E-Mail Controls in Office 2003

TiggsPanther writes "The BBC's Technology News reports than the next version of MS Office will include E-Mail controls which should limit way that e-mail messages can be forwarded. Being tied into the Information Rights Management concept, it might be interesting to see how quickly this gets taken up."

but but but....

the washington post (via msnbc) says dont bother with Office 2003 at all
http://www.msnbc.com/news/982713.asp?0dm=T15NT

fp?

Dialog Box

[Infernon]

We just received our Office 2003 discs yesterday. I installed Outlook 2003 because the vertical-side-panel-snap-together-do-hicky is pretty sweet.
If you use the e-mail DRM service(straight from the dialog box):
- You need a .NET Passport.
- Your documents won't be sent to or stored by Microsoft.
- If Microsoft decides to end the trial, you can access the restricted documents and e-mail for at least three months, as long your .NET Passport is active.
- Microsoft won't decrypt contect protected by the service unless a court order requires it.
I read something about being able to use DRM within an organization, but that it required running some sort of IRM server. Don't know anything else beyond that though.

Re:Dialog Box

[Saxerman]

At first I thought this was a patch to prevent future email worms, but this is just more DRM management. Besides sounding like the Emperor's New Clothes, for this to work wouldn't your mail client have to query the recipient to make sure they're going to pay attention to whatever rules you apply to your forwarded mail? And, of course, query it in such a way that you can't get a spoofed reply forged to look like a legit MS approved mail client?

This sounds like that phone plan where you only get the discounted rates if you get all your friends to sign up with the same plan. Except in this case the rates aren't any cheaper.

Re:Dialog Box

[Zocalo]

Microsoft won't decrypt contect protected by the service unless a court order requires it.

And there you have it. There is a back door in this here DRM technology, "just in case" of course... So not only is this technology flawed, even by DRM standards, but the necessary tools to circumvent it will be hitting your local dodgy site in 5... 4...

Re:Dialog Box

[letxa2000]

Seems like this is pretty silly. Trying to control what a recipient does with email after you sent it is like trying to reconstruct a nuclear bomb after it detonates. It's too late... it's out there and you really can't say what's going to happen.

If anything, this may give stupid senders a false sense of security. They may think "Well, since I put limits on this email it will never get out." Right. What about copy/paste? Ok, they probably disable copy/paste in the window context. What about a print-screen/snapshot of the entire email? Paint Shop Pro would certainly do the trick.

Also funny was the line "Microsoft says a free viewing program will be available for those who receive a protected document but are not using Office 2003." Yeah, I'm sure there'll be one available for Linux. Doesn't matter. If someone sends me a non-standard email that I can't read it goes to the bit bucket. I may or may not ask them to send it again.

Re:Dialog Box

[BrokenHalo]

I couldn't tell you one new feature that was added during the change.

And most of us would be hard pressed to find one useful feature that wasn't there in Office 97.

Re:Dialog Box

[RetroGeek]

What about a print-screen/snapshot of the entire email?

Or the ultimate un-stoppable copy device..... a camera.

Re:Dialog Box

[TedCheshireAcad]

The free viewing program is brilliant.

Phase 1: Create an e-mail format only your program can read.
Phase 2: Use that leverage to force organizations using the products of your competitors (e.g. Lotus) to switch to your product.
Phase 3: PROFIT!

Re:Dialog Box

[TomServo]

What I want to know is, what kinds of protections are there for when information *should* be free, especially if legal matters are involved.

Say a boss sends a sexually harassing e-mail to an employee, a message set to self-destruct in a short amount of time. Poof, there goes any proof that the employee had of the harassment going on.

Say another Enron pops up, only this time, there's no evidence of illegal accounting practices because there's no e-mail trail any longer.

Or, to play George W., what about any terrorists who are using e-mail to communicate? I'm sure that any e-mail communication currently going on is encrypted, but with enough time that encryption could be cracked. It can't if the e-mail just suddenly disappears.

It seems to me that, like most measures of this ilk, this feature is subject to all sorts of abuse. Nonetheless, like others have said, all you really have to do is retype the e-mail if you really want to duplicate it, or take a digital photo of the screen.

Finally, as far as my "right" to share things that were never mine to share in te first place, how does this, in any way, prevent me from *talking* about something I read in an e-mail?

In the end, I philosophically agree with this. Anything that improves privacy is something that I'm all for. The only issue is, I don't think this really does anything at all to improve privacy other than making it slightly more of a pain in the arse to violate it, and frankly, I don't trust Microsoft with my privacy.

Re:Dialog Box

[Johnny+Mnemonic]

The requirement of a .NET passport account probably means that the key for the decryption is held by MS directly. This is no surprise. However:

• Can corp customers manage the keys themselves, in essence being their own .NET passport server? I'm unaware if this opportunity exists in the .NET framework.
• If the answer to the above is yes, would it prevent someone outside the corp network from being able to authenticate against the corp .NET server, and thereby prohibited from reading the email?
• If the network becomes unavailable, will I not be able to get my auth key, and thereby not be able to read email on my local HD? Or once unlocked does the email remain unlocked?
• I'm never, ever, going to use a "MS viewer" for my email. If they expect this service to catch on, they would implement the key exchange as an open standard, that alternate email viewers could write plugins for. That's bad enough--but requiring a proprietary viewer? Emails sent to me requiring the use of this will be bounced back as "undeliverable".
• Not to mention, such email will probably not be scannable for attached viruses (presumably the entire email is encrypted, including attachments)--so either virus checkers will have to bounce them automatically, or let an unscanned email through their gateway. Great.
  
  In fact, that last is almost sure to kill this idea stillborn, once the threat is realized. Would you allow a certain percentage of your email through without being checked? Or would you bounce it back, first?

Re:Dialog Box

[Tin+Foil+Hat]

I don't think that there needs to be a way to query the recipient. Probably this will entail some sort of public key encryption system ala PGP, but unlocked by that ever secure .NET Passport instead of something that you control. Included in the encrypted message will be rules that state what the client program may or may not do with the message, including reading, replying, and forwarding. Apparently, the message may also contain a 'self-destruct' order that instructs the client to destroy it's copy if it meets certain requirements. Who knows if it's only the requirements set by the creator of the content.

Now, this only works if the client plays by the rules. To ensure this, only Microsoft created clients will be able to read the messages. Well, that's the idea at any rate. I leave it to you to ponder whether or not Microsoft's new system can be broken.

Now, having gotten the method out of the way, this brings up some serious issues for we in the OSS movement and for society at large.

Microsoft has stated that there will be a free viewer available that can read these messages. Note that's a viewer, not a true email client. Users of this viewer will not be able to send messages in the same fashion. It is very possible that they will not be able to do anything with the message other than view it, regardless of whether copyright controls contained therein allow for forwarding. Obviously, if you want to be able to use the messages sent to you by someone else, you must use a Microsoft product. That means that you must run Microsoft Windows. Given that Microsoft only makes software for Windows and Macintosh, and will be dropping support for the Mac, I must conclude that this is simply yet another way for Microsoft to control the market, and stifle competition.

Finally, to satisfy the requirements of my moniker, I should point out that Microsoft will be able to read these messages via it's Passport system. Therefore, by extension, the U.S. government will also be able to read those messages. Don't believe the crap that Microsoft is trying to sell you. This is not about you being able to control what happens to your content (as implied in the article by that bleeding heart story about the woman who sent embarassing material to her irresponsible boyfriend). No, this is about Microsoft controlling what you do on your computer with software that you own. It is also about the government being able to monitor your communication.

Only looking out for themselves with this

[wang33]

The only reason they are doing this to stop the leakage of internal memo's about destroying linux etc. But I assume that employees will still be able to print emails, so its all kind of pointless imho.

Wang33

Re:Only looking out for themselves with this

[Tim+C]

But I assume that employees will still be able to print emails

Why do you assume that? Why do you assume that the print function will be enabled for protected emails or other documents?

Now, I grant you that no technological scheme can completely prevent information from being leaked - it can't stop me taking it down with paper and pen, or photographing the screen, etc, but it can at least make it difficult to do. Also, while the photogrpah would be harder to refute, my hand-written scrawl copy of an email could easily be dismissed as a forgery...

I can see this being very useful for companies and even some individuals, but essentially, there is no technological way of protecting data from redistribution by its intended recipient. It's not going to be as easy as just hitting print, though.

Suitable quote..

[Karamchand]

Trying to make bits uncopyable is like trying to make water not wet.
-- Bruce Schneier

Re:Suitable quote..

[squaretorus]

I can't wait to tell everyone I know that sending emails like "isnt the boss a dick" and " julie from accounts has nice tits" to each other is now 100% SAFE because of the new Outlook options to stop forwarding.

Hilarity ensues!

Re:not going to stop leaks

[blastedtokyo]

Actually they thought of that. Cut/paste/print screen are disabled. Of course you can take a digital camera to it or write your own screen capture app but the intent is to prevent casual forwarding.

content management?

[Bandman]

Does it still support copy/paste?

How about printscreen?

Re:content management?

[blizzardsoup]

Is print screen disabled if office is not the active/top window? If not, open a small window, leave it on top (out of the way), cap the entire screen and clip what you want.

If print screen is disabled whenever any office product is running (aka all the time since most users leave outlook running all day), this presents a serious usability issue for the desktop and would make it time to install a 3rd party screen capture app.

Re:Cutting and Pasting

[s20451]

Well, that might be prohibited under a strong DRM scheme. However, there's certainly nothing preventing me from whipping out my digital camera and taking pictures of the screen, then forwarding the images to whomever I please.

Better yet, it could be one of those cell phone cameras. Technology gives back what technology takes away.

Non-Outlook mail clients?

[rosbif]

So when will they release details of the encryption scheme used so that non-Outlook mail clients can be used......? I'm not holding my breath.

Wrong

[tbone1]

The days when you could forward an embarrassing e-mail to your colleagues could be a thing of the past.

Uh, no. Nothing is foolproof because fools are just too damned clever.

Re:non MS mail clients

[guido1]

will be interesting to see how this works with non-MS email clients, esp on non-MS O/S's

As the article stated, "Microsoft says a free viewing program will be available for those who receive a protected document but are not using Office 2003."

However, since this is squarely targeted at corporate enviornments, I don't forsee this becoming a large problem.

Sure, it's bad for the end user information wants to be free blah blah blah, but companies want more control over where their information is going, and MS is providing it in this product. Don't want the FY04 budget leaked? Put a do-not-forward flag on it... Sure, you'll be able to screen-cap things, but casual copying will be prevented.

(We all know that protection can be circumvented by anyone with enough will... This is simply raising the bar for how much desire is necessary.)

That being said, I won't use it, but I'm sure there are corporations out there that will.

Simple question:

[jkrise]

Will it improve productivity in my office? Not my Office, but my real office?

Simple answer: No, it would reduce it.

Thanks for another useless product.

-

Yeah, and it'll stop paraphrasing too. Not.

[Schlemphfer]

Steve,

Great having beers with you last night.

I just got a memo that they'll be laying off 30 people in engineering, starting with Dan. The fucktards have disabled forwarding permissions for it, but drop by my desk on your way to lunch if you want to see.

Ron

Re:not going to stop leaks

[mlush]

Actually they thought of that. Cut/paste/print screen are disabled. Of course you can take a digital camera to it or write your own screen capture app but the intent is to prevent casual forwarding.

casual forwarding is not a problem, its malicious forwarding it needs to hinder

Re:not going to stop leaks

[Keck]

my thoughts exactly; if it's REALLY important, someone will still do it, so this is a lot of effort for almost no gain. Except to piss off your paying customers, something that helps us free software folks .. maybe it's got a good side afterall?

Re:Another example of Microsoft "innovation"

[PaulGrimshaw]

new, blue colour scheme.

See.. they always said the BSOD was a feature !! :)

Paul.

Been There, Done That in Lotus Notes

[borkus]

Since at least version 4 (maybe version 3.0) of Lotus Notes, you could prevent copying, printing and forwarding of a message. Under the delivery options when you're composing a new message, there is an option "Prevent Copying".

With notes, you could still grab a screen shot by pressing "Print Scrn", since that's tied into the OS, not the app.

Worm ?

[cwernli]

should limit way that e-mail messages can be forwarded.

But it won't stop Outlook to be vulnerable to any kind of attack, such as a worm which "forwards" itself to everybody in your address book ?

And non- Windows-2000+ platforms?

[pwagland]

Microsoft says a free viewing program will be available for those who receive a protected document but are not using Office 2003.

<snip>

But the programs will only run on a PC with Windows XP or 2000.

So, what happens when you want to send the e-mail to your family, who run Mac/Win 95/Win 98/Linux/Other Unix Variant?

Platform lockin anyone?

Having said that, it is a good idea. But totally non-enforceable without community buyin, and when you have community buyin it is easily circumventible...

Re:And non- Windows-2000+ platforms?

[bahamat]

So, what happens when you want to send the e-mail to your family, who run Mac/Win 95/Win 98/Linux/Other Unix Variant?

Then you don't encrypt it. Duh.
If you want to make a point, be sure you have one to make before trying.

Some facts

[Some+Bitch]

Ok, this thread is full of people assuming MS are dumb. Monopolists they may be but dumb they're not.

1. IRM allows you to block forwarding of a message.

2. IRM allows you to block printing of a message.

3. Cut and paste is disabled for protected messages.

4. You cannot get round it by using a non-MS mail client, the client will simply not be able to open the email at all.

5. Screenshots are feasible but how many large corporations filter images in email sent externally? I know we do!

This is not going to be as trivial to work round as many are suggesting.

Re:Some facts

[0123456]

PHB solution: force all users to wear blindfolds while in the office so they can't read the mail they've copied.

The real agenda?

[femto]

from the article:

>Microsoft says a free viewing program will be available for those who receive a protected document but are not using Office 2003.

Why would one need a special reader if email standards are adhered to? Presumably this is an attempt to hijack the email system by getting all Office users to send email in a format which is unreadable by non-Office users. The only way to read email from a windows user will be to get a copy of Office 2003.

Personally I will be replying to all such emails with a polite message that the message got garbled in transmision and could the sender please fix the problem in their system.

Re:The real agenda?

[MultisSanguinisFluit]

One can adhere to e-mail standards and still require special readers...

The MIME type for these messages is "application/x-microsoft-rpmsg-message".

Re:The real agenda?

[praedor]

But you are blind to the real agenda: kill off whistleblowers, the only true heros in the corporate/government world. A person with actual ethics and morals would spill the beans on M$ illegalities (or DOJ unethical behavior, or Administration illegal behavior). M$ seeks to make this impossible as all internal emails will be unprintable, unforwardable, uncopyable.

There is no legitimate purpose for this other than to kill the ability of people of ethics standing in the way of unethical behavior. M$ wants to get away with murder (and the DOJ and Administration would be all over this too - no damn undesired leaks, just the officially OK'd leaks about CIA operatives for political gain).

I WILL start carrying a small digital camera with me whenever such nonsense becomes commonplace in any organization. M$ will NOT stop me from being a whistleblower should I ever come across any unethical/illegal activities within ANY organization I am a part of.

Re:The real agenda?

I can think of a few reasons why I would not permit this system in my business:

Hate mail: If a (criminal) employee sends another employee hate mail or simply inapropriate mail that (s)he can't print, forward or save the company will be sued (eventually) for creating a hostile work environment.

Legality: Self destructing communication is almost certainly illegal where it concerns the company's finances, policies, environmental records etc.

Security1: A false sense of security will encourage people to write e-mail that they would NEVER put in open communications.

Security2: Employees will be able to mail items such as source code, to trusted recipients while making it hard to detect the content of the messages or prove it later.

Security3: Rights management implies encryption or it is readily circumvented. Do you want your company's essential and confidential documents encrypted and managed by Microsoft software? What happens if the system administrator gets a bug up his/her but and encrypts the whole lot with a truly random key and quits? Trust the backdoor? Did anybody out there lose data on a Win2000 or XP encrypted folder because you forgot the key or re-installed the SW? What if the SW is faulty and corrupts the document database?

Security4: What about a virus or worm that exploits some 'feature' of the system and it kills your mail system or the patch makes it incompatible with earlier versions that inadvertently expires your entire document database?

Security5: If the message arrives encrypted I can not scan it for malicious attachements. The intended recipient opens it and executes the attachment. Back to square one with incoming viruses. I would like to bounce all encrypted incoming mail with a polite meassage asking that the mail be re-sent in a standard format.

Except for the encryption issue, all the points raised here have solutions but it makes my life more difficult. Also, the existing e-mail system is not broken so why fix it. Secure mail through PGP is possible, easy and dare I say it? Really secure.

There was a time when a company could not safely fire its DP manager or senior programmers. I see that state of affairs coming back to haunt us all.

Mute the world

[LittleBongoMonkey]

I just see the next wave of Worms setting lifetimes on all my email to 0 and blocking all incoming mail from people in my office. Genius.

Re:not going to stop leaks

[0123456]

You forget, it's the PHBs who are the paying customers, not the users. PHBs will love this kind of thing, even if the actual users hate it.

Re:Yeah, and it'll stop paraphrasing too. Not.

[BenjyD]

Of course, it will if MS makes wearing a DRM Helmet part of the EULA.

Typical slimy behaviour

[swordgeek]

Look, can we put the DoJ onto this NOW, rather than after MS releases it? Clearly sending proprietary format email violates the MS anti-trust settlement, and if we get someone working on it now, we won't have to deal with this piece of shite.

There is nothing here--NOTHING--that can't be done with existing protocols. PGP anyone (or GPG if you prefer)? I seem to recall that it had a 'read-don't-save' flag that you could set.

Furthermore, this won't help anyways. Hasn't anyone heard of screencaptures?

This new "feature" has no purpose other than to lock people into MS Office even further. It's a political trojan horse.

And what about disabilities?

[241comp]

So, what about those who are disabled? Will screen-readers be able to read these documents? If not, will major corporations bother using this? If so, what's to stop the screen reader from placing the content on the clipboard or in some other usable place?

Re:not going to stop leaks

[Sexy+Bern]

I got around this a while ago by setting everything to "no hardware acceleration". Bingo! PrtScr captured to clipboard, email-a-mondo.

Re:not going to stop leaks

[actiondan]

casual forwarding is not a problem, its malicious forwarding it needs to hinder

When I worked in corporateworld, casually forwarded emails made up about 50% of my total email workload - I must have wasted about an hour a day on that crap. Sure it's a problem!

Of course, it doesn't look like this new MS stuff is going to solve that problem, as most people aren't going to bother to specify the 'no forward' option. In fact, I think that there isn't really a technological solution - it's a cultural issue.

This isn't Email

[onyxruby]

This isn't email, this is a server based document viewing system. Email is a system of forwarding text from one computer to another through at least one email server. It can have attachments, and even shiny graphics. But it is a message that has been sent.

It stores the material on the server, and truely just sends a notification to someone. The notification itself is email, but that's where email ends and DRM begins. Since the email is really just a link to a server where the document can be viewed, it can't be viewed by "untrusted" platforms.

This is why these emails are only accessible by people with certain operating systems that can be "trusted". Since they can never truely lock out any MS OS short of W2K or XP (arguable on those as well), they aren't going to have a client for anything else. Even with these you'll have to have the client DRM software. You know the software that intercepts calls for things like "print screen", the software that could only be written in Redmond?

This is one way for Microsoft to get the masses to install DRM enforcement software. You know that new job your looking at? The one that requires completing paperwork through a DRM compliant system?

There is a reason that this feature requires Server 2003 and so on, it is because it is an interlocking and interdependent license obtainment system. So the question becomes, since this isn't email, what do you call a centralized document viewing system?

Re:Not a completely new feature

[ncr53c8xx]

Could you elaborate? Notes isn't perfect, but it's more secure than many other products of it's class. Of course, it was built in a different era, so I wouldn't be surprised if it was built with keysizes in mind that are no longer "good."

Notes encryption had a key length of 64 bits, but 24 of those bits were escrowed with US government agencies. As you know, 40 bit keys are trivially easy to break. It was a big issue about 8 years ago. However, I doubt it was discussed in the mainstream press. As for your comment about security, there is no way to know since no one has audited the full source.

Re:Biggest Outlook Beef

[Chanc_Gorkon]

FTP does not always work...especially when the vendor e-mailing you the executable is mailing you something that is nto for the general public....it's only for folks having the issue. There are GOOD reasons for keeping things like this out of the hands of the clueless user reading the web page and good reasons for mailing executables. The virus proliferation by clueless users is why mailing executables got a bad name.