Articles

Microsoft brings Trusted Platform Module functionality directly to CPUs under securo-silicon architecture Pluton | The Register

Microsoft reveals Pluton, a custom security chip built into Intel, AMD and Qualcomm processors | TechCrunch

Microsoft Pluton is a new processor with Xbox-like security for Windows PCs | The Verge

From the horse’s mouth

Microsoft

Meet the Microsoft Pluton processor – The security chip designed for the future of Windows PCs (Blog Post)

My Comments

Most recently-built desktop and laptop regular computers that run Windows, especially business-focused machines offered by big brands, implement a secure element known as the Trusted Platform Module. This is where encryption keys for functions like BitLocker, Windows Hello or Windows-based password vaults are kept. But this is kept as a separate chip on the computer’s motherboard in most cases.

But Microsoft are taking a different approach to providing a secure element on their Windows-based regular-computer platform. Here, this is in the form of keeping the Trusted Platform Module on the same piece of silicon as the computer’s main CPU “brain”.

Microsoft initially implemented a security-chip-within-CPU approach with their XBox platform as a digital-rights-management approach. Other manufacturers have implemented this approach in some form or another for their computing devices such as Samsung implementing in the latest Galaxy S smartphones or Apple implementing it as the T2 security chip within newer Macintosh regular computers. There is even an Internet-of-Things platform known as the Azure Sphere which implements the “security-chip-within-CPU” approach.

This approach works around the security risk of a person gaining physical access to a computer to exfiltrate encryption keys and sensitive data held within the Trusted Platform Module due to it being a separate chip from the main CPU. As well, before Microsoft announced the Pluton design, they subjected it to many security tests including stress-tests so that it doesn’t haunt them with the same kind of weaknesses that affect the Apple T2 security chip which was launched in 2017.

Intel, AMD and Qualcomm who design and make CPUs for Windows-based regular computers have worked with Microsoft to finalise this “security-chip-within-CPU” design. Here, they will offer it in subsequent x86-based and ARM-based CPU designs.

The TPM application-programming-interface “hooks” will stay the same as far as Windows and application-software development is concerned. This means that there is no need to rewrite Windows or any security software to take advantage of this chipset design. The Microsoft Pluton approach will benefit from “over-the-air” software updates which, for Windows users, will come as part of the “Patch Tuesday” update cycle.

More users will stand to benefit from “secure-element” computing including those who custom-build their computer systems or buy “white-label” desktop computer systems from independent computer stores.

As well, Linux users will stand to benefit due to efforts to make this open-source and available to that operating-system platform. In the same context, it could allow increasingly-secure computing to be part of the operating system and could open up standard secure computing approaches for Linux-derived “open-frame” computer platforms like Google’s ChromeOS or Android.

Here, the idea of a secure element integrated within a CPU chip die isn’t just for digital-rights-management anymore. It answers the common business and consumer need for stronger data security, user privacy, business confidentiality and operational robustness. There is also the goal of achieving secure computing from the local processing silicon to the cloud for online computing needs.

Microsoft hasn’t opened up regarding whether the Pluton trusted-computing design will be available to all silicon vendors or whether there are plans to open-source the design. But this could lead to an increasingly-robust secure-element approach for Windows and other computing platforms.

Articles

The new Dell XPS 13 clamshell laptop computer that is coming soon

Dell updates XPS 13 2-in-1 and XPS 13 | PCWorld Australia

Tiger Lake is coming in Dell XPS 13, XPS 13 DE, and XPS 13 2-in-1 | ARS Technica

From the horse’s mouth

Dell

XPS 13 (9310) clamshell laptop – Product Page with opportunity to order (USA)

XPS 13 (9310) 2-in-1 convertible laptop – Product Page with opportunity to order (USA)

My Comments

The Dell XPS 13 range of ultraportable laptops and 2-in-1 computers has over the last few years been seen as the “top of the pack” for that class of computer. Here, it has been about delivering the right mix of features, functionality and build quality for the price with this being reflected through the different generations of that computer.

Now, just after Intel had released the latest Tiger Lake mobile-computing silicon, Dell had just refreshed all of the computers in the XPS 13 lineup with this silicon. This includes the use of Intel’s latest Xe integrated-graphics processor technology which is being seen as fit for Full-HD gaming and even able to replace entry-level discrete mobile-use graphics silicon offerings like NVIDIA’s MX offerings. As well, they are to have two Thunderbolt 4 ports which are compatible with Thunderbolt 3 peripherals like external graphics modules. The integrated graphics and Thunderbolt 3 (or newer) port feature combination that the Dell XPS 13 has implemented since the Kaby Lake edition is one of those computer option combinations that I do see as being valid for laptops.

In this case, there was an emphasis on the quality aspect of the Tiger Lake silicon refresh for the Dell XPS 13 series. This was about a faster range of CPUs, the availability of integrated graphics silicon that is on a par with baseline mobile discrete graphics silicon, and the use of Thunderbolt 4 connectivity which is a reliability and connectivity improvement on that specification. Here, this graphics improvement was about combining an ultraportable computer design with graphics processing technology that isn’t a wimp.

Even as a 2-in-1 that has been engineered to work with higher-power processors nut not overheat

The computers will have a thinner lighter design with the 2-in-1 variant having improved thermal design to cater towards the use of more powerful processing silicon. But that variant will be limited to the Intel Core i7-1165G7 as the most powerful CPU that can be specified. It will have the smallest integrated camera ever which clocks in at 2.25mm. The XPS 13 traditional laptop variant will use an edge-to-edge keyboard and achieve a 91.5% screen-to-body ratio.

XPS 13 computers that are specified with the 4K UHD+ display will have the display being certified for HDR and Dolby Vision use. But computers specified with the Full HD screen will have a battery runtime rated for 19 hours. The question with this is whether this can be about 19 hours with a mixture of activities ranging from Web browsing, word processing, viewing video content and playing a game like Civilization 6 on that long flight or roadtrip.

These computers will normally be delivered with Windows 10 but Dell is offering the XPS 13 traditional clamshell laptop as a “Developer Edition” variant. Here, this will be preloaded with Ubuntu 18 Linux, which will please software tinkerers and open-source computing advocates.

The minimum prices for Australian users are AUD$2999 for the 2-in-1 variant and AUD$2499 for the clamshell variamt. It will be interesting to see what the press reviews will come up with when the review units start to appear – whether they underscore Dell’s commitment to keeping the right mix of features, functionality, build quality and price for these computers.

Lenovo Flex 5G / Yoga 5G convertible notebook which runs Windows on Qualcomm ARM silicon – the first laptop computer to have 5G mobile broadband on board

Increasingly, regular computers are moving towards the idea of having processor power based around either classic Intel (i86/i64) or ARM RISC microarchitectures. This is being driven by the idea of portable computers heading towards the latter microarchitecture as a power-efficiency measure with this concept driven by its success with smartphones and tablets.

It is undertaking a different approach to designing silicon, especially RISC-based silicon, where different entities are involved in design and manufacturing. Previously, Motorola was taking the same approach as Intel and other silicon vendors to designing and manufacturing their desktop-computing CPUs and graphics infrastructure. Now ARM have taken the approach of designing the microarchitecture themselves and other entities like Samsung and Qualcomm designing and fabricating the exact silicon for their devices.

Apple to move the Macintosh platform to their own ARM RISC silicon

A key driver of this is Microsoft with their Always Connected PC initiative which uses Qualcomm ARM silicon similar to what is used in a smartphone or tablet. This is to have the computer able to work on basic productivity tasks for a whole day without needing to be on AC power. Then Apple intended to pull away from Intel and use their own ARM-based silicon for their Macintosh regular computers, a symptom of them going back to the platform’s RISC roots but not in a monolithic manner.

As well, the Linux community have established Linux-based operating systems on ARM microarchitectore. This has led to Google running Android on ARM-based mobile and set-top devices and offering a Chromebook that uses ARM silicon; along with Apple implementing it in their operating systems. Not to mention the many NAS devices and other home-network hardware that implement ARM silicon.

Initially the RISC-based computing approach was about more sophisticated use cases like multimedia or “workstation-class” computing compared to basic word-processing and allied computing tasks. Think of the early Apple Macintosh computers, the Commodore Amiga with its many “demos” and games, or the RISC/UNIX workstations like the Sun SPARCStation that existed in the late 80s and early 90s. Now it is about power and thermal efficiency for a wide range of computing tasks, especially where portable or low-profile devices are concerned.

Software development

Already mobile and set-top devices use ARM silicon

I will see an expectation for computer operating systems and application software to be written and compiled for both classic Intel i86 and ARM RISC microarchitectures.  This will require software development tools to support compiling and debugging on both platforms and, perhaps, microarchitecture-agnostic application-programming approaches.  It is also driven by the use of ARM RISC microarchitecture on mobile and set-top/connected-TV computing environments with a desire to allow software developers to have software that is useable across all computing environments.

.. as do a significant number of NAS units like this WD MyCloud EX4100 NAS

Some software developers, usually small-time or bespoke-solution developers, will end up using “managed” software development environments like Microsoft’s .NET Framework or Java. These will allow the programmer to turn out a machine-executable file that is dependent on pre-installed run-time elements for it to run. These run-time elements will be installed in a manner that is specific to the host computer’s microarchitecture and make use of the host computer’s needs and capabilities. These environments may allow the software developer to “write once run anywhere” without knowing if the computer  the software is to run on uses an i86 or ARM microarchitecture.

There may also be an approach towards “one-machine two instruction-sets” software development environments to facilitate this kind of development where the goal is to simply turn out a fully-compiled executable file for both instruction sets.

It could be in an accepted form like run-time emulation or machine-code translation as what is used to allow MacOS or Windows to run extant software written for different microarchitectures. Or one may have to look at what went on with some early computer platforms like the Apple II where the use of a user-installable co-processor card with the required CPU would allow the computer to run software for another microarchitecture and platform.

Computer Hardware Vendors

For computer hardware vendors, there will be an expectation towards positioning ARM-based silicon towards high-performance power-efficient computing. This may be about highly-capable laptops that can do a wide range of computing tasks without running out of battery power too soon. Or “all-in-one” and low-profile desktop computers will gain increased legitimacy when it comes to high-performance computing while maintaining the svelte looks.

Personally, if ARM-based computing was to gain significant traction, it may have to be about Microsoft encouraging silicon vendors other than Qualcomm to offer ARM-based CPUs and graphics processors fit for “regular” computers. As well, Microsoft and the Linux community may have to look towards legitimising “performance-class” computing tasks like “core” gaming and workstation-class computing on that microarchitecture.

There may be the idea of using 64-bit i86 microarchitecture as a solution for focused high-performance work. This may be due to a large amount of high-performance software code written to run with the classic Intel and AMD silicon. It will most likely exist until a significant amount of high-performance software is written to run natively with ARM silicon.

Conclusion

Thanks to Apple and Microsoft heading towards ARM RISC microarchitecture, the computer hardware and software community will have to look at working with two different microarchitectures especially when it comes to regular computers.

Article

AMD Ryzen CPUs with integrated Vega graphics are great for budget-friendly PC gaming | Windows Central

My Comments

Highly-portable computers of the same ilk as the Dell Inspiron 13 7000 2-in-1 will end up with highly-capable graphics infrastructure

A major change that will affect personal-computer graphics subsystems is that those subsystems that have a highly-capable graphics processor “wired-in” on the motherboard will be offering affordable graphics performance for games and multimedia.

One of the reasons is that graphics subsystems that are delivered as an expansion card are becoming very pricey, even ethereally expensive, thanks to the Bitcoin gold rush. This is because the GPUs (graphics processors) on the expansion cards are being used simply as dedicated computational processors that are for mining Bitcoin. This situation is placing higher-performance graphics out of the reach of most home and business computer users who want to benefit from this feature for work or play.

But the reality is that we will be asking our computers’ graphics infrastructure to realise images that have a resolution of 4K or more with high colour depths and dynamic range on at least one screen. There will even be the reality that everyone will be dabbling in games or advanced graphics work at some point in their computing lives and even expecting a highly-portable or highly-compact computer to perform this job.

Integrated graphics processors as powerful as economy discrete graphics infrastructure

One of the directions Intel is taking is to design their own integrated graphics processors that use the host computer’s main RAM memory but have these able to serve with the equivalent performance of a baseline dedicated graphics processor that uses its own memory. It is also taking advantage of the fact that most recent computers are being loaded with at least 4Gb system RAM, if not 8Gb or 16Gb. This is to support power economy when a laptop is powered by its own battery, but these processors can even support some casual gaming or graphics tasks.

Discrete graphics processors on the same chip die as the computer’s main processor

This Intel CPU+GPU chipset will be the kind of graphics infrastructure for portable or compact enthusiast-grade or multimedia-grade computers

Another direction that Intel and AMD are taking is to integrate a discrete graphics subsystem on the same chip die (piece of silicon) as the CPU i.e. the computer’s central “brain” to provide “enthusiast-class” or “multimedia-class” graphics in a relatively compact form factor. It is also about not yielding extra heat nor about drawing on too much power. These features are making it appeal towards laptops, all-in-one computers and low-profile desktops such as the ultra-small “Next Unit of Computing” or consumer / small-business desktop computers, where it is desirable to have silent operation and highly-compact housings.

Both CPU vendors are implementing AMD’s Radeon Vega graphics technology on the same die as some of their CPU designs.

Interest in separate-chip discrete graphics infrastructure

The Dell Inspiron 15 7000 Gaming laptop – the kind of computer that will maintain traditional soldered-on discrete graphics infrastructure

There is still an interest in discrete graphics infrastructure that uses its own silicon but soldered to the motherboard. NVIDIA and AMD, especially the former, are offering this kind of infrastructure as a high-performance option for gaming laptops and compact high-performance desktop systems; along with high-performance motherboards for own-build high-performance computer projects such as “gaming rigs”. The latter case would typify a situation where one would build the computer with one of these motherboards but install a newer better-performing graphics card at a later date.

Sonnet eGFX Breakaway Puck integrated-chipset external graphics module – the way to go for ultraportables

This same option is also being offered as part of the external graphics modules that are being facilitated thanks to the Thunderbolt 3 over USB-C interface. The appeal of these modules is that a highly-portable or highly-compact computer can benefit from better graphics at a later date thanks to one plugging in one of these modules. Portable-computer users can benefit from the idea of working with high-performance graphics where they use it most but keep the computer lightweight when on the road.

Graphics processor selection in the operating system

For those computers that implement multiple graphics processors, Microsoft making it easier to determine which graphics processor an application is to use with the view of allowing the user to select whether the application should work in a performance or power-economy mode. This feature is destined for the next major iteration of Windows 10.

Here, it avoids the issues associated with NVIDIA Optimus and similar multi-GPU-management technologies where this feature is managed with an awkward user interface. They are even making sure that a user who runs external graphics modules has that same level of control as one who is running a system with two graphics processors on the motherboard.

What I see now is an effort by the computer-hardware industry to make graphics infrastructure for highly-compact or highly-portable computers offer similar levels of performance to baseline or mid-tier graphics infrastructure available to traditional desktop computer setups.

Article

The GPU, whether dedicated or integrated is what paints the picture on your computer screen

What Makes A GPU Different From A CPU? | Gizmodo

My Comments

A graphics processing unit or GPU is a special data-processing chipset that effectively “paints” the images that you are to see on your computer screen. This is compared to the central processing unit or CPU which is focused on handling the data that your computer is dealing with at your command and being the system’s “commander” processor.

The idea of a separate processor is to effectively work with the shapes, pixels and colours that constitute what you see on the screen and the highly-sophisticated GPUs handle this using multiple “cores” or unique processors. Another factor worth considering is that video editing, animation and transcoding programs are making use of the GPU to transcode the video material between different formats or rendering an animation or a sequence of shorter video clips in to one longer video clip.

A “gaming rig” tower desktop computer equipped with high-performance display cards

The higher-performance GPUs, typically offered as display cards that are installed in desktop computers especially “gaming rigs” set up by computer-games enthusiasts, use multiple “cores” or unique processors so they can realise the high-resolution graphics very quickly and responsively. Some of these cards even implement setups like “Crossfire” with the ability to gang two display cards together for increased performance.

Integrated vs dedicated GPUs

Typically the difference between an integrated or dedicated GPU is that a dedicated GPU has its own memory and other resources for “painting” the graphics images while an integrated GPU “borrows” resources like RAM memory from the system’s CPU. As well, a lot of these dedicated GPUs are designed and developed by companies who specialise in that field.

The benefit of a dedicated GPU is that it can turn out the graphics images required by demanding applications like games, video editing, CAD and the like efficiently because its resources are focused on what you see while the CPU and system RAM are focused on working out what is to happen.

Sony VAIO S Series – equipped with dual graphics with an easy-to-use operating-mode switch

For example, a game needs the use of the CPU to answer the players’ commands, apply the game’s rules and position each of the elements while it needs the GPU to visually represent where everything is. Here, the dedicated GPU can handle how everything is represented without encumbering the CPU’s tasks relating to how the game runs.

The main disadvantage with dedicated GPUs that affects laptops and other portable computers is that they can quickly drain the computer’s battery. This has been answered in a few ways like equipping laptops with integrated and dedicated graphics chipsets and adding logic like NVIDIA’s Optimus to switch between the different chipsets, in a similar vein to how the overdrive or “sports mode” in some cars work. In most cases, this logic engaged the dedicated graphics if the computer was running a graphics-intensive program like a game or video-editing program or was running on external power.

External GPU docks

Alienware high-performance laptop computer with Graphics Amplifier external GPU module

A new trend that is starting to appear and benefit laptop-computer users is the “external GPU” dock or module that connects to the laptop computer. These appear in two different forms – a “card cage” like the Alienware Graphics Amplifier where a user can install a desktop graphics card, or a graphics module which has the graphics hardware installed by the manufacturer.

Initially these devices were connected to the host computer using a connection that was proprietary to the manufacturer but now they are implementing the Intel Thunderbolt 3 via USB Type-C connection due to it offering PCI-Express data-transfer bandwidth, thus allowing for increased interchangeability between computers and docks. Most of these implementations will have the ability to send the graphics back to the host computer’s screen or to an external display that is connected directly to the external GPU module.

A graphics expansion module that could option up budget and mainstream laptops

These devices have appealed as a way to “option up” laptop, all-in-one and similar computers for high-performance dedicated graphics. It is more so where you don’t need to have dedicated graphics all the time, rather when you have that laptop or 2-in-1 “back home” and ready to work or play.

Conclusion

The graphics processors or GPUs, whether integrated on a computer’s motherboard, installed on a display card or housed in an external GPU module, are processors that look after “painting” the images you see on your computer’s screen.

Article

256Gb as a solid-state disk could be the baseline for laptops and 2-in-1s

SSD Prices Are Plummeting, Say Good-Bye To Hard Drives | Gizmodo

My Comments

A trend that is starting to surface is that the cost per gigabyte of a solid state drive is approaching that of a traditional “spinning-disk” hard drive. This has started to appear at the 256Gb capacity-per-unit level but what is also happening is that the traditional hard disk is increasing in capacity per physical unit. This situation is appearing in the form of hard disks having capacities in the order of eight or more terabytes.

Where I see this applying more are desktop computers that implement a dual-disk setup for their fixed storage needs along with modest-specification portable computers that have storage needs with 256Gb or less.

NAS units will still have the regular hard disks but these will increase in capacity per unit

The former application would have a solid-state drive containing the operating system and other software programs so as to permit quick loading while the hard disk ends up being used to store user-created data and other “long-term” data. The latter application would be in the form of a modestly-specified modestly-priced laptop computer or 2-in-1 that has the advantages of a solid-state battery like increased durability, no operating noise and the ability to run on its batteries for longer than normal.

As the research increases. this parity could hit the 512Gb mark thus appealing to most computer applications, especially portable computers. There also need to be other issues sorted out like improving disk bandwidth and supporting “scratch-pad” operations with random read-write needs without compromising disk reliability.

Who knows what this could mean for computer design especially with portable or aesthetically-significant applications?

Article

Intel’s Broadwell Chips Will Make Full-Fledged PCs As Tiny As Tablets | Gizmodo

My Comments

Intel Broadwell chipset compared to current Haswell chipset

Intel is marching on with chipsets and processors that effectively put a pint in to a teapot when it comes to computing power.

They had done it with the Sandy Bridge, Ivy Bridge and Haswell chipsets based around the Core I series of CPUs and are increasing the power density and ability with the Broadwell Core M series of processors. The goal they are achieving now is to work on a 9mm-thick fanless portable computer design that has the lower power needs and the ability to run cool for a long time without needing a fan while also having improved battery runtime. This is without sacrificing real computing power. These goals have been satisfied using a new microarchitecture along with newer manufacturing processes and is although the fanless goal has been achieved with the Bay Trail and other tablet-specific processors.

9mm fanless tablet concept with regular computing power

This activity is shown up with the latest crop of mobile workstations and gaming laptops like the Dell Precision mobile workstations and the Lenovo ThinkPad W Series mobile workstations, or the Razer Blade and the Alienware gaming laptop that can handle intense graphics, multimedia and gaming tasks, that wouldn’t be traditionally associated with a laptop.

This could effectively mainstream the concept of the ultraportable such as the convertible or detachable tablet and have it as being fit for a lot more computing tasks. Even product classes like the larger Adaptive All-In-One tablets can also benefit from having effectively “more grunt” and those portable computers that are engineered from the outset for performance like mobile workstations or gaming laptops may become lighter or be able to run longer on their own batteries.