Slashdot Mirror

← Back to Stories (view on slashdot.org)

The DRM Scorecard

Posted by samzenpus on from the guess-who's-ahead dept.

An anonymous reader writes "InfoWeek blogger Alex Wolfe put together a scorecard which makes the obvious but interesting point that, when you list every major DRM technology implemented to "protect" music and video, they've all been cracked. This includes Apple's FairPlay, Microsoft's Windows Media DRM, the old-style Content Scrambling System (CSS) used on early DVDs and the new AACS for high-definition DVDs. And of course there was the Sony Rootkit disaster of 2005. Can anyone think of a DRM technology which hasn't been cracked, and of course this begs the obvious question: Why doesn't the industry just give up and go DRM-free?"

8 of 543 comments (clear)

  1. DRM is doing it's job by dirk · · Score: 4, Informative

    No one ever expected DRM to stop all copying. That was never it's purpose. The purpose of DRM was to curb copying, which it has done. Everyone realizes there will always be a way to get around DRM (or anything else really) if you really want to. But if you can implement DRM and stop 50% or 75% of copying, that is a big improvement. That is exactly what they did. They implemented a solution that will reduce copying by the average person, which means more money in their pockets since less people are copying CDs and giving them to friends (and no, I'm not claiming every person who copied a CD would go and buy it, but certainly some of them will).

    DRM works under the same concept as locking your car. IF someone really wants in, they will get in. But it certainly cuts down on the casual person who will take an easy opportunity, but doesn't care enough to put in the effort to get around the measures you put in place.

    --

    "Information wants to be expensive" - Stewart Brand, the same guy who said "Information wants to be free"
  2. Certainly there are some things which come to mind by zuki · · Score: 3, Informative

    Perhaps this has already been mentioned, but the dongle systems that protect many Mac music applications and plugins seem to have held up so far, as in either iLok
    or some of the Synchrosoft dongles. Logic Pro 7 is not really something that has been cracked yet either, to my (admitedly limited) knowledge.

    From what I recall reading, when H2O did manage to [k] Nuendo, it took them so long that I think they said
    they were not going to bother doing it more, as the process was just too annoyingly time-consuming.

    Theoretically, these systems could probably be made to protect anything which is a software-based application. Not sure if this qualifies as DRM, rather than just some 'copy-protection'
    technique but certainly it has helped ensure that many small developers of quality audio plug-ins survive because their creations cannot be cracked.

    Z.

  3. Apple iTunes Video by IdahoEv · · Score: 3, Informative

    Last time I checked, you can strip the FairPlay DRM from iTunes music files pretty easily, but nobody has released a tool that does the same for video files purchased from iTunes.

    So ya can't yet burn that episode of "Lost" you bought on iTunes to a DVD.

    --
    I stole this sig from someone cleverer than me.
  4. Re:Cable HDTV DRM by afidel · · Score: 3, Informative

    HDCP has been cracked but unless you have a display with DVI and no HDCP support it does you very little good. The problem is the HDCP protected signal is a full bandwidth signal, not the compressed OTA or disk steam, and there is currently no system available that can really deal with capturing that much data in real time that is in the consumer price range.

    --
    There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
  5. Re:HDMI by sssssss27 · · Score: 5, Informative

    From Wikipedia:
    "Cryptanalysis researchers demonstrated fatal flaws in HDCP for the first time in 2001, prior to its adoption in any commercial product. Scott Crosby of Carnegie Mellon University authored a paper with Ian Goldberg, Robert Johnson, Dawn Song, and David Wagner called "A Cryptanalysis of the High-bandwidth Digital Content Protection System". This paper was presented at ACM-CCS8 DRM Workshop on November 5, 2001.[1]

    The authors conclude:

    "HDCP's linear key exchange is a fundamental weakness. We can:

    * Eavesdrop on any data
    * Clone any device with only their public key
    * Avoid any blacklist on devices
    * Create new device keyvectors.
    * In aggregate, we can usurp the authority completely."

    It must be noticed, however, that for this attack you first have to break Blom's scheme (the linear algebra based key exchange system). In the case of HDCP you need a minimum of 39 device keys in order to reconstruct the secret symmetrical master matrix that has been used to compute all device keys.

    Around the same time that Scott Crosby and co-authors were writing this paper, noted cryptographer Niels Ferguson independently claimed to have broken the HDCP scheme, but he did not publish his research, citing legal concerns arising from the controversial Digital Millennium Copyright Act [1].

    The most well-known attack on HDCP is the conspiracy attack, where a number of devices are compromised and the information gathered is used to reproduce the private key of the central authority.

  6. This is called "the Smart Cow problem" by Spy+der+Mann · · Score: 5, Informative
    From Wikipedia:

    The Smart Cow Problem describes the method by which a group of individuals, faced with a technically difficult task, only requires one of their number to solve the problem. Having been solved once, an easily repeatable method may be developed, allowing non-technically proficient entities to accomplish the task. The term Smart Cow Problem is thought to be derived from the expression: "It only takes one smart cow to open the latch of the gate, and then all the other cows follow." [1]

    This has recently been applied to Digital Rights Management (DRM), where, due to the rapid spread of information on the internet, it only takes one individual to defeat a DRM scheme to render the method obsolete. [2]

          1. ^ http://www.wired.com/news/business/1,60901-0.html Buck a Song, or Buccaneer? , retrieved 2007-02-13
          2. ^ http://www.wired.com/news/digiwood/0,1412,67556,00 .html Give Your DVD Player the Finger, retrieved 2007-02-13


  7. Re:DirecTV by XedLightParticle · · Score: 3, Informative

    You're right in that what's currently used for digital cable and satellite TV feeds hasn't been cracked. But this has a history, at least in Europe, of being cracked, holes found in the algorithms and all sorts of fun, then 6 months after it gets public known they change encryption system, and the TV pirates can start over. The encryption systems have in that way gotten so tough to crack that the pirates have found other ways, the most common way to get around the encryption today, is to get a receiver of which you can replace the firmware, and in that way get the receivers to share the smartcards with each others over the internet, for the time being the TV providers knows it's happening, but they fail to figure out how to prevent it, so instead they spread rumours that their encryption providers in Israel are able to detect when cardsharing occurs, but I have yet to hear about them catching anyone in that way.

    --
    If I was as pragmatic and objective as I claim to be, would I be commenting?
  8. Re:Geeks do- everyone else doesn't. by donaldm · · Score: 3, Informative

    Looked for the smiley but you are wrong (should have stayed with "Windows") :-).

    Locks in many forms have been around for a very long time http://inventors.about.com/library/inventors/blloc k.htm however eventually they do get cracked.

    --
    There ain't no such thing as proprietary standards only proprietary formats. Standards are by definition open.