Designing a More User-Friendly DRM

onethumb writes: "As one of the core engineers on MightyWords' (now-defunct) DRM for digital documents, I was impressed by Dmitry Skylarov's great analysis of our work the other day. Planet eBook is now running my reply as their feature article explaining our design goals and decisions for our decidedly user-friendly DRM solution."

Car door locks

[kill-hup]

Any real determined thief won't mess with the locks when the car's covered in breakable glass ;)

As much as I oppose the idea of DRM, I believe it's the only barrier in the way of releasing more information in digital form. Sure, some may say e-books and the like will never replace their dead-tree counterparts, but I can think of a few times in which they'd be useful. Take technical books/papers - how cool would it be to just "grep" the doc for the keywords you want instead of hoping they are in the index? Remember a vague passage from a novel you read? Just enter what you recall and we'll search the text for you. The possibilities can be endless.

The only bad thing about this implementation is what happens when/if "MightyWords" goes away? How will I be able to unlock my e-docs if I need to move them to another computer and my software can't contact them? Or, perhaps I am trying to read it on a device temporarily without internet access - then what?

Re:Car door locks

[Xney]

I thought I would mention something regarding the car door analogy.

Many people seem to be missing the point here. The point of the analogy is not the status of the car, which of course is a piece of property, but the level of security. A car is not hard to steal, but most people don't steal it. That is the point. The point is not whether a car is worth stealing or who owns it. Similiarly, the Mightywords DRM was not designed to protect the content perfectly, or even very well. It was designed to keep the average honest person honest about their purchase, and to allow easy use of the product. This is also true with car doors. This is Don's point in his reply to Dmitry. Arguing the nature of the digital property in the context of the car door analogy just shows the lack of understanding of the analogy in the first place.

Also, as people have noted, it is impossible to secure digital content when it must be decoded at some point into a plain-text format in a system which is not proof to tampering. Mightywords understood this and made a compromise.

Karl

Naive or DMCA dependant?

[autopr0n]

An analogy we used often during development was that of car door locks. A determined thief would be able to get into any car door through numerous means. All car door locks really do is prevent your average everyday person from violating your car's security and stealing your sunglasses. But it doesn't get in the way of your use of the car.

I'm not exactly sure what you were going for here. I mean sure, a determined car thief might be able to steal the car in the real world, but they can't create a simple, easy to use tool to do so and distribute it to every single person in the world (who could possibly be interested in cars).

They also can't distribute the stolen car to every single person who could want a car on earth either.

But they can do those things with e-books. Were you guys just a victim of your own analogy, or were you hoping on the DMCA to keep people from distributing cracking tools?

Re:Naive or DMCA dependant?

[BeBoxer]

he relationship between the difficulty to get a stolen car, and the amount you have to pay to get a car, and the extra utility you get from a car you actually own, is such that few people bother.

So, extending that analogy, stealing copyrighted content has to be difficult enough that, given how useful and easy-to-acquire non-stolen content is, most people will purchase the non-stolen content.

This is tough, though. Almost by definition, DRM technology makes the non-stolen content less useful by restricting what can be done with it, where you can use it, etc. As a result, the stolen content is often more useful. This is the fundamental flaw in all DRM technology. It punishes the legal user by giving them handicapped content. When you try to charge more for something that does less, don't be suprised if sales suck.

Pirated content usually has the attributes of being cheap, useful, and easy to find. For some content (say music), the "legal" content is expensive, crippled, and hard to find. No wonder it doesn't sell. I think the only long-term strategy which will work is to actually make the legal content cheap, useful, and easy to find. It will always cost more than free pirated content, but if it's competetive people will buy it. By leaving out DRM, it can be useful (and cheaper too, since DRM is just uneccessary overhead). It's the "easy to find" where I think legal content can get the upper hand. There need to be prosecutions of the people who actually make copyrighted content available in an easy-to-find manner. Pirated content can't be eliminated, but it can be pushed underground where it's not easy for the general public to find. It's not even very hard to do. The software industry does a pretty good job of keeping pirated software underground so that it's not easy to find. I think this is the answer to the "ease of theft". The DRM only has to be cracked once to extract the unprotected content. And lots of people will specialize in exactly that. Look at software copy protection. No body has ever invented something which can't be cracked. But, for things to be easy to steal, they have to be easy to find. And that's the key. Make sure any warez site that shows up on google gets shut down. Find the folks who are putting 100GB of pirated music up on a fat pipe for anyone to take (note I am not advocating trying to shut down the basic tools, but going after the people who are actually illegally distributing copyrighted material.) As long as your average user can't easily find the pirated material, the legal stuff looks more attractive.

Anyone Know of Privacy Friendly DRM?

Many of the DRM systems I've seen require me to identify myself. ME NO WANT TO DO THAT. Check out EPIC on this: Privacy and DRM.

Security is never free

[Russ+Nelson]

The whole point behind DRM is to restrict copying. That is, the specific intention is to make some uses of the information completely impossible. There is No Way to make this completely transparent. Security is never free. So, really, it's an oxymoron to call any DRM "user-friendly". DRM is inherently user-unfriendly, because it exists to prevent the user from doing some things.
-russ

Re:Security is never free

[Shiny+Metal+S.]

It would be even more amusing to harness the collective power of the open source community to simplify this task. Create an online repository for text, divided up and numbered by page. Have 50 or so people buy the ebook, and let them "sign up" for 10 pages each. Their responsibility would be to copy their assigned pages into plain text, then upload the result to the repository. With a coordinated effort like this, an entire ebook could be replicated in under 30 minutes :)

Actually, it's not only a great anti-DMCA pirate illegal hacker circumvention mechanism, it could be really useful for books, for which the copyright protection period has already expired. Something like Wikipedia of books. Well, not exactly like Wikipedia, because there would be original books, not anything new. Actually, it would not be like Wikipedia at all... :) But the spirit would be similar, i.e. to provide free knowledge to everyone. If there is such a project, I will help for sure.

Uh oh, I'd better shut up before they arrest me for discussing a circumvention method...

Yeah! It would be a great and unbreakeable digital rights management method, but no, thanks to pirates and hackers like you, it's already cracked! We should put such evil geniuses like you into jail! Maybe then I could sleep without worrying that cruel pirates are stealing my intellectual property. After all, if they steal my entire intellectual property, I won't be intelligent any more!

This reminds me the Copyrighting fire by Ian Clarke:

I was in the pub last night, and a guy asked me for a light for his cigarette. I suddenly realised that there was a demand here and money to be made, and so I agreed to light his cigarette for 10 pence, but I didn't actually give him a light, I sold him a license to burn his cigarette. My fire-license restricted him from giving the light to anybody else, after all, that fire was my property. He was drunk, and dismissing me as a loony, but accepted my fire (and by implication the licence which governed its use) anyway. Of course in a matter of minutes I noticed a friend of his asking him for a light and to my outrage he gave his cigarette to his friend and pirated my fire! I was furious, I started to make my way over to that side of the bar but to my added horror his friend then started to light other people's cigarettes left, right, and centre! Before long that whole side of the bar was enjoying MY fire without paying me anything. Enraged I went from person to person grabbing their cigarettes from their hands, throwing them to the ground, and stamping on them. Strangely the door staff exhibited no respect for my property rights as they threw me out the door.

Great text. There's much more of good stuff on the GNU Philosophy website. One of my favorite copyright-related texts from the GNU Philosophy is The Right to Read by Richard Stallman. It sounded funny and silly for many people when it was published over five years ago, now it's more actual and terrifying than ever before. It's something which everyone should read before starting any discussion about e-books and DRM.

Great but broken analogy

[MarkusQ]

An analogy we used often during development was that of car door locks. A determined thief would be able to get into any car door through numerous means. All car door locks really do is prevent your average everyday person from violating your car's security and stealing your sunglasses. But it doesn't get in the way of your use of the car.

I love the analogy he uses, but there's a major flaw in it. On the car-door-lock side you have the owner, the car, the lock, and the thief. On the digital rights management side you have the copyright holder, the document, the DRM, and the consumer. It's easy to see that the car owner maps to the copyright holder, the document maps to the car, and the DRM maps to the lock.

So, who's the thief? When selling this technology to their customers (the copyright holders) the thief doubtlessly maps to the consumers, or at least some subset of them.

But when describing it to consumers, there is a tendency for the consumer to project themselves onto the car-owner (making, I suppose, the copyright holder map to the manufacturer), especially since it is their ease-of-use that's being considered. "After all," most consumers would think "I'm not a thief." This leaves them with the totaly false impression that they are somehow the ones being protected.

So it may not be perfect as an analogy, but it is fantastic> as a sales pitch.

-- MarkusQ

Re:Great but broken analogy

[Stiletto]

A better analogie is: People don't normally steal a pack of gum, since it is pretty cheap and easy to just walk into the store and buy one.

Today's DRM gum would make you have to sign license documents when buying the gum, agree to pay royalties on the gum if you resell it, and a device physically attached to the gum that reports back to the store every time a piece is removed to chew.

It's a pain in the butt, thwarts customers, and in the end it's easier to steal than buy.

Re:Great but broken analogy

[onethumb]

You're correct. We tried to think of the most common things people would want to do with their purchased content, but it would be impossible for us to anticipate every use. This is a very good point.

I should note that getting copyright holders to agree to our less-restricted DRM was like pulling teeth sometimes. One of the reasons we had to implement a DRM at all (it was something like a 51% / 49% vote for DRM over no DRM... very close) was to appease them. Without their content, we couldn't even try our concept.

I happen to think that there needs to be a balance between customer needs and copyright holder's. Most DRMs err on stripping away all or nearly all customer rights, but we tried to get somewhere in between where all parties are happy. Deciding where to draw the line is difficult.

I'm afraid that without some sort of control, many copyright holders will prevent their content from ever showing up digitally, which I think would be a shame. It's not nearly as simple to digitize and transmit a book as it is other forms of media, so without their involvement, it might never happen. :(

Don

A shining example...

[kawika]

...of why DRM is not ready for prime time. MightyWords goes out of business and legitimate content licensees (uh, users in normal-speak) are denied access to their content. The same thing happened with Circuit City DivX. Any DRM scheme that can't even outlive its parent company should never escape from the lab.

DRD, not DRM

[dskoll]

I hate the term "Digital Rights Management". It's a bland euphemism.

The correct term should be "Digital Rights Denial." Once you call it by the correct name, the debate is clarified.

So, apparently lack of good DRD is the main "obstacle" to getting information into digital format? Well, here's a simple solution: Don't put your information in digital format. Wow. That took a rocket scientist.

A good DRM...

[Bongo]

...is a null DRM.

We don't want to keep tripping over bits of locked data all over the place.

We think it's bad having to comply with the .doc 'standard'.... well, just wait until 50% of your files are locked/ registered/ timelimited/ self-deleting/ copy-number-tracked/ require internet connection etc. etc. in 20 different 'management' schemes...

Information transcends physical constraints... but all these clever people keep forgetting that.

Good. I support as broad a DRM scheme as possible.

[perdida]

2.Cross-platform (Windows, Mac, and any flavor of Unix we could) 3. Useable across all devices a user possessed - desktops, laptops, and, we
hoped, eventually handhelds, no extra purchase required for each device.

I was thinking the other day - what happens if electronic books become so prevalent and useable that entire libraries become available via e-book formats, and public facilities use electronic books as a large part of their libraries?

Libraries are required to provide reasonable access and facilities for all sorts of people, such as the deaf and blind. In that case, any restrictions on OS or devices used for the books would raise discrimination issues.

I am aware that a bookseller may restrict the rights to books in any way that they choose. However, there is a subgroup of printed matter - publically available government and court documents, for instance - that may be presented in e-book format. A broad DRM scheme is ideal for this sort of material - you still are able to keep track of who has the material, and to regulate available copyright issues (government documents wouldnt have these issues, but some "public interest" type material might) without overburdening people or forcing them to use a particular OS or device to read the material.

Sklyarov has a point

[JanneM]

One way to handle this better would be to not restrict copying at all; instead, embed the identity of the original buyer into the content. Note that that does _not_ require the company or anybody else to register who bought the book, movie or whatever, just that the buyer can be identified from the content itself.

As long as you only do whatever you are allowed to do with your content anyway (quote it, show excerpts, give copies to friends), nobody will care - and are not _able_ to care. If it finds its way out on file-sharing places, it can be picked up, and the original buyer can be contacted.

Now the original buyer might well not be the one streading the content, but he or she could give information about who else had access to it, and thus the content holders could track down whoever did the deed. Even if there is no legal way to force the buyer to reveal anything (and I don't think there is), the possibility of being implicated in a mess like this is enough for the majority of people to stay away from spreading stuff beyond what they're allowed to.

And that's exactly what this _should be about (and what the car analogy is about as well): people determined to break the law by selling counterfeit copies (or that have an overriding political urge to spread others' content far and wide) will find ways to do so, just like no 'real' car thief is stopped by locks and alarms (even alarms only work because not every car has them; it's easier to steal a car without it).

What you want to stop is incidental spreading, by people that should know better. By having onerous protection systems that force people to break them just to use the content in ways they have a right to do - and expect to be able to - the barrier is gone to then just spread it as far and wide as they want. By locking down too tight, the providers actually increase the amount of copyright violations. It's like warning lights for seatbelts. Some people got so tired of hearing that buzzer whenever they put their briefcase on the passenger seat, they clicked the seatbelt permanently in place - and prevented it from being used when there _was _ a passenger in the car.

/Janne

Most telling statement.

[Rogerborg]

• Legitimate users were able to get authorization as many times as necessary (before company closure on January 12, 2002). Now MightyWords does not perform authorization anymore, so it would seem that legitimate users of MightyWords eMatter are now out of luck, unless they have access to a "backdoor" to restore access to the purchased titles.

MightyWords is due kudos for implementing a system that was easier to use then to crack, but their withdrawal from the market highlights the fundamental flaw in any DRM system.

The best analogy I've come up with for DRM content (any DRM including DVD) is that the content is in a safe with a little window in the side. Both the safe and the window have combination locks on them. If you have the right window code, you (personally) can peer through the window and view the content in a limited way. eMatter has a pretty big window, but you still have to go to them to get the combination. When the copyright on the content expires, or if you want to make fair use copies of parts of it, you are allowed to open the safe, take out the content, and manipulate it directly.

Only, you aren't. When the inevitable happens and the code holder goes titsup, you are boned. Specifically, if you want to make use of the content in any way - even perfectly legal uses - you are absolutely required to break the law.

As we've seen in the DeCSS case, the DMCA trumps fair use. You're still allowed to use fair use as a post facto defence for the act of copying the content, but not as a pre facto justification for obtaining the tools that let you do it. In other words, obtaining or possessing a safe cracking kit is illegal regardless of the use you put it to. Cracking the safe is actually legal, but obtaining (or creating) the tool to do it is not. Astonishing, but that's exactly what the DMCA says.

The SSSCA will just make this worse, as it will mandate hardware that will only look through the little window. Even if you break the law to obtain tools to open the safe and get at the content (quite legally if the copyright is expired), you won't (legally) be able to obtain hardware that will touch that content.

Again, eMatter is one of the best attempts at DRM I've seen, but it still demonstrates how fundamentally flawed DRM is, because it requires you to prove your innocence while giving no guarantees that you will be able to continue to do so. It illustrates the vital distinction that you are not buying content, you are licensing a limited and revokable right to access content. There's a big difference, both in theory, and as the collapse of MightyWords now shows, in practice.

DRM A Broken Approach to An Already Solved Problem

[FreeUser]

The software industry confronted the unpleasant reality that their product could be perfectly copied, against their will and in violation of their copyright, without limit. Naturally, the software industry feared the potential loss of revinues.

The industry tried copy protection, and even before the recent mathematical proof proving that secure copy protection, or DRM, was impossible the industry learned from its own experience that copy restrictive technologies were both ineffective in stopping copyright violation, and harmful to their legitimate customers and, therefor, to their product.

The industry learned, however, that even a modicum of personal accountability suffices to stop most forms of copyright violation, and that nothing short of a depopulated world will ever stop it all. The solution was quite simple: serialize the product and/or stamp the user's identity onto each piece of software sold. We don't know if there is a mechanism in place to trace serial number N of product P to the credit card number used to purchase it, and hence to the purchaser, but we as consumers do know it is certainly possible, and that alone makes the vast majority of people reluctant to share software illegally, even with their close friends.

Not everyone, mind you, as warez sites obviously demonstrate, but the vast majority. So much so that the software industry thrives, despite a complete lack of copy restriction technologies, or DRM, whatsoever, and despite a much greater vulnerability to such copying than eBooks, music, or film will ever be. Software has no equivelent alternative revinue streams like live concerts or cinemas, yet it has learned to thrive and prosper in an environment that copyright-obsessed yet technology-naive control freaks, like the sort currently lobbying congress to gut, even outlaw, technologies fundamental to the internet and personal computing, would assume to be inimical.

The problem of copyright violation and the "threat" the ability to make unlimited, perfect copies of a product has already been confronted, addressed, and successfully solved by the software industry, without DRM, without laws like the SSSCA, and finally without, and prior to, the DMCA.

eBook authors, musicians, and movie producers need to learn this, and need to seriously look at the motives their publishers, recording companies, and studios have for persuing technological restrictions on a problem for which an elegant social and legal solution stressing personal accountability have already solved. That motive, of course, is to secure their parasitical place as dominant middleman, with power over both the artists and their fans, at the expense of both and at the expense of the art they have usurped "ownership" over.

A DRM of our own devising

is better than one designed by the
riaa and mpaa.

All histrionics aside, that is the inevitable
choice.
What part of this don't status quo geeks understand?

Current Geek stategy is stupid.

If you wait til they roll out their DRM it will
be too late ( for 95%) of us.

If we came out with a drm that respects legitimate fair use, which file sharing mp3
with people who haven't ponied up for music, is NOT, then while they dithered it would become a
standard.
If the riaa and mpaa then objected to a drm
that most people thought was fair, they would look like greedy bastards (to everyone, not just
clued in geeks) for wanting more.

of course, some l33t types would actually rather
play cat and mouse with the System.

in short, a fair use drm ( so i can make compilation cd's and time shift tv- not to file
swap) now or Riaa-mpaa-Microsoft benefits hell
within a couple of years.