Stories
Slash Boxes
Comments

SoylentNews is people

posted by cmn32480 on Friday April 29 2016, @10:03AM   Printer-friendly
from the all-your-videos-are-belong-to-us dept.

The working group that is drafting the W3C's Encrypted Media Extension (EME) specification (aka DRM in HTML5) is baking in language that would allow the DMCA to be invoked despite denials that "EME [is] putting DRM in HTML".

The EME is a set of predefined javascript functions that invoke functions in Content Decryption Modules (CDM) and CDMs are containers for DRM functionality. It's simple and innocuous but how it's worded and what they refuse to define is where the danger lies.

First, the EME is hooked to the DMCA by using very specific legal language: "content protection". One of the people working on the specification freely admits that "it is well-known that the purpose of content protection is not to prevent all unauthorized access to the content (this is impossible)" but despite the fact that it cannot protect the content, the entire working group insists on this very specific language and has refused alternative wording. The reason of course is because "protected content" is the legal term that DRM implementers always use.

Second, the EME is hardware specific by refusing to make a specification for CDMs. By not defining how CDMs are implemented, this leaves it up to each browser author to invent their own. All existing implementations of the CDMs are done using non-portable binary plugins that execute directly on your computer. This means that if a website is using a CDM that isn't ported to your specific browser, OS and architecture, you cannot view the video on that page. So if your computer runs on PowerPC instead of x86 you are out of luck, every site using CDMs will be out of your reach. That's not all, despite having a 4K SmartTV, you can't watch Netflix in 4K because it uses PlayReady 3.0 and it was reveiled last year that PlayReady 3.0 is only for Windows 10 and requires hardware DRM. Specifically it uses an instruction set extension to use a hidden "security processor" which is only in the latest generation of Intel and AMD chips.

All proposed alternatives to the legal language and a legitimate alternative to hardware specific lock-in were rejected by those drafting the EME. After looking into their backgrounds, I found that the group is composed exclusively of Microsoft, Netflix and Google employees.

If you wish to express your concerns, you can still do so on the github issue pages:
Issue #159: Remove all "protection" language
Issue #166: EME specification needs to include a CDM specification


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 5, Insightful) by Hyperturtle on Friday April 29 2016, @01:19PM

    by Hyperturtle (2824) on Friday April 29 2016, @01:19PM (#338898)

    The problem seems to be that the more people don't watch these things and enjoy the restrictions provided by our benevolent content industry, the more the industry and those associated with it will in turn accuse people of violating the social contract. What I mean by that is that they will aggressively pursue profit they believe they are entitled to, due to having 'lost' it.

    People may be accused of being pirates -- we see that already.

    What I am greatly concerned about is that adblockers and noscript will become unuseful due to a widespread adoption of DRM on things that do not need it, like ads, which then could feasibly refuse to display the rest of the site because the script for DRM didn't finish. No content for you because that requires tracking--and verification you actually sat through the commercial and so on... THe only good thing is that the javascripts at least run locally and so we have an element of control over them, and can get to see what's in it if we choose to look -- a server side thin client aspect would greatly limit our views into this stuff.

    But I dont want them running stuff locally when I connect to "a server"... and windows 10 is taking away those administrative capabilities slowly and surely. Soon we won't even be able to see it because only hackers will mod their computer.

    Just like the FCC and the wifi firmware stuff, it likely will become a crime to modify the OS managed by your OS Vendor, or add hardware without a seal of approval, or use any defeat device -- like tape backups that aren't going to a cloud. Local content is EVIL! You may only buy it once, and you need the 8 track, cassette, DVD, gold DVD, remastered box set, the itunes, the amazon prime, the google play, the pandora versions. You need to buy them all, because if you rip it yourself it can't authenticate to your unique windows identifier and thus won't play... that's a future I worry about, all websites and all content included.

    I can easily see it happening that if you can't be monetized like all of the others, even after you make the "purchase" (lease?) then you are violating the EULA and will be be denied.

    Starting Score:    1  point
    Moderation   +3  
       Insightful=3, Total=3
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   5  
  • (Score: 0) by Anonymous Coward on Friday April 29 2016, @01:51PM

    by Anonymous Coward on Friday April 29 2016, @01:51PM (#338912)

    Well, the thing is that it's only a matter of time, probably months, before whatever new restrictions module that's shipping with Firefox 82 and Chrome 104 has an open source alternative. Content providers can't move in lock-step. They have to have backwards compatibility. The goal of "protecting content" and digital restrictions management is an utterly wonky goal.

    So you mean to tell me, "content producers" (because you ain't the only people capable of producing content I want to watch, but you are really fucking good at canceling series that I'm really in to after 2 seasons), that what you intend to do is require me to run a program on my hardware that contains that will use a private key that is on my machine to decrypt your content? Laughable.

    If it's not me personally circumventing it with an open source alternative restrictions module, somebody else will, and I'll just grab the torrent, tyvm. I mean, half of what I torrent these days are webrips. Whether or not it's in HTML or whatever other bullshit, it's broken. I have access to whatever content I need without any restrictions. Now if only the "content producers" had a cup for me to throw spare change into. People doing things like Star Trek: Renegades (as far as I'm concerned, this is Star Trek XI) and Star Trek Continues have tip jars! Why don't the "content producers?!" How do they ever expect to see any of my money, even some spare change, because I enjoyed 2 seasons of V or Terminator Sarah Connor Chronicles even though they just fucking canceled both series before the story was nearly complete?! I'm not paying upwards of, what are they asking, $40 per season, $80 total for 2 seasons, for the first half or first third of a story!

    But! What we have to fear is not some technological bullshit wankery. Apparently people will produce content just for a love of stories that should have been in the public domain long ago. Killer robots from the future! A lizard people invasion! To boldly go where no man has gone before! Granted, ok, V and Terminator don't quite have the appeal of Star Trek. But I mean fucking hell! Star Citizen is now a AAA hundred million dollar budget game and we didn't need no fucking suits to make that happen. Maybe a 0.01%er threw in here or there, but they can't breathe down any necks this time. Yeah, yeah, I'm pretty sure Squadron 42 will come out yet this year. Yeah, yeah, I remember Freelancer had the same hype. The stuff they've released and I've personally played as a backer is already pretty damn impressive. And this time there's no fucking suits to tell the people who are creating this experience that they need to release something now OR ELSE! I guess what I'm saying is that we're pretty close to living in 2112 but we are at a juncture where we can decide that we truly want to glorify the works of gifted men.

    I believe what we have to fear is called TISA [personalliberty.com].

    • (Score: 1, Insightful) by Anonymous Coward on Friday April 29 2016, @02:50PM

      by Anonymous Coward on Friday April 29 2016, @02:50PM (#338958)

      What's irritating is the presumption that everything needs to be designed with the assumption that protected content is the rule and the public domain is the exception. That's not what the intent of copy protection laws should be. The intent should be to expand the public domain and things should be designed with the presumption that the public domain is the rule and protected content is the exception. But since corporations write laws the public domain has basically disappeared and the wrong assumption needs to be made. Content can't be circumvented because it will never enter the public domain anyways so why does it ever need to be extracted in a format that everyone can freely view it in? That's the wrong way of looking at things and copy protection laws need to be fixed.

    • (Score: 2, Informative) by Anonymous Coward on Friday April 29 2016, @03:46PM

      by Anonymous Coward on Friday April 29 2016, @03:46PM (#338991)

      Well, the thing is that it's only a matter of time, probably months, before whatever new restrictions module that's shipping with Firefox 82 and Chrome 104 has an open source alternative. Content providers can't move in lock-step. They have to have backwards compatibility. The goal of "protecting content" and digital restrictions management is an utterly wonky goal.

      That is an unfounded assumption for two reasons:

      (1) "open source alternatives" are illegal under the DMCA. Technically they are not illegal to posses and use, but they are illegal to distribute. [wikipedia.org] You can write your own, but you can't give it to anyone. So in practice they are illegal.

      (2) They do not need to be in lockstep. They certainly can require that users upgrade to the latest version. After all if you are streaming their video on the network you can also upgrade to the latest DRM software overr that same network. Chances are it will just happen automatically and invisibly the way chrome and firefox auto-upgrade today.

      The guys doing this are very smart assholes. They know that DRM is not 100% effective. They don't care. They are happy to make it 95% effective and whether that effectiveness is accomplished through technology or laws is irrelevant to them.