Microsoft's New Audio Format Cracked

Barcode (JPB) was one of the first to send us the word from Wired that the new audio format Microsoft introduced (Two days ago), supposed to be a secure format (resricting playback) has already been cracked. Dimension Music first carried the news-and what a name the crack has *grin*.

why would anyone like to use this thing?

[LuckyStarr]

tell me:

why would one buy a song which you can only play
in windows (on a computer with those noisy fans
and harddisks) ? i only (if ever) would consider
buying a song online if i had a chance of copying
it to a cdr and listen to it without a computer.

so... would joe dumb-user buy more songs over the
net after his first "oops. windows blew up and all my songs are gone. (what's a backup?)"-experience?
would joe dumb-user even find this "crack"???

then the industry would have no chance to
sell their music because no one would buy them.

anyway... only my own opinion. :-)

Re:Not Cracked

[jovlinger]

retract. My bad. Their site was down so I couldn't get their side of the story 'till now. it appears to be a true crack. The encryption is broken, the song is left in the compressed format.

Re:Great News

[My_Favorite_Anonymou]

Yay, that is so great! Now we'll have to wait even longer for cheap singles to be sold on the Internet from legitamate sources. We are now left with three choices: 1) Going to MP3.COM and downloading music from guys whose studios are in their garage. 2) Going to Lycos and spending an hour trying to download an Mp3. 3) Or paying $16 for a CD with many songs we don't want or like. This is such great news indeed!

honestly, couldn't agree more. I try to "download" some Sarah McLachian from NG (not loser ISP newsgroup, Newsguy.net), but only getting the latest CD from the there, even with search utility. And I know I have no shot in hell getting them from ftp sites with my carppy modem (completes with you guys' T1? I can't even upload mp3 to those ftps for crying out loud.) Now I move to ebay, buying them and dumping them back to ebay. -I have my defends, there are a lot of movie soundtrack I would like to listen. And I know I can't afford 10% of them. At least it's somewhat legal.

For example I don't care about Western but I'd like to put my hands on a couple of "How the West Was Won" soundtrack, and there's nothing short of paying amazon 26 bucks can I get them. These example shows that electronic music can really provide genre/niche music to broader audience. Just like what VHS did to movie. I say start electronic distribution from classical music and soundtrack, honor system works better in there. Or release the new songs to CD and release mp3 18 months later just like video tape. (If you can still remember "baby one more time..." 2 years later, the chance are you will pay it.

CY

Re:Better Programmer != More Intelligent

[Delphis]

IMHO, the term 'great hacker' does not NECCESSARILY mean 'great programmer' ... ask anyone who's been formally taught software engineering or computer science.

True though that intelligence does not guarantee programming talent, it might however allow one to express it and/or learn about it faster though.

Re:Great News

[cookd]

FWIW: in a warped sort of way, ASF _IS_ MP3. ASF is a wrapper around almost ANY video or audio streaming compression method. One of the encoding options for ASF is MP3. It probably won't play in an MP3 player because of the wrapper, but the sound quality is exactly the same. The wrapper makes it easier for the system to stream it over the Net.

Re:Other Formats

[drig]

Well, the government can supply music producers with their public key. The producers would then encrypt a copy of the key to the music with the govt's public key and send it along with the music. Then, the govt could decrypt the music when ever they wanted to. This is called "key escrow", is a terrible idea, but it's better than using weak or no encryption.

Re:duck!

[Freedom]

All this is good in theory, but when it comes down to it the release of all the mpx encoding software into the internet there is almost no way for the companies to enforce such a standard. Given they coudl change some form of the encrytion but what's to stop Jow cracker out there from finding out the encrytion scheme? Many have tried this in the past, aka, MS, LINUX, IBM, the military, cellular phone companies, all are feasible attempts at putting out an encryption standard yet each one in time (some shorter than others had been cracked).

Re: not every album is a masterpiece, dildo.

[WNight]

It seems to me that the sheep are the people who listen to the whole thing, in order, because that's the way they're meant to do it.

I listen to music because I want to hear music I enjoy. If 80% of a CD doesn't interest me, why should I listen to it just because it's 'part of the composition'?

The argument is partially valid. Art looks better when matted or framed. The frames/matte could be compared to the extra songs on a CD. But, nobody would say that the frame is as important as the art, just that it helps set it off.

It comes down to, do I know my own tastes, or does some musician know them better than me?

You may find that you can't arrange music in as enjoyable a way as the artists can, but I know my own tastes well enough to program music I want to listen to.

Thus, I'll buy singles of the songs I like, or maybe a package deal on great albums, but once I have them, I'll delete the crap that I don't like. This composition thing is for sheep who can't decide what they like.

Re:One Question

[pod]

Questions are always informative, or didn't you know that?

Re:Is secure music possible?

[PurpleBob]

Oh, they could prevent an analog copy - simply introduce a sound format that's so secure, you can't play it! Attempting to play one of these files would make the analyzer bounce up and down, but the sound it would actually produce would be the Microsoft Sound over and over again. But optionally, for a small fee, you could click an 'ActiveListen' button which would cause Microsoft agents to barge into your house and point a secret device at your computer that would (a) make the music play, (b) delete any copies of Netscape on your computer, "for security reasons", and (c) check for anything recording the audio. If anything was detected, your personal information (and your Pentium III ID, if applicable) would be sent to Microsoft's servers, also "for security reasons".
Oh great, I probably just gave them ideas.
--

Re:ARRG!!!

[WNight]

Did you post it as HTML or 'Plain Old Text'?

Look at the selector box when you post again, that's probably your problem.

Re:this is a "crack"...

[PurpleBob]

And the Microsoft employee was telling the truth in the same way that Bill Clinton was. (i.e. not).
The encryption really was cracked.
--

Re:One Question

[Chip+Salzenberg]

Gurusamy Sarathy has the pumpkin for new work.

Meanwhile, I'm keeping the pumpkin-fires burning for 5.004 and 5.005 maintenance.

Re: not every album is a masterpiece, dildo.

[the_tsi]

Those of us who use laptops and/or crappy speakers certainly can't tell the difference between 16kbps mono and 128kbps stereo.

Nor those of us who still listen to vinyl. (It DOES sound better, you know... :P )

-Chris

OK, lets get this straight

[pod]

Someone who is willing to actually buy a track or a CD or whatever that has been locked with this MS scheme and crack it with unfuck, or who has done it already.

On one side I'm hearing that unfuck is a crack, on the other side MS says unfuck just samples the soundcard as the locked file is playing.

Can anyone state for sure which one it is?

Re:Great News

[Lemmy+Caution]

Um, this is an utterly spurious argument.

It is capitalism. It is entirely compatible with laissez-faire capitalism that monopolies develop due to market forces, and preserve themselves and expand without recourse to force.

And that is one of the bases for those of us who aren't laissez-faire capitalists for criticizing capitalism.

big stinky deal

[joshua_doesnt_know]

Seeing as I cant afford a portable MP3 solution and tend to listen to independant or obscure artists, not to mention that I dont have the best computer/internet connection, I still would rather buy a CD than use mp3's. I like being able to stick my CD in any CD player and it working, getting artwork and lyric sheets. Anyway, if I can mail order most CD's that I want for 12 dollars or less, i can't see paying for some mp3, or even spending the time downloading it. If you really like the artist you would support them by buying their album and not pirating it, especially if you dont listen to top 40 crapola.

nuff said.

Re:Great News

[JaySWF]

You can always try www.oth.net or mp3.pagina.nl for the latest .mp3-files.

Re:Other Formats

[DrProton]

Even if the decryption happens in the speaker, the signal has to be converted to analog to drive the individual speaker elements or the crossover. If the speaker enclosure were physically secure and shielded electromagnetically I suppose it could work. I have to go hug my turntable now!

Re:Personal Observation

[Disco+Stu]

I've never met a damn fine programmer who didn't.


--This is my damn fine sig.

Re:mp3 is a waste of my time.

[Russ+Nelson]

Every time I try to download mp3's, I run into a banner site, or a ratio site which doesn't accept [anything I have to] uploads, or the site is down, or the password doesn't work, or the site is forever full.

Why can't I just *buy* mp3's? It would be a heck of a lot cheaper than the time I've wasted trying to download them for free.
-russ

Other Formats

[HaKn5La5H]

It sounds like this crack can easily be applied to other secured formats. Just out of curiousity, how do you stop something like this?

Re:Other Formats

[MassacrE]

Yes, but then the communication format would be documented- you could not have the stereo negotiate a connection with the speakers pretty much, because then someone could record the encrypted conversation. So basically there would have to be an encrypted audio file on the CD, with the decryption built into the speakers (and mounted in such a way tampering destroys the speaker), and an encrypted connection between the two based on a disk key, and individual keys negotiated from every speaker you have. You could devise something like Macrovision for direct re-recording possibly (although I don't see how). But you would still have to deal with people knowing how the system works (giving the potential to crack it), you would still have the audio available in the clear at two points (recording-time and playback time- someone could run off with the master tapes if they wanted an unencrypted copy bad enough). Even if you devised a perfect way to do it, it would be next to impossible to understand, expensive as anything (the speakers for such a system would probably have to be internally amplified, and all components and interconnections would need to be digital), and would cause a downright revolt among people who have gotten used to an in-the-open format and the violation of their 'implied' rights and freedoms they had before with an unsecure format.

Re:Other Formats

[steve_bryan]

Damn, this is really getting sloppy. No, what you described is not "key escrow" and not even particularly close. With public key cryptography it is crucial that the private key be kept entirely secret. If data were encrypted with a 'govt public key' then only someone with the corresponding 'govt private key' could decrypt it which would be approximately no one. Not much of a distribution scheme. If you include a session key which is encrypted with a 'govt public key' then a govt agent could use the govt private key to recover the session key which could be used to unencrypt the content which had been encrypted with a different algorithm (probably a stream cypher like RC5) by that session key.

Anyhow the relevent fact from the world of cryptography is that Sony is shipping silicon that enables encrypted IEEE 1394 (aka firewire or i.link) links which might enable secure delivery down to the powered speaker level eventually. On the other hand the CSS key exchange mechanism for DVD-video has recently been cracked (or exposed) so there are no guarantees that such a scheme can remain uncompromised.

Re:Other Formats

[MassacrE]

Yes, but then the communication format would be documented- you could not have the stereo negotiate a connection with the speakers pretty much, because then someone could record the encrypted conversation. So basically there would have to be an encrypted audio file on the CD, with the decryption built into the speakers (and mounted in such a way tampering destroys the speaker), and an encrypted connection between the two based on a disk key, and individual keys negotiated from every speaker you have.

You could devise something like Macrovision for direct re-recording possibly (although I don't see how). But you would still have to deal with people knowing how the system works (giving the potential to crack it), you would still have the audio available in the clear at two points (recording-time and playback time- someone could run off with the master tapes if they wanted an unencrypted copy bad enough).

Even if you devised a perfect way to do it, it would be next to impossible to understand, expensive as anything (the speakers for such a system would probably have to be internally amplified, and all components and interconnections would need to be digital), and would cause a downright revolt among people who have gotten used to an in-the-open format and the violation of their 'implied' rights and freedoms they had before with an unsecure format.

Re:Other Formats

[Stonehand]

If

• You're not allowed to replace the audio device interface.
• The interface only accepts normal, raw audio data.
• It is possible, by virtue of the operating system design, to capture data going to the interface.

then it can be intercepted, it would seem. So, break one of the assumptions: require audio devices that can handle the protected data, or block all forms of interception (which might be tricky if one includes attacks on the physical connection?). Ugh.

Well, perhaps there's a more elegant way, but it's not as obvious as a giant mutant glowing crow in a snowfield.

Re:Other Formats

[lordsutch]

Of course, Macrovision (I and II) has been cracked too. Get yourself a Sima Color Corrector and use the S-Video out on your DVD player (or newer video card... you can use composite too, but the resulting quality is rather poor), and you're set.

Not that I'm advocating DVD piracy or anything...

Re:Other Formats

[Ribo99]

Why can't you just put a cord from your speaker out into your line in and record the music in any format you like? I don't see how that wouldn't be possible. You might get a degradation in quality, but I couldn't imagine too much.

Re:Other Formats

[Stonehand]

That's basically the conclusion that I drew: to stop interception, you must be able to use a format that nobody can read unauthorized, but current destinations (audio devices) weren't exactly designed that way.

How do you send a "secret" message to somebody who does not know any encryption algorithms and cannot keep *any* secrets (including those in his head)? This is an analogous problem: the audio signal is *everything*, but also happens to be necessary -- and it's basically cleartext from a pirate's POV.

As somebody else noted, require special hardware on the receiving end, as hardware reverse-engineering would make this a lot more difficult, most likely.

Re:Other Formats

[Fiddler]

This whole story just proves the point that copy protection will never work.. I dont know of any succeseful copy protection schemes taht exist. I honestly dont think it's possible. i mean so far we have what?.. ok .. VHS has that phasing in and out "protection"- but u can go to an electornics store and buy n of those boxes that "will clear up picture quality" (yea right) and they will let u copy any video tape (the boxes go for anywhere from $30 to $100). Software has serial numbers - nuf said (lol)... some software has dongle protection .. while this is a little better, ANY software can be re-written using a dis-assembler / assembler .. it's a matter of finding that little "if dongle=true then" statement (ok .. so it's not that simple but u know what i mean).
and copy protecting ANYTHING analog is a joke .. the only way i could see copy protection is if the media, the information stored on it and the retrieving hardware are all proprietary and all use some sort of encryption right down to the output device.. of course this would be cracked also - but would be more expensive, would take more time, and less people would be likely to do it (like cable and sattelite cracking boxes/chips).
So why does everyone still bother with the feeble attempt?.. the only thing they're accomplishing is igniting some cracker/hacker's imagination and making all those coders' hands itch with excitement of taking on a new challenge.
the more of these "methods" out there, the more people are going to turn to other "illegal" ways of getting the information.
copy protection will not stop anyone ..
when will companies realize that maybe people would pay for media, movies, music, software if these were priced fairly. or maybe if those registration cards didnt cause your mailbox to explode with junk mail?
dont get me wrong.. i pay for music cd's, i buy movies ... (ok maybe i dont pay for software :) .. but sometimes i just want to get a song that i just heard on the radio or get a song that's been stuck in my head all day just so i can figure out some lyric.
i think coming out with new versions and ways of copy protection is just a waste of time and money .. why not pass that money onto the consumer and let them get their music free or for a really small charge (i'm sure you'll make up the difference with all the ads you'll stick on the download page) .....
case in point - DIVX
'nuf said

---
Mike D.
fiddlerxl@hotmail.com

Re:Other Formats

[broter]

Don't discourage companies from trying to enforce copyrights; it happens to pay a lot of programmers' salaries (and gives the rest of us a good laugh in the mean time). If you think a more realistic view of copyright technology will cause suits to price product fairly, you haven't attended a business class :)

damage control

[xeno]

MS's reaction to unfuck.exe now appears to be incorrect -- it does not intercept the audio stream, but is a true crack. No D-A/A-D loss, not even any loss of compressed file size.

I wonder if MS's mistaken spin on this was intentional (i.e. make the crack seem as if it produces low-quality audio), or if they just sent a vacuous PR-drone to speak to the masses.

Re:Uncopyable Music Impossible

[MuppetBoy]

"The only truly uncopyable music is also unlistenable music."

Then perhaps John Cage is the answer to all Microsoft's problems... ;-)

This is a Good Thing for MS

[Skyshadow]

I mean, who would start using their pay format when a perfectly good free one was available?

Actually, the cynical part of me thinks that mayhaps MS made this format easily crackible in order to assure acceptence and still seem above board. After all, only a small percentage of potential consumes will ever use a cracking tool. It may cost them millions or billions, but it has the potential to make them many times that much.

----

Re:This is a Good Thing for MS

[hunterotd]

I think I see something:

• Microsoft is not stupid. Bullying, Vindictive, and Untruthful sure, but not stupid.
• MP3s are very popular.
• Microsoft will give anything to be popular. This is to benefit their shareholders. If the Microsoft player is as good as all other players, and supports many different formats, then people will use it.

Therefore, Microsoft writes up a quick and dirty tool limit the play of music, but makes it so weak that the 1% who look at this stuff are able to crack it, do. This makes Microsoft look good to the Music Industry, who see that Microsoft is rooting for them. This makes the format look good to the populace, which will add it to their list of potential playable formats, and if it runs out, will run the cracker on it, and get themselves an mp3 to view. Microsoft wins and it's shares continue to go up.

Re:This is a Good Thing for MS

[dattaway]

MP3 is allready popular! I'm vacationing here in Kansas City and picked up a Diamond RIO MP3 player for $150 at one of these office supply stores. This thing is perfection down to the gold plated jack and the audio is equaly perfect. With something like this on the market, why wait for something proprietary that will break current ripped collections? cdparanioa and bladenc work great with it and the AA battery lasts 12 hours. Pick one up, these things are great!

mp3 won't vanish anytime soon.

[psp]

I think this is really good news.

I mean, if I buy a cd, I am able to record it to other medias, such as minidisc, without loosing quality. Mp3 should be used for music sold over the net for the same reason.

And also, imagine buying a song that could only be played in windows, with programs from ms.

Re:mp3 won't vanish anytime soon.

[jms]

"As good" is very relative. It depends on the application. If your application is tape trading (as in Grateful Dead and Phish tapes), then digital beats the pants off of analog. Why? Because tape traders deal in high generation tapes. Make a 6th generation cassette, and a 6th generation DAT clone or CDR. The cassette will have hiss and distortion, and the DAT or CDR will be virtually indistinguishable from the original.

Re:mp3 won't vanish anytime soon.

[Kyobu]

Obviously. I was talking about good-quality LPs, mainly, although certainly shellac and reel-to-reel are good, too, although very inconvenient. As to convenience, CDs are naturally much more so than LPs, which is why I use both.

Re:mp3 won't vanish anytime soon.

[Chris+Hiner]

My favorite test is to pan the CD to one side, and the the wave output to the other, and then play the CD and MP3 at the same time (takes a bit of practice). With headphones, it's then really easy to hear the difference. Although, after I encoded, and noticed a noise in the MP3, I listened to the WAV, and it had it too... Blah..

Re:mp3 won't vanish anytime soon.

[Kyobu]

I mean, if I buy a cd, I am able to record it to other medias, such as minidisc, without loosing quality.

No, you can't. You can make a DAT without losing quality. You can't make an MD, though, because MD's are lossy. I love MP3s too, but they are NOT CD quality. Try it sometime: play a track off a CD, and then play exactly the same track off an MP3 on the same hardware (both computer, probably). The MP3 will sound worse. CDs also sound worse than LPs, because the sampling is too coarse. I have heard a true 20-bit DAT, and it blows a 16-bit DAT of exactly the same material on exactly the same equipment out of the water, and in fact is pretty close to analog quality. So you should be very careful when making claims that conversions are "perfect," especially when dealing with lossy formats like MD and MP3.

Re:mp3 won't vanish anytime soon.

[Dwonis]

And also, imagine buying a song that could only be played in windows, with programs from ms.

A monopolist's dream.
--------
"I already have all the latest software."

Re:mp3 won't vanish anytime soon.

[Eponymous,+Showered]

You can make a DAT without losing quality. You can copy a CD, sample for sample to a DAT no problem. I've done it.

Re:mp3 won't vanish anytime soon.

[Kyobu]

That's what I said. DATs are non-lossy. My somewhat-off-topic point was that neither CDs nor DATS are as good as analog.

Re:Music you don't like/don't want

[pobbard]

Actually, albums as a 'concept' was short-lived anyhow. Albums started as singles surrounded by filler (often 80%) in the early 60s. Check out some of the pre-WHAT'S GOING ON stuff Motown put out - one amazing single, loads of rerecordings of other artists songs. And they weren't alone. I think the 'concept album' (really starting about 1965) still exists, but is currently much less successful commercially than the standard hits-and-filler format. There are exceptions (e.g., Radiohead's OK COMPUTER) but they are exceptions, much like they were in 1965.

--Philip

The more they restrict commercial music...

[sawdust]

...the more music with liberal distribution rights will flourish.

I for one welcome these restrictions. I don't think it should be _easy_ or _cheap_ to listen to someone like Celine Dion. Masochism is no fun if you don't have to work for it...

Insecure, copyable, free Music
Total Human Solutions Inc.

Of course...

[bunyip]

It's just a numbers game. A few M$ programmers pitted against thousands of crackers. The crackers take it as a personal challenge, it's fun, they'll stay up all night just to do it.

IMHO, I'm a damn fine programmer, but I know that there's some smarter programmers then me out there. On the other hand, there are many people who don't see the world this way. It's kind of funny, in a twisted kind of way, to see their code and their egos squashed like this. Maybe they deserve it...

Re:1st

[eddy]

>So what? I'm not going to ever be using anything

I believe the point is that MS once again show that they are incompetent when it comes to security.

But then, I don't know the details about this format, it's entirely possible it weren't designed to withstand this kind of attack.

/%/)+Eddy

Hey Y2K is also a "minor issue" to them!!

[MarNuke]

blah! you bored bastards!

Re:Great News=>Digital Satellite!!!

[RickyRay]

An unknown option:

I have the DishNetwork box that includes an all-digital variation on VHS (DVHS). On the music channels I can record at CD quality, with onscreen titling and everything, and no commercials. When I have a handful of songs I like, I can run them through the computer (never hits analog format) and.... hooray! Perfect MP3 files. Not the easiest way to do it, but I can leave it recording for 5 hours overnight when it's not in use (I'm paying for it; may as well get what I can out of it).

Re:Is secure music possible?

[jtl]

You can record the signal going to the sound card, but to store it in any reasonable amount of space, you'll have to compress it. mp3 is lossy, and I'd assume WMA's compression is as well. At best, the end results won't be as good as the original; At worst, artifacts in the original will trigger worst-case behavior in the mp3, leading to something noticably worse.

This is similar to what happens when you convert a graphic from jpeg to a raw format and recompress it. The effects are bad enough that graphic artists keep uncompressed copies of their work in case any modifications are later needed.

Re:Yes and No. Micro$oft can pour $$$ into 2010 te

[MarNuke]

It doesn;t matter

How will buy it but a massive amount of fools!

Re:Hardware/Software Encryption

[Lars+J]

Can someone explain to me how on earth music/video can *ever* be protected?

If the media streams are watermarked (or whatever they call it), you can of course still decrypt and redistribute cracks, but all the cracks will contain identifiers that will point back to you. When law enforcers come over such cracks, you are in trouble...

Watermarks can be removed if you know how/where they are inserted, but who knows if the watermarks you know about (the watermarks identified by e.g. law enforcer software, which will end up in some hackers hands before the law enforcers got it themselves) are all the watermarks the file contains? Later in court the movie distributer will pull out a piece of software that will still identify you as the copyright infringer even though you thought you removed the watermarks...

Now, tell me - how many (potential) millions of dollars does a distributor lose because of one crack? My wallet isn't deep enough at least...

this is a CRACK, not a stream tap

[Rabid+Mongoose+Boy]

This approach DOES NOT require decompressing and recompressing.
It is NOT a tap of the unencrypted stream.

The following is a copy of
a later article on dmusic.com refuting the misconception created by the Wired Article. I'm posting it here to quiet the flames, and because dmusic looks like they've been nearly slashdotted to death.


Microsoft's response to UNFUCK.EXE
by Angelo on August 18, 1999
Microsoft's attempt at an encrypted format has been broken, and that's
truely unfortunate but really not their fault. As explained in our previous
article, the CIA and the NSA put limitations on how encrypted a format may be.

To protect ourselves, and the integrity of our reports, we feel the need to
respond to Microsoft when they say unfuck.exe is no different from a program
named audiojacker or total recorder which takes audio from your sound card
and converts it to a WAV file. This has nothing to do with what UNFUCK.EXE
does! UNFUCK.EXE actaully breaks the protection on any file. There is no
loss in quality, the file isn't re-recorded or captured in some way.

A crack is just that, a crack. It's not manipulating the audio in such a
way that it can be captured, it is actaully destroying the protected [sic] on
an already recorded audio file.

We just wanted to clear that up as to not cause any confusion and sustain
our reputable name.

Re:This doesn't seem as good as it sounds

[Lars+J]

So if you have 500 hours of music, it will take you 500 hours to crack it all.

Rewrite the sound-card driver. With some luck, all the timing is done by the card so you can get to the music as fast as your processor allows.

Recompressing it in the MS format might not even be possible (is the compression software available), and if it is, being a lossy compression, would certainly degrade the music quality over the original copy.

Lossy compression algorithms for audio are usually based on removing certain frequencies which we don't hear too well anyways. The quality loss will probably be concentrated on those frequency ranges, while the frequencies we do hear will be preserved pretty good.

Re:Stupid.

[Mawbid]

Did you read the post you responded to? I mean all of it? It is several lines long; you may have decided to skip some of it. Or maybe you just don't know what watermarking is.
--

Re:Is secure music possible? [NO]

[simm_s]

As long as sound waves exist you can record them.


- Simmz

Re:Watermarking proves nothing

[Sanity]

But that guy who wrote that MS Word macro virus (Melissa?) did get tracked down using a 'watermark' of sorts didn't he? They simply did a web search for other Word documents which had the same ID key as the one that was being distributed, and got the guy that way.

--

Re:uhm... no

[Dredd13]

Actually, if you read the "response" on dmusic's site, you'll see that this is NOT how the crack is performed. That's what MS is claiming, but that isn't the case.

enkrypshon

[RoLlEr_CoAsTeR]

I'm going to assume, although I couldn't actually know (and tragically enough, I didn't read the 2 other [at the time of this writing] replies to the comment I'm replying to), that you won't really ever be able to encrypt something.. software or hardware wise, etc., etc. This is because, in my mind, since it was encrypted in the first place, that means that there exists a code somewhere (or some "code" somewhere) that is the key to its undoing. Whether or not anyone else knows this besides the maker of said code is not important. As long as it was encoded, it can be decoded. It's inevitable, therefore, that it will be "cracked," as long as the actual cracking of it will be worth the while. Therefore, I figure they might as well give up. It's a waste of time. Besides, who likes M$? ;-)

Re:enkrypshon

[Jeff+Ballard]

This is because, in my mind, since it was encrypted in the first place, that means that there exists a code somewhere (or some "code" somewhere) that is the key to its undoing.

Yes and no. Breaking any one particular encrypted stream is one thing. Breaking the algorithm so that *ANY* stream can be decoded (quickly) is a totally different one. Cracking an RSA stream is possible (given enough effort), but cracking the entire algorithm is nearly impossible to do. (You could be rich if you could do that :) ).

The pot of gold is not the any one particular stream, but rather the generic code-removal algorithm.

Re:ARRG!!!

[SeanNi]

'Plain Old Text' is broken on some browsers. Opera, for example, treats "POT" exactly the same as HTML, so I just use HTML as my default.
--
- Sean

Re:does anyone ever read comment number 183?

[hobbit]

i read it.

i disagree, the trick is *never to let microsoft get their foot in the door again*. mp3 has the potential to win because the internet has changed the rules and small companies can open wide distribution channels. artists (for the most part) would jump at the chance to rid themselves of the recording industry. here in the u.k. cd's are almost prohibitively expensive now (around seventeen pounds - twenty-five-ish dollars - for an album). artists would see more of the money they deserve if the likes of mp3.com can just gain momentum...

This is excellent !

[Goody]

Microsoft and the Record Industry both get screwed in one day.

There is a God !!!

"Authors shall earn a lot" is not a law of nature

[Morgaine]

Just because authors and the music industry made huge profits in the past does not mean that they *have* to continue doing so in the future as a law of nature.

For several decades, replication and distribution of music was hard, something that only a well-funded mega-industry could do, and that process made people a lot of money. Now anyone can do it, for peanuts --- the rules that held before no longer apply, and the natural thing to happen to that money-making process and to the industry that goes with it is for it to die.

The horse carriage industry used to be massive, a backbone of everyday life and a very important source of income for hundreds of thousands, yet now it's dead except as a niche tourist concern. So what? Times change, and just because you've been coining it in for decades doesn't mean that you have the intrinsic right to continue doing so.

Crack or rerecording, they prove my point--

[Cerebus]

Attempts at protecting digital recordings are doomed to failure. In the case of music, there's nothing that can stop me from putting a vampire tap on the damn stereo cables and recording the unencrypted data stream. Similar objections apply to video data.

As far as watermarking the data files go, since the signal is analog (as it comes out my speakers), I can invalidate any watermarking that's encoded in the signal from the digital data file by the simple expedient of rerecording at a different sample rate than the original.

Re:Remember UCITA

[spectecjr]

Remember folks, a crack like this would be illegal under UCITA because it purposefully circumvents a copy-prevention scheme.
You must fight the implementation of UCITA in your state!

Why? So people like you can get a free ride because you don't believe in intellectual property/copyright? No thanks... I prefer to reward people for their efforts, not rip them off.

Simon

What are they thinking?

[Schleppy]

Does Micro$oft honestly think that their new audio format will really take off? I have not heard it yet but people are not going to want to pay for music that they can get for free. And, if they think that they can release an updater that will get past the crack I am sure that a new version of the crack will be released. It is a complete waste of time.....

Why Use Secure Format Anyways?

[Coward,+Anonymous]

Being able to intercept the playback "is a reality of the music and PC industry," Unangst said. "It's like buying a pay-per-view movie and recording it on your VCR. People will still rent movies and buy CDs."

If they still think people will by CDs, why are they trying to market a secure music format? Their whole selling point was that CD sales will go down because someone can buy a CD and distribute the mp3 which will reduce sales, but now they're saying that because someone can buy a wma file and distribute it that this won't reduce sales?

Unfuck breaks encryption

[Col.+Klink+(retired)]

Unfuck.exe does NOT intercept the audio (MS made that claim), it actually breaks the encryption.

There ARE other apps, namely "audiojacker" and "total recorder", that do capture the audio output.

<hint> All this I learned by reading the links in the article. </hint>

Are you silly?

[Glothar]

I've never had to click banners or upload anything. All of the mp3's I haven't downloaded (because that would be illegal) I haven't downloaded (because that would be illegal) completely free: no hassle, no wasted time.

You just seem to be looking in the wrong spot. I could tell you some of the places I have never been looking for MP3's, (because that would be illegal) but that wouldn't teach you anything. You must learn that there are other protocols besides HTTP and FTP. (none of which I have ever got MP3's from, since that would be illegal)

Re:Or (another way)

[Phalcon]

THats what the previous stuff did. Ripped the adio to a wav (right from your soundcad presumably). But unfuck.exe is coolificated because IT ACTUALLY CRACKS WMA. Sqaushes it dead.

-Zack

Re:Great News

[jlb]

to quote from trainspotting: "it's not bad, but it's not great either." I'm all for supporting new artists but honestly, I believe almost everything on mp3.com is not worth the time it takes to listen to it. There are a few real gems there, but there's a reason there's so many unsigned bands out there.

If you read Dimension's site...

[Samurai+Cat!]

...the rebuttal to Microsoft's comments pretty much say "it doesn't interecept the outgoing data and rewrite it" - they claim it DOES actually strip the security settings from the WMA file itself. Wired is who claimed it intercepted/rewrote the data, Dimension says they're mistaken.

because they get akick out of it

[Xkill_]

i love how the article quotes

"Some guy will create an easy-to-use [cracking] application and send it out to the world because they get a kick out of it."

reality check, dont you think most people would do this because they object to the restriction of free formats/music? rather than doing it for sport, granted people probabally do this just to spite micro$oft but i doubt that is the biggest reason. its all about freedom.

Wired is WRONG. Unfuck.exe actually CRACKS WMA.

[Phalcon]

...According to Dimension Music anyways.

"To protect ourselves, and the integrity of our reports, we feel the need to respond to Microsoft when they say unfuck.exe is no different from a program named audiojacker or total recorder which takes audio from your sound card and converts it to a WAV file. This has nothing to do with what UNFUCK.EXE does! UNFUCK.EXE actaully breaks the protection on any file. There is no loss in quality, the file isn't re-recorded or captured in some way.
A crack is just that, a crack. It's not manipulating the audio in such a way that it can be captured, it is actaully destroying the protected on an already recorded audio file."

- DMusic's article


Considering DMusic were the orginal people with the story,and adamantly profess unfuck.exe's effectiveness, i would assume that they are correct on this issue.


-Zack Rosen

Re:Uncopyable Music Impossible

[Kintanon]

There is no such thing as an uncopyable sound.
I can put my Mic near the speaker and record the thing as a wav as it plays, then compress it to Mp3. With a decent mic and speakers and no background noise you can get an excellent reproduction from this. And, Lo and Behold! It's impossible to prevent!

Kintanon

I told you so

[Otto]

>The cracking file intercepts the audio data stream as the file is being sent to an output device -- such as a speaker -- according to Kevin Unangst, lead product manager in the streaming media division at Microsoft.

HAH! I knew something like this would happen. If you can't defeat the system, just work around it.

Face it folks. There is NO way to defeat this type of crack. I've said this many times. ANY system to protect the music has the fatal flaw that, at some point, it has to come out the speakers. :-)

I'm waiting for a generic version of something like this. One that will defeat ANY audio protection scheme they care to create.

---

Re:Flaw?

[jlb]

To solve the environmental security issue, we need a company that will sell computers with no ports for input devices that are locked inside huge steel boxes and buried in cement. Then the world will be safe once again for the large corporations who want to charge you for everything. (They really do need the money, how else can they try to put each other out of business?)

Re:Great News

[Falcula]

Part of the reason there are so many unsigned bands isn't because their music isn't good enough, it's all about marketability and selling out. I know that sounds cheesy, but it's true. One reply Elbo Finn got from a major label was something along the lines of "These guys are songwriters" and not somebody who would be easily manipulated into changing to fit the current in thing. Take a look at Blondie. If you know their old stuff you could see the change from punk to some mainstream disco fluff. Heart of glass wasn't a soft dance hit until they were told it would sell better in it's current encarnation. Luckily Blondie rocks no matter what they do.

Re:Music you don't like/don't want

[Ventilator]

Oh yes, there are quite a number of songs you'll never hear on radio but that are still much better than mainstream.

Or there are tracks, you can't even buy anymore. Just try to get your hands on a legal copy of "What evil lurks" by The Prodigy. Since I had no other choice but use MP3 I think it's kind of legitimate.

Hey, easy on the MP3.com dissing!

[A4Joy]

Guys whose studios are in their garage?

Sigh. First of all, true as this may be, remember that some of your vaunted classic albums of all time have been recorded in garages or on tiny budgets, just like the guys on MP3.com. All of them were at one point virtual unknowns, just like the guys on MP3.com.

I also infer from your comment that you believe the music quality (both technically and artistically) to be inferior because of this. A home studio can be whipped up with $35 shareware, a decent sound card, a lot of hard drive space for those tracks, and a couple of instruments. Also, if an artist is going to the trouble of creating an MP3.com site, he or she most likely has something of some quality, has something to say, and is probably simply interested in a little feedback. OK, I acknowledge that MP3.com is not really a forum for new artists to get "discovered", but just a interesting melting pot of the average musician looking for what any other musician is looking for--an audience, no matter how small.

I like the wide variety of types of music. I wouldn't be inclined to run out to the store and buy a (for example) trance album, but I'll download such music from MP3 to give it a try. Also, there is truly some unclassifiable stuff on there (as in the industry today), which always makes for an interesting and different listening experience--this is starkly in contrast to listening to radio today!

Give MP3.com a try. Pick stuff at random. Broaden your horizons, and cast away the shackles of your A&R men and marketing directors telling you that "Baby One More Time" is what you want to hear.

A4Joy (an MP3.com artist)

does anyone ever read comment number 183?

[fdicostanzo]

they should have waited to crack it until it became some standard and there was tons of music distributed with it....

i guess i'm just thinking like a criminal though.

Watermarking

[Otto]

Yes, but there was other evidence in that case, i.e. he had the viral code on his hard drive.

And to answer someone else's statement, a watermark can be so designed so as to SURVIVE a Digital to Analog conversion, and back to Digital. Even several such conversions. At some point, depending on the quality of the watermark, You lose enough data to lose the watermark.

I once had a really amazing demonstration of watermarking, as applied to pictures. A watermark was inserted into a GIF. The GIF was printed on a color inkjet (NOT a color laser). The printout was photographed with a Polaroid instant camera, and the picture was scanned back in. The watermark survived all this, and was readable from the file from the scanner. And trust me, the final picture looked REALLY bad after all this stuff. It wouldn't survive that twice in a row, but hey..

---

The problem with unfuck...

[pkj]

The problem with unfuck.exe is that it doesn't really give you access to the compressed data, but rather to the resulting decompressed stream. Any audio security stream can be "cracked" with something like unfuck, so I don't really consider it as such.

I am not familiar with the microsoft compression algorithm, but I assume that it is lossy, similar to mp3. By decompressing the stream, and then re-compressing it in mp3 format, you are likely to lose a substantial amount of quality from the original recording. This is not unlike making a copy of a copy of a tape using crummy equipment.

This is far from what you can achieve from a pure, lossless, digital to digital copy.

Re:Great News

[vt@office]

What have you been smoking? Microsoft is the epitemy of capitalism you retard. It's all of you people that would rather change the market by force (i.e. force of the government) rather than by voting with your dollars, that are closing in on communism!

What do you know about the communism? Have you been there? Have you seen a world of One True Way, One Party, One Car, One TV, One Everything? No? Then keep quiet. You don't have a clue on what a communism is.

I've been there, many years too long, and I'm telling you that if Microsoft resembles me something, than it would be a Communist Party of the Soviet Union. In a lot of ways.

As a side note, if the people here just start thinking about the Open Source, the people there have grasped the concept long ago - look at the Netcraft stats on Apache - about 56% worldwide and up to 90% in some former SU republics.

"Just to get a kick out of it"???

[Ryandav]

Notice one of the quotes down low on the article where some exec is quoted to say that the people who release utilities like unf*ck are doing it just to get a kick out of it.

I have to say, I can think of some pretty strong objections to that opinion myself. In classic political literature like Thoreau's (sp?) essay on civil disobedience, it is suggested basically, that if you morally object to some law or rule that it is incumbent upon you as a moral person to not abide by that rule. And I am not, AM NOT, saying that the person who cracked the MS format is doing this for that reason, but there are some principled and capable people who do things like this, testing security or routing around rules they feel are wrong.

I think that the committed allies of record labels and proprietary standards need to realise they aren't just fighting a bunch of bored 12-year olds in a basement, some people out there are actually trying to do what they think is right, or abolish practices they disagree with.

Perhaps this is one reason that "the man" is less effective at stopping such attacks, because in his heart he really believes that groups like cDc or the l0pht are just disenfranchised youths without any organizational abilities or communication skills. One of the CS profs here at the U is very active in his development on nmap because he believes in the open nature of security. I've known countless hackers and crackers that did what they did for more than "just some kicks..."

(sigh)

and just yesterday...

[jayrokk]

i was talking to a friend of mine who has a record label. we were looking over a vinyl of the new public enemy album and i was explaining to him that there is NO way to truly secure audio under windows (or any OS where peripherals are controled by OS-level drivers) because you can always swap your sound card driver for one that dumps data to the hard drive.

just like there's no way to prevent a user from saving graphics he sees on the web, there's no way to prevent him from capturing sound played from his computer.

my 0.02 euro

Re:Great News

[blue]

Hmm. I think it only reads from MP3 formats, but encodes in their own proprietary format, otherwise they wouldn't make claims that it is similar to MP3, but half the size. (I remember reading something similar to this at ``http://www.microsoft.com/asf", but there's nothing there left except for a download link to the encoder.) And, I just encoded an ASF with MP3 source, no MP3 output option. I suppose the ASF indexing is the 'wrapper' you're talking about that makes it easier (more efficient?) to stream.

MS Taking Revenge on Dimension's site?

[ReadParse]

Jeez, Dimension's site is crawling hard. Perhaps MS is taking out their embarassment on them.

Re:MS Taking Revenge on Dimension's site?

[Why2K]

More likely it's suffering from the /. effect!

Fake soundcard driver=Audiojacker

[Otto]

Except currently AudioJacker only works on NT 4.0 ...

---

uhm... no

[Hasdi+Hashim]

they didn't really 'crack' the encryption. all they did is circumvent the security. Nothing stops you from tapping the *uncompressed* and *unencrypted* digital stream to your speaker. if the format is lossy, a second lossy compression will less match the original sound quality. Not too much tho. :/

Re:Great News

[Microlith]

Or in the future pay $5 for a song you can only listen to while you are at home in front of your cmoputer (in Windows ONLY, cause MS won't make an ASF player for Linux.)

Not so...

[Derek]

just put one end of a wire in "spk out", the other end in "line in" and start recording...

Maybe you could even use a combination of a good mic and speakers...

Point is, if you can listen to music, you can record/copy/distribute music. Same thing goes for movies, software, and information in general.

The answer isn't encryption and copyrights. The answer is in new business models (and being the first one to do it.)

-Derek

Uncopyable Music Impossible

[Brian+Ristuccia]

The only truly uncopyable music is also unlistenable music. Anyone who claims to have an encoder or player that can prevent copying is a liar.

Re:1st

[Zigg]

IMO, probably not. It just demonstrates the fallacy of trying to close open technologies. You'll either utterly fail in closing it, or you'll kill the technology before it's out the door.

Kevin Unangst's words from the Wired article ring true here:

Being able to intercept the playback "is a reality of the music and PC industry," Unangst said. "It's like buying a pay-per-view movie and recording it on your VCR. People will still rent movies and buy CDs."

UnfSck.exe

[Stavr0]

"Okay. Okay. I take it back. Un-fSck you." -- Full Metal Jacket
---

Re:Dimension says it IS a crack

[Mike+A.]

We won't know until someone demonstrates this one way or another. One way might be to try using this UNFUCK.EXE on a system that has no software that can read the protected file. Then it can't hijack the playback mechanism and siphon off the unencrypted bits.

Another way would be for Dimension to actually release more details on how their "crack" works.

Not Cracked

[jovlinger]

Since the approach requires decompressing (and then presumably recompressing in mp3) the audio format, this isn't what I would term a crack.

I would not be suprised if this resulted in noticably lower audio quality.

Johan

Re:Not Cracked

[Mryll]

Yeah, but the information was discarded when the file was compressed, not decoded. The best you can ever get out of a lossily compressed file is the intended decoding. If you choose to re-encode it and lose more data, that's your choice. If you wanted to use the MS format files portably without losing more information, you'd just need to transfer them in their original format and crack them on a machine where you're willing to store the expanded representation.

I've never encoded, decoded, and re-encoded an MP3 to see how much generational loss there is.

Jeremy
Homepage

Re:Not Cracked

[Compuser]

Why recompress? Compression is needed for download.
Presumably you already downloaded a file in MS format.
Once the file is cracked, just send the resulting .wav or .au
file to a CD-R and be happy. You might also want to make
an audio CD, to listen in your car or anywhere.
Again, could anyone enlighten me as to why you need to
recompress?

Re:Not Cracked

[Trepidity]

For those of us who like having a few hundred (or a few thousand) songs on our hard drives to listen to without the annoyance of switching CDs, compression is a good solution. Buying 100 gigs of hard drive space is not.

Re:Great News

[Barcode]

It is good news. Microsoft is a mix between communism and viral marketing, and deserves to be shot down. It could have been a purposely crackable format, which I doubt, but it is still good news. And as for your comment, that is not the only three choices. Why would the release/crack of this format make everybody stop using MP3's? It just makes no sense. Yes, those three choices are some of the possible alternatives, but if you go into IRC, you can get mp3's quickly, Lycos is not the only source (in fact it is not really a source, most links are dead, and it is just leading you to other people's sites). Also, interesting fact, the file for cracking the format is called unfuck.exe, that's pretty cool. Well, with that said, I hope you see the error in your coments.

Re:Personal Observation

[simm_s]

This is true for a very few, but good programmers don't have enough time to brag.

"Good programmers walk everyone else talks."

Is secure music possible?

[aheitner]

As long as I've got an SB16 or similarly open-hardware card in my machine, there's no reason I can't basically write a driver to sit there and read what the card is getting, and save it to a raw file (which can later be mp3'd).

My (vague) understanding of unfuck.exe is that it actually intercepts the audio somewhere in the windoze pipeline (therefore architecture independent) -- this is also pretty easy under Linux.

On the (admittedly short) consideration I've given this, I just don't see a way around that problem for the secure music bastards of the world.

Questions/comments/snide remarks?

Re:Is secure music possible?

[chuck]

You're right. As long as the sound can be played on today's technology, there's no way in hell they're going to work around this... erm.... oversight. Not to mention, if your soundcard has digital output, you can just dump the thing to DAT, or into another machine.

The only way to block copying of music is to make a special DSP in a sound card that does the decryption, and the algorithm coded into hardware can't be that advanced or this thing will be very expensive and no one would ever want it.

Even given that, there's nothing ever possible that will prevent an analog copy, and I know from experience that if you have the right setup, with a good s/n ratio, you'd never notice the difference between that and a digital copy.

BTW How have things been going for you guys since the IGF? (This is Chuck, from VV.)

Re:Is secure music possible?

[Davorama]

I think the MS person quoted in the article as much as admitted that as long as the sound output has to get to the speakers there is no way they can do anything about this.

Re:Is secure music possible?

[Ryanwoodings]

BeOS is able to record what the sound card is playing without any problem, so no "secure" format would prevent you from re-recording the music the first time you play it.

Re:Is secure music possible?

[Terao]

One consideration could be that the audio encoding one would use to most certanly would be lossy. That is, you would basicly take away sounds that the ear cant hear. The trouble is that there are several different ways to do this and if you reencoded sound you already encoded with a different method the result would probably sound like crap.
Some signalprocessing guru perhaps can explain it better?

Re:Is secure music possible?

You're talking about aliasing. In a sampled system, signals that are at a frequency above half the sampling frequency get shifted, or aliased, to be below half the sampling frequency, hence also in the final output. This is true for ALL forms of digital music. That's why they all use anti-aliasing filters that cut off all frequencies above half the sampling frequency (that being the nyquist frequency). It is possible that the high frequency noise you mentioned could be difficult for a crappy anti-aliasing filter to cut out, but a high-quality recorder can get rid of that. Furthremore, it is irrelevant in this case because the sound being sampled was created by a sampled source. There will be no frequency components above half the sampling frequency, which will be (at best) 24 kHz (48,000 Hz / 2). Anyway, sampled data systems is a big topic. I mostly posted 'cause I could. Matt

Re:Is secure music possible?

[ramparte]

There's another approach to this - digitally watermark each copy distributed to each user, so you can prosecute users who give away their copies. A D to A pass would fix this, of course, at the cost of some fidelity.

There is a good analogy to copy protection of programs here, of course. The same sorts of schemes (like encrypted code segments) have been tried for protecting games with the same sorts of attacks (reading the unencrypted data as it is being executed) defeating them.

In that case, the final answer (as is likely here) was that you just make it cheap and easy to buy the game legally (or music), a hassle to defeat any copy protection (like, you just need to type a serial number in, but it's a pain for most people to defeat that), and settle with a 90% solution. I think that's what will happen in this market.

Wkit online

[LarsWestergren]

There is a Swedish system called Don't Bother Burn developed by a company called Wkit online which protects DVD and CDs among other things from being copied...they just got a big distribution contract. I'm looking forward to seeing how good it will be.

Re:It doesn't matter if it's crackable! (RANT!!)

[kuro5hin]

Despite your anti-geek flavor, you're pretty much right. My question is, why is the rest of the world so obsessed about this? Ever since I could buy a dual-deck tape recorder, I could dub tapes. Hell, a four-year-old can dub tapes. Not to mention duplicate videos (granted the quality goes to hell), and all of my point-click-drool friends copy cd's routinely. There's absolutely no copy-protection on any other media format I can think of, so what gives? I mean, it's a pain in the ass to get on the web and find all the mp3's you might want (if you're not a member of the juarez und3rgr0nd, that is), and most people, if they wanted mp3's, would pay a buck for the latest single IF THEY COULD. That's the really dumb part, IMHO. Jesus. Why isn't the RIAA out there selling MP3's while they ponder what to do about evil music hax0rs? There's such a huge market going to waste.

Rant. Part 2, I guess :-)

Re:duck!

[supz]

i'm too lazy to check all the sub-posts on this topic, so this might be already mentioned. anyways, even if they embedded a watermark into an audio file, it still would not matter because the mp3 file format already exists. why would someone go for something that can be traced back to you, costs money, and is probably very restrictive, when they can just get an mp3 encoder and rip some tracks off that?

Re:1st

[GregWebb]

Erm, Guys...

Why on earth was it decided that this was bad enough to warrant moderation to -1 and redundant? I dislike First Post! as much as anyone, but only when the poster has nothing else to say. This guy's making a valid point and the only possible crime is a silghtly OTT bias against MS, but I've seen far worse from many people.

Moderation's useful, but if too many people don't think about the grades the post is given, it's just going to be ignored becuase no-one will trust it.

Greg

Flaw?

[Zeni]

"We don't see this as a flaw," said Allen Beckerdite, chief
technology officer of Reciprocal. "It is a concern, and we'd
like to investigate how it happened."

Hmm did I miss something?

Re:[OT] bladeenc

[CaptainSuperBoy]

blade enc is good. you might be talking about the frequency cutoff it has at lower bitrates, which is true - but you really can't hear the highest frequencies on anything but the best headphones.. i'm sure the range at 128kbps is just fine for the rio crowd. however even at 128 it can only hold what, like 30 minutes of audio? when you start going below 128 that's when it really sounds ugly..

Cute, but keep trying.

[jms]

Interesting, but not even close to optimal. The problem is that the program just captures the output stream on the way to the soundcard.

Why is this bad? Because the data has been subjected to lossy compression, then decompression.

What you get is an uncompressed PCM file with WMA data reduction artifacts. This may sound OK as is, and you could always burn a CDR with this data stream, but I'll bet that if you compress it with MP3, the combination of the WMA artifacts and the MP3 artifacts will result in audible sound degradation.

Anyone have all the software together to try this experiment? I'd certainly be interested in knowing if I'm right about this.

When someone comes up with a way to resave the data as a WMA file with only the copy restrictions removed, I'll count that as a real crack.

Hardware/Software Encryption

[bloosqr]

Can someone explain to me how on earth music/video can *ever* be protected?? Everyone keeps going on about DVD and music formats but it seems to me that w/ music I should always at the very least be able to grab the stream right before it hits the sound card (i.e. uncompressed) and then convert it back to whatever I feel like. W/ regards to video, (such as dvd) why couldn't some enterprising kid grab the video images off the vram of the video card and then (given enough ram, cpu power etc etc) just recompress the stream back into whatever format they felt like. Basically it seems to me encryption formats are good and all but at some point the thing has to turn into something vaguely usable at which point it can be snagged. What am I missing here?

-avi

Re:Hardware/Software Encryption

[nstrug]

As far as DVD is concerned you can do it already. Check out DVDripper for a start. However, this only really works with software DVD. If you use hardware DVD, the unencoded stream doesn't even usually hit the framebuffer of the video card - it gets fed straight into the video encoder (the bit between the framebuffer and the monitor). You can't get at it without a hardware hack.

On another note, anyone who knows about DVD and in particular the Matrox DVD add-on (based on the Zoran chipset) please go to LiViD. We need help.

Nick

One Question

[Chip+Salzenberg]

What was Microsoft thinking?!

Re:One Question

[Wee]

You assume too much, Chip. MS is too busy thinking for you to bother thinking for themselves. They know what you want. Just go along with them...

BTW, who has the pumpkin these days?

-B

Re:One Question

[unitron]

Nothing against the poster, but how does this get rated "Informative"?

Did getting moderator status start including a free supply of drugs about a month ago?

Re:One Question

[HaKn5La5H]

i agree (2: informative)

Re:One Question

[unitron]

Agree with me, or with moderating "What was Microsoft thinking?!" as informative?

Seems to me that it's usually answers that are informative, not questions. (I said usually, not always).

Do I have this straight?

[Chris+Marlowe]

OK, so Microsoft designed, brought to market, and apparently got paying customers for, a "security" product that is secure only against people who use the security product?

Either

• my characterization of what happened is way too glib to be true, or
• we have found the Canonical Example of Redmond's inability to imagine a world outside the Microsoft Box[tm].

Ooookay...

[eddy]

.. I should have read the article first.

"[...]supposed to be a secure format (resricting playback) has already been cracked"

But the article does not mention anything about the format being cracked, only the security of it being circumvented.

Not very impressive, IMHO. Come back when the security envelope has been cracked in the cryptographical meaning of the word.

/%/)+Eddy

Re:Ooookay...

[Zurk]

true..but consider this : i have a secret message A that only B can hear. I put it in a bulletproof, bombproof van with a trusted security guard and ask him to carry it to B. I also leave the back door of the van open. do i have security ? NO. the van may never be hijacked by force but anyone can pick up the message with the back door unlocked. its cracked either way.

If anyone wants it, here's a URL...

It's Windows-only... But ah well. http://pluto.spaceports.com/~cosmo/un fuck.zip or http://home.swipnet.se/mp3/unfuck.exe.

Re:Great News

[Lemmy+Caution]

Well, there are textbooks that say A=pi*r^2. So if I tell you the area of a circle, am I plagiarizing them?

You really need therapy.

And we have new slogan..

[Skinka]

..Security trough stupidity. Way to go Microsoft.

I wonder if Wine will run the .exe

How do we know that it works?

[Wee]

They haven't given us the program, they haven't given us the source, they haven't even told us how the thing works. Dimension says that they don't want to give it out. What the hell is up with that?!? I think we should hold off on any dancing for joy until they follow cDc-ish "protocol" and release something besides announcementware.

I tend to take unsubstantiated claims with a grain of salt. And I can't help but wonder why they won't at least give out the app. Something is fishy...

-B

Re:Great News

[Lemmy+Caution]

Well, I didn't plagiarize a thing. What I wrote was not only what I was thinking, it happens to reflect what I believe.

I'm a college graduate (cognitive science) many years removed from social science textbooks.

As far as the usefulness of therapy in your situation: physician, heal thyself! (Or, perhaps it's a case of the cobbler's children going unshod.)

Music you don't like/don't want

[the_tsi]

I've had enough of hearing the excuse of only wanting one song on a CD as a reason to pirate it. I don't listen to many bands putting out music these days, but I can't imagine that an album is just a random collection of songs. Albums are supposed to be carefully crafted around a theme or sound. Look at Pink Floyd, U2, or The Who. If you grab any of their albums and listen all the way through -- ignore the fact that you've only heard one or two of the tracks on the radio -- there's a good thing going between all the songs. I seriously doubt bands these days are so desperate to "make it" that they worry entirely about the one single that the record label will release to radio stations (because God knows that will be the only song people will like... they must have better taste than normal human beings) than the rest of their CD. People need to learn to deal with the fact there are OTHER SONGS on a CD than the one that you've heard on Z100, WHFS, KROC, or MTV. And some of it doesn't suck. -Chris

Re:Music you don't like/don't want

[eht]

I agree it's a lousy excuse to pirate music but look at the list of bands you mentioned, they dotn put out much music anymore and the people who do put out music are now just throwing a whole bunch of random songs together in many cases, I buy albums for the simple fact most of the times there'll be songs on there I'd never hear any other way and probably likk them better than the one that gets 178 hours of radio airplay a week.

Re:Music you don't like/don't want

[blue]

I agree. Most of the songs that are played all the time usually will end up giving you a headache when you listen to it enough, anyways (same applies to MP3s).

Re:Music you don't like/don't want

[droopus]

This sounds like an urban legend in the making to me. I was a record producer for twelve years, and I can tell you no label would ever do something like that to a debut artist. They want that artist to recoup (be able to pay back the advance and recording costs) and no A&R guy is so sure of him/herself that they would call songs 'too good' for immediate release, especially with a new artist. One hit single on an album is no assurance of platinum, and unfortunately, unless a record goes gold or platinum, recouping the advance is very difficult.

In addition, Jewel's publisher (the company that publishes her songs, as opposed to master recordings of those songs) would scream blue murder if an A&R person ever suggested such a crazy scheme. Today's 'too good' song is tomorrow's boring yawner.

But I agree...albums have become collections of singles rather than the 'concept' album of 20 years ago. Marketing has done that. MP3 is fixing it. B)

Re:Music you don't like/don't want

[Why2K]

Or have better CD players that remember which songs you don't want to hear on any one CD

Well, this one's easy. Almost all computer CD-player programs do this, and it is an option on many component players too. My Sony 5-disc player has "CustomFile" which allows you to delete tracks on up to 200 discs.

Re:Music you don't like/don't want

[geekd]

sure, way back when artists like Pink Floyd were around and

a) actually cared enough to make a whole album that was good
b) had a record label that LET THEM put a bunch of good songs on one album.

I have a friend who is friends with Jewel. She told him (this is heresy, but it rings true) that she went to her record label with the songs that she wanted to put on her album (her debut album) and they told her that all these songs were too good and that she should "save" them for layer albums and just put a few of them on her debut album and write some "filler" songs to fill out the rest of her debut album.

So even if a band does have 15 great songs, the record labels won't let them put "all thier eggs in one (good) basket"

This is one of the many many reasons why the major record lables must go.

long live MP3 and indie label distrobution!

-geekd

Re:Music you don't like/don't want

[mvw]

still, the concept of only listening to half a cd or less drives me

Many (if not most) dance music samplers sold in Germany are double CD's, one CD Techno/Trance style, one CD House music style.

If I could, I would just go for Techno.

Restricted replay will never work on a computer

[MadAhab]

The industry has been trying this stuff for years. They effectively killed DAT in the US. DIVX was a failure because people don't want restrictions. They want to own it or give it back. MP3 caught them by surprise, and stood the challenge in court. Finally, as long as the computer is capable of reading the legitimate playback, there is always a way of recording it.

The cat's out of the bag, the genie's out of the bottle. When the Latin bible was translated and printed in lay languages, the monopoly on God was officially over. But there's still a Catholic Church, and home taping DIDN'T kill music.

I'm sure they are wringing their hands over the money they could be making in certain countries, but then again, maybe the only thing they are getting robbed of is the chance to lose REALLY big money by actually doing business in those kinds of places.

Re:Restricted replay will never work on a computer

[neonstz]

It shouldn't be "too difficult" for an experienced
cracked to hack the player .exe to play music without paying for it. Some hours in SoftICE
would probably fix it :)

DVD

[blackmail]

Aren't there cracks available for DVDs that work the same way? Don't even bother trying to decrypt the stuff, just capture the result of decryption.

Even if noone was ever able to crack WMA or SDMA (which I'm sure is succeptible to the same sort of crack), there is always the digital out on the back of a sound card. Simply record digital SMDA to DCC and then back to MP3. There's no way to stop this. But I don't think it will even be necessary

Re:DVD

[jms]

>Aren't there cracks available for DVDs that work
>the same way?

Some DVD drives use software decryption, and I remember that a while ago someone reported that they were able to figure out how to make direct calls to the proprietary DLL and turn the encrypted data stream into an unencrypted MPEG stream. Anyone remember this?

This would qualify as a True Crack.

- John

Re:DVD

[Robotech_Master]

Well, you can turn off macrovision and region-protection on a DVD-ROM drive if you have the right kind of drive and use the Remote Selector program...

Personal Observation

[sterwill]

I've never met a damn fine programmer who thought himself a "damn fine programmer."

Re:Personal Observation

[Llamedos]

I've never met anyone who's ever said, "damn fine".

Re:Personal Observation

[ivan_13013]

I think he meant "IMNSHO". And I've known a couple that said they were, and actually were. Quality code is required. Modesty is optional.

Re:This doesn't seem as good as it sounds

[HaKn5La5H]

Hopefully it just captures a digital signal in the sound card. As for compression, why not MP3?

The article from www.dmusic.com reprinted

[eddy]

[here's the article from www.dmusic.com. Took me forever to get to it]

It took a month but we've got CRACK!
by Angelo on August 18, 1999

We all know Microsoft poured their hearts and talented minds into creating this new format which will prevent files from being illegally distributed. WMA files were supposed to allow one person to download a song after paying for it or registering to use it and that's it! No one else can play that file but the person who registered it. No copying no giving it out to friends. Copying was controlled, unlimited copies could no longer be created as was the problem with the MP3 format.
All of this changed three days ago when unfuck.exe was mailed to us by an anonymous visitor. DMusic once again broke the story which will send the brilliant and talented back to the drawing board.
The problem is, companies aren't allowed to create a serious encryption program. If it's too difficult to crack, that means the CIA, or the NSA can't crack it. The CIA, err NSA?
Involved with the development of SDMI, on some level, is the CIA (Central Intelligence Agency) and the NSA (National Security Agency) to ensure that the encryption format isn't too complicated. Done right, a truely complex encryption format would enable, for example another country to encrypt messages to one another effectively. I don't need to explain why the CIA can't have encryption formats they can't decrypt floating around..
So there you have it, there are limitations to how crypted an encryption format can be. And if the CIA can decrypt something, one geek out of the millions out there surely can too.
What does this mean? Files can't be protected? Everyone's tried, A2B was cracked, Windows Media (wma) has now been cracked, sooo... BRING ON SDMI!
Sorry we cannot give you a copy of unfuck.exe, it was given to us by a trusted source and we would prefer not to distribute it. However roaming around on efnet irc or by doing a few searches in the right places, you might get lucky... and you'll be able to UNFUCK YOUR AUDIO FILES AND GO WHEREVER YOU WANT, TODAY

Try Oth.Net

[Resident+Geek]

Better 'n mp3.com any day. And stop whining.

ROFLMAO!

[mholve]

'Nuf said.

There's a crack for EFS too. :)

Re:Great News

[smkndrkn]

anal

Re:Great News

[blue]

ASF is also audio. I downloaded the ASF encoders and encoded an MP3 with it. The sizes were virtually the same, but I prefer MP3 and open standards.

Lycos links

[Bill+Currie]

Actually, they're not dead (or at least the few I tried). They're on sites that enforce `payment' (ie uploads) before you can down load. The files are there, you just can't read them. Try taking the URL over to a real ftp client (eg ftp) and see what happens (note, this is a little tricky due to the username/password being encoded into the URL, etc).

NOTE: I didn't actually try very many links, but 5/5 isn't a bad score.

Remember UCITA

[Jeffrey+Baker]

Remember folks, a crack like this would be illegal under UCITA because it purposefully circumvents a copy-prevention scheme.

You must fight the implementation of UCITA in your state!

-jwb

Or (another way)

[Eric+Seppanen]

Why doesn't somebody track down the MS sound driver spec and write a pseudo-driver that simply redirects the digital data back toward a userspace utility, which then saves the clean data in a file? Then you could... sanitize... any "secure" format on any computer, even one with no soundcard.

Re:Round 1: Consumers

[Eponymous,+Showered]

I would think SDMI can be cracked in software. There will undoubtedly be software SDMI players. Then you can grab the digital audio off the loopback in your sound card and voyla! there's the unencrypted audio.

Does anyone know if unfuck is a crack or simply a tap into the loopback type of thing?

They just don't get it

[Dwonis]

The era of IP rights is ending, plain and simple. They (music companies) should do damage-control while they still can.
--------
"I already have all the latest software."

We pay because we want to...

[mosch]

The bottom line is that there is no such thing as a secure digital format, and it's time that some of these legal-types realize that the most compelling reason to pay for music is a desire to support the musicians we love.

I have high quality digital outs from my computer, and DAT decks and a CD-R which all ignore SCMS. The best they could do for stopping digital copying would be to set the SCMS copy-protect bits on the digital-out, but that's not going to stop anybody who doesn't WANT to pay for their music, as professional gear all ignores copy-protect (well, not ignores... most of the time you can choose 0-copies allowed, 1 allowed, or infinite allowed from a menu), and anybody who is into digital recording is aware of the existance of SCMS strippers anyway.

Best wishes corporate legal-types.. my music collection is 100% legal, but I think I'm starting to be a rarity.

Re:We pay because we want to...

[Slothrup]

You write:

The bottom line is that there is no such thing as a secure digital format, and it's time that some of these legal-types realize that the most compelling reason to pay for music is a desire to support the musicians we love.

Oh, they get that all right. It's the record companies that they think we don't want to support. They may be right. ;)

this is a "crack"...

[Mawbid]

...in the same way that entering through the window is lockpicking. (i.e. not).

The relevant quote from the article:

The cracking file intercepts the audio data stream as the file is being sent to an output device -- such as a speaker -- according to Kevin Unangst, lead product manager in the streaming media division at Microsoft.

This is exactly what has always been pointed out here on slashdot as the obvious reason why restricted playback isn't going to work.
--

Re:duck!

[Eponymous,+Showered]

PKI may well be a decent way to approach encrypting music, but it will simply not succeed as true protection (nor will any other system) as the digital audio stream will always be available via the loopback on the soundcard which can then be re-encoded into MP3, etc.

Additionally, PKI is really unlikely to catch on with the general public, IMO. If it were, we'd all be encrypting and signing all our emails and signing our /. posts already. PKI would need to be much simpler for Joe Q. Winamp to be remotely interested.

Finally, any format or distribtion mechanism that makes things more difficult for the end user than the current system (i.e. download or stream an MP3) will simply not fly. Why would it?

Hardware

[HaKn5La5H]

Could this be done mainly in hardware with the SB Live! digital out?

Re:Death of Recorded Music Profits

[otis+wildflower]

Bands of the future will make money more through live performances and less through record sales.

Uh, that's actually how it works today... A starting band can sell 10 million albums, but they only get US$0.54 per album, minus costs of recording, minus the advance, minus management/union/legal fees, minus the cost of the video.. Out of the US$15 you paid for that CD, the artist most likely will see no more than US$0.35 of it! The way almost all bands make a living is thru live show receipts (and the big money is made when they get a sponsor to cover the costs of the show) and merchandising. REM IIRC is a big exception to this, but they've been around nearly 20 years..

duck!

[Signal+11]

I know I'm going to be drawn out and quartered for telling people this - but secure music is most likely to succeed by using PKI (Public Key Infrastructure) & watermarking.

By encoding each file with somebody's personal key, or any "tag" that uniquely identifies the person, if the file is released it can be traced back to the individual. I'll leave it to future posters to describe the shortcomings of each, but it's a helluva lot better than the current approach. The main problem is coming up with a way to keep the watermark even after filtering the data. I'm not sure how far they've gotten on this, but I know it can be difficult to remove them from image files.

Since everything would be maintained by the record companies (ie: the distribution servers), they would force you to register w/ them before downloading. The PKI could be used to tell the user where/who it was downloaded from. You could also use symetric keys.. although the NSA might get upset with you if you use any non-trivial size. :)

--

Death of Recorded Music Profits

[Soong]

It will soon be impossible to really make as much money as has been made before off of recorded music sales. Look for recording artists to start selling music by the track for cents apiece as they only thing they can possibly sell is convenience.

Bands of the future will make money more through live performances and less through record sales. Money will still be made from recordings. A million people paying $.10 a track on a few tracks will still make you money, but only the U2's of the world could count that as primary income for very long.

Unfortunately the current credit system isn't prepared for the myriad of $.02 transactions that will come with such business models. Music serving companies will have to set up their own credit lines and customer accounts payable montly to accrue enough dollars to make it worth the transaction. There's a long way to go still for online money development. Read "Earth" by David Brin for an appealing model of usage (implementation is left as an exercise to the reader).

Re:Death of Recorded Music Profits

[antinous]

As I understand it, ticket sales aren't worth too much - but any merchandise at the concert is money directly in the artist's pockets, even with the boilerplate contract, which is, according to an agent friend of mine, much worse than the 35 cents a disc you quoted.

R.E.M.'s deal, if memory serves, was eighty million dollars for five albums and all the trimmings. The label (I forget which right now) is really flailing because their sales dropped about 75% right after signing. Not really their fault... just the music-buying public turned away from rock.

A notable exception to all of this is Ani Difranco. Because she's completely independent and self-produced, she nets about $4.50 a disc. She also arranges all her own tours and makes a substantial profit from those, though she does donate a signficant chunk of proceeds from every tour date to a local charity.

Round 1: Consumers

[Wah]

The war has begun. This is just the first salvo, though. SDMI is coming and will prove more difficult to control. Why, because it will take a hardware hack to beat, not just stepping around the encryption as this seems to do. Be good consumers and don't bend over and give up your music dollar. MP3 is already seen as a music standard by the population at large, let's keep it that way. Don't let people tell you it is illegal, tell them how copyright takes away yours. Don't sell MP3's (unless you have the rights), but use them to promote sales, think little bits of radio. Fight the machine (or just hack it to something more attractive)

BTW: "unfuck.exe" was an excellent choice. 2 points to the cracker.

Yes and No. Micro$oft can pour $$$ into 2010 tech.

[bridgette]

OK, we all know that there is no way to make this uncrackable and uncircumventable any time soon.

But if there is OS and hardware support for this encryption and rights management in the next decade, this could become *the* sound format.

This is a big bet that can only be played by the etremely wealthy. And don't forget that:
1) if OS and hardware support happen, all the major record companies will put all of their weight behind it!
2) Micro$oft controlls the OS market
3) hardware companies are aftraid to annoy their WinTel masters (see #2)

So it's a risk, but it's not an insane risk ... if you already have a monopoly.

Re:Great News

[Falcula]

Have you ever listened to any of the stuff at MP3.com? I got their 103 best songs you never heard and most of the stuff on there isn't bad.

I also helped a local band upload their songs from two albums to mp3.com and these guys spent alot of money in the studio and their stuff sounds great. You ought to check them out their name is Elbo Finn and maybe you can stop knocking garage bands...

Re:Trusted hardware

[broter]

I doubt the $25 boom box manufacturers would consider that proposal. Tamper resistant hardware cost a chunk of change. To the electronics industry, the cost of redesigning their lower end lines to make the record companies happy would sound ludacrous. Sanyo and friends generally don't care is an RC is screwed out of royalties as long as the sales are up.

Thank Dog for greed!

[OT] bladeenc

[Mawbid]

Perhaps the audio quality of bladeenc's output has improved greatly since I last used it but assuming it hasn't, I gotta tell you, it's crap at anything under 192kbps compared to other encoders at the same bitrate. Bladeenc is/was intended for the high-bitrate crowd (who are probably not the same people that are using the storage-starved portable players).

Disclaimer: Audio quality is subjective. Perhaps bladeenc at 128kbps is fine for some people.
--

Re:Great News

[Barcode]

No Need for that. I'm not smoking anything, I wasn't talking about their sales, and no, they aren't the epitome of capitalism, capitalism involved competition and fair chances, being the only game on the market if you want to be compatible isn't capitalism, it's COMMUNISM. And the viral marketing part is about how they get schools and enterprises to use their software, and they in turn force their employees at home to use it, then their wife, then their wife's home business, and their kids, and their home business's employees, and their kids, and their spouse, and so on. Understand now?

Re:Great News - go ahead and pay them then (again)

[gig]

Record companies got really fat selling us their entire vinyl catalogs on CD, and now they want to get even fatter selling their catalogs all over again in digital files with all kinds of restrictions about where you can play them, and only after you've given them all kinds of personal info for the watermark.

A CD ripper is their worst nightmare. I don't have to buy Led Zepplin IV from them again, I just transfer my CD (and license) to MP3. That is the heart of what they don't like, long-term. They know full well that most people are happy to pay for their music, even without being forced to, but nobody wants to pay AGAIN for their music, or again and again.

If you want to pay a dollar to download "Stairway to Heaven" in some proprietary format (and another dollar for it again in a few years when the format changes slightly ... remember "remastered" CD's) then be my guest.

Re: not every album is a masterpiece, dildo.

[Mike+A.]

If the extra songs on a CD are just filler, then your argument is valid. But the artists that really care about the order of the songs on the CD aren't likely to be putting filler around their serious work.

In this case, the CD is more comparable to a series of paintings - each one beautiful in its own right, but the whole forming more than the mere sum of its parts.

On the other hand, if you don't happen to like that sum of parts, I do agree that it should still be your choice. It could be that you like the artists' sense of individual works better than you like their taste in arrangement. For those of us who want it, we can always glance at the recommended playlist that the artists provide.

SDMI: The risk management lottery

[xixax]

The longer it takes to crack SDMI, the worse it is going to be for RIAA. Sure, it took two days for MS's format to start leaking. But suppose it was 6 months down the track and lots of people had invested lots of money in making Big Name artists available? Rather than egg on your face, you suddenly find yourself either living with an insecure format and accepting piracy, or taking all your infrastructure down and starting again (read: hose that $$$ up the wall). This'll be a truely amazing risk management exercise for RIAA. :o)

Antti

Re:Public key encryption

[Compuser]

This scheme would reduce functionality of speakers in exactly the same
way as DIVX reduced functionality of DVD disks, namely you wont be able to
switch speakers between boxes. This makes this scheme very hard to sell
even if you could get the price down.

Dimension says it IS a crack

[Alowishus]

Dimension has now posted a response to Microsoft saying that unfuck IS a crack.

From Dimension article: "UNFUCK.EXE actaully breaks the protection on any file. There is no loss in quality, the file isn't re-recorded or captured in some way."

So MS says it captures and Dimension says it doesn't.

Which is it??

First DIVX, now a type of SDMI

[Randy+Rathbun]

I read a lot of comments here about "how dare they.. now things are going to be that much worse", to which I reply - BS.

When DIVX died just over two months ago, it showed the entertainment industry that us consumers are not going to put up with some pay-per-play system in which they can yank the rug out at any time and keep us, the customers, from watching something we have in our homes.

Now, thanks to the guys who wrote UNFUCK, we can show the RIAA and their ilk that we are not going to put up with this SDMI crap either.

Ya know, we pay taxes on all recordable media for music. You pay a tax on cassette tapes, minidiscs, blank CD-R Audio discs... or you pay a huge tax on recording equipment so that you can turn SDMS off. What is SDMS? All it entails is flipping two bits of an 11 bit stream to make all the copies you want. Why do we pay this tax? Because the RIAA got congress to impose this tax so that the music industry does not loose money every time you make a copy of the Spice Girls album and give it to your friends.

However, I don't make copies of any of my CDs for any of my friends. I have old audio tapes from when I was two years old. Thanks the RIAA, I can not make multiple generation copies of digital tracks I made of these tapes. Yeah yeah, I know all about CDR and all that, and that is how I do it. But if we the consumers let the RIAA have it's way and let this SDMI crap succeed, we will not be able to make copies of digital stuff THAT WE OWN in the future.

Mister programmer
I got my hammer
Gonna smash my smash my radio

Re:Stupid.

[Mawbid]

Well, hi there coward. You and I have something in common. We both think we're responding to stupid crackheads.

Unless you're going to send different datastreams for every single key out there

Well, that's precisely what Signal 11 is talking about! Each buyer gets a different stream with a different watermark. There's nothing stupid about that. It just takes a bit of processing power.
--

What everybody forgets -- FREEDOM RESTRICTIONS

[Osvaldo+Doederlein]

I'm surprise that the issue didn't surface in a Linux advocacy site, so there it goes: Artists should be paid for their work, we can understand the necessity for some control on pirated distribution. Now, suppose some solution is really feasible (trusted hardware, stronger protection than MS's, whatever).

This is NOT a good thing, because this means I cannot use the music I bought the way I like. I cannot freely combine my music gear (reader, mixers, amplifiers, etc.). I cannot edit the music to remove the vocals and do a karaoke, or something like that. Idem for video, what about pasting snippets of movies into personal productions just for fun?? Some guys I gave a course to decided to make fun of me (I wonder why?) and they grabbed a piece of Star Wars and edited it to put my face in Darth Vader's... it was just a good laugh, there was no financial implication, just a few seconds of AVI, I still pay for the video rental if I want to see the movie. And we have the right to use any media we paid for if it is for any kind of private enjoyment -- a good, common example is grabbing samples to make a personal desktop theme from your favorite band or movie. If you don't post the theme for everybody to download it, I see no IP violating, no piracy.

Watermarking proves nothing

[Jim+McCoy]

Remember, just because a sound file with your ID info tagged into the watermark happens to be the downlaod-du-jour from warez r' us does not mean that you were the one who committed the criminal act of distributing the file. Your system could have been cracked, the file could have been intercepted in transmission, your CC info could have been stolen, etc. The watermark is circumstantial evidence and anyone who tried to prosecute someone based upon it would get laughed out of court. This is the fatal flaw of all watermarking schemes, they may tag the file but a single watermark pointing to you as the culprit does not actually prove anything...