Slashdot Log In
Open-Source DRM Ready To Take On Big Guns
Posted by
CmdrTaco
on Thu Oct 23, 2008 10:29 AM
from the when-good-code-goes-bad dept.
from the when-good-code-goes-bad dept.
Barence writes "An open-source digital rights management (DRM) scheme says it's ready to supplant Apple and Microsoft as the world's leading copy protection solution. Marlin, which is backed by companies such as Sony and Samsung, has just announced a new partner program that aims to drive the DRM system into more consumer devices. 'It works in a way that doesn't hold consumers hostage,' Talal Shamoon told PC Pro. 'It allows you to protect and share content in the home, in a way that people own the content, not the devices.' When asked about the biggest problem of DRM — that customers hate it — he argued that 'the biggest problem with DRM is people have implemented it badly. Make DRM invisible and people will use it.'"
Related Stories
This discussion has been archived.
No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Full
Abbreviated
Hidden
Loading... please wait.
How can it be both effective and invisible? (Score:5, Informative)
I don't get it... If DRM works, it restricts what you do. If it restricts what you do, it's not inivisible. How is this implementation different from any other DRM?
Re:How can it be both effective and invisible? (Score:5, Funny)
It's different because it's Open Source!
Parent
Re:How can it be both effective and invisible? (Score:5, Insightful)
Parent
Re:How can it be both effective and invisible? (Score:5, Insightful)
Exactly. Using DRM to enforce copyright is the equivalent of having cops watch how much fuel you put in your car's tank, and checking your mileage after a journey, to make sure you don't speed. It's simply invasive, untrusting, and unnecessary for adults, and wrong, given that the assumptions are flawed. This is ESPECIALLY true, given the fact that we actually have a right to change the speed limit, if the majority of us decide to, or to copy things that were previously not copied, if the majority of us decide to.
Parent
Re:How can it be both effective and invisible? (Score:5, Funny)
It's the shiniest turd of all!
Parent
Re:How can it be both effective and invisible? (Score:5, Informative)
I visited their website. It appears to be based on the tried-and-true "license" model where you must buy a license in order to use a program... or in this case, play a song. The obvious flaw is that is the server goes down, no more license.
And of course licensing is typically an annual payment plan. I don't want to "rent" my purchased songs year-after-year-after-year.
http://www.marlin-community.com/technology/how_marlin_works [marlin-community.com]
Parent
Re:How can it be both effective and invisible? (Score:5, Insightful)
It dont matter. if I can play it I can rip it to a unencumbered format. all my Audible books are converted to mp3 the second I buy them.
DRM is the emperor standing naked in the forum. only the foolish believe it is pretty, useful and works. I guess it makes them feel safer, like a child hiding under the covers to be protected from the monsters.
To those with common sense and can actually see, DRM is useless, it's cracked moments after it is realeased and the worlds' 13-22 year olds have far more programming skill and resources than all the worlds companies combined.
Parent
Re:How can it be both effective and invisible? (Score:5, Funny)
I guess it makes them feel safer, like a child hiding under the covers to be protected from the monsters.
Hey don't mock it. It works!
My bedroom has been monster free for thirty years.
Parent
Re:How can it be both effective and invisible? (Score:5, Insightful)
This is a bit unfair to the DRM creators. Cracking DRM isn't a competition between the skills of the designers of the scheme and the skills of the crackers of the scheme. It's a test of the skills of the crackers of the scheme against the already-written big fat stationary target of the scheme itself. To use a non-car analogy, it's a one-round game of hide-and-seek where the location of the hidden object (often an encryption key) is both fixed and extremely constrained.
Parent
Re:How can it be both effective and invisible? (Score:5, Informative)
Line patch cords work... but it takes only a couple of minutes on google to find the answer...
http://forum.dbpoweramp.com/showthread.php?t=11045 [dbpoweramp.com]
dbpoweramp is an awesome program. by using that setup I can convert an entire book in a few minutes instead of taking the hours the book is long.
Honestly, did you even try to search? I typed in audible to mp3 and it was link #5
Parent
Re:How can it be both effective and invisible? (Score:5, Informative)
Parent
Full Digital Kit... (Score:5, Interesting)
My TV is digital and incorporates HDMI with it's nice, integrated DRM scheme.
My HD reader is digital, incorporates HDMI, with it's nice, integrated DRM scheme.
My TV tuner is digital, with it's nice, integrated DRM scheme (no record bit...ah yes, they said they would never use it)
My radio is analogic. But they are all pushing that DAB thing that is digital
My Ebook reader....
ad nauseam.
Now add a touch of ubiquitous Wimax/wireless in all of those pieces of kit. And they can revoke your licences at will.
Parent
Even easier... (Score:5, Informative)
Set your recording device to be "wav" or "what I hear" or something similar in your soundcard's mixer's "recording" view. Grab Audacity, hit record, then hit play on *insert_audio_source_here* No signal loss from using the physical outputs.
Parent
Re:Even easier... (Score:5, Informative)
Set your recording device to be "wav" or "what I hear" or something similar in your soundcard's mixer's "recording" view.
Secure Audio Path (Windows XP) or Protected User Mode Audio (Windows Vista) is mixed into the output after the "what you hear" patch point. But line-out to line-in works just as well, and the quality loss is negligible for a typical overcompressed [wikipedia.org] pop song.
Parent
How it's theoretically different (Score:5, Insightful)
Based on their description, they seem to have built it from a better understanding of the human psychology WRT ownership of property. Most people instinctively believe that they own their music and movies and that their personal use shouldn't be restricted. This DRM seems to operate on the basis of restricting the ability to playback the content to the devices controlled by a customer, not to a set number of devices.
If this article turns out to be mostly right, it's a positive step. It recognizes the fact that most people will never get why it's infringement to share a CD or DVD across a family. So, the solution, is to focus more on how one user might give the data to a user that shouldn't receive it, than to focus on locking up the user's practical enjoyment of the product.
The key to making DRM work is to back off the user's day-to-day playback, and focus on making it so that devices won't receive content from users that don't have permission to give it to them. That's what copyright was created for: to prevent unauthorized reproductions, not tell the user exactly how they will use the IP once they buy it.
Parent
Re:How it's theoretically different (Score:5, Informative)
No it works on licensing. You can copy the song as many times as you want, including over the internet with friends, but you can't use the song until you obtain a license.
I hate licensing. It's too much like renting. I want to OWN the device, program, song, whatever; not rent it.
Parent
Re:How it's theoretically different (Score:5, Insightful)
That sounds great... but I have trouble imagining a DRM system that could actually make the distinctions you mention (given that we haven't quite solved that whole artificial intelligence problem).
For instance, the average person (as you mention) is going to want to be able to copy a song to their spouse's computer over the LAN. But how exactly does the DRM recognize the difference between a copy to the spouse's computer, a copy to a friend's computer, a copy to your work computer, a copy to a coworker's computer, a copy to a stranger's computer, or a copy to a redistribution server?
The only way I can think is with encrypted content, and then by defining "permission zones" or somesuch, where various devices get authorized as part of a zone, with restrictions on how many devices can be registered in a zone at a time (so that you can't add your closest 30,000 P2P friends into your zone). But managing these zones isn't going to be invisible. You'll be adding new devices as they are purchased, removing old devices as they are sold/discarded (do you have to prove you've erased the previously authorized content?), flashing firmware to re-authorize devices (because keys will have been revoked), using a restricted set of software (that is able to understand the DRM), waiting for network connections to be available (because it's been too long since the last time the device phoned-home), and so on. The user will notice.
I don't think there is any scheme that is sufficiently permissive that users will never notice it, yet sufficiently restrictive to actually put a dent in the "really bad copying" (commercial redistribution, uploading to P2P networks, ...). And TFA does nothing to actually address this issue: how does the software differentiate between good copies and bad copies.
Answer: computers can't. Actually, given the confusion and disagreement around copyright law, evidently humans can't either.
Parent
Re:How it's theoretically different (Score:4, Insightful)
Now, see, I take issue with that statement. If that's true then it should apply to all IP, shouldn't it? That would include a printed book, too, shouldn't it? You're saying then that I can't loan a copy of a book I own to a friend or family member because it's copyright infringement. That's utter and complete bullshit. If I have physical media that I legally purchased, I should be able to loan that media out to whoever the hell I want to, and it's nobody's damned business.
Parent
Re:How it's theoretically different (Score:5, Informative)
You're saying then that I can't loan a copy of a book I own to a friend or family member because it's copyright infringement. That's utter and complete bullshit.
No, he's saying that can't make a complete copy of a book you own and give it to a friend or family member because it's copyright infringement. And he's right. The difference between loaning a book and "loaning" an MP3 is that once you'd "loaned" your buddy a song, he has complete access to it whenever he wants. More importantly, he has complete parallel access to it with you. Only one instance of the song was paid for, yet two people are able to enjoy its use at any time, perhaps simultaneously.
If I have physical media that I legally purchased, I should be able to loan that media out to whoever the hell I want to, and it's nobody's damned business.
Agreed. If you have an iPod with songs on it that you purchased, you should absolutely be allowed to lend someone that physical media -- that is, the iPod -- and let them use it as long as they want. And you can. You cannot, however, just send them the songs off your iPod, for reasons stated above.
Parent
Re:How it's theoretically different (Score:5, Insightful)
Indeed, and this is completely different from a physical object like a book. The problem is trying to apply an economic model to a situation where it doesn't apply. Prices of physical objects are more or less determined by supply and demand. For this to work the object in question has to be scarce. Digital data isn't. Once it's created, there is an endless supply of it. Supply and demand doesn't work here. Trying to create artificial scarcity through DRM is solving the wrong problem. Don't try to make a product fit your business model, adapt your business model to the actual product.
Even worse, in trying to make the 'new' work exactly like the old they are actually trying to destroy some of the properties that make the 'new' more exiting and desirable.
Parent
Re:Never limit sharing. (Score:5, Insightful)
Preventing unauthorised reproductions is the mechanism by which the public domain is enhanced. Without control over reproduction (be it legal or technical) copyright doesn't provide any incentive to create. Without the exclusive right to reproduce copyright simply cannot exist. That's the price we pay to encourage artists, authors and so on to do their thing.
I agree that current copyright law is too extensive in duration and fair dealing / fair use rights can too easily be trampled by DRM, but if you allow any and all reproductions you would destroy copyright, not improve it.
Parent
Re:How can it be both effective and invisible? (Score:5, Interesting)
Parent
Re:How can it be both effective and invisible? (Score:5, Interesting)
Unfortunately, I think this is the future of gaming. The next game consoles might not even have optical drives. You won't be able to loan a game to a friend, or rent a game from Blockbuster. And good luck reselling games that you bought over the Internet! Gamestop and others might go out of business. When your hard drive fails, you'll spend days re-downloading content (if you're lucky). If not, you'll be branded as a thief and have to spend hours arguing on the phone with Indian tech support for the right to re-download stuff you already paid for.
The Internet has done a lot of great things for gaming, but I am really scared of what will happen if console manufacturers get rid of removable media for games.
Parent
Invisible DRM is no DRM (Score:5, Insightful)
Like it or not DRM restricts what you can do with your files. When you try to do something the copyright holders have forbidden, even the best DRM system will be plenty visible.
Re:Invisible DRM is no DRM (Score:4, Insightful)
Parent
Impossible (Score:4, Insightful)
You can never make DRM invisible, since people are illegally sharing video and music files all the time today. If the point of DRM is to protect the content from being pirated, making it invisible to users will completely nullify its' original intent.
Re:Impossible (Score:5, Insightful)
I think they'll be happy if it's invisible to the people who have bought the content and are playing by their rules.
The ones who are sharing files on the internet .. they'd like to stop and have the DRM be anything but invisible.
Cheers
Parent
There's only one way to make DRM really invisible (Score:5, Insightful)
And that's by not having it at all.
I don't buy products with DRM, no matter how much they've tried to make it non-intrusive for me.
And backed by Sony? That puts it on my personal blacklist right away.
Sense, it makes none! (Score:5, Insightful)
...allowing users to share content between any Marlin-enabled device in the home rather than on specific machines. "It works in a way that doesn't hold consumers hostage,"
So long as Marlin stays in business, and every device you want your music on is a Marlin device. So, if Marlin goes under and your computer crashes, you're out of luck?
Open Source DRM makes the most sense of all (Score:5, Interesting)
Nope. Since it's Open Source, you just comment out the part of the code that says "If I can't contact the server, refuse to work," recompile, and then everything works.
Or if they use a decryption key downloaded from Marlin, then before they go out of business, go into the part of the code where it downloads the decryption key, and store that key somewhere. No, wait, even better: use that key to decrypt your content, and store the plaintext and delete the original. At that point, everything works flawlessly regardless of when Marlin goes out of business.
Now that's what I call effective DRM.
Parent
Invisible! (Score:5, Insightful)
Still, the implementation details would be interesting. How quickly will this be broken? Probably before it ever gets popular.
Re:Invisible! (Score:5, Funny)
Any code made by a person can be broken by a person. We should invest less in cheap control schemes and more into robotic overlords.
Parent
Re:Invisible! (Score:5, Funny)
I've taken a look at the specs and it's pretty impressive actually. They're using ROT-26 encryption, and you manage copies using commands called "cp", "mv", and "rm". These commands look at a set of user rights before they operate - read, write, and execute permissions are set separately and the content owner can also assign permissions to groups or even the whole world.
The only major fly in the ointment is that apparently DVD Jon has already released a beta of a tool called "chmod" that can change all of those permissions.
Parent
What DRM has to do. (Score:5, Insightful)
1. It can never deprive me of my media.
2. It can not restrict what devices I use my media on.
3. It can not restrict the storage format of the media.
In other words it is impossible.
Heck I do believe that copyright infringement is wrong. I just refuse to pay the price for others breaking the law.
But how does it work? (Score:4, Insightful)
The article doesn't seem to be very clear.
Will this mean I'll have to buy a new TV set, a new stereo receiver, a new DVD player, a new Cellphone, a new car stereo and reconfigure all of my PCs to be "Merlin enabled"?
Probably not, since whenever someone claims it will be "more difficult to circumvent then current DRM schemes", that seems to be a challenge to some of the more clever programmers to break it.
Invisibility (re)defined (Score:5, Interesting)
They don't mean invisible to everyone. They mean invisible to people who aren't breaking the law. Frankly, that's good enough for me, in this case; if it doesn't interfere with my legitimate use of a game or my music, I don't have a real problem with it. Yeah, it'd be nice if DRM weren't necessary, but when you get right down to it, most people will steal digital media (as opposed to physical media) when they think they can get away with it. I'm not going to debate whether that's morally wrong or not, but it IS against the law.
Now, of course, I'm not convinced this company is going to be successful in creating effective DRM that doesn't interfere with legitimate use, but it'd be interesting if they managed it.
Re:Invisibility (re)defined (Score:5, Insightful)
Not "people who aren't breaking the law", but people "who aren't doing what we don't want them to do". Not the same thing at all.
Most DRM schemes are trying to put themselves above law and morality then imply that they are simply enforcing that. But law and morality are more complex than any computer is currently able to understand and enforce.
Parent
Re:Invisibility (re)defined (Score:5, Interesting)
OK.
But will it be invisible to those who would exercise fair use rights?
Parent
Some would disagree (Score:4, Insightful)
One could make the argument that DRM, by its very nature, holds consumers hostage.
Also, I wonder how many slashdotters will be won over by the fact that this implementation is open-source. I'm sure it might make some feel warm and fuzzy inside, but not me.
Awww Man (Score:5, Funny)
The biggest problem with DRM (Score:5, Insightful)
Marketing doublespeak (Score:5, Insightful)
"It works in a way that doesn't hold consumers hostage"
But that's the point of DRM - the content distributor gets to decide what happens to the content, not the consumer. Your purchased content is held hostage to the whims of the distributor. That's the point of DRM.
For an encore this guy will sell airplanes without wings that keep you safely on the ground, bladless knifes without handles, and a bucket of jumbo shrimp.
Open Source DRM would be cool (Score:4, Funny)
Just think what you'd need to do to bypass it:
Original Source:
bool isLicenceValid()
{
(Implementation goes here)
}
"Hacked" Source:
bool isLicenceValid()
{
return true;
}
Job done :)
Same Issues? (Score:5, Insightful)
"With Marlin, any device that runs Marlin can run content on the home domain," he adds. "It's a level playing field [for manufacturers] - they don't have to go up to Redmond with a begging bowl or suck up to Steve Jobs."
So, open source DRM that works well (only) with other hardware also running the same DRM? Don't we already have that? How is this new, or better? The only thing I can see is that, vis-a-vis it being open source, it could be circumvented easier.
not quite right (Score:5, Insightful)
That's not quite right. Yes, the biggest problem with DRM is people have implemented it badly. The solution, though, is to make DRM out in the forefront of the feature list and make the DRM HELPFUL and CONVENIENT to users. Making it invisible will show that the companies are trying to hide something. Steam is always brought up as an example of good DRM. People know there's DRM on it but nobody minds because it's actually useful and makes it easy to transfer the games you've bought over to other computers quicker and easier than if you had an actual disk. Make is useful and people will use it.
My head just asploded (Score:4, Interesting)
Doesn't the latest revision of the GPL specifically prohibit DRM?
So I assume (withot RTFA of course) that the source to this DRM is published, but it isn't GPL 3? Is it GPL 2 or some pseudo "open source"?
Dumb Restrictions on Media can use any license it wants, I want no part of it. Anyone who has anything to do with DRM is either ignorant or a fraud, and I really don't like doing business with the ignorant or with frauds.
When information isn't free, neither are you. I think I'll make that my new sig.
Bad Solution to the Wrong problem (Score:4, Interesting)
The whole concept of DRM is flawed, because they give me the media, and the key, and the algorithm and then tell me I can not put the three together in any other way than the way they choose. Sorry, not happening here. You can keep your broken products to yourself and I'll spend my money somewhere else.
It always sounds good on paper (Score:5, Interesting)
From my experience its not so much the DRM itself, but rather difference of opinions between the implementation and interpretation of the spec among the various hardware vendors.
Case in point. My home theater receiver is HDCP compliant, however it doesn't play nice with Vista. This forces me to use gray market software just so I can watch video on my projector. For the record I am not talking about just DVDs and HD disc based content. I can record an AVI with my digital camera and I will still get errors trying to play that content on my projector.
My main point is that its not necessarily the DRM itself that is the problem. HDCP "looks okay" on paper. However when you have a multitude of manufacturers interpreting the spec and the logistical impossibility of unit testing against everything else out there, ultimately its left up to the consumer to do the testing which will ALWAYS end up bad for the little guy. And there is NO WAY an individual user is going to have any teeth when a manufacturer doesn't play by the rules.
My last point is this. DRM doesn't prevent piracy.
again...let me repeat that for the industry folks who are a little slow. DRM DOESN'T PREVENT PIRACY.
It's kind of like network security. The only truly secure computer is one that is sealed in concrete, has no keyboard, no monitor, no mouse, no network, and no power. If someone wants in bad enough, they will get in. Period.
The only truly secure content is that which is never distributed.
There will always be a better mouse.
DRM encounters a problem (Score:4, Interesting)
It is a simple problem but very hard to get around because the problem used to simply not exist. Standards.
Get this and get this if you get nothing else. STANDARDS HAVE GONE OUT THE WINDOW in the digital age.
ALL VHS was VHS. A LP's were LP's. All cassette tapes were cassete tapes.
Sure, there were competing standards for a short time but by and large, to the consumer media tech had one standard.
Now, in the digital age, this is no longer true. iPod may be synonmous with MP3 player but the fact is that it barely got 50% of the market. The rest of the market is split by dozens of brands each with dozen of models. Each model has its own system, its own capabilities.
This is why iTunes is NOT the standard method to distribute music. Nor is MS fairplay. Hey, even zune didn't support that.
This hampers DRM (and don't we all feel sad about this), how are you going to get your DRM method on all devices? Apple doesn't even bother with it, that is why it is trivial to convert iTunes music to MP3's and they don't license their solution out. Why would a MP3 maker bother with supporting fairplay when nobody uses it? And when so few players support it, nobody is going to use it.
Sure, Sony is a big company, but we all know how succesful it has been in the MP3 market. The company that OWNS the walkman has totally lost its touch, choosing to push its own formats over making money.
Unless someone comes up with a solution of DRM that works with just the file and doesn't need any software installed on devices that can't have software installed it can't work.
This new system doesn't fix that. Why is going to buy a Marlin enabled device when there are no services that use it, and what service is going to support it when nobody is buy marlin enabled devices?
Apples DRM slipped in by accident. People didn't buy iPod's because of iTunes. It just came with it. MS has totally screwed up its own changes by dropping its own system on its own MP3 players.
Saying that Apple and MS are the big boys in DRM land says it all. THERE IS NO DRM INDUSTRY. The consumer not only doesn't want it, but has no need for it. The industry, the hardware makers only offers it if it thinks the extra checkmark on the box is worth the effort and increasingly, they don't.
Re:Invisibile (Score:4, Insightful)
No, plenty of people who aren't pirates complain, in my case it's a self fulfilling prophesy.
I didn't use to pirate, but then they took away all are consumer protections and rights.
When I can return a game I don't like, or resell it, or apply fair use I'll stop.
Now if I like a game or music I pirate, I buy it.
Parent