Slashdot Mirror
Digital Restrictions Management in Office 11
conaone writes "According to a Microsoft Watch, there is a feature in the leaked Office 2003 called "Information Rights Management." A lot more control over documents with this... the story says: "Microsoft is threading DRM throughout the Office 2003 suite, allowing restrictions to be set on Outlook mail messages, as well as on Word, Excel and PowerPoint documents. Using "permission templates," document authors can determine restriction policies to be applied to entire categories of documents, according to Microsoft's site." Here's a link to the whole story."
Because none of us are using Microsoft products or file formats... right?
...perhaps I missed it, but if the new file format of Office 11 documents is all XML-based, then how is it they can "restrict" the documents? Isn't it all just text?
Schnapple
What's going to happen when people don't update? Or only a small portion update and people keep complaining to them that they can't read their documents? Or they have to down-save their documents to share with the world making the DRM garbage null and void?
For this to really don't don't we all really just have to switch? I know I'm not going to allow this release in my company...
I just bought a new laptop, 12 Inch Powerbook..
I sat and debated, can I live without MS Office. I then came to the decision. Open Office + Keynote was all I needed for my needs.
Are you all avoiding MS Office? What do you use instead?
I will not buy DRM.
Rob
Not all DRM is about P2P.
Wah!
...which naturally gives them an exc^h^h^hright to permanently break interoperability with OpenOffice, Koffice, etc. It's like Trusted Computing and signed Xbox images - they're not trying to shut out competition, but if that incidentally happens, they're not going to cry about it.
## W.Finlay McWalter ## http://www.mcwalter.org ##
Now a creator can control his own work, as it should be. As a creator, I have been waiting for such a technology. I can assign which works I want to be for my benefit, and which to give away. I am in control. This will allow me to service those which actually pay me for those works I would desire to sell. Piracy, as we know it, is about to end.
DRM will allow me to finally see how many people are actually willing to buy my work, and allow me to price accordingly. With piracy eliminated, supply and demand pricing can be truly determined.
Sorry, Microsoft Outlook has determined that you don't have sufficient privaleges to delete the mail message: "See Hot Young Teens FREE!!!!! JYXX92D"
The next Slashdot story will be ready soon, but subscribers can beat the rush and slashdot the links early!
Microsoft is requiring users who want the IRM functionality to be running Windows Server 2003, Microsoft Passport and a special Client Access License (CAL).
<sarcasm> And this will be Kosher, because we all know that Microsoft Passports are fully secure. </sarcasm>
Seriously, ideaological difference aside: Fix what's broken before you try to build new features on top of it!
!#@%*)anks for hanging up the phone, dear.
...allowing restrictions to be set on Outlook mail messages...
Oh good, now I can get spam that I don't have permissons to read.
"Probably the toughest time in anyone's life is when you have to murder a loved one because they're the devil." -Philips
I can think of a couple of uses already for this technology that would be extremely useful in my office:
;)
-- Restrict printing of documents that are sensitive
-- Don't allow company wide e-mail without administrative approval
and most importantly, don't allow my boss to see that I'm calling him a dick in an e-mail
Technology like this does have a GOOD purpose as well as negative uses. This could be a really useful office tool.
--The space between my ears was intentionally left blank--
I know that there'll be plenty of snide negative comments about this, but I figured, what the hell.
I think that generally this is a good thing. Every company I've worked at has created copious piles of "internal only" type documents (electronicly that is). Making sure that these documents either stay internal, or don't go beyond those people externally that you give them to is always a hassle and pretty much impossible to do currently. Right now you have to depend on the "good faith" of your employees or those you've forwarded documents to and have agreements with (e.g. non-disclosures). Having a solution that makes controlling this information a bit easier could be useful.
Now before people start getting all in a tizzy, I'm not saying that Microsofts implementation will be any good or that it won't have problems and cause more trouble than it's worth. I'm just saying that the concept is worthwhile and shouldn't just be dismissed because it's being foisted by the "Evil Empire" or you can think of a dozen ways around it.
I was sort fo hoping against hope that MS would be moving further toward XML and therefore allowing greater standardization (I know it's a pipe dream, but one's gotta have hope)
In order for Redmond to add rights management, it kind of implies that they will have to lock down their documents. After all, what good would it do to make a Word document only readable by some certain person or group only to have anyone with a text editor or even a web browser be able to open it?
So, they will have to encrypt everything - and each time you go to open an Excel spreadsheet or WOrd doc, the program will have to "phone home" to Microsoft with your PASSPORT account?
*sigh*
The Digital Sorceress
I can't imagine how many people are going to screw around with this feature and lock themselves out of their own word file
This is no different than allowing anyone to even simply password protect their files.
Although it may be good for a small percentage of people, how is this going to affect John Q. Trailertrash who likes to fiddle with new functions?
That's the point, it's not designed for JQT, it's primarily for corp. users. If little Johnny wants to add DRM to his homework then more power to him, but that is not the audience that M$ has in mind. Now Johnnie's teacher who's creating a test, now that's a different story.
I was at MS for a job interview in the not so distant past and a lot of office doors have signs that say "OFFICE XP FREE OFFICE - DOG FOOD SUCKS" with a picture of an 11 with the circle/slash through it. Some people even went so far as to have pictures of the software and a dog taking a dump on it. I asked around and a lot of people were like "yeah, it's pretty divided. Even the Office team isn't too impressed by it."
Posting AC since I signed that nasty NDA you know.. And - yes, I did get an offer, and yes, I did laugh at them.
It will be interesting to see how
If explained as "future versions of an office productivity suite will contain easy-to-use capabilities to ensure the privacy and secrecy of the user's documents, allowing them to be exchanged only with select others and safe from prying eye", we would all shout Hallelujah!
However, if it's "the ugly black hand of Digital Rights Management has now extended from our televisions and stereos to our very own documents", we shout "boo-hiss"!
I mean, really. Information wants to be free, as long as it's not the business plan for my new multi-zillion-dollar startup that wants to be free. Or is it that Information wants to be free unless it is John Ashcroft that's doing the looking?
Don't get me wrong, I'm as suspicious of Microsoft and of DRM as the next guy, but does everyone think "DRM" (or whatever we call it)is as bad when it's *your* (private) information as when it's a plausibly mass-distributed movie or song?
gnetwerker
Openoffice.org... Open office is really nice. I just started using it a few months ago when one night I finally got fed-up with Word's autoformatting (fuck you, it can't be turned off and that's the truth) so I finally said "screw it, the open source office alternatives can't be this bad". I downloaded Open Office (like 5 mins on my cable modem) and installed it (like 2 minutes) and I had something that worked at least as well as and in my opinion, better than MS Office. I've been telling my friends about it ever since and a lot of them are sold on it too.
Msoft seems at first glance here to be addressing a need in my industry, health care, to tightly audit and control access to documents. The problem is the preservation of health information privacy while providing free and ready access for authorized users. Network user authentication only goes so far because the same user might need different privileges for the same document at different times, depending on the purpose of the disclosure at the time.
We have a principle in health information security called "minimum necessary" which dictates that information only be disclosed for a particular purpose and only the information needed to accomplish said purpose be disclosed at the transaction level. Meaning, if you come back and have something else to do with the same document, you might need a different level of access. It is a sticky wicket.
The best way to do is to be.
Once this hits the market, anyone trying to sell software which can bypass the access control mechanisms of Word to read copyrighted information (it's all copyrighted) from within a protected document will be strung-up as a DMCA criminal.
This feature will not be offered as a part of Open Office.
It's kinda like those "Last gas for 50 miles" signs you see outside the overpriced gas station in the middle of the desert. Here's your chance. Miss it, and there's no turning back.
The thing about things we don't know is we often don't know we don't know them.
Think about it:
* It makes the chances of writing an office suite that is compatible with MS Office 2003 almost impossible. I bet the DMCA will make it illegal to reverse engineer the crypto you'll find this new IRM technology uses.
* It boosts Windows Server sales, since this technology will require Windows Server. UNIX-based file servers need not apply; they aren't IRM-enabled (and not allowed to be, thanks to the DCMA).
* It'll force users to upgrade Office. Yes, Office 97 already does way more than you need already. Too bad. You'll need to keep your version compatible with all the IRM-laden .doc, .xls, .pps, etc. files that'll be flying around.
* The PHB's of the world will eat this technology up without realizing the consequences.
Microsoft is brilliant. Fucking brilliant. I thought they were starting to lose it, but they're not. They've found new and amazing ways to leverage their monopoly; except, this time, it's not their OS monopoly. It's their office suite monopoly. My hat is off to you, Microsoft.
Corrections welcome.
-Teckla
Because this will undoubtedly be cracked within a month, tops. There's a good chance it's already been cracked based on the betas -- and Slashdot posting it *ensures* that every techie that didn't already know about it does.
Heck, *I* woulda cracked it if I had a copy sitting around and had any interest in Office, just for the egg-on-your-face factor affecting Microsoft when they try selling their "strong" security to companies.
You cannot do secure DRM in the current computing environment. *Maybe* with Palladium in place. Definitely not now.
The only benefit I can see this giving Microsoft is a legal excuse to make their file formats *incompatible* with everyone else, and anyone else implementing support for their file formats being liable under the DMCA.
Office is Microsoft's bread and butter, and incompatibility is the worker that brings it home each day.
May we never see th
I would welcome some version of DRM for the individual. I work for a consulting company and I have had cases where other consulting companies have taken documents that I put my blood sweat and tears into, changed a title page and then went an took work away from me, let alone co-workers who have done the same.
We have often resorted to creating everything in Acrobat, which is somewhat limited, but I really would like more control. It would be great to give my team complete write access, but not worry about who I ship the document to.
It is upto me then to come to agreement with my clients about how much access they have to the documentation I produce.
D.O.U.O.S.V.A.V.V.M.
NO ONE likes to lock a "softcopy" file down so that you can't suck data from it. If i want a document that i can't cut/paste data from, i print the fscking thing. The ONLY thing most people want 99% of the itme is to prevent someone from making changes to a document (such as a resume). In that case, we make PDFs... because few know how to modify them.
... Those geeks will send out emails/Word docs which are IRM'd, and then will just frustrate the hell out of the normal users who will email back asking for a "non-fscked up" version.
The esoteric nature of this scheme - much like some of the advanced features of Outlook/Exchange will be mostly if not totally lost on all but a few ubergeeks in your typical business
Its kinda like being the first guy to install a Service Pack from Microsoft the first day it comes out... you only do that once and have a horrible experience before you relize you better wait, only this will be much more powerful....
the first time Joe Businessman brings a file with him on the reoad that he can't modify or can't copy data from - he'll swear to Jesus and never EVER use this "feature" again.
In short - there are two kinds of people - people who will "get" this, and those that won't. Those that get it are either PHB's or geeks - most geeks won't want to use it or will use it to piss off the other kind of people - the normal people that won't understand how this helps them do their work.
for most people - security is a PITA - this will only make their lives more difficult, and will have them finding work arounds if it is "mandated".
guns kill people like spoons make Rosie O'Donnell fat.
Everyone would love being a repository for spam. Oh wait, we already are.
I've been thinking of this for awhile now. I've come to the conclusion that this is (at least partly) a method to prevent the inter-operation of competing OSs. Microsoft realizes that their proprietory document format isn't going to keep vendors from interoperating, not in the long run. Open Office has already made significant strides in reading Office format documents. Breaking compatibility in the format requires breaking compatibility in their Office products as well, which isn't a suitable option. Thus, embedding DRM in the format is the ideal method. Think about these points:
1) DRM can turn any open format, like PDF or XML, instantly into a closed format. If a competing product can't use the DRM technology, it can't read the document, even if it could do it theoretically.
2) Embedding DRM into the document format itself makes little sense, other than for the above reason. Why not just integrate proven and time-tested encryption algorithms into Office suites? If a user wants to secure a document, they can click the "secure" button, and the office suite could encrypt the document using something like PGP. That should provide enough security for most businesses, and for those that it doesn't, well they have their own security methods anyway.
3) In light of the first two reasons, it's quite clear that DRM in the document format can easily be used to turn open content into Windows content. This is especially true if the format defaults to something like "DRM on, no protection" in which the DRM mechanism would be enabled, but no access checks would be performed. To the clueless user, this would seem like the standard mechanism we have today, but these documents would not be viewable on platforms that do not have the DRM mechanism.
4) To tie it all together, the DMCA provides Microsoft with a degree of legal protection. While it is perfectly legal to reverse engineer Microsoft's document formats, it probably would not be legal to break the encryption, even if it was with the purpose of gaining interoperability.
Of course, this could be an entirely benign move on Microsoft's part. But in this day and age, and with Microsoft's track record, are you really willing to take the chance?
A deep unwavering belief is a sure sign you're missing something...
I wonder why Microsoft is so interested in controlling access to archived emails?
...
I wonder if they have had any bad experiences with this in the past?
Just a hunch
Incidently, this may be the first time someone's tried using the DMCA to enforce *file format* incompatibility. MS has done it before with copyrights (claiming that the C header files in wine used to implement Win32 were "derivative" of their own header files), with trade secrets (claiming that the "open" spec for their Kerberos modifications were protected as a "trade secret" and that no one else could implement it). It's been done before with patents (people claiming that an executable packer uses a patented algorithm). The special cases the DMCA puts into law are the only fork of IP that hasn't yet been used to try to ensure incompatibility.
Oh, and I dunno what MS's lawyers were threatening Nullsoft with if they didn't disable their "save to WAV" feature whenever users play a WMA file in WinAmp, but that theoretically could have been patent claims, so this may be a grand slam for MS in terms of misapplying IP law to screw the consumer if they try to go with a competitor's product -- they alone will have covered the entire gamut.
May we never see th
Software that doesn't support DRM will not be able to view these documents, and making software such as open office compatible will be a DMCA violation.
It's all falling into place quite well. It's amazing what kind of ROI you can get on Senators.
As a worker, your boss sends you an email asking you to destroy important documents and do other immoral, illegal, and fattening things; threating to fire you if you don't. You read the e-mail and then it automatically deletes it's self. You can't print it either because the DRM says so. So now what happens to you?
I can't wait.
Comment forecast: Bits of genius surrounded by a sea of mediocrity.
Wasn't the Skylorav case persued under the DMCA because he broke Adobe's file format?
Not really. The PDF file format is an open format. Anyone can make PDF tools. Skylorav didn't crack the file format, he cracked the optional encryption that the file MAY contain.
There is a key difference: Microsoft has repeatedly tried to prevent other companies from being able to read/write their file formats. By including DRM in the file format, Microsoft could be setting up the chance to sue OpenOffice (for example) in the event they include Office interoperability.
The interesting thing (to me) is that until I read this post, I though that this was really not a big deal. I actually think Office is a good place for DRM. Having the ability to place some limitations on who can read my business documents is a good thing. If it weren't for the DMCA, I would say that this is a case of people overreacting just because MS is involved. Unfortunately, the DMCA changes all that. Microsoft will almost certainly use this as a tool to prevent interoperability, and there's probably not a thing anyone can do to stop them.
Here's an article on this. The article title gets the point across pretty clearly: "New technology could cut down on whistleblowing". Think Enron, WorldCom, cigarette companies, etc... .
It seems that this technology would be pretty valuable for terrorists, no? This is a child pornographer's dream. You want to run a second set of books so you can pay less taxes, use the new MS Office. How exactly will law enforcement do legitimate searches? A lot of the arguments made against strong crypto by the government would seem better aimed at DRM.
Keep in mind that mobsters have been jailed even though they used strong crypto because the government tapped their keyboards (after obtaining legitimate warrents to do so) and sniffed their keys. Do we REALLY want to allow a system where the machine prevents us from gathering such evidence? How would you like to receive a death threat from a mobster via email and be unable to prove it to the police?
DRM in Office docs is optional too. The DRM is only used if the author of the information turns it on. The plain old Word format is still there, as is the new Office11 XML Word format.
Will DRM documents work in OpenOffice? Nope. BUT: Will the other formats that Office11 uses (by default)? Yep. Is Microsoft going to force anyone to use DRM? Nope. Does this mean that groups that have MSOffice and OpenOffice can still inter-operate? Yep.
Given that, is this some evil scheme to take over the world? Nope. Seriously, folks around here need to take a breather. Believe it or not, MS can just stick features in their products only because it makes them more attractive to their customers. Not everything MS does is geared towards destroying Linux/taking over the world.