Trusted client

In computing, a trusted client is a device or program controlled by the user of a service, but with restrictions designed to prevent its use in ways not authorized by the provider of the service. That is, the client is a device that vendors trust and then sell to the consumers, whom they do not trust. Examples include video games played over a computer network or the Content Scramble System (CSS) in DVDs.

Trusted client software is considered fundamentally insecure: once the security is broken by one user, the break is trivially copyable and available to others. As computer security specialist Bruce Schneier states, "Against the average user, anything works; there's no need for complex security software. Against the skilled attacker, on the other hand, nothing works."^[1] Trusted client hardware is somewhat more secure, but not a complete solution.^[2]

Trusted clients are attractive to business as a form of

Macrovision copy protection, the DVD region code system and region-coded video game consoles

.

Trusted computing aims to create computer hardware which assists in the implementation of such restrictions in software

, and attempts to make circumvention of these restrictions more difficult.

References

^ Bruce Schneier (August 2000). "The Fallacy of Trusted Client Software". Information Security Magazine. Retrieved 2008-01-30.
ISBN 9979-9483-0-2. Archived
(PDF) from the original on 2022-10-09. Retrieved 2006-08-25.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Trusted_client&oldid=1116531846"

[1] Bruce Schneier (August 2000). "The Fallacy of Trusted Client Software". Information Security Magazine. Retrieved 2008-01-30.

[2] ISBN 9979-9483-0-2. Archived
(PDF) from the original on 2022-10-09. Retrieved 2006-08-25.

[1]

[2]

See also

References