heise Security - 20 November 2012
The German government's Interior Ministry has issued a white paper that outlines the principles that should be applied when dealing with "Trusted Computing" and "Secure Boot", which has been welcomed by the Free Software Foundation Europe (FSFE). As a fundamental principle, the government says that it supports raising the level of security on IT platforms in industry, government and with private users with the introduction of trusted computing, but that this must comply with criteria the paper lays out.
Firstly, it says that device owners must be in complete control of the trusted computing security systems in their devices and that delegation of this control to a third party should require "conscious and informed consent" from the device owner. Secondly, the paper requires that devices be delivered with trusted computing security systems deactivated so that users have to opt-in to their use.
The devices' implementations of these solutions must also be sufficiently transparent to enable owners to make responsible decisions over its use and allow for deactivation without a "negative impact" on hardware and software that doesn't use the trusted computing functions.http://www.h-online.com/security/news/item/German-government-advocates-security-in-the-hands-of-users-1753715.htmlWhite Paper link