Draft for Mobile Trusted Module specification would protect data, prevent
tampering.
The Trusted Computing Group (TCG) at the CTIA trade show in Los Angeles released a first draft for its Mobile Trusted Module specification.
The specification provides a standard for manufacturers and developers to store data securely within mobile phones. The standardization project includes such manufacturers as Ericsson, Nokia, Motorola and Sony, along with Intel, IBM, and VeriSign.
The TCG first introduced its plans for the mobile security chip at CTIA in San Francisco last year.
"By working together and establishing standards, the mobile phone industry can move more quickly and efficiently to embed security mechanisms into phones, " said Ian Gillot, president of wireless consulting firm iGR.
The Mobile Trusted Module (MTM) would be stored within a protected area of the phone, and would require various "engines" within the device to report the state of their code, ensuring the integrity of the data on the phone.
While the MTM could allow manufacturers and operators to reduce the risk of virus attacks and identity theft, it also could be potentially used to further limit consumers in what they can do with their mobile phones. This could include the regulation of downloadable applications and ringtones, as well as enforcing digital rigth management (DRM) technology.
The consumer advocacy group Electronic Freedom Foundation (EFF) in the past has criticized the TCG for "enabling the carriers to further control their users". The group among things fears that the chip's DRM can be used to prevent users from switching phone carriers.
Spokespersons for the EFF were unavailable for comment on the draft MTM release.