Web inventor Sir Tim sizes up handcuffs for his creation – and world has 2 weeks to appeal

Anti-piracy DRM gets the green light, for now


Sir Tim Berners-Lee, inventor of the world wide web, director of the web standards trendsetter W3C, and Knight Commander, Order of the British Empire, has given his blessing to anti-piracy locks on web content.

Traditionally, web technology has been open. HTML markup, CSS, and JavaScript code can be viewed (though not necessarily easily understood, thanks to minification), remixed, and reused. The web's openness allowed it to flourish.

But those selling costly content – software and media companies – prefer open wallets to anything goes. So they have employed copy deterrence schemes based on proprietary technologies like Adobe Flash and Wildvine to make high-value content viewable but not easily copyable in web browsers. However, this approach leaves much to be desired in terms of user experience and ongoing compatibility.

The Encrypted Media Extensions API – supported by companies like Apple, Google, Microsoft and Netflix and opposed by the free software community, academic researchers, and foes of anti-piracy mechanisms – provides a standards-based mechanism to display DRM-protected content in compliant web browsers.

The W3C is not mandating DRM in all cases; rather its EME API provides support for content providers who choose to implement DRM through proprietary content decryption modules (CDMs).

Speaking on behalf of Berners-Lee in a note posted to the W3C mailing list, project management lead Philippe Le Hégaret said, "After consideration of the issues, the Director reached a decision that the EME specification should move to W3C Recommendation."

First proposed in 2012, EMEs continue to elicit voluble opposition among those who believe web technology should steer clear of DRM entirely.

"We're mourning the Web today, as the W3C sells everyone out," lamented John Sullivan, executive director of the Free Software Foundation, in a blog post on Friday.

Slammed

In February, writing for the Electronic Frontier Foundation, author and activist Cory Doctorow called EMEs "indefensible."

That same month, Berners-Lee defended his support for the technology, arguing that it's better to have a seat at the table than to ignore the concerns of software and content companies and force them to implement their own DRM schemes.

"If W3C did not recommend EME, then the browser vendors would just make it outside W3C," he wrote. "...It is better for users for the DRM to be done through EME than other ways."

That's a point EME's foes do not concede. Yet, among those who view DRM as anathema, there's no obvious compromise that might placate studio executives focused only on investment returns.

Staking out a more pragmatic position, the Electronic Frontier Foundation last year proposed a way to mitigate the risk that EMEs pose to computer security researchers – legal threats based on the DMCA's anti-circumvention provision. The cyber rights advocacy group asked the W3C to back a DRM covenant, similar to the W3C's patent non-aggression policy, as a means to prevent EMEs from chilling security research.

The W3C, unable to reach agreement on how vulnerability disclosure should be handled, responded with something less than that, offering only voluntary guidelines instead a requirement.

EMEs will be published as a W3C Recommendation unless at least five per cent of the 475 members of the W3C Advisory Committee – composed of companies, non-profits, and educational organizations – support an appeal within 14 days. If an appeal it considered, members will have the opportunity to vote on whether to accept or reject the technology. ®

Broader topics


Other stories you might like

  • FTC signals crackdown on ed-tech harvesting kid's data
    Trade watchdog, and President, reminds that COPPA can ban ya

    The US Federal Trade Commission on Thursday said it intends to take action against educational technology companies that unlawfully collect data from children using online educational services.

    In a policy statement, the agency said, "Children should not have to needlessly hand over their data and forfeit their privacy in order to do their schoolwork or participate in remote learning, especially given the wide and increasing adoption of ed tech tools."

    The agency says it will scrutinize educational service providers to ensure that they are meeting their legal obligations under COPPA, the Children's Online Privacy Protection Act.

    Continue reading
  • Mysterious firm seeks to buy majority stake in Arm China
    Chinese joint venture's ousted CEO tries to hang on - who will get control?

    The saga surrounding Arm's joint venture in China just took another intriguing turn: a mysterious firm named Lotcap Group claims it has signed a letter of intent to buy a 51 percent stake in Arm China from existing investors in the country.

    In a Chinese-language press release posted Wednesday, Lotcap said it has formed a subsidiary, Lotcap Fund, to buy a majority stake in the joint venture. However, reporting by one newspaper suggested that the investment firm still needs the approval of one significant investor to gain 51 percent control of Arm China.

    The development comes a couple of weeks after Arm China said that its former CEO, Allen Wu, was refusing once again to step down from his position, despite the company's board voting in late April to replace Wu with two co-chief executives. SoftBank Group, which owns 49 percent of the Chinese venture, has been trying to unentangle Arm China from Wu as the Japanese tech investment giant plans for an initial public offering of the British parent company.

    Continue reading
  • SmartNICs power the cloud, are enterprise datacenters next?
    High pricing, lack of software make smartNICs a tough sell, despite offload potential

    SmartNICs have the potential to accelerate enterprise workloads, but don't expect to see them bring hyperscale-class efficiency to most datacenters anytime soon, ZK Research's Zeus Kerravala told The Register.

    SmartNICs are widely deployed in cloud and hyperscale datacenters as a means to offload input/output (I/O) intensive network, security, and storage operations from the CPU, freeing it up to run revenue generating tenant workloads. Some more advanced chips even offload the hypervisor to further separate the infrastructure management layer from the rest of the server.

    Despite relative success in the cloud and a flurry of innovation from the still-limited vendor SmartNIC ecosystem, including Mellanox (Nvidia), Intel, Marvell, and Xilinx (AMD), Kerravala argues that the use cases for enterprise datacenters are unlikely to resemble those of the major hyperscalers, at least in the near term.

    Continue reading

Biting the hand that feeds IT © 1998–2022