Slashdot Mirror
Cost Analysis of Windows Vista Content Protection
David Gerard writes "Security researcher Peter Gutmann has released A Cost Analysis of Windows Vista Content Protection, a detailed explanation of just what the protected-content paths in Windows Vista mean to you the consumer: increased hardware cost and even less OS robustness. 'This document analyses the cost involved in Vista's content protection, and the collateral damage that this incurs throughout the computer industry ... The Vista Content Protection specification could very well constitute the longest suicide note in history.'"
Our company did last year, cities of Vienna and Munich did, French parliament did, it should work out very nicely for you too. Our former XP users love KDE.
No need to put yourself through pains when you can improve security, save money and achieve a good deal of vendor independence all at the same time. Why support the Microsoft monopoly by paying ridiculous prices for bug ridden software with DRM restrictions, when you can run Free software on the industry standard (and thus inexpensive) hardware?
Knowing everything I know now, I only regret that we did not migrate to GNU/Linux sooner.
It really doesn't matter. Before long each new Dell and every other new computer will be shipping with Vista. It could be the worst operating system ever, and within a few years everyone will be using it. There is virtually no way for Vista to fail, given the circumstances.
Every time I see an analysis of what DRM means to the consumer, I see all this crap about how it's going to make things more expensive and lower quality. And that's true - SOME things will be more expensive and lower quality.
But these analyses never stop to consider HOW MUCH will be more expensive and lower quality, or exactly what changes we're discussing. What will be lower quality and more expensive is the DRM-protected content. And DRM sucks. People will complain. Vendors will eventually listen.
At the moment, we have a lot of content providers who refuse to provide any content without DRM because they can't imagine making a profit otherwise. DRM gets them to provide something instead of nothing. Historically, unprotected content outperforms protected content; because you spend nothing trying to stop people from stealing it, you recover more revenue than you were losing to theft anyway. If we just let providers choose, they will eventually make the right choice. We can't force them to make the right choice NOW, because they won't make it. They'll provide zero content.
That's the false dilemma. Everyone seems to think the choice is protected content or unprotected content, but it's not - it's protected content or NO content. Fighting the protected content is not going to get you what you want. You have to let the providers make their stupid DRM plans and try them, so they'll see for themselves that it's stupid.
Microsoft cheerleader, blue flag waving, you got a problem with that?
The Vista Content Protection specification could very well constitute the longest suicide note in history.
If hysterical stuff like this is the best the anti-Microsoft forces can come up with (and this guy isn't the first one, just the latest in a long line of hysterical essays), it's pretty clear that Microsoft ain't that bad as a company, despite what some people want to believe. Maybe, just maybe, if you have to resort to that kind of rhetoric, maybe your position isn't that strong?
Disclaimer: I don't hate Microsoft. I am, however, frequently annoyed by their mediocrity, and unbelievably frustrated that someone doesn't have the balls to start a company dedicated to making an absolutely, positively 100%-compatible Windows clone based on a Unix-like operating system.
Sometimes it's best to just let stupid people be stupid.
But, but, but... what about the high cost of retraining everyone to use all these new weird applications that don't make as much sense as Windows applications!!!? What about the steep learning curve since Linux is just inherently harder to use!!!? What about the fact that when the user tries to hit some valid work related site that needs to access media like Powerpoint, Flash 9 and higher, Windows Media Video, and the like that they won't be able to or will have a reduced quality end-user experience compared to MS Windows??? I've seen the Xine plug-in for Firefox and it doesn't work right. Instead of embedding the content in the browser as it should it pops open a new window and only about 20% of the time does the content actually play!! What about the fact that unless you've got a few gurus on your staff, when there's a problem there's NO ONE to go to for support once the problem is out of your league? Forums? HAH! Yeah, you've got a down critical situation with your users and you're going to fart away valuable time on forums where you may or may not get an answer in a day? A week? A month? A year? Never? The only answer if to get Windows Vista because it was built for real work and not for geeks with no life. Got that?
[DISCLAIMER: The poster called 'eno2001' does not believe in what he stated above at all and is merely parodying the typical lies and misconceptions about GNU/Linux that come from the anti-Linux crowd. The poster called 'eno2001' expects many good responses to the false arguments presented above from the pro-Linux community. All anti-linux sentiments will be laughed at unless you're really good at what you do. The 'eno2001' has spoken.]
-"...bad old ideas look confusingly fresh when they are packaged as technology" - Jaron Lanier (Digital Maoism on Edge.o
I think the point was more on the lines of, if you want to play blu-ray discs all you need to do is buy a blu-ray player.
But in reality that $2000 LCD monitor you have isn't going to help because it can't tell the video card that its a protected device, well you need to go buy a new monitor.
Wait that $500 video card can't detect trusted monitors, better go buy a new card that can.
Oh yeah, and that all digital surround sound system, well it isn't going to work at all so you need to go buy an analog one.
Thats incorrect. Degradation is recommended by the HD standards only if the content provider has opted-in for content protection but the hardware used doesn't provide a complete protection path to the display.
So non-opted content will display with full fidelity regardless of whether a non-secured or secured mechanism is used to display the content.
Yes, he tends to be a bit outspoken at times. He's also a veteran contributor to the security field and tends to know exactly what he's talking about. So before dismissing what he has to say, you owe it to yourself to check his reasoning.
Parity: What to do when the weekend comes.
"Not an actor, but he plays one on TV."
A classic, absolutely classic instance of the thesis which Olson demonstrated in lots of case studies.
All special interest groups will find it in their interests to impose on society costs hundreds, thousands, millions of times greater than the benefits they receive.
In the present case, Big Content, to protect its rents, is imposing measures which will end up costing the US and the West enormously more than any benefits to Big Content.
But they don't care, of course, because even if we are all worse off, they are a little better off.
And so, you discover if you examine economic history, that revolutionary convulsions every 50 years or so benefit economic performance, by abolishing encrusted priveliges of various groups. And this is why 19c France in constant turmoil outgrew 19c stable Britain. And why the post civil war South did so well in the 20c... And why Germany grew so fast in the fifties.
And why the US is falling into paralysis today....
Well, Gutmann is known in my circles for having done some good work, and having a track record that goes back for years. Things like trying to get the word out on how bad RC4 encryption was (and I wish IEEE had paid attention before the absurdly-named WEP was created--the RC4 issue was *not* all about key length, despite Microsoft claims), breaking early Windows pasword encryption, breaking a couple of disk encryption schemes, pointing out some serious flaws in Linux VPN software, etc. The list is fairly long. Apparently some people here think he's some sort of standardized media pundit--just another talking head. Uh, no.
Although some of what he said is new to me, I know he's dead right on some other bits. I know I'm very much prepared to give the man the benefit of the doubt on the parts that are new to me. Which sucks. To me, the best thing about Windows is that it was the central force that drove hardware into commodity status, and lowered all of our costs. Now we may have to give some of that benefit back. That isn't something I'm happy to do, particularly for the sake of Vista, which I'll never use.
I don't see how you can say the piece wasn't about costs. That thread was all through it. You expected actual numbers? That's *very* proprietary information to any vendor. Nor is it likely that the vendors themselves have much hard data yet, in the specific case of Vista, as it's very early innings. They can't even be sure of the adoption rate yet, so fabrication contracts, and a myriad other details are likely to change fairly rapidly over the next few months.
Yet it's very clear that the broader picture in one of increasing costs for hardware vendors. Some of that will probably just mean lower margins, but even that doesn't mean that only investors will be hurt. It also means less R&D, which isn't good for anyone, in the long term. And some of those costs *will* be passed on. Investors will demand it.
There are other issues, of course--reduced functionality and stability, yet more difficulty in avoiding binary blobs in GPL kernels, etc. None of this is good news to assorted non-Windows people, though much of it will hit Windows users as well. It's not the end of the world (and wasn't presented as if it were) but it's certainly bad news.
What you do with a computer does not constitute the whole of computing.
You know, this point is apparently harder to understand than you realize. After all, even some people who aren't affiliated with the publishing industry still support DRM, because they mistakenly think it'll help them "protect" their own data. They fail to understand that that doesn't require DRM, but works perfectly well with plain encryption (in which the owner knows the key).
"[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz
You get to talk to frequently talk to lovely ladies in India and swap very long strings of digits with them. Isn't re-activation fun? And if it is a stressful day at work, just hold the phone up to your ear while you rest and tell anyone that bothers you that you are on hold with Microsoft - you should be able to get away with an hour at a time before anyone gets suspicious. What fun! Every disaster recovery plan gets to add a few hours to acoount for waiting on hold to get new activation numbers for each rebuilt system.