4 Microsoft Engineers Predicted DRM Would Fail 10 Years Ago

An anonymous reader writes "Ars is running an article about a paper written just over a decade ago by four engineers at Microsoft. In it, they talk about the darknet, and how it applies to distributing content online. They correctly predicted the uselessness of DRM: 'In the presence of an infinitely efficient darknet — which allows instantaneous transmission of objects to all interested users — even sophisticated DRM systems are inherently ineffective.' The paper's lead author, Peter Biddle, said he almost got fired over the paper at the time. 'Biddle tried to get buy-in from senior Microsoft executives prior to releasing the paper. But he says they didn't really understand the paper's implications — and particularly how it could strain relationships with content companies — until after it was released. Once the paper was released, Microsoft's got stuck in bureaucratic paralysis. Redmond neither repudiated Biddle's paper nor allowed him to publicly defend it.' The paper itself is available in .DOC format."

DRM is not useless

DRM hasn't failed and isn't useless. It's quite successful at pissing off honest customers and turning them towards piracy and circumvention.

Re:DRM is not useless

[chad.koehler]

That point is made in the conclusion of the actual paper. I know it's against the rules, but I read it.

Re:DRM is not useless

[mlts]

I am going to be a devil's advocate again: It did work extremely well on the PS3, where a "complete" break wasn't achived until recently, and for a console that is almost five years old, that is a pretty good accomplishment.

Satellite is well protected with no "master cards" available on any black market. So far, no cracks are out there in any form.

The iPhone 5 has yet to have even a single usable JB. The 4S has had only limited windows of time where it was jailbreakable.

Even with e-readers, I've yet to see a cracked AZW file in the past two years. Amazon must be doing something right with their Kindle DRM. (I hope to be proven wrong, but I was curious about this earlier, did some quick searching and found any supposed decoders just were links to malware/Trojans.)

DRM is alive and well.

Re:DRM is not useless

[bluemonq]

Actually AZW has long been cracked. It was initially done to create DRM-free copies that Amazon could not revoke (remember the incident with 1984?). Of course, there are those who use it to share ebooks without permission to do so. There is even a plugin that integrates into Calibre to strip DRM out of your books,

Re:DRM is not useless

[AlphaWolf_HK]

Also Microsoft's PlayReady DRM hasn't been broken to date.

Annoyed the crap out of me because I am forced to use windows media center with my crap cable provider who CCI flags every channel. I have instead resorted to usenet and now download my tv shows illegally, and plan to cancel cable soon. Sadly, my HDHomeRun is basically worthless.

Re:DRM is not useless

There is a python script that works (need your kindle serial number).

Or you can use Kindle.DRM.Removal.v4.2.1.247-Lz0 (Basically a crappy gui to the same script).

Re:DRM is not useless

[hairyfeet]

Uhhh...everybody forget Bill Gates famous "If they pirate, I want them to pirate from us" line? Ballmer apparently has, as which two bombs in recent years had the nastiest DRM? why Vista and 8 of course. Win 7 was totally broken almost from RTM, look up "Win 7 all versions" on TPB and you'll see there is two DVDs, one for 32bit and one for 64bit, that covered every release from basic to ultimate, it even gives you a nice wallpaper based on who made the board!

But one thing they got wrong i believe is that DRM is doomed, i point to netflix and Steam as examples of DRM done right. If you make the customer feel they are getting more value in their purchase and the DRM is unobtrusive and just rides along? Most won't care. look at how many had a fight over the Humble bundle and I was surprised to see how many agreed with me that it didn't matter because Steam gives value like chat, updates, matchmaking, etc and I know many pirates that once they got netflix haven't bothered, they have so many shows to watch now that frankly they could live in front of the set and never see it all, so why bother pirating more?

The reason DRM has gotten a bad rap is because like many ideas handed to PHBs with little foresight naturally it can be misused, look at Starfuck breaking DVD burners, or SecuROM slowing down systems, or how most of those won't play nice with each other or even newer versions of itself so you end up with a dozen of the damned things running in the background. Compare this to steam, when its off? its off. No kernel level crap sucking resources and getting buggier by the day, no hassles, its all just "click to buy game" and even gifting something like the humble bundle takes just a couple of clicks. its cheap, easy, and hassle free and most people will NOT care as long as you meet those requirements.

Hell even with MSFT they used to have common sense, like Windows activation...do i care? No. Why? because after changing every. single. part. on this desktop i had to re-activate exactly ONCE, and that was when I swapped boards. it took less than 10 seconds online, and that was it, done. Compare this to Vista and its black screen of death or even worse WMV/WMA DRM as examples of DRM done poorly. It was glitchy, often screwed up, and ALWAYS defaulted to "Ur a pirate!" so you ended up just wanting the shit far away from you.

So just like VB or Java or Flash or any other thing out there DRM can be done right, or it can be done poorly. Personally I'd rather have a couple of services like Steam and netflix as "one stop shops" where I can buy anything I want cheaply an easily than see our rights stripped away with ever more draconian laws and customer screwing policies like 6 strikes, wouldn't you?

Re:DRM is not useless

[ackthpt]

DRM hasn't failed and isn't useless. It's quite successful at pissing off honest customers and turning them towards piracy and circumvention.

Not just DRM, but all the preview sh*t when I put a DVD in the player. I don't give a damn about all these other things, why do I have to sit there hammering the skip forward button and/or menu button? It's a great motivator toward ripping the content off the DVD, burning it on a blank and then watching it whenever I want to see the movie.

Disney one of the worst offenders.

Re:DRM is not useless

[0111+1110]

i point to netflix and Steam as examples of DRM done right. If you make the customer feel they are getting more value in their purchase and the DRM is unobtrusive and just rides along? Most won't care. look at how many had a fight over the Humble bundle and I was surprised to see how many agreed with me that it didn't matter because Steam gives value like chat, updates, matchmaking, etc and I know many pirates that once they got netflix haven't bothered, they have so many shows to watch now that frankly they could live in front of the set and never see it all, so why bother pirating more?

I think you are missing the point of DRM. The point of DRM is to stop unauthorized people from using or copying or distributing your software. That is its purpose. It was never intended as some kind of additional feature to get more people to buy your software as people like you claim Steam has done.

In terms of stopping pirates from using software DRM has been an almost complete failure. There is the rare exception where the developers themselves devoted a large percentage of their development time to weaving DRM into thousands of different places to intentionally make things difficult/tedious for crackers, but those are rare exceptions. For the most part DRM has been an utter failure.

When I want to buy a game that is only available on Steam I download it from TPB or KAT instead. The torrent version has an additional feature other than its lower cost: it allows me to install it without an internet connection. That's the kind of feature that I don't need all that often, but when I need it I really need it. So I rationally choose the version which offers me the most value: the DRM free version.

There will always be a significant percentage of sheeple who don't care about DRM, no matter how draconian it is. Even the must-always-be-connected-to-server DRM sells many copies. Obviously less intrusive forms of DRM like steam will have fewer people objecting to it, but that doesn't mean the publisher isn't losing a significant number of sales from people who refuse to pay for DRM or who don't have reliable (or any) internet connections. Obviously such publishers just don't care about those people. They are willing to lose some number of customers in order to have that warm fuzzy feeling that delaying the release of their software on TPB for an extra 12 hours seems to give them. If I were a stockholder I would not be happy with that decision.

Re:DRM is not useless

[SCHecklerX]

s/piracy and circumvention/better products/

DRM is dumb. Charge a fair price and offer a better service, and people will buy it. If it's easier to get a better product through file sharing, then that is where people are going to go.

Media companies:
Just have certificate or password RSS feeds. Charge $5/month/feed. No DRM. You'll make money. I promise. Hell, even use torrent trackers for the feed links and you won't have to pay for the infrastructure yourself. Your own customers will actually offset that cost, and do it willingly. Imagine that.

Re:DRM is not useless

[Jiro]

The point of DRM is to stop unauthorized people from using or copying or distributing your software.

The *stated* point of DRM is to keep people from pirating your software. The actual purpose of DRM is to maintain control over the user, thus using it to prevent used games sales, format shifting, playing on unauthorized devices, etc.

Re:DRM is not useless

[fredprado]

The problem is that it is not easy and often impossible to measure the gain or loss of money because of DRM even at short term. At medium and long term it is certainly impossible.

If any money is made with DRM it is not because piracy is deterred by it, but because companies manage to enforce standards and lock people inside their ecosystems, in effect generating an artificial monopoly, which arguably should not be legally allowed.

Re:DRM is not useless

[pepty]

When I want to buy a game that is only available on Steam I download it from TPB or KAT instead. The torrent version has an additional feature other than its lower cost: it allows me to install it without an internet connection. That's the kind of feature that I don't need all that often, but when I need it I really need it.

You do realize that you're talking about really needing to play a game, right? What exactly would the consequence be of your having to wait until you have an internet connection to install a game?

Re:DRM is not useless

[Dahamma]

So, I can understand physical disk DRM causing occasional issues (buy the disk and lose/damage it) but honestly for network-based game DRM why does anyone really care? I have bought a few games from Steam for the PC, and a few Xbox Live games, and both times when I upgraded my PC or got a new Xbox it was trivial to re-download the game for the new device. Actually, in both cases I have the games installed on 2 PCs and consoles and as long as you don't try to use both at the same time it works fine.

Like *many* things, when implemented poorly DRM is a PITA. But when implemented *well*, DRM (as a part of a software distribution *system*) mostly limits casual copying while making it pretty braindead easy to reinstall the software you own...

Re:DRM is not useless

[hairyfeet]

Riiiight, it has been shown repeatedly that if you can stop the pirates for only FOUR DAYS your sales go up by something like 20%, because many if they can't get it on release will say fuck it and go buy the movie or game rather than have to wait.

And why in the fuck should I care about resale on games that cost me less than a rental? I'm up to 46 games in Steam right now and I paid a grand total of MAYBE $150 for the whole shebang...why would I care about resale? So Gamestop could give me $20 and resell it for $100? Heck nobody even sells used PC games, they just aren't worth anything because the price drops so quickly that a game that was $60 3 months ago can be had for less than $20 now.

As for format shifting? Your grandma could rip a DVD these days, really not hard and if you have something like Netflix most won't even bother with that since they have access to more shows than they could possibly ever watch as it is.

Again as long as the DRM doesn't get in the way or hurt legit customers like Steam and Netflix honestly most of us really don't care, and it gives us some pretty kick ass advantages like being able to pre-order a game and have it already downloaded and installed (often with extra DLC included as a thank you for pre-purchase) so when the release day comes you can be one of the first to enjoy the latest game. For that alone I really don't give a crap about the DRM in Steam, heck I'd say about 12% of the info in the TLII wiki came from me as I was in the game a couple of minutes after release thanks to Steam already having it loaded and ready to go, and if it keeps companies like Runic and THQ afloat because people will buy their titles on Steam because its cheap and easy? Again ALL for it.

Now if you'll excuse me the last of the Humble Bundle just finished loading in Steam so I'm gonna play me some Company Of Heroes, always liked me a good RTS.

Re:DRM is not useless

[Antonovich]

Are you sure about that?
There are a great number of areas where your assertion "if the projections show it won't make more money, they won't do it" is false. Though somewhat flawed, the example of the legalisation of cannabis is a great example. The arguments put forward by the fanatics and Christian fundamentalists have long been soundly refuted by both economics and science (no, I don't think the former is a subset of the latter but that's another story). Two US states have finally bitten the bullet but with the pressures from the fundamentalists and the distortions that are brought in with it being so restricted (think Amsterdam), it wouldn't surprise me if these states have considerable difficulties.
Fact 1. The active ingredients in cannabis are far less addictive and far less dangerous than either alcohol or nicotine. A very major study has just been completed in Europe (maybe just in France, can't remember) that suggested that people under the age of 22 should completely abstain or risk suffering brain development problems. I heard an interview with one of the authors, the interviewer asked "So that means young people should stick to alcohol and if they must smoke then they should wait?", "Absolutely not! Alcohol is far worse than cannabis for brain development. Sustained, daily cannabis abuse in the teenage years can lead to cognitive impairment. However, even occasional binge drinking can have a much worse effect as alcohol actually destroys important brain cells whereas cannabis just impairs optimal development". The physical addiction factor of cannabis is actually very low (it's very difficult to become physically addicted, though admittedly the physical part is almost never the major one), and something like 95% (sorry, no ref for that) of government sponsored medical studies, from EVERYWHERE throughout the world, has recommended some level of tolerance/non-prosecution. Prohibition is the main root cause of even health-related issues and impedes proper treatment in many cases where the drug is actually being abused (as opposed to relatively harmless occasional use).
Fact 2. Many police departments around the world have been recommending for decades that cannabis be decriminalised. The "gateway drug" fallacy is completely based on association. If you force cannabis into the underworld, then you force users into the underworld. Just like in every Walmart and showroom around the world, the salespeople do cross-selling and up-selling. In some places cannabis prohibition enforcement is a substantial cost for police forces and almost all would much rather spend that money fighting actual crime. Legalisation means quality control and (slightly) more control over the use by the younger age groups.
Fact 3. The tax revenues that could be generated (as shown by the Californian study that prompted the referendum) by legalising and then taxing are huge.

So what do we have? A situation where basically all evidence: economic, scientific (health), and even your friendly local Bob say that cannabis prohibition is hugely expensive and is actually counter-productive - i.e., the prohibition of cannabis is far worse for individuals and even society as a whole and yet it is still the status quo in the vast majority of regions and states throughout the world.

Take home point:

Superstitions and punishment disorders can trump science, economics and logic - DRM is just such another case of people trying to cling to a fundamentally broken way of doing things, just like you see in many other areas of our lives...

Re:DRM is not useless

[Mark+Hood]

You need an internet connection to download it anyhow, why not just install it right then?

At least Steam doesn't make you be online whenever you boot the game up.... like some DRM.

Or - and here's a radical thought - buy the game (so as to show support for the game you 'really need' to play) and then pirate it to get the 'critical feature' of being able to install it from your EM-shielded bunker? The makers get to eat, you get to add your perceived value, the pirate 'community' gets to show that actually they're NOT hurting sales, everyone wins.

alright,

[fjolnir]

Who didn't predict that?

Re:alright,

[Austerity+Empowers]

The rest of their engineers.

Basically they had 4 employees who realized what the rest of the free world already knew. This is why MS products are so lousy, only 4 people in the whole place figured this out!

Re:alright,

[M0j0_j0j0]

The rest of the engineers didn't actually gave a crap about it as they were paid to implement those DRM. Ever had that feeling,"oh my this guys are paying me to do this, what a bunch of jacks, this will never work".

Re:alright,

[AwesomeMcgee]

I realize everyone here is going to say "The rest of MS", but let us not be that one sided; how about all of Apple didn't predict it?

Re:alright,

[turbidostato]

"working on bullshit projects sucks out your soul."

Absolutly right. But still...

Working on real bullshit projects pays your bills, great still-to-be-seen unreal ones, do not.

Re:alright,

[jhol13]

I. I was extremely frightened that they could shut the internet music up, with so enthusiac audience (customers) for DRM.

DRM really had a chance, it failed mostly not on "us" who were accustomed BSD/GPL etc, but on far too many competeting "standards". Then some DRM music stores shut down leaving customers with nothing (still someone bough zune after playsforsure ... go ahead, buy now the 8).

But then, loosers learned nothing and are now "buying" ebooks.

Just a couple of days ago there was a story in the news in Finalnd about "digital inhertance". They did not say it will be close to zero as most is loaned rather than bought. Your loss, not mine, I don't loan from iTunes, etc.

Re:alright,

[Mark+Hood]

I'm not so sure they didn't.... there's no DRM on their OS (no activation, no keys, no problem re-installing it on more than one Mac). Compare that to MS who practically accuse you of piracy before you run your first update.

The DRM they do have (in the Mac App store, iOS apps at least) is so low-key that most people don't even know it's there. I can buy an app once and install it on any and all iOS devices, again and again, with no concern at all. If it's a Mac app, I can install it on up to 5 Macs at once. Neither of these is likely to encourage me to go out and break the DRM, so it's serving its purpose of preventing me 'handing on' a copy to a friend.

The same with Movies, TV & Music - you can play them all back on all your devices, stream them to your friends' apple devices, everything short of hand over a copy. You can even burn a CD of your music with no DRM at all, if you like. I agree that it's more intrusive here, but because the limitations are reasonable (don't give it away, but you can do anything reasonable with it yourself) there's a much lower incentive to break the DRM.

Of course, this only holds true if you stay in the Apple ecosystem, but since most of their customers do - I bet most of them don't even know what DRM is, or why it's bad. I know I'm talking to Slashdot here, but remember we're not the typical users.

So in short, it's working for them, because of the decisions they made - customer comes first (as long as you stay in the walled garden) as opposed to trying to prevent each and every 'lost sale'.

10 Years ago?

[jabberwock]

... except for the few people I knew who worked for companies that stood to benefit from the wide acceptance of DRM, pretty much everyone was predicting it was a disaster starting in about 1996.

Re:DRM failure predicted 10 yrs ago?

[Applekid]

The DMCA has, in fact, prolonged the life of DRM by making it a literal crime to circumvent it. At least in the US.

infinitely efficient darknet

[Hatta]

I like the sound of that.

Re:HDCP is still here

[Hatta]

They still put CSS on DVDs. That doesn't mean it does anything to protect anything.

Re:DRM failure predicted 10 yrs ago?

[Microlith]

Not from what I can see. AACS was cracked within a year or so of the arrival of Blu-ray and HD-DVD, with BD+ falling not long after. The DRM on most ebook formats was stripped within weeks or less.

The DMCA just makes sure that the tools to strip DRM are hosted outside the US.

.doc file?

[Kergan]

Couldn't they have torrented a pdf file to make their case?

Writing the obituary for their project

[slew]

Basically, for these folks, the darknet paper was just writing the obituary for the Palladium (trusted computing) project they were working on for Microsoft. They knew that it wouldn't stop piracy, so might as well explain why that is the case and move on...

Re:Writing the obituary for their project

[SuricouRaven]

They failed to understand then the true purpose of Palladium. That one day, a distant descendent of the project would be used to make computers that are not capable of booting any untrusted operating system, and that Windows alone would be recognised as trusted by most motherboard manufacturers and OEMs. Palladium was always half about DRM and half about lock-in, over Intel's objection. It got so much bad press it was eventually renamed to NGSCB, and then quietly dropped, but some aspects do still remain.

Was a pretty good talk

[gweihir]

The paper presentation at CCS 2002 was pretty good. I was one of the about 60 people in the room and 5 minutes in I had the feeling of witnessing history in the making. And yes, in the Q&A part, they did directly confirm that they thought DRM was completely doomed from the beginning.

Re:HDCP is still here

[SuricouRaven]

CSS isn't just about stopping piracy. It also requires a license to impliment legally (Being both patented, and covered under the DMCA or your national equivilent). The terms for this license include a number of other conditions, including mandating that players respect the region code byte and that they not provide the ability to skip videos in a certain navigational area usually used for anti-piracy warnings and studio logos. As an anti-piracy measure it is useless today, but it still serves to keep consumer electronics manufacturers (Who cannot afford to go underground to avoid lawsuits) more-or-less in compliance with the region system.

Try 20+ years ago...

[Penguinisto]

...hell, most of us knew that back when we were using nibblers on Commodore 64 boxes to copy stuff onto blank 720k floppies. ;)

The money quote

[mystikkman]

Te hoped that writing a paper saying so would reassure Microsoft's critics in the technical community that Redmond wasn't planning to lock down the PC in order to satisfy Hollywood. And by making it clear that the people behind Microsoft's "trusted computing" push were not fans of DRM, Biddle hoped he could persuade the technical community to consider other, more benign applications of the technology he was building.

snip

It didn't work out that way. "I almost got fired over the paper," Biddle told Ars. "It was extremely controversial." Biddle tried to get buy-in from senior Microsoft executives prior to releasing the paper. But he says they didn't really understand the paper's implications—and particularly how it could strain relationships with content companies—until after it was released. Once the paper was released, Microsoft's got stuck in bureaucratic paralysis. Redmond neither repudiated Biddle's paper nor allowed him to publicly defend it.

At the same time, "the community we thought would draw a connection never drew the connection," Biddle said, referring to anti-DRM activists. "Microsoft was taking so much heat around security and trustworthy computing, that I was not allowed to go out and talk about any of this stuff publicly. I couldn't explain 'guys, we're totally on your side. What we want is a program that's open.'"

The so called "community" is and was rabidly anti-Microsoft regardless of the actual merits of the case. There are umpteen journalists(eg. Farhad Manjoo of Slate), who railed endlessly against Palladium, but when Apple implemented the Palladium spec to the letter in the iPhone and iPad, locked out developers and users from their own machines, the exact same people went "OOH SHINY" were falling all over themselves singing its praises.

See http://www.salon.com/2002/07/11/palladium/ and http://www.slate.com/articles/technology/technology/2012/03/new_ipad_how_apple_s_tablet_strategy_parallels_its_unbeatable_ipod_success_.html

Now we have the slow decimation of user and developer freedom led over the past 5 years by the iPhone, iPad, Kindle Fire, Nook,locked bootloaders on Android phones like the Droid, tablets etc., Windows Phone and now Windows RT. As they say, the first cut is the deepest, the war was lost when the public started buying iDevices in droves and they *still* can't keep them in stock. Now everyone can say if it's okay for the market leader Apple to do it, so can we. This is the harm with the "raise hell if it's MS, ignore and pump it if it's Apple etc." attitude of the community and Slashdot is no different for the most part. If, instead of playing fanboys and haters, if pundits and tech folks actually stood for openness like RMS did, we might have had a different future today.

The cat is out of the bag though. Apple charging 30% of even the services offered through apps is just the tip of the iceberg.

Re:The money quote

[fuzzyfuzzyfungus]

The fundamental misconception of the paper(which, as you note, Apple was first to demonstrate in a broad and serious way) is that DRM is about controlling exfiltration rather than controlling playback.

Yeah, obviously, even the people who design PAL hardware for thermonuclear warheads are going to have a difficult time designing DRM systems that will resist prolonged physical access by a sophisticated attacker. If they have to build such systems on a consumer electronics budget, forget about it.

However the 'break once, play everywhere' DRM defeat model implicitly assumes that computers will be 'default allow' devices. That, unless a given object is specifically encrypted/crippled/otherwise fucked with, they will happily do their best to work with what they are given.

This simply isn't true. Market forces have prevented going 'default deny' in certain highly competitive sectors(eg. nobody selling cheap DVD players can get away with selling DVD players that play only CSS-encrypted disks) and for certain legacy formats(it isn't really an 'mp3 player' if it doesn't play mp3s...); but it is increasingly the case that more sophisticated devices are 'default deny'.

None of today's consoles will boot an unsigned binary, even one otherwise compatible with their environment without modification to the system(sometimes a software crack, some are known only to possess hardware vulnerabilities requiring physical modification). The iDevices of the world will reject any .ipa executable package that isn't DRM-encumbered. You can strip off the "fairplay" all you like; but unless you have a jailbroken device or access to a trusted signing key, you aren't going to be running it... Microsoft's "Windows RT" will be the same thing for Windows style executables.

If anything, what the MS guys demonstrated is that (because of the 'darknet' consideration) 'Trusted Computing' as DRM is doomed to failure and its only real function is trusted computing as control.

Re:The money quote

[cbhacking]

I agree in general. However, for what it's worth, Windows RT can both sideload apps (they have to be signed by *somebody*, but the certificate can and often will be from an "untrusted" source) and execute unsigned desktop apps if they run in the app sandbox. The first is an official feature, intended for use either by developers or for internal (company, etc.) apps. The second is completely unofficial, but it works; "Metro-style" apps (which run in a sandbox) aren't supposed to be able to invoke arbitrary .EXEs. Somebody has figured out how to do it though, and it turns out that so long as the target EXE is within the sandbox's accessible portion of the filesystem and doesn't need to access anything outside of the sandbox, it works fine even if completely unsigned. Of course, it still needs to be recompiled for ARM, so no running arbitrary legacy programs yet unless you have the source code and build tools, but it works.

The question will be how MS responds to this. It's arguably completely safe to leave in place; even if somebody goes to the trouble to create malware that will run in this environment, the environment itself will keep it constrained. A sideloaded or store app could literally do just as much damage. If anything really malicious does pop up, they can add its definition to Defender. On the other hand... it's possible that they'll try and take a "you just *thought* it was your device" approach and block people from even doing that much. After all, given the need to recompile, you could argue that legacy malware wouldn't run anyhow, so there was no need to forbid third-party desktop apps in the first place. In any case, time will tell. Meanwhile, there's already work on other ways of unlocking Windows RT.

Overall, a very insightful post, and I almost modded it as such (hopefully somebody else will) but wanted to respond.

Re:The money quote

[Tagged_84]

Apple charging 30% of even the services offered through apps is just the tip of the iceberg.

Okay you're correct in many ways except for this right here. Apple's 30% cut is an extremely great price point given the market share and central access it provides. You might not be aware that we've (developers) had to put up with much higher rates in the past from similar offerings that were only a fraction of the Apple ecosystem. While lockout may seem like "death", there are elements that I can't deny are far more beneficial and efficient than a pure open system.

Re:The money quote

[maccodemonkey]

The iDevices of the world will reject any .ipa executable package that isn't DRM-encumbered. You can strip off the "fairplay" all you like; but unless you have a jailbroken device or access to a trusted signing key, you aren't going to be running it...

That's not strictly true. Apple allows one to load "entitlements" on a device which can pair the device with your own signing key, and away from the appstore review process and DRM.

Sure, they have to generate the entitlement. But for $200 they'll generate you an entitlement that can be loaded on as many devices as you want (aimed at enterprise.)

What is the definition of "succeed" and "fail"?

[mbkennel]

If "success" means "no content copied", then of course nothing will work. That's an impossible goal.

What success actually means *economically* is "increase revenues, or prevent revenue loss, more than the cost of implementation." If you make it difficult enough for somebody who has the potential means and motivation to buy to avoid buying then it could be deemed a success. A teenager with nothing to lose (and no money) might not care about being busted for torrenting copyrighted content---but a family man with a mortgage, job and credit rating might care.

Electronic tags on handbags don't prevent 100% of shoplifting, and yet they're deployed fairly widely.

Speaking truth to power.

[quax]

Another case in point, that speaking truth to power is usually costly for the Kassandras of the world.

Encouraging though that they did speak up.

DRM's rare successes

[0111+1110]

99.99999999999% of the time DRM is an utter failure, but what about those oh so rare exceptions?

I believe that many of those successes were 'protecting' software that just wasn't all that popular. Any sufficiently obscure software with DRM you pretty much have to crack yourself.

There have been occassional locked down hardware systems that have gone uncracked for years. The PS3 for instance.

I was dismayed to find that Audible.com's proprietary audio format: .aa/.aax, which supposedly is just a wrapper for mp3s, has gone uncracked for quite some time now. It remains 100% uncracked. However the quality of the 64 kbps .aax audio is high enough for its speech only content that the generation loss involved with burning to CD and re-encoding to mp3 is minimal. This workaround may be the reason no one has made any serious attempt to crack the .aax format.

Nevertheless it is disappointing. From the POV of Amazon/Audible the .aax format DRM has been a complete success. Their files cannot be distributed without generation loss. Is it possible they didn't anticipate that most people wouldn't particularly care about the minor loss in voice quality? Admittedly the higher quality 64 kbps .aax file is a somewhat recent addition. Before that there were only 32 kbps versions. Perhaps in that case the generation loss would have been much more noticeable.

DRM is great !

[speedlaw]

All of my consumer electronics has crappy DRM. I'm stuck with HDMI and HDCP. Occasionally box A does not want to talk to box B. Sometimes it does. I had to toss a perfectly good AVR because the HDMI/HDCP board went...something not really essential. DRM is a raging success for making my CE experience harder.

Re:DRM failure predicted 10 yrs ago?

[Jiro]

Its far, far, easier to design a better weapon than it is to design a better piece of armor. It doesn't matter what new type of DRM you come up with, somebody will come up with a way to break it.

Cool, tell me how to run unsigned code on my PS3 without having obsolete firmware or a hardware flasher.

(Hint: the hacks that "completely" cracked the PS3 didn't.)

friends != 'darknet' & Napster/Metallica heari

[globaljustin]

I was there...and one of the Gnutella network founders from MIT testified before the Senate Judiciary Committee (after Lars and Shawn Fanning w/ 'M' hat)...he testified that the **infinitely copyable** nature of digital music files made DRM useless

These Microsoft guys get respect...but they were being **kind**...no damn "darknet" is necessary...trading with friends IS NOT A DARKNET

See, anyone is allowed to compile music on media and give to a friend...that's part of the Digital Millenium Copyright Act...and the Federal Government cannot define 'friend' just to control digital music...it is a non-starter

So...the labels/studios had to either 1) adapt business model beyond holding copyright **OR** 2) use DRM

We know the rest...

FYI it was the Senate Judiciary Committee hearing to propose adaptations to the Digital Millenium Copyright Act in July (?) of 2000...Senators Leahy and Hatch presided...I used my 'intern' badge to sneak into the press box :P

'digital rights'=copyright

[globaljustin]

It's about the 'rights' as they say down in LA

You all have it...no dispute...DRM is anchored in the concept of holding a 'copyright' to written music

The concept has been so abused that it gets confusing, and it's definitely about money at the core...money...power...control...whathaveyou...we all know their fsking game now, to me that's the important thing

The precioooous !

[ElRabbit]

I have been hanging around with TV executives for 10 years, always trying to make them understand that all the protection they were trying (lamely) to put in place will only block legitimate customers while increasing product cost. But those guys behave like Gollum in Lord of the Ring: their content is sooooo precioooousss. They are beyond any reasonable argument.