Slashdot Mirror
Anticircumvention Laws Seen as Threat to Science
Scott_Marks writes: "Science magazine has a review by Pamela Samuelson on the effect of anticircumvention rules on the pursuit of scientific knowledge. The abstract: 'Scientists who study encryption or computer security or otherwise reverse engineer technical measures, who make tools enabling them to do this work, and who report the results of their research face new risks of legal liability because of recently adopted rules prohibiting the circumvention of technical measures and manufacture or distribution of circumvention tools. Because all data in digital form can be technically protected, the impact of these rules goes far beyond encryption and computer security research. The scientific community must recognize the harms these rules pose and provide guidance about how to improve the anticircumvention rules.'"
is the best way to both learn how somthing works and improve upon it. if computer security personel were unable to figure out how things worked, like Nimda or Code-Red, the net would have ground to a halt.
-teknopurge
Website Hosting
But there is a good side to all of this:
No encyrption = No annnoying formats for DVD/Audio. The people who are going to fight stuff like this the hardest are not scientists but recond and movie componies.
Arguments like this can only be a good thing. It is much more likely that our government will listen to academics than people who write programs such as DeCSS.
NOTE: It's not that people who write DeCSS and e-book decoders have a less valid argument, simply that in our governments eyes, university researchers have a bit more credibility
Where's my lobbyist? Right here.
The only possible result is the prepated reinvention of the wheel.
The wheel was incvented hundreds of years ago. It has never been improved on by someone taking it to pieces. Only by creating new ones. Scientists should be encouraged to make new codes, and not reimplement existing ones. What would be the point of that?
Then there is the ethical aspect? How would you like it if someone stole the wheels from your car just so that they could get their car to go faster? Morally this is no different.
Scientists, hobbyists, you name it: everyone is effected by these laws.
All that I can say is what hundreds of people have already said: write your congressmen and senators! Do NOT let these laws pass.
---
"Of course, that's just my opinion. I could be wrong." --Dennis Miller
The article mainly restates what was previously done and known - no breaking news here. It may be interesting, though, because it's addressed to a different audience than, say, /.
:)
Nice reading if you were somewhere in a hole for the last 2-3 years.
It seems that people are getting too cocky, stubborn, and selfish to allow people to use thier ideas.
This reminds me a lot of the general patent holders who don't say a word until they are completely sure they can make no more money off of another company.
Research will be harder and harder to legally perform, and people will not want to do it any more. Technology advances will be a thing of the past. We won't even get to watch movies because we'll have to pay to decrypt them!
I think it will soon be time to go crawl into a cave with a pizza and a knife.
This sig isn't original enough, it's time to come up with something witty...
Playing off the recent tragedy like that is about as low as you can get as a human being.
Congratulations.
Surely this will just hurt the industries that are arguing for these restrictions.. Research students studying encryption must make up a large part of the commercial encryption developer population, adding value to these companies by having figured out the in-efficiencies in previous encryption methods.
This article, if you read it, is a prime example of scientific speak getting in the way of a clear and accurate presentation of the facts.
I mean, just reading the paragraph included on this slashdot story confused me to no end. I graduated with an Engineering Physics degree, and before graduation, I was required to take a writing course that was explicitly designed to write technical details for a non-technical audience. That's what I consider myself to be, especially when it comes to encryption. If it cannot be explained simply (and all things can be explained simply) then the author has not put enough effort into its creation.
I couldn't bear to wade through all the "circumvential methods" and "anticircumvention rules". I think that we, as a community of technical writers, need to reconsider how we write, because it's alienating otherwise interested parties. Especially when the technically literate attempt to create and manipulate technological data and its implications on potentially impact-worthy studies, including, but not limited to, circumvention methods and astrological aspects.
</RANT>
Whoa, a science article by Pamela Anderson?!
Oh wait...
Every article I read about anticircumvention laws and policies reminds me of the following quote:
Bruce Schneier says, "It's not so much about what people can do, it's more about how they think. There's nothing anyone can do; trying to make bits uncopyable is like trying to make water not wet. The sooner people accept this, and build business models that take this into account, the sooner people will start making money again." Schneier is the author of Secrets and Lies: Digital Security in a Networked World (John Wiley & Sons, 2000).
http://tf2.digitaljedi.com
There's a one-page article about Dmitry in the October '01 Scientific American.
It makes the oft-made point that what he did wasn't illegal back home in Russia, but adds a further point that I haven't heard before: in Russia it is illegal to interfere with the user's right to make copies. A lawyer is quoted as saying that you could probably win a class action suit against Adobe in Russia.
The article also touches on the depressing effect on science; the first sentence is -
Sheesh, evil *and* a jerk. -- Jade
Advanced study of computation theory involves the study of forms of mathematics and algorithms that could be seen as circumvention mechanisms. It doesn't matter what format the MPAA chooses next, if you show "this method doesn't work, this is why," you will go to jail. Since this sort of problem is at the HEART of advanced study in computer science (the really important stuff), you really limit advancement of computer science to its next natural step.
IE, they're not talking about "duh, we wanna play DVDs fer free." They're saying "we want to be free to study important things."
Why are companies and governments pushing anti-circumvention laws....? What's the big deal here? What are they trying to hide? Back Doors? (See the encrytption backdoor threads).
The way I see it, there's the e-book:
I wouldn't read one. I can imagine the thought of paying $300.00 for a e-book reader, and then the thought of loosing my book that I paid just as much for a hard cover....
I mean, does anyone really read e-books anyways? If you really want a book, get the real thing. The only way you loose that info is by leaving it on some beach somewhere. So why all the anti-circumvention? It's not like e-books had a chance anyhow?
Now the dreaded MP3's:
Has mp3's really hurt the cd sales? Was it really that bad?
I have yet to hear of an artist going broke because his music was sooooo popular, but the cd's just wouldn't sell....
Just some thoughts of a raving Friday lunitic
Linuxrunner
www.slightlycrewed.com - Because aren't we all?
The truth however, will always find a way. :-)))
(As Gallelao (sp) proved when he said the Earth was round and the church refused to let him speak
Anyone quoted by a reporter knows how little they understand
Don't believe what you read is the truth.
I'm not a cryptologist or someone that regularly creates new drivers or software. But, I wont stop reverse engineering. I'm working on making a linux app for a popular kids learning toy, so I am reverse engineering it's communications. I will publish my software and findings no matter what silly laws are in place. But, I will be publishing them anonomously and outside this country. That way the information is available and I am protecting myself from being arrested by the united states copyright infringement assult force..
If there is any real solution to the problem of corperations buying laws I am sure it doesn't include how our government really works today.
Do not look at laser with remaining good eye.
I must be half asleep still, I read that as
Anticircumcision Laws...
If you are a U.S. citizen, write your congressional representitive a short note politely asking them to read this article.
To find out who your congresssional representitive is and how to contact them, visit:
http://www.house.gov/writerep/
** The opinions expressed here are my own, and do not reflect those of my employers - past, present, or future**
The Washington Post is reporting that Phil Zimmermann, the creator of PGP, has gotten hate mail in the wake of the WTC attacks.
Best Slashdot Co
I see a time where you will no longer be allowed to open the hood of your car... you could find out that the car manufacturer made design mistakes, you might copy the 'algorithm' (engine, transmission) if you happen to build cars yourself or - god forbid - use those parts to build your own car.How long will mechanical engineers be able to publish their research: Is a engine of type A better then one of type B build by another company?
I doubt that something like that will happen: There are more people interested in the inner working of cars then those that care about what happens inside their computer. So the political pressure to keep cars 'open' is much higher.
How can we increase the political pressure to keep reverse engineering open? The only way I see is by educating the non-geek masses that this is important. But how can this be done? The only way I can think of is by providing everyday examples of reverse engineering: like the car example I tried. Do you know any better examples?
Regards,
Tobias
Regards, Tobias
No encyrption = No annnoying formats for DVD/Audio. The people who are going to fight stuff like this the hardest are not scientists but recond and movie componies.
This is all wrong. This article is about the record companies using the DMCA to prevent legitimate scientist from examing encryption, publishing work, etc. The record companies are behind this, not fighting it.
---
Hey man, can I bum a sig?
Just an observation.
A feeling of having made the same mistake before: Deja Foobar
We need more public commentary like this from folks in respected professions.
Would the DeCSS case end result have changed if they weren't going after 2600 magazine, which is clearly known as an information source on how to break the law? (Regardless of their liability in the end.) 2600 was singled out for a reason; ethos. They lack it. It's not something that Joe Q. Public would acknowledge as legitimate and respectable.
But the scientific community, there we have a body of people who have that innate respect and the credentials for their words to carry weight. That's the sort of dissenting voice we need to fight the DMCA since they will be listened to and their needs will be addressed.
While the DMCA is flawed regardless and I'd say 2600 and the white lab coat type folks have equal justification, it's all about the spin and image of who's saying 'No' to it that matters.
What other communities or professions which get instant respect from the general populace could be affected by the DMCA? Maybe those sectors could speak up as well.
The scientific community must recognize the harms these rules pose and provide guidance about how to improve the anticircumvention rules.
No; the scientific community must completely abandon the field in the United States, and let us become a backwater third-world country in that particular field, with all the research that isn't done by the NSA being done in other countries.
Ideally, a good percentage of the scientists would leave the country, but I wouldn't advocate that personally.
When the US feels like rejoining the world in this field, our government will. In the meantime, all the information will be open to hackers, and it'll be just like a William Gibson novel.
Where would elasticity be, if there had been anti-circumvention laws in 1676? (Robert Hooke initially published his law, ut tensio sic vis, as an anagram: CEIIOSSOTTUU.)
Timeo idiotikOS et dona ferentes
You know, I think scientists are starting to wake up. For one thing, the equally prestigious magazine Nature had a short note recently about Dmitry's case, which was clearly sympathetic towards him.
Also, you have 27758 scientists signing the Open Letter of the Public Library of Science, and you've got physicists publishing pretty much all their material as pre-prints.
I don't think the open systems that science requires to function can co-exist with the closed systems wanted by the entertainment industry. If an open system exists, it can always be used to circumvent a closed system.
Now, it is easy to demonize "hackers" but it is harder to demonize scientists. Therefore, I think the first real battle will be over scientific publishing, and I want to be there when it happens.
Now, I don't think it will be a battle between scientists and artists, though the entertainment industry may try to portray it as such. The openness established by scientists and scientific publishing will be good for the whole of society, stimulate cultural diversity, and art will flourish along with science.
Employee of Inrupt, Project Release Manager and Community Manager for Solid
Mm...laziness and greed, sez me. Greed: music/movie companies can't bear the thought of all those bits going around w/o money coming back to them for it; laziness because they are willing to come up with (relatively) crappy encryption/watermarking/protection, and then slap a lawsuit on anyone trying to break it, rather than spend the extra time coming up with rilly good methods. (IANACryptographer, but what I've read makes me think that the whole concept of nearly-unbreakable encrypted bits is a pipedream anyway...so maybe we should add a bit of old-fashioned Crack(tm) to their motivation.)
Carousel is a lie!
The article is talking about laws that have already passed...
I'm sorry, but the only way to improve anti-circumvention law is by revoking it.
Reverse engineering has value in gaining greater understanding of existing technology, maintaining, and improving upon it.
If wily customers choose to violate warranties and license agreements, it certainly poses a problem for companies, but in no way should laws be passed to prohibit them, for the damage such laws do to legitimate research. If companies need a legal method of deterring such behaviour, let them sue for violating a license agreement that specifies no reverse engineering. They should not need, nor get, a stronger remedy.
In fact, remedies like DirectTV used (the small incremental updates of ROM code that eventually locked out hackers) should be applauded. (Even if it was a bummer to those getting free services) DirectTV needed no legal recourse, but preserved their business through creative techological means.
The point is simply this:
Just because a company has made money in the past, there should be no law guaranteeing them that they will continue to do so in the future. It is not up to Congress to preserve the business models of corporations. That duty lies with a CTO, CIO, CFO, and board of directors.
You mean that Carl Djerassi was selling birth-control pills in Japan while they were illegal? I didn't know that...
Your sarcasm is exactly the point here.
Seriously, the analogy doesn't hold because Dmitry was arrested because the Advanced eBook Processor could be bought in the United States.
The analogy does hold, not because of the reason you quoted, but more because of your sarcasm above.
What Dmitry did was not illegal in his own country. Someone takes the result of his work, sells it in another country, and Dmitry, not the person who did the actual selling gets arrested. (The US distributor has had no legal actions thrown at it at all.)
Scientific inquiry relies on peer review to validate research, and when corporations/the government/research try to prevent scientists from publishing research, they short-circuit the process.
Is this really all that different to what happened to Galileo? His scientific research was perceived as a threat to the established power structure.
Add in the increasing corporate sponsorship to fill in for diminishing budgets for research, and we're headed toward a world with no concept of the public domain.
Patents are not meant to allow firms hoard research indefinitely, but now that's what they have become. Now, instead of giving a reward for furthering the knowledge base for everyone, we've got a system where firms stake out concepts (like gene patents - don't get me started on those!) and prevent anyone else from trying to duplicate the work.
All this is happening just at a time when it is slowly becoming possible for everyone on this planet to share ideas with every other person. What a shame we're all gonna get hamstrung.
I'm waiting for my ISP to claim partial ownership of anything I transmit on their network. Why shouldn't I have to click "I agree" to giving away an interest in anything? It's their network, after all.
--
Long-term effects of Bush deficits
From the Science article:
"Microsoft once posted a certain technical specification on a Web site, access to which was designed to be available to researchers only if they clicked "I agree" to a license that forbade disclosing details of the specification (31). A smart technologist figured out how to bypass the click-through license and posted instructions about it on slashdot.org, after which there was a heated debate about the specification on slashdot. Microsoft learned about the slashdot postings and demanded that slashdot delete these messages on the theory that they violated the DMCA's anticircumvention rules."
Wow, slashdot is referenced in Science!
...and how would we have broken Enigma in WWI if scientists weren't used to reverse engineering?
To create/solidify monopolies. It's a form of product-tying.
As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
While I believe the most egregious pieces of the current trade alphabet soup need to be elminated, I think a longer-term solution would be the restructuring of copyright duration.
Rather than making copyrights last for some large X number of years, or the life of the author + X years, why not make a copyright short term, but infinately renewable, at an exponentially increasing cost? This will allow corps to protect their most valuable content, while forcing them to relinquish claims on anything that does not sell enough to cover the cost of renewing its copyright.
I do not claim to know what durations and costs would be required to make it work, here balancing the needs of the small publisher for protection, with the need for a large corps content to expire sometime, but I think it's an idea that's worth a thought.
It may not be just, but it is fair, and that is more important.
The USA could sue us for copywrite and reverse engineering of their laws ;-)
Don't laugh, it will happen, we don't have a governmet of our own so we need to copy others.
And the law won't work for the US if others coutries don't follow suit, it will force r&d overseas, an example of which is IVF/Stemcell research in Aust. which went to Singapore and Italy after laws in '85 were implemented hampering research.
Incidentally, this case really frightens me.
I'm off to trademark e=mc2 and m=fa
Now everytime someone moves anything they must pay me or suffer my wrath in court.
Interesting that congress seems to be working at cross-purposes to itself (but then what else is new...):
On the one hand, it is looking for ways to increase the ability to view the contents of encrypted messages. On the other hand it is trying to decrease our ability to research methods of decryption...
In the present (and near future) climate, I wonder which will win out?
Given the 'new reality' after the WTC, I would think that Congress would be putting whatever efforts they could toward research that increases what they would see as the intelligence community's ability to monitor terrorist communications.
In any case, they can't have it both ways.
Does this mean that if I wanted to do my physics thesis in quantum computing that I could be prosecuted for it? As I recall there's a nice algorithm already out there to factor large primes using them, and if the guys working in the basement of the building here continue their work they could be in big trouble.
"Save me jebus!" - Homer Simpson (btw, I'm probably talkin out of me arse)
... laws are passed against unauthorized decryption, and the people enforcing or prosecuting those laws are too stupid to realize it's happening under their very noses all the time.
What are they going to do? Outlaw a Walsh-Haddamard Transform?
The fact is, a number of big companies used his name to gain sympathy for what would have otherwise been seen as probably Constitutionally illegal, and then used that sympathy to pass a law that perverts the original intent of the founding father's into something that favors corporation's ability to make money over everyone else's civil rights.
Anyway, have you tried seeing a doctor?
Laws like the DMCA and the SSSCA (not yet, but soon i'd imagine) are essentially big fat go to jail free cards for the government. Anyone in the research community who is doing something the government doesn't like can now be arrested and sent to jail, because with loose wording in these laws, it's simple to show that almost all researchers, especially computer scientists, are violating at least some part of these laws. People need to realize that it's not just a bunch of pro-Napster morons who hate anything that prohibits them from ripping people off, it's the scientific community that is being negatively affected by this...
the recent article in eWeek about the cyber-laws getting it wrong is exactly what's hindering the real anti-dmca folk from being taken seriously. You lump us into the same category as napster-supporters and you make us all look like ignorant children in the eyes of anyone who has a clue.
If I write a virus, and someone cracks it, I can sue due to the DCMA?
Carpe Scrotum - The only way to deal with your competition.
It is the parents' choice as to whether the child is circumvented or not.
Palm for my Palm that I'd like to read on a different platform. That document seemed to be saying that I am allowed to reverse engineer the reader for the purposes of program interoperability. Does that mean I am allowed to crack the program (pretty trivial I guess seeing as all the decryption takes place in the executable itself and you can just single step through it) so that I can read it on a Desktop PC instead? IANAL but maybe someone who is knows the answer to my question.
-- SIGFPE
Why would you need a backdoor to a DVD or an ebook? Backdoors are so you can get access to the data that was encrypted... You can already do that with a DVD or an ebook, just not in a very useful format.
... only outlaws will be able to circumvent encryption, read our emails, watch free movies, launch ICBM's from their laptop, etc....
compare:
"I could be wrong, but I'm not" -Don Henley
As increasing numbers of us bank, shop & work online it seems a little odd to introduce rules that mean we have to trust those that supply the banks, retailers etc. to come up with sound code. Time & time again code is released with holes, weakneses etc. Currently 'recreational'* crackers find & publicise these. If no one can legitimately check on the strength of encryption it, fewer will take the risk of exposing poor implementations & only those with criminal intent will find the exploits & shaft the rest of us. I'm not to bothered about being able to get a free ebook, but if the law is wielded carelessly it will put our money & our work at risk. Do you really trust comercial organisations not to make any mistakes??? Didn't think so. D. * as in for the challenge not the profit