Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Music Media

More Cracks In The SDMI Wall 102

The indefatigable Andrew Leonard writes: "Now Princeton researchers are getting in on the act. SDMI's watermarks do not seem to be made of very stern stuff. Janelle Brown has a story about a team led by Edward Felten that says it too has triumphed in the hack SDMI challenge." I think they could have made it simpler by having the watermark simply be Vincent Price's voice moaning over every track so "protected," or some juicy backwards masking, and been done with it. The Salon piece is loaded with the links you need;)
This discussion has been archived. No new comments can be posted.

More Cracks in the SDMI Wall

Comments Filter:
  • The intended model for SDMI, presently, is that all music will have the same kind of watermarks for which all players will be screening.

    Sigh. I can see only one advantage this scheme may have over the so-called "encryption" schemes. It should be much easier for concerned citizens to explain how painfully foolish this plan is to their favorite judge, senator, or congressman (or their local equivilant).

    The case against DeCSS has the most unfortunate advantage of being able to use the entirely misleading black-magic-voodoo word "encryption". I, personally, often have a difficult time explaining why encryption can't possibly work to prevent piracy -- what I try to explain to people is that encryption is designed to create a secure channel with which to tranfer information from entity A to entity B, without the possibility of that information being intercepted along that channel. But encryption does nothing to restrict what entity A or entity B can do with that information once it is in their posession. Preventing people from sharing information once they have it is entirely a social engineering problem -- it is impossible to make it a technical problem. Unfortunately, I'm afraid I'm not very convincing when I tell people this, and I've seen more than a few eyes glaze over.

    Happily, I think the idea that watermarking somehow "protects" music is going to be much harder for the recording labels to sell. But if the plan really is for all players to screen for watermarks, I look forward to much inconvenience, many more bad laws and many unfortunate court decisions in the coming years.
  • The story is vaguely interesting (although largely repetitious). But why is /. accepting advertising from Salon? Andrew Leonard's address (as given by the mailto link) is aleonard@salon.com. The story is on Salon. Even my vague understanding of journalistic (not say publishing) ethics says that Andy shouldn't have sent this (nor the previous Salon links) and Taco shouldn't have printed it.

    If it's really all that good, someone else will eventually submit it.
    --
    An abstained vote is a vote for Bush and Gore.
  • "it would be a cinch for an enterprising coder to turn one or more of its watermark-removal techniques into a downloadable program that would let any MP3 pirate "press a button to commit piracy." - This is taken directly from the article.

    I disagree totally. Removing the watermark from music that you have purchased is not piracy. Unauthorised distribution of copyright music with or without the watermark is piracy; eating it, singing over it,,corrupting it, destroying it is not piracy.

    If the RIAA have their way then removing the watermark will soon be illegal.
  • there are many advantages to keeping the watermark recognition software under lock and key, to be used only as part of a systematic process of scouring the net for copyright violations.

    Sorry to do this to the paranoids out there, but do we have any proof that this is not already happening?

    In the absence of a pristine file to check against, new music fresh from the studio and the record company may already be watermarked. There is nothing to lose by doing this for the record companies (or the artist), and perhaps much to gain at a later date.

    For older music, this is not an option, as we can check against the originals (but then again, a lot of stuff comes out 're-mastered' from time to time), but there are few, if any, people who could detect such a watermark in new, previously unheard material.

  • Since when did "fair use" extend to making illegal copies of someone elses work?

    Hey. I just posted a list of about six scenerios where copying audio is *not* piracy. It didn't show up so here they are again.

    1. To create a sample loop for my hip-hop song.
    2. For making a mix-tape of music I bought for my car
    3. To use snippits for my CD and song review site
    4. To play select examples for a music class
    5. To backup my CDs in case of fire or theft
    6. To use as background music for my wedding video

    Watermarking (and using watermarking-aware equipment) will make it impossible for these sorts of fair use to take place.

    some angry anonymous B1FF

  • Ethically, there is no problem. Journalism's primary goal is the distribution of information, not profit seeking. Consequently, Andy should not be barred as a result of his position and /. should not censor him as a result thereof. If Andy has information that he knows interests a certain forum, he is ethically required to distribute that information.
  • I have a question:

    Exactly why doesn't the RIAA just distribute encrypted files? If the player doesn't have the right key, it can't play.

    Of course, this will lead to increases in file size, and will pretty much have the same problem as the watermark: If one person can do it, another can reverse-engineer it, so the keys will be extracted and used to decode the file almost immediately.

  • The way to hack this can also be found in Peter Wayner's Digital Copyright Protection . The mechanism is simple. Rotate by 45 degrees. Blur twice and then sharpen twice. Boom. The watermark is gone, or at least as gone as the Digimark detector in Photoshop.
  • the public accepted DVD players, yes.. but the public does not accept region coding. most DVD players are sold region-free and can play disks from all regions. At least that's how it is in the netherlands..

    //rdj
  • In the red corner we have the academics, postion - we can break any watermarking system, evidence - one broken watermarking system

    In the blue corner we have the SDMI,
    position - we can make watermarking work, evidence, one broken watermarking system.

    Now, anonymous is claiming that by demonstrating that present watermarking systems don't work, SDMI is being aided in producing a watermarking scheme that doesn't work and the academics are taking away our freedom.

    However, anonymous freely admits he is no expert, yet is clearly siding with the SDMI lobby since they have said they can make watermarking work.

    However, the academics [who I hope may be considered experts] are choosing to demonstrate that the present implementation of watermarking doesn't work, and, why it doesn't work. If they were helping SDMI then they would be only presenting their findings to the SDMI committee, instead of presenting them to the public.

    I don't believe that the SDMI can make a watermarking system. I am very glad I'm not working as a techie designing / implementing SDMI at the moment. Given my previous experience with marketing departments I suspect the case is the marketing department has decided that the technical department can make a watermarking scheme work.

  • Can you say "Prior Art"? I thought you could.

    thenerd.
  • is simply by not buying their stuff.
    quote:The group is taking the risk that SDMI authorities could try to prevent it from publishing its work -- participants in the contest were supposed to be sworn to secrecy -- but Carver believes that by forgoing the prize they may not be required to sign any nondisclosure agreements.

    then put the documentation on an insecure FTP server...

    Why would we want to remove the watermark anyway, is a SDMI compliant Media player, which doesn't reject the song sufficient enough? or will they encrypt the music?

  • Well, they rejected it. That didn't take long.

    I notice now that the only link in Andrew Leonard's writeup is to Salon's story. After it gets Slashdotted, I'm sure he'll happily brag to his boss about how many pageviews he generated. The author of the article, Janelle Brown, won't be looking to shabby either. All in a day's work.

  • Carver believes that by forgoing the prize they may not be required to sign any nondisclosure agreements.

    The group doesn't believe watermarks are useless -- but merely inadequate for this kind of project. As Craver puts it, "We are not out to get the recording industry; if our results can help anyone develop a better security system, we're happy."

    Scott Craver is my brother (i'm so proud *sniff*). For some reason, nobody, not the press, the post office, those fucks at TV Guide, NOBODY can spell our last name right. COME ON, PEOPLE, ITS ONLY SIX DAMN LETTERS!!

    well, they spelled it right a few times at least.

    ---

  • I would say that the public has not entirely accepted the region code lock-outs or CSS protection on DVDs. Reference De-CSS stories and stories about the Apex (and other) DVD player that allows you to disable all copy protection schemes if you want to see what I am talking about.

  • This system is designed to be used on propriatory hardware just like DVDs, with region encoding and other bells and whistles. The public accepted DVD players, why would they not accept similar restrictions in a music player if it does not hurt them too much?

    Cause there are already plenty of non-crippled audio players out there, in whatever format you like. The whole point of watermarking is that they expect it to be ripped to mp3, yes? And without lots of further legislation, there will still be new mp3 (or maybe ogg?) players coming out for the forseeable future.

    Point being, that "yes" that you seem to think is there won't stop much of any (illicit or other) copying since that copying is likely to take it out of the protected format.

  • You're right. This can only help matters. The fact that this was done by academics at reputable institutions makes them much harder to ignore.

    If some l33t h4x0r out there claims he's cracked it, the SDMI nitwits can just deny it and people will believe them. But when some guys from Princeton, Rice, and Xerox's PARC say they've cracked it and post the results for all the world to see, they can't deny it and expect people to take them seriously.

    This is definitely going to send them back to the drawing board for while, perhaps even cause them to scrap the idea altogether.

  • If it can be heard
    Regardless of protection
    It can be copied

    Every old comment
    Stating the obvious
    Can also be copied

    You encrypted your comment
    Using bold letters
    I copied them too

  • Frankly, I could care less if Diamond takes it in the shorts for deploying a flawed product. That's just capitalism in action.

    But if they are forced, either by law or by lawsuit, to add SDMI to their products, thereby making them flawed, then it's not their products that are the problem.

    Here's an ethical question for you: Is it ok to help big businesses take away our freedoms so they can increase their profits?

    Big business will implement the SDMI scheme, unless they realize that it can't work. It can't work. Any copy protection scheme can and will be overcome, given time. Personally, I think it much better to prove that here and now, so that the Recording Industry will be forced to confront the reality of the situation (instead of biding time with SDMI pipe dreams). File sharing is a hot button topic right now, we need to get laws on the books that support it, not laws that require SDMI-type protection schemes.

    How will a circumventable system, "annoy the heck out of people"? What problems will it cause if someone who can defeat the SDMI watermark exercises his rights for fair use and copies his digital music to a non-approved player. HOw does that at all interfere with someone who uses SDMI watermarked music in SDMI approved players? The only people I see that scenario annoying are the members of the RIAA.

    I believe he was saying: wouldn't it be better if, instead of "breaking the rules" by circumventing SDMI (and going through some added inconveinance, such as having to run some sort of W4R3Z de-SDMI program on all your sound files), the laws stated that it was okay for you to rip your cds to digital files? And then trade them? Proving that there is no way to prevent file trading well help the RIAA and the government realize that they will have to find another way to deal with the issue than banning it and applying a technological solution.

    If SDMI isn't going to work the best thing for it is to let it die.

    Exactly. And if it is proven to be unworkable, it will die.

    Josh Sisk
  • perhaps even cause them to scrap the idea altogether.

    This I really find hard to believe. Sorry. I see too much $$ invlved here.

  • "The real question in terms of quality degradation is whether the sound quality is good enough for the common pirate. If you subject a music file to a modification whose quality degradation would bother a recording engineer but would not bother most of the people who download MP3s, that would be a problem."

    The group also posits that its work could easily be repeated, and that it would be a cinch for an enterprising coder to turn one or more of its watermark-removal techniques into a downloadable program that would let any MP3 pirate "press a button to commit piracy."

    Of course, the only reason to circumvent SDMI is to produce an infinite number of copies for general distribution - I would never want to have to buy a new copy of a recording every time I buy a new computer or excercise any other fair use right.

    These folks are toeing the RIAA line - they don't consider the consequences of their actions. All they know about the ethical or moral issues involved is what the RIAA told them.

  • They can do it just like some banks do for home-banking authentication, use dedicated hardware but put part of the functionality in internal RAM kept alive on battery power. The device will have to be reprogrammed at a secure location when it runs out, but with good design that will take a long time.

    So not only do you have to map the IC, you have to extract contents of on-board RAM while the circuit is in operation.
  • Maybe Princeton should get a patent on this. So then they could make the RIAA pay millions for the patent.
  • BTW it keeps coming up in this thread, but you cannot defeat many audio watermarks by overlaying a new watermark.

    Is this true? In my digimarc trick, I defeated the original watermark with whatever means, then created a new file with a new watermark, on the strongest (most damaging) setting. I then overlayed this file over the original (watermarked) file, and played with the opacity until I had a file that was pretty bloody similar (down to individual pixels a lot of the time), but did not contain a recognizable watermark.

    From this file, I could then re-watermark it with my new watermark. The original watermark was gone, the file was nearly identical and contained my new watermark, at considerable less signal strength than originally needed to defeat the watermark.

    I am assuming that this technique would work more or less the same with audio files.

  • by mcice ( 212918 ) on Monday October 23, 2000 @12:45AM (#684295)
    We are doing a university project that aims at
    defeating all known audio watermarking techniques.
    So far we killed EVERY SINGLE ONE using a mixture
    of techniques including inaudible transforms in
    the frequency domain, jitter in the time domain
    and very funny huffman shuffling of the bitstream,
    making it 1% larger because we also apply a
    reverse psymodel where inaudible frequencies
    are actually added instead of eliminated.

    We only have an mp3 bitstream specific test tool
    right now but adapting this to AAC is no big
    deal (we chose mp3 because of its popularity).
    Of course you need a decoder source for this
    but once you have one, you can start mess up the
    bitstream all the same.

    I work on that project because frankly, SDMI can
    kiss my behind. Too bad them guys have too little
    brain mass! Sitting duck, their watermark is.
  • Sorry, but I disagree. It a extremely important in this case to behave maturely. If you do, this gives one leveraging power. Becuase of what the Princeton boys did, we no longer have to rely on essentially slanderous remarks such as the ones you have made. Now that they have gain cooperation from serious people, it would do them great damage to turn around and so as you say they would. It would make their evil more transparent.

    Furthermore, what they do is wholly consistent with the principle of free speech. There is nothing in law gives the SDMI guys the right to suppress what the fruits of their research have done. No attempt was made to get the prize, and only the scientifically interesting questions were asked. In the 2nd phase of the contest, the Princeton group declined, because it makes no sense to try to crack a single file - you wouln't know whether you've actually cracked it or not.

    In other words, we now have two weapons in our arsenal to bring down the SDMI. We have the continued threat to them that it would be broken when it is released, and our refusal to cooperate, signalling disagreement with their control policies. Next we have a bunch of people who played along, and did everything consistent with the goal of proving it cannot be done. AFAIK, SDMI is now caught between a rock and a hard place. They can neither continue down this path of improving SDMI (ignoring the Princeton group's efforts) without accounting to the public their policies. They are on the losing side.

  • by Xcott R13, 3(0,R4) ( 243034 ) on Monday October 23, 2000 @12:46AM (#684297)
    Point by point (keep in mind I don't speak for the group here:)

    No, we did not ignore the ethical or political issues involved. In fact, if anyone understands those issues it's an expert in the technology, not some angry anonymous B1FF. The very fact that you think "damage is done" shows that you don't understand the serious technological problems behind what SDMI is trying to do. Just how do you think SDMI is now a step ahead?

    No, we are not helping SDMI restrict fair use by making them (and everyone else) aware of weaknesses in the system. Keeping mum about ways to circumvent the system will hurt everyone, as a flawed SDMI in deployment hurts everyone a lot more than no SDMI at all.

    Here's an ethical question for you: what about Diamond Multimedia? First they were sued by the recording industry over their MP3 players. Now if we let SDMI deploy a flawed system they're going to get screwed again, having to blow tons of money by putting these SDMI ASICs in their portable devices. That make them drain more battery power and otherwise suck. This is an okay scenario to you?

    And what about users? A circumventable system on your portable devices may not stop people with the right utilities from making copies, but it will forever get in the way and generally annoy the heck out of people. This is also okay for you? Acceptible losses, friendly fire, if it will help you teach SDMI a lesson?

    If SDMI is never going to work, the right thing to do is to keep it on the drawing board. Anything else will yield an awful end result.

  • We're compiling on our FAQ a list of any other groups we know of who have analytic results on SDMI's system. If you have a site detailing your results we'll happy add a link.
  • by Anonymous Coward
    > Or is there some other possibility that I don't see?

    Sure. It may be used for a rent / internet distribution model.

    You'll connect to a RIAA approved server to which you have an account, and will pay-for-download songs. Those songs will contain a watermark that identifies you (more probably, your player)

    You will have the right of playing this song only on a blessed player that would check that the music you play is really yours, that the expiration date is not passed, that the number of listening is not too much, etc, etc.

    This is, IMHO, what watermarks techniques can achieve. Encryption can do the same but is much more visible. Watermarks are much more insidious.

    And sure, they also need a legal arsenal (that they are currently lobbying for) to threaten/punish people that leak watermarked music.

    This sounds like a conspiracy theory, and probably is.

    Cheers,

    --fred
  • Because the CD player you bought 2 years ago doesn't have the hardware to decrypt and encrypted file.

    Computer software -- or new CD players -- could be equipped with such hardware, but, uh, would you ditch a perfectly good CD player to 'upgrade' to a new one with less functionality?

    I suspect the RIAA is toying with this idea: how much of an outcry would there be if, say, we urged labels to release CDs that could not be played on current CD players?

    I'm sure there was (or still is) some bean counter sitting in a conference room somewhere talking to Bri ("Hi, call me 'Bri!'. It's short for Brian.") about whether or not it would be 'economically feasible' to scrap current CD technology and, well, force consumers to upgrade to new players.

    In fact, I'm sure there were meetings and more meeting about this.

    "Bri, whattya think?"

    "Well, Joe COnsumer won't like it."

    "Well, fuck Joe Consumer, Bri. Fuck him. Fuck them. Bri, let me ask you this --"

    "Huh?"

    "Your car? What kind is it?"

    "I got a Lexus. And --"

    "And you like it. Right? You like that Lexus."

    "Yeah -- my wife, she's got --"

    "A BMW?"

    "A blue one, yeah."

    Leaning close: "Bri, listen to me. Are you listening?"

    "Yeah."

    "You want your fucking Lexus. Your wife wants her BMW. You want a standard of living that you're used to. Right?"

    "We got a big house."

    "This is why, Bri. This is why."

    "Why ...?"

    Jimmy whispers: "F. U. C. K. Joe Consumer. Fuck him. You understand? SDMI is good. SDMI will feed us, Bri."

    "Yeah."

    "Say it, Bri."

    It's late afternoon. Bri is tired. He looks out the window. Gray skies.

    "Say it, Bri."

    "Fuck Joe Consumer, Jimmy."

    "That's right."

    Bri wants to leave. He wants to get in Lexus and go to his big house. "Fuck him," says Bri.

    "Say it, Bri."

    "Fuck Joe Consumer!"

    "That's it."

    "And the hackers. Fuck them, too."

    "You're okay, Bri. You're a good guy, Bri."

    "Fuck the consumer! fuck the hackers!"

    "All of it."

    "Everything."

    "That's right."

    "Thank you."

    "You feel better?"

    "Yeah."

    "Are you on board?"

    "Yeah."

    "No go home, Bri. Go home and remember what we talked about."

    "Okay."

    "Take tomorrow off. Will you do that?"

    "Tomorrow?"

    "Hit the links, Bri. Go and have a nice day. Take it all in. 9 holes, 18 holes -- it's up to you."

    "Thank you."

    "You're okay, Bri. You're a good guy."

  • I agree, but I hope that they accept your entry as valid, now that you've pulled out. If they were truely interested in seeing a solution then what you've done is excellent... a dose of reality. However, I fear that this is a pet project, and because their 'experts' have told them that it will work, not even a valid R&D group can hold back the tide of cash-powered market-driven ignorance.

    Yeehaw

  • by bellings ( 137948 ) on Monday October 23, 2000 @04:17AM (#684302)
    i mean, if it can be played, it can be recorded - and if the watermarking is done so that human can't hear it, then you can't hear it in the copy either.

    Who cares if you can hear it? More to the point, why would you care if a computer could detect it? Until it becomes illegal to distribute programs that play audio without checking for watermarks, how is the presence of lack of a watermark going to affect me in any way?

    Or will I have to retroactively add a watermark to my wedding video, before I can edit it on my computer? If my brother sends me a CD of his garage band, will I have to take it down to Media Play or Barnes and Noble to get watermarked before I can listen to it on my stereo? If e-mail a recording of my kid saying "mama" off to my relatives, are they going to have to visit www.riaa.com to get a license to listen to the e-mail?

    If someone can distribute a player that doesn't care about the water marks in any of those sound files, why would that player care about the watermarks in the latest Britney Augilara CD?

    I must be missing something fundemental about watermarking here. Unless I suddenly find myself in a world where the only audio I listen to are those sounds pre-approved by one of the major record labels, one hundred percent of the stuff I send around is going to be home-brewed audio. And any program or hardware that makes it more inconvenient to listen to that home-brewed audio isn't going to make it into my house, and it isn't going to make it into the house of anyone I know.
  • Psychoacoustic
    Models change inaudible
    Sounds; no protection.

    (apologies for completely murdering the form there :)
  • by Morgaine ( 4316 ) on Monday October 23, 2000 @02:32AM (#684304)
    The group's portrayal of DMCA is interesting. From their FAQ [princeton.edu]:

    We think the DMCA, by criminalizing some kinds of study of important technologies, represents an "ignorance is bliss" approach to technological copyright enforcement, which will not work in the long run. We lobbied against certain aspects of the DMCA while it was before Congress, and we still consider it to be a seriously flawed law.

    If so many well-reputed groups lobbied against the law without any effect whatsoever, it really brings home how the legislature is already in the pockets of the corporations today. It's not a worry for the future. It's already with us now.
  • "all music will have the same kind of watermarks for which all players will be screening. These will be used in a general infrastructure by which the marks will instruct players/recorders to not accept marked music under certain conditions, for instance if it is or has been compressed."

    so, we have open source players, everybody grab their sources and modify it to ignore watermarking. and there probably are zillions of small record labels who don't want any digital watermarking on their music - and there is still huge amounts of small labels releasing 100% vinyl - which can be easily recorded and distributed digitally, without any fear of sdmi watermark. this is doomed idea. although industry people are so stupid that they will probably try it. remember what happened to this one big record label when they tried to release copyprotected cd's earlier this year? the cd didn't work on most of the cd players and they had to take all cd's back and replace them with standard ones.

  • I assume you clicked through their agreement. And isn't click-through considered now considered a legally binding form of "digital signature" under that stupid new law? I forget exactly what the agreement said, but I think you already have (inadvertantly) signed something.

  • SDMI's ultimate failure lies in one simple fact: if the majority wants something so bad that they would lie, cheat, steal, die, and even kill for it, and there's a company using security measures to prevent the majority from acquiring that certain something, then the majority will do everything in its power to break the security measures.

    One other bone I have to pick with the SDMI is the intent spelled out in the acronym definition: Secure Digital Music Initiative. Secure for whom? Not us, the consumers, the people who listen to the music, the people who pay for the music with our hard-earned money. The SDMI is primarily intended to "secure" the invidious royalties of the big record companies. Each MP3 file out there (FTP, Napster, Gnutella, etc.) represents a virtual voice opposed to the SDMI. The roar of opposition is deafening; however, the music companies have torn out their ears, much like Oedipus did his eyeballs. They can't handle the truth: music is no longer a per-unit commodity. It is attempting to evolve into a free medium for the people to enjoy without shelling out X amount of dollars to pay the Sony tax. One example of this is Smashing Pumpkins [smashingpumpkins.com]; you won't find their newest album in stores, it's on MP3 at their site. I look forward to other high profile artists doing the same, for the age of "ConGlom-O Music, Incorporated" has ended.

  • The basic idea of SDMI seems to be adding noise (that you don't hear) neat idea.
    Audio compression removes anything you don't hear (an easy way to shrink the file.. you'll never miss it) so just rescan the file and the watermark (unheard noise) is gone..
    (To rescan.. convert to annother format and back.. mpeg to wav to mpeg would be ideal.. my CD ripper delivers wav files so I'd have to convert to mpg anyway... one pass... thats assuming the CD ripper itself dosn't remove the noise and it probably would)

    Annoter set of apps removes noise.. I've used it (Radio mic so I get some noise.. I have to remove it when I submit GiS:GC files... unless I want that "Transmitted from space" sound) Again zapped watermark...

    And rember people when they cry the SDMI wasn't cracked... We boycotted the challange.. Very few (if anyone) bothered...
  • point is, after analog recording on say, reel2reel you get sound that is completely different - if there ever was some weird digital watermark, it's gone after that. there's so much little hiss, noise, and brumm on analog stuff (which you will not be able to notice from the recording) that it will hide all those fancy watermarking efforts. of course, who wants to do this? it requires a lot of work - and a studio. i was just speculating on the idea if there is actually any logic on this thing - and how to get around it.

  • Just been thinking, that even if sound files are watermarked, if thousands of them are disrributed under napster/gnutella/whatever there will be just to many illegaly distributed files for anybody to keep track on.

    Imagine if there were on a given date 23.000 illegal files in distributions, surely in principle each one could be tracked down, but there are limits to the resources available to the one tracking.

    I'm pretty sure no legal system would be able to handle a stack of 23.000 lawsuits, let alone all the complications from the fact that this will probably be cross-border crimes

    And also propably most of these would be an
    average broke teenager, with not to much of assets to claim anyhow

    So my guess is that most people would get away with it and every now and then somebody will get picked at random and sued.

    Idon't know but it sounds as it isn't much more dangerous than driving in trafic ;)
  • Watermark music?
    Try to catch the wind, instead.
    Here we go again.
  • by StoryMan ( 130421 ) on Monday October 23, 2000 @04:50AM (#684312)
    It has been asked and talked about before: but the real question is just what exactly is in SDMI for the consumer? The average consumer, I mean. Not the guy that has a home LAN, digital sound cards, and 100+ CDRs of MP3s.

    I'm talking about the family who goes to Best Buy on a Saturday to buy a new CD player or buy a couple of CDs.

    What's SDMI gonna do for these people? Nothing.

    Jack Valenti (the MPAA, not RIAA) has been spouting off about "ethics" for the past week or so. "We need to change our culture so that people realize that downloading audio/video is stealing. We need to adjust people's ethics and make them aware that, yes, stealing is bad. You cannot be a good person and steal."

    Now, Valenti is a prick. There's no doubt about it. He's an old guy of the worst sort: a guy who thinks he's "in touch" but, of course, is woefully out of touch. He thinks he's in touch because he's "been around" for something like 40 years -- wining and dining with Jack Kennedy, setting up the current MPAA rating system, (boy, when I was 11 and blocked out of Apocalypse Now because of Valenti's 'R' rating, I was furious. I even wrote a letter to the guy -- he didn't answer -- and attempted to explain that it should be up to my parents about whether or not I should be able to see Apocalypse Now or the Deer Hunter and not Jack Valenti and his out of touch band of decrepit geezers who have managed for years to wine and dine and subsequently get in bed with all of the politicos. But I digress...) and acting as the rabid lobbyist for the interests of the Motion Picture Industry.

    The problem with the MPAA -- and by extension the RIAA -- isn't Napster or DIVX (the video codec, not the failed Circuit City venture) or peer-to-peer networking -- it's one of perception.

    True, a new business model would help matters -- a business model in which the RIAA and MPAA figure out how to exploit technology, leverage it, and still give the consumer a sense of empowerment -- but the real issue is one of perception. The RIAA and MPAA are vile whores.

    I don't say this lightly, either. Not too long ago I was at an 'eGovernment' conference (one of the dumbest conferences I'd ever attended -- government, for sure, has no clue when it comes to understanding the way business and tecnology have shifted, but, again, I digress...) and the keynote speaker was some higher-up on the US Internet Council. (Some non-profit US group out of Washington DC who go around the globe and attempt to get everybody to buy into the global benefits of the internet). This guy -- a fantastic speaker, by the way -- was asked a question about Napster and about pending litigation against Napster and Scour and guess what? The first words out of his mouth was this: "The RIAA is vile."

    No kidding. It was a joke -- and he switched into his serious "Well, okay, not vile, but you know ..." mode, but it was a telling moment.

    The audience cheered. For me, it was the high point of a dumb conference. (Can someone explain to me why the government -- state and local, especially -- don't get dot-com speakers to speak at these things instead of government webheads? I mean, if the government is gonna learn anything about "leveraging" the internet, the place they should for instruction is into the private sector and not back into the public sector, where -- except for some academic wonks, perhaps -- they will find only cluenessness piled upon more cluelessnes, but, okay, I digress...)

    My point is this: that the RIAA and MPAA both need better PR if anyone is gonna buy into Valenti's ethical arguments. It's as if a pimp complains to a Congressman about how his "business has been bad lately because the ladies been giving it up for free. Man, I gotta install computerized chastity belts and issue encrypted keys!"

    No one listens to the pimp because he's a pimp. The other pimps praise the first pimp's ethics -- Yeah, man, there is an Ethics of Pimping -- but everybody else gives the pimp a crazy look: Ethics? You're not serious, right?

    That's what Valenti is fighting against. He's in a PR war for getting Joe Consumer to buy into the Ethics of the Pimp.
  • by wmoyes ( 215662 ) on Monday October 23, 2000 @04:52AM (#684313)
    When I downloaded the test files, I never clicked on the 'I agree' button. I simply used a URL that would get me to the files without agreeing to their contract. Note that they said in the legalize 'by CLICKING you agree'. Well I never clicked. I typed. Also just to make sure I appended '?Never_clicked_do_not_agree_to_terms' to the URL. Well guess what, they let me download the test data and submit to the oracle anyway.
  • I wonder if the lawyers defending 2600 et. al. are watching?
  • Exactly why doesn't the RIAA just distribute encrypted files? If the player doesn't have the right key, it can't play.

    That's what the MPAA did with DVDs and CSS. And look how long it took to break the encryption...

    =================================
  • I've been trying to figure out an appropriate way to alert Slashdot to stories that I think Slashdot readers will appreciate. I've been a longtime participant in Slashdot, and for years refrained from submitting any of my own stories, basically figuring that it was up to Slashdot whether they were worth covering. Then Slashdot linked to a Red Herring reprint of a story we ran on Gnutella, and I wrote Rob Malda asking how this could be avoided, and he said that everybody "else" submits their own stories. So since then I've started submitting them -- although the only stories I've submitted have been SDMI related
  • by 575 ( 195442 )
    If it can be heard
    Regardless of protection
    It can be copied
  • Actually the original protection scheme was none other than singing of Yoko Ono later dropped for reasons of stability. ;-)
  • by takemiya ( 139902 ) on Sunday October 22, 2000 @11:39PM (#684319)
    And regardless of how strong it is, there would always be someone out there trying (and probably succeeding) to hack it

    Trying and definitely succeeding. If a software SDMI verifier ever comes out, it'll be disassembled and cracked before you can say 'script kiddie'; otherwise, it'll just take a little longer for some grad student researching ultramicroscopy to take apart their SDMI Rio and map the chips. The only possible point of SDMI is to stall free copying until the industry pushes draconian laws through Congress and/or to make the pointy haireds at the top think Something Is Being Done.

  • by Anonymous Coward on Sunday October 22, 2000 @11:39PM (#684320)
    Andrew Leonard is a contributing editor at Salon magazine, a fact which no doubt was accidentally dropped from the story in editing. Timothy apologises for this and will endeavour to make sure that connections between media outlets pushing stories on slashdot are made clear in future.
  • I respect your talent and trust that you know more and have thought more about the issues involved here, and so I apologize in advance for this flame. If you haven't gotten tired of dealing with ranting /.-hippies, I'd appreciate hearing what you think of all this:

    My take is that the SDMI is an evil thing, a thing that should not happen, and a stupid thing from the companies' perspective. I hold all the companies who haven't yet said "screw this; we're going to go work on a revenue model that might work" responsible for that choice. You can't give someone music and deny them the ability to copy it. You can't. You never will be able to again. They'll stick a microphone up to the thing they listen to, they'll encode it as MP3s, and they'll put it on Freenet, or Gnutella, or Mojo Nation [mojonation.net], or whatever the next and even better system is. There is no longer such a thing as "secure music." I allow for the possibility that, if you throw enough money, enough brains, and enough industrial and political muscle at the problem, you might be able to get secure, uncopyable digital music, in which case only people with good speakers will be able to get MP3s of Napster quality out of it. Regardless of what the right thing to do is, regardless of what would protect the artists' rights best, regardless of your or my personal stance on copyright, this outcome is a done deal. It's already happened; there simply is no way to stop people from trading MP3s on the internet, watermarked or not. That's a fact. The whole thing is stupid, and doomed to failure. The RIAA in particular is so hidebound and arrogant that they can't see that.

    Now this watermarking idea that the SDMI is having rammed down its throats by the RIAA is particularly doomed to failure. Not only is it impossible for the above reasons, it will piss off the consumers royally. People who don't care about Napster because they can't figure out how to use it will get pissed, because they'll have to go through all this bullshit, buying new equipment at the very least, just to listen to the next Blink 182 album, and they love Blink 182. A lot of them will stop listening to the Top 40 checklist. Not only that, it'll get cracked, quickly, and completely (you know more about this than I do :-), and millions, maybe billions, of the RIAA's money will go straight down the toilet.

    From my point of view, this is an unqualified success. This is grounds for dancing in the streets. I loved it when I finally started to believe that they were going to try to go through with it. It was a veritable vision of the future: everyone hates SDMI, everyone hates the RIAA, and the RIAA takes a bath. All the companies that had the balls the tell the SDMI to go fuck themselves and work on revenue models that work find themselves with lots of new customers.

    The SDMI is obviously doomed to failure, barring the institution of a copyright-enforcement police state the likes of which makes 1984 look chickenshit. If Sony can't figure that out, fuck 'em. If Sony wants to try to take my fair use rights away because they think that'll make it work, good. Fuck 'em. It won't work, and they'll look stupid and lose money trying. That is the biggest reason I wanted this watermarking nonsense to go as far as it could.

    No, we are not helping SDMI restrict fair use by making them (and everyone else) aware of weaknesses in the system. Keeping mum about ways to circumvent the system will hurt everyone, as a flawed SDMI in deployment hurts everyone a lot more than no SDMI at all.
    It only hurts companies that choose to participate. If whatever godawful crap SDMI comes up with actually makes it to market, I want it to be as weak as possible. I want it cracked hours after the first SDMI-compliant players hit the shelves. I want companies to go out of business because they spent money on making their devices SDMI-compliant. They deserve it, for backing such a lame-brained, anti-consumer, technological impossibility.
    And what about users? A circumventable system on your portable devices may not stop people with the right utilities from making copies, but it will forever get in the way and generally annoy the heck out of people. This is also okay for you? Acceptible losses, friendly fire, if it will help you teach SDMI a lesson?
    The right utilities? What, like a fucking microphone? Yeah, it'll be a pain in the ass, but we're not talking about Viet Nam here. It's the magic of the free market: If it's a pain in the ass, people will hate it, and it'll die. Plus, as a bonus, all the music that at least one person can digitally copy will go on Mojo Nation [mojonation.net] anyway, and we won't lose a single Backstreet Boys B-side. In the meantime, somebody who's figured out that people can copy music now and worked out a way to make money anyway will make millions. Yes, that is perfectly okay for me. What I'm afraid of is that at some point, these rapacious bastards might wise up. The small but clueful voices in the SDMI might finally get it through the RIAA's adamantine heads that they should at least pretend to be on the side of the consumer, and they might come up with something that wouldn't get a freshman business major laughed out of class, and we might still be listening to Britney Spears thirty years from now.

    The RIAA won't give up on this. If they do, they die. They'll try to beat Napster until they die, and I won't like what they come up with. It won't be on my side. It won't be on anybody's side. It'll be a plan to preserve a profit model that simply doesn't work anymore, at the expense of the music consumer. It might be lobbying congress to make MP3s illegal. It might be CDs uniquely keyed to the buyer's identity, so if your CD winds up on the net you wind up in jail. It will be a greedy, rapacious plot to fuck the American consumer out of his or her money and freedom, and every clue the RIAA gets means a little bit more clueful a greedy, rapacious plot. They're evil, they're clever in their way, they're very, very powerful, and they prefer massive force to insightful change. It's the way they've been doing business for decades, and being heavily under attack in an arena they don't understand isn't going to make them any nicer. Now I don't personally care; I've got enough John Lee Hooker tracks on my HD to last me quite a while, and every time I convince myself to check out the great new indie band, I hate it, and I rip another Dylan album. But I wholeheartedly believe that the RIAA and its bastard child the SDMI can do nothing but harm to the American people, and I want them to lose money, lose mindshare, lose political clout, and gradually die an ungraceful death while being made fun of on the internet. I think a horribly flawed SDMI sounds like a great start, and I sincerely hope that they're arrogant enough still to go on with this thing.

    That's my rant.

  • SDMI had to compromise between security and efficiency, so very strong encrypting has always been unlikely in this sort of practical field.
    And regardless of how strong it is, there would always be someone out there trying (and probably succeeding) to hack it, so there wouldnt be much point in going for too strong.
  • there's so much little hiss, noise, and brumm on analog stuff

    The point is, no-one I know records on analog stuff anymore. I certainly don't, and my brother's garage band certainly doesn't. Heck, even my mom doesn't record on analog stuff anymore. The only analog thing left in my house may be my answering machine, and I'm not going to record anything important off that (unless I somehow get Carl Cassel to record my outgoing message).

    Watermarking is going to have to work with home-brewed digital recording, or it will never be used by any of the early adopters, and it will never gain enough traction to get into normal users homes. Face it -- if you still record with analog, you're probably not going to run out and buy the latest watermark-enabled recording device, either. If you record digitally, you're not going to buy something that prevents you from using the stuff you legally create.
  • I think they could have made it simpler by having the watermark simply be Vincent Price's voice moaning over every track so "protected," or some juicy backwards masking, and been done with it.

    That wouldn't work with the song Thriller, it already has Vincent Price Moaning in the background. :)

    Nanite Vote Nader

  • For those of you too lazy to read the article for more links: FAQ for research group [princeton.edu] that is playing with SDMI.

    +2 is high enough, thank you.

    I'm awake cause I can't sleep. This sux, tomorrow is going to be a long day.

  • I must profess complete ignorance with respect to watermarks. A handful of bits of additional information can be encoded in a sound file. So what? What advantage does the recording industry see in this?

    Obviously, this is only useful if your software extracts this information, and is designed to do something with it. Will a players be built that will only play a song if it contains a watermark customized for that particular player? Or is a player somehow check the watermark against a list of songs it is licensed to play? Or are copyright enforcement teams going to systematically suck down every song they can find on napster, and then check the watermarks of those songs, in order to automate the discovery possible copyright infringement? Or is there some other possibility that I don't see?

    Installing and depending on watermark-enforcement software in all available players seems questionable, at best. First, there is very little to stop anyone from either simply writing a player that ignores watermark, or hacking an existing player to ignore watermarks. Moreover, if the watermark-enforcement code gets included in commonly available software (like Windows Media Player), then everyone will have a very simple mechanism for testing the efficacy of de-watermarking software: download some de-watermarking software, use it on a sound file, and then try to play the sound file with your favorite copyright-enforcement software. If it doesn't play, download different de-watermarking software, and try it again. Repeat as often as necessary. Obviously, both the distribution of media players without watermark enforcement, and the distribution of de-watermarking softare, will face many legal challenges, but neither would face any great technical challenge. Indeed, using a watermark this way would appear to be about as useful as "encrypting" the file -- i.e., not really useful at all. I hope no-one tries to implement this -- its bound to only create ill will and bad law.

    Instead, there are many advantages to keeping the watermark recognition software under lock and key, to be used only as part of a systematic process of scouring the net for copyright violations. Suddenly, it would be difficult to rip a song and then be absolutely certain the watermark was cleanly removed. If fact, the de-watermarking software itself may leave a signature, which could be searched for. If combined with a system of audio fingerprinting [slashdot.org], this could be a very powerful tool to catch copyright infringement. Imagine if Metallica could systematically find people actually sharing Metallica songs [slashdot.org], instead of simply finding people sharing files that have certain filenames. I am also much less hostile towards this use of watermarking -- in fact, I may even welcome it. I could still privately trade music among my friends, artists that wished to give away their music could be free to do so, no-one would have to deal with annoying copy protection schemes, and the record labels would have a mechanism to discover people trading copyright material on filesharing systems such as napster. This might be a win.
  • by Vryl ( 31994 ) on Sunday October 22, 2000 @11:42PM (#684327) Journal
    I have previously hacked Digimarc watermarks in Photoshop, using only Photoshop and Digimarc. Does this make Photoshop and Digimarc illegal circumvention devices under the DCMA?

    The technique was basically to defeat the watermark (using noise or blur or whatever), and overlay a new one on it using the digimarc software. I am willing to bet that basically the same technique would work with sound files, as many of the principles are the same.

    If I have access to the SDMI watermarking software (as I am sure to have sooner or later if the clueless fools go ahead with any of this nonsense) then I will be able to replace their watermarks with one of my own. This is pretty funny, not only will I have 'cracked' SDMI, but actually subverted it to my own purposes.

    Everybody knows that watermarking will never work, why are they persisting with this madness?

    I wish they would get a clue, and offer me something that I want, like good quality songs from complete catalogues available from reliable servers. In which case, I will gladly pay a reasonable tarriff for access to them.

  • Did you read the FAQ? Where they say they are making their findings open by not taking the money?

    =============================================
    Q. Did you share your results with SDMI?

    As scientists, we are sharing our results with everyone, including SDMI.

    Q. What about the cash prize offered by SDMI?

    SDMI did offer a small cash prize to be split among everybody who defeated at least one of the six technologies. However, to
    be eligible for the prize, researchers had to sign a confidentiality agreement that prohibited any discussion of their findings
    with the public. The terms of the challenge also allowed researchers to publish their findings if they decided to forgo the cash
    prize. We decided from the beginning that we were more interested in publishing our results than accepting any share of the
    cash prize.

    ====================================

  • by (void*) ( 113680 ) on Monday October 23, 2000 @12:52AM (#684329)
    It may be copied
    But if watermark remains
    SDMI wins
  • Nothing you do in the contest becomes the intellectual property of SDMI until you sign it away.

    In particular, to be eligible for the prize money you would probably have to sign away your intellectual property rights. That's probably where the idea first arose that attacks are their property.

    Nobody in our group signed any such document, and we're pretty sure we can just publish all the details.

  • how is this so called copy protecting supposed to work? i mean, i can just play the song at the studio through analog stuff (and since 80 % of the modern records are overcompressed and sound bad, i would turn some knobs too) and record it and distribute that copy if i wanted. i mean, if it can be played, it can be recorded - and if the watermarking is done so that human can't hear it, then you can't hear it in the copy either. damn stupid people.

  • Frankly, I could care less if Diamond takes it in the shorts for deploying a flawed product. That's just capitalism in action.

    Here's an ethical question for you: Is it ok to help big businesses take away our freedoms so they can increase their profits?

    You shouldn't be helping to validate a technology that takes away the rights of individuals for the sake of corporations and their shareholders.

    How will a circumventable system, "annoy the heck out of people"? What problems will it cause if someone who can defeat the SDMI watermark exercises his rights for fair use and copies his digital music to a non-approved player. HOw does that at all interfere with someone who uses SDMI watermarked music in SDMI approved players? The only people I see that scenario annoying are the members of the RIAA.

    If SDMI isn't going to work the best thing for it is to let it die. Your discussion has not touched at all on the issue of fair use. Are you just going on with the assumption that due to the actions of the RIAA, the MPAA, and the words in the DMCA that we should all just assume that fair use is dead? Preventing me from using a piece of copyrighted media (be it audio, text, images, or movies) any legal way I want -- in accordance to fair use laws -- isn't moral, ethical, or legal.

  • If you run the audio out to the analog world - and feed it throught a nice analog filter that cuts anything above 40KHZ and anything below 20Hz it will screw with the watermark, and not change how 99.999% of the humans hear it. I am betting that if you played it out a good speaker and recorded off of a really good microphone in a sonex walled room 98% of you could never hear the difference and that would remove/distort the watermark. Hell 80% of all the CD's pressed today suck big time. I have out of the hundreds of cd's I own only 3 CD's (supertramp - in the quitestes moments being one of them) that sound like a CD is supposed to. Freaking dynamic and a ZERO noise floor. Granted I paid $60.00 for the CD and it has 24Carat gold as the reflective layer instead of aluminum. but ALL cd's can sound phenominal. The engineers are cranking out crap to get it out fast.

    if you are trying to remove the watermark and make it very acceptable by today's standards? you can screw up the audio a whole bunch and people wont notice.
  • It was Dr. Edward Felten who demonstrated for the courts that IE could in fact be removed from Windows 98, and that clear benefits to the consumer resulted from doing so. It was his evidence that Microsoft attempted to discredit with a video that later turned out to be faked.

    See http://www0.mercurycenter.com/business/microsoft/t rial/breaking/docs/mstrial121198.htm , [mercurycenter.com]http://www.zdnet.com/zdnn/stories/news/0,4586,2196 350,00.html [zdnet.com].

    The stupid Slashdot line breaking algorithm means that you may have to deal with spaces it introduces. Since it seems you can hide spaces in tags, it should be fairly straightforward for trolls to introduce overlong lines this way - I hope Taco fixes it...
    --
  • by jeremy f ( 48588 ) on Monday October 23, 2000 @02:50AM (#684335) Homepage
    Juicy Backwards Masking!

    Don't wait, for a limited time, the SDMI is selling advertisements as digital music watermarks! Listen to these satisfied customers:

    Rob Malda: "Well, I wasn't too sure about supporting SDMI and the RIAA and all, but ever since I had my voice recorded saying "come to slashdot.org" over and over again on the newest Brittney Spears album, my site has been overpopulated by teeny-boppers! But damn if I'm not enjoying the extra revenue from banner ads!"

    Imagine if this was used for political purposes... Hell, the canidates wouldn't even need to campaign, all they'd need to do is purchase subliminal message time in popular music!

    "You will vote for Al Gore"
    "We will vote for Al Gore"
  • by Chops ( 168851 ) on Monday October 23, 2000 @02:53AM (#684336)
    Carver believes that by forgoing the prize they may not be required to sign any nondisclosure agreements.

    The group doesn't believe watermarks are useless -- but merely inadequate for this kind of project. As Craver puts it, "We are not out to get the recording industry; if our results can help anyone develop a better security system, we're happy."

    Translation: "It'll never work. You guys are fucked. Keep the money."
  • 1) Where can I get the sound files that were posted on hacksdmi.com? I'd like to mess around with them myself.

    2) If they're still working on their standard, then how can there be "SDMI compliant" devices SHIPPING NOW!?!?! Devices such as... Sony VAIO Music Clip [sony.com], and Sanyo SSP-PD7 and SSP-HP7 [sanyousa.com]

    -S

  • having to blow tons of money by putting these SDMI ASICs in their portable devices.

    In what way does the recording industry have hardware companies by the balls in that they can dictate things like SDMI into their hardware? Why can't the hardware companies just say "This SDMI scheme of yours really sucks, so we're not putting it in our hardware." And if the hardware companies started the design process with it being an unproven protection scheme, and it was proven flawed at a point in the design process where it would be too expensive to redesign the hardware, then that's their problem. They took a risk, and lost.

  • Journalistic ethics on this site were dead the day CmdrTaco posted his first inflamatory editorial with a regular news article (and continued to do so with every subsequent story as well).

    That said, I actually applaud this practice. So called ethics in Journalism is long dead. Every media outlet promotes their own agenda at the price of the truth. When CmdrTaco expresses his opinion, he makes it very obvious and you know your getting a biased perspective. If all journalists worked this way and used peer review to keep each other in check, the press would work much better for the public.

  • . Journalism's primary goal is the distribution of information, not profit seeking

    My God, that's the funniest thing I've heard in months!
  • IGNORANCE IS STRENGTH

    FREEDOM IS SLAVERY

    WAR IS PEACE

    Yes, from the book 1984. SDMI is attempting to legitimize these three maxims of Big Brother. It is our job to point out BB's hypocrisy.

  • "The terms of the challenge also allowed researchers to publish their findings if they decided to forgo the cash
    prize. "

    How would they have stopped anyone anyway?
  • One of the articles has a link to MS's response to this - unfortunately, the link from the Mercury Center article is stale.

    The response is still available, though. [microsoft.com]

    Also, Win98lite [98lite.net] is the tool that actually removes IE.

  • well, it was kind of dead already... ;)
  • The intended model for SDMI, presently, is that all music will have the same kind of watermarks for which all players will be screening. These will be used in a general infrastructure by which the marks will instruct players/recorders to not accept marked music under certain conditions, for instance if it is or has been compressed.

    The only way this will work is if the media company owns or makes a deal with the company that owns the format patents, ala MPAA and DVD-CCA. As long as Fraunhofer or Sorenson or whoever controls the future of MP3 doesn't stipulate in your license that your player checks for watermarking, there will be legal players that don't care if there is a watermark or not.

  • by Jeremy Erwin ( 2054 ) on Monday October 23, 2000 @05:25AM (#684346) Journal
    From the SDMI Faq? [sdmi.org]:

    Q - Can SDMI-compliant devices play MP3 files? A - Yes. SDMI-compliant devices will be able to play all existing digital formats; it is up to the manufacturer of each device to choose which particular formats to support. The only content SDMI-compliant devices will not play is illegally copied SDMI music beginning in Phase 2. Unlike non-SDMI devices, SDMI devices can also be upgraded to play new music released in the future in new SDMI-compliant formats. And many SDMI portable devices will be able to play music that is digitally downloaded in new, protected formats right away.

    9. Q - Will the watermark technology chosen for Phase 1 interfere with existing CD players? A - There are hundreds of millions of CD players in the marketplace and nothing being done within SDMI will in any way limit consumers' ability to use those machines with existing and new CDs.

    These two statements imply that, while "Phase 1" does not harm fair use rights, "Phase 2" will include technologies that restrict the playing of a "illegally copied" SDMI file. The implicit assumption, in restricting Question 9, above, to both "Phase 1" SDMI, and "existing CD players" is that eventually "Phase 2" SDMI and future CD players will work together to disable copying of music.

    The copyright industry has long held the assumption that "fair use" is only a defence against claims of copyright infringement, and does not constitute a right in itself. In their view, all copying is illegal, unless specifically authorized by a court (in dismissing a infringement suit), or by the copyright owner. So, even if a consumer wishes to copy music to give to a friend, or excerpt a segment for a brief review (all examples of fair use), he or she will be stymied by "anti-piracy" features in the SDMI-2 spec.

    CSS, SDMI, and like technologies act as contracts, to be enforced by compliant devices. These enforcement mechanisms will eventually have technological ability to prevent copying, and Congress has passed a number of laws (17 US Code 1201 et seq) that attach legal penalties to the circumvention of these pseudo contracts.

    If and when SDMI becomes widespread, various lobyists from the RIAA, MPPA et al. will propose that the importation and manufacture of devices that do not recognize SDMI be banned (as contributing to piracy). (DAT players and VHS VCRs are already required to implement "Serial Copy Management System" and "Color stripe" respectively.

    So yes, SDMI is something to be feared. It's akin to having an RIAA lawyer living in your computer.

  • People accepted (in part) DVD players because they had the encryption from the start (for the most part) and weren't popular until after nearly every DVD sold was encrypted. You can still buy a few unencrypted titles. Furthermore, people don't totally agree with region coding as has been stated above. Why should I have to buy multiple new stereos for my house and my cars just because some asshole wants a watermark? That is how I imagine most people will respond to this if they can't play new cds without special hardware.
  • That did sound arrogant, didn't it?

    I didn't mean it that way - I meant that the default score of 2 was enough, it didn't need to go higher.

    At least someone seemed to figure it out...

  • And this is relevent to the patent process how? :)
  • All the people who are saying that a watermark will be removed after MP3ing the file, or making an analog recording of the file obviously have no idea whatsoever about how the watermarking process works. Now, I'll confess I don't know a heap about the audio watermarking schemes, but I have spend a lot of time using watermarks in digital images. These watermarks (you can vary the "strength" of them when you add them) are amazingly robust. I was able to add a watermark to an image, that i couldn't see (it was like adding 3-4 noise in Photoshop) and print the image, as a halftone image on a 600dpi laser printer, scan the image back in on a desktop flatbed scanner and the watermark was still detectable. I was able to JPEG encode the original image, at a _very_ low quality setting, and the watermark was still there Do you not think that the SDMI collective haven't thought about perceptual encoding of audio files and are working around it? All these people who claim otherwise don't know what they are talking about -- kai
  • by Anonymous Coward on Sunday October 22, 2000 @11:49PM (#684351)
    These guys, by participating in this challenge, are helping the RIAA to restrict our ability to engage in fair use, period. In short, they are helping the process along to take away our freedom.

    Reading their tortured excuses in their FAQ (http://www.cs.princeton.edu/sip/sdmi/faq.html) regarding why it was ok to help the RIAA because of "scientific research" or the pursuit of knowlege or whatever-- TOTALLY misses the big picture. Fellas, if you're really interested in watermarking as a science, then have an open discussion about it. But the RIAA doesn't give a shit about research; their challenge is closed for a very practical reason-- to restrict access so that they control when and how our fairly purchased media is played.

    It's disheartening that these researches are ignoring the political and moral ramifications that underlies their research-- always a most dangerous practice of science. At best they are ill-informed-- their constant reference to "pirates" suggests they don't really understand the issues involved here.

    I am glad they pulled out of the challenge and that they don't think the RIAA can succeed in the long run, but in the short term the damage is done-- they've already made the RIAA aware of weaknesses in their system so at least for the moment, they are already a step of where they might be otherwise.

    Nice job guys.
  • Sure, the RIAA is going to be reluctant to back out of it, but after this incident , the electronics manufacturers, on whom the success of SDMI depends, might start to get fed up and being pulling out. They certainly will after the SDMI team goes back to the drawing board for a while, and people just crack it again.

    Of course, the RIAA will try to spin it and make it sound like they aren't really backing out, just postponing it, but the end result will be the same.

  • This is clever work
    Pirates should flood 'Net with song
    All stolen from you
  • by Xcott R13, 3(0,R4) ( 243034 ) on Monday October 23, 2000 @01:08AM (#684354)
    Hi,

    Very keen observations, all of them. The intended model for SDMI, presently, is that all music will have the same kind of watermarks for which all players will be screening. These will be used in a general infrastructure by which the marks will instruct players/recorders to not accept marked music under certain conditions, for instance if it is or has been compressed.

    Watermarking with secret keys to detect rather than directly prevent unauthorized distribution is technologically feasible. Using a secret key would make it more secure, and with no detector to use as an oracle one could not tell if their music is marked or not. There is still a serious problem with this technology however: if detection is automated, people could still perform tricks to misalign the music with a detector. Simply encrypting an MP3 and providing the key will scramble it beyond the ability of a webcrawler to find it.

  • by psergiu ( 67614 ) on Monday October 23, 2000 @01:08AM (#684355)
    This makes no difference
    As watermarked MP3s
    Will napster.


    --
  • by (void*) ( 113680 ) on Monday October 23, 2000 @01:11AM (#684356)
    Napster all you want
    Watermark will track you down
    says SDMI
  • If they did it with a "Vincent Price" overlay then you could extract the original soundtrack & the "Vincent Price" overlay as well.
    Sounds like you're getting two for the price of 1 if they did this.
  • by Sara Chan ( 138144 ) on Monday October 23, 2000 @01:18AM (#684358)
    Following are some quotes from the FAQs [princeton.edu] published by the researchers who broke the SDMI.

    "We believe their [SDMI's] general security model is inherently vulnerable to a number of attacks no matter how sophisticated their watermarking technologies become. We can never say for certain, but we are confident that we can continue to develop attacks like we have if SDMI updates their technologies."

    "The underlying problem that SDMI is trying to solve, that of protecting content from a hostile platform while allowing the platform to "play" the content, is inherent[ly] very difficult, both in theory and in practice. To overhaul their system, SDMI may well have to overhaul their business model."

    "We would be deeply impressed if SDMI or anyone else developed a secure system for piracy prevention given the requirements of music listeners."

    In other words, they believe that the whole idea behind SDMI is bound to fail technically.

  • by Anonymous Coward
    I'll try to keep it brief..

    No, we did not ignore the ethical or political issues involved. In fact, if anyone understands those issues it's an expert in the technology, not some angry anonymous B1FF.

    Being anonymous (A) doesn't negate what I said, and (B) the details of the technology aren't the issue-- the issue is are you helping RIAA or not and is what they're trying to do wrong or not?

    The very fact that you think "damage is done" shows that you don't understand the serious technological problems behind what SDMI is trying to do. Just how do you think SDMI is now a step ahead?

    Before they didn't know if their watermarking was flawed. Now they do. Your opinion that watermarking is inherently not going to work obviously differs with their opinion. They are a step ahead because they now know that their current methods won't cut it.

    No, we are not helping SDMI restrict fair use by making them (and everyone else) aware of weaknesses in the system.

    ...so that they can improve them. You've completely missed the point-- it's not about whether the technology is flawed (or difficult to circumvent) it's about whether the technology SHOULD be there in the first place.

    Keeping mum about ways to circumvent the system will hurt everyone, as a flawed SDMI in deployment hurts everyone a lot more than no SDMI at all.

    I think this is just where we disagree-- you want them to make an informed decision that they have a flawed (inherantly, you say) system so abandon the whole thing. I don't think this is likely to happen-- do you think the RIAA is rational? Worse, what if they can improve the system so that it's not so easily circumventable?

    Here's an ethical question for you: what about Diamond Multimedia? First they were sued by the recording industry over their MP3 players. Now if we let SDMI deploy a flawed system they're going to get screwed again, having to blow tons of money by putting these SDMI ASICs in their portable devices. That make them drain more battery power and otherwise suck. This is an okay scenario to you?

    I think it's better to fight the DMCA and its corresponding philosophy itself rather than be distracted by the technological impossibility of what its trying to accomplish. Technical realities are hardly something the RIAA or MPAA are concerned with when the legislation is concerned.

    When it comes to the presumed fact that they're going to fail with watermarking-- it doesn't matter. As long as it is illegal to even try to circumvent it we're screwed.

    Regarding Rio-- yes it would suck if Rio had to put in a useless watermarking chip, but I'd rather have one in there that's useless than one that's effective.

    And what about users? A circumventable system on your portable devices may not stop people with the right utilities from making copies, but it will forever get in the way and generally annoy the heck out of people. This is also okay for you? Acceptible losses, friendly fire, if it will help you teach SDMI a lesson?

    Yes. It was user-unfriendliness in the name of copy protection that's more or less killed numerous programs from DivX to copy-protected software. But that's another issue. If you believe that the RIAA's watermarking is inherently flawed, you can make that argument without giving them information that they can use to prove you wrong with a decent system.

    If SDMI is never going to work, the right thing to do is to keep it on the drawing board. Anything else will yield an awful end result.

    But

    #1) - it may work. I'm not an expert in the technology, and I have a hard time imagining their being able to do it, but they obviously have some experts who think they can.

    #2) - Even if it doesn't work in 100% of the cases, the RIAA may not even be looking for a perfect system. They may be satisfied with a system that's sufficiently challenging that they can easily enforce the DMCA against the managable # of "techies" who are able to reverse-engineer it.

    some angry anonymous B1FF
    (What's B1FF anyway?)

  • This system is designed to be used on propriatory hardware just like DVDs, with region encoding and other bells and whistles. The public accepted DVD players, why would they not accept similar restrictions in a music player if it does not hurt them too much?

    But every single person I know who own a DVD-player have had the region-coding removed. - I live in the Netherlands, where you have to wait 6 to 12 months for an American DVD to appear in our region... If they appear at all. ;-(

    So maybe people will accept the 'play-protection' , but they will circumvent it when necessary (that is, when they play want to play a song that can't play with a regular protected player. Simple as that.

  • Haiku has 5 sounds
    Followed then by 7 sounds
    And then again 5
  • The theory was that no one would want to copy it.
  • Freaking dynamic and a ZERO noise floor. Granted I paid $60.00 for the CD and it has 24Carat gold as the reflective layer instead of aluminum.

    If I rip a "zero" noise-floor CD to a gold-alloy hard disk platter, will it play better than a regular aluminum hard disk platter? ;-)
  • I've been thinking about this a bit ... and the SDMI is worthless, unless, every audio player observes it ... based on that thought, I've prepared two scenarios

    1. SDMI is already secretly built into all of our hardware, unlikely since they don't appear to have settled on a technology, but possible. It could be an older spec they had intended to replace.

    2. The RIAA must replace all audio devices with ones they've corrupted. They could probably make deals with slimy japanese owned corps. Their assholes get wet over this type of stuff. Smaller manufactureres would be harder ... Taiwan, china, etc ... they will make whatever progress they can with this, but they know its a losing battle. What could be successfull, is a new format ... like dvd audio which was delayed for some mysterious reason. They beef up the encryption, force the industry to play by their rules, and start phasing out cds ... it might take 10 years to phase out cds, but ... when they do, they'll be back on easy street!

  • If they're still working on their standard, then how can there be "SDMI compliant" devices SHIPPING NOW!?!?!

    Two words: firmware upgradeable. It has become standard practice for companies to put an EEPROM in almost every hardware device they build so they can "add innovative features". Unfortunately, the existence of a firmware system also means that the software engineers often turn lazy and code alpha-quality code into a final release product. Their excuse is that they can always build newer drivers later and the customers can flash the device.

    That is one of the reasons why I don't like firmware; it breeds a type of arrogance in the mentalities of software engineers.

  • Yes, yes, I didn't use Preview enough. Hit me with the steel ruler.

    code alpha-quality code

    Change this to either "code alpha-quality drivers" or "write alpha-quality code"; whichever one floats your boat.

  • One thing you forgot:
    a seasonal reference.
    (See Everything 2 [everything2.com])
  • Detectors could be built into your speakers or soundcard. Along with some kilos of explosives, the problem of piracy would simply end with a darwinistic solution.

    Kidding, of course! But I don't WANT a new soundca... stop, st.. STOP! NOOOOO!!

    "No more MP3s for you lad.."

    - Steeltoe
  • The article mentions that Xeroc PARC and Rice University (where I graduated from) were also participants in this effort. Not that I have anything against Princeton, but it's really not fair to give them all the credit.
  • by Bazzargh ( 39195 ) on Monday October 23, 2000 @12:02AM (#684371)
    If you submit a successful hack to the SDMI challenge, it becomes the intellectual property of the RIAA (this is a condition of the contest). If you don't submit your hack to them, but to a third party for verification, they can and will claim you have not passed their tests.
    The only people who would be sane to submit a hack are the companies who have submitted competing watermarking technologies. They have a vested interest in breaking their rivals work.
    I'd be interested in knowing if this research actually met that condition as most universities claim IPR on work by their grad students and employees.

    BTW it keeps coming up in this thread, but you cannot defeat many audio watermarks by overlaying a new watermark. The way the technology works is to add 'adjusted noise' to the track, and adding a second watermark will test positive for both. As you add more you degrade both the original watermark and the original sound, the premise being that by the time you screw the watermark up you have also screwed the music.

Life is a game. Money is how we keep score. -- Ted Turner

Working...