Slashdot Mirror

← Back to Stories (view on slashdot.org)

4 Microsoft Engineers Predicted DRM Would Fail 10 Years Ago

Posted by Soulskill on from the not-that-companies-have-listened-yet dept.

An anonymous reader writes "Ars is running an article about a paper written just over a decade ago by four engineers at Microsoft. In it, they talk about the darknet, and how it applies to distributing content online. They correctly predicted the uselessness of DRM: 'In the presence of an infinitely efficient darknet — which allows instantaneous transmission of objects to all interested users — even sophisticated DRM systems are inherently ineffective.' The paper's lead author, Peter Biddle, said he almost got fired over the paper at the time. 'Biddle tried to get buy-in from senior Microsoft executives prior to releasing the paper. But he says they didn't really understand the paper's implications — and particularly how it could strain relationships with content companies — until after it was released. Once the paper was released, Microsoft's got stuck in bureaucratic paralysis. Redmond neither repudiated Biddle's paper nor allowed him to publicly defend it.' The paper itself is available in .DOC format."

16 of 142 comments (clear)

  1. DRM is not useless by Anonymous Coward · · Score: 5, Insightful

    DRM hasn't failed and isn't useless. It's quite successful at pissing off honest customers and turning them towards piracy and circumvention.

    1. Re:DRM is not useless by chad.koehler · · Score: 5, Funny

      That point is made in the conclusion of the actual paper. I know it's against the rules, but I read it.

    2. Re:DRM is not useless by hairyfeet · · Score: 5, Insightful

      Uhhh...everybody forget Bill Gates famous "If they pirate, I want them to pirate from us" line? Ballmer apparently has, as which two bombs in recent years had the nastiest DRM? why Vista and 8 of course. Win 7 was totally broken almost from RTM, look up "Win 7 all versions" on TPB and you'll see there is two DVDs, one for 32bit and one for 64bit, that covered every release from basic to ultimate, it even gives you a nice wallpaper based on who made the board!

      But one thing they got wrong i believe is that DRM is doomed, i point to netflix and Steam as examples of DRM done right. If you make the customer feel they are getting more value in their purchase and the DRM is unobtrusive and just rides along? Most won't care. look at how many had a fight over the Humble bundle and I was surprised to see how many agreed with me that it didn't matter because Steam gives value like chat, updates, matchmaking, etc and I know many pirates that once they got netflix haven't bothered, they have so many shows to watch now that frankly they could live in front of the set and never see it all, so why bother pirating more?

      The reason DRM has gotten a bad rap is because like many ideas handed to PHBs with little foresight naturally it can be misused, look at Starfuck breaking DVD burners, or SecuROM slowing down systems, or how most of those won't play nice with each other or even newer versions of itself so you end up with a dozen of the damned things running in the background. Compare this to steam, when its off? its off. No kernel level crap sucking resources and getting buggier by the day, no hassles, its all just "click to buy game" and even gifting something like the humble bundle takes just a couple of clicks. its cheap, easy, and hassle free and most people will NOT care as long as you meet those requirements.

      Hell even with MSFT they used to have common sense, like Windows activation...do i care? No. Why? because after changing every. single. part. on this desktop i had to re-activate exactly ONCE, and that was when I swapped boards. it took less than 10 seconds online, and that was it, done. Compare this to Vista and its black screen of death or even worse WMV/WMA DRM as examples of DRM done poorly. It was glitchy, often screwed up, and ALWAYS defaulted to "Ur a pirate!" so you ended up just wanting the shit far away from you.

      So just like VB or Java or Flash or any other thing out there DRM can be done right, or it can be done poorly. Personally I'd rather have a couple of services like Steam and netflix as "one stop shops" where I can buy anything I want cheaply an easily than see our rights stripped away with ever more draconian laws and customer screwing policies like 6 strikes, wouldn't you?

      --
      ACs don't waste your time replying, your posts are never seen by me.
    3. Re:DRM is not useless by ackthpt · · Score: 4, Insightful

      DRM hasn't failed and isn't useless. It's quite successful at pissing off honest customers and turning them towards piracy and circumvention.

      Not just DRM, but all the preview sh*t when I put a DVD in the player. I don't give a damn about all these other things, why do I have to sit there hammering the skip forward button and/or menu button? It's a great motivator toward ripping the content off the DVD, burning it on a blank and then watching it whenever I want to see the movie.

      Disney one of the worst offenders.

      --

      A feeling of having made the same mistake before: Deja Foobar
    4. Re:DRM is not useless by 0111+1110 · · Score: 4, Insightful

      i point to netflix and Steam as examples of DRM done right. If you make the customer feel they are getting more value in their purchase and the DRM is unobtrusive and just rides along? Most won't care. look at how many had a fight over the Humble bundle and I was surprised to see how many agreed with me that it didn't matter because Steam gives value like chat, updates, matchmaking, etc and I know many pirates that once they got netflix haven't bothered, they have so many shows to watch now that frankly they could live in front of the set and never see it all, so why bother pirating more?

      I think you are missing the point of DRM. The point of DRM is to stop unauthorized people from using or copying or distributing your software. That is its purpose. It was never intended as some kind of additional feature to get more people to buy your software as people like you claim Steam has done.

      In terms of stopping pirates from using software DRM has been an almost complete failure. There is the rare exception where the developers themselves devoted a large percentage of their development time to weaving DRM into thousands of different places to intentionally make things difficult/tedious for crackers, but those are rare exceptions. For the most part DRM has been an utter failure.

      When I want to buy a game that is only available on Steam I download it from TPB or KAT instead. The torrent version has an additional feature other than its lower cost: it allows me to install it without an internet connection. That's the kind of feature that I don't need all that often, but when I need it I really need it. So I rationally choose the version which offers me the most value: the DRM free version.

      There will always be a significant percentage of sheeple who don't care about DRM, no matter how draconian it is. Even the must-always-be-connected-to-server DRM sells many copies. Obviously less intrusive forms of DRM like steam will have fewer people objecting to it, but that doesn't mean the publisher isn't losing a significant number of sales from people who refuse to pay for DRM or who don't have reliable (or any) internet connections. Obviously such publishers just don't care about those people. They are willing to lose some number of customers in order to have that warm fuzzy feeling that delaying the release of their software on TPB for an extra 12 hours seems to give them. If I were a stockholder I would not be happy with that decision.

      --
      Quite an experience to live in fear, isn't it? That's what it is to be a slave.
    5. Re:DRM is not useless by Jiro · · Score: 5, Insightful

      The point of DRM is to stop unauthorized people from using or copying or distributing your software.

      The *stated* point of DRM is to keep people from pirating your software. The actual purpose of DRM is to maintain control over the user, thus using it to prevent used games sales, format shifting, playing on unauthorized devices, etc.

  2. 10 Years ago? by jabberwock · · Score: 4, Insightful

    ... except for the few people I knew who worked for companies that stood to benefit from the wide acceptance of DRM, pretty much everyone was predicting it was a disaster starting in about 1996.

  3. Re:DRM failure predicted 10 yrs ago? by Applekid · · Score: 4, Interesting

    The DMCA has, in fact, prolonged the life of DRM by making it a literal crime to circumvent it. At least in the US.

    --
    More Twoson than Cupertino
  4. Re:DRM failure predicted 10 yrs ago? by Microlith · · Score: 4, Insightful

    Not from what I can see. AACS was cracked within a year or so of the arrival of Blu-ray and HD-DVD, with BD+ falling not long after. The DRM on most ebook formats was stripped within weeks or less.

    The DMCA just makes sure that the tools to strip DRM are hosted outside the US.

  5. .doc file? by Kergan · · Score: 5, Funny

    Couldn't they have torrented a pdf file to make their case?

  6. Re:alright, by Austerity+Empowers · · Score: 5, Insightful

    The rest of their engineers.

    Basically they had 4 employees who realized what the rest of the free world already knew. This is why MS products are so lousy, only 4 people in the whole place figured this out!

  7. Was a pretty good talk by gweihir · · Score: 5, Interesting

    The paper presentation at CCS 2002 was pretty good. I was one of the about 60 people in the room and 5 minutes in I had the feeling of witnessing history in the making. And yes, in the Q&A part, they did directly confirm that they thought DRM was completely doomed from the beginning.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  8. Re:HDCP is still here by SuricouRaven · · Score: 4, Insightful

    CSS isn't just about stopping piracy. It also requires a license to impliment legally (Being both patented, and covered under the DMCA or your national equivilent). The terms for this license include a number of other conditions, including mandating that players respect the region code byte and that they not provide the ability to skip videos in a certain navigational area usually used for anti-piracy warnings and studio logos. As an anti-piracy measure it is useless today, but it still serves to keep consumer electronics manufacturers (Who cannot afford to go underground to avoid lawsuits) more-or-less in compliance with the region system.

  9. The money quote by mystikkman · · Score: 5, Interesting

    Te hoped that writing a paper saying so would reassure Microsoft's critics in the technical community that Redmond wasn't planning to lock down the PC in order to satisfy Hollywood. And by making it clear that the people behind Microsoft's "trusted computing" push were not fans of DRM, Biddle hoped he could persuade the technical community to consider other, more benign applications of the technology he was building.

    snip

    It didn't work out that way. "I almost got fired over the paper," Biddle told Ars. "It was extremely controversial." Biddle tried to get buy-in from senior Microsoft executives prior to releasing the paper. But he says they didn't really understand the paper's implications—and particularly how it could strain relationships with content companies—until after it was released. Once the paper was released, Microsoft's got stuck in bureaucratic paralysis. Redmond neither repudiated Biddle's paper nor allowed him to publicly defend it.

    At the same time, "the community we thought would draw a connection never drew the connection," Biddle said, referring to anti-DRM activists. "Microsoft was taking so much heat around security and trustworthy computing, that I was not allowed to go out and talk about any of this stuff publicly. I couldn't explain 'guys, we're totally on your side. What we want is a program that's open.'"

    The so called "community" is and was rabidly anti-Microsoft regardless of the actual merits of the case. There are umpteen journalists(eg. Farhad Manjoo of Slate), who railed endlessly against Palladium, but when Apple implemented the Palladium spec to the letter in the iPhone and iPad, locked out developers and users from their own machines, the exact same people went "OOH SHINY" were falling all over themselves singing its praises.

    See http://www.salon.com/2002/07/11/palladium/ and http://www.slate.com/articles/technology/technology/2012/03/new_ipad_how_apple_s_tablet_strategy_parallels_its_unbeatable_ipod_success_.html

    Now we have the slow decimation of user and developer freedom led over the past 5 years by the iPhone, iPad, Kindle Fire, Nook,locked bootloaders on Android phones like the Droid, tablets etc., Windows Phone and now Windows RT. As they say, the first cut is the deepest, the war was lost when the public started buying iDevices in droves and they *still* can't keep them in stock. Now everyone can say if it's okay for the market leader Apple to do it, so can we. This is the harm with the "raise hell if it's MS, ignore and pump it if it's Apple etc." attitude of the community and Slashdot is no different for the most part. If, instead of playing fanboys and haters, if pundits and tech folks actually stood for openness like RMS did, we might have had a different future today.

    The cat is out of the bag though. Apple charging 30% of even the services offered through apps is just the tip of the iceberg.

    1. Re:The money quote by fuzzyfuzzyfungus · · Score: 4, Informative

      The fundamental misconception of the paper(which, as you note, Apple was first to demonstrate in a broad and serious way) is that DRM is about controlling exfiltration rather than controlling playback.

      Yeah, obviously, even the people who design PAL hardware for thermonuclear warheads are going to have a difficult time designing DRM systems that will resist prolonged physical access by a sophisticated attacker. If they have to build such systems on a consumer electronics budget, forget about it.

      However the 'break once, play everywhere' DRM defeat model implicitly assumes that computers will be 'default allow' devices. That, unless a given object is specifically encrypted/crippled/otherwise fucked with, they will happily do their best to work with what they are given.

      This simply isn't true. Market forces have prevented going 'default deny' in certain highly competitive sectors(eg. nobody selling cheap DVD players can get away with selling DVD players that play only CSS-encrypted disks) and for certain legacy formats(it isn't really an 'mp3 player' if it doesn't play mp3s...); but it is increasingly the case that more sophisticated devices are 'default deny'.

      None of today's consoles will boot an unsigned binary, even one otherwise compatible with their environment without modification to the system(sometimes a software crack, some are known only to possess hardware vulnerabilities requiring physical modification). The iDevices of the world will reject any .ipa executable package that isn't DRM-encumbered. You can strip off the "fairplay" all you like; but unless you have a jailbroken device or access to a trusted signing key, you aren't going to be running it... Microsoft's "Windows RT" will be the same thing for Windows style executables.

      If anything, what the MS guys demonstrated is that (because of the 'darknet' consideration) 'Trusted Computing' as DRM is doomed to failure and its only real function is trusted computing as control.

  10. The precioooous ! by ElRabbit · · Score: 5, Insightful

    I have been hanging around with TV executives for 10 years, always trying to make them understand that all the protection they were trying (lamely) to put in place will only block legitimate customers while increasing product cost. But those guys behave like Gollum in Lord of the Ring: their content is sooooo precioooousss. They are beyond any reasonable argument.