SDMI Challenge Participants May Face DMCA Action

ssimpson writes "Everyone has probably forgotten the SDMI challenge to hackers to try to break a handful of proposed watermarking and "other" protection mechanisms? Well, it was recognised that a group of researchers at Princeton University broke all of the protection mechanisms and were due to publish a paper on at the 4th International Information Hiding Workshop (25-29 April) but have been threatened with the DMCA if they publish the results. So much for academic freedom, eh? SDMI seem particularly upset because one of the protection mechanims broken in the paper, The Verance Watermark, is currently used for DVD-Audio and SDMI Phase I products. Oops. Somehow, a copy of the threatening letter and the full paper entitled "Reading Between the Lines: Lessons from the SDMI Challenge" has appeared on John Young's excellent Cryptome site. SMDI's urge to "withdraw the paper submitted for the upcoming Information Hiding Workshop, assure that it is removed from the Workshop distribution materials and destroyed, and avoid a public discussion of confidential information." seems a little weak now...."

from the article's conclusion section...

Do we believe we can defeat any audio protection scheme? Certainly, the technical details of any scheme will become known publicly through reverse engineering. Using the techniques we have presented here, we believe no public watermark-based scheme intended to thwart copying will succeed.


nice...

Re:from the article's conclusion section...

[mikethegeek]

"Do we believe we can defeat any audio protection scheme? Certainly, the technical details of any scheme will become known publicly through reverse engineering. Using the techniques we have presented here, we believe no public watermark-based scheme intended to thwart copying will succeed."

Which makes the DMCA all the more abhorrent. It's NOT a copyright protection law, but a copy protection protection law.

Copy protection was proven an ineffective mechanism back in the 1980's, and it's just as ineffective now, if not more so, given the much greater number of computer professionals (that you may call "hackers") than there were then.

Given that the right to make a backup copy is an established RIGHT under the Constitutional derived principle of "fair use" would it not follow that any law preventing you from circumventing copy protection to excercise that right would be Unconstitutional?

Keep in mind, the Constitution places SEVERE limits on the scope and duration of patents and copyrights (though that has been violated many times by Congress and several presidents, most recently, Clinton. when copyrights were extended pretty much to infinity).

Re:from the article's conclusion section...

[mamba-mamba]

"Copy protection was proven an ineffective mechanism back in the 1980's, and it's just as ineffective now, if not more so, given the much greater number of computer professionals (that you may call "hackers") than there were then.

Given that the right to make a backup copy is an established RIGHT under the Constitutional derived principle of "fair use" would it not follow that any law preventing you from circumventing copy protection to excercise that right would be Unconstitutional?"

Amen. The only question is, will the courts see it as you do, or will they side with industry and support laws that ban circumvention devices and, incidentally, intellectual curiosity when it is applied to circumvention devices and the like.

And keep in mind, just because we (well, those of us living in the U.S.) supposedly have this constitutional right to fair use doesn't mean that we will be allowed to excercise it. (Consider the second ammendment) The Supreme court can decide not to listen to an issue, and it can also wiggle out of the issue by invoking some technicality. I mean, eventually, they'll come around, but we could be out of luck for years.

But there is something about all this that I find even more troubling. I mean, personally, I don't care whether I can copy music and movies or not. In fact, I will probably never do it. I *may* stop watching movies at home, and listen only to the radio, though, if things keep going as they are now.

This is really, for me, a free speech issue. If a law says or is interpreted to mean that you can't publish something without going to jail or paying fines, then that law is restricting free speech. Perhaps this would be warranted for detailed descriptions of how to make a hydrogen bomb (there are still very few people who know how to do this, and, frankly, that is fine with me!) But what we have here is an industry claiming, falsely, no doubt, that they are in danger of going out of business or seeing huge revenue losses unless they are allowed to ban discussion about and distribution of ways to circumvent their simple, weak encryption and watermarking schemes.

And of course, the direction that this is all going is pay-per-view. If the MPAA succeeds in all these efforts, and if the DMCA means what they claim it means and is found constitutional, then some day, maybe 5 years from now, we won't be seeing cheap prices on DVD's anymore. In fact, they may very well be free, *but*, you will have to pay every time you watch. And new laws, very similar to the DMCA, will be enacted which specify stiff penalties for anyone who makes equipment that doesn't enforce this scheme or who discusses ways to defeat it. And the MPAA will point at the DMCA and say, "well, that law is constitutional, so why shouldn't these new, similar laws be constitutional. After all, we have had pay-per-view on cable for *years*. This is just a new distribution model for content."

By the way, have you checked out the new licensing scheme uSoft is pushing?

Re:proof the RIAA is stupid.

Actually, there are a number of odd typos in the document. I suspect it was OCR'ed.

This is why I don't like IP laws.

on how the academic aspects of your research can be shared without jeopardizing the commercial interests of the owners of the various technologies.

"Intellectual Property" laws give rise to arrogant concepts like "ownership" of technology.

"urge to withdraw" != "required to withdraw".

By saying "urge", they obviously recognize academic freedom's RIGHT to publish it. They just sunk any chances they had in a lawsuit with their own words.

Re:"urge to withdraw" != "required to withdraw".

[kil0watt]

It may be appropriate to present the letter instead of the paper as an example of what's in store for the future:

"My esteemed colleagues, it is my pleasure to welcome you to the Information Hiding Conference. Many of you have travelled a great distance, at great expense. Our initial panel and workshop will be scrubbed due to the following taste of DMCA's teeth..."

Certainly it's one form of Information Hiding? (Hush or it's curtains, prof.)

Re:SDMI are loosers

In order for a computer to ship with the "Designed for Windows XP" sticker, it's got to include (among other things) a sound card that obeys Microsoft's secure audio path. In order to make their Windows Media format popular and avoid legal trouble, they want to bow to the wishes of the RIAA. Hardware manufacturers will need their drivers approved by Microsoft in order to get them to work in XP, so they'll need to be "secure" in order to make them usable with the most popular operating system. Given the fact that Microsoft owns everything, and the RIAA owns Microsoft, this will be in all of your computers in a couple of years. Unless we can pressure all of these megacorps to stop forcibly removing our rights, the whole MP3 movement will be pushed so far underground it may as well not exist.

What I don't get...

[Dyslexic]

Alrighty after reading through the document (and the team's FAQ on the challenge), I feel like I'm not getting something here. Basically it says that after SDMI is implemented, if you make an mp3 out of a SDMI-watermarked CD, you will have a hard time playing a burned cd of that mp3 on a SDMI CD player.

Alright. Why would anyone buy a SDMI CD player?!

I know in my house alone, we have atleast 9 non-SDMI CD players that I can think of off the top of my head. The CD format is so widespread right now that I'd imagine it's a similar situation pretty much everywhere. I have no reason to go out and buy a new CD player. I have a portable AIWA discman that I bought in 1997. It has worked like a charm. It has all the neccessary features; 10 second anti-skip, hold, and play controls. What else could they put in there to make you want to go out and buy a CD player that won't work in alot of cases? Are they trying to play the public for fools. This is sounding alot like the DIVX fiasco, and we all know how that turned out...

Dys.

Re:What I don't get...

[jedidiah]

Actually, very few of my CDROM devices have ever worn out or broken. They tend to get obsolete a considerable time before that. I have at least 4 "classic" CDROM drives sitting around collecting dust because of this.

My first ever (93) PC harddrive was only ever commisioned because I finally reached the point where it was too small to be useful.

Re:What I don't get...

[Seth+Finkelstein]

When the issue is settled, you will buy a SDMI CD player or you will never buy a new CD player again.

Eventually, your old CD players will break. They aren't built to last for eternity. Yes, there may be the odd one which lasts a long time, but unless you're going to turn them into family heirlooms, new CD players will be bought

And every single one of them will have SDMI.

Re:What I don't get...

[Seth+Finkelstein]

Let's look at it a different way. For some reasons, people are buying new CD-players. The market isn't saturated. Smaller, faster, different color, whatever. Lots of new players are made and sold. In the future, every single one of these players may have SDMI. Either people are going to stop buying new CD players, or through attrition, the huge, vast, overwhelming majority will be SDMI-restricted players.

There will always be a few oldies around, just like eight-track players and reel-to-reel players are still around. But unless people stop buying new players, which isn't going to happen, SDMI-possesed players will spread.

Re:What I don't get...

[rtechie]

The two camps that make up SDMI are fundamentally at odds with each other. The content producers want to add copy protection, which by definition cripples functionality. And the electronics/software manufacturers want to create a product that consumers are interested in getting, and this product will have to be attractive to consumers because it will be replacing existing technology (namely CD and MP3). The big problem that the RIAA/SDMI has pushing the new formats is that they add little, if any, real additional functionality. For example, DVD-Audio and Sony's new format (forget what it's called) are basically stillborn because they aren't any significant improvement over CD. The only reason DVD has succeeded as a format is because it offers vastly improved functionality over existing formats, especially VHS. Also remember that DVD was the result of DECADES, mainly fighting over content protections. The big problem with the SDMI "format" is that it probably won't offer any significant advantage over the entrenched format, MP3. Hardware manufacturers aren't slowing down the production of MP3 devices one bit. Also, there are a huge number of political issues about being "trapped" by one company. This is what happened with music videos and MTV, and they don't want to see a repeat. This is why they haven't just adopted Windows Media or RealMedia.

Re:What I don't get...

[Zeinfeld]

In the future, every single one of these players may have SDMI

I don't think so. In the first place the SDMI group is close to collapse. The autocratic manner in which Leonardo was operating was already anoying many at the only meeting I attended. In the second there is no leverage to prevent non-SDMI players being available.

The rip protected CDs piece is not part of SDMI. The idea is to encode the watermark into digitally downloaded music. Only authorized content could be downloaded onto a player. However the powerful stuff being smoked by the SDMI crew mean that they might well have got even more grandiose delusions.

The CD patents will have mostly expired at this point, CD having been arround for 20 years. The DMCA does not require CD players to adopt SDMI and the chances of new legislation are much smaller than two years ago.

In addition CD players are practically obsolete, as is the concept of a physical medium. There will be no replacement for CD, it will become a distribution medium only. Home hifi will work off a central mediastore with multiple player devices all giving access to the same database of content over WiFi.

The idea of SDMI was that portable players would be configured to only download authorized rips and to not allow transfers out of the device. It was a bogus idea from the start. In the first place the Diamond Rio case meant that there was no way to force players to be SDMI compliant. Secondly an SDMI compliant device could not be a recording device - digital dictaphones are to be illegal it appears. Thirdly the SDMI scheme devices would not be able to play standard MP3s, initially they would but this capability would be retrospectively disabled through a 'drop dead' code encoded in a CD.

So with SDMI the hardware manufacturers were to build devices that nobody would buy and would be deliberately broken at a time in the future of the RIAA's choice.

Re:What I don't get...

[dachshund]

Why would anyone buy a SDMI CD player?!

Market domination. Not yet, of course. But they're already including this in DVD-Audio and presumably it could be included in future technologies. It just takes a few simple licensing agreements between a few major hardware manufacturers and the Music Industry to insure that the next generation of CD/DVD/?? players include these features (ala CSS.)

Essentially, once the RIAA has something they trust, they patent the hell out of it and license it to some big hardware companies, who can either play along and get a big share of a new market-- or not play along and get left behind (with already paper-thin margins on audio equipment, where's the choice?) Because the standards are proprietary and patented (and protected by the DMCA and its ilk), content-producers can license it to whomever they please, wielding the power of life and death over manufacturers (who are, unfortunately, in an industry with actual competition.) Forget about anti-trust, this is a legally sanctioned cartel.

So don't get worried yet. Wait til your current CD players aren't working so well and most new music is being released in some other format (remember Betamax?)

Lies, lies, and more lies

[Erbo]

Not only that, I'm pretty sure that the SDMI people said that they wouldn't go after any team that tried to break their encryption/watermarking system, that they were in fact authorizing them to do so for the purposes of this contest...

Nothing but lies, lies, and more lies from the RIAA and their cronies. Why should we believe anything they have to say anymore?

Eric
--

Re:Lies, lies, and more lies

[gilroy]

Blockquoth the poster:

Not only that, I'm pretty sure that the SDMI people said that they wouldn't go after any team that tried to break their encryption/watermarking system, that they were in fact authorizing them to do so for the purposes of this contest...

Ah, but read the letter: They're not upset that the team broke the encryption. They're upset that -- heavens oh heavens -- the academic team might actually publish the result. You see, as far as the RIAA was concerned, the whole Challenge was just a way for civic-minded research teams to donate their time and effort without any beneift to themselves.

It was stupid, myopic, and maybe cynical for the RIAA to attempt to construct a Challenge whose results could benefit only them and to expect anyone to conform to it. It is stupid and wrong for them to invoke the DCMA as a threat to cover up the screw-up they made.

Re:LOOK at some of this stuff!

[Chris+Johnson]

Why? I've _written_ for TAS, and I can tell you that this is so far out of line that it doesn't even merit serious consideration. The degree of distortion is at least 6db worse than the very worst, most unlistenable, most soundstage-collapsing quantization distortion the ordinary CD can possibly have. We are not talking audiophile-grade distortions here, like differences between dithers. We're talking 'partially blown speaker' levels of distortion. I flat guarantee to you that HP would stand about 0.5 second of it before getting up and physically leaving the room.

Which is to say- don't hold your breath. Did you think these things _need_ a TAS to discern them? You'll be able to hear it quite easily on a boombox- or through a Xing mp3 at 128K. That's the _point_.

Re:The Verance Watermark

[Chris+Johnson]

Absolutely. In addition, commercial music is increasingly compromised anyhow by compression and limiting wars that have labels trying to out-loud each other, to the point that artists literally cannot get even good-sounding CDs out there, and mastering engineers cannot avoid smashing everything to the maximum possible constant loudness and distortedness unless they wish to be effectively blackballed and get no more major label business. This goes for the artists and mastering engineers who hate it, too.

It's said that the Verance watermark sounds like middle-distance buzzing bees at a higher pitch (buzzing flies?). Which may, in a sick way, be compensated for by the fact that, with the hypercompression techniques in use, there _is_ no middle distance for commercial music anymore- everything is brutally up-front and flattened, and there are no quiet passages that are not compressed to full volume, and loud passages are routinely distorted to the point of flat-topped waves, so this covers up the other sonic ugliness of the buzzing flies sound.

So, the commercial sphere is going to mean extremely high resolution media containing totally smashed and flattened audio of relentless, ear-fatiguing aggressiveness, which contains in the background a noise of buzzing flies or some other uncorrelated noise at least 6 DB louder than the current worst possible CD-audio quantization noise, or to look at it another way, a noise of buzzing flies or some other such extraneous sound that is always louder than the worst distortion components produced by mp3 encoders such as Xing.

I couldn't make this up if I tried... and it's appalling, but it also offers an opportunity.

There are places out there gearing up to give indie musicians the capacity to do music distribution without going through a label. Largest is the rip-off mp3.com, which only lets you sell CDs made from 128K (inadequate) mp3s. Of course, by definition this is still less distortion than DVD-A with watermarks... however, there's others, and the one I'm most a fan of is ampcast.com, which is just finishing up their own CD program, with the option to have CDs duped from Red Book master CDRs you supply to Ampcast: burn-to-order of _real_ CDs. (Burning from special 256K and up mp3s not available for download is also an option.)

The thing is, there's an extra thing Ampcast is doing- they are taking pains to allow the artists to tap into the existing distribution networks. You can buy an official barcode for your CD through them for $20 a barcode- and get them shrinkwrapped with spine stickers, everything you'd want to have your stuff alongside commercial releases and look just the same as them.

The catch is- maybe you don't _want_ your indie stuff to fight its way into that channel. You can always sell it over the net, after all, and go for alternative distribution- and more relevantly, there was a time when the stuff with barcodes _sounded_ _better_ than what people could do in their garages. But that time is gone! These days, not only is electronic, computer-generated music more popular, but the facilities for producing commercial-quality music have never been more affordable- and at the same time, the people producing the commercial music are increasingly _wrecking_ it with compression and blatant overlimiting (so you could do just as well, sonically, with Pro Tools, or better if you chose), but they are also preparing to add uncorrelated noise many times as bad as the noise of clean old vinyl records (or the quantization noise of the very worst CD transfers), _intended_ to be worse than the worst an mp3 encoder can do!

So in a way, the logical thing would be to run screaming- to abandon even the idea of sharing the same shelves with that crap, and try to establish a sort of underground that would most likely be centered on CDs done right. CDs done right (with recent improvements in dither technology) are surprisingly good, even compared to high end analog media. And we can be absolutely sure that the record industry will never produce anything as good as CDs done right again (barring a total collapse and recalibration of their values). The one-two punch of volume wars and watermarks will keep them totally pinned, hopelessly committed to debilitating and selfish practices that ruin their reputation for professional sound quality...

Re:Degraded audio quality

[Chris+Johnson]

Hey, another happy thought! :) check this out...

1. In order for the watermark to persist through the mp3ing process, it must be at a high enough amplitude to not be discarded as irrelevant.
2. The watermark is not musical information- it's heard as buzzing flies, or some other audible sound, and must also be smack in the middle of perceptible sounds to not be discarded by psychoacoustic algorithms (that discard plenty of perceivable sound, as well).
3. As such, it becomes part of the noise floor of the track. Correlated or uncorrelated, it is not part of the musical signal. And again, it must be strong enough to stand up to the most low-fi mp3 encoding (typically 128K, possibly 96K?)
4. Has anyone taken the time to measure watermarked audio or calculated from watermark levels to produce a figure for the real signal-to-noise ratio for such a medium? *VBG*

Let's get ready to spread the word on that one. It's just as fair as the way CDs were spun to be better than LPs by use of signal-to-noise ratio figures. Hell, records have better sound than bad mp3s- it's totally legitimate to say at this point that watermarked DVD-A will have substantially worse signal-to-noise ratio than vinyl records, and it is a plausible claim. Naturally, audio CDs will _really_ stomp watermarked DVD-A for signal-to-noise ratio...

The truth, of course, is that you can hear past a noise floor to a certain extent- this is what helps vinyl records, and why dithering is so important for digital audio. This doesn't help the watermarking side much as that's still an annoying type of sound by design, right in the most sensitive hearing band- but it's basically true. However, conventional wisdom is that the noise floor is a hard limit- and this can be turned around as a deadly attack on watermarked media's superiority. Somebody come up with what the signal-to-noise ratio is (including correlated noise) for the worst mp3 you can come up with, like Xing 128K or something. We'll get the word out that watermarked stuff by definition must have a signal-to-noise ratio that is worse even than that...

Re:I wish they would go to court....

[Lurker]

I wish that SDMI would follow through with their threat and pursue Princeton University and the United States Navy in court to suppress publication of an academic paper. These parties have the resources to mount an aggressive defense, and the case would set a precedent that would significantly weaken the DMCA.

Heh heh....I can see it now:

SEAL Team four, your mission is to mount an 'aggressive defense' of the US Navy against the SDMI. The gloves are off on this one gentlemen. As you know, any operation where the opposition employs lawyers releases us from the standard rules of engagement.

a new day a new ... acronym

[bobalu]

Well, you could've done it ten years ago when it went consumer. Consider all that time you've had three more characters available to use.

Here's another:
OMR - optical mark recognition

That's how they read your SAT tests....

torture and murder - no no no

[bobalu]

No son, put down that Columbine memorial pamplet and consider the true nature of getting even: make them listen to a continuous stream of Wayne Newton records!

See? And then they can't track you down and jail you for publicy encouraging terroristic threats and murder.

mmm'kay?

Re:torture and murder - no no no

[loraksus]

I was thinking celine dion, but whatever..

I have a shotgun, a shovel and 30 acres behind the barn.

Re:torture and murder - no no no

[loraksus]

or yoko ono..

I have a shotgun, a shovel and 30 acres behind the barn.

Re:torture and murder - no no no

[fors]

Yoko Ono would be cruel and unusual punishment at a level never before seen. I am almost tempted to believet that even the MPAA and RIAA goons don't deserve that. Almost being the operative word.

Re:Then why did they have the challenge at all???

[Jeremy+Erwin]

Publicity. The SDMI was being introduced at a time when some individuals were having some doubts about efficiency of CSS style algorithms.

CSS was based on the following set of assumptions:
Data that is transmitted in an encrypted format can not be read except by authorized users-- users that have access to the appropriate key.

Of course, as with all covert communications, the key must be transmitted in a secure fashion.

Now, the CSS designers decided that if DVD players were designed with a "hidden" sector, the key could thus be distributed. Persons who merely copied the data from a DVD would have nothing except the encrypted data-- useless without a key. Access to the key depended on physical access to a tangible medium-- the actual DVD-Video disk.

Of course, the key transmission protocol was eventually compromised, and cryptoanalysts discovered that the actual encrytion- instead of being 40-bit, was closer to 25-bit-- literally, a toy code.

Cryptoanalysts and Cryptologists have long recognized that an ideal code should involve a strongly assymetric algorithm-- cheap for a user to decode with a proper key, but expensive for a eavesdropper to decrypt. More importantly, the algorithm should be subjected rigorous testing and/or peer review. The CSS algorithms were not subjected to this kind of testing prior to the release of DVD-Video.

The SDMI proponents, hearing this criticism, decided that their coding algorithms needed that extra bullet point: "peer-reviewed". But, apparently, they had neglected to consider that their algorithms might amount to nought. They only had visions of a future press release:
"SDMI invulnerable to hacking! Music Industry safe from hackers."

And, because, all of the participants in HackSDMI were bound by confidentiality clauses, no one would be the wiser.

Re:Excellent.

[dsfox]

Princeton is not public, but it has mighty deep pockets.

Re:It would be nice

[Logi]

Also, you seem to imply that I'm inmature for expressing my contempt for a contemptible "judge"'s actions in a case. Can't you see what is WRONG with that attitude? NOTHING can be above ALL question ina free society!!!! NOTHING!!!

If we as citizens have an ABSOLUTE 1st Amendment right to political speech, which includes bashing or praising Presidents and Congressmen without government reprisal, why does that not ALSO include judges? How can it not? Aren't Federal Judges part of the government, and therefore, subservient to the Constitution?

I'm not particularly interested in the argument about this particular ruling or judge Kaplan, but I can't help but ask one question in response to those two paragraphs:

Is the constitution above question?

Re:Death to the truth!

[Zigurd]

What? That trade liberalization means economic growth, which means less grinding poverty in the developing world? There are some pretty screwed-up things about transnational organizations like trade authorities, including especially attempts to make thought-crime laws like the DMCA international, but the alternative of uncoordinated, inefficient, and parochial (to local corporate interests) trade barriers is worse. Much better to support organizations that fight government/corporate corruption, like Transparency International than hide in ones own nationalistic hole.

Not quite

[roystgnr]

please refrain from exposing what idiots we are and how much our encryption software sucks.

We already all know what idiots they are (cat's out of the bag on that one!), and the first amendment still protects our right to tell others what idiots they are.

What seems to be illegal now is proving what idiots they are mathematically...

Millions for defense, not a dime for tribute.

[Apuleius]

For Princeton not to DTRT here
would be far more expensive in the long run.

The answer is simple.

[Plasmoid]

Head north. Canada has no laws against reverse engineering. Hell, there are companies in the government's company database lookup that *advertise* reverse engineering services here

Why stay in the US with oppressive when you can come to Canada with oppressive taxes! You can't lose. Plus you can relocate to cities which aren't a permenant shade of brown and still be near major centres. NB: I'm not talking about Vancouver.

Hell, if you were large enough, relocate to some of the more remote major centres of Canada(Yellowknife, Whitehorse, Iqaluit) and get *major* tax breaks from the governments.

Re:Legal Action = Mirroring

[Pig+Hogger]

Did anyone not save a copy of this document or download the Zip provided?

Sure! Here is my copy!

--

They're not worried about HH...

[VValdo]

If the odd freak builds their own DA converter out of twigs and masking tape the RIAA isn't going to have a fit. Because in the kind of environment where that is necessary....they've already won.
-------------------

confidential?

[ethereal]

On behalf of the SDMI Foundation, I urge you to reconsider your intentions and to refrain from any public disclosure of confidential information derived from the Challenge...

Well, it's not really confidential any more, is it? It's not like Felten signed an NDA to get the SDMI secrets, and is now publishing them. The whole point of the exercise was for his team to figure it out on their own. I don't see how it can be considered confidential information restricted only to the SDMI group any more, since another party has independently figured it out. It could be argued that Felten's research is confidential to him until he decides to publish, but it's not confidential to the SDMI folks any more.

While I'm at it, kudos to Cryptome! The site is probably one of the most important resources on the 'net, here's hoping it never goes away.

LOOK at some of this stuff!

[Jerf]

Attack on challenge B: A spectrum notch around 2800Hz is observed for some segments of samp2b.wav and another notch around 3500Hz is observed for some other segments of samp2b.wav.... The attack fills in those notches of samp3b.wav with random but bounded coefficient values... Both attacks were confirmed by SDMI oracle as successful.

Attack on challenge C:: In the first at- tack, we shifted the pitch of the audio by about a quartertone.... Our submissions were confirmed by SDMI oracle as successful. In addition, the perceptual quality of both attacks has passed the "golden ear" testing conducted by SDMI after the 3-week challenge.

Attack on challenge F: For Challenge F, we warped the time axis, by inserting a periodically varying delay.... confirmed by SDMI oracle as successful.

l-_-_-_-l-_-_-_-l

OK, C in particular was trivial, the kind of thing even somebody who knew nothing about signal processing would try, but, come on, didn't SDMI even try to crack their own things before throwing them out to the world?

Based on what I see in this paper, I think SDMI's motives may be misinterpreted here... I think there's a significant component of embarassment here! "Breaking" some of these "amazingly-wonderfully-powerful gonna-save-music-as-we-know-it" schemes was trivial. No wonder they want to hide it.

Note that the papers definately seem to have enough information to build automated crackers for some of the schemes, mostly shell scripts to already existing tools.

Re:LOOK at some of this stuff!

[Jerf]

What are you replying to? My message doesn't contain the phrase "minor distortions". Which part of the paper?

Re:LOOK at some of this stuff!

[isdnip]

Plain old spectrum notches are really obvious.

But it seems that the SDMI-crack-discovered-it notch occurs only in some *segments* of the music. Not all the time. So it isn't nearly as obvious.

Of course in some kinds of music, notably classical again, it is still likely to be quite intrusive. I think SDMI only intended to be useful with things like Spice Girls and 2Pac. (Not that I want to associate those with each other.) Classical is small business, so if they screw it up, they don't really care.

The principal Verance watermark is similar. According to the paper, it's basically a periodic up or down amplitude tweak (each baud interval being 16/50 of a second?) to a set of narrow ranges in the top octave. Sort of like typing onto a graphic equalizer. Using hashed track data to create a weak checksum. Again, it's hard to tell perceptually, especially on pop/rock, but might intrude onto some classical recordings.

Re:LOOK at some of this stuff!

[Animats]

I'd like to see those "minor distortions" reviewed in The Absolute Sound.. This sounds little better than the first attempt at "watermarking" years ago, which involved a fixed notch filter. Classical music listeners hated that; you could easily hear what it did to a glide tone, or in some cases a piano scale.

Re:LOOK at some of this stuff!

[Animats]

What are you replying to?

"Spectrum notch", as part of the watermarking system.

Re:Unfruitful approach to keeping it out of our ha

[nyet]

It's clear to me that the USA as a free country is collapsing. The twin pressures of a non-productive population viting themselves more and more "bread and circuses" out of the pockets of the workers, and corporations extering pressure on those same politicos (who humor them so as to FUND these "bread and circuses" re-election schemes) is causing us to lose our freedom.

Sad but true... it is pretty much agreed upon that this slow slide is an inevitable characteristic of every government. Our founding fathers only attemped to make one that would suffer it as slowly as possible, but I doubt any one of them thought it would last forever.

Like most things that deteriorate gradually, however, very few REALLY fight it since it spans generations. Why fight for something that will only become bad a few generations later? Screw our great great great grandkids... besides things aren't so bad right now right? RIGHT?

I'm sure in a few hundred years a new, bloody revolution will be fought, this time over intellectual freedoms, when the new peasants realize that their fiefdoms run by the corporations are undeniably corrupt. For now, we can close our eyes to the truth, for don't we have Coca-Cola, MTV, Nikes, Britteny Spears, Microsoft Products, and great movies like "Titanic"? Truly marvelous products that are the result of a wonderful free market, no?

Re:Unfruitful approach to keeping it out of our ha

[nyet]

300 years, huh? Crap! I may actually live to see 2076..

Re:Excellent.

[slams]

It's private.

You can find more information here:
http://www.princeton.edu/pr/facts/index.shtml

Re:SDMI has no legal ground

[Kaa]

There is NO POSSIBLE WAY TO TECHNICALLY PROTECT DATA FROM BEING COPIED

Don't be an asshole. Public hysterics on Slashdot went out of style a long time ago (Katz nonwithstanding).

First of all, proving a negative is notoriously difficult. I suspect your ability to actually argue your position instead of waving hands is quite limited.

Second, watermarks have nothing to do with protecting the data from copying.

Third, given that protection from copying goes hand in hand with encryption these days, of course it is possible to protect the data from being copied (in the useful form). The very first thing that jumps into my mind is to make it tied to the individual physical characteristics of the device which stores it. I am sure I can think up more ways, and I am also sure that people smarter than me already thought of them already. The sticking point is that all these ways make the *use* of data very inconvenient. Thus they are not very well suited to, say, selling the latest Britney Spears song over the 'net.

Kaa

Re:it was gonna happen

[SEWilco]

The researchers did mention "security through obscurity", and also noted that they had less information and tools than a serious attacker would have. They also used information in a patent, so they did better than the British codebreakers who ignored Enigma patent information due not not believing German cryptographers would make such an obvious mistake.

Re:It would be nice

[alkali]

Your abuse of Judge Kaplan is unwarranted. I also disagree with his decision, but your suggestion that he is corrupt and ran a "show trial" is utterly unfounded. In particular, the contention that Kaplan couldn't be fair because a different lawyer at the law firm he left several years ago represented one party in a tangentially related matter is nothing more than conspiracy-mongering.

(Also, the notion that Kaplan had contempt for the defendants is a little odd: Kaplan's description of the defendants was more or less of a restatment of the labels they had given themselves. You can't style yourself a leader of the radical underground hacker movement and then complain that people think you're some kind of radical underground hacker. I read 2600 and I understand that there's a certain level of irony involved, but it's not obvious to everyone.)

Re:I was supposed to present results at IHW ... :(

[Wah]

Moral? Did you read the letter?

..instead engage SDMI in a constructive dialogue on how the academic aspects of your research can be shared without jeopardizing the commercial interests of the owners of the various technologies.

..at least one of the technologies that was the subject of the Public Challenge, the Verance Watermark, is already in commercial use and the disclosure of any information that might assist others to remove this watermark would seriously jeopardize the technology and the content it protects.

The specific purpose of providing these encoded files and for setting up the Challenge was to assist SDMI in determining which of the proposed technologies are best suited to protect content in Phase II products.

Failure wasn't an option. It was commercial research. However, since they didn't take the money, they didn't agree. Reading the part about the "clik-thru" agreement (spelling for emphasis) made me laff.

Anyway, I hope that this story will illustrate the dangers of the DMCA so that the european equivalent which is on its way will never come up.

'twould be nice, wouldn't it.

--

Where'd the link go???

[Raleel]

I seem to remember there being (and me using) a link to the published document. www.cryptome.something blah...I can't remember or find it in my history..hmm..

anyways...what happened slashdot???

Re:Where'd the link go???

[invenustus]

http://cryptome.org/sdmi-attack.htm is the link I see up there right now, and although I haven't perused the page, it's not a 404 or anything like that....
----
"Here to discuss how the AOL merger will affect consumers is the CEO of AOL."

I know it's long but...

[mav[LAG]]

how about just the conclusion?:

Do we believe we can defeat any audio protection scheme? Certainly, the technical details of any scheme will become known publicly through reverse engineering. Using the techniques we have presented here, we believe no public watermark-based scheme intended to thwart copying will succeed. Other techniques may or may not be strong against attacks. For example, the encryption used to protect consumer DVDs was easily defeated. Ultimately, if it is possible for a consumer to hear or see protected content, then it will be technically possible for the consumer to copy that content.

All the criteria are filled: it pisses off the AckAcks, has strong backing in working code and best of all, reads like your average /. post on the subject...

Re:SDMI are loosers

[rking]

The "Boston Tea Party" was a revolt against one such market monopoly, granted to the British West Indian Company to sell tea to the colonies...

This government action prevented the Colonists from buying their tea from cheaper sources, and mandated they buy from a government suported and subsidized monopoly.


Surely you're thinking of the East India Company. They didn't strictly have a monopoly on tea, they had exemption from paying the taxes on tea, which obviously gave them an unfair advantage. People could buy tea from other sources, but the effect of the tax was that the East India Company was the cheapest source after they were given their special exemption - previously the tax had applied equally to everyone.

Just being picky and pedantic :)

Re:PGP Approach

[jmauro]

No, PGP had a much, much more novel approach to beating the laws. They printed out the entire code, bound it and then exported the book to Europe. It couldn't be stopped, because banning a book from being exported was a clear violation of the first amendment. When the book arrived in Europe they cut of the bindings and then used a scanner to converted it back into source code. I don't think that that will work in this case.

But since they did ask to have it broken and it was broken I wonder why they are still persuing it. I think that they have already committed to it, and have begun production long before they offered the challange. The challenge was just to get the most obvious cracks off the net and then sue those more active members into submissions. But since they asked for it to be broken I don't think they really have a leg to stand on. Just my thoughts.

Publish "abroad"!

[billsf]

So what if it isn't published in the USA? It would be legal to publish all in the vast majority of countries that haven't been so foolish to adopt a DMCA or other absurd laws. Many sites (including this one) have vast bandwidth and would gladly publish your work and take a /.'ing

I would respect your team if you simply published in a move of civil disobediance against absurd US policies. Publish from your school and dare the US Gov't to take it down. The whole world laughs at the USA these days..... (Do keep a mirror in a safe haven, please) Many of us wish to see the work.

But they didnt back down at all....

[Hrothgar+The+Great]

They are still presenting the paper as planned. The RIAA's letter was basically ignored by them. I think this may be a real slap in the face for them. I'm just glad they didn't back down.

Re:Are we really surprised?

[Malcontent]

They are not immature just evil. People running these coporations are the spawn of the devil.

Then again...

[pq]

"Breaking" some of these "amazingly-wonderfully-powerful gonna-save-music-as-we-know-it" schemes was trivial. No wonder they want to hide it.

Then again, the end of the presentation makes this point:
Ultimately, if it is possible for a consumer to hear or see protected content, then it will be technically possible for the consumer to copy that content.

At that point, it doesn't much matter what the encryption/protection scheme actually is: their only hope is to use the DMCA bludgeon on their own customers. And unfortuantely, customers only have patience for so long before they say "F*** it..."

Hardware hackers raise your hands.....

[dmaxwell]

If it's necessary, I'm sure there are plenty of people here who can build whatever they need to play audio. DA converters are not that hard to build. I don't believe that stripping the electronics from a CD-ROM transport need be terribly difficult either. Let's all get our Digi-Key and Mouser catalogs ordered and whip out those soldering irons. A good electronics hobbyist and good firmware coder should be able to make any piece of open hardware that they want.

Once workable plans are developed, the skills to assemble devices from a kit are even more widespread. We don't absolutely need Circuit Shitty and their ilk. We especially don't need to enrich anybody buying deliberately broken equipment. There is a long history of audiophiles building their own equipment. I think that particular subculture is about to expand.

Interesting tidbit from the report...

[crt]

In case you were wondering how they did this:

With a rapidly changing delay, normal cepstral analysis does not seem a good choice. However, if we know that the same echo is likely to occur at multiples of 16/50 of a second, we can improve detector capability by combining the information of multiple liftered2 log spectra.
2 in accordance with the flopped vocabulary used with cepstral analysis, "liftering" refers to the process of filtering data in the frequency domain rather than the time domain. Similarly, "quefrencies" are frequencies of ripples which occur in the frequency domain rather than the time domain.

Well.. like.. duh.. I'm sure the script kiddies would have figured this out within minutes of SDMI's Phase 2 release anyway.

Your prize, 25 years all expenses paid vacation...

[xixax]

SDMI 2002

The SDMI hacking challenge will be back in 2002, bigger and better than ever!

How do I enter?

Simply send us a SASE with self inciminating details to SDMI Challenge, PO Box 123456, Circle 8, Hades 83911. Our courtesy baliffs will contact you shortly after.

What do I win?

Winners will receive 25 years, all expennses paid internment at a penitentiary of our discretion. This includes all accomodation and meals, along with complementary entertainment provided by fellow inmate Mr, Kaczynski.

Bonus offer!

Enclose the name and address of you friends, along with examples of their hacking prowess, and they could share you prize AT ABSOLUTELY NO EXTRA CHARGE!!!!!

Re:Oops.

[Tackhead]

> > we urge you to withdraw the paper submitted for the upcoming
> > Information Hiding Workshop, assure that it is removed from the
> > Workshop distribution materials and destroyed, and avoid
> > a public discussion of confidential information.
>
> Oops! Now it's on the Internet. I hope everyone saves a copy
> for when cryptome is shut down

Yeah, just goes to show you what these jokers know about information hiding! How 'ya 'sposedta hide information when it gets onto Cryptome and mirrored all over hell's half acre?

Now RIAA - those l33t d00dz are serious about information-hiding! Invite them to this information-hiding thingy, they know what it's all about!

Re:SDMI are loosers

[barabbi]

This comment

Meanwhile the sales of CDs have actually started to decline for the first time ever. I suspect that this is not just the result of Napster. I suspect that the ultra aggressive tactics of the labels have discouraged many purchases.

where did that come from?

According to the RIAA 1999 year statistics, cd sales are up.

http://www.riaa.com/PDF/MD_RIAA10yr.pdf

Troll Ahead

[tilleyrw]

Fuck 'em! "Somehow" the paper is accidentally diseminated via a popular Geek website or mirrors thereof. Then the entire question becomes null and void.

Any takers on mirroring this paper? Where can I download it?

Rebellion is not only expected from true patiots in todays political climate, it is expected.

I was supposed to present results at IHW ... :(

[JPS]

...on our own paper regarding the SDMI challenge. Now, I'm not sure I will...

What I think is really very funny is that the SDMI didn't contact us to have to paper removed or something. This probably means that either 1) they know we are French and know the DMCA doesn't apply or 2) (most likely) they don't really care about our results because we are attacking an algorithm that they haven't picked.

So the funny point is that they had apparently already chosen and deployed an algorithm before the contest. Now they are whinning because the Princeton team (brillantly) broke this very algorithm. And they are invoking some almost "moral" reasons for that, while they probably would have shut up if only the three other algorithms had been broken.

Anyway, I hope that this story will illustrate the dangers of the DMCA so that the european equivalent which is on its way will never come up, and that eventually the US one will be removed.

Re:Then why did they have the challenge at all???

[ghoti]

I would even say this was clearly instigation, and the very least thing that could be done is sue SDMI for that! But I really, really hope that this is going to cause a big stink and maybe even lead to the DMCA being found for what it really is ..

This is what's scaring them

[medcalf]

[BLOCKQUOTE]Do we believe we can defeat any audio protection scheme? Certainly, the technical details of any scheme will become known publicly through reverse engineering. Using the techniques we have presented here, we believe no public watermark-based scheme intended to thwart copying will succeed. Other techniques may or may not be strong against attacks. For example, the encryption used to protect consumer DVDs was easily defeated. Ultimately, if it is possible for a consumer to hear or see protected content, then it will be technically possible for the consumer to copy that content. [/BLOCKQUOTE] So they are reacting by being an ostrich.

SDMI has no legal ground

[selectspec]

SDMI is completely offbase. SDMI are complete idiots for the following two reasons:

• 1. They believe watermarks have a future
• 2. They publicly invited the crypto community to hack their pathetic technology.

These people are nothing but fancy con artists who have convinced the recording industry that they can save them from their inevitable doom.

There is NO POSSIBLE WAY TO TECHNICALLY PROTECT DATA FROM BEING COPIED

THERE IS NO POSSIBLE WAY TO TECHNICALLY PROTECT DATA FROM BEING COPIED!!!! THERE IS NO FUCKING WAY TO PROTECT DATA FROM BEING COPIED YOU COMPLETE MORONS!!!

Re:SDMI has no legal ground

[innocent_white_lamb]

Their plan fails instantly because I already have a device capable of playing music that does not, and will not, include their magic copy detector: my computer. ---> Not so fast there. In the "corporate utopian vision" your computer will also incorporate the copy-protection technology. Ref: the recent CPRM discussions.

It is possible (and scary) to think that eventually the only way to obtain "open" computer hardware might be to build it yourself. Which might be difficult if you don't own your own chip foundry and assembly plant....

Re:SDMI has no legal ground

[JCCyC]

You can copy the music you downloaded as much as you want. But the watermark gets copied along with it. Now, if a copy of the track turns up somewhere, the music company will know how to find the watermark and trace it back to you. And there is no easy way to get around this

Let's play devil's (God's?) advocate here.

1. Buy lots of music. Store into notebook.
2. Sell notebook to accomplice. Get cash.
3. File theft of notebook.
4. Preferrably have this happening in some faraway country like India.
5. Get back to USA, crying crocodile tears because of your expensive, lost notebook. Thankfully, you had backups of everything.

Hm, you're right, not easy. But doable. Having everything happen in the same country will be a lot cheaper but a little more risky, what with traceable hardware and all. I guess variations coud be concocted. A nice intellectual exercise, I must say.

Re:SDMI has no legal ground

[dachshund]

SDMI are complete idiots

What are you talking about? These folks managed to hold every single one of their conferences in some exotic location like Florence or Hawaii, all at company expense. I would say they're quite clever, really.

So what if they never quite got any decent work done?

Re:Weak

[Mike+Connell]

You obviously have never worked for a large university or organization.

Ironically, I do ;-)

Weak

[Mike+Connell]

Whilst I'm happy to see the results published, it's dissapointing to see them leaked anonymously. I would have far prefered the faculty at Princeton to stand up, give the RIAA the finger and say "We're scientists. We do research and publish. If you don't like the fact that some of our guys cracked your methods, don't make them so weak".

Now the appearance is that university researchers *are* in fear of RIAA and the bizarre legal state of affairs that exists. After all, if Princeton can't/won't stand up to them, who will?

It's nice that the paper is out, and that, (presumably), they can now present it at the IHW conference without repercussions, but it still leaves a bad taste in my mouth.

Re:Weak

[FattMattP]

"We're scientists. We do research and publish. If you don't like the fact that some of our guys cracked your methods, don't make them so weak".

Or challenge people to crack it. Surely people are going to discuss what they went through on a challenge.

Re:Weak

[mother_superius]

If the case vs. Princeton wins, then I'll try it next weekend. Thanks. I'm sure I can think of a way to exploit the situation by then.

Re:Weak

[zhensel]

They probably were sharing their paper with other academics prior to release and someone else leaked the paper. Given scientist's (well most of them) inclination to check their work prior to publishing it (unlike, say, Slashdot), this makes sense.

Re:Weak

[TGK]

Does this sound a lot like me putting a sign in my front yard reading "New security system installed; if you can break in I'll pay you $500" and then pressing breaking and entering charges when someone actualy breaks in to anyone else?

This has been another useless post from....

It would be nice

[moller]

If the researchers went ahead and published the paper anyways. Large universities have fairly competent legal teams, they should be able to defend themselves.

Besides, this is Princeton. I can't see how any litigation pursued against researchers from Princeton would be anything other than a black eye for SDMI. It's not like they'd be suing some little private university with no grad school that no one's ever heard of. This is barely a step down from threatening Harvard (and seriously, who in their right mind would threaten Harvard?).

It would be a shame if Princeton's legal dept tells the researchers to back down because they don't have a legal leg to stand on here. Hell, even if they didn't have a legal leg to stand on it would still be fun to watch SDMI go after several professors at Princeton. High visibility and bad publicity for SDMI. I'd pay to watch those court proceedings.

Moller

Re:It would be nice

[jgerman]

I agree with your sentiment but not your specifics:

The bottom line, the year 1933 marks the END of the United States as a Rebublic, and the beginning of "democracy". Democracy (mob rule), is the absolute WORST form of government that ever could be. Since 1933, the Federal government has gone to no end in implimenting the "will of the people", Constitution be dammed

We are no more a democracy than any other country. We are a representative republic. The masses do not make the rules in this country. Representatives make the rules based on what they believe is the will of the portion of the masses that they represent (at least in theory). As far as Democracy being the worst form of government that could ever be. That's pretty much meaningless. No government exists without the support of the masses at least not for long. In the end numbers win out over any other type of power. (established by George Washington, the only man in history that I know of to ever TURN DOWN a throne).

read more history, kings and kngs to be have abdicated, and turned down thrones throughout history

Re:It would be nice

[oliphaunt]

um, they just did, in case you maybe didn't notice.

Re:It would be nice

[sallen]

At this point, I'd think they'd HAVE to publish. It's too much a risk of going down the road of obliterating academic freedom. That can't be allowed to happen. (Though if someone from the press received any copy by accident, could that not be published, ala pentagon papers? ) Then again, a simple reading by a congress person who's anti-DMCA on the house floor would suffice too, since they can't be prosecuted (time for hearings on the DMCA and academic freedom. Inclusion of the paper into the record would not be out of line.)

But with all the control over the participants, maybe the IRS should be looking into this. It seems they, instead of participating in a challange, are so controlled, they look at lot more like uncompensated employees to me. The group had exclusive control, dictated direction, use, output, and seemingly 'owns' all data and results. Very controlled. Sounds like they're all (how many thousands downloaded that??) owed compensation and full benefits. Damn. there goes their budget for the next few years. hehe.

Re:It would be nice

[ebyrob]

should I be scared I agree with you so much?

Aww well, at least I get bread and circuses. My ancestors didn't have those... Are you sure you could live without them?

Re:It would be nice

[loraksus]

Then again, a simple reading by a congress person who's anti-DMCA on the house floor . . .

Hahaha. If I had any moderator points left, that would be at +5 funny.

Remember that the DMCA didn't have much opposition in congress.

I have a shotgun, a shovel and 30 acres behind the barn.

Re:It would be nice

[fatphil]

"
Dear Professor Felten,
Whilst it appears from the title "professor" you may be an academic, we /urge/ you to refrain from researching in this particular field, because that would be a bad thing, and we know what school your children go to, if you know what we mean...
"

Fuck it, if they don't want the information to come out in an formal academic way, then they'll have a few months more of perceived security before it comes out via unofficial routes.

Put the cracks off guys (and gals). Let this thing become universal before breaking... :-)

Whiney fuckers.

FatPhil (mad)

--

Re:It would be nice

[Miragejp]

Wholeheartedly agree here.

My one true wish is that there would be backlash against DMCA, SDMI along with the MPAA and RIAA and all of their supporters who believe that corporations are more important than people.

The backlash I wish to happen would be of such a magnitude and type as to make Genghis Khan or Atilla proud - By that, I mean go in and torture and murder whole slews of company executives and lawyers - to quote Cornholio - "The streets will flow with the blood of the non-believers!"

Re:It would be nice

[ackthpt]

Colleges and Universities also have a time honored tradition of bending over for anyone who is or might be a contributor. If Princeton's development office has them on file as a donor, you'll be disappointed how quickly they'll act to shut up their own students and faculty.

Good thing the USA is a free country or it would be run by a bunch of oligarches with a big business puppet in the Whitehouse ...er... never mind.

--

Re:It would be nice

[mikethegeek]

"Your abuse of Judge Kaplan is unwarranted. I also disagree with his decision, but your suggestion that he is corrupt and ran a "show trial" is utterly unfounded. In particular, the contention that Kaplan couldn't be fair because a different lawyer at the law firm he left several years ago represented one party in a tangentially related matter is nothing more than conspiracy-mongering."

I don't see how "judge" Kaplan's conduct could be construed as anything but dishonorable. The mere fact that he excoriated Martin Garbus for a less direct link with the plantiffs than his OWN, when he did this knowing that he had a similar link to them, shows:

1. Stupidity (he didn't remember, very unlikely)
2. Corruption (he admonished Garbus for conduct certanly no less conflicting than his own just to do anything he could to make the defendants look bad).
3. Napoleonic Complex: I'm the "judge" and I'm ABOVE all question. (This goes against the founding principles of this country... there is NOTHING that is above all question in any free society)
4. There was nothing illegal or improper about his OR Garbus's past associations with MPAA member companies, but he excoriated Garbus solely to make him look bad.

I really dont' see any fifth possibility. If Kaplan's conflict of interest was of no consequence, then Martin Garbus's lesser conflict (having once worked at a firm that represented a company later bought by Time-Warner) was also of no consequence. Nonetheless, the alleged "judge" saw fit to go on record excoriating Garbus, and even threaten future disciplinary action.

It makes Kaplan look all the worse, in that he did this in response to a MPAA motion to remove Garbus, and that he completely dismissed a later defense motion to recuse himself for a very similar, but even more direct conflict of his own.

Had Kaplan recused himself, or NOT excoriated Garbus, then set down the ruling that he did, I'd have some respect for him, as he would have at least been consistent. Instead, he acted in a manner more consistent with a televangelist caught with a hooker than a judge. Indeed, his actions condemming Garbus were very reminicient of Jimmy Swaggart's condemnation of Jim Bakker, only to be soon after caught in his own sex scandal...

The impression I got (and the same impression the majority of /.'ers got) was that of a "show trial" by a "kangaroo court" where the verdict was in before there was any evidence presented. The fact that this is the feeling I have is solely the fault of Kaplan's own conduct. I feel that his conduct in this case leaves me with no reasonable way to give him the benefit of the doubt.

To sum it all up:

1. Kaplan excoriated Garbus for conduct lesser than, or no more equal to what he himself had done.

2. Kaplan repeatedly abused Garbus, made his contempt completely blatant. Not for one moment in the transcripts did Kaplan treat Garbus with anything approaching civility or respect, that was due him and his clients.

3. Kaplan refused to recuse himself when his own conflict of interest was exposed. Furthermore, it took him 90 pages to explain WHY he shouldn't recuse himself. It would seem to me that if it takes you 90 pages to explain why you shouldn't recuse yourself, then you SHOULD have recused yourself if you had any shread of honor or integrity.

4. Kaplan most narrowly interpreted the DMCA (while ignoring it's fair use clause that allows reverse engineering for interoperability, which making a Linux DVD player would seem to me to be covered by) but only the parts that favored the MPAA position. Kaplan furtermore ruled web links to DeCSS illegal, something not at ALL covered under the DMCA, and clearly something beyond the scope of his authority.

Re:It would be nice

[mikethegeek]

"First off, you'd better not act that way in a real court of law, because disrespect for a judge will get you thrown out on your ear.

Of course, you're 'tuFF Boy' here because you're on Slashdot. That's understandable. Do get a clue though, before you enter real life."

Of COURSE I'm not stupid enough to think I'd disrespect a judge in a courtroom. However, if a judge behaved towards me or my counsel like Kaplan did Garbus and 2600, I'd certainly use his actions as evidence against him, in overturning any judgement.

Just as it would be foolish for a defendant to behave like that in a court, it's just AS foolish for Kaplan to conduct himself the way he did. He certaly made it easier, NOT harder, to appeal his own judgement.

Also, you seem to imply that I'm inmature for expressing my contempt for a contemptible "judge"'s actions in a case. Can't you see what is WRONG with that attitude? NOTHING can be above ALL question ina free society!!!! NOTHING!!!

If we as citizens have an ABSOLUTE 1st Amendment right to political speech, which includes bashing or praising Presidents and Congressmen without government reprisal, why does that not ALSO include judges? How can it not? Aren't Federal Judges part of the government, and therefore, subservient to the Constitution?

Re:It would be nice

[mikethegeek]

"I'm not particularly interested in the argument about this particular ruling or judge Kaplan, but I can't help but ask one question in response to those two paragraphs:
Is the constitution above question?"

No, of course not. As I said there is NOTHING that is beyond questioning in a free society. It can be AMENDED, by a public process that requires debate, and approval by a 2/3rds majority of Congress AND the states.

The DMCA is such a radical repeal of the Constitution's provisions covering Patent and Copyright, that it would seem to require some sort of amendment to be legal.

Is the Constitution perfect? Of course not. But as written, it's the MOST perfect form of government for a free society that has ever been invented.

Unfortunately, the Federal government, in it's own self-interest, has pretty much ignored the parts of it that limits it's power (most notably the 9th and 10th Amendments, part of the ORIGINAL bill of rights), pretty much since 1933.

Prior to 1933, the government went about acquiring new powers the proper way, by amending the Constitution. Most notably, they didn't outlaw alchohol )prohibition) by STATUTORY law, it was done by amendment.

Contrast that with the post-1933 "War on Drugs" which has been ENTIRELY conducted through statutory law, using authority that the Constitution clearly does not give the Feds. Prior to 1933, the government would have felt it needed to amend the Constitution to outlaw drugs. Post 1933, the Feds think they can do whatever they want, whenever they want, so long as it's "the will of the people".

The bottom line, the year 1933 marks the END of the United States as a Rebublic, and the beginning of "democracy". Democracy (mob rule), is the absolute WORST form of government that ever could be. Since 1933, the Federal government has gone to no end in implimenting the "will of the people", Constitution be dammed.

1933 was the year we had our first "King", Mr Franklin D. Roosevelt, who ignored 130 years of precedent (established by George Washington, the only man in history that I know of to ever TURN DOWN a throne). Roosevelt gained power and kept it by giving the masses "bread and circuses" and if not for his death in 1945, probably would have ruled for another decade had he lived. Thankfully, the Constitution WAS amended limiting all future Presidents to the Washington precedent of 2 terms. This definately slowed the slide to tyrrany down a bit, though with the concept of using "bread and circuses genie" out of the bottle, eventual collapse into some form of authoritarian regeime is inevitable. Imagine if Clinton had gotten a third term...

And, the "will of the people" is easily molded to correspond to the "will of the powerful" given that our public educational system collapsed sometime in the 1960's with LBJ.

Re:It would be nice

[mikethegeek]

"It would be a shame if Princeton's legal dept tells the researchers to back down because they don't have a legal leg to stand on here."

The fact is, they DO have a legal leg to stand on here... The rights of "fair use" and "reverse engineering" were established by the courts over the years in many many, precedent setting cases (such as the Betamax case) as being from the Constitution. NO statutory law can "outrank" the Constitution, it's the higest law of the land, from which there is no option but to change it.

The DMCA has many MANY problems with the Constitution, and this threat towards these Princeton professors proves, it could have this little side effect of DESTROYING academia.

The unanimous voice vote "coup de etat" nature of the DMCA's passage is even more insidious. Congress, and Bill Clinton, in effect, conducted an illegal Constitutional Convention, in their roles in passing that law. The DMCA cannot be legal without a Constitutional Amendment.

Remember, there has yet been NO TEST of the Constitutionality of the DMCA. This didn't happen in the 2600 case, because it was presided over a conflicted judge (the so-called "judge" Kaplan) who did not hide for one second his contempt for both the defendants and their counsel.

And, he also had worked for a lawfirm that had DIRECTLY represented a plantiff before becoming a judge (Martin Garbus, lead attorney for 2600 and the EFF was EXCORIATED by Kaplan for previously working for a firm that had represented a company that was eventually BOUGHT by Time Warner.)

Kaplan refused to recuse himself, and ran a "show trial" with an illogical and indefensible verdict. But then, one only need have paid attention to the judge's behavior in the pre-trial to know that the verdict was a foregone conclusion. Kaplan ruled on the most narrow POSSIBLE interpretation of the DMCA, even ignoring the language in the DMCA itself which would seem to make reverse-engineering CSS for the purpose of creating a Linux DVD player perfectly legal.

"Hell, even if they didn't have a legal leg to stand on it would still be fun to watch SDMI go after several professors at Princeton. High visibility and bad publicity for SDMI. I'd pay to watch those court proceedings."

I would think that the MPAA/RIAA/SDMI cartels et all, would be very hesitant to go forward with such a case. 2600 was an easy target because it was VERY easy to spin them off as "anarchistic hackers". Princeton professors will be a lot harder to mount a slander campaign against. It's a sad indictment of the US legal system that not all defendants are equal before the eyes of the law.

What the IP cartel is doing right now is trying to win by intimidation, threat, and extortion what it probably can't win in a courtroom (as it's certain that all or at least MOST of the DMCA would be struck down or at the very least, limited by the courts). They are hoping that either the authors of the paper will back down, or else Princeton will back them down.

If I were the author of the paper, I'd be considering pulling an "Infineon" on the IP cartel: What they are doing right now (using threat, intimidation, and extortion) kinda smacks as illegal under the RICO laws doesn't it?

proof the RIAA is stupid.

[moller]

They addressed the letter wrong:


April 9, 2001

Professor Edward Felton
Department of Computer Science
Princeton University
Princeton, NY 08544

Dear Professor Felten,

(etc.)


Well, it's a good thing that they got the Zip code right. Last time I checked, Princeton University wasn't in NY. The RIAA can't even send threatening letters correctly.

Re:proof the RIAA is stupid.

[qbwiz]

O is for Optical...

Re:proof the RIAA is stupid.

[fatphil]

+1 Funny to that, for sure!

New Jersey? Hell it's /close/. :-)

In the UK, people have got of incredible serious (alleged) offences due to typos!
Note, however, that we don't know if the typo was on the transcriber's (to the web page) part.

Hmmm, actually, I'm gonna do a quick web-suck of that page /just in case/...

FP.
--

I'm going to disagree for this instance

[moller]

Colleges and Universities also have a time honored tradition of bending over for anyone who is or might be a contributor. If Princeton's development office has them on file as a donor, you'll be disappointed how quickly they'll act to shut up their own students and faculty.

Well...I don't know how true that is in general. But specifically regarding this case, from the FAQ (http://www.cs.princeton.edu/sip/sdmi/faq.html) on their webpage, they state that:

Fortunately, the DMCA did not apply to this challenge, since SDMI granted explicit permission to study their technologies. We are not sure whether it would have been legal to study these technologies outside the context of this challenge. We think the DMCA, by criminalizing some kinds of study of important technologies, represents an "ignorance is bliss" approach to technological copyright enforcement, which will not work in the long run. We lobbied against certain aspects of the DMCA while it was before Congress, and we still consider it to be a seriously flawed law. (my emphasis)


Above, we mentioned the important role of analysis in the design of security systems. The main problem with the DMCA is that it hinders this analysis, restricting it in order to provide an extra layer of legal protection for existing copyright systems. But this causes the scientific process to stagnate. Imagine a federal law making it illegal for anyone (including Consumer Reports) to purposefully cause an automobile collision. While this may be a well-intentioned attempt to stop road-rage, it also bans automobile crash-testing, ultimately leading to unsafe vehicles and the inability to learn how to make vehicles safe in general. The situation with the DMCA is analogous.

So this group of researchers lobbied against the DMCA. This would be the perfect opportunity for them to fight it. Seeing as how they've said that they disagree with the DMCA, it seems that it would be more likely for them NOT to fold under the RIAA's pressure.

Moller

Re:Got to use vinyl in the future

[Apotsy]

I read that Sony and Philips are trying to keep the Verance (and other) watermarks away from SACD, but they're having trouble convincing recording labels to release unwatermarked music. So far the only taker is the classical label Telarc.

Ugh. We're never going to have a no-compromise digital audio system.

Re:Thus, the "audio sync stabilizer"

[Apotsy]

Unless of course the watermarking process destroys signal information, in which case there will be no way to recover it.

The Verance Watermark

[Apotsy]

The thing that really sucks about the Verance watermark is that it is designed to survive lossy compression and analog copying. Of course, in order to do that, it has to be so obtrusive that you can hear it, despite the company's claims to the contrary.

According to this article, recording engineer Tony Faulkner was able to spot the watermark 75% of the time on his first chance at hearing it. What does that tell you? That this stupid watermark is going to be something you will hear on every DVD-A disc you buy! Doesn't that suck?! Well, the recording companies don't care ... they just want to stop those Napster punks from stealing their content -- quality be damned!

de.css file -- german cascading style sheet?

[Speare]

I don't have a copy of the file, is it for Deutche (German) language pages? Do Germans need different style sheets? Or is this some sort of style-remover?

i18n is a bad abbreviation

Legal Action = Mirroring

[MrKevvy]

Did anyone not save a copy of this document or download the Zip provided? Most wouldn't probably have cared much otherwise. I would have read it and moved on myself. Now how many copies of it are out there? When will these groups realize that as soon as they threaten legal action, it's both an incentive to make as many copies of the "infringing" documents as possible, and find out exactly what it is and how it works? If it's to be censored, it must a) work and b) be interesting. Probably never...they didn't learn it with DeCSS, nor with CP4Hack (The CyberPatrol URL list cracker,) nor now with this article.

Re:Legal Action = Mirroring

[dh003i]

here is my copy of the SDMI documentation:

http://home.rochester.rr.com/tweak/SDMI%20Challeng e.htm

Re:Legal Action = Mirroring

[acceleriter]

And the recording industry is particularly good at this. If it wasn't for the writeup a few years back (before Napster was a twinkle in Fanning's eye) in Wired where the RIAA had pulled a stormtrooper act on the few college kids who were trading MP3's, I and darn near the rest of the world probably never would have heard of them.

<humor>
I suspect that the recording industry and manufacturers of hard disks and removable media are laughing all the way to the bank, having negotiated in smoke filled rooms to share the profits while they play us all for fools buying 80GB disks and CDR drives with 100 spindles to store MP3's and legally challenged material like DeCSS, VirtualDub 1.3, TotalRecorder, ASFRecorder, the eFront ICQ logs (which I and about 1E6 others posted to Freenet). And now this.
</humor>

Let me get this straight...

[Trekologer]

The RIAA/SDMI released all watermarked music tracks, of which some contained watermarks currently in production, with a challenge to crack them. Obviously, they assumed that no one would be able to crack it or anyone who did would give up all claim to their work for some money (probablly so that RIAA/SDMI could patent any way to remove the watermark, ala Macrovision). They didn't count on someone taking up the challenge (or using their publiclly released materials) for purely academic research and are now trying to plug the hold in the dam before it bursts.

Man... is the RIAA really stupid or just playing stupid to get public opinion on their said agaist those evil hackers from Priceton?

Either way, their big secret is out, just like the MPAA's CSS secret, and the knowlege of it is not going to disappear.

Re:Let me get this straight...

[mikethegeek]

"The RIAA/SDMI released all watermarked music tracks, of which some contained watermarks currently in production, with a challenge to crack them. Obviously, they assumed that no one would be able to crack it"

All the more indication the RIAA/MPAA et all are on a suicide march. They have no clue about technology, but yet, have the power and influence to get law passed restricting the rights of US citizens to it...

There never was and never WILL be a copy protection scheme that will absolutely prevent someone who is determined to copy from copying it, so long as the copy protection MUST allow the thing to be read, run, viewed, or played.

Ultimately, they will be forced into suing their customers, which will be the end of it, any business that sues its customers because it's scheme or product can't suceed on it's own merits fails (Rambus).

What our government has to decide is this:

Do we want to become a country where corporations have absolute control over IP, or a free country where there is a right to innovate?

Obviously, if the DMCA sticks, and all individual initiative is crushed, some other country without restrictive IP laws will one day take the lead in technological innovation.

DMCA - Permissible acts of encryption research

[Seth+Finkelstein]

The DMCA text, part (g), does define "Permissible acts of encryption research", with a laundry-list of factors which are used to determine the permissibility.

The important thing to understand is that these are defenses. This means the RIAA still gets to drag someone into court and wage a legal war of attrition, while the defense are argued. That's very, very, expen$$$ive.

Re:DMCA - Permissible acts of encryption research

[A+Bugg]

well i think princeton's 8 billion dollar endowment could keep the fight up for a long time.

a bugg

Re:DMCA - Permissible acts of encryption research

[Peter+Dyck]

You seriously think that an academic organization has enough money to fight a commercial one?

Re:DMCA - Permissible acts of encryption research

[dachshund]

This means the RIAA still gets to drag someone into court and wage a legal war of attrition, while the defense are argued. That's very, very, expen$$$ive.

Princeton's got enough money to fight them, if they've got the will. It would seem to be a worthwhile fight, as the DMCA could theoretically cause them (and other universities) an enormous amount of grief over the coming years (which could theoretically translate into enormous compliance costs.)

hack SDMI today!

[jbridge21]

Augh, I know this comment is a bit late for anybody to see it in the story, but oh well. If you want to see the original web page, license, AND download the test data sets, then just check out the link in my sig.
-----

Degraded audio quality

[tsphere]

This pisses me off, that the SDMI expects consumers to be happy buying so-called "perfect" digital copies of music that in fact have known, intentional defects in sound quality introduced as access control methods.

I'm especially taking issue with "Technology C". From Felten's paper on the attack:

By taking the difference of samp1c.wav and samp2c.wav, bursts of narrowband signal are observed ... centered around 1350 Hz.... [W]e passed the signal through a bandstop filter centered around 1350Hz. Our submissions were confirmed by SDMI oracle as successful.

Think about this for a second! They simply removed audio information and then the sound sample was accepted as genuine. This means that the audio information they removed was never there to begin with. Argh.

Oh, and kids... 1350 Hz is not some whacky frequency that only bats can hear. It's somewhere around E above high C, which is a perfectly fine note, when you think about it. I mean, I play trumpet, I love listening to trumpet music. Cutting out 1350 Hz will effect everyone from Maynard Ferguson to Miles Davis (well maybe not Miles Davis. ;-)

Well that's enough of that. Time to get dressed.

Re:Degraded audio quality

[Muad'Dave]

Keep in mind that the highest note on a piano is somewhere near 4 kHz...

That may be true, but that figure is for the fundamental tone of the highest note. In order to sound like a piano and not a signal generator, the notes of a piano are complex combinations of harmonics, not pure tones. I wouldn't be a bit surprised if there were audible harmonics up to 16kHz or so.

Re:Degraded audio quality

[mikethegeek]

"Oh, and kids... 1350 Hz is not some whacky frequency that only bats can hear. It's somewhere around E above high C, which is a perfectly fine note, when you think about it. I mean, I play trumpet, I love listening to trumpet music. Cutting out 1350 Hz will effect everyone from Maynard Ferguson to Miles Davis (well maybe not Miles Davis. ;-)"

"1349 Hz ought to be enough for anybody" -Jack Valenti

I get your point. You'd think that any "new" media that is intentionally inferior to the old would fail in the market. But, remember, we're dealing with CONSUMERS here... Windows `9x is clearly an inferior and more restrictive product when compared to OS/2, Linux, BeOS, or even the original DOS it's still based on, yet it still dominates the market because of superior marketing.

Maybe the IP cartels think they can get SDMI accepted in the same manner?

Re:Degraded audio quality

[mikethegeek]

"Keep in mind that the highest note on a piano is somewhere near 4 kHz; so even though the "robust" component of the watermark may be audible, it will most likely only slightly alter the timbre of sounds in the average song (and so will probably only be heard by musicians and extreme audiophiles)"

Which is why watermarking is a doomed technology. The FIRST adopters of any new audio technology are the musicians and audiophiles. Why? For one thing, brand new technology is almost ALWAYS very expensive at first, and the true devotees are the only ones that will run right out and get it, because it's the best, right?

Well, as you and others have demonstrated, SDMI "watermarking" makes for audio quality that is INFERIOR to current media. The audiophiles will NOT run out and buy it, which will drasticaly slow if not STOP it's acceptance as a replacement for CD. It's the early adopters who subsidize the mass production that ends up lowering the costs for the "rest of us" when we start buying into it.

The only way SDMI will ever make it is if the RIAA, et all, subsidize it, ie, make the players CHEAPER than what is out there now. I don't see that happening, as it would cost them BILLIONS to do this.

Re:Degraded audio quality

[Thurn+und+Taxis]

Excellent post. However, noise floor is not a particularly good measure of what we can and cannot hear. In the case of SDMI, the watermark (based on the article) appears to be a signal added in the 4-8 kHz band. Keep in mind that the highest note on a piano is somewhere near 4 kHz; so even though the "robust" component of the watermark may be audible, it will most likely only slightly alter the timbre of sounds in the average song (and so will probably only be heard by musicians and extreme audiophiles). And the "fragile" component of the watermark (the part that's used to determine if the file has been modified) is specifically designed to be inaudible. From the article, it appears that the "robust" component is equivalent to a slight echo; since most music recordings are deliberately made in rooms with significant echos, even the "robust" component is not likely to be audible. So adding SDMI encoding to your favorite audio file probably won't introduce audible artifacts, unless you're a world-class musician.

Re:DMCA will protect the scholars, not SDMI

[apol]

(B) such act is necessary to conduct such encryption research;

This law is a joke. Every reverse engeneering of encryption methods could be said to be research.

IP laws have less and less meaning. The only thing they say is that "if you want to be ellegible for any of the exception clauses we offer you need a damn good crew of laweyrs".

Re:PGP Approach

[evilWurst]

The catch is that they could sue HIM for doing it, as he's an american citizen who wrote that paper in america. They just couldn't shut down his foreign server as easily, that's all.

I believe PGP did it by forming a foreign company, re-engineering the program with new people, and releasing it that way.

Re:SDMI are loosers

[stu72]

Great points, but...

I have no sympathy for the crooks running Napster, the idea you can build a billion dollar business helping people rip off everyone else in the music business is one extreeme of the debate.

huh? Billion dollar business? What business? Napster didn't charge for anything and ads, as we all know, are a joke. I suppose it's possible that they thought they might one day become a billion dollar business, but I don't think they ever really thought about how they might get there.

What napster is/was, is high profile & well financed, i.e. a lot of dumb people "invested" a lot of dumb money.

Billion dollar business my ass.

To generalize:

[nahtanoj]

Whenever a technology/product is proven to be less than it is marketed/hyped as, the company will do all it can to keep the masses from finding out.

Ciao

nahtanoj

A tiny bit of legal knowledge

[Pyrrus]

I know a little about law, and here's some of it: a trade secret is a fucking *secret*, if I break into your lab at night and steal your data, that's illegal, if I take whatever has been publicly released and figure it out for myself, it's all good and legal. for example: the recipe for coca-cola is a trade secret, if I break into their processing plants and look at the manufacturing process to figure out the recipie, it's illegal. If I buy a coke and analyze it in my own lab, the coca-cola co. is SOL. (unless like here, they hope you don't know the law and write threatening letters...)

"huhuhuhh, go away. we're like closed or something"

Lesson to be learned

[Legion303]

Before you crack relatively simple "protection" schemes and piss off large corporations, check to be sure you're a respected learning institution and not a Norwegian teenager.

-Legion

Re:I am Canadian.......and

[Legion303]

Quebec is part of Canada? Since when? :P

I'm not Canadian, but I hope to be within a decade. As a future Canadian citizen, I wouldn't mind one bit if Quebec became its own little nation.

-Legion

Re:Then why did they have the challenge at all???

[drnomad]

Control? When 'crackers' hack SDMI, and SDMI knows about it, then they have the legal backup to try to shut themmothufuckers up. An SDMI hacker is not invisible for SDMI. If SDMI was cracked in the underground like DeCSS, then it would be much harder to stop the genie getting out of the bottle. The hack is a corporate risk - first try to stop 'em (the protection), then try to stop communication (publishing the hack), then sue them (still making money from the tech.)

You are not suposed to understand.

[twitter]

Like most lies, the DMCA is vauge. This is so it can be interpreted favorably to the creeps that put it up. Its language can be compared to any of the psycho bable from the last 8 years of Clinton rule. You can also compare it to bimbo talk:

I just need some space to figure this out.

I'd go on, but it's hard for me to think like that.

DCMA?

[martinflack]

In addition, any disclosure of information gained from participating in the Public Challenge would be outside the scope of activities permitted by the Agreement and could subject you and your research team to actions under the Digital Millennium Copyright Act ("DCMA").

Oh, no, hold it... they are threatening to sue under the Dumbass Chickens who Misuse Agreements law... not the _D_igital _M_illenium _C_opyright _A_ct. Oh, thank God. Don't worry guys, everybody go home, it's just the DCMA, thankfully not the DMCA.

If I was Princeton, I would write back and say nothing except, "Can we have the spell-checked version of your letter now? Then we'll consider it. Thanks."

On knowing how to do something eeeeevil.

[L.+J.+Beauregard]

Hillary Rosen and her mom must have never had The Talk. After all, it's information she could use to be a whore.
--
Ooh, moderator points! Five more idjits go to Minus One Hell!
Delenda est Windoze

Re:will this trigger them, as well?

[rograndom]

That's funny. At my web design job I've been naming all my external stylesheets "de.css" also. Nobody at work knows what it means (I've tried to explain, but...), but they just go along with it anyways, even on projects I have nothing to do with. :-)

Re:Then why did they have the challenge at all???

[j_w_d]

Apparently they didn't read, new less than even was available in public sources about encryption, assumed the scheme was designed by scientists instead of scientologists, thought academics were not in the real world - a prize "worth a couple of days of a security specialist's time" forsooth, took lessons in science and technology from George Bush's teachers, still believe the world is flat, think that might makes right and that money is right. . . . j_w_d

Re:will this trigger them, as well?

[SnakeEyes]

And I've gone even one step further than this. I have named my stylesheets "decss.css" and actually include the DECSS code as a comment.

Now, anyone who sees my pages will have downloaded the code *automatically*.

Damn I love anarchism.

Re:SDMI are loosers

[Edward+Kmett]

But of course, they can just chalk up the lost sales to Napster anyways, so the RIAA doesn't care. It just strengthens their case.

Isn't it lovely how if you boycott them, it strengthens their argument about the economic impact of copying technologies, even though it is not the copying technologies, but their reactions to those technologies which contribute to the lack of desire to purchase CDs for some people (well, me at least).

P.S. I'm a cultural luddite. I don't buy CDs and I don't watch TV, but I do (yes, I'm a hypocrite) buy DVDs. Arrgh I can't escape. Unfortunately there does not seem to be any decent independant movie content and nothing in sight.

Weekend release

[lesterhv]

What is even more delicious is that this was released on a Saturday morning -- when the lawyers are away from their offices enjoying the sun and a few beer. Lots of time to spread it around before the judicial system has a chance to yank it

We need punitive IP laws...

[aiken_d]

...this kind of thing really gets my goat. I think I've got an answer, albeit one that's unlikely to be passed any time soon.

What we need is a law that would allow courts to punitively strip intellectual property protections from individuals, companies, and organizations that use those protections in bad faith.

Under my proposal, those who abuse the system would be subject to public domainification not only of the IP in question, but also of other IP they may own.

My law would allow courts to strip IP ownership in the event that any one of the following is true:

- The guilty party is using IP laws to prevent dissemination of critiques of IP. This includes flaws, comparisons with other solutions, historical research, or other legitimate academic or competitive information

- The guilty party *knowingly* sought and received IP protection in bad faith; IE patenting something with advance knowledge of prior art that would disqualify the patent

- The guilty party is, or has a business relationship with, the RIAA

Ok, that last one may not fly, but the first two cases are increasingly common, and go beyond corporate malfeasance and into the area of crimes against the public good. The only way these abuses will stop will be if there are severe penalties levied on those who perpetrate IP abuse.

Cheers
-b

Re:We need punitive IP laws...

[krlynch]

And attempting to patent something without revealing prior knowledge of prior does provide grounds for patent invalidation...

Re:We need punitive IP laws...

[-Harlequin-]

What we need is a law that would allow courts to punitively strip intellectual property protections from individuals, companies, and organizations that use those protections in bad faith.

It's already in place, been in place for a long time - using copyrights for anti-competitive behaviour can result in the loss of those copyrights. Some people were talking about trying to use this in the lastest anti-competitive lawsuit against the music publishers, but I think there is pretty much zero chance of it.

No court would dare relieve the music industry of each piece of IP that it has used to abuse the market - it would be like telling MS that Windows, Office, etc are all now public domain. No chance in hell, regardless of justice.

Sopranos

[mrfiddlehead]

We gotta get tony on our side ... what! He's already working for the RIAA.

I guess that makes sense.

Bunch of fuckin' bullies. Whacha gonna do?

I thought they claimed the crack was not a success

[TheLink]

Hey I thought the stupid dumb moronic idiots claimed the crack wasn't a success?

So now they're admitting it is?
Link.

Re:Its their own fault...

[ssimpson]

As stated in my story, a copy of the paper is at: http://cryptome.org/sdmi-attack.htm

Happy mirroring :)

Re:DMCA

[davelee]

As a former Princeton undergraduate, (Class of 1998 for those who care), I can assure you that the University would probably stand behind Professor Felten if it came down to a lawsuit. And I can virtually guarantee that in a bullying contest, the record companies would be at a disadvantage. This may in fact be the road to the RIAA's demise -- they're starting to go after people with both the money and influence to fight back.

Another win for the home team

[dstarfire]

A little bit of insight on this whole mess from your local, amateur psychologist. There is a war on between industry, who wants to encrypt and control information as much as they can, usually to further their profit margins; and the public, who want to get the most they can, for the least they can, and want to know "all the juicy secrets". So far, it seems that the public has the lead, with technology being their main weapon, and free-speech laws a somewhat effective shield against the corporate counter-attacks. The ONLY weapon the corporations have left is legal action. They can't stop you from breaking their encryption schemes, they can't stop us from publishing the results, and they can't stop us from distributing information they want kept secret. So, all they have left is to bring legal action against those few who dare to openly and publicly present this information, to make these people suffer for opposing the corporations. There's a war on folks, and this is just another battle in that war. We'll see LOTS of casualties before it's over, but in the end, I think we can win this one. Any speculation on what the final costs might be, when corporations realize they can't win this war???

Re:Another win for the home team

[mikethegeek]

"So, all they have left is to bring legal action against those few who dare to openly and publicly present this information, to make these people suffer for opposing the corporations.

Which means that there will be martyrs. It's not that fun to BE a martyr, so I don't think there will be much of this.

"There's a war on folks, and this is just another battle in that war. We'll see LOTS of casualties before it's over, but in the end, I think we can win this one. Any speculation on what the final costs might be, when corporations realize they can't win this war???"

You have more faith in the sheep masses than I do. Since 1933, and accelerating since 1964 or so, we've been becoming a nation centered around meeting the public's ever-increasing demand for "bread and circuses".

In 50 years, at our rate of population growth, tax rates will have to be over 75% just to support these "bread and circuses" programs.

By then, there will either be a second revolution (not likely, given the fact that most will be happy living off everyone else), or else the ONLY producers left will be mega corporations. The megacorps will be even MORE powerful than they are now as a result... Would you work 40 hours a week for less than 1/4th of what you earn? I wouldn't...

Verance is patented, and out of the bag allready

[gaijin_]

If you read the document properly you will see that one of the things that helped them get at technology A was a patendt filed by verance.

I think this means that the technology talked about in the letter is patented, and that most of the information about it is allready available to anyone who wants to take a look.

Nice trick, telling people to stop spreading confidential information that is allready in the patent databases.

SDMI's hypocrisy

[cliffiecee]

Quote from the RIAA letter:

The limited waiver of rights (including possible DMCA claims) that was contained in the Agreement specifically prohibits participants from attacking content protected by SDMI technologies outside the Public Challenge. If your research is released to the public this is exactly what could occur.

I argue that, by including the "Verance Watermark" technology as part of the Challenge, even though it's already in commercial use, SDMI already "allow[ed] the defeat of those technologies." Further, by making the Challenge public, SDMI implicitly encouraged attacking content outside the scope of the challenge.

How can they apply this complaint to Princeton U. but not themselves?!

patent office violating DMCA?

[jdowding]

One point I liked in the paper was the use of a patent search to find more information. Does this mean that the US patent office is traficing in this information, and violating the DMCA?

If there's anything we need in the U.S....

[TheoFish]

it's to avoid public discussion. Much to dangerous.

A little drastic perhaps but still...

[Arcanix]

Ok, maybe their methods aren't the best but we should all realize that the music industry has our best interests at heart when they do things like this. They really aren't concerned with profit or maintaining their monopoly, no, by doing this they hope to continue to produce quality music at a reasonable price for the consumer.

Re:A little drastic perhaps but still...

[dh003i]

"Ok, maybe their methods aren't the best but we should all realize that the music industry has our best interests at heart when they do things like this. They really aren't concerned with profit or maintaining their monopoly, no, by doing this they hope to continue to produce quality music at a reasonable price for the consumer."

LOL, that's a damn good joke -- great sarcasm there; you've made it pretty obvious by your humor that the exact opposite of everything you said above is what motivates the RIAA.

Its their own fault...

[pe1rxq]

A very simple lesson to be learned here: READ a license before you accept it!!!!

SDMI now knows how to make its technology better while at the same time has prevented anyone to have knowledge of it, anyone suprised?????

I hope that they will publish anyway, I will add it to my DeCSS mirror!

Jeroen

Re:SDMI are loosers

[Tom_N]

Maybe you don't boycott, but I do. Any major-label CD with a copyright date of 2000 or later is an automatic no-buy, not because I use Napster (I don't), but because I don't care for SDMI and other such nonsense.

I have only made exceptions to this rule twice (where artists have released MP3s or kept their own copyrights). As a result, the major labels have lost many CD sales that would have been theirs for the taking -- if only they had been interested in serving customers rather than in treating them like criminals.

Re:CD Sales down? THE ECONOMY IS TOO !!!!

[Tom_N]

Single sales are down.

Cassette sales are down (no big surprise there, and you can hardly blame Napster).

Album sales are up.

Re:will this trigger them, as well?

[TheGratefulNet]

and a very cool idea, that is, too.

lose the good stuff in the noise and burden the attacker even more, intentionally wasting their time.

I love it!

--

will this trigger them, as well?

[TheGratefulNet]

I just downloaded the latest Mandrake install .iso

I mounted the iso image in loopback mode (mount -o loop ...) and did a find on the filesystem to see what the latest Mandrake has.

imagine my surprise when I found they had a copy of DE-CSS in there:

% find /mnt -print
/mnt
/mnt/autorun.inf
/mnt/COPYING
.
.
.
/mnt/tutorial/style/de.css
/mnt/VERSION

its the 2nd to last file in the distro.

sorry for blowing the whistle on you, Mandrake, but I'm just doing what my country wants; turning in my fellow man for the Greater Good.

--

Re:will this trigger them, as well?

[zhensel]

Someone also released a program called decss.exe or something (think it was windows) that would strip all style sheets from an html file. They wanted everyone to distribute it to get false MPAA threats or something.

Felten is amazing.

[e_lehman]

Edward Felten is amazing.

• This is the same guy that provided Boies with his technical ammunition in the Microsoft trial. It was while trying to prove that Felten's IE-remover program didn't work that Microsoft was devastatingly caught showing a faked video.
• Would you prefer this incident has been used as a First Amendment challenge on DMCA? Say by the ACLU? Back in January, baby!!! (See page 15, or 8 by the document's own numbering.)
• And now, just to pour salt on the wounds, his group leaks the SDMI cracks anyway. I love it!

This guy is my hero! Looks so *innocent*, doesn't he? :-)

DMCA will protect the scholars, not SDMI

[sparkane]

From the law his own self:

USS Code, Section 1201(g)(2):

Permissible acts of encryption research. - Notwithstanding the provisions of subsection (a)(1)(A), it is not a violation of that subsection for a person to circumvent a technological measure as applied to a copy, phonorecord, performance, or display of a published work in the course of an act of good faith encryption research if -

(A) the person lawfully obtained the encrypted copy, phonorecord, performance, or display of the published work;
(B) such act is necessary to conduct such encryption research;
(C) the person made a good faith effort to obtain authorization before the circumvention; and
(D) such act does not constitute infringement under this title or a violation of applicable law other than this section, including section 1030 of title 18 and those provisions of title 18 amended by the Computer Fraud and Abuse Act of 1986.

Let's see: the scholars recd the copy lawfully (they didn't infringe copyright to get it); their act was not just necessary for research, but was research itself; I am sure they are making a good faith effort, as is evidenced in the harrassing letter; I'll eat my hat if releasing their paper breaks any other laws.

That's 4 for 4.

But wait there's more:

1201(g)(3):

Factors in determining exemption. - In determining whether a person qualifies for the exemption under paragraph (2), the factors to be considered shall include -

(A) whether the information derived from the encryption research was disseminated, and if so, whether it was disseminated in a manner reasonably calculated to advance the state of knowledge or development of encryption technology, versus whether it was disseminated in a manner that facilitates infringement under this title or a violation of applicable law other than this section, including a violation of privacy or breach of security;
(B) whether the person is engaged in a legitimate course of study, is employed, or is appropriately trained or experienced, in the field of encryption technology; and
(C) whether the person provides the copyright owner of the work to which the technological measure is applied with notice of the findings and documentation of the research, and the time
when such notice is provided.

The scholars *are* disseminating the information to further encryption study; if they are not employed in the proper field, then no one is; clearly they have notice of the findings to the copyright holder, to wit the harrassing letter.

Conclusion: Those bastards don't have a leg to stand on.

Re:Long article

[Smuffe]

I was thinking a bed cover or shower curtain...
/Smuffe

I don't really understand...

[DeeKayWon]

How can watermarking be covered as a "device that effectively controls access to a work"? According to the text of the DMCA,

''(B) a technological measure 'effectively controls access to a work' if the measure, in the ordinary course of its operation, requires the application of information, or a process or a treatment, with the authority of the copyright owner, to gain access to the work.

If a watermark qualifies as an effective access control measure, then I would think that by that logic, any player that doesn't check for watermarks would be considered an access circumvention device and therefore illegal. Or would they be legal because they have a commercially significant purpose? This is confusing.

Re:I don't really understand...

[mikethegeek]

"If a watermark qualifies as an effective access control measure, then I would think that by that logic, any player that doesn't check for watermarks would be considered an access circumvention device and therefore illegal. Or would they be legal because they have a commercially significant purpose? This is confusing."

You may be right in saying that you COULD by narrow interpretation, claim that a player that ignores watermark would be a "circumvention" device.

Certainly, that's what the MPAA/RIAA et all would say. Probably the only thing that may keep that from flying is the sheer number of non-wartermark players there are out there. Ruling them all illegal would create a VERY public upheaval that even our sheep-like media would not be able to ignore.

My opinion on this is: The RIAA/MPAA will push and push SDMI to try to replace MP3 (a futile crusade, but they don't seem to get it). Once they get a lot of watermark sensitive players out there, to the point they are more common than the non-watermark players, THEN they might be able to pull off litigation on that point.

The kicker though, is that I just don't see SDMI or any other restrictive format replacing MP3 as the "defacto standard" audio format. Are some of them better than MP3? Sure, but not ONE of them is completely non-controlled like MP3 is. The next MP3 will be just as uncontrolled as MP3 or else it will fail.

Also, the RIAA labels have no interest in even seeing SDMI succeed. They don't want to sell music as digital audio files instead of physical media. They have the MOST vested interest in seeing to it that ANY such initiative fails. If recordings start becoming distributed by audio files via the Internet, instead of physical media, even IF it's SDMI, they lose control over the artists.

Re:Excellent.

[Dyolf+Knip]

The reach into it's pockets is only as deep as it's donors (rich alumni) permit, however. I can't see them bankrupting themselves because a bunch of punk kids want to download movies.

Perhaps not, but nor do they want to get in the habit of not publishing research because someone with lotsa lawyers says not to.

--

Re:Sounds familliar

[Dyolf+Knip]

teacher who dared/told/challenged/asked his students to break past the school's security systems? One kid did, showed how, and was immediately suspended for it

And this RIAA scenario is even more stupid since all the people involved signed agreements making this a perfectly legal hack.

--

YOU!

[loraksus]

fucking softie liberal ;)
You can take that "almost" and shove it up your ass!
Biatch.

Gee.. anyone want to take some karma from me? I just got too fucking much...

I have a shotgun, a shovel and 30 acres behind the barn.

Your wish is my command

[JCCyC]

Duly mirrored on my homepage. Server & perpetrator (yours truly) are in Brazil. DMCA can't catch me. (I hope)

The cheeky bastards

[_ganja_]

Just read the cryptome piece and this really made me see red:
"The HackSDMI challenge contained two "non-watermark" technologies. Together, they appear to be intended to prevent the creation of "mix" CDs, where a consumer might compile audio files from various locations to a writable CD",
RIAA members are total scum, If I buy a CD and I want to make a compliation, that's my business, they are my CDs. So far it's been the switched on /. crowd that has been pissed off by the RIAA, if something like this is implimented it will affect and piss off a far greater amount of people.
If I can not longer backup my own properity because of these efforts, surely the people that prevented me making a backup must provide a replacement if it gets damaged?
Seems like the record companies want it both ways.

Cat out of the bag

[Alien54]

Now that the cat is out of the bag, there are going to be unhappy people.

I wonder how this could be used in a First Amendment challenge to the DCMA?

Check out the Vinny the Vampire comic strip

PGP Approach

[CaptainZapp]

As far as I recall PGP was released from a server in New Zealand to avoid the ludicrous American encryption export laws.

What if Prof. Felton releases the conclusions in an academic environment abroad.

Since SDMI asked for their crappy scheme to be broken, would that still be illegal under the DMCA ?

Up to this point most other (civilized) countries appear to have more reasonable laws on the issue then threatening academic researchers with jailtime.

The last line says it all

[Kernel+Kurtz]

Ultimately, if it is possible for a consumer to hear or see protected content, then it will be technically possible for the consumer to copy that content.

No doubt the entertainment industry would love to sell you music you can't hear, and movies you can't watch.

REDISTRIBUTE IT

[dh003i]

Everyone, save this to your hard drive, print it out, post copies of it on your website, on Yahoo Clubs, on i-drive -- everywhere. Here is my copy of it:

http://home.rochester.rr.com/tweak/SDMI%20Challe ng e.htm

Re:REDISTRIBUTE IT(CORRECTION)

[dh003i]

Er, the website is:

http://home.rochester.rr.com/tweak/SDMI%20Challe ng e.htm

Re:REDISTRIBUTE IT(CORRECTION)

[dh003i]

This from a pussy who couldn't even post his real name. Call it what you want, asshole -- it may not be a full fledged website -- but what's important is that it's now one(of probably many) online "web pages" where the results of Princeton's work can be found:

http://home.rochester.rr.com/tweak/SDMI%20Challe ng e.htm

Re:oh poor researchers

[dh003i]

This from yet another pussy who refuses to show his/her name. Ok, if you READ some of the above links, you'd know that the results COULD:

(a) Be shared only with SDMI, in which case the person who cracked SDMI would receive an award of up to 10,000 dollars.

(b) Be displayed publicly, in which case the personwho cracked SDMI wouuld forfeit the reward.

Next time, read up before you say stupid assinite shit.

Btw, Intellectual Freedom means that the results of any study done on a security system can be publicized. If you don't allow the people at Princeton to publicize their results, it hurts US, obviously, but ALSO the artists -- b/c if the artists don't know about the weaknesses, they will endorse this CRAP.

Next time, try to say something intelligent.

IP "rights" should not be placed as paramount over intellectual freedom, freedom of speech, freeom of thought, fair use, or anything for that matter: IP rights are a necessary evil, that's all.

it was gonna happen

[dacopperhead]

someone was going to crack all of that stuff eventually. I wonder if it would have been someone other than a university that did it, would they just be outright sued, or get the same threat as the people at Princeton did. Either way, this just means that they have to learn to make a code that noone can crack

Re:it was gonna happen

[Vintermann]

Well, you have no doubt heard the cliché that "security through obscurity is no security at all". Most (all?) of us cypherpunks believe that there is no such thing as an un-hackable watermarking scheme/copy-protection, so just becoming better coders won't help them.
I am sure that the commercial actor's coder employees have told them long ago. They just refuse to accept the limitations of technology.

I wonder if it is possible to prove mathemathically that such a scheme won't work. Perhaps that'll convince them.

Re:SDMI are loosers

[AlphaOne]

Unfortunately, I think part of the strategy the RIAA has in mind is to lobby for changes in law in order to require SDMI to be present in devices.

If they can push laws through that would make it illegal to sell a device which circumvented SDMI, the RIAA wouldn't be as concerned about rogue players because they could sue the manufacturers for damages. Perhaps worst of all, they could sue YOU for violating the DMCA by using your rogue player.

This just plain sucks, folks.
--

Freenet?

[evanbd]

So, has anyone put this on Freenet yet? If so, what's the key? If not, then I'm very disappointed in Slashdot.

And I invented the internet!!

[spineless+monkey]

Well, since there is no proof that they broke the encryptions I don't believe that they did. Show us the proof and we will believe you Mr. Clinton.

Re:Whooo there!

[ackthpt]

DMCA is just the USA's way of catching up with all the repressive governments of China, past (and possibly near future Russia), Iraq, North Korea, etc.

Now if you'll excuse me, I have to see how the prison laborers are doing on those De-DeCSS shirts.

--

Long article

[ackthpt]

It's gonna be tough to fit this on a t-shirt...

...maybe an entire line of clothing?

--

Bigger Consequences

[metoc]

Taking RIAA's arguments further, it would be illegal to report on any bugs found in commercial software.

Their current argument is that the report would impact on commerically available software and therefore allow individuals to take advantage of faults in the software.

Well isn't that what bug reports do? If would mean that you couldn't analyze and report on bugs found in bind, sendmail, apache, linux, IIS, Windows, Outlook, WEP, etc.

It would make CERT and bugtrak illegal! Next they would be after /. to stop discussions.

This should prove interesting....

[segfaultcoredump]

If this ever goes to court, it will be a good test of the DMCA.

Unlike previous cases (DeCSS, etc, etc) that were electronic publications, this one is a paper based publication. The court has no problems with understanding things that are on paper (compared to anything electronic) and thus their academic publication will most likely enjoy the full protection of the law. That and I'm sure that there is a long history of corporations trying to stop the publication of formal academic papers (from what I've seen, the academic's usually win)

When coupled with the fact that the SDMI folks presented a formal and public challenge to break their system, I'm sure that whatever protection that they though the dcma would have provided them will be thrown out the window.

Freedom of Press and DCMA

[einhverfr]

Hmm... It seems that the courts would have trouble upholding an interpretation of the DCMA which would abridge freedom of the press.

While it could be argued that the issue comes down to interpretation of the constitution (federal gov't has the right to support useful arts via copyright laws but is forbidden from abridging freedom of the press or of speach), I think that any reasonable court would probably conclude that forbidden devices cannot include research papers where no machine-readable code is in place. I would suspect that cryptonanysis papers would still be protected. Crackers will ownez everything if they aren't because of the lack of professional criticism for such devices....

Sometimes, I wish people would have the backbone to fight these kind of things. It does not really matter-- someone will eventually and fight and then I would suspect that court will rule in the defendent's favor.

Oops.

[JAVAC+THE+GREAT]

In the meantime, we urge you to withdraw the paper submitted for the upcoming Information Hiding Workshop, assure that it is removed from the Workshop distribution materials and destroyed, and avoid a public discussion of confidential information.

Oops! Now it's on the Internet. I hope everyone saves a copy for when cryptome is shut down tomorrow.
---

Excellent.

[JAVAC+THE+GREAT]

This is just the challenge the DMCA needs to be taken to the Supreme Court and repealed. With Princeton (=State of New Jersey? Is Princeton public?) footing the legal bill, they can afford to go all the way, and the with something so fucked up as this SDMI is bound to lose.

But then, I wouldn't be surprised if the SDMI people back down to make sure they don't lose their most valuable weapon in the fight against free speech.
---

Re:Excellent.

[mikethegeek]

"Perhaps not, but nor do they want to get in the habit of not publishing research because someone with lotsa lawyers says not to."

Now you see why the USA is in rapid decline as a nation of innovation...

Today you can't produce something new or better unless you are a megacorporation without fear of being sued out of existance.

As I said in another post, the world leader in technology soon will not be the USA, unless things radically change direction. It will be some nation without the US and EU's draconian IP laws and tort systems. Some nation will get smart and become the world's haven for science and technology, and the best minds will flock to it.

Re:Excellent.

[fors]

Princeton has one of this countries finest collection of legal minds in their law school department. Don't you think some of them might work on this case as a matter of principle. Princeton tends to attract a liberal group of people and I imagine that a few of them will find this a little too much to swallow.

Re:Excellent.

[fors]

Oops. I could have sworn I had heard people talk about a law school there. Shoulda checked it.

Tautology and the RIAA

[Interrobang]

The best quotation I found was, "the Verance Watermark is already in commercial use and the disclosure of any information that might assist others to remove this watermark would seriously jeopardize the technology and the content it protects."

Huh? Wasn't that the point? To prove that it doesn't work? Or maybe it's just another example of that old logical fallacy, "We can't do X because X contradicts what we do."

Join the Petition Against Petitio Ad Principii!

Interrobang, back at last!

I am Canadian.......and

[Mastagunna]

am scared of Jean Createn, and his pepper spray. if you think corps are hurting you, check out www.globeandmail.com and see what our goverment is doing to its own people. Go Canada.

Re:Sounds familliar

[Mastagunna]

Same thing happened to my friend, was not suspended only kicked out of the class.

Poor RIAA

[tripiecz]

Poor RIAA bastardos are beaten again... when the fuck they gonna realize they have to start trying to find a way to keep up with evolution and technological progress, rather than trying to force people to stop thinking and sharing their thoughts.

Re:Publish Results

[DivineOb]

Well that's really easy to say when your ass isn't on the line... it's no fun being a martyr...

Re:Voodoo Science

[mikethegeek]

"The DMCA has so far only protected the rights of big business. The courts have a history of supporting free exchange of ideas. I have faith in our courts. I hope this is not misplaced."

I don't have much faith in the courts. Perhaps I'm pessimistic, but so-called "judge" Kaplan seems to be a typical example of the neo-Napoleonoic complex that most of our newer judges seem to have.

Also, keep in mind, that Judges come from lawyers. Lawyers come from lawfirms. The past 20 years has seen a geometric increase in litigation, most of it being done BY the corporations and the powerful. From that pool of lawyers come the next crop of judges. Today, I'd doubt it's possible to apppoint a Federal judge who hasn't done a lot of work for at least one of the aggressive IP cartels.

Judges are supposed to be different from lawyers. They are supposed to be impartial, ubiased, and rule on the LAW, not their personal biases. If "judge" Kaplan is indeed a typical example of the modern judge, then it's obvious that wishing for impartiality is, indeed, wishing for something that won't happen.

Re:SMDI and CSS are TRADE SECRETS, not patented op

[mikethegeek]

"If they were patented, how they work would be required to be fully described in detail and on public file in the patent office. By keeping the code s33cr3t, they get no protection but can hope that security through obscurity will keep the innards of their function safe. Obviously it doesn't."

And the DMCA seems to have the effect of assigning perpetual "patent" protection to such "trade secret" schemes as well. Which is clearly Unconstitutional.

Re:Unfruitful approach to keeping it out of our ha

[mikethegeek]

"Corporations by their nature are amoral, mindless beasts..."

Amoral, yes (remember the Pinkerton's "Geek profiling" service they are offering to schools to single out geeks as "potentially dangerous"?), but not mindless. Corporations seek profit like a tiger seeks prey. A world where IP companies have "carte blanche" to charge whatever they want for media is obviously a major objective for them.

"they'll have more luck in China, where censorship is part of the very society... I feel sorry for the Chinese in that regard."

I feel sorry for the Chinese, or any people not living in an open society, though I hate their evil governments. What is scary, is that laws like the DMCA threaten to end all freedom in the USA, and turn us into a "Corporate State" where corporations own everything. This is the opposite extreme of "communism" where the government owns everything, though the end results would be the same.

Just as people were no freer under Hitler's fascist Germany than under Stalin's USSR, they'd be no better off in Jack Valenti's "SDMI Rebublic"

It's clear to me that the USA as a free country is collapsing. The twin pressures of a non-productive population viting themselves more and more "bread and circuses" out of the pockets of the workers, and corporations extering pressure on those same politicos (who humor them so as to FUND these "bread and circuses" re-election schemes) is causing us to lose our freedom.

We are noticeably less free today as we were in 1984, I shudder to think of what we will be like in 2084...

Re:Then why did they have the challenge at all???

[mikethegeek]

"Why did SDMI have the challenge in the first place? They were enthusiastic about the challenge, but when someone cracks their technologies, they get so upset and were even reluctant to admit that someone had. If they say "try to crack this" they should accept it if someone does crack it, and also accept the results of that. Furthermore, why were they challenging people to crack a watermarking technology that is currently being used???"

If they truly expected that it wouldn't be broken, that is outright stupidity. Also, their "hacksdmi" challenge would seemingly, IANAL, put them on shaky ground as to preventing a participant from publishing the results of their participation.

Obviously, some corporate drone got giddy with the idea that SDMI was somehow "hackerproof" and ceme out with this "challenge" because he couldn't resist trying to give the hackers "what for"...

This has happened before. Wasn't it a corporation that publically proclaimed the Titanic "unsinkable", only to be proven wrong on the first trip?

Re:Corporate extremism and thinking organizations

[mikethegeek]

"As for noticably less free, well, we're free from the worry of Nuclear War, something you can't say about '84"

Maybe on a World War III scale, but the inevitibility of some sort of nuclear catastrophe increases yearly. It's only a matter of time before a rogue state or terrorist group gets a nuke and explodes it on a US city. In fact, the breakup of the USSR probably INCRESED the possibility, as there are many Russian nuclear engineers now unemployed, and LOTS of Russian nuclear material out there.

Also, don't forget that China now has multiple ICBM's targeted at the USA now, and thanks to Clinton, they might actually HIT something, when 3 years ago, a Chinese rocket could barely reach orbit with any reliability... And, China puts a far lower value on human life than even the USSR did...

Nuclear fission bombs are INCREDIBLY simple devices! They are less complex than most consumer electronics, including your PC! Anyone with half a brain and fissionable nuclear material can make one. In fact, this information is pretty much public domain and easily available.

So far, it's only the strict controls of the nuclear material that has prevented every rogue state in the world from having nukes. But inevitably, somewhere, someone will get it.

Re:SDMI are loosers

[mikethegeek]

"If they can push laws through that would make it illegal to sell a device which circumvented SDMI, the RIAA wouldn't be as concerned about rogue players because they could sue the manufacturers for damages. Perhaps worst of all, they could sue YOU for violating the DMCA by using your rogue player."

If our government does that, then you might understand the purpose of the 2nd Amendment (just as ignored as the clearly power-limiting 9th and 10th amendments), as that would be an indication that the time may be for some kind of revolt...

I don't like or advocate violence, but someday ultimately, violence may become necessary to force the government to start living within the law (Constitution).

Simply, the purpose of establishing a government is to SAFEGUARD the freedom of the people. If the government sells out solely to corporate interests, then it is ceasing to perform it's function.

You might find this hard to belive, but one of the "matches to the fuse" that started the American Revolution was something not all that dissimilar... England had the habit of granting and supporting "corporate" monopolies in it's own self interest. The "Boston Tea Party" was a revolt against one such market monopoly, granted to the British West Indian Company to sell tea to the colonies...

This government action prevented the Colonists from buying their tea from cheaper sources, and mandated they buy from a government suported and subsidized monopoly.

Re:Unfruitful approach to keeping it out of our ha

[mikethegeek]

"Hasn't it been said before that no matter how well-kept a democracy may be, it will almost never last for more than ten generations?"

I think it was Athens, Greece that was the reference in that statement. Athens was only one city, and it was the only powerful city-state that had a democratic government. And it was ultimately taken over by Macedonia, which had a purely authoritarian government.

"I wouldn't be sure this is absolutely true, as the Greeks managed to stave off total political decay for hundreds of years until the Romans had conquered them (still, their democracy was a bit different)."

10 generarions is approximately 300 years... Which is about right for the duration of BOTH the Roman Republic and the Athenian democracy.

The Roman Republic, BTW, is largely the framework that was used to create the American Republic...

"However, it seems that there is no perfect government, and I doubt there ever will be. "

Correct. Humans are imprefect, and there is no possibility of any Human creation of being truly perfect.

But, we always must strive for better. Just as the American Republic is an improvement of the Roman one (more perfect), someday there will be one that is more perfect than it is. Society evolves slowly over time just as biology does.

Re:Voodoo Science

[mikethegeek]

"Why, because he disagreed with you? Maybe the law actually says what he said it meant, and it's the law, not the judge, which is wrong."

Kaplan DID NOT apply the Constitution to the DMCA, which he is required to do by his sworn oath he took when he (allegedly) became a "judge" (remember, judges, like ALL federal officeholders swear an oath to defend the Constitution).

Not only did he fail to apply a Constitutional test to the DMCA, he conviently "forgot" to apply the provisions WITHIN the DMCA that allow for reverse-engineering for the purposes of interoperability. Which I think DeCSS as the key component of a Linux DVD player, clearly IS!

The DMCA itself has provisions stating that it cannot circumvent the Constitution's own provisions for fair use. Which the so-called "judge" completely failed to evaluate.

Furthermore, the DMCA contains NO provision expressely allowing a court to forbid web links! He invented that out of thin air.

TO summarize, Kaplan interpreted the DMCA as applied to the DeCSS case only in the most extreme and narrow manner in the most favorable way to the MPAA as could be done. He has very little in the way of precedent or law on his side to support his judgement, which I expect to get tossed out on the same ass Kaplan should be tossed out on.

Kaplan's own ties to the MPAA previous to his becoming a "judge" alone is reason enough to call into question his conduct in the case. And that's why he SHOULD have recused himself... The Courts are supposed to have NO appearance of impropriety.

Kaplan's actions reprimanding EFF lawyer Martn Garbus for similar and less direct ties to the plantiff MPAA, then tossing off a motion for his recusal with 90 pages of schlock gives any reasonable person plenty of room to doubt and question his motives.

It could be said, because of his behavior in the case, that Kaplan had his bread buttered BEFORE becoming a judge by the MPAA, and his actions were designed to make sure that it was buttered by them AFTER he leaves the bench. Don't forget that Kaplan, a Clinton appointee, is a relatively new judge. And unfortunately, probably representative of the direction the courts are headed...

Re:SDMI are loosers

[mikethegeek]

I think you make some very excellent points! Well done.

"Between these poles I think that there is a rational middle ground. The type of rights enforcement technology the RIAA is insisting upon cannot work, as with DeCSS every player has to have the secret key."

Which is why any such scheme that has to rely on "security by obscurity" will fail. Any consumer-level product will end up being broken, simply because it CANNOT change to make it incompatible with any breaks.

Simply put, any replacement of the audio CD will fail if the consumer is forced to replace ALL of his players and/or media every few months to a year because of SDMI "improvements" in response to breaks. Audio and video media MUST be ubiquitous to succeed.

The ultimate piracy prevention is to charge reasonable prices for the product, which is something the RIAA and MPAA are completely unwilling to do. Which is why they are wasting MILLIONS of dollars on doomed protection schemes, for the sole purpose of the ability to FORCE the market to bear whatever price they choose to set, by preventing piracy.

The RIAA and MPAA are charging many MANY times the cost of their product for the product.

I do NOT endorse piracy, but I do recognize that it does serve a legitimate purpose in giving the IP companies incentive to keep the prices reasobable.

As a matter of fact...

[localroger]

If you read the paper, you'll see that one of the algorithms actually is patentend, and therefore can't be a trade secret -- this is even noted in the paper.

They did give the finger to the RIAA

[localroger]

The paper is not anonymous. Follow the link to the FAQ and you will see several of the participants listed. Additionally, not only did they not take the paper down, they simply posted the RIAA's letter ahead of it. Kinda makes a statement, posting the threat letter at the beginning of the very webpage they want you to suppress, eh?

Are we really surprised?

[localroger]

Nobody issues a challenge like that if they expect their precious standard to be broken. Oops. Now they're pissed. I didn't realize two year olds were allowed to run corporations.

Re:SDMI are loosers

[Zeinfeld]

huh? Billion dollar business? What business? Napster didn't charge for anything and ads, as we all know, are a joke. I suppose it's possible that they thought they might one day become a billion dollar business, but I don't think they ever really thought about how they might get there.

Some of the most undereported documents are the ideas Napster had to 'monetize the userbase'. They were all at least as clueless as the ideas the RIAA have had.

Basically Napster would become a clone of AOL, a stiff monthly fee plus lots of intrusive pop up ads.

I agree that the ideas were stupid and Napster never had a chance of succeeding. However they told the billions of dolars story to their VC who evidently bought it.

Re:SDMI are loosers

[Zeinfeld]

*ow my eyes* Are people spelling 'losers' wrong on purpose now?

Sorry, that is SDMI are Loosers (TM)

SDMI are loosers

[Zeinfeld]

The SDMI effort has been pretty disorganized and chaotic from start to finish. I was at an SDMI conference in 1999 where the premise was that the scheme had to ship for Xmas 1999. Needless to say they missed.

The whole premise of SDMI is pretty funky, the idea is that the device manufacturers will spike their devices to protect the interests of the labels. This is a pretty forlorn hope since the consumer electronics companies bought up content companies to help them sell hardware. Sony and Philips have content divisions but they play thrid or fourth fiddle to the consumer electronics divisions.

For SDMI to succeed there must be no way to get a non SDMI player. That ain't going to happen. The other premise is that there must either be no way to rip a CD - a futile effort in itself or no more material will be released on CD.

The alleged rip protection for CDs on the street at the moment make use of widespread bugs in CDROM device drivers. An audio CD player that encounters an error makes a best effort attempt to continue. A CDROM driver will in many cases report an error and stop. This can be fixed by simply patching the driver to emulate CD Audio players - a process that was already in progress since users were complaining about lack of robustness when playing CDs.

Meanwhile the sales of CDs have actually started to decline for the first time ever. I suspect that this is not just the result of Napster. I suspect that the ultra aggressive tactics of the labels have discouraged many purchases.

I have no sympathy for the crooks running Napster, the idea you can build a billion dollar business helping people rip off everyone else in the music business is one extreeme of the debate. The other is the equally greed RIAA and DVD crew who want to use digital technology that is not up to the task to massively increase their profits. I have sat through presentations from DRM companies who claim that they will not only protect content, they will make higher profits possible through product placement, advertising, co-marketting and extortionate pay per view charges.

Between these poles I think that there is a rational middle ground. The type of rights enforcement technology the RIAA is insisting upon cannot work, as with DeCSS every player has to have the secret key.

I think that a digital download format with a watermark could work. But the detection software would have to be closely held and used only to identify individuals who were ripping lots of tracks and putting them onto the Internet. Their access to the download service would be cut off. Such a scheme would probably be as good a limit on piracy as can be obtained. There would be minimal incentive to break the watermark scheme since it would not prevent a person from listening to the pirate tracks, merely discouraging the piracy. The attackers could not know in any case whether their de-watermarking technology had succeeded. The distributors could deploy new schemes without prior notice.

Voodoo Science

[Paul+the+Bold]

These kind of threats by industry groups to prevent the publication of scientific papers that may injure their public image or some foothold in the market is not new. I heard a man named Robert Park speak a year ago. He is a professor (physics, I think, but I can't remember where he teaches) and a writer, and this talk was one of a series of lectures to promote his latest book, "Voodoo Science." After the lecture, there was to be a brief book signing. Unfortunately, lawsuits were preventing the release of the book (libel).

Dr. Park said that these kind of law suits are common, but the courts have a history of releasing academic material in an effort to protect a free exchange of ideas.

The DMCA has so far only protected the rights of big business. The courts have a history of supporting free exchange of ideas. I have faith in our courts. I hope this is not misplaced.

I hope Professor Felten et. al. fight this tooth and nail. Princeton has a legal department, and this is Princeton's fight. I hope they stand behind the professor.

Quick Summary

[Anml4ixoye]

Ok, so let me see if I can summarize this...

"Dear Sir:

Because we believe that our cool watermarking technology is going to make us lots and lots of money, and because we think that the internet is a fad and will hopefully go away soon, please refrain from exposing what idiots we are and how much our encryption software sucks.

Oh, and please don't let anyone know about all of the hard work you did to prove that. We thank you for that and all, but will attempt to destroy you if you talk bad about us.

Finally, we will have to sue you under the DMCA if anything that you have said, ever, in your life, and we mean ever, could, at any time, in some way, possibly, be used to give someone the faintest idea about cracking this software and maybe using this illegally. we don't care about a better tomorrow as long as we make money today and look good."

Sound right? *sigh*

Unfruitful approach to keeping it out of our hands

[paranormalized]

Ok, how many of you have copies of DeCSS even though you'll never use it? How many of you post it on a web page to help those who might need it? And how many of you did like I did and downloaded a copy of this paper when you heard about the attempt at censorship, even though you normally wouldn't read it?

I suspect that in the /. crowd, the number of those doing so is quite high. Here we have another example where attempts at censorship in a free culture backfire. And yet, in their desire to create a Corporate Police State, companies continue to spend money on legal attempts at thought control even when such attempts are expensive and ineffectual. I don't understand the logic here, but then again, it is well known that Corporations by their nature are amoral, mindless beasts...

I look forward to DVD's playing on my Linux partition in a user-friendly GUI application soon, despite Corporate America's attempts to destroy the very freedoms that have contributed to their prosperity and wealth... well, maybe they'll have more luck in China, where censorship is part of the very society... I feel sorry for the Chinese in that regard.

Jonathan Fisher

-----
IANASRP- I am not a self-referential phrase
-----

Corporate extremism and thinking organizations

[paranormalized]

Well, maybe not totally mindless. But certainly not sentient, because in my estimate, a creature has to be capable of understanding and choosing morality to qualify as sentient. That's as good a yardstick as any, and better than many. I hope someday to help corporations reach that level of thought, and guide them to positive, freedom-affirming goals in the meantime. My point is, we blame them for things that are our fault, in some ways, for not watching them and forcing enlightened laws upon them to encourage positive behavior. Treat Companies like dangerous but useful animals, and hit 'em when they misbehave, pet them when they're good.

As for noticably less free, well, we're free from the worry of Nuclear War, something you can't say about '84. Yeah, the Mega-Corporations are trying to limit freedom, but we also have the GPL, Linux and the EFF, things which visibly increase our freedoms, or try to maintain them at least. I mean, in 1984 could you find a fully free (as in speech) Unix-type OS for your computer? Did anyone then think about such things like free software, besides RMS?

I plan to enter politics someday to help halt this slow deterioration, and as someone planning to help fix things, I get frustrated by those who complain and do nothing. Did you contribute to the EFF this year? Or otherwise help enlightened charity and non-profit orgainzations? If you did, I apologize for possibly denigrating your contributions, but otherwise, go out and do something!

We can build a better future than the one we have today- all it takes is honest effort. Like create the environmental equivalent of the WTO to counterbalance their negative tendencies. Or an equivalent organization to promote and spread democracy and freedoms. And so on.

Jonathan Fisher

-----
IANASRP- I am not a self-referential phrase
-----

DMCA

[dachshund]

I was under the impression that "encryption research" was specifically excepted under the DMCA anti-circumvention clause. Does this letter take that into account? I would love to see this go to court, even though today's (apparently bought and paid for) federal courts give me little reason for optimism.

Strategic bombing, 08:00

[wysoft]

Good morning pilots. I'm Admiral Wyman, and I'll be laying out your mission plan for you. Hope you all got a good nights rest!

Mission outline:

Corporate conspiracies and suppressive organizations have been causing much traffic on the message board of a one "Slashdot.org" lately. Intel beleives that through the use of confusion tactics, they may be planning to turn the youth and misinformed adult population of both America and world against their governments and fellow citizens.

We have to prevent this, as well as save the publics ability to continue trading of music, despite overwhelming corporate support of these organizations that are built to destroy such abilities.

Misson objective:
1. Destroy headquarters of SDMI
2. If possible, strafe any personnel and/or supply vehicles fleeing or entering the targets.

This will be a multi-pronged operation. Flight groups will be launched over Washington D.C., as well as California. Obviously, you are part of the California group. The Washington D.C. group will attempt to destroy RIAA headquarters. Our efforts are synchronized so that neither the RIAA or SDMI may launch counterattacks from their anti-air missile sites. That's right, these have been confirmed to exist, so be careful.

Your FA-18s are now being readied. This is a precision operation, people! All eggs must hit the nest! The operation will commense at 08:00. Dismissed!

Note: This will be moderated down instantly.

Re:Unfruitful approach to keeping it out of our ha

[wysoft]

Hasn't it been said before that no matter how well-kept a democracy may be, it will almost never last for more than ten generations? I wouldn't be sure this is absolutely true, as the Greeks managed to stave off total political decay for hundreds of years until the Romans had conquered them (still, their democracy was a bit different). However, it seems that there is no perfect government, and I doubt there ever will be.

As much as people like to think that Humans aren't territorial animals, we definetely are, we just manage to collaborate for our own good. As a result, mankind will always stick out as a sore thumb in nature (which we will soon destroy). Human nature keeps us from achieving harmony - greed, lust, hatred - all these things which drive us are indesctructable. We will never rid ourselves of them, and as a result, eventually we will destroy ourselves completely.

We have only been on this planet for a geological blink of an eye, and the simple truth is that we are just a trend.

I wish they would go to court....

[FredGray]

I wish that SDMI would follow through with their threat and pursue Princeton University and the United States Navy in court to suppress publication of an academic paper. These parties have the resources to mount an aggressive defense, and the case would set a precedent that would significantly weaken the DMCA.

Of course, SDMI's lawyers probably aren't this stupid.

Didn't the reviewers break the DMCA?

[Joey7F]

If knowing about a technology is illegal(according to the DMCA) the people who submitted the instructions on how to crack it, as well as the people reviewing it(on behalf of the SDMI proponents(mostly the riaa)) would be in violation.

Yeah, this is why the DMCA sucks.

--Joey

CD Sales down? THE ECONOMY IS TOO !!!!

[Joey7F]

Title says all! Maybe napster is the reason GE just layed off a few thousand workers. Damn them, damn napster! Level headed thinking is in short supply over at DMCA perpetuators hq. --Joey

ha ha ha...

[JohnnyKnoxville]

we dare you to try to crack this watermark... ha ha ha... oh, you did? oh, ummmmm.... don't tell anyone ok?

Sounds familliar

[BIGJIMSLATE]

Why does remind me so much of that (somewhat) recent story of the teacher who dared/told/challenged/asked his students to break past the school's security systems? One kid did, showed how, and was immediately suspended for it, while the teacher wasn't even reprimanded for doing such a thing. Besides, even if they don't publish the stuff, they'll surface sooner or later. Just like Nosferatu, no matter how much someone wants for something to disappear or go away, it will always turn up again.

Re:Why stick your finger in it?

[Turo+T+Lamminen]

If they can use SDMI and other such techniques now and get 99.99% market share, who will be there in the long run to take them out of business? We do have examples of this (*cough*Microsoft*cough*), and after they have a monopoly there's little the government can do about it.

Then why did they have the challenge at all???

[iamroot]

Why did SDMI have the challenge in the first place? They were enthusiastic about the challenge, but when someone cracks their technologies, they get so upset and were even reluctant to admit that someone had. If they say "try to crack this" they should accept it if someone does crack it, and also accept the results of that. Furthermore, why were they challenging people to crack a watermarking technology that is currently being used???

Here's a bit of law that should be applied to SDMI

[Obliqueness]

For your review...Title 18, Ch. 41, Sec. 875

(d) Whoever, with intent to extort from any person, firm, association, or corporation, any money or other thing of value, transmits in interstate or foreign commerce any communication containing any threat to injure the property or reputation of the addressee or of another or the reputation of a deceased person or any threat to accuse the addressee or any other person of a crime, shall be fined under this title or imprisoned not more than two years, or both.

What's the 'thing of value'? Silence.
_____________________________________

Thus, the "audio sync stabilizer"

[Spamalamadingdong]

the Verance watermark ... is designed to survive lossy compression and analog copying. Of course, in order to do that, it has to be so obtrusive that you can hear it, despite the company's claims to the contrary.

Just as there are people with televisions which show visible artifacts when supplied with Macrovision-encoded video, there will be people whose ears can hear this and want to get their music without it. Because the watermarking uses a detectable scheme, it should be quite feasible to make a filter to remove it. It looks to me like a delay line with a couple variable taps (varied according to the echo schedule) would do it. Voila, de-echoed audio. Also, copyable audio. Unfortunately for the RIAA, the latter is required by the former.
--
spam spam spam spam spam spam
No one expects the Spammish Repetition!

Why stick your finger in it?

[janpod66]

Why bother dealing with these people? They have trouble understanding that the price of content goes down as distribution costs go down. They are fighting a losing battle against companies that do understand economics. The content that gets distributed with fewer restrictions at lower production costs will win out over high-priced content from a bunch of media czars and over-the-hill writers, composers, and pop stars.

They also seem to have trouble understanding that watermarking is not technically feasible. It won't take some really smart guys from Princeton to break this or future systems. Given Chiariglione's inelegant and messy technical track record, I doubt they are going to get a technical clue any time soon either.

Let them add poor watermarks to poor content and create players with all sorts of limitations. In the long run, it's only going to hurt their business. Dealing with these people is a waste of time in my opinion.

Death to the truth!

[Vintermann]

"ithdraw the paper submitted for the upcoming Information Hiding Workshop, assure that it is removed from the Workshop distribution materials and destroyed, and avoid a public discussion of confidential information"


"Ye shall know the truth, and the truth shall set you free." - John 8:32

Re:Death to the truth!

[deaddrunk]

Truth is subjective. Just listen to Dubya lying through his teeth at the Globalisation Conference today, and the media presenting it as 'truth'. Same conglomerates as the RIAA.

Re:Death to the truth!

[deaddrunk]

Does it though? I doubt that the average sweatshop worker's lifestyle has changed a great deal, the grind is working 13 hours a day, seven days a week in appalling conditions. Although globalisation is claimed as the removal of trade barriers, what it is is large corps making sure that governments don't get in the way of making huge profits. Did you know, for example, that one of the provisions of the FTAA is to allow corporations to take national governments to court if any law they inact hits profits? Nice - I wish I had as much right to misbehave as corporations do. Liberalisation of laws should be for the benefit of everyone, not just those wanting the right to cut labour costs by abusing people in appalling poverty, most of it as a result of western policy over the past 200 years.

the truth

[Vintermann]

"the truth" in this case is that watermarking schemes can easily be broken. Truth is not always subective, if you agree that "A is" and "if A is then B is" then you can't choose to see "B" as "is not".


Signed
(Mr. fight relativism)

are they serious?

[s20451]

Are these people being serious?

Think about what they're saying: "We challenge you to find a way to break our cipher. But if you succeed you can't tell anyone how you did it." I could claim to have broken the cipher, and under the DMCA no one could legally verify my claim.

A more important point is lost here: the only secret about a cryptographic system is whether it can be broken. The fact that it has been cracked is now public news, so the SDMI's cipher should be considered insecure, DMCA or no DMCA.

Shades of Galileo

[Thurn+und+Taxis]

In 1633, Galileo was condemned by the Catholic church and subject to house arrest for demonstrating the simple truth that the Earth moves around the Sun. He was forced to publicly recant his claim, but added, "nevertheless, it moves." Although the rest of the world accepted Galileo's evidence (and made significant discoveries as a result), it took the Vatican until 1983 to issue an official apology. Four hundred years later, scientific truth is once again threatened by a powerful organization that refuses to adjust its untenable beliefs ("SDMI is unbreakable") in the face of reality ("SDMI is pretty easy to break"). History has proven time and again that denying the truth puts one at a disadvantage compared to those who accept it. I only hope Prof. Felton continues to make his results available to those willing to listen.

Publish Results

[ayr]

If I had received that letter I would have to respond by publishing the results, regardless. DMCA is not near as important as the 1st admendment. They asked to have it broken now they don't us to know how their protection is flawed... typical. I say Publish.

Got to use vinyl in the future

[livingboy]

Well now I have to buy record player for old vinyls :-)

I can't approve "them" putting extra information to bit samples if it turns the quality of audio down.

"No inferior quality DVD for me"

Legal Bearing

[Nerve_Ripper]

As I understand the agreement, the professors were only under the confidentiality clause if they accepted the cash settlement...They did not, and that is why the SDMI could only "Urge" them not to publish the paper, and make vague threats of legal action. They have every right to put forth their findings, after their work. Also...does it seem to anyone else that the SDMI *completely* tried to fix the contest so that no one would win? The whole point of this seems to be them trying to say "Look at our unbreakable work"...even to the extent of fixing the contest "the 'broken' oracle"

copying data

[$hecky]

I'm afraid our friend, in spite of his hysterics, is quite correct-- provided data can be played, it can alwaysbe copied. This is a very simple matter-- if there exists a device capable of recording audio or video data, playback can always, by definition, be reproduced: even if it's by some moron pointing his super 8 at a movie screen.

Furthermore, while such crude methods of reproduction (...sounds like an alien watching a porno...) are imperfect, recent history shows us that these things really don't matter where piracy is concerned-- just because something's an analog (or imperfect digital) copy doesn't mean it can't be of exceptional quality (look at a high quality VHS dub of a DVD, or dub a cassette tape if you have one of those 2-deck dinosaurs lying around). All it takes is a single person willing to convert a high-quality analog copy of a movie, music, or whatever to a more portable format (DivX, Ogg-Vorbis, or MP3 for the Morloks) and we're back to square one.