Work Around for New DVD Format Protections

An anonymous reader writes "For the new Blu-ray and HD-DVD formats, Hollywood implemented a complete copy protection scheme; almost everything has to be encrypted and authenticated. Despite the crypto-stuff in Advanced Access Content System and High Bandwidth Digital Content Protection, they left the backdoor wide open — they forgot about the PrintScreen button. Using this function you can create exact digital copies of a film picture-by-picture and reassemble them into a stream."

hrmm

[paradigmdream]

thats quite a bit of work to copy a movie

Re:hrmm

Writing a single script is a lot of work to remove the protection from an any number of movies?

Re:hrmm

[kimvette]

I don't know about your computer but on mine the printscreen function isn't exactly speedy, neither in Windows nor in Linux. I doubt 24fps or 30fps is doable with such a script. Right now DVDs can be ripped and transcoded faster than realtime.

The best solution is to crack the new encryption (worst case use brute force harnessing setiathome-style P2P networks to speed up the process), obviously.

Why would I want to it cracked (I'm not the one to crack it, I'm no cryptographer)?

  - I run Linux. I should not be locked out of media I purchase over the counter? Sure, you'd argue I dual boot my system, so why not reboot to Windows? Well, I have booted Windows MAYBE three times this year, twice to pull files from my telephone and once to run OCR (since gocr and orcad suck).

  - When I buy a DVD, CD, or Foo-DVD, I OWN that copy, and short of commercial redistribution of copies, I can legally do pretty much whatever I want with that media and the content, providing it is within Fair Use guidelines. Viewing on Linux is fair use. Transcoding for viewing on my crappy old iPaq is fair use. Ripping and transcoding to keep a copy on my computer's HDD is fair use. Giving copies away is a grey area and not so clear cut. Commercial distribution of those copies is right out, well outside of the realm of Fair Use.

  - I run CRT monitors since LCDs atill lag behind in resolution, color purity, and contrast ratio. They may be desk estate and power hogs, but (at the high end) they're superior to LCDs in many ways at this time. I should not be forced to view content at standard definition 720x480 or 640x480 because I have a higher-end monitor which lacks DVI and therefore no HDCP. Ditto for the television I'll be buying - the one I want with a sufficiently high contrast ratio, image quality, and a plethora of inputs (and is NOT Sony) lacks HDCP. Why should I be forced to view downsampled content?

MPAA: If you do lock users out of legally-purchased content, you do so at your own demise. I for one will not purchase DRM media where the DRM cannot be stripped off and recoup my Fair Use rights to PURCHASED content (that's right, it's PURCHASED, not LICENSED, you MPAA asshats). You will be creating a pirate market the likes of which you have never imagined, because when you fuck over your LEGITIMATE paying customers, they compare the two options and see that they are better off engaging in copyright infringement than paying for a crippled product. I'll become one of those pirates the day you kill off DVD. Right now I buy, on average, anywhere from 5 to 15 DVDs a month - my collection in the last few months has quickly grown from under 150 to over 300, to the point where I can't even keep all the rips on my computer any more. I'm the kind of customer you don't want to alienate because I am a PAYING customer and I purchase a lot of movies (I hate rentals). If I download a commercial work, it's to preview it to decide whether or not I want to buy it (e.g., THX-1138, which I wasn't sure would interest me, but ended up liking so I purchased it). You'll be losing me as a customer if you follow through on this in your quest to get perpetual copyrights and eliminate fair use. In other words: Fuck you, MPAA.

form. This "front" is obvious.

[yagu]

problematic for other reasons

This copy protection quagmire (we need to come up with a withdrawal plan)... it creates problems in other ways on other fronts.

Consider the long discussed issues in general with DRM and DRM's interference with easy adoption of new (and really potentially very cool) technology for consumers. This has been discussed to death on slashdot as well as other forums -- and remains one of the foremost threats to the success of HD in any

What may be less obvious is what starts to happen when these tiny holes appear in the digital dike, and the industry discovers they're gaping holes, and the patching begins, to the detriment of other accepted technology.

In the case of this described "hole", a screen print? This becomes the DRM's worst nightmare? If they succeed in lobbying the PC industry and others and get this hole blocked, all of a sudden a long-accepted practice, i.e., screen printing, becomes suspect and may even be taken away as an option because it is potentially used for pirating.

Don't discount the possibility this could happen. A few years ago all may have pooh-poohed the idea as preposterous because computers just plain old didn't have the horse power and storage to pull this kind of feat off. Today they do. And if someone does start pirating DVDs this way it would be predictable the MPAA could go after that technique, maybe successfully.

Unintended consequences. I would find it highly objectionable to see the capabilities of my computers to expand and my ability (or permission) to use those capabilities diminished.

Get right.

[RedOregon]

Hollywood didn't implement squat.

They browbeat/bribed the companies that developed the software to implement it.

Splitting hairs, maybe, but Hollywood would have trouble implementing a flush toilet.

Real pirates DUPLICATE

[erroneus]

To make "other" copies is too troublesome. As always, real pirates will use the means they always have. They will work "off hours" at DVD publishing sites making uncounted copies indistinguishable from the counted copies. They will have the production equipment in their homes to make exact duplicates.

This is not about stopping piracy because these measures to nothing to address the two primary methods. What it does thrwart is casual consumer copying to better ensure that the consumers will buy multiple copies of the same stuff.

What I am saying is not new and has been repeated since the creation of the first DVD format.

Those Idiots

[frogstar_robot]

Now was not the time to splatter this information all over the world. If they had waited for wider deployment, this hole could have been kept wedged open as closing it on hundreds of thousands of clients wouldn't have been terribly practical.

Remember would be DVD-Jons, if you find DRM holes in new media tech SHUT YOUR YAP UNTIL EVERYBODY AND HIS DOG HAS BOUGHT SOME. THEN RELEASE THE INFO. When you do release the information, do so complete with "mom friendly" utilities and use warez "spreaders" to be sure everybody and his dog can start using it right away. This also complicates shutting the hole in various social and technical ways.

DirectX recorder

[cjb-nc]

DirectX recorders exist, primarily used for recording videos in games. I'm pretty sure most DVD player apps use the same directx layer, and so could easily be recorded by such a program. This is just an idea off the top of my head.

Result: watch for the MPAA to start outlawing your favorite DirectX recorders in the near future. Seems they will always find it easier to prosecute the loopholes than to fix their own stuff.

Does HDCP solve this?

[MasterC]

High-Bandwidth Digital Content Protection (HDCP) "protects" DVI & HDMI interfaces but for this to work on a regular PC then the OS has to be in on the deal as well, right? So if a drive and video card support the devil that is HDCP, does this "back door" work if the OS is in on the HDCP? I would venture a "no" on that one.

Taking print screens is a weak solution, but a solution nonetheless. All it takes is one person to have the patience or scripting skills to automate this for a copy to hit the internet. One. That's the problem with DRM in that it may deter most people but to be totally effective it requires determent of everyone. Feeding millions of individual frames to an encoder is not beyond some people, I'm sure. Especially since hollywood raised the stakes.

If this is a back door, then it's one of those miniature clown doors. When someone figures out a way to completely strip out AACS (like what was done with CSS) then we can call AACS hacked and laugh again at the never-winable battle that is DRM.

DRM is unwinable because you have to give the decryption key to the user so that they can use the product. If you don't give them the key then they can't use it. So DRM gives the encrypted data and the decryption key to the user every time.

Re:Does HDCP solve this?

[Stalyn]

TC(Trusted Computing) solves this. TC puts encrypted data in memory that is unavailable to unauthorized programs(the OS as well). And if they try to access this memory the hardware component, in the worst case scenario, becomes a brick or more likely the component just shuts down.

That's the real fear of DRM with TC. In essence you won't even own your computer anymore.

If it can be seen it can be copied

[sxmjmae]

Anything that appears on my computer screen I can copy - even streaming video.
It is not that hard of thing to do, even if you have to write the code yourself.

Not so much, really

[Weaselmancer]

It would be a lot of work, if you did it manually. The print screen button is really just a proof of concept idea. Remember that the device is a computer and they excell at repetition.

For example, it wouldn't be too hard to write a DirectX driver for a virtual display device that simply passes every frame it sees into a filter for recording. Same should work for audio, really. Just take the inbound stream and stash it somehwere. As long as you've got the bandwidth inside the machine to move the data and the space to store it, why not?

This is why MS is pushing so hard for that "driver verification" thing. User created drivers can bypass the DRM just before the media gets pushed out to the hardware. The Windows box simply isn't built for DRM level trust at all points in a broadcast. Yet, anyways. It's still possible to break the chain somewhere and extract content. I'm guessing that'll always be the case too, at least for a good long while. Only way to get around that with what we have today would be if MS started selling PCs that are welded shut.

Re:Not really a backdoor

[ratboy666]

This *is* a backdoor. The digital data is in the frame buffer, but cannot be extracted (programs that are not trusted cannot be run). The Print Screen function is trusted, and so can run even with end-to-end crypto. The Print Screen function has access to the entire frame buffer. I don't know of another way to do this -- this one is actually brilliant.

And, Print Screen can be scripted. The player can ALSO be "scripted". As in, pause, and single step ("consumer" features). As to the speed of such a utility -- I would estimate that the re-encode process for a typical movie would take around 400 minutes (on a "typical" high end PC, see next paragraph for the amount of data involved). Ripping the audio track is more difficult (especially in full 5.1+ glory), but the technology for that is known. Time for that is real-time. Pulling a figure out of my ass, I would think a usable rip would take 800 minutes.

It's not "2 trillion" screen captures. It is a lot of data, though. At maximum resolution (1920x1080p) its 2 million pixels per frame. At 24bpp, that's 672 GB per hour (108,000 frames). The data HAS to be jammed through an encoder right away. This, of course, introduces new artifacts (its not going to be a "perfect" first generation copy). But its still going to be better than DVD quality.

I believe that the keys for this software will be revoked, and the current users (if any) "upgraded".

The point that this attack makes is that "DRM" is actually rather laughable. Your audience needs the decrypt keys, and yet can't be trusted with the decrypt keys... It just isn't stable.

Ratboy.

Just like iTunes "DRM"

[nickheart]

**warning, rant**

I'm sorry, but am i the only one who thinks all these codecs, DRM tools and other garbage are just a waste of time?
There are already many ways to get a clean WAV file from anything playing on your computer, drivers that hook into the direct sound and just copy what ever is there. Or how about just burning the CD from iTunes, then ripping it with a freeware tool?
What these XXAA need to do is just understand that if you can watch/listen to it, it can be copied. That's it! Make people want to buy the product for other reasons. I own sooo many different seasons of different television shows because i like to have the boxes sitting on display. Anywho, is this really news? another attempt to create "un-copy-able" media failed?
thanks for listening

**end rant**

Trusted Platform Module

[tepples]

Now with virtualization technology, where the OS is running virtually, or in VMWare, you'll be able to do a "Print screen" at a higher level than the OS

But if the PC's Blu-ray Disc or HD-DVD player detects that the operating system is running virtualized, or if you have your computer's Trusted Platform Module turned off, then the software will decode at 960x540 at best or refuse to run at worst.