testosteronepit.com/home/2013/8/19/us-tech-companies-raked-over-the-coals-in-china.html) ] as they find it harder to sell their allegedly compromised products overseas. Which foreign government or corporation would now want to use Windows 8 with TPM 2.0?

Bit more here
http://www.testosteronepit.com/home/2013/8/25/german-gov-confirms-key-entities-not-to-use-windows-8-with-t.html

or here (http://www.testosteronepit.com/home/2013/8/25/german-gov-confirms-key-entities-not-to-use-windows-8-with-t.html)

I'm glad I didn't upgrade to Windows 8. I'm currently using Windows 7 and at this point I want to switch to a new operating system the next time I get a computer. I already custom re-coded parts of the operating system to look and work like Windows XP, which I firmly believe was Microsoft's best operating system. I just don't trust Microsoft anymore.

I just received what is called a "raspberry PI", http://en.wikipedia.org/wiki/Raspberry_Pi, a small credit card sized 700mhz computer that runs a Linux based "rasbain" operating system.
This thing will eventually replace this cumbersome PC here on my desk.
There is also the "Beaglebone Black", http://beagleboard.org/Products/BeagleBone%20Black, another credit card sized mini computer that has an Arm based processor running at 1ghz. These two mini computers will revolutionize the PC industry. Both have HDMI 1080P video output, USB and they are both around 35.00 to 45.00 that can surf the web, print, internet radio, file manage, play games, basic uses the PC is used and marketed for. They both run on 5vdc instead of 120vac.
They are easily programmable for home automation. The Beaglebone Black was designed for electronics and robotics but can do the basics that non geeks don't do, surf the web.
The desktop pc days are numbered with open source with these little mini computers.

I already have the PI hooked up to a 5mp camera that is connected to a rifle scope which is 1080P output to a pair of video glasses....let me tell you its awesome to level the playing field with technology the police have.

Shami--you might want to look at Ubuntu or Kubuntu Linux. I'm not sure how compromised these Os's are, but I doubt they have the same liabilities that any Microsoft OS has. Their major advantage is that you don't have to pay for them. If you have a need to run Windows, you can do it using Virtual Box, or VMS, or run a Windows emulator program called Wine. I have Windows XP running in VBox if I need it. I think the Germans are predisposed to using Linux, and it's not a big deal for them to reject Windows 8. Most Americans too have no affinity for Windows 8 because it puts the long-time Windows users on an unwanted learning curve that makes them look at their computers more like a smart phone or a tablet than an actual 'computer'. Probably doesn't bother users who are under 30, and could care less about 'privacy'. Linux is a great alternative, and the *ubuntu flavors are less of a learning curve that Windows 8.

The Raspberry pi is an interesting direction in computers. The whole thing is about the size of a pack of cigarettes, and is now made in China (earlier ones made in UK). This device has a great future in front of it. I'm thinking of buying one, but I really don't have much time to devote to playing with it.


Hatha

Nein!

If Windows 8 doesn't do bootleg software, Microsoft is doomed.

The bootleg program is the only way to widen and penetrate new markets.

I'm glad I didn't upgrade to Windows 8. I'm currently using Windows 7 and at this point I want to switch to a new operating system the next time I get a computer. I already custom re-coded parts of the operating system to look and work like Windows XP, which I firmly believe was Microsoft's best operating system. I just don't trust Microsoft anymore.


i'm in a similar boat. i have mostly XP32 and XP64 systems, and a little Vista and Windows 7.

i did an upgrade in October 2008, and i would have to say that the software has not progressed.

3D Studio Max 9 (vintage 2008, XP64) is WAAAAY better than 3D Studio Max 2013 (on Windows 7-64). Autodesk forgot their customers and discontinued the Havok "Reactor" game engine.

when i installed Max 2013, i almost felt like someone had died. no Reactor ! that was one of the most fun parts of the program.

Autodesk just decided to stop paying Havoc license fees.


same deal for Adobe. i have most of their software (except Acrobat 3D) in an educational suite.

i have used Flash a lot to convert rendered strings of images into the intended video file.

on both Flash CS4 on XP64, and Flash CS4 on Windows 7-64.


long story short, it's by far more stable on XP64. the windows compatibility mode of windows 7 sucks, how did Microsoft manage to screw that up ?


OK, so much for Autodesk & Adobe. just do a search for "Windows 7 Search Utility" and the 3rd part of the story becomes obvious - file management in Windows 7 is so bad, the number of users using 3rd party search engines sky-rocketed.


what do i use when Flash won't handle a compositing task ? use Blender.

Blender runs on Linux, though i have it on the Windows 7 system.


it's as if God wants me to switch to Linux and Blender.

I'm looking at win 7 but not sure at this piont.

Trump, the rasberry pi's are pretty cool. There are some earlier threads on those around about here. I had one for a while but I think a colleague pinched it. Was strugglign to find a viable use for it to be honest. It has some interesting .iso's you can run on it like a media streaming system. That does work quite well.

It doesn't support ubuntu or more correctly ubuntu doesn't support it which left me a bit cold. I have some projects I wanted to pursue but no ubuntu is a deal breaker. I think the other one Tump mentiosn sounds promising but not sure about ubuntu support. I don't think they support ARM processors and chose not too or maybe I have that back the front and it's ARM they support and not others that the raspberry is using.

I think they are useful as controllers for just anything you can think of. Smart home controller, RC drone controller, video surveilance controller, media player, DVR controller, in car video recorder, War driver device. There are many ways it can be used. There are some more expensive platforms with wider support. By more expensive we are talking about 10x more $$ so it's a big jump.

I would be interested to see what you can muster with that little doohickey

I want to put something other than windows on a notebook. I was going to use unbuntu because it's a no brainer for install and usability, however the story I hear is that it already has an NSA back door to it.

I'm looking at win 7 but not sure at this piont.

Trump, the rasberry pi's are pretty cool. There are some earlier threads on those around about here. I had one for a while but I think a colleague pinched it. Was strugglign to find a viable use for it to be honest. It has some interesting .iso's you can run on it like a media streaming system. That does work quite well.

It doesn't support ubuntu or more correctly ubuntu doesn't support it which left me a bit cold. I have some projects I wanted to pursue but no ubuntu is a deal breaker. I think the other one Tump mentiosn sounds promising but not sure about ubuntu support. I don't think they support ARM processors and chose not too or maybe I have that back the front and it's ARM they support and not others that the raspberry is using.

I think they are useful as controllers for just anything you can think of. Smart home controller, RC drone controller, video surveilance controller, media player, DVR controller, in car video recorder, War driver device. There are many ways it can be used. There are some more expensive platforms with wider support. By more expensive we are talking about 10x more $$ so it's a big jump.

I would be interested to see what you can muster with that little doohickey

I want to put something other than windows on a notebook. I was going to use unbuntu because it's a no brainer for install and usability, however the story I hear is that it already has an NSA back door to it.

The ARM based BeagleBoneBlack has been successful in loading Unbuntu. Theres a youtube video of a BBB running Ubuntu with relatively ease. Theres quite a few OS the BBB can run.
I have one right next to me that is going to be used as a stand alone pc running Ubuntu and Linuxcnc for my two cnc machines that will communicate wirelessly to my desktop.
The BeagleboneBlack is engineered more for the electronic hobbyist (robots, motor control, sensors, ect) over the PI.
The PI was centered around as an easy platform for learning programming in Python in media applications.

The Pi I have is going to sit on an AR15 as a video platform having the small 720p 5mp camera attached to a scope outputting the video to a pair of HUD video glasses. The another PI is for home automation via the I2C pins (alarm system, temp control. door control solar panel control).