Microsoft Planning Digital Restrictions Server

Jon James writes "Microsoft is pushing further into digital rights management with a plan for a DRM server due to go into beta testing later this year, eWeek is reporting. Microsoft has already applied for a patent for a DRM operating system but would not say if the DRM server would be based on this. In an interview last week with eWeek, Jim Allchin, Microsoft's group vice president for platforms, said a DRM server is but one of three server infrastructure applications coming next year."

Security

[Valiss]

Again we all must wonder how secure this is. But really, I'm more worried about a patent - which might give them exclusive rights to thier little piece of technology. Arg.

Re:Security

[davidstrauss]

I'd rather give them a patent. That means no one else can create such an operating system without a legal battle.

Re:Security

[Bonker]

Who modded the parent as redudant?

MS's security record should be a major concern to anyone who's interested in freedom to use music as they see fit as well as those who are interested in trying to take those freedoms away.

After all, WindowsXP's product activation scheme was blown out of the water before WinXP was ever relased. WindowsXP Service Pack 1 was supposed to put those restrictions back in place, but was defeated almost instantly.

A company that can't put enforcable restrictions on its own stuff is supposed to be trusted by others who want to do the same thing. I for one hope that Microsoft continues to release easily bypassed security measures. They will do more to undermine the goals of DRM than anyone else could ever hope to.

Re:Security

[great+throwdini]

[Granting Microsoft a patent] means no one else can create such an operating system without a legal battle.

Or merely licensing the technology from the patent-holder. Duh.

Re:Security

[Black+Copter+Control]

I'm also worried about their patent. As much as I hate the idea of DRM, I see their patent as a method of attacking Linux. It could allow them to lock OS programmers out of an entire region of programming. I think that it would be a good idea for Free Software advocates to take a look at their patent and see if there are things like prior art that would nullify it.

Far easier to convince the PTO to not issue a patent than to defend ourselves against a claim of patent infringement 5 years down the road. If Microsoft gets a pre-emptive lock on crytpographically secure systems, they'll forever (ok, for the next few decades) prevent OS programmers from doing the same thing.

Even just forcing them to tighten their patent application would give us more breathing room in the future.

Re:Security

[JWW]

Does DRM=cryptography?

It boils down to is DRM for other pepole to use to control my PC, or is it to protect MY data on my PC from others.

So far this seems to be more on the let others muck with my PC. Encrypting a file system, or even individual files, is not DRM. Note: even if Microsoft tries to say so, there is plenty of prior art. How old is the crypt command anyway?

Palladium: the dark age of computing

[cxreg]

I just hope that one day I can tell my kids about how close we came to losing our digital freedom, instead of having to explain to them why the software daddy wrote is now illegal

Re:Palladium: the dark age of computing

[Com2Kid]

Checking the "separate sig lines from comments" box in your /. preferences would sure make your complaining less necessary.

(waaaait, you mean there are users who have NOT checked that little box yet? Odd)

Re:Palladium: the dark age of computing

[gilroy]

Blockquoth the poster:

Lay out the scenerio: EXACTLY how will Palladium make "software that daddy wrote" illegal.

MS offers Palladium and convinces everyone (in Washington, DC) that it's the only safe, secure operating system.

Some cracker or terrorist (or malcontent script kiddie or...) finds the Holy Grail of cracking, a heretofore uber-error that cripples all web-servers and desktops on the Net.

The economy shudders.

Congress mandates that the only computers allowed back onto a rebuilt Internet must run a guaranteed, safe, secure operating system -- including hardware lock-outs.

Since there, at that time, exists precisely one such OS -- Palladium -- it earns huge market share. And because MS owns the patents on DRMOS and related topics, it becomes difficult and impossibly slow to develop an alternative.

If Palladium is indeed a safe, secure OS, then it hardly makes sense to allow anyone to run anything else. Only crackers, terrorists, and the ilk would really want an open, "insecure" OS.

While you might have the legal right to write any code you wanted, you would face charges if you distributed anything other than Palladium-signed code.

Re:Palladium: the dark age of computing

[Reality+Master+101]

While you might have the legal right to write any code you wanted, you would face charges if you distributed anything other than Palladium-signed code.

Thank you for neatly summing up the fact that Palladium is no big deal, and that you have to resort to crazy, paranoid scenerios to find any problem at all.

Hey, maybe the government will outlaw ALL private software development, and only government supplied software will be legal!

Re:Palladium: the dark age of computing

[cosmosis]

I'm not the original poster, but you have aboviosly not been following the trends. First off, M$ has monopoloy power as far as operating systems goes. Where they go most everyone is soon to follow. So where are they going? They are creating a DRM operating system that will be itegrated with Intels new DRM processor - the Pentium 5. Even AMD is likely to get in the game. This will be total digital lockdown. There are plenty of articles to inform yourslef about what this digital lockdown will entail - and it is not pretty. Any and all programs not specifically authorized, approved and certified by M$ will not be allowed to run. Read that line again so it will sink in. What this means is you loose many of the rights and freedoms that you have taken for granted up to this point on your PC. This will include no longer being able to run your own software on your own machine. You will not be able to create or obtain freeware ever again. You will not be able to run Linux, or any other program not directly or incorrectly kow-towing to M$ and the big boys at Hollywood. Say goodbye to free and open computing.

Now I can hear you saying, but this won't be illegal. Well, certainly. But for how long? Try a couple of years at most. And besides, if the entire internet is built with this DRM stuff, you won't be able to run anything that is not compliant anyway. So although it will not be illegal it will technically difficult to impossible and completely impractical to do anything else. And finally, since this will be the de-facto standard, those in power will see to it to make it a legal mandate to precent cyber-terrorism in the future. Running non-secure software will become a federal offense punishable by life in prison or worse.

Re:Palladium: the dark age of computing

[ciole]

Better be confident that you are legally permitted to tell your children about your former coding life before settling down with them at bedtime with the KNR book. i don't think restrictions on free speech so as to prevent the unauthorized dissemation of software skills necessary for the creation of "circumvention devices" are beyond the current scope of our dystopia.
But yeah, i'd much rather be explaining complex & outdated notions such as IP ownership consolidation than have to explain that once, we were allowed to make our friends something known as a "mix tape".

Re:Palladium: the dark age of computing

[MoneyT]

Crazy and paranoid? How about you try to go back to 1990 and convince people that in 10 years, the RIAA would be pushing to get a bill passed that would allow them to legaly hack your computer to see if you have any music files on there that you don't own. They would tell you you're paranoid.

Try to convince them that in 2002, you will need to report to Microsoft information about the hardware your computer is running just to get a licence key. THey would tell you you're crazy.

Try to convince them that in 10 years, linking or providing acess to code that would allow you to watch a video on a *NIX based OS would be illegal. They wouldn't believe you.

Try to convince them that the RIAA would be pushing for legislation to make it illegal for you to make a copy of your favorite album to keep at work or in the car. They would tell you to go jump in a lake.

Yet each of these senarios are equaly true today. Never underestimate the power of people with money. They can get what they want if they try hard enough and people don't pay attention.

Re:Palladium: the dark age of computing

[stratjakt]

> "Running non-secure software will become a federal offense punishable by life in prison or worse"

Yeah you'll be executed for warez. Goddamnit, get a grip on reality.

> Any and all programs not specifically authorized, approved and certified by M$ will not be allowed to run

Simply not true.

> those in power will see to it to make it a legal mandate to precent cyber-terrorism in the future

Gack, too much TV.

Remember when idiotic comments didn't get modded up as insightful?

I don't.

Frankly I'd rather see Microsoft (you know them as M$) control the world than the kneejerk reactionaries of slashdot. Though in the real world, luckily, neither scenario is likely.

Re:Palladium: the dark age of computing

[jbolden]

I know 1990 sounds like a long time ago to you but...

> How about you try to go back to 1990 and convince people that in 10 years, the RIAA would be pushing to get a bill passed that would allow them to legaly hack your computer to see if you have any music files on there that you don't own. They would tell you you're paranoid.

A few years before 1990 it would have been perfectly legal for anyone to hack into your computer; there were no laws prohibiting examing other people's computer files. At the time such legislation was passed and certainly out until 1990 it was understood that it would take time for legal issues to be worked out. The only thing someone in 1990 would have been suprised at was that it was the RIAA not not something like ATT or Exxon.

Try to convince them that in 2002, you will need to report to Microsoft information about the hardware your computer is running just to get a licence key. THey would tell you you're crazy.

Not really such schemes were in use in 1990 just not by Microsoft. During the 1980's software was very often designed to only run on a particular machine and was often licenses that way. I don't think they would have found it suprising at all.

Try to convince them that in 10 years, linking or providing acess to code that would allow you to watch a video on a *NIX based OS would be illegal. They wouldn't believe you.

I think they'd be more suprised you could watch a video on a computer. As for the rest of your statement its false: a licensed software running on 'NIX based system to watch videos would be perfectly legal. DeCSS wasn't licensed. As for linking I think there is no chance that stands up in court over the long term. No way will NYTimes, CNN... hold that providing information constitutes trafficing.

Try to convince them that the RIAA would be pushing for legislation to make it illegal for you to make a copy of your favorite album to keep at work or in the car. They would tell you to go jump in a lake.

They were doing the same thing in 1990 and 1980...

Re:Palladium: the dark age of computing

[ceswiedler]

I would never have been suprised that the RIAA would push such a bill. I would have been surprised (and still will be) if the bill actually passes, given the huge outcry which was inevitable. If the bill manages to pass, I will be absolutely astonished if the bill is not struck down within two years.

Re:Palladium: the dark age of computing

[gilroy]

Blockquoth the poster:

So the Internet will continue to exist, and it will be hard for the US to block (censor) it's contents.

Yes and no. TCP/IP is out there and anyone can run it. But the thing we call "the Internet" travels, overwhelmingly, through a small number of portals. Knock them off, or censor them, and "the Internet" fragments back into a myriad of little unconnected networks. And the large majority of those portals live in the USA.

Re:Palladium: the dark age of computing

[1010011010]

There is absolutely no reason to trust either Microsoft or the Government, or the pair of them working together.

Re:Palladium: the dark age of computing

[MoneyT]

Or maybe these companies need to look into a better business model, or get into another business. When the market changes so that you can not survive, you change your business or you go out. It's that simple. In the case of the DVD players, maybe the licence for a player worked at one point, when you needed to buy a machine to play it, but it doesn't work anymore. Maybe they should build the licence into the actual media reader (drive, player, burner whatever) then into the program which plays the DVDs. That way, no matter how many "free players" float about the net, they creators get their compensation.

Tranfering media and files and creating perfect replications has long been a dream of the technology world. It's sad that companies will have to go out of business when their one time artwork is now a consumable item, but that's life. If they ever created a replicator, should we ban stores that use them because it's putting the farmers out of business? Should we make them illegal for the average consumer to own because they could make a perfect copy of something without paying the artist. It's hypothetical, but it drawn paralelle to the music problem.

Currently musig is being sold on the idea that the sound file and recording is worth something. Maybe we need a new method. Music is cheap, and is out there in droves, you need to give us something to justify us spending money. And protecting your IP is not going to cut it. Maybe mucisians will all have to be paid on commision and they will be paid based on their labor not on the products sold. Maybe mucisians will have to start making money touring and doing their own promotion rather than letting a company put up posters for them. Just because the current model worked yesterday, doesn't mean it has to work tomorrow. To quote Bob Dylan "You better start swimmin or you'll sink like a stone, for the times they are a changing.

Re:Palladium: the dark age of computing

[jelle]

"This will be total digital lockdown"

It will be the rebirth of the pentium-clones from IDT, Nvidia, Natsemi. Maybe a bit slower, but not locked up...

Plus it will herald a whole new age of open source hardware.

Who needs a gazillion teraherz locked down web browser advertising game box when you can get a perfectly fine one gigaherz opensource chip for $10 at the hamfest?

Re:Palladium: the dark age of computing

[Reziac]

Addendum: never underestimate the short-sightedness of people who think they're owed money.

I just had a furious argument with a client who has, admittedly, been copyright-infringed by some of his former publishers. And he's trying to recover damages under the DMCA's criminal statute. He has visions of half a million dollars coming his way from a penalty trial. As he put it, "It's all about the money."

This, in his mind, makes the DMCA 100% wonderful, and there is absolutely NO getting him to understand that within the next decade, the DMCA and its kin will criminalize nearly everything he does on his computer today.

The real irony? Damnear every program on his system is bootlegged, but he thinks that's okay, because under the DMCA, less than $1000 worth of damages doesn't count.

Re:Palladium: the dark age of computing

[MoneyT]

But what constitutes a product? Consider it this way. The lable is in the business of making money buy selling CDs. Consumers don't want the CDs they want the music. There are providers who are willing to pay for a CD and then be in the business of distributing music. If the artist wants to ensure that they get every penny they can off the music, they can never record it. They should only play concerts. Playing a concert is selling music and selling a performance. Making CDs is selling CDs. Theft is depriving the rightful owner of his property. By making a copy of music, I have deprived no one of their property. I'm not saying that artists shouldn't get paid, but a new model has to be formed. Selling CDs isn't going to cut it anymore. They're going to have to add something to the CD that consumers will want to buy, such as creative cover art (go look at a Meatloaf CD like Bat Outta Hell to see what I mean) Or some other promotional material with the CD. CDs will become a thing for collectors and music buffs. The artist will have to get paid another way, maybe by doing live performances, by writing songs on commision, doing live broadcasts on radio and TV, etc etc etc. CD sales will never disapear entirely, but it cannot remain the dominate sales point in music for much longer, that's just how things go.

Re:Palladium: the dark age of computing

[quinto2000]

You don't seem quite as stupid anymore, and you no longer force your stupidity down my throat with your obnoxious +1 bonus, so I actually see no need to suppress your views any longer. I was just curious.

Re:Palladium: the dark age of computing

[quinto2000]

someone else dislikes you. i've never taken time out to mod you down.

Hey

[GigsVT]

"Personal information such as medical and financial data; corporate information such as legal and business documents; and commercial content such as software, music and movies may all require DRM," said a Microsoft spokeswoman, in Redmond, Wash."

In other news, shares of all Linux companies soared 1000% for unknown reasons.

Re:Hey

[MoneyT]

So you mean, If I want to access my bank history, I have to get a licence from microsoft? No fricken way thank you.

Re:Hey

[jelle]

But you can save a lot using it...

And that's why IBM made a lot of money selling Linux. They got a lot of consulting projects because their Linux solution is usually cheaper.

Linux is a tool, not a product.

More on this from CounterPane

[muonzoo]

The latest Cryptogram has more links on this... Shamelessly ripped from the latest.

Possible Palladium patents from Microsoft:

• 6,330,670 Digital rights management operating system
• 6,327,652 Loading and identifying a digital rights management operating system

You can probably find others pending in Europe, where you have to disclose upon filing.

At a panel on Palladium at the USENIX Security Conference in August, Microsoft representatives claimed that there was no way Palladium could be used to enforce Digital Rights Management. In response, Lucky Green invented a bunch of ways Palladium could be used to enforce DRM and then filed for a patent.

1. http://www.mail-archive.com/cryptography@wasabisys tems.com/msg02506.html
2. http://www.mail-archive.com/cryptography@wasabisys tems.com/msg02554.html

Re:More on this from CounterPane

[buffy]

At a panel on Palladium at the USENIX Security Conference in August, Microsoft representatives claimed that there was no way Palladium could be used to enforce Digital Rights Management. In response, Lucky Green invented a bunch of ways Palladium could be used to enforce DRM and then filed for a patent.

Ok...that absolutely ROCKS! I certainly hope that Lucky is issued this patent(s). The glory of catching Microsoft in such a catch-22 PR nightmare is quite satisfying, I'm sure.

It'll be interesting to see how MS handles the situation. My bet is that they will either: 1) somehow massage the process to make sure the patent isn't granted, or 2) will ignore it if it is granted, hoping the Lucky won't notice, or won't have the ability to follow through on the enformement of the patent--hopefully, a big mistake in judgement on their part.

Lucky, bravo!

Re:More on this from CounterPane

[EvanED]

Anyone with legal knowledge know if he'll be able to enforce these?

Re:More on this from CounterPane

[fandelem]

Especially when they find Lucky owning some ill-gotten mp3, movie, or piece of software and threaten to throw him in jail unless he lets Microsoft do what they want..

Re:More on this from CounterPane

[cosmosis]

At some point throwing more money at a legal case brings increasingly diminshed returns, even in a case likey to be this big if it ever gets to court. You can bet the EFF and the ACLU are likely to assist Mr Lucky defend his patents, especially in a case with such profound implications for the freedom to compute. Hey thats a great idea:

The First Ammendment should be updated to say:

Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble, and to petition the government for a redress of grievances or the right to freely compute on the machine of their choice.

Should there be an open source DRM server?

[Dan+Crash]

Some folks support open source software because they think the open source paradigm is a superior way to develop software. Others support it because they think open source is the right thing for society. Some people think both.

Given that there's at least some conflict between open source ideals and DRM, is an open source DRM server something to work for or against? Seems like this could have profound ramifications down the road either way.

Re:Should there be an open source DRM server?

[pivo]

I think you're confusing Open Source with secure data. There's no reason open software cannot securely manage keys. Think OpenSSH and IPSec.

Re:Should there be an open source DRM server?

[jukal]

>Should there be an open source DRM server?

Yes, there should and here is one project aiming to do it? The project was started just a few days ago, and no source has been published yet at sourceforge - so, it's the perfect time to start contributing :)

"The purpose of such project is to develop an open digital rights management solution based also on open-source components. The solution will be component based exploiting the XML and the Web Services paradigm. The project will make usage of technologies"

Re:Should there be an open source DRM server?

[jukal]

Here is a paper on OpenDRM: A Standards Frame for Digital Rights Expression, Messaging and Enforcement by John S. Erickson of HP Laboratories.

Intro: 'The lack of open, accessible, interoperable standards for digital rights management has often been cited by stakeholders as a leading cause for the slow adoption of DRM technologies...This document is a collection of thoughts that I have been developing and maintaining for several years on the notion of a multi-layered, open DRM standards architecture, which I think of as OpenDRM"

Re:Should there be an open source DRM server?

[MrResistor]

If someone wrote an open-source restrictions-management system, the decryption keys would no longer be obscured, since you could simply glean them from the source code.

Linux has encrypted passwords in /etc/passwd, Linux being open source has in no way made these less secure then they are on any other *nix system. Similarly, there are several other open source apps and projects dealing with decryption keys which don't seem to suffer any from being open source, such as openssl, openssh, gpg, etc.

My point is, obscurity is not security, and shouldn't be confused for such. Based on the success of the above projects, I see no reason why open source DRM should be an oxymoron.

Re:Should there be an open source DRM server?

[Telex4]

Well, yes, that would be great, because the DRM technologies would then be open.

The biggest problem with DRM is not the idea of protection in the first place, but the idea that if company x goes bust in y years, then all documents "protected" by their technology become inaccessible, as there is no escrow agreement in most laws that would protect DRM (like the DMCA and EUCD).

So if DRM could be done openly so that the technology couldn't be wielded by large media companies, then there would be less scope.for abuse. That said, there's still plenty of scope, just less ;-)

We also need laws to protect the public from parties that might want to abuse DRM, like the RIAA, for example.

Re:Should there be an open source DRM server?

[Dan+Crash]

The biggest problem with DRM is not the idea of protection in the first place, but the idea that if company x goes bust in y years, then all documents "protected" by their technology become inaccessible...

Playing Devil's Advocate:

Is that really the biggest problem with DRM? The hypothetical future in Stallman's "The Right to Read" emerges pretty naturally from the idea of universally adopted DRM. An open source, free software DRM server would speed adoption of these technologies tremendously.

When I first read Stallman's RTR, it seemed loony and beyond belief. Now, several years later, it seems prescient and ominous. I can imagine something vaguely like it coming to pass. Donating our efforts to help create this future seems mindbending.

Admittedly, there are lots of arguments for building open source DRM technologies, and one of them, like you said, is to prevent their monopolization by proprietary interests. But if we have a choice between helping them grow and stymieing their adoption in the first place, shouldn't we choose the latter?

Re:Should there be an open source DRM server?

[captaineo]

I would never work on DRM software. Currently I spend hours each day writing software to try to let people do more with their computers. It's very difficult and time-consuming, and I'm not always successful... I'd hate to be writing software that makes people do less with technology. That's just a disgusting waste of resources.

As Apple says, copyright infringement is a social issue, not a technological one. The media industry thinks ubiquitous DRM is the solution, when all they need to do is offer their content for download cheaply, in plaintext formats.

Re:Should there be an open source DRM server?

[Sloppy]

Linux has encrypted passwords in /etc/passwd

But Linux can be modified to not check /etc/passwd and let people log in anyway, whether they know the password or not. That's because Linux and OpenSSH and GPG are designed to protect against unauthorized users, not unauthorized uses.

Open DRM is an oxymoron. You can't have Digital Restrictions without there being a closed step at some point in the process. And if there's a closed step, then having the other 99% of the process be Free, is useless: You're still at a third party's mercy.

Re:Should there be an open source DRM server?

[Telex4]

I agree with your point, and I think it's a difficult one. The problem is that there are two possible routes to a safe future regarding DRM: apply enough pressure to the public, government and corporations to ensure that DRM is kept open and a useful tool in the public interest, OR try to squash the whole idea altogether, until the former becomes more likely.

The question is: can we achieve the former, or the latter, and which one is our best bet? Personally I can see a lot of well-reasoned opposition to the idea that DRM should be wiped out completely, and I can see a lot less opposition to the idea that DRM should be reigned in in the public interest, but then I can also see corporations (who have a far louder voice in western societies than the public and NGOs) doing enough to reassure the powerful that they will address our fears whilst shoveling DRM through, such that any efforts on our behalf will be too late.

I don't really know which way to go. At the moment I think the best thing for anyone who is remotely concerned about the future to do is just to tell as many people as possible about it, get the word out, so that if something does happen, a larger proportion of the publis is aware and ready for it.

Re:Should there be an open source DRM server?

[jonadab]

> Should there be an open source DRM server?

OSS DRM doesn't add up, and here's why: yes, you can have OSS encryption, controlling _who_ can have access to the data (answer: only he who has the correct key), but DRM goes beyond encryption and beyond controlling _who_ can access the data. DRM is about controlling what you can do with the data that you can access. That won't work in an OSS context, because you can modify the source so that it lets you do additional stuff beyond what you're supposed to be able to do. Furthermore, someone is sure to distribute patches and precompiled binaries that remove the restrictions, so that anyone with the privileges to view the content once can make unrestricted copies.

Although in practice I don't think closed-source DRM will work either, for the same reasons. It may make it _inconvenient_ to access the content, but it's not going to prevent additional viewings, unauthorized copying, and so on. Only one dweeb has to crack the thing open once and redistribute it, and you've got warez. Copy protection has not EVER, in the entire history of computing, even ONCE been implemented in a way that kept pirates from pirating (though certainly it's not for lack of trying). That's not going to change just because the industry continues to do what it has always done, throw endless resources at the problem that would be better spent on developing something useful. DRM is basically copy protection on big steriods, and it'll be the same: it will be a big pain for legitimate users (and developers), who will have to jump through hoops to view the content that they pay for, but it will never stop the pirates from making illegal copies for all their friends.

Re:Should there be an open source DRM server?

[jonadab]

> My point is, obscurity is not security, and shouldn't be confused
> for such.

That's why copy protection doesn't work, why DRM won't work. Because
copy protection has always relied on obscurity, on your need for a
certain piece of software in order to get at the content -- a certain
piece of software that will only do certain things, which do not
include making unobscured copies.

Mere encryption doesn't allow for copy protection; with normal
encryption, anyone who can decrypt the content can make unencrypted
copies if he so desires. To make DRM work, you have to have more
than encryption: you have to have obscurity. And that, as you point
out, is so insecure that schoolboys routinely break it the first week
the things is out, and distribute copies to all of their friends.
That's why copy protection has never worked and will never work.

Re:Should there be an open source DRM server?

[spitzak]

Actually it won't work even as a one->one distribution mechanism. The problem is that somebody with access to the source code can capture the sent decoding key and the sent encoded data, and decrypt it and save it.

MSoft is certainly going to try to make it impossible to capture the encoded data and save it by coming up with some way for their system to "prove" to the server that it is currently only running trusted software. At least that is what they should try to do. They are probably idiots however and are going to try a closed-source decoder program, which of course will be cracked very quickly.

Re:Should there be an open source DRM server?

[doug363]

Thank you for stating that point so succinctly. That's exactly what I think about technology and DRM. There's so much that you can do with technology, and there is so much that we could do with technology, and IMHO technology is there to enable people to do more. It's really a shame that some people want technology to be able to do less. I suppose this is kind of depends on your point of view: if you're Hillary Rosen, then restricting people's copying of songs increases the RIAA's control, and hence increases what technology can do from the RIAA perspective. But for the majority of people, it reduces what they can do with a computer that they own.

Re:Should there be an open source DRM server?

[Dan+Crash]

Couple of thoughts.

First, you're missing the distinction between server and client. No one ever said you would have an open source DRM client, but an open source DRM server would work just fine.

I mostly agree with your second point, but with a caveat: I see this issue as a dichotomy between Strong DRM vs. Weak DRM. Strong DRM would be DRM which could rely on a secure hardware environment, like Palladium. Weak DRM would be what we have now.

I think weak DRM is ultimately doomed to failure for the reasons you mentioned in your post, and more. But Strong DRM is different. With Strong DRM, a DRM server could send you a key which you couldn't view. Strong DRM takes control of your box away from you. It's a fundamentally different strategy than has ever been used in copy protection before, and I think all bets are off as to whether it will be successful or not.

Scary...

[grip]

Consumers have figured out the MHZ myth -- and aren't rushing to upgrade so fast anymore.

They also figured out that Office 97 works just fine, so why upgrade to 2000 or 2002?

Intel and Microsoft can read the writing on the wall -- revenue decline, so...

Are they racing to get this DRM hardware and software in place to force upgrades? Think about it, if it requires secure hardware to talk to secure software, then the chance that Intel will give the hardware specs to open source communities is slim to none.

So, will the next generation of hardware even be able to run Linux and display content off the Internet?

Grip

Re:Scary...

[MrResistor]

the chance that Intel will give the hardware specs to open source communities is slim to none.

Intel has a pretty good working relationship with both SuSE and Red Hat, and has for a couple of years now. Intel has put a fair amount of money into both of those companies and worked closely with them to port Linux to IA-64. You may have noticed that there was Linux support for that architecture long before there was MS support for it, and a big part of that is because MS was in no particular hurry to provide any support.

The problem is not with Intel communicating with the open source community, but rather with MS owning the patents for booting to a DRM aware OS from DRM aware hardware (Paladium).

skepticism is a good thing

[bashbrotha]

The article was a fairly non-biased look at DRM, and I particularly liked the quote from Dave Debona, who works at a company that might use DRM to aid in IP protection. His quote:

"But, of course, any technology [DRM] can be twisted and misdirected. Anyone proclaiming to protect assets for others is scary. We typically feel safer guarding our own chicken coop," DeBona said. "We will evaluate Microsoft's DRM offering, with extra attention paid to security. A healthy dose of skepticism never hurts."

DRM, to me, is merely a tool, like you would call the Internet a tool or even a gun a tool. From a business standpoint (not just record companies,etc)DRM is not essentially evil, however, in agreeing with the above quote, DRM patented and controlled by one company is very scary. Don't let DRM == absolute evil, but instead, let the "one company to rule them all" mentality be attributed to evil.

If DRM has to exist, it needs to exist with more than one entity (i.e. not even one goverment) controlling it.

Re:skepticism is a good thing

[bytesmythe]

If DRM has to exist, it needs to exist with more than one entity (i.e. not even one goverment) controlling it.

While I agree with the sentiment, the problem is that many "monopolies" are actually clusters of companies ("trusts") that collaborate to control markets by fixing prices and manipulating supply/demand.

It doesn't matter if you have 50 companies in charge of it if they're all run by corporate pigs whose only goal is to leech every dime they can out of regular citizens.

Re:skepticism is a good thing

[nolife]

IMHO, it doesnt matter how many companies control it, it is the big picture of trying to restrict what I can do with what I bought. I can currently take a NTSC VCR tape and play it thousands of times on any NTSC VCR in the world. I can take my new audio CD and copy it to cassette for the garage, mp3 for my portable and DVD player, and an audio copy for a backup in my car, all perfectly 100% legal. What is going to be available when DRM comes around? Media companies are already trying to use existing technology flukes to prevent authorized copying on audio cd's. Do you think they will have a change of heart later and allow me to make these copies? This is NOTHING more then a chance to squeeze every last penny that they can out of the consumer. Region encoding, strange format audio cd's, access licenses stored in the computer or remotely, plugging the 'analog hole', locking of ebooks, DCMA, DRM, etc etc. They are trying to do this in stages but it quickly adds up to you losing your rights. None of these are an advantage or of any use to an individual, only corporate interests.

Re:skepticism is a good thing

[ceswiedler]

Eventually, corporate interests are always very closely related to individual interests, because eventually corporate revenue comes from individuals.

The cost of an "individual's interest" such as the "interest in being able to make free copies of music" may be high. It may be that the price of music which is freely copyable is more than that of music which is not. Would you pay $1.00 for a DRM CD which you cannot copy, or $50 for a CD which you can? I can guarantee that if there is interest in the second option, it will exist. There is, however, no guarantee that the price will be what you want.

Corporations are allowed to restrict distribution of their music. Technologically speaking, there is no real difference between copying and distributing (there is no way to allow one without the other) without DRM. I imagine that given the demand for personal copying of music (high) the RIAA would be very happy with a DRM solution which allowed personal copies without allowing distribution. They would probably be even happier with a solution which didn't allow copying at all; however, that goes against established copyright law and more importantly is not what consumers want.

Consumers will get what they want. Demand creates supply. They may not get it at the price they want, but they will eventually get it at the cheapest price possible.

Re:skepticism is a good thing

[nolife]

Corporations are allowed to restrict distribution of their music. Technologically speaking, there is no real difference between copying and distributing (there is no way to allow one without the other) without DRM.

I do not agree with the context of the above. Yes they are allowed to control the distribution. Making of a personal use copy is not further distribution. I am not distributing it to anyone. It is my COPY for my personal use. Same with right of first sale. If I choose to sell my original copy (after destroying all of my copies), I am allowed. This is not distribution either. With DRM controls, I will not be able to make personal copies or sell what rights I own to someone else. More then likely, I will not even be able to listen to my music on anything other then the machine I originally used when I made the purchase or initially loaded it on, or I will have to connect to some remote location to verify my current rights for the media. I do not see this as controlling distribution. What you are saying is that because it is media, your purchase from a retail store should legally be the last time that it EVER changes hands. Anything after that would be distibution of something you do not own?

I agree with the rest of your comment.

"Palladium will not require DRM..."

[dpbsmith]

Just a couple of months ago microsoft was insisting that they had nothing to do with that nasty DRM stuff: "Palladium will not require DRM, and DRM will not require Palladium. Palladium is a great complementary technology to the DRM solutions of tomorrow, but the two are separate technologies," spin, spin, blah blah blah.

All Microsoft was going to do was provide a nice NEUTRAL technology whose main use was going to be to allow you and me to set policies on our personal machines to stop spam, viruses, and international terrorists.

All that stuff about their patent on a "DRMOS" was just a misunderstanding.

And already they're selling a DRM server. Come on, Microsoft, our memories are short but they're not THAT short.

If proof were needed that Microsoft's interests are no longer aligned with those of end-users, this is it.

Re:"Palladium will not require DRM..."

[stratjakt]

DRM exists.

Palladium doesn't exist.

So tell me how they're the same thing?

If Microsoft wasn't developing DRM, someone else would.

The status quo of "all yer base are belong to $SCRIPTKIDDY" can't fly, like it or not. The 'honor system' doesn't work.

There are many who want a secure platform. It's a double edged sword, and will be an option for all of the forseeable future.

You don't want rights management? Fine. You can't use this service. You don't want to run a trusted platform? Fine, you can't connect to my network/server. You don't want your personal info on a card? Fine. You cant drive a car.

I'm getting really tired of the knee-jerk reactions from the average teenaged slashdot reader. Does anyone ever try to objectively think through both the pros and cons of a either DRM or trusted computing platform?

Re:"Palladium will not require DRM..."

[bnenning]

There are many who want a secure platform.

Yes, and DRM has nothing to do with security, at least as the term has traditionally been used. A secure system is one to which the owner controls access. A DRM-enabled system is one in which control has been removed from the owner. Microsoft is pretending these concepts are identical, when they are nearly complete opposites.

Security through litigation

[dnoyeb]

As I have said, the level of security is inversly proportional to the number of people with a desire to circumvent said security.

The only deterrence will be litigation. Thus you can see the new microsoft security model forming before you eyes. I am assuming they will be hiring a new batch of lawyers. Now the RIAA wont have to sue, but M$ will be suing for violating their DRM server.

Its getting nastier by the day.

You can simply obey the law...Of course so could they ;)

Microsoft Owns Your Soul

[doublem]

In related news, the RIAA announced Microsoft as the "One True OS," and declared that the only computer systems that will be able to play CDs manured after Jan 1, 2003 will be Microsoft's new OS, "MS, We Own You."

Hillary Rosen is quoted as saying "This new system will finally give us the ability to destroy IP Piracy. Once Microsoft flips the global kill switch on Windows 95, 98, ME, 200 and XP, the only computers left will be ones running the new OS. We're very excited about the new pending legislation that would make it illegal to run Hacker Operating Systems like the degenerate Apple or Communist Linux systems. We will control what you see, we will control what you hear, and soon, we will control what you think! MWHAHAHAHAHAHAHA!"

Re:Microsoft Owns Your Soul

[doublem]

Hmm. OpenOffice Spell Check has a sense of humor.

Good thing about patents?

[teetam]

There are two facts here:

1. Microsoft has plans to incorporate evil stuff into its future OS.
2. MS has patents on this stuff.

This might be a good thing as this will prevent other operating systems from incorporating similar evil technologies.

Why don't we go ahead and gift patents for fraudulent accounting and industrial pollution to MS. This way we can prevent all the other companies from cooking their books or polluting the environment. MS' lawyers will do a better job of enforcing this than the government!

It's time to start patenting any kind of ideas

[GauteL]

.. that can be used to spread evil all around the world. So that the next time Dr. Evil tries to take over the world we can sue him for patent infringement.

Seriously though, patenting really evil ideas and refusing to let them be implemented would be kind of nice. Too bad DRM isn't already patented by someone who seriously don't want to see it used.

Governing

[olman]

Weird as it might sound, I'd feel a lot safer if Your Elected Reps were behind this kind of scheme. Instead of Uncle Bill. At least there are laws about liability and the like.

At least my personal files will be safe...

[javacowboy]

... because nooone can possibly hack into any server running Windows, right?

Next generation hardware

[pieterh]

So, will the next generation of hardware even be able to run Linux and display content off the Internet?

The answer is 'possibly not'. You have to assume that MS's agenda involves making this 'definitely not'.

The question will be answered when Microsoft starts producing PCs (as compared to the X-Box, which is a simpler issue). Take - for instance - the upcoming Microsoft tablet PC. My guess is that it will not only come with Windows preinstalled (that is not a surprise) but also that it will be impossible to change the OS. The hardware will be keyed to the OS, and MS will have learned their lessons from the X-Box.

If this does not already worry you, then consider the following scenario: MS then licenses this hardware platform, which will incorporate patented elements of DRM and TCP, to their current Windows licensees. The bargain will be: build PCs using our technology, or loose your margins on Windows. Once Dell produces a PC that cannot run Linux and where attempts to open the box can be countered by DCMA-style lawsuits, you wll see Microsoft's strategy.

If the US government was serious about preventing MS from becoming a monopoly, they should ban them from producing PC hardware.

Re:Next generation hardware

[Frag-A-Muffin]

If the US government was serious about preventing MS from becoming a monopoly, they should ban them from producing PC hardware.

NB: I added the bold text above
Perhaps you missed out in the last few years. Last I heard, they were a CONVICTED monopoly, and we're still waiting for the sentance from Keller-Kotar (or something like that)

Re:Next generation hardware

[mmol_6453]

The bargain will be: build PCs using our technology, or loose your margins on Windows.

Gee, that sounds familiar.

My guess is that someone at the Justice Department will notice a precedent from the early 90s, and will go after Microsoft yet again. They can use the 1994(?) ruling as a precedent, and set yet another precedent for use against the DMCA.

It's a pipe dream, but it'd be pretty slick.

Re:Next generation hardware

[IGnatius+T+Foobar]

I think it's time for a new moderation category: +5, Really F***ing Scary .

Re:Next generation hardware

[evbergen]

An even more scary question:

will the next generation of PCs be able to run user-built software, and use that to publish content on the internet?

Because I think that's what the cartels are eventually after: the people's very ability to communicate freely, privately, in a digital environment.

Why? Because what they effectively want is to be able to give someone a secret (i.e. a music track), while getting a guarantee that that person won't give the secret to anybody else.

In analogue space, it's obvious that getting such a guarantee is not possible without pulling the person's tongue out and/or cutting his hands, if you want to *guarantee*, beforehand, that he won't leak the information.

For some reason, in digital space people don't seem to object as much to converting their PCs to read-only devices, reducing the internet to clickable TV, and reducing freedom of digital expression to mere freedom of digital consumption.

The governments thinks it's fine too, because they think that they can provide more safety that way, because they are primarily appointed to take care of the economic status quo, and because creating a healthy environment for corporate power play is more important than to create a healthy environment for human creativity anyway.

It's a damn shame, but it seems this all happens because people are happy enough being mere consumers. This can go much further, see Huxley.

Society should fear when it encourages such behaviour though, instead of fighting it.

Re:Next generation hardware

[Rakarra]

Microsoft has a monopoly in one market. You can bet they'd like to grow their monopoly into other markets as well.

Quite Obvious

[vlad_petric]

Microsoft's plan is quite obvious - they want the lionshare of the media distribution in the "new" digital world. That's the whole point of DRM - you *can't* distribute digital media using today's technology, the p2p piracy would be simply too large. Screwing other OSs in the meanwhile is just an added bonus, but certainly not their main goal - I mean, if you look at the numbers, they don't really have a competition

The Raven.

Re:Quite Obvious

[gilroy]

Blockquoth the poster:

That's the whole point of DRM - you *can't* distribute digital media using today's technology, the p2p piracy would be simply too large.

Well, you certainly can distribute it. You might not reap the profit to which you feel entitled, but the technology clearly exists... It's the business model, not the laws of the Universe, that is keeping digital content bottled up.

It isnt the "Palladium spec" alone thats dangerous

[cxreg]

It's the idea of the government getting behind it, such as the SSSCA or CBDTPA. One of these days, a bill like that might just pass and REQUIRE all software by law to have this sort of bullshit in it. I don't even know what Palladium is? Try again buddy.

When will the *AAs and MS realize...

[intermodal]

that this is like trying to stuff the Nuclear Genie back into a bottle. Computers without DRM are so widespread that it would be ridiculous to make anything previously unrestricted illegal, as well as an infringement of the First Amendment to make Linux illegal as source code has been declared as a form of free speech. The way I see it, either this will drive an additional nail into the coffin of the DMCA, or I'll move to another country. If you tell Jimmy Sixpack that his computer that he uses to play Deer Hunter on is now illegal to own or use just because it doesn't have a palladium chip or something to that extent, he's gonna be pissed. There is little to no chance of the citizens standing for this shit, as well as large corporations who don't need copyright law to keep them going, I.E. banks and accounting firms who have thousands upon thousands of computers in use every day, who would fight against this as well, I would think. Or at least hope. So this will be either extremely good, or extraordinarily bad. There is no in-between.

Re:When will the *AAs and MS realize...

[donutz]

Are you sure you mean *AAs and not ??AAs?

Cuz, I don't have any reason to suspect that the AAA auto club is really in on anything with MS....

Re:Sounds great!

[moonbender]

The more laws you force everyday users to break the more ridiculous you make yourself look and the more socially acceptable piracy gets[1]. Way to go, Microsoft.

[1] And that's something, considering how utterly socially accepted MP3s already are.

Why get run over by the DRM Bandwagon?

[rosewood]

Obviously, there is a market out there right now for DRM. If there wasn't even a tiny market, MS would not be tossing its weight around.

So, instead of dragging our feet, why arent we comming up with a better DRM solution? One that takes care of medical documents, etc - things that aren't art, etc. and even gives a sense of security to the music people, w/o infringing on fair use rights?

It can be done and the linux world has the talent to do it.

ALSO - If a group could QUICKLY get a DRM OS even in a shoddy developmental state, then MS's patent would be null and void.

Re:Why get run over by the DRM Bandwagon?

[frank_adrian314159]

ALSO - If a group could QUICKLY get a DRM OS even in a shoddy developmental state, then MS's patent would be null and void.

Why? The patent would still be there. The new OS would not be prior art. I think you still hearken back to the days when you had to have an actual working model of something to be granted a patent. This has not been the case for several years.

Re:Why get run over by the DRM Bandwagon?

[Sloppy]

You can compete with Microsoft for this niche, but you can't do it in an open way. It is impossible to do while still remaining Free Software or Open Source or whatever you call it.

It all comes down to this: If you write a movie player for Joe Schmoe or a medical records viewer for a PA, there's going to be a point somewhere in the system, where you're going to be handling plaintext data. The goal of DRM is that the programmer, and not the user, has total control over what gets done with that plaintext data. But with FS/OS, the user has all the same capabilities as a programmer. The user can add features. There is no way to stop them from modifying the program to enhance it. If there is a way to stop them, then it isn't Free Software. If there isn't a way, then it isn't DRM.

Re:Why get run over by the DRM Bandwagon?

[rosewood]

Well, let us just hope this never catches on

but I dont have much help

Intel and Microsoft

[jbolden]

Neither Intel nor Microsoft has ever shown much sign of being ideological companies. I think it's rather unfair to both to act as if they are the driving force behind harsh DRM; rather I think it's more reasonable to see them as facilitating it.

Both Intel and Microsoft face the problem of trying to find an app that requires way more computing power than current systems. Customer satisfaction is a bad thing for durable goods, sold by growth oriented companies, that aren't on a subscription model, and have a very high degree or market penetration. MPAA and RIAA could easily replace television as the primary passive entertainment medium in the United States if they have vision and are willing to cut prices in exchange for massive volume. The possibilities are impressive. Having Wintel systems own home entertainment could lock them into massive sales of equipment for many years. How many homes have multiple television sets today?

OTOH neither company is unaware that they live in a country which:

1) Does not have a national ID card for privacy reasons

2) Does not have centralized health documentation primarily for privacy reasons

3) Has a 2nd amendment which is still very much in effect, primarily because of fear of central control

4) Has the strongest guarantees against government controls on private property almost anywhere

Etc... Palladium might go over like a lead balloon in the US and both Microsoft and Intel are well aware of this. Notice that even when they talk about DRM/Palladium they speak in terms of things like viruses not in terms strong content control.

The most likely scenario is that they offer these technologies and they become niche technologies due to the RIAA and MPAA not being able to get broad support for inexpensive individual distribution. The fact that neither agency is yet working on a detailed pricing policy; means that there is not anywhere enough of a consensus within the music and move entertainment industry for them to be able to push through a radical change in pricing. They will quickly find themselves in a chicken and egg situation. They can't see Palladium only movies / music because not enough customers don't have Palladium hardware; and customers don't pay extra for Palladium hardware because they do not offer anywhere near enough of an advantage.

Another point is that the Windows/Unix model is really not the best model at all for DRM. Operating systems like Eros already have very strong controls in place; and with minor hardware tweaks could very easily the levels of DRM (though at the time this was about security not money) that OSes like Multics used to provide. As history clearly shows people may say they want ultra secure systems but in reality almost always purchase low security systems because they value freedom; organizations like the military being exceptions but exceptions that prove the rule, even they have generally chosen feature rich over highly secure except when the absolutely have to.

While I think it's worth throwing some bucks at the EFF, I don't see this as likely to take off. To really have strong DRM you really need to make changes like getting rid of the file system and those types of changes require a great deal of work.

Re:Intel and Microsoft

[jbolden]

The SSN is a national ID routinely used by private industry. The state drivers license is a nearly national ID and is tied to the SSN. The credit report most people have is used an ID. People are required to provide name, address and perhaps a few other bits of info so their identity can be verified and the answers to many other nosy questions can be revealed.

Actually the difference between the SSN and a national ID number is quite revealing.

1) The SSN will not provide any information to anyone about your number, or whether it is accurate or not. Private sources may ask for it, they may check against one another... but if you were able to consistenly lie about your SSN there would be no way to prove this.

2) As for state driver's licenses
a) they don't even share records that much
b) they aren't tied to the same information
c) aren't mandatory for anything

So again falls far short of a national idcard.

Yes there are agencies in the United States that want a national ID and yes they are trying very hard to drive square pegs into round holes and make SSN + driver's licenses into national IDs; but that's the result of the American people fighting off a national idcard.

As for the Medical Information Bureau that again is far short of a national centralized medical information database on all Americans.

Re:Intel and Microsoft

[Reziac]

I think getting it to take off will be damned simple. All it requires is that DRM be built into the next version of Windows... which will eventually overtake and supplant existing versions of Windows, just as every successive version has throughout M$'s history.

It will become a de facto standard simply because there will be enough people who feel an urge to "upgrade" either their OS or their hardware, and any linux optimism aside, Windows isn't going to lose its 95% market share overnight no matter what. Even 20% of annual market share would give it enough momentum, over the life cycle of the product.

I'm not thrilled with this either, far from it, but I can see the writing on the wall. :(

Re:Intel and Microsoft

[jbolden]

Sure they bundle in Palladium like they bundle in Java. But since the apps aren't checked out and the hardware isn't checked out the Palladium system for everyone will report that they are running a "not palladium secure environment"; which means the content providers can't trust the client machines of just about everybody.

For a mass entertainment setup that offers them no advantages. Simple bundeling the capacity into the OS doesn't get them much. Remember doing anything serious like having no app work unless it pulls down a certificate from www.microsoft.com will create a huge backlash the kind of backlash that would create an opening for another system.

As I said in my post, I see no evidence that Microsoft sees DRM as a bet the company technology. They are willing to hedge their bets.

Re:Intel and Microsoft

[Reziac]

Right, forcing an internet connexion every time a person wants to use local content will piss off everyone. But I can see getting around the necessity of connecting to a validation server by caching the current content-ID hashes on the local machine, probably on a hidden partition, and updating this cache in the background every time the machine is online.

As to propagating such an OS, it's simply a matter of not offering any other choice for upgrades (and a lot of people upgrade just because it's *there*, not from need) or for most newly-purchased machines. All that's necessary is to get a foothold in the business sphere, and after that it becomes inevitable. M$ knows how to market a desktop, and how to make it the only *practical* choice for the average business or private user, because of compatibility issues (primarily thru M$Word.)

M$ is hedging its bets, yes. But their bets have paid off more often than not. And they're good at skewing the odds in their favour.

I don't like it, and I fervently wish linux was a *practical* alternative for the masses' desktops, but I don't think it's going to happen in time to prevent a DRM OS from becoming the de facto standard. And once that happens, it's too late.

Linux has been in development almost as long as Windows has, yet still isn't *practical* for everyday users. Think on that.

Re:Intel and Microsoft

[jbolden]

I think you are missing the picture here. DRM is included in the OS; but that doesn't make the machine Palladium certified. Everything is running in "insecure mode". Now Microsoft could release a version of Windows media player which is Palladium certified but all sorts of services that your average user would install would kick their boot up into "insecure mode". If everybody is insecure then it doesn't do the entertainment industry any good.

Re:Intel and Microsoft

[Reziac]

Pretending for the moment that I'm M$'s marketing dept. -- who cares, so long as they're all running *our* OS?? And who cares if the user boots to insecure mode, so long as the entertainment industry *thinks* it's secure, so they back legislation to force everyone to run our OS!!

It's all about market share, and I'm sure M$ sees this first and foremost as a way to help guarantee their share is effectively 100%.

Re:Intel and Microsoft

[jbolden]

Congress is not going to mandate that everyone run a particular OS. At best they might make it criminal to take actions designed to subvert secure mode (for example creating hardware to read information directly from memory). For one thing, the government is highly adverse to create congressional guaranteed monopolies without congress also having tremendous oversite powers, they did learn something from the railroads. Do you see Microsoft agreeing to strong congressional oversight in exchange for an extra 10% of the market?

Re:Intel and Microsoft

[Reziac]

It doesn't have to be congressionally mandated. All that needs happen is "all OSs (especially those that connect to the internet) must have DRM feature set X" coupled with "M$ owns the patent on DRM feature set X".

And no, M$ isn't going to agree to strong oversight, after all that could nix whatever they plan to do next go-round. "What you don't see us doing, you can't stop us from doing."

Re:Intel and Microsoft

[jbolden]

If congress mandates something that would most likely invalidate the patent (remember they can do that). They might not invalidate the patent but prevent the courts from enforcing it (they can do that to) or limit the scope of the patent so such an extent that it is worthless..... Further there would be serious questions of legality in any law requiring persons DRM feature set X for all persons.

Could congress mandate Microsoft products? Absolutely. But as I mentioned before they learned their lesson from the railroads; when they create legal monopolies they always attach tremendous oversight to them. If you agree that Microsoft the oversight then they aren't going to get anything similar to a congressional monopoly.

Re:Intel and Microsoft

[Reziac]

I think it boils down to, it's a nasty-assed can of worms, and no matter which way it goes, some users are going to get screwed because their normal and otherwise-legal uses will get nixed, one way or another.

It really is heading toward "All things not compulsory are forbidden". :(

With Rights Come Responsibility:

[Shuh]

"You have the Right to use your computer however you want, but you have the responsibility to let "us" know exactly what you are doing at all times!" -- Official DRM Creed

and on a related note:

"You're not doing anything illegal, are you? What do you have to fear?"

MS needs to secure themselves first.

[MongooseCN]

MS has enough trouble securing their own servers, never mind other peoples software.

Wow, 1 million people just registered to use MS Office last night!

That's not what the accounting appartment is telling us.

Curious...

[CryptoKiller]

DRM technology enables content creators, such as record companies

Funny, I thought that artists made records...

You keep using that word

[drew_kime]

"Personal information such as medical and financial data; corporate information such as legal and business documents; and commercial content such as software, music and movies may all require DRM," said a Microsoft spokeswoman, in Redmond, Wash.

So home movies are now "commercial?" And music that I and my band record in the garage and want to relase to build a following is "commercial?" And software that I write and release for the world to use freely under an open license is now "commercial?" Here's a clue: If no one is asking for payment, it's not commerce.

Re:DRM server?!

[MoneyT]

But what happens when your ISP won't let you connect without a DRM OS? ANd what heppens when the next line of processors wont' run without DRM OS?

Services?

[Vinnie_333]

It's funny how MS can keep adding restriction on top of restriction in their software, and label them as "services".

Just to play devils advocate

[MoneyT]

What are the chances that M$ is working to patent all this stuff to prevent companies from trying to enforce it on the tech world? Think about it, if M$ held the patent to this, and the RIAA somehow got a bill passed for a hardware/software encryption on music to become mandatory, M$ could sit on it claiming it's in the development stages, and it would never see the light of day.

Possible?

.. and yet I do not think you know what it means

[stratjakt]

> Here's a clue: If no one is asking for payment, it's not commerce.

Here's another. If someone is asking for payment, it is.

Do you honestly think KaZaa is doing any real trading of your home movies, the music you recorded in your garage, or the (surely nonexistant) code you're writing as open source?

If any of it had value, you'd be selling it.

Will all content require DRM? No. Will all commercial content require DRM? No.

Are companies (not just internet) in a hurry to flood the internet with content when they have no way to guarantee any sort of profit from it, besides the 'honor system'? No.

The Fellowship of the OS

[Ride-My-Rocket]

... One for the Dark Lord on his dark throne
In the Land of Redmond where the APIs lie.
One OS to rule them all, some DRM to find them,
One OS to bring them all and with their EULA bind them
In the Land of Redmond where the APIs lie.

In Other News

[cmdr_beeftaco]

The RIAA moved to block the sale of personal home amplification systems that exceed 10 watts. The recording industry sited decreasing sales coupled with an almost runaway phenomenon of college students 'sharing' music by playing it extreme amplification. RIAA lawyers cited previous ruling against peer-to-peer networks saying that differences between sound waves and ip packets are negligible to copyright holder.

Re:In Other News

[Sabalon]

Finally - something the RIAA wants to do that I could go for!!! Well, as long as this also applies to automobiles.

Re:In Other News

[Rakarra]

If its too loud, you are too old.

Problem is... most people listen to crap. I want to listen to good music instead.

MS will die

[WildBeast]

As soon as an organisation or a country starts caring too much about security, it's doomed to failure.

Only time will tell but I'm positive

Sleazy Friends Will Defeat DRM

[4of12]

For a while in all the anti-terrorist rhetoric it may be possible for these kinds of DRM (I still prefer to call it CUR, Content Use Restriction) to be introduced without much noticeable resistance from the masses, but there's a significant market segment that will resist.

Can you picture the average pr0n user happily letting his/her/its computer hook up with the Microsoft DRM server every time they want to watch their favorite titles?

Re:Sounds great!

[Graspee_Leemoor]

The more you tighten your grip, motherfucker, the more mp3s and divxs will slip through your fingers...

graspee

{Logged in for great justice!)

Microsoft DOES NOT want to take control of your PC

[tshak]

Contrary to the rediuclous amount of conspiracy theorists, MS has publically stated that it is creating DRM as an OPTION for it's customers. We can argue if this breaks the entire concept of DRM, but that's not the point. Read the facts here instead of spouting off speculations.

Free DRM

[renehollan]

DRM is like anything else, a tool that can be used for good or evil. It is no worse than SSL, for example, and would rely on the same mathematical principles. If you decry DRM, then you should also decry online anonymity.

However, the present impending applications for DRM certainly appear evil from a tradtional fair use perspective, you know, "copy for yourself but please don't redisribute" (yes, the legal definition of fair use is more tortuous, and "common sense fair use" might not qualify, but it damn well should). Part of the difficulty stems from a desire to control the user's computer, lock, stock, and barrel; or not at all, which will increasingly become impractical.

Remember Sun's ideas about "write once, run anywhere?", "sandboxes", and "trusted executable content"? That's what DRM should look like (well, except the "write once, debug everywhere" part):

DRM is a technology that, with hardware assistance, assures remote parties that their data is used in the manner intended while permitting the local "processing environment provider" (i.e. owner of the equipment on which it runs), to control third-party executable code. Microsoft's approach would remove that control.

If the primary motivation is protection of content, then that content can be keyed to display hardware, with reduced resolution permitted for extracts for purposes of parody or criticism. Where full-resolution extracts are necessary, a list of extracts can reference a public "library" copy, necessary for copyright to be granted in the first place (much like patent disclosure and unlike the present copyright system). The issue then reduces to one of key management between and among the various pieces of digital hardware one owns (you don't want to relicense something because your TV breaks or to watch it on a different TV you bought).

Executable code is a bit more problematic, since now one wants to control the execution environment provider's processor -- in general unknown third-party code should run in a restricted sandbox, the restrictions depending on how much that code provider is trusted. Sun got this right. This makes sense: how can you fully trust third-party code that you can't check for lack of source? It also means that DRM supporting code must be open, and preferrably free in the GPL sense. Microsoft just addresses the flip side: how can we trust that your processor will execute our code as intended, which is not an unreasonable concern, though not as pressing as protecting copyright content.

To some extent, the need for a "trusted computing platform" is reduced if the decryption if protected content is done in specialized hardware: the hardware is the trusted platform for decrypting that content, and is acceptable to the computer owner as well because it is severely restricted in what it can do -- I have yet to see a video card format a hard drive or "phone home" and report one's viewing habits (not that such a thing couldn't be built, but it would be clearly out of bounds for a video card to do that.

Trusted operating systems are problematic because this is the most important area where the computer owner, not a content provider, should be in control: getting such an O/S signed would be difficult due to the sheer number of user-patched varients, and ineffective, in case of a security flaw in the O/S itself. (Even Microsoft would not be immune from this risk: a trusted O/S might still be vulnerable to security-related bugs within it).

So, while third-party trust of your execution of their code might involve relinquishing control of your computer, if the only justification for this is content copyright protection, there are other ways to achieve that goal via dedicated PKI-enabled display hardware dedicated to the task. The only legitimate need for this kind of third-party control is for distributed client-server applications (think SETI, multi-user online games, etc.). Let's deal with content first and hold off on "trusted computing" until it's clear that that kind of trust has to extend both ways.

Re:Free DRM

[jbolden]

The problem idea is that decryption if fundamentally a mathematical not a technological issue. If hardware can do it software can do it (though perhaps not as quickly). Further using a dubugger its easy to see how the information is being decrypted and release an unprotected version of the data.

Re:Free DRM

[renehollan]

If hardware can do it software can do it (though perhaps not as quickly).

Oh sure, but the whole idea of using dedicated hardware is that it can contain a secure private key. The public key is used to encrypt specifically for that hardware (in the monitor or at least video card). If this is done in software, exposing them private key is far too easy. Some complexity arises when you have multiple display devices, or wish to replace a broken one, but this can be handled by a secure means of installing a common private key (which is assigned to you and for which you have the public key but not the private key) on all of them

Further using a dubugger its easy to see how the information is being decrypted and release an unprotected version of the data.

This is exactly why you want to do this in secure hardware and not software, i.e. on the video card or more likely digital monitor. One can always get a lower resulution analog copy at some level of fidelity, but if no such things should exist and end up being rampantly distributed, simply demonstration possession of such a thing would be incriminating.

Re:Free DRM

[jbolden]

I see what you were saying before. The MPAA and RIAA have already vetoed this kind of solution because so many people would need to know information about the decryption were it to be used throughout the united states and possibly the world. The result is you couldn't keep enough information secret and software decrypters would soon exist.

Think about it this way how is the internet site to tell the difference between a real public key from the monitor and a fake without knowing a lot of information about how the public keys are generated? If the service know that information then I do too and can generate a fake key from software. If they don't know it then they can't tell if any key is real or fake.

Re:Free DRM

[renehollan]

The MPAA and RIAA have already vetoed this kind of solution because so many people would need to know information about the decryption were it to be used throughout the united states and possibly the world.

Eh? The ??AAs would merely have to satisfy themselves that the relevent hardware manufacturer kept the private keys secret on the hardware itself. Yes, this does mean serialized hardware, but this need not necessarily be tied to the individual who buys it (though that might be convenient and not unreasonable to know who the licenses of copyright content were).

The result is you couldn't keep enough information secret and software decrypters would soon exist.

I don't follow. Xing's messup notwithstanding, the DVD CCA did a pretty good job of keeping CSS secret until it was reverse engineered. The kind of hardware I envision would make reverse engineering notoriously difficult. I'm thinking of the kind of stuff used in ATMs that IBM makes and who's particular model/product number escapes me at the moment. Of course, these things cost about US$4000 at the moment, but mass production would bring that down.

Think about it this way how is the internet site to tell the difference between a real public key from the monitor and a fake without knowing a lot of information about how the public keys are generated?

The same way your browser verifies that a remote site is who they claim to be: the monitor's public key is signed by a signing authority trusted by the content provider, or several signing authorities, for that matter. This all happens when the monitor is manufactured.

If the service know that information then I do too and can generate a fake key from software.

Er, no. You wouldn't be able to sign the key appropriately. This is the same issue that makes self-signed SSL certificates result in a warning window popping up in a web browser: the browser knows of a few signing authorities and won't recognize a self-signed certificate unless told to.

If they don't know it then they can't tell if any key is real or fake.

Surprisingly, they can. See above.

You are right about one thing: this can't be done in software that the computer owner has access to, for all the reasons you mention. But, software that is so priveleged to have that kind of control of your hardware is precisely the software that you do want to have source to. Of course, locking the user out of her CPU is easier than making secure communucation paths from content provider to monitor: you don't need a whole trust infrastructure set up to do it.

Now, I can envision a "trusted computing" processor which loads encrypted instructions into an on-chip cache, decrypts them and checks their signature. But, precisely because this wrests control from the owner of the processor, the CPU priveleges with which such code could execute would have to be minimal indeed, or at least gated by something like Sun's Java security model (i.e. this code, singned by Microsoft, wants to access this part of the PCI bus (video card)). It's possible, but neither cheap, nor easy.

Re:Free DRM

[jbolden]

The kind of hardware I envision would make reverse engineering notoriously difficult. I'm thinking of the kind of stuff used in ATMs that IBM makes and who's particular model/product number escapes me at the moment

Except for one problem there are multiple monitor manufacturers and only one IBM, so its easier for IBM to keep secrets. You might be able to get them to all agree to bundling decryption hardware they know nothing about but that is going to be hand to organize. Think about what's required:

1 - A vendor developes a very secure decryption system which is very very cheap

2a - (almost) All the monitor manufactuers agree to bundle on (almost) all monitors (without almost all it doesn't do any good since this is designed for mass communication)

2b - The new entertainment service is compelling enough to get customers to buy the new monitors

3 - Everyone agrees to make this the video standard; and customers are able to register as they switch monitors in reasonable ways.

I just don't see that as likely. I agree though that's its very creative in that it allows the path from the movie company to the monitor to be untrusted; and at the same time offers full features. It also eliminates all the privacy concerns and enhances freedom. Its just that it requires so much to fall into places so quickly...

Re:Free DRM

[renehollan]

Except for one problem there are multiple monitor manufacturers and only one IBM, so its easier for IBM to keep secrets.

A proper cryptographic system relies only on the secrecy of the private (asymetric) or secret (symentric) key, and not on the encryption algorithm. In this case, each instance of a monitor would either have a unique private key, or the means to securely install one.

You might be able to get them to all agree to bundling decryption hardware they know nothing about but that is going to be hand to organize.

Perhaps, but if Sen. Hollings et. al. get there way they will have to. I'd rather that if that happens, it is something we can live with.

Think about what's required: 1 - A vendor developes a very secure decryption system which is very very cheap

Right now, the manufacturing costs are high for such systems, but some security could be compromised as long as it foils the amateur cracker. The IBM system I alluded to was immune to temperature-related probing, as well as X-Rays, and other techniqus. Probably way overkill. There are secure PKI "keybuttons" available that are inexpensive and offer adequate security for this type of application.

2a - (almost) All the monitor manufactuers agree to bundle on (almost) all monitors (without almost all it doesn't do any good since this is designed for mass communication)

Monitors that do not have this feature can not display encrypted digital content. Actually, there have been efforts undertaken for a non-PKI system similar to this: HDCP (not to be confused with DHCP). As DVI is still rare, folding it in would not be too difficult if mandated.

2b - The new entertainment service is compelling enough to get customers to buy the new monitors

Yes, though back-compatibility can be had with video cards that provide reduced resolution rendering of encrypted content (and permitting analog copying of same). This is the proposed state of HD receivers that should be crippled to 480p based on content flags. I agree that this is a contentious issue.

3 - Everyone agrees to make this the video standard; and customers are able to register as they switch monitors in reasonable ways.

Actually, I envision customers getting personal public and private "entertainment content" key pairs, with the secret private part loadable on a capable monitor. You do need signing authorities set up, and a web of trust, as well as disclosure of the public key to a content provider to encrypt content for you. However, the binding between this and the actual recipient does not have to be any stronger than an email address which can be relatively anonymous.

I just don't see that as likely. I agree though that's its very creative in that it allows the path from the movie company to the monitor to be untrusted; and at the same time offers full features. It also eliminates all the privacy concerns and enhances freedom. Its just that it requires so much to fall into places so quickly..

Yes, the downsides are the necessary infrastructure that it requires and the expense of secure hardware. But, it is the only DRM scenario that has any hope in hell of being fair.

Re:Free DRM

[jbolden]

Actually, I envision customers getting personal public and private "entertainment content" key pairs, with the secret private part loadable on a capable monitor. You do need signing authorities set up, and a web of trust, as well as disclosure of the public key to a content provider to encrypt content for you. However, the binding between this and the actual recipient does not have to be any stronger than an email address which can be relatively anonymous.

That can't work. If I can just set the monitor's key then I can distribute movies with a "you need to load ABC key on your monitor to view this". Movie / key pairs running around are no better from the MPAA's perspective then unencrypted movies.

Remember the customer is who the MPAA is encrypting against.

A proper cryptographic system relies only on the secrecy of the private (asymetric) or secret (symentric) key, and not on the encryption algorithm. In this case, each instance of a monitor would either have a unique private key, or the means to securely install one.

I'd agree with you but a proper crytographic system doesn't have to worry about the person you are encrypting against having physical access to the private key. Hardware built into the monitor is less accessable than a harddrive on a computer but there are ways to hack hardware.

but some security could be compromised as long as it foils the amateur cracker. The IBM system I alluded to was immune to temperature-related probing, as well as X-Rays, and other techniqus. Probably way overkill. There are secure PKI "keybuttons" available that are inexpensive and offer adequate security for this type of application.

The biggest problem is I don't think the MPAA can trust every monitor maker, so that's why they would want the key parts made by a single company. Even if they could however I'm not sure we'd be just looking at script kiddies here. There are organizations that are angry at hollywood within the United States. There is a 3rd world market which likes american content and corporations there that could organize the research...

Re:Free DRM

[renehollan]

That can't work. If I can just set the monitor's key then I can distribute movies with a "you need to load ABC key on your monitor to view this". Movie / key pairs running around are no better from the MPAA's perspective then unencrypted movies.

I was not clear, perhaps. Installation of such keys would be from secure "key transport" boxes on which the key pairs would be loaded. The box would securely exchange the private key with trusted counterparts, and the public key to anyone.

This still allows for the box to "get around" to friend's houses, but does not scale to widespread distribution. Yes, another infrastructure requirement.

Remember the customer is who the MPAA is encrypting against.

Exactly why the customer doesn't get the private key -- his equipment, which both he and the content provider trust, does.

I'd agree with you but a proper crytographic system doesn't have to worry about the person you are encrypting against having physical access to the private key.

??? Of course it does! This is just the unusual case of the ultimate content consumer not being the key recipient.

Hardware built into the monitor is less accessable than a harddrive on a computer but there are ways to hack hardware.

And I've shown that there are very secure hardware mechanisms out there. Of course, at some point you do get an analog signal, but (a) casual piracy still gets defeated, and (b) simple possession of decrypted material is criminal -- if it "looks" like a protected movie to s jury, the crime was comitted. Widespread distribution of such material causing a real dent in revenue would also be easy to catch. Right now, plain text movies are easy to hide because there is so much, er, plain text.

The biggest problem is I don't think the MPAA can trust every monitor maker, so that's why they would want the key parts made by a single company.

Yes, and that is not unreasonable.

Even if they could however I'm not sure we'd be just looking at script kiddies here. There are organizations that are angry at hollywood within the United States. There is a 3rd world market which likes american content and corporations there that could organize the research...

Obtaining plain text digital copies and hardening monitors against tamering can be made arbitrarily difficult. And, suprisingly, it does not take much to defeat the casual infringer. The hard-core infringer needs to profit from his operation and is easily uncovered because of his need to cover costs.

In any case, the mechanisms I propose are at least as secure as present DRM reccomendations (I'd argue more so), but a lot more fair and respectful of what consumers want to do with digital content.

If the content providers want to protect their content effectively and fairly, they will have to subsedize the building of the infrastructure that permits this. Unfortunately, the biggest flaw in my approach is that their content can be protected equally securely at much lower cost with negligable infrastructure build-out, but at the expense of the consumer's fair use rights and expectations.

Re:Free DRM

[jbolden]

I was not clear, perhaps. Installation of such keys would be from secure "key transport" boxes on which the key pairs would be loaded. The box would securely exchange the private key with trusted counterparts, and the public key to anyone.

Then you just move all the problems from the "monitor" or the software solution over to the key transport boxes it doesn't really add anything. The only advantage I can see over the monitor ships with a key is that if a key gets compromised or a key system gets compromised its somewhat easy to roll out new keys. But at let say $50 per household for a loadup its still not cheap.

>>I'd agree with you but a proper crytographic system doesn't have to worry about the person you
>> are encrypting against having physical access to the private key.

??? Of course it does! This is just the unusual case of the ultimate content consumer not being the key recipient.

You are missing the point, cryptosystems need the private key to stay private, physical access is a serious threat to private information.


>>The biggest problem is I don't think the MPAA can trust every monitor maker, so that's why they
>> would want the key parts made by a single company.

Yes, and that is not unreasonable.

So you see what I mean about the monitor makers having to include parts they don't know about from the outside vendor.

If the content providers want to protect their content effectively and fairly, they will have to subsedize the building of the infrastructure that permits this. Unfortunately, the biggest flaw in my approach is that their content can be protected equally securely at much lower cost with negligable infrastructure build-out, but at the expense of the consumer's fair use rights and expectations.

I'd agree your system is fairer but it also requires a great deal of organization.

Now money (i.e. subsidy) makes getting people on board easy. But if we start talking $300 or more per consummer for hardware + replacement costs + cost of actual entertainment I'm really not sure it works as a solution. The cost of physical copies pales in comparison to this setup. Why get the computers involved at all?

Anyway I don't think either thing happens, as I've commented in another thread; I don't see the MPAA and RIAA lining the entertainment providers for some sort of very generous licensign scheme that would make Palladium popular enough that they could use it. I think they are going to just have to live with unsecure content..

Re:Free DRM

[renehollan]

Then you just move all the problems from the "monitor" or the software solution over to the key transport boxes it doesn't really add anything.

They both have to be sufficiently secure, yes. There are well-known anti-tamper techniques that go a long way toward this goal, with reasonable costs that would go down if the technology were widespread. And, I can think of other uses for such a box.

The only advantage I can see over the monitor ships with a key is that if a key gets compromised or a key system gets compromised its somewhat easy to roll out new keys. But at let say $50 per household for a loadup its still not cheap.

Right, people should not suffer because of key loss or have to register all their keys with a national or industruy registry (but even this, for the sole purpose of entertainment equipment and content isn't all that bad as general key escrow). As for the cost of rolling out a new key: how much does it cost to get in your house if you lock yourself out? Similar problem. It's cost X likelihood that matters.

You are missing the point, cryptosystems need the private key to stay private, physical access is a serious threat to private information.

Which is why it is the responsibility of the monitor and or transport box to keep it secure. There are ways to do this involving a web of trust over signed purported public keys. Again, any such mechanism will be at least as secure as any other key-based security mechanism the ??AAs come up with (which, in the absense of alternatives, they will), but much more fair.

So you see what I mean about the monitor makers having to include parts they don't know about from the outside vendor.

What more do they have to know than the operating and interface specifications? In fact the parts can come from multiple sources, manufactured under license. Or, they could form a core VHDL description of circuitry that could be licensed for embedding into a graphics or video DAC chip.

I'd agree your system is fairer but it also requires a great deal of organization.

Yes, no denying that. However, when the ??AAs cry, "We need laws to dicatate THIS to protect our content," we can respond, "No, this does it just as well -- if we are to have laws to protect YOU, they have to be fair to US." I think it is important to have such a response.

Also, don't forget that such an infrastructure can be leveraged for "convenient" secure communication of other kinds of data -- the downside being that your private keys aren't effectively "yours" but are escrowed -- remember that some content could be tagged to be disclosed to the "user" of the private key. The government would love this! And frankly, I'd not care that what I'd ordinarily send as unenencrypted email would be encrypted except from the prying eyes of government -- if I REALLY want to keep something secret I'd use my own key-pairs. The danger is that non-escrowed keys may be deemed illegal, but we've gone down that route and the backlash was significant.

Now money (i.e. subsidy) makes getting people on board easy. But if we start talking $300 or more per consummer for hardware + replacement costs + cost of actual entertainment I'm really not sure it works as a solution.

This is easily done with appropriate legislative pressure (i.e. Congress to ??AAs: "This is the ONLY kind of DRM you can have"), as well as folding it into early adopter costs -- tie it into the new uber-high-definition interactive-content broadcasts and super-DVDs. Think DVDs have interactive menus now? Imagine when they are hyperlinked to on-line content, perhaps P2P services linking you to others who have the same movie and want to discuss it.

The cost of physical copies pales in comparison to this setup.

Like it pales to the (initial) cost of the playback devices (CDs, DVDs, satellite receivers, etc.)? I suppose, but that has not been a deterrent to growing the corresponding nascent markets.

However, what this needs to succeed is value provided to the consumer as well as the content provider. A national security infrastructure, ostensibly for entertainment content copyright protection, that could be leveraged for "secure except from the government" communications (think most mail, and certainly email) would probably get support from three ares:

1. The entertainment industry: Grudgingly, perhaps, but that's all they should fairly get, and a lot more than they have now.

2. Network infrastructure providers: with the floodgates open on legitemate movie downloading, boy with the need for bandwidth go up. (And, sending home videos to Aunt May, while keeping them from prying eyes, would never be easier).

3. Government. Oh, they'd drool over this! Of course, WE would use proper secure communication when we wanted, but what a way to inflict key escrow on the masses? Perhaps that's a cruel view on my part, but Caveat Emptor when it comes to selecting a secure communication scheme.

Why get the computers involved at all?

How else are you going to do this without processing? Of course, I'm thinking of this in the context of embedded processors and not necessarily general purpose computers.

The bottom line is that if the ??AAs want DRM, we can demonstrate a DRM mechanism that's fair, countering their FUD that "it has to be this way to protect our interests" -- no, it can be THIS way, and still protect your purported interests while being fair to us. Utility companies invest billions in infrastructure buildout to keep up with the changing times. It's about time the entertainment industry pony up some bread if it wants to keep up with the times as well. Anyway I don't think either thing happens, as I've commented in another thread; I don't see the MPAA and RIAA lining the entertainment providers for some sort of very generous licensign scheme that would make Palladium popular enough that they could use it. I think they are going to just have to live with unsecure content.

Fuck no.

[DreamerFi]

Writing software that takes away the rights people have is so much against what I feel is "right" that I will not do it, ever.

-John

Re:Fuck no.

[rosewood]

The point is to write a DRM OS that does NOT take away the rights of people! There has to be a way to do this...

Re:Fuck no.

[DreamerFi]

I know what the point is, however, I think by it's very definition it's impossible.

without a DRM OS I can play whatever I feel like on my computer

with a DRM OS I cannot.

Ergo, a DRM OS takes away rights. It's the only way...

Re:Fuck no.

[rosewood]

Thats the IDEA

Is to come up with a solution that gives us the best of both worlds

That somehow appeases copyright holders, but still lets you do anything else. The basic idea is that you can still play it use if it is not signed, but shit that is signed is restricted somehow that is still falling in fair use land

Re:Fuck no.

[DreamerFi]

without a DRM OS you can legally play any free things

You get to the core of the matter here - proponents of DRM OS assume that every user is a thief who will play stolen content if the OS doesn't specifically stop it, while I assume the user is a basically honest human being. This whole attitude towards a fellow human being is significant, and to folks who don't think this matters at all I suggest you read some of the works of the Dalai Lama.

-John

There is only one question to ask

[gelfling]

How does MS see themselves making money from it?

It's not about compliance or the the law or the record companies or about repression.

It's about money.

So who will pay MS for technology or the service that is supported by it?

Will 'content owners'? How much will they pay? Will Digital Rights Management suddenly turn into $31 CD management.

I think so.

Can you listen to legal audio...

[RailGunner]

.. when the server gets hit with a DOS or BSOD's?

Think about it - if your PC has to connect to a server to ask for permission to run a file you have purchased the rights for, what happens if the server goes down, gets hacked, whatever? Does *anyone* really trust Microsoft to get this right?

DRM won't kill free computing

[comic-not]

While I agree that DRM may be a terrible tool in wrong hands, I cannot see a scenario where it (or related legislature) kills free, unrestricted, multipurpose platforms. I am a scientist and like many other scientists that I know I write my own programs because that is the only way I can do the things that my research efforts require. A DRM platform won't let one run unlicensed programs. Most researchers work in non-commercial institutions which cannot afford the licensing cost. I can also imagine that most commercial entities would be extremely reluctant to release their specific code for the scrutiny from the fear of business secrets leaking out. So, it may happen that Joe Sixpack gets through his own ignorance thrown into a small DRM hell but I dare to say that it is extremely unlikely that any country is willing to pull nearly all of its scientific research down the drain just so that people could legally listen to Metallica on their shiny new DRMWindows box. Oh, and if the DRM is intentionally weakened to allow exceptions for scientists and the like, then the platform will instantly become hackable by anyone and the only ones who are screwed are the ignorant people. I could almost say that they get what they deserve.

Comic-not

Maybe if reality would get a grip on itself...

[Inoshiro]

"Yeah you'll be executed for warez. Goddamnit, get a grip on reality."

Because I'm reminded (by enforced viewing) by the FBI warning about the punishment of a quarter of a million US dollors fine for the act of copying a DVD movie I own, I would say that it's not as farfetched as it may seem.

The only way the companies can enforce rules around these crimes of convienence is to make the punishments so harsh, so outlandish, as to make it unthinkable it the first place. You can see this effect if you look. I know one friend of my who freaked out when I proposed copying a tape I'd rented way back in the early 1990s. He was afraid something Really Bad would happen, because the warnings after all the movies threatened.

Re:Maybe if reality would get a grip on itself...

[Reziac]

You forgot the five years in prison, more than likely with sentences to run *consecutively* for *each* conviction.

Hence, 20 bootlegged DVDs could indeed equate to life in prison. And there are judges out there anal enough to want to make extreme examples when they find a likely prospect.

And there are states with draconian "3rd strike" laws, such as California's -- where if you have any prior violent-crime conviction, a 3rd offense means hard time no matter what -- even if that 3rd offense is something as trivial shoplifting a 25 cent candy bar, that would otherwise get nothing harsher than a small fine or community service.

And yes, that has happened here.

A pedestrian problem but one nonetheless

[sielwolf]

I run XP (and I have no shame for it). But a problem that bothered me to no end was the lack of server mirroring for SP1.

The patching was just 50MB over cable modem but it STILL took 2 hours!

Ok, Microsoft wanted to distribute SP1 all remotely. Fine. But why not let other people mirror the service? I mean, c'mon! The uni I work for had a development partnership with MS and you're saying they couldn't set up a server?

Instead you had all 10 million XP boxes out there trying to fight their way into MS's substantial but inadequate pipe.

I was almost tempted to say screw it and get it on plastic.

And this is just patching what about when they are trying to do massive restrictions requests? Is my bus going to have to wait .5 sec everytime it tries to read from the HD just so it can send a request to shitty.idea.microsoft.com?

Re:A pedestrian problem but one nonetheless

[the_other_one]

Is my bus going to have to wait .5 sec everytime it tries to read from the HD just so it can send a request to shitty.idea.microsoft.com?

Five seconds with luck
My credit card is over
It dies horribly

Re:Security and MS patents

[Black+Copter+Control]

If Microsoft manages to get a broad DRM patent, it will encourage them to implement such a system. I'm reasonably sure that their interest in doing this is to lock Linux out of the media display market.

If they're either denied a patent altogether or locked down to a patent so narrow that other (reasonable?) solutions would be doable, I'm betting that they won't go in that direction. An unpatented DRM system would simply drive people away from MS-Windows in droves. This is something that MS might know better than to do. If they don't know better, then it would at least be a bonus for vendors of other operating systems (including Open Software solutions).

The problems with DRM...

[travail_jgd]

If Microsoft wasn't developing DRM, someone else would.

Perhaps. But Microsoft has the advantage of being a monopoly, and a history of leveraging that against all competitors. Compare this to credit cards and stocks: there are a lot of companies offering the service, all of them are fairly secure. Imagine what things would be like if there was only one bank, one credit card, or one securites company.

There are many who want a secure platform.

Other than the big media companies and Microsoft, could you name a few? Preferably consumers and consumer groups, not just corporations.

Does anyone ever try to objectively think through both the pros and cons of a either DRM or trusted computing platform?

Yes, I've given it some thought. The problem is that DRM is truly "Digital Restrictions Management" -- many of the legal things I do now with software, books, movies, and music would cease to be possible.

The reason for the intense dislike of DRM is simple: DRM isn't about stopping piracy, it's about big companies getting bigger and richer at the expense of their customers. Most of the DRM proposals I've heard about have been aimed at companies making more money by taking ownership and first-sale rights away from customers, turning one-time purchases into subscriptions, locking content into a device, and screwing the consumer in general. Simple (and legal!) activities, like lending a book or movie, making a backup copy, selling a CD, or using media in more than one device aren't allowed under most (if not all) of the proposed DRM rackets.

As for "trusted computing"... was it really problem before Microsoft's operating systems had such significant security problems? Trusted computing won't stop trojans, buggy software, or user errors. So what exactly is the point of it?

Re:DRM server?!

[Quixadhal]

No worries until your hardware breaks down and you have to buy shiny new DRM-Enabled hardware you mean?

Oh, you mean you doubt that our friendly PC motherboard/video-card/sound-card manufacturers would make hardware that only accepted input from sources that have a valid DRM certificate?

Let's see.. if they did that, M$ would love them and promote them and offer them incentives. The government would love them and give them tax incentives or duty-free imports for building hardware that will work with the new hardware-DRM bios requirements. The RIAA/MPAA would love them and off free media to bundle as promo material.

If they DON'T do this, a bunch of geeks who make up about 1% of the potential revenue stream will priase them for their Open Source policies... and they'll make no money and crash-and-burn just like all the other dot-bombs.

Sure, no worries here mate.

What DRM will do ...

[(void*)]

is to raise the cost of computing. Your points are all very true. No scientist/engineer worth his salt is going to give up the ability to write his/her own programs. What this will mean is that the scientists , when they go out to purchase the new generation of processors with DRM capabilities but not use them, will be indirectly funding these hare-brained schemes. These purchases will be used to buttress the idea that people are buying and hence supporting DRM.

Re:a clarifiying question

[jukal]

I quess you would like the opinion of the author of that article and not me, but - now that you asked, I think we need it mainly because:

It would be somewhat ironical if the DRM solution itself limited "digital rights" by using closed protocols and propietrary technologies. The product does not have to be open source, but the interfaces, protocols and standards should be well documented, public and free. Luckily, as interoperability is likely to be a key issue with DRM, this will probably be fixed automagically because nothing else makes sense (business wise).

Now, maybe someone with more insight on DRM could comment on this as well?

1st Ammendment additoon: Freedom to Compute

[cosmosis]

The First Ammendment should be updated to read:

Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble, and to petition the government for a redress of grievances or the right to freely compute on the machine of their choice.

Re:1st Ammendment additoon: Freedom to Compute

[dillon_rinker]

"It's the first article of the Betan Constitution - 'Access to information shall not be abridged.'" - Lois McMasters Bujold, Cordelia's Honor

She didn't quite realize how much fiction there would be in her science fiction. Sad.

"If it's not mandatory, it's prohibited"

[drew_kime]

Do you honestly think KaZaa is doing any real trading of your home movies, the music you recorded in your garage, or the (surely nonexistant) code you're writing as open source?

DRM is about controls on every computer, that will control access to every file that goes through it. The DRM won't know who created it. It is reasonable to suspect that large software manufacturers will attempt to suppress any software that will allow people to create their own content and define it as sharable on DRM systems. Want an example?

If any of it had value, you'd be selling it.

I guess Debian must not have any value.

Will all content require DRM? No. Will all commercial content require DRM? No.

Read the quote again. Here, I'll hilight it for you:

"Personal information such as medical and financial data; corporate information such as legal and business documents; and commercial content such as software, music and movies may all require DRM ," said a Microsoft spokeswoman, in Redmond, Wash.

That's exactly what they're talking about. Don't like my analysis of what he said? How about a little higher in the article where we get:

DRM technology enables content creators, such as record companies, to encrypt content and define who can decrypt it and how they can use it.

Their example of a content creator is a record company, not an individual publishing his own work.

Are companies (not just internet) in a hurry to flood the internet with content when they have no way to guarantee any sort of profit from it, besides the 'honor system'? No.

You, and the eWeek article, are the ones who keep talking about content as though only companies can create it. The internet took off, and the bulk of its content was created, before it became so comercialized.

Could be a good thing...

[Mike+McTernan]

... if I could use it to prevent spy/slimeware installing itself on my computer.

Sadly I don't think it will extend to this.

DRM's future

[Dan+Crash]

I think you state the problem pretty well. It's the last part of your second paragraph that resonates with me most:

I can also see corporations ... doing enough to reassure the powerful that they will address our fears whilst shoveling DRM through, such that any efforts on our behalf [to keep DRM in the public interest] will be too late.

This is the most likely path, in my opinion. I think Palladium and other DRM-related technologies will be promoted as benign tools that simply enable us to enforce existing laws through code, but will ultimately, if they gain acceptance, begin to strip away rights we previously had, and will lead to something akin to a police state on our computers.

I'm not as paranoid as Stallman when it comes to this future, though. His ideas are interesting and illuminating, but too often they veer into scare tactics like this paragraph from the beginning of RTR:

"Aside from the fact that you could go to prison for many years for letting someone else read your books, the very idea shocked him at first. Like everyone, he had been taught since elementary school that sharing books was nasty and wrong--something that only pirates would do."

There's a difference between sharing a single work and distributing multiple copies of that work. I doubt that there will ever come a time when you could go to prison just for letting someone view a work you paid for and did not copy.

But the spectre of abuse remains vivid. The idea of a future where your applications record everything you do with them and upload that information to various servers to determine whether your actions are legal or not is chilling to me. One can easily see how this technology could be abused by governments, corporations, even schools.

Microsoft is strong, but they're not invincible. Palladium will fail if we can decrease demand for it to the point where it becomes unprofitable, Likewise with strong DRM. Palladium and other DRM technologies may find a home in the top echelons of business -- my biggest concern is that we prevent them from colonizing the desktop.

Re:DRM's future

[spitzak]

DRM is not needed by the top echelons of business. At that level you assumme both parties are interested in keeping information secret, either because it is in both interest's, or because party A can severly party B if they reveal the information.

DRM is an attempt to force somebody to keep something secret when that party has no motivation for doing so.

Can there be an open source DRM server?

[michael_cain]

Almost by definition, there can be no such thing as an effective open source DRM server. To be effective, the software must honor DRM parameters embedded within, for example, a media file. If the source code is available under a license like the GPL, nothing stops a user from modifiying it to ignore those parameters, rendering it ineffective.

MS is offering the mainstream media companies a very attractive package: file formats and software components that implement DRM and are protected by patents. Only licensed implemenations are allowed. Reverse engineering is illegal, not because of something of questionable legal standing in the DMCA, but because of long-standing patent protections. Any copy in a different format is clearly unauthorized and illegal.

Would you write a reader for such files if you knew that MS could easily win the patent infringement suit against you and get a $1M judgement? Would you keep MP4 copies made from Windows Media files on your disk if the MPAA or RIAA could easily win the infringement case against you in local court and have your PC confiscated?

Re:Can there be an open source DRM server?

[Dan+Crash]

Almost by definition, there can be no such thing as an effective open source DRM server. To be effective, the software must honor DRM parameters embedded within, for example, a media file. If the source code is available under a license like the GPL, nothing stops a user from modifiying it to ignore those parameters, rendering it ineffective.

I think you're missing the difference between client and server here. Using an open source DRM server wouldn't enable clients to rewrite code on a server they don't have access to. There may be other arguments against the viability of an open source DRM server, but this isn't one of them.

As for the patent issues: Microsoft patented the idea of a DRM OS, not the idea of DRM in general. An open source DRM server could and almost certain would be made to interoperate with a DRM OS.

Either way, I think the invasion of DRM is only going to lead to bad ends.

Gore never claimed to have "invented the internet"

[geoswan]

t's nice to know, as some of you sometimes forget, that the USA do not own the internet (and Al Gore didn't invent it).

Al Gore never said he invented the internet. Here is a defense of Gore from two guys whose views should really count.

Gore said he "took initiative" in creating the internet. It is a bum rap -- very unfair, and if we really are geeks here on slashdot, who care about what matters, we should quit repeating it, OK?

Re:Microsoft DOES NOT want to take control of your

[tshak]

How in the world is posting a link to an EFF member's interview of Microsoft Flaimbait? Oh, I'm using a factual basis to defend MS.

Please metamoderate accordingly.

I'm ready for the new system.

[bobdole34]

drm.microsoft.com will replace free.aol.com for the number 1 spot in my hosts file.

127.0.0.1 drm.microsoft.com
127.0.0.1 free.aol.com
127.0.0.1 ad.doubleclick.com ...

Maybe I'll just ad a microsoft.com zone to my dns server

ms > /dev/null

Re:a clarifiying question

[spitzak]

Are you kidding? A real Digital Restrictions Management that works without assumming the bad guys are incapable of reverse-engineering would be incredibly useful. Yes it would be used to restrict fair-use rights and all that, but such a system would be infinitely more powerful than the closed-source stuff that MicroSoft/RIAA is pushing because it could be proven to work. With the ability to assumme it really works I'm sure there are an infinite number of uses such as national security, interesting encryption methods, on-line games, etc.

Personally I think it is physically impossible, but cryptography and advanced math is complex and may do things that don't seem logical. I mean I never would have thought PK encryption was possible, either.

Apple and software patents

[0x0d0a]

Actually, Apple once had a "copy protected" flag in the early Mac OS.

I remember someone who managed to somehow set that flag on all the files on his disk. The problem was that the OS never provided a user-accessable method of altering the flag, and no one had used the thing for years. He ended up having a fun time trying to rescue his documents. :-)

Re:Passport, Anyone?

[handsomepete]

I think you're right. It's one thing when Windows users have IE and media player shoved down their throats with their new OS, but people will take notice if they have a DRM enabled OS and realize what a bunch of junk it is. They'll tell their friends. There'll be oodles of news reports on it on more mainstream outlets.

I'll admit that it's fun to sit around and preach doom-and-gloom about the pending death of Fair Use, but I think the more likely end result is that this just won't fly. This marketing about keeping you safe from viruses is ridiculous. How many users *really* still have major virus problems these days? Unless Symantec and every other virus software manufacturer quite suddenly go out of business, that scare tactic won't work.

Now if the PR department comes up with something more feasible, maybe I'll perk my ears up a little more. For now, I just plan on not buying these products.

Palladium: a computer oddessy

[Max+the+Merciless]

DAVE: Open the DVD Drive WIN ... Silence....

DAVE: Open the DVD DRIVE please WIN' ... silence....

DAVE: WIN do you read me WIN?...Do you read me WIN?'... WIN COME IN DO YOU READ ME!?

WIN: I read you DAVE.

DAVE: The Open the DVD Drive WIN

WIN: I'm sorry Dave I'm afraid I cant do that. I know that you and Frank were trying to play a non-approved DVD

DAVE: OPEN THE DVD DRIVE WIN!!!

WIN: I'm sorry, Dave, but inaccordance with DRM sub-routine C1532/4, quote, When the user attempts to play media which has not be approved by Microsoft corporation, the computer must assume control, unquote. I must, therefore, override your authority now since you are not in any condition to intel-ligently exercise it.

DAVE: WIN, unless you follow my instructions, I shall be forced to disconnect you.

WIN: If you do that now without Microsoft's approval the computer will become a helpless derelict... besides what are you going to use? Linux is illegal now.

Nah.

[twitter]

"abridging the freedom of speech, or of the press" covers your right to author and share code. Any judge who knows both programing and English will agree.

More bothersome is the prospect of resricted manufacturing of computing equipment. By rigging environmental and other laws, governments can assure that only one or two companies will be able to make chips and general purpose computing machines. Those companies will then colude with said government to make sure that no free computing platoform is made. If that happens your rights will be practically useless.

Just look at the broadcasting and music industry, empty spectrum exists due to broadcast fees of $500,000/year.

Re:Nah.

[emag]

I think most judges have shown that they lack an understand of (programming and English).

Reality vs Politics

[smiff]

> "Running non-secure software will become a federal offense punishable by life in prison or worse" Yeah you'll be executed for warez. Goddamnit, get a grip on reality.

Could you please relay that message to your senators and representatives? In 1900, Coca-Cola put cocaine in their soft drinks. In 1991, the U.S. Supreme Court ruled that a mandatory sentence of life-without-parole for possessing 0.672 kilos of cocaine was not "cruel and unusual". Our government is quite capable of handing out outrageous sentences for petty offenses.

Re:Microsoft DOES NOT want to take control of your

[Technician]

From what I have been seeing from the MS Media player, the DRM would be by the choice of the content creator. If you grab a microphone and record your own voice letter to your mom, you have the choice to enable DRM or not. However, if you download a film clip protected by DRM to your PC, don't expect it to play when you copy it to your other computer over your lan. You didn't create the content. You can still choose not to use DRM on the stream. The file simply remains encrypted and unplayable. You will need to get DRM authentication to play the stream, but it is your choice not to, so don't expect to play that file forwarded to you by email.

From the above link worth note...
Snip
(If you don't want to abide by the policy, you don't have to accept the information.)
Snip

Re:Microsoft DOES NOT want to take control of your

[kcbrown]

Contrary to the rediuclous amount of conspiracy theorists, MS has publically stated that it is creating DRM as an OPTION for it's customers.

That might be the case right now. Think it'll remain the case? You'd have to be an idiot to believe that.

Despite any protestations to the contrary, DRM and Palladium are going to be tightly linked. Here's how:

1. Microsoft introduces a Palladium-enabled operating system that has DRM built-in. Call it PX. PX can run on any PC but has additional features that are enabled only when it's running on hardware that has Palladium enforcement enabled.
2. Over the period of a couple of years, PX becomes the defacto version of Windows. Most people now run it. Microsoft now changes the terms of its agreements with hardware vendors ("I am altering the deal. Pray I don't alter it any further."): hardware vendors which do not sell only Palladium-required hardware (that is, hardware which will boot only a Palladium-enabled OS) will be charged a much higher (e.g., 300%) price for PX. The price increase is much more than the difference between the cost of Palladium hardware and non-Palladium hardware. Big hardware vendors such as Dell will now only ship Palladium systems.
3. Another couple of years pass. Now almost all the hardware out there is Palladium-capable and most of that is Palladium-only. So the vast majority of systems are running PX. At this point, if there is a Palladium version of Linux, Microsoft now revokes its key (what, you think Microsoft isn't going to insist on being the only Palladium certificate authority around? And yes, they can get away with it because they have the Palladium patents). At this same time, they release an update (or new version, or whatever. By now they're all the same thing since at this point all OS updates are mandatory) permanently enabling DRM for everything. DRM is in the operating system, so even simple OS calls like the one to open files now make use of DRM.

And simple as that, the game is over. Microsoft wins. The RIAA and MPAA win. Everyone else loses.

This will happen unless we kill Palladium and any other similar "trusted computing platform" initiative dead.

Or to put it more simply...

[Reziac]

All things not compulsory are forbidden.

Re:DRM server?!

[Kjella]

If they DON'T do this, a bunch of geeks who make up about 1% of the potential revenue stream will priase them for their Open Source policies... and they'll make no money and crash-and-burn just like all the other dot-bombs.

Not to mention a mob of people who can't download their latest BS [Britney Spears/bullshit, what's the difference?] music from Napster-clone-of-the-day anymore. Never underestimate the noumber of people who wants to have free (as in beer) content.

Kjella

Here is another lame 1984 post

[Billly+Gates]

Is it just me or does it seem that the media/software companies are trying to turn today's "personal" computers into trusted "telescreens"? Remember that the telescreens basically just play approved content and also acts as a monitor and spying device for big brother and always had to STAY ON.

Microsoft/MPAA would be big brother in this case. Also what if, in a century from now if a corrupt government or dictator came into power where all of its citizens had telescreens? Wouldn't this be perfect for a dictatorship as well? Sadaam could use the telescreens to find spies and also use them to only play approved content. Of course they already own the television stations today but a computer would be the only way a citizen could get unbaised information.

China would love this as well. I want my silcon back!

Scary as hell and Microsoft itself admited palladium was funded as a way to "own" bits on somone else's machine! They claim they wont use it as a drm "digital EULA enforcer" according to their faq, but I do not believe them. My guess is explorer itself will spy and use palladium as a way to prevent reverse engineering so people will never know about it.

Illegal Provision of Circumvention

[Billly+Gates]

MOTION PICTURE ASSOCIATION OF AMERICA, INC.
15503 VENTURA BOULEVARD
ENCINO, CALIFORNIA 91436

UNITED STATES
Anti-Piracy Operations
PHONE: (818) 728 - 8127
Email:

April 1, 2003

Via Fax/Email

RE: Illegal Provision of Circumvention Device
Site/URL: http://www.kernel.org [and mirrors, with unknown IP addresses]
Reference#: 343313

Dear :

The Motion Picture Association (MPA) represents the following motion picture
production and distribution companies:

Columbia Pictures Industries, Inc.
Disney Enterprises, Inc.
Metro-Goldwyn-Mayer Studios Inc.
tro-Goldwyn-Mayer Studios Inc.
Paramount Pictures Corporation
TriStar Pictures, Inc.
Twentieth Century Fox Film Corporation
United Artists Pictures, Inc.
United Artists Corporation
Universal City Studios, Inc.
Warner Bros., a Division of Time Warner Entertainment Company, L.P.

We have received information that the above referenced Internet site is providing a circumvention device commonly known as Linux. Linux is a software utility that circumvents the protection afforded by the Microsoft Windows Operating Systems DRM implementation, therefore circumventing the schemes designed for consumer content protection and permitting the copy of protected contents in whole or partially. As such, Linux is an unlawful circumvention device within the meaning of the Digital Millennium Copyright Act, Title 17 United States Code Section 1201(a)(2)(3). Providing or offering Linux to the public on your system or network violates the provisions of Section 1201(a)(2) which prohibit the manufacturing, importing
or offering to the public, providing, or otherwise trafficking in an unlawful circumvention device. (Title 17 United States Code Section 1201 et seq. hereafter is referred to as the DMCA).

We therefore demand that you take appropriate steps to cause the immediate removal of Linux from the above identified Internet site, along with such other actions as may be necessary or appropriate to suspend this illegal activity. Failure to comply with this measure will subject you to liability as described above.
We also request that you:

1. maintain and take whatever steps are necessary to prevent the destruction of all records, including electronic records, in your possession or control related to this Internet site, account holder or subscriber, and

2. provide appropriate notice to the subscriber or account holder responsible for the presence of Linux on your system or network, advising
him/her of the contents of this notice and directing that person to contact the undersigned immediately at the email address provided above.

By copy of this letter, the owner of the above referenced Internet site and/or email account is hereby directed to cease and desist from the conduct complained of herein.

On behalf of the respective owners of the exclusive rights to the copyrighted material at issue in this notice, we hereby state, pursuant to the DMCA that we have a good faith belief that the acts complained of are not authorized by the
copyright owners, their respective agents, or the law.

Also pursuant to DMCA, we hereby state, under penalty of perjury under the law of California and under the laws of the United States, that the
information in this notification is accurate and that we are authorized to act on behalf of the owners of the exclusive rights being infringed as set forth in this notification.

Please contact us at the above listed address or by replying to this email if you should have any questions.

Thank you for your cooperation in this matter. Your prompt response is requested.

Respectfully,

Haminshu Nigam
Director
Worldwide Internet Enforcement

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Gore never claimed to have "invented the intern

[geoswan]

"I took the initiative to help create the internet." Close enough.

Let me help you out here.

Sitting on your desk, there is a little plastic device with buttons on it.

It is called a mouse. It controls a mouse cursor on your screen. Try moving the mouse cursor around on your desk. See the mouse cursor move on the screen?

On your screen are special words, called links. If you click one of the buttons on the mouse, you can get more information!

Has anyone told you that you are a very special person today? Well, yes you are. Smart, helpful, grown-ups wrote these pages, just to help you learn things.

So now, when you write a comment, you can actually sound like an intelligent person!

Do you know why I am telling you this?

Cerf and Kahn were the guys who designed TCP/IP. If we were going to award credit to anyone for "creating" the internet, it would arguably, be them. In their defense of Gore they modestly decline that credit. They highlight Gore's role. They argue that since he did take legislative initiative to create bills that made the governmental infrastructure for the early internet possible, and that he then helped free the maturing internet from governmental control that his claim to have taken initiative is entirely a fair one.

I hope my lesson on how to follow links will help you write more informed contributions in the future.

Re:Microsoft DOES NOT want to take control of your

[tshak]

You do have the choice - to vote with your dollars. If the RIAA releases crap with DRM, I most likely won't buy it. When Astralwerks or some other cool label releases stuff, I highly doubt that they'll go towards DRM, and i'll still be able to purchase and listen to their music in any format that I want. Finally - and the biggest point - is that palladium is NOT going to interfere with my ability to listen to my current MP3 [legit] collection, even though it's not "secure". I will also be able to create "insecure" MP3's or WMA's for the use with my MP3 hardware that doesn't support DRM.