Sticky Tape Defeats Sony DRM Copy Protection

cybrpnk2 writes "As reported by InformationWeek, Sony BMG Music's controversial copy-protection scheme can be defeated with a small piece of tape. According to thinktank Gartner analysts Martin Reynolds and Mike McGuire, Sony's XCP technology is stymied by sticking a fingernail-size piece of opaque tape on the outer edge of the CD. 'After more than five years of trying, the recording industry has not yet demonstrated a workable DRM scheme for music CDs. Gartner believes that it will never achieve this goal as long as CDs must be playable by stand-alone CD players.'"

And in related news

[Billosaur]

...shares of 3M rose by 15 points

From Information Week: According to Gartner analysts Martin Reynolds and Mike McGuire, Sony's XCP technology is stymied by sticking a fingernail-size piece of opaque tape on the outer edge of the CD.

Ok, if I'm a Sony exec, do I feel very stupid right now?

From Gartner: After more than five years of trying, the recording industry has not yet demonstrated a workable DRM scheme for music CDs. Gartner believes that it will never achieve this goal as long as CDs must be playable by stand-alone CD players.

And being the music industry, they will not give up. Like lemmings to the sea. Really, there's nothing they can do. If someone can create software to copy-protect a CD, some enterprising soul can create software to defeat it.

They'll keep it up, because they will be in a blind panic at the idea of their profits drying up, even though they could spend time and effort creating some kind of shared, P2P music publication system whereby they could make money and people could get the music they wanted. But that's just one man's opinion.

pics

[towsonu2003]

i'd like to see some picture-demonstration for the less language-savvy.

Not a smart solution

[Rude+Turnip]

Gee, all I need to do to avoid the backdoor* software is to stick a piece of tape to the CD and risk the tape coming off and damaging my CDROM drive?

BTW, when explaining the Sony CD fiasco to non-techie folk, using the term "installs a backdoor" seems to be very effective.

If Piracy is the problem, is DRM the solution??

[archiereed]

In 2003 some of the HP Labs researchers looked at the related issues and published a paper titled: "If Piracy is the Problem, Is DRM the Answer?" http://www.hpl.hp.com/techreports/2003/HPL-2003-11 0.pdf

You might find the white paper interesting if you've not read it before. This caused quite a stir when it was released, both inside and outside HP, and is still quite relevent in light of the Sony issue. This provides an counterpoint even inside HP where we try to maintain some form of management across all the issues.

The conclusion reads:

"We pointed out that unauthorized use and unauthorized acquisition are two aspects of piracy. A key concept is how licenses are bound to content. We saw that various kinds of DRM technology address these issues in very different ways, but that all of them have some kind of flaw that make it highly unlikely that they will be able to solve the problem of piracy. The real problem with piracy is that it takes only a small fraction of users who are capable of dissociating licenses from content to make managed content available to a significant fraction of users in unmanaged form.

We explored the concept of draconian DRM in which devices that handle managed content do not handle unmanaged content at all. Draconian DRM could potentially be effective at eliminating piracy if it were ubiquitously adopted, but introduces a new problem of how to handle public content.

Our conclusion is that currently proposed technical measures will not be able to completely stop the illegitimate distribution of pirated content. We believe that content producers must take steps to compete with the piracy as an alternative."

Best way to break Sony's DRM

[Anti-Trend]

I still maintain that the best way to defeat Sony's DRM is by simply not buying their music. All the fuss and legal backlash is nothing if we are two-faced in our dealings with them, and indeed all big industry. If we're chiding them on the one side for their vicious tactics and financially supporting them on the other, they hear the message loud and clear: we're pushovers. I think that's the answer they were prodding for when they first decided to include XCP on their CDs in the first place.

You can't spell analyst without...

[griffjon]

Gartner 2001: (18 July 2001 'Research Management Update: Content Management - Timetable for Digital Rights Management' IGG-07182001-02 written by Michael Calvert; Analytical source: A. Weintraub, from http://www.dcita.gov.au/drm/1981.html:

Gartner predicts that 2003 will be a critical year for DRM when mainstream content providers begin to understand and identify the value propositions DRM systems can provide. Around this time full production systems will be launched and there will be some settling in technology and standards. This will take some of the 'chaos' and risk out of choosing a particular technology for each functionality area. More importantly, there is likely to be a higher availability of well-integrated and flexible systems from outsourcing services or Application Service Providers (ASP). This could dramatically lower the capital and technical investment required from content owners to implement and utilise a range of DRM, ecommerce, marketing and content techniques. In Gartner's view, it won't be until 2004, or more likely 2005, that revenue models start to mature and mainstream adoption of DRM becomes commonplace.

By 2006, Gartner sees the DRM market consolidating and a standard rights description language emerging. They identify the factors that will affect the success of the market as:

        * the acceptance by consumers of the regulation of e-content
        * the capability of the industry to establish a 'standard rights' language
        * the cost balance between developing a secure DRM solution and the potential revenue to be gained from DRM secured e-content management

Not to mention September 2005 (http://www.gartner.com/DisplayDocument?ref=g_sear ch&id=485976):
"Organizations increasingly need to create, store, retrieve and manage rich media files. Those that successfully cultivate a digital asset management environment can cut their associated operational costs in half."

HISTORY REPEATED!!!

[SmurfButcher+Bob]

Oh, this is too funny.

Many years ago in the Apple ][ era... Lotus 1-2-3 was a great spreadsheet. They invested a huge pile of money to make certain that you could not run their program without possessing the original disk. And try as we may, we couldn't figure out how they did it... there was one sector that was funky, but it didn't make any sense.

Then, by chance, my neighbor had a nice RANA drive - and it had a 'write protect' button on the face, that you could manually toggle. We stuck a (non-working) copy into the drive to begin the arduous task of single-stepping through the code, and accidentally hit that button while doing so. The result?

Lotus fired right up!

They spent way too much money using a laser to create a specific media defect in a specific place; upon startup, the program would attempt to write to that location. If it failed, it knew it was the original. If it succeeded... then there was no defect there, and it was a copy.

All that time and god-knows-how-much-money they invested in this scheme... only to be defeated by a .01 cent piece of 'write-protect' tape. And now, Sony repeats it with the same level of hubris... that's too funny.

Re:HISTORY REPEATED!!!

[David+Off]

A laser? The versions of 123 I owned had a pinhole through the media - used to trash floppy heads.

Re:HISTORY REPEATED!!!

[SmurfButcher+Bob]

Heh, save that bad-boy if ya can... you might be able to get your money back :)

The one we had, there was a little "blip" of a burn-mark on the one side. We had no clue how it was made, until someone published something about in... Byte? Or Nibble that month. On ours, anyway, that side contained the defect; the other side was still writable.

FRAUD !!!

[Nom+du+Keyboard]

In addition to everything else Sony is being sued over I wish they'd add Fraud to the list.

People buy CDs to get the best 44.1Kbs uncompressed audio usually available for purchase. Yet the DRM'd versions are highly compressed audio files (hence things like the illegally included LAME decoder in the XCP package) where true quality is sacraficed in order to achieve compression levels allowing it to be sandwiched onto a standard CD.

Some very fine audio chips and speakers are available for computers these days, and certainly some people use their computers as their primary audio system. Yet were on the packaging, or EULA (an astonishing concept for a music CD in and of itself), does it tell you that you'll receive inferior quality playback when played on your computer. How many people believe that the DRM'd discs are actually playing back the .WAV files, instead of WMA or other crap files? It's fraud to not inform consumers that even after they agree to the DRM that they'll receive degraded audio as a result -- and Sony should have to pay for that as well!

DRM will NEVER work.

[Pedrito]

Gartner believes that it will never achieve this goal as long as CDs must be playable by stand-alone CD players.

As long as it must be playable in a standalone CD Player? As long as media must be visible or audible, DRM will never work. It might for a while, but people are always going to figure a way around it. I've argued this over and over. The software industry which, let's face it, has been at this copy protection thing a lot longer than the music industry and has quite a bit more specialization in it, still hasn't come up with a solution that works for software. What makes the music industry think it will succeed where this industry has repeatedly failed?

The software industry has managed to survive, despite rampant piracy. M$ has become enormous, despite the rampant piracy of Windows and every app they produce. The music industry just has to bite the bullet, accept that piracy is going to happen, but for God's sake, stop treating all your customers like criminals. All that will achieve is alienation and it will eventually lead to their demise when someone comes along and offers a competing product without treating the customers like criminals.

Re:Does this violate the terms of the DMCA?

[omeomi]

Sadly enough, that's actually true, isn't it? Even this /. story violates the DMCA...

Re:Any Linux-proof DRM...

[multipartmixed]

> the drive made funny noises faintly reminding to 1541
> (that's the C64 floppy drive for you youngsters) read errors.

It may have been the very same thing.

The 1541 would recover from read errors by telling the stepping motor to position the head WAY past the outer track. Of course, this would cause it to bang it repeated against the cam stop. This would insure that the head was properly aligned for track zero (and probably why those damned drives went out of alignment so often!). Then, it would count forward the right number of tracks, and try to read the data again.

Thanks Slashdot

[fury88]

Thanks guys, I submitted this same article yesterday and it was rejected!

just don't buy CDs..

[tomcres]

I don't even buy CD's anymore. It's not worth the trouble of wondering what it's going to do to my Windows machine, having to run downstairs to rip it on my Slackware box, or wondering if it's going to play in my DVD player or car stereo. Since I've managed to get to the point where I have enough accessories for my iPod that I can play that anywhere, even in the car, I just buy all my music from iTMS. I've had to buy a couple of things from MSN Music that I couldn't find on iTMS, but I just burn that to CD-R and rip it Apple Lossless and get the same effect. It's not perfect, but it's good enough for me.

Re:Freedom cannot be defeated!

[GoatMonkey2112]

It does and doesn't compare to something like a web site. For example, you have a site like CNN which is delivering the same information in a different format that you can otherwise get on TV. Now that information changes so much that they can get you to keep coming back for more every day. And they can also give you the information for free with included advertising. You could if you wanted to capture the video streams from the web site, or just simply record it with your TIVO or VCR.

Music on the other hand does not change quite so often. That video file or text file that you got from CNN will be something that you don't care about in a couple of days probably. Music on the other hand could still match your tastes 20 years from now.

The other thing, music is not really an abundant resource. I do not personally know anyone who has ever written their own song. But everyone I know has typed up info and posted or transmitted it on the internet at some point. Secondly, the quality of music varies greatly given the artist recreating it.

Record companies do need to change their expectations for profit in the new world of online media. Anyone with a web site can now transmit their own music to anyone in the world. Indie music is rising in this new environment, and big record companies are confused as to what to do about it.

It's simple competition, the big guys just don't like the new way of playing the game. Sink or swim record labels, lawsuits will not save you.

Re:It's sticky tape now, huh?

[alienw]

Actually, you can't measure any fidelity-related parameter in audio systems with an oscilloscope (or any other cheap, readily-available instrument). Distortion, for instance. Anyone can easily hear 1% THD, on any system. You'll see visible distortion on the scope only when it's at about 10% (when you get visible clipping). In fact, most digital scopes use 8-bit ADCs -- try listening to music on an ancient 8-bit soundblaster.

A very precise spectrum analyzer designed for low frequencies would be much more useful, but you likely won't find one even in a well-equipped lab; a really good one might be _very_ expensive ($50k to millions of dollars).

Quality is very difficult to measure, simply because the ear is a hell of a lot more sophisticated and sensitive to nonlinearities than any man-made instrument. I think listening to a system is much more useful than trying to measure it with cheap, primitive instruments (like THD meters or oscilloscopes). You can have two systems that measure the same THD but sound drastically different, simply because THD is a simplistic measurement.

I hate audiophile snake oil ($500 power cables, $20k "interconnects", and magic boxes) as much as you do, but don't assume you can measure everything. Nobody knows how to quantify, for instance, the taste of something. There same applies to audio.

Old trick

Remember when they used to write unreadable corrupted data to the begining of the disk, and you could cover it up with a thin line from your sharpie marker and then be able to copy the disk.

although they eventually solved the problem with new burning software, I've seen this old trick before.

Re:Sony is a "serial DRM offender".

[wintermute740]

"A music retail store spokesman said that Sony's rootkit attack has become public just before Christmas. Customers can easily choose some other gift now that they are scared about computer attacks. Sony's attack has hurt the entire music industry, not just Sony. Also, the damage will continue after Christmas. "

Has anyone from the RIAA weighed in on this fiasco? Not that I'm buying anything from them ever again, but it would be interesting if they did the right thing and came out publicly against Sony. I know it's not gonna happen, but it would still be interesting nonetheless :)

Re:It's sticky tape now, huh?

[cbiltcliffe]

How that would translate into better sound is an issue left to those who suffer from the mental disorder known as "Audiophilia".

I am an audiophile. I don't have Monster cables, and I haven't degaussed my CDs. Yes, thin, shitty speaker wire loses bass, if it's run more than 3-4 feet. I've verified this myself. But considering the sad quality of the speakers with most current stereos, well..... they've got no bass to begin with, so it really doesn't matter.

I've got my bookshelf stereo hooked up to a pair of 3-way Audio Research speakers, with some decent 16, possibly 18 guage wire, and it shakes the floor quite nicely. The speakers probably cost about 4-5 times what the whole stereo, including speakers, originally cost, but that's where the big difference is.
I've hooked a pair of Bose speakers to a cheap-as-hell(TM) RCA bookshelf stereo, and it sounds great. Put a pair of cheap speakers on a $1000 Pioneer or Kenwood receiver, and it'll sound like hell. 99% of the sound quality is in the speakers, provided you've got an amp with enough power to drive them. And I'm meaning 5-10 watts, not 250.

My component stereo is an old circa 1985ish 20W/channel Hitachi, with another pair of Audio Research Speakers. Again, good speakers, decent speaker wire about 16 guage, and it blows away the sound of anything else in the neighbourhood.

There are nutcases who'll say you need to spend over $1000 on every component, and at least $100 on speaker wire, but there are people who spend $1500 on a pair of GeForce 7800 GTX cards as soon as they come out, too. Yes, it's sweet, but what's the point? It's hardware junkie orgasm-inducing, that's all.

Spend the money where it counts. In home theater, that's the speakers.

EA's Chuck Yeager gamesim story and related rant..

[iamcf13]

Back in the 1980's when computer game piracy was at its peak(?) I heard firsthand that copies of this game would deliberately reformat the disk they were on upon detection!

As with the case of Lotus 1-2-3, a write-protect tab solved that 'problem' and a copy of this once-popular gamesim worked as normal.

After enough consumer backlash, game copy protection became more subtle or was somehow integrated into the gameplay of the games themselves somehow.

To this day, the best example of this I know of were the 'launch codes' from another EA hit game STARFLIGHT (I).

It's a shame Electronic Arts has devolved into a tool of major sports franchises and not as the cutting edge computer game company they used to be
with such releases like STARFLIGHT, its sequel, and the 2 'CONSTRUCTION SET' gamesims they put out for pinball and music composition....

Another major copy protect annoyance are the 'gotta-have-the-CD-in-the-drive-at-all-times' kinds of protection -- very lame and potentially destructive to your valuable investment in the CD game itself and CD-ROM drive it is spinning needlessly in....

The simple solution to all forms of media/IP piracy are low, competitive prices but that would conflict with the corporate duty to make as much profit as (legally?) possible. Because of this, we now live in a world filled with DRM, DMCA violations, and IP copyrights that will likely outlive everybody alive who reads this post.... :(

The corporate stance of the media industry as a whole is essentially this: Your purchases have worn out and you want them again on 'replacement media' for a small replacement charge? Fsck that! Buy another damn copy at full retail price! (If it's still in print if you're lucky.)

This happened to me years ago when my cassette tape copy of John William's E. T. The Extra-Terrestrial soundtrack wore out from playing it constantly (and enjoying it). Fortunately(?), I was able to rebuy it again on CD. In a perfect world, the term 'out of print' would be unheard of and licensed media bought could be replaced for just 'materials, shipping, and handling'. But the industry model of artificial scarcity brings with it corporate greed and eventual subsequent consumer dissatisfaction. Notice how the advice nowadays is to wait for 'ultimate edition' DVD releases of favorite movies instead of buying the bare-bones release now and the 'ultimate edition' later if/when it comes out? Perhaps the 'shining' example of this 'atrocity' is the 'two DVD release' of KILL BILL as 'two separate volumes' instead of as one, complete 'set'.

Touching on DRM for a bit, look at the hypocrisy of USA government/big business persecuting 'DVD Jon' and that guy from Russia that cracked DVD Content Scrambling System and Adobe's protected PDF format respectively. Why is it, due to DMCA, legal to import strong cryptograpy into the USA to protect the secrecy of your own affairs but to reverse-engineer domestically created encryption schemes that 'protect media' for personal uses only is a felony offence worthy of serious fines and jail time? Has society come to the point that human life is so cheap that we can throw them away (in prison for 'minor', non-violent offences) and just make more in 9 months or less so long as the 'precious cash' keeps flowing between big business and big government here in the USA?

'Twould be nice if the USA copyright system went back to the original 14-year max format established by the Founding Fathers. If that were the case, these and other 'Slashdot Favorite Films' for example would be public domain by now....


2001: A Space Odyssey (1968)

Close Encounters Of The Third Kind (1977)

Alien (1979)

Blade Runner (1982)

E.T. The Extra-Terrestrial (1982)

Aliens (1986)

Superman (1978)

Star Wars (1977)

The Empire Strikes Back (1980)

Return Of The Jedi (1983)

The first six STAR TREK movies (1979,1

Re:It's sticky tape now, huh?

[nathanh]

Actually, you measure THD with a tone generator, a filter, and a voltmeter. Do you even have a EE background?

Yes, I do. I graduated with honours from a leading Australian university several years ago. As part of my studies I not only built this equipment but also did the mathematical derivations to prove the validity of the equipment. I also build audio equipment as a hobby and I really dislike egotistical pissants who use the "Do you even have a blah blah background" pompous statement in an attempt to discredit another person.

Also, which ADC chip are you talking about?

Chip? Who said anything about a chip? What the hell are you talking about?

Second, THD is a primitive measurement.

You were the one who raised THD as a strawman argument against electronic test equipment. You made the claim that audio engineers measure THD by squinting at 8-bit scopes looking for visible clipping.

You are arguing that it is impossible to tell a recording from the original sound, which is obviously not the case.

No, I'm not. Yet another obvious attempt by yourself to divert the attention from your original gaffe. I'm arguing against this claim you made.

simply because the ear is a hell of a lot more sophisticated and sensitive to nonlinearities than any man-made instrument.

Because that statement of yours is pure and utter crap. The human ear has well known boundaries that are easily surpassed by decent test equipment.