Why DRM Doesn’t Work

by Tim Lee on October 10, 2007 · View Comments

It’s a few weeks old, but be sure to check out Cory Doctorow’s excellent explanation for why copy protection can never work:

[Encryption] works brilliantly. You can download an email privacy program that uses standard, public encryption algorithms to scramble your email so that only its intended recipients can read them. You know that messages can only be read by the authorised sender and the authorised receiver because you are the only ones who know have the key.

It’s great for email, but it can never work for movies, TV shows or music, because in the case of “copy protection” the receiver is also the person that the system is meant to guard itself against.

Say I sell you an encrypted DVD: the encryption on the DVD is supposed to stop you (the DVD’s owner) from copying it. In order to do that, it tries to stop you from decrypting the DVD.

Except it has to let you decrypt the DVD some of the time. If you can’t decrypt the DVD, you can’t watch it. If you can’t watch it, you won’t buy it. So your DVD player is entrusted with the keys necessary to decrypt the DVD, and the film’s creator must trust that your DVD player is so well-designed that no one will ever be able to work out the key.

This is a fool’s errand. Because the DVD player has the key, it’s always possible that it can be extracted by academics, hardened hackers – or just kids who are in it for the glory.

Doctorow makes an analogy to the speed of light, but I think a better analogy is that DRM systems are to computer science what perpetual motion machines are to physics. Anyone who says he’s got an unbreakable DRM scheme is either clueless or lying. Yet DRM snake-oil salesmen, like the charlatans who periodically claim to have invented a perpetual motion machine (or infinite compression algorithms), are perpetually coming up with clever new ways to obfuscate the fundamental impossibility of what they’re trying to accomplish. If you make a system complicated enough, it can be difficult to explain its flaws in laymen’s terms. But that doesn’t mean it doesn’t have them, or that they aren’t fatal.

View Comments Posted in: DMCA, DRM & Piracy

  • Once again, it's not the technology that needs to change, it's the business model. The more that the message gets out, the better we all are in the end.
  • The New York Times, gasp, actually has an article (File-Sharing Students Fight Copyright Constraints) highlighting that political activism may be taking root.

    The article also quotes Doctorow "Cory Doctorow, co-editor of the popular technology blog Boing Boing, said the recording industry lawsuits were not “scaring students away from file-sharing, but scaring them into political consciousness.”"

    If you want make your products available to everyone, the use of encryption and DRM technologies is an oxymoron since these technologies are designed to minimize access to information as the post explains.
blog comments powered by Disqus

Previous post:

Next post: