Digital Rights Management

From P2P Foundation
Revision as of 10:39, 11 January 2008 by Mbauwens (talk | contribs)
Jump to navigation Jump to search

Definition

DRM system: A system of Information Technology components and services which strives to distribute and control content and its rights. This operates in an environment driven by law, policies and business models. (http://camorra.org/swann/2007/07/11/daniels-drm-dilemma/)


Citation

"The bottom line of digital rights management is the idea that you do not actually own a book, an audio or video file, or even the disk it is printed upon; rather you have actually licensed it from its copyright holder. That license is very limited in scope."

- Rita Lewis [1]


Description

From the Wikipedia article [2]

"Digital rights management (DRM) is the umbrella term referring to any of several technologies used to enforce pre-defined policies controlling access to software, music, movies, or other digital data. In more technical terms, DRM handles the description, layering, analysis, valuation, trading and monitoring of the rights held over a digital work. In the widest possible sense, the term refers to any such management.

The term is often confused with copy protection and technical protection measures (TPM). These two terms refer to technologies that control and/or restrict the use and access of digital media content on electronic devices with such technologies installed. There are technical measures that could be used not to restrict use or access, such as to monitor use in order to record rights of a content consumer, DRM critics argue that the phrase "digital rights management" is a misnomer and the term digital restrictions management is a more accurate characterization of the functionality of DRM systems. Some digital media content publishers claim DRM technologies are necessary to prevent revenue loss due to illegal duplication of their copyrighted works. However, others argue that transferring control of the use of media from consumers to a consolidated media industry will lead to loss of existing user rights and stifle innovation in software and cultural productions."


Discussion

DRM cannot create new economic value

"It's the non-scarce products, the recipes and the ideas, that helps expand the value of limited resources, the ingredients. You expand value by creating new non-scarce goods that make scarce goods more valuable -- and you can keep on doing so, indefinitely. Successful new business models are about creating those non-scarce goods and helping them increase value. Any new business model must be based around increasing the overall pie. It's about recognizing that creating value isn't about shifting around pieces of a limited economic pie -- but making the overall pie bigger.

DRM is fundamentally opposed to this concept. It is not increasing value for the consumer in any way, but about limiting it. It takes the non-scarce goods, the very thing that helps increase value, and constrains them. Those non-scarce goods are what increase the pie and open up new opportunities for those who know where to capture the monetary rewards of that value (within other limited resources). DRM, on the other hand, holds back that value and prevents it from being realized. It shrinks the pie -- and no successful business models come out of providing less value and shrinking the overall pie. Fundamentally, DRM cannot create a successful new business model. It can only contain one." (http://www.techdirt.com/articles/20070301/005837.shtml)


What to think of open DRM

Henrik Ingo:

"think the following short rule of thumb is a good start: For various "ethics related" reasons one may be opposed to all DRM on principle. On the other hand, if someone is going to use DRM, it is clearly better that they'd use an open standard - then at least there is a chance that the DRM is not a reason to make the content locked into a proprietary one-vendor/one-platform solution. (Richard Stallman would disagree with this opinion, saying that DRM is always a form of oppression and producing a good system of oppression is actually worse than a bad system.)


In practice even open standards DRM will always have to rely on something being kept secret from the end user / consumer and therefore the opennes is of questionable value to the end user, who's role is restricted to being just a consumer.

Typically an open source content player is not a possibility, or at least some library file providing the particular decryption functions would have to be closed source. This because even if the DRM system would be based on an open standard, at least some cryptographic keys have to be hidden from the user. Other alternatives are to hide the decryption component in some hardware, like a smartcard or the infamous TPM chip on a motherboard. Even so, something is restricted from the end user, this is just another place to hide it. In addition to hiding the decryption function, a proper DRM also wants to protect the path from decryption to output device (so that you couldn't copy the content anywhere within that path). This is why DVDs will play with lower resolution on Windows Vista unless you have a new monitor that will give the proper responses in this game.

From this discussion it is possible to argue that by traditional cryptographical standards "good" DRM is actually an impossible problem to solve. While good cryptography always relies on the protocol being public and only a key being secret, the problem DRM tries to solve necessarily leads to solutions that by cryptographical standards would be considered ugly hacks. Hardware based solutions are slightly better in this regard, since extracting the secret from a hardware chip really would be practically impossible. Nevertheless from a cryptographical point of view DRM is like eating the cake (user must be given the key to be able to view content) and trying to keep it too (user cannot know he has the key or where it is, lest he uses it for inappropriate purposes).

So in practice an open DRM system will always be like "doing the wrong thing the right way". (p2presearch mailing list)

More Information

  1. DRM Watch [3] monitors developments in the field.
  2. Read Cory Doctorow on why DRM's are bad
  3. Very good overview article, with some pessimistic assessments and updated until the launch of VISTA, at http://polishlinux.org/gnu/drm-vista-and-your-rights/
  4. The Electronic Frontier Foundation maintains a list of DRM Free Music: emusic, Audio Lunchbox, Bleep, Live Downloads, Magnatune, Garageband, Archive.org/Audio, Calabash Music, MP3Tunes

Related entries

  1. See our entries on DRM Interoperability and Trusted Computing
  2. Open DRM
  3. Rights Management Information
Retrieved from "https://wiki.p2pfoundation.net/index.php?title=Digital_Rights_Management&oldid=18025"