X

Phoenix toughens up BIOS

The software that sits between the OS and a PC's hardware hasn't changed much in decades. Phoenix Technologies wants to introduce greater security and copy protection.

Matthew Broersma Special to CNET News
See full bio
Matthew Broersma
4 min read
The software that sits between the operating system and a PC's hardware hasn't changed much in decades. Now, Phoenix Technologies wants to introduce greater security, usability and copy protection.

Phoenix, one of the biggest makers of BIOS (basic input/output system) software, has released the first entry in a line of next-generation products that it promises will drive utility computing and prevent unauthorized users from misusing protected intellectual property.


Get Up to Speed on...
Utility computing
Get the latest headlines and
company-specific news in our
expanded GUTS section.
The Core Managed Environment (CME) TrustedCore NB for notebooks and tablet PCs, announced this week, is the first product in Phoenix's Core System Software (CSS) category, designed to extend the usefulness of the humble BIOS. TrustedCore NB is meant to allow businesses to keep their mobile computers safe from identity theft, unauthorized network access and data loss. Future versions will take aim at servers, blades, desktops and embedded systems such as consumer electronics, with plans to introduce digital rights management (DRM) and more closely integrate the BIOS with Windows.

A BIOS is the software that ties the operating system to a PC's hardware. It carries out basic tasks, such as hardware and system configuration, and has been standardized and made simple enough to allow the installation of alternative operating systems, including Linux.

Phoenix's CSS is a next-generation BIOS with a more sophisticated integration of operating system and hardware, making it easier for system administrators to remotely monitor the hardware configurations of their systems, for example. It is built on a framework Phoenix that calls Device-Networked Architecture, or D-NA, and is part of a trend on the part of information technology powers such as Microsoft and Intel to introduce "trustworthy computing" into their products at a more basic level.

The plans have been criticized as crippling PCs' capabilities, solidifying the Microsoft operating system monopoly, and even, in cases where DRM is introduced, extending copyright holders' power into areas that have traditionally remained under the control of consumers.

Crypto through the BIOS
A cryptographic engine in TrustedCore NB can be used for authenticating digital signatures and protecting the core system software, and the BIOS allows manufacturers to create a protected area for the secure execution of built-in applications, shielded from attacks by malicious code.

A feature called Cryptographic Service Provider is designed to prevent unauthorized users from accessing corporate data from a stolen notebook by preventing duplication of digital certificates for Windows clients and applications.

"Through our Core System Software, Phoenix is making a dramatic change that will become the basis of networked computing for the next two decades," Phoenix Chief Executive Albert E. Sisto said in a statement. "Today, nearly all digital devices are connected to a network, whether to conduct global commerce or just to access e-mail. This requires an advanced foundation for implementing an extensible and flexible architecture designed specifically for the age of networked computing."

Ultimately, Phoenix wants to create a world of PCs and devices capable of interacting below the operating system level, a crucial development for grids, clusters, blade servers and the "on-demand computing" technology advocated by IBM, Hewlett-Packard, Sun Microsystems and others. Manufacturers will be able to protect critical applications such as system recovery and virus protection from malicious code, and services such as self-management and self-authentication can be built into devices and servers at a basic level.

More controversially, Phoenix said manufacturers will be able to prevent users from tampering with areas of the system used for copy protection. Phoenix recently said it is touting a BIOS with built-in DRM technology to major PC manufacturers.

In September, the company said it had developed a prototype of its CME including DRM from Orbid. The DRM would allow content providers to identify which PCs and devices are authorized to play particular files, more effectively controlling content distribution, file-trading and moving software from one machine to another, according to Phoenix. Orbid's DRM is not part of TrustedCore NB.

Phoenix said the CME will allow PC makers to embed digital rights management directly into the hardware, though they would have the option of allowing users to turn it off. Consumer electronics makers are particularly interested in the technology, according to Phoenix.

At the company's Strategy 2004 conference this week, Phoenix emphasized that the D-NA architecture is designed to fit neatly into Microsoft's plans for trustworthy computing. Phoenix said that D-NA will incorporate components tied into Windows and .Net applications via Microsoft's CryptoAPI.

Phoenix is marketing the TrustedCore NB BIOS to laptop system designers and contract manufacturers, and it is expected that IBM is a likely customer. Fujitsu and Samsung have endorsed the technology. Phoenix said it will begin shipping TrustedCore for desktops by March 2004.

Phoenix said it has provided firmware to more than 1 billion PCs and non-PC digital devices over the past 25 years.

ZDNet UK's Matthew Broersma reported from London.