April 25, 2005
SAN JOSE, Calif. - Microsoft Corp.'s plan to hardwire computer security into a silicon chip rather than relying on software alone will make its debut in the next release of the Windows PC operating system that will ship late next year.
The technology, to be described by Microsoft Chairman Bill Gates during a speech in Seattle on Monday, will protect the startup of PCs equipped with a security chip and ensure that sensitive files aren't accessible when someone tries to boot the computer using a portable hard drive or floppy disk.
Gates also was expected to showcase other features of the frequently delayed operating system code-named Longhorn, including improved graphics that support see-through windows, better ways to visualize data, more sensible file organization and faster searching.
During his keynote at the Windows Hardware Engineering Conference, Gates was expected to declare that Longhorn will be Microsoft's most secure operating system ever.
It's also the first to implement the company's vision of boosting security by placing cryptographic keys in silicon chips rather than storing them as data on a hard drive. It's much more difficult to crack a chip than it is a program.
The initiative - once code-named Palladium but later called the Next Generation Secure Computing Base, or NGSCB - was announced in 2002 and was quickly attacked by privacy advocates, Microsoft critics and others as a mechanism for taking control of PCs from their owners.
Some claimed it would enable strict copyright protection schemes for music, movies and software. It also could restrict the tinkering that has driven computer industry innovation over the years, they said.
But the first NGSCB product - secure startup - isn't expected to be as controversial as chip-based rights management. Microsoft, however, has not said how else Longhorn might interact with the chip.
Neil Charney, director of product management in Microsoft's Windows group, said the feature is most likely to be used by business computers, especially in laptops that store sensitive data that could come back to haunt companies after a theft.
A number of companies, including Microsoft, are working together to beef up security using a combination of hardware and software. NGSCB is just one iteration, though it's likely to have the most impact given Microsoft's dominance.
Some PC vendors, including IBM Corp. and Hewlett-Packard Co., have been offering PCs with security chips for years. On Monday, HP announced it will support Longhorn's implementation on some of its business computers and workstations.
Gates also was expected to unveil other security enhancements in Longhorn, including user accounts that don't always have the highest privileges but are flexible enough to allow software installation. Other operating systems such as Linux and Mac OS X support such accounts by prompting for an administrator's password when needed.
Longhorn also will include a number of visual improvements such as icons that show content from the documents they represent. The software also is expected to introduce more intuitive ways of organizing files as well as faster searching.
Charney said the features will work even without a new file system that was originally scheduled to ship with Longhorn. The updated file system, called WinFS, is now slated to be available in a preview release when the final version of Longhorn is shipped in late 2006.