Fighting DRM in HTML, again
In 2013, the World Wide Web Consortium (W3C) raised the ire of many in the free-software community (and elsewhere) by adopting an API that adds support for DRM modules within web content. Now, the working group that produced the API in question has come up for renewal, and a number of high-profile parties—including the Electronic Frontier Foundation (EFF) and Free Software Foundation (FSF)—are using the occasion to push back against the DRM camp, in hopes of regaining some of what was lost.
To recap, the W3C accepted the Encrypted Media Extensions (EME) framework as a W3C "Working Draft" specification in 2013. EME added hooks to the HTML <audio> and <video> elements designed to pass control to a Content Decryption Module (CDM) that would then enable or disable playback based on some authentication system chosen by the site owner. Although the specification included a simple, plain-text key system as the only mandatory authentication scheme, the intent was widely recognized: online media vendors like Netflix would implement DRM authentication schemes via proprietary, binary CDMs that users would have to install as some form of browser plugin (albeit with limited functionality).
Strictly speaking, the "Working Draft" status of EME is not the final step in the W3C standards-publication process. But it is part of that process, and critics loudly objected to the W3C taking any part in drafting a specification the purpose of which is to restrict access to content.
Nonaggression
The EME specification is being drafted by the HTML Media Extensions Working Group, and the group's original charter expires on March 31, 2016. When the group came up for official rechartering (a step that will be required to move EME further through the standardization process), the EFF took that event as an opportunity to push back again at EME. In January, it proposed tying the recharter to a DRM "nonaggression covenant."
Akin to the W3C's existing patent policy, the
DRM covenant is meant to put a halt to several of the nastier effects
of DRM, such as copyright holders' ability under the Digital
Millennium Copyright Act (DMCA) to sue anyone who discusses
circumvention methods. Since publishing security vulnerabilities can
be regarded as "discussing circumvention methods," the EFF notes, this
DMCA provision has a strong chilling effect on work that has no
illegal purpose. The EFF's proposed covenant describes this problem as
" The proposed covenant requires that all participants in the W3C DRM
specification process agree not to sue anyone who makes software that
complies with the specification or who reports bugs in a
specification-compliant implementation. That would free implementers
and security researchers from the threat of DMCA lawsuits for
otherwise legal work.
In the lead-up to the W3C's March 20 meeting in Cambridge,
Massachusetts, several other organizations registered their support
for the EFF proposal or, more generally, their opposition to EME. The
Open Source Initiative (OSI) published a position statement
supporting the proposed nonaggression covenant, saying:
The FSF, on the other hand, organized protests objecting
fundamentally to the
inclusion of DRM itself in web standards; first starting
a "selfie campaign" in which supporters sent photos of themselves
holding anti-DRM signs or messages, then planning an in-person picket
line outside the W3C meeting. The FSF also pointed interested
parties to its online
petition, started in 2013, and currently signed by 26
organizations and more than 33,000 individuals.
In the end, protesters gathered not just outside the W3C meeting,
but at several other W3C offices around the globe. The gatherings were
picked up by several tech-news outlets.
The various public positions and protests certainly did not go
unnoticed by the W3C. On March 11, it published an "invitation
to the free-software community for real dialog" on its blog, inviting members
of the free-software community to contact W3C staff directly to
discuss concerns about DRM, rather than " The tone of the post might be considered dismissive by some, as it equates
participating in protests with " On March 20, the W3C also published an EME fact
sheet page, which it says " The position put forward in the EME fact sheet is essentially the
same one offered by the W3C in 2013; it is not likely to change any
minds. To an extent, the pro- and anti-EME sides are arguing past each other (publicly) over the nuances of
wording. Paraphrasing for the sake of brevity, the W3C claims that
protesters are objecting to "DRM in HTML" but contends that EME is
not DRM. Opponents of EME, in turn, would reply that such a
description is merely a technicality, since EME is designed to deliver
DRM. Unfortunately, as long as the debate remains fixated on such
linguistic puzzles, there is not likely to be any significant movement on
either side, and the camps may well continue to talk past each other.
Ideally, that impasse is what makes the EFF's nonaggression covenant a
potentially useful play: it makes an incremental and beneficial
change, rather than attempting to take a direct run at the logjam. At present, the outcome of the W3C meeting's consideration of the
DRM nonaggression covenant remains unknown. How that proposal was
received is the unanswered question; so far neither the EFF nor any
W3C representatives have commented.
EME was a contentious issue even within the ranks of the W3C in 2013,
and it continues to be so today as well. W3C employee Harry Halpin
moderated a DRM panel discussion at LibrePlanet 2016; afterward he announced
that he would resign if the W3C approves EME as a Recommendation, the
final status for W3C standards. However this week's discussions turn
out, it seems likely that there will be many more battles yet to come.paracopyright
", noting that the expansive effect it has in
stopping speech and development that is not copyright infringement is
a separate issue from whether the W3C should endorse DRM in the first
place. Adopting the covenant would be moving to middle ground.
Protestations
W3C responses
just snapping a selfie next to a W3C sign.
"
let[ting] someone else make you
try to shoehorn yourself into any narrative they want to construct
about fearless activists doing battle against some faceless uncaring
entity.
" Nevertheless, the W3C did agree
to consider the EFF's nonaggression-covenant proposal during the
March meeting.
clarifies definitions and current
activities
" and "corrects misconceptions
" about
EME. The page notes that the W3C welcomes participation from all
stakeholders, regardless of interest or industry, and highlights the
initial EME proposal's ability to automatically handle the
plugin-management tasks that users had previously needed to perform by
hand. Ultimately, it said, the web should be "universal
"
so that it can "contain anything
", and EME supports that
goal by remaining neutral about DRM and supporting CDMs
generically—a far better approach for the health of the web than
the alternative: external software like Flash and Silverlight.
Up next
Posted Mar 24, 2016 1:03 UTC (Thu)
by jdulaney (subscriber, #83672)
[Link]
Posted Mar 24, 2016 2:30 UTC (Thu)
by bcs (guest, #27943)
[Link]
The W3C has already lost staff over this issue. I worked on the W3C systems team for two years. I expect to be working in free software for a long time to come, and I thought increased involvement in EME would hurt my career. I left, and told my reasons to multiple supervisors. The W3C staff are far and away some of the nicest coworkers I've ever had. They're always happy to see me, even a couple of years out. I know they want to do what's right, and I understand the pressures they're working under. It's unfortunate that they apparently continue to think of EME as the "compromise" solution, after so many have explained that it's not.
Posted Mar 24, 2016 3:26 UTC (Thu)
by jtc (guest, #6246)
[Link] (5 responses)
If taken literally, it seems to me, enforcing the ability to "sue anyone who discusses circumvention methods" violates the 1st amendment of the US constitution. Am I missing something?
Posted Mar 24, 2016 8:58 UTC (Thu)
by Karellen (subscriber, #67644)
[Link]
Posted Mar 24, 2016 10:01 UTC (Thu)
by dper (guest, #107851)
[Link] (3 responses)
Posted Mar 24, 2016 17:17 UTC (Thu)
by lxoliva (guest, #40702)
[Link] (1 responses)
Although copyright might indeed stop you from communicating certain ideas in certain ways, which could be argued as contrary to the First Amendment, nothing whatsoever in patent law stops anyone from communicating ideas, even patented ones.
Posted Mar 25, 2016 15:09 UTC (Fri)
by zlynx (guest, #2285)
[Link]
Posted Mar 25, 2016 10:00 UTC (Fri)
by Karellen (subscriber, #67644)
[Link]
It's a nice thought experiment. The courts probably wouldn't see it that way, but I'd like to see someone try to use it anyway.
Posted Mar 24, 2016 14:37 UTC (Thu)
by DOT (subscriber, #58786)
[Link]
Posted Mar 24, 2016 16:03 UTC (Thu)
by flussence (guest, #85566)
[Link]
DRM is by far the most polite euphemism we have for these attempts to make uses of certain types of mathematics illegal on a computer. They should be *embracing* the term if they know what's good for them.
Posted Mar 24, 2016 17:47 UTC (Thu)
by jhoblitt (subscriber, #77733)
[Link] (2 responses)
Posted Mar 24, 2016 21:49 UTC (Thu)
by MattJD (subscriber, #91390)
[Link] (1 responses)
Posted Mar 26, 2016 14:52 UTC (Sat)
by Anssi (subscriber, #52242)
[Link]
Posted Mar 29, 2016 13:11 UTC (Tue)
by ibukanov (subscriber, #3942)
[Link] (5 responses)
Besides, loosing DRM battle could be even good long-term since it gives illusion to copyright holders that they can control distribution through it. That prevents development of really effective technical measures like watermarking that can harm privacy even stronger allowing to track the origin of each and every copy.
Posted Mar 31, 2016 3:37 UTC (Thu)
by liam (guest, #84133)
[Link] (4 responses)
Posted Mar 31, 2016 5:35 UTC (Thu)
by ssokolow (guest, #94568)
[Link] (3 responses)
Posted Mar 31, 2016 7:18 UTC (Thu)
by liam (guest, #84133)
[Link] (2 responses)
Posted Mar 31, 2016 7:24 UTC (Thu)
by ibukanov (subscriber, #3942)
[Link] (1 responses)
Posted Mar 31, 2016 7:50 UTC (Thu)
by liam (guest, #84133)
[Link]
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
You are missing something. :-) All of copyright and patent law are contrary to the First Amendment. The basic idea behind copyright is from the Copyright Clause in the Constitution.
Fighting DRM in HTML, again
"To promote the Progress of Science and useful Arts, by securing for limited Times to Authors and Inventors the exclusive Right to their respective Writings and Discoveries."
We may disagree as to whether this type of censorship is good, but that is another question. So, no, there probably is no First Amendment problem.
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
Fighting DRM in HTML, again
What I was attempting to say was that I don't know why including DRM now would prevent the addition of other anti-piracy measures (like watermarking) later.
Fighting DRM in HTML, again
Fighting DRM in HTML, again
It's as though the military, or Pentagon, or whoever, would stop developing new weapons because, suppose, theirs are the best (unless, of course, their best is some global maximum)
I think these companies realize that anti-piracy efforts are an ongoing expense, and they certainly seem prepared to continue to contributing to that money.sink