Linux & Open Source - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Linux & Open Source


Sonys Rootkit DRM Raises Legal Red Flags



 By: Steven Vaughan-Nichols
2005-12-01
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Linux & Open Source story.


  Table of Contents:
  1. Sonys Rootkit DRM Raises Legal Red Flags
  2. ' Sonys EULA May Be '

Rate This Article:
Poor Best
Sonys Rootkit DRM Raises Legal Red Flags
( Page 1 of 2 )

News Analysis: Possibly violating copyright laws, the GPL and even the U.S. Constitution, Sony BMG's digital rights management blunder may lead the company into serious legal trouble.Sony BMG Music Entertainments XCP digital rights management technology may have gotten the company into trouble in several ways.

First, XCP technology manipulates the Windows kernel to make its code almost undetectable on Windows systems.

This, in turn, makes it difficult to remove and makes it an ideal launch vehicle for malicious rootkit programs.

Click here to read more about how Sonys controversial DRM technology operates.

Next, as was expected, a rootkit Trojan—Backdoor.IRC.Snyd.A aka Backdoor.Ryknos—appeared.

Resource Library:
Soon thereafter it was discovered that XCP may also violate the LGPL open-source license.

"The allegation that Sony has incorporated open-source software into its purportedly proprietary software in a manner inconsistent with the Open Source General Public License, if established, would create a nice irony," said Simon J. Frankel, an IP (intellectual property) attorney and partner with Howard Rice Nemerovski Canady Falk & Rabkin LLP in San Francisco.

"The entire purpose of open-source software is to make broadly useful software available for all to build on. For Sony to take such software and incorporate it into software that it claims as proprietary would be contrary to the entire spirit of open source," Frankel said.

"The improper use of GPL software by Sony could be the basis of a claim for violation of the GPL, which could prevent Sony from utilizing the rootkit program to the extent that it includes GPL software and, if a proper party were definable, could even subject Sony to damages claims under the license and copyright principles," said Michael R. Graham, IP attorney and partner with Marshall, Gerstein & Borun LLP, a Chicago-based law firm specializing in IP.

Not long after that, the lawsuits bagan. The first suit came from the EFF (Electronic Freedom Foundation), but it was soon followed by a suit from the state of Texas.

"On a very basic level of product liability law, if Sony is distributing a product that causes damage to consumers, then it may well be held liable," Frankel said.

"There also appears to be a particular Texas statute that may make Sony liable for distributing spyware to consumers computers. This potential legal liability only piles on to the tremendous public relations snafu caused by Sonys media player," Frankel added.

These suits may be only the beginning of Sonys troubles.

"Sonys surreptitious inclusion of this code into its CDs in an effort to prevent digital pirating of its software was ill-considered, and just another instance of the music industry grasping for digital locks for its recordings," Graham said.

He added, "But what could lose Sony its friends in the media business is that this type of introduction may also spur Congress to adopt anti-spyware, anti-Trojan horse legislation."

"The entertainment industry would be forced to seek an exception to such legislation—based on a use of reasonable steps to prevent piracy—or develop non-spyware software and technology that would limit the reproduction of CDs without compromising individuals systems," Graham said.

Next Page: Sonys EULA may be asking for trouble.





  Reader Comments: Sonys Rootkit DRM Raises Legal Red Flags
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Linux & Open Source Articles          >>> More By Steven Vaughan-Nichols
 


x}ks㶲qUS$5ҔlcؖgDHbL<$e[?_n߸҃H|O-ݍFxGggDmM71IIvj}]zg{/K${_@zFUevu3J iz6HwGfcR˧nay^({j K&OzޘY٘jc7(`p,{5h{=D@~Ս;s3"&woX}5{0p)О~[7?=Wj>(U0> ?05p;XR|/`*.םnG.;[Ac'H |/koD'QT"*rPƉȃ¤t8jjw{ RM7JzaߨPAW|AArֆqjaE4b‰EU$vw"?ZZu"uuX6&Z@e$|zb!=C7'7ϗ7˓MvIsERb\B렸BәeIqjʿ p6Oy$>]-7+De,,ɺ 35-wwmk8m5{['{չvEm~lNjD #XLoZ`s\ÒcR>TGãUJPXr*߂* rMt[ԒALòÄNGs<|Ӿ `M6uj>1eRGs4DAC6R^,zK 47P}HG:aI$+p<{k.z9ԙ 鋥*tAoL3PGA :z]TRmltPhQP\so@[S街%Yѽ:?`'0/ ZMy@eV~m̢P׵m G!{0s;0aǀT )`He˕F }"@F.H6'>I#r*Bl`@n&9 P,  b\ .:ҦBICzn }T[h+\KLAfkf(2{~6"[9!yU#BU`]ᛦLMam`DݘA,Z>P§[Z14` 3 {[Wޣa [0X؂:>9@?f!q SQ: ?v{ f>ס!n~tm9V3,+X5g?qyaY@ {9hwtݲyBS NHh|B]X PM{lz:9iP=G>jk8[riۂfؓi]ȃ =5p ؇傥&I);iX+TЛv!S9n! pW.Y 2exRUfyPt̜*YY2\n6Ry`OE܏a5=%Q7<ĞRԽǠ=݂ZSMs\/[֕[%3˺ڏbumB$lJ}oiZZ @-eI L-ًVX4ujQWt0:T dmҁbZ(J..1^/aܵ(&Nw߶}j`bE gӛ@4-ְj)+8X3ld xAFFKg  elp {u`C6 u\'7gkmlr f.OףZXE880UM2 akTժ;L,kaqA}Oƍ/Љm%k;w:poms>u ZΗ6#]6޹1"Al"=a$'jL?pd/R3:t5gұj 1ՅE 4䧢\R ~G[d"vd6˰Am٦iߧ#Ob+fIti%raX3P`P[Sc@L$T2`G;rSM eaalˣuNaQǰ57dh{>70UTKw=:>ؤ4Q} (Mքi&.=É<4y[#F6n 2H#&0/`k .^@>k%@P-Wб"BaKGÖW۔Єr[и|YUKZQT*AXg7r#SFOPxh/Op}\rpM}C7? _>k냪̦[PM93OS˰ #*# 4c?`2$VG ã2R*1|}3]((*H3kntZ/YQן,c18D" Ψ'7yx[c(a)X81'˦-bhsֹi>OZ!ӁP~͹6u4s=X\(``#>> ?b*аW؇b_@UrP-9kyA܇1"EPxa5T'Lw*O1>[I(TXg7cM]6Ugzn&b)j'ڝ-WzhXr噓>7/3ϼdӛi9u2D8ZA1-;E9Ȳ5(_c1BnuqtLcll9@_33P9ʅC?pFz.{ 3PXfS~p1\AXn#<>҆3G>~U䶥7~ZiЁbN@w(<0}T3{J>6 iAˉ@B7Xl{"+۝6b,?s$2,31㪧RRU@QUAҰg /3O}1\M0:4p6Jю"eƴɢ7(&CiB/-1tm\bbvq뿌2KGɭPSV<Z6J\)ok~n^Trm3HU5&CUX)TԒ?YXI!Oi-yB[֢-3R8-ܝ`$@N|K!Oݼ ŜerI8MQ {'K,%.@^z82Z6ŭQh;o^Acf̜ÖfGs4 n▨I$G 5e V*Mu/T Z}ԡ}2fgcі$}7r\FI7sI\\׺hzCp|oT~7g5ć)uqf\ R}#00tƈ{ OZ'C2ɢ\' xWeR8^Q3AH j ;!q]6xya.4<~reob[ hr1=kZeapvO+ʬ7A88'ًO,!_U{[ $8q{%QUmhjagq6~]It};;$<;>\E!aw=;Wn\V9k?8{<ԸWZ`>*/OZRםO'R&Ӹo3(=H3 r!CcI16`x˩]=+bo''ˏ5FN{區 uz΅sѼؾ_>wU9o_x#xΕdFHIm6<İ6MGk4:× [^q@5)-s}ҺĂ Ӝq*D|=x_8πa5(hNة;+*O- V`!wPRwa&`$؏*XU2ݽ:o~ d'eN'" m D78S*PW"EH%qA%NZǝ&' &9hDmnb~<B<Mp<"mY{p3[يqkg9'$Ee"S`݅{_[s=F nX)o ?%(Eɦ:[@7db:BJ T=‹z=O?{0 cdA(c>x$-zdenC͔>p,5RLȔ&C8 z>SB&Tk'qZV㼞6X(3 Qˣf|ʊ5R!J9YUrsҀشƧ{6g^%틏[Hȃ ̑mI+4$/AiA0`!,G7Blb'K`UKuVn4:-N`. z+vtϯ_w\O0o$;E42T`iX'3ؾ3]ahbrх[dnߢZv$3m]ڜٵDm8!hX,4giS@ ?\gN ޙ6mi ^]rj3ל{Jn 2u{Nr,H.D3(Qa?C.;=<ﵮIK 09jJs $j4{9wfv{.HeFh>IАcͷݜ89! [vv+ר+=l 5fV8_KٟRvo'ٻ|Z8w[q*A=sC<,,G'c: I"INU|-U3$]ve%^F& vZpA2M3}ݺJfXҼ4iќAhf 9;]mxK]{ӇԽ.3W"^ogY ~ ]ݧPHݧwx]b,-\*s\v㚨p;XE9(y^Y(Z䐼DqD7Y"Y!0Nùؤ]Gsk{LcDxj Yj8&K-x<݌;a#ϐyok `Ͱ3>Dƙ x <v4.;߮(<A~A< v4*);3x̛z}6if3⻆̆~@F'ziOXw+O2?Wc#ޚU2$;jߔş1g*o(#7%we\­7/o,) \w?Pg=n7 xS/3[[E+JbԳ͟^o-0FDDT&ӱf3@4]ɟPv.Hݙ{G҉aP*9+vYV!EIPKjjDT6*.J7`ѩa4h8vOj[#WC!jJY))Mc9 q,]su␐3+ꢿ2}lO^9~_EelviEUIaSMGk{J֘3 k'6 Nk&iNk l:?QULfx͚/5eЇ \(zm<7SILEC+NeV@2fk;1sG6zf܎ވ\;Nl<Nl(eNǮ&K!_3O{ 7(‰gNn N_BAWAgU ]K={H Hk"HޖZ^) H8Nyi`I첎0Cz}(=4HO~hNq\XPe|#x`BϞqb3K*M/QNm}!0&[n":5FI> v_oaMiY_1/jC:}1.;˗B?mͦ`1Koz:nυ&.n~߬߬߬߬o \xkVѡa. W|7>Jm1ǟK,3,]TZ}Hz$HWN/j 5)g[C{O$]؞wv pG(H6ObE⣵tk  (|A pNcol[6.>nW7) LN왩K(7k EUd/Ÿf@F7C#/ E?%a<}wlԔ5Jgn [HX4 '!'}2uʽInNG[Aݖxn_-V8d05jN}S 暊̵9U"am6`ijdkЮ4-ԕ(i:KX4U{[$uظZT#Uvi[; ]ދ>l|~/%r^R2YA%1tφ9N<ٔȱ4Pfd<<_ϬJD Y6A0A-N 0d84.M+3{5l0I#Rۀ c l (0U=|jȊΧƑ\:R(\Wȧϧ#6=ĸV} >ߓLZTce։5V(dj$S VSƚy< Li{$R (&.'h. ~vγYbن@V߄ռʿH #j ȓyP0 B2ğRM x-r= D׻w OQ4hHcOcl1P&|sS g|usx{QypFʼnݳ9HAD+`ڀA*ZWQ-_Rt(/ԍ9V@1gcPEQJBt{آAƇ+'׻AS@amIjD),c;T0T4O3`n2k(y+_9!0(v7NԱ]_w;+(TXTs-n." B#&P?|UoyN ]BHv_ðxPVAwaˑmO`NEƀqL'oO.qIbyX<$N}Y s(TiRW㻝"|;|牨s^zO(+axcsWF%1{H J@ 4WAX^Qk3"W#uT]Q2X5[aZP ;_gBx@ ,%>n"w9OB`<ĒNӈa2n8?XJ\z0hsq̉Tl/VhU@kcΩr\y(.HQ,:)Ȣ~y=^^@rçn "rTI{ K!ԘVpU) &x ~Űtl 6t~^SLx!Vy ?m =߶MvX5z,u3^I<ޅWczҝj'=ylj5Tբ jK`\݇tkc<(Ur'y}aJLѨOu(ζy1K|P-'F\sNVa *0G=3aZ<<}Q,mR!B$'B.E|<œo?|4ۍkpPH1,^Dž=o{ޞKj6$|XO3+HN~َT톫D56nOt 6@Ppm+|9~ȋ:hkvٕ\d3-nіTmmyV]f!ALO`srYehxȰV4 C_݈sa\oadhd㍨=)ָPa\Tu5rGh%oqSWgLz۟c DU<11t#PLjNTLO0Y\C3 twW(P~W^-v 5 ]i_88?AnIaz&a|DǠk c nrt`wǃ݂_ G_ 6fVzZQ!G)|у}po 'Cd2zވx8aBwZ `Oi$yLK1@]q EC `rJ>(F>'yk]w {gnP^H_^}ڎiz9ad 0y=ckD'l مeE.d7񲀀wC9¶sv '6V<4y7pa%]߇pБ`"'r)?뭛/ʁR@7FDu2?X2*%"6c@5 xE ߍ].nrjĘ[VaNr:z>jE!2Dr^°挭1iq}r6m5=}ӾblUo݀%P`qT83nj\Js<+D:Ab) (bEd7@4G4(B6DucKJDi$zs >473=)'6h`X# .E.[qS<ѩxdj(,9ۡntxˁQ(b:M 4ۇӟybSS¤vpaX->>'1.y@cq X^iN4xPXr ?4Z~;cɈO`>dBc JU( %P _3ʰXUKkʟ(> ;ee$ =ɕ@ZAϐ}*w7>4P =b3bqM4?ǀ ͫ/sM"OGUݹ$G ވ¶V-r5uuNw/[W^qjal\[dl( ˙Ž, rzټh1=eFq*ڃI1B"r84x)y^/*M!0k(E_VC aW~Saa^r)o\|:RNA|vuQpޣ\M-}g*5]V068Snu#VԼV(<rծq2?0_4ߋ^~.RsHE }^}^'e/?C3?K#%/Ra~/S2.a.S": _:) *>UJk))R >ק a|S97{B7MJ7@7)_$)ef 5pvJEs_4RTyV[ӔOgeSvڍN a{r!gˀn _ ksWKM0TtӶyfkǨJt24xԾW( V`ʼ7ș(_Ĭ]}fNJ 40k 7"]YBYA{}ntE q>0𞫫qLvw%,o,hcENj9&yQg΂'8VI7Ɔ !,E4|i9|.|ޥcFtKYkO^p@#]nO0GMtsm<x3x$<` ֫ <}-.m'}p=U]YXq'Y[\2<. d'NN}:/ ߊ΄,$z HHZ.h7o𠗕rG<uv޿tYAi]_6W͏-hͦdjs_ ÉN#cH-L y3ONk{ a箩)E NWz.{4⻝mA4wN2l |Qo\)Uʙw;5"Pp 'C'~Լ*R%=f`eTL3DAH3 .M#^%|C0CX.Fง= o-z#DK( |@ |T"¼1 ͛YI57* {_A|f@ wb'[{jz57n"< Ͼty9B"z/oNf)҅FXaVŝ щ%Vݎ_Ajb5%OiZ8y"|*|U)mĤǤA{ֽ'F#o 92 [*aѾY{lD83-u{Zf$jBsd6$h,+ۀZx8mc:Ho<[t,{ʮnG \O F)/Հ`m[?zbx0g/jx @z!_ۀ;mB?+I ;4!`&NgLo?@Mxۃ{ YRem\$:aI㽄$ S&:/}@{ SN)D֬i`_CBb ;*3U^& B#g[4&6c+f显H(aA"j[-A#53->+ҵ͙0n27L6][E/="c>AR~+n㠃Ռ]#|F+3௚3qyU (p6d+D~$ֽͅJm. =`n6qeB D$l%E 'Cs3'@bgQMxc)"5.(l-Ei|};{/dq-+t0l®oa.\Ҋ$ ğL*_u%|CbF(]p "!_Rasom/y>ⶁ!R6҃g^6xF5ӟH2&,ڎN Ke. }0ŴB]hJ ,(O?7'knx#5E`m4ag|% # nԱwO 7x}6ִ%^]/0}n6~]f2KHG= fsxM(IU`j@VnV?Y r@](؂ƞ\Tj‚Cvl[@cy`Yf&;I) 3/U@Dvg˫@yGm<"^<:uL㎮Ecuݎœ4JWbmR>FK]f'[٧2cϹ// y[Mk,/{ QAbfB#qjEԃVvTʙmu 14#o̓c{V"F: %9- >_=>gzC%>Z~b0.~v0.ƸX)&lʢct9`Pr*0O_k1slv.2X( ş`F!AD`9)ҁCA؜Bʄ>dGjF7L> dZ\օ5&εBg? | }{ >ŗ$^SX7#Zc^445k<Yx7(Awq6O=:;ٍ'u?qwj}/{?5QjA7Z!?vQe^0!O(S#Áh@yy3v!Aiz !{{D-ߝA?b8\?EOV9C RF`w,}KufP#Ռ~bp47b~g8C\MW٫׳$K0VG?ج9vG3#:Q`l̵y  KfɐWPfzi_U~bx ;,>y86aCɜc~`/W07tbGu4_.(~s̱:5谲/E9|OM濇OHǻv'bFk;,zb/Y*;TEHSd_\|U0AL]U8`~0}>ߙtQ*|ٌi=8H%6 (2-BA‚r<珝Z:?󀨌B $ ƞn+oIē-CBnM-lOs\ ` 4zjv,І$Bsy%X68>DK޹3|Xx^r爡:\nQVɮ}Yյ/v I_1\T@CDT2iyo_/mD?-9HHMAle wlo..RQ4X0[۞kX-Gw5$wkQo2{B#]s)`̩lë!cyRn;j=qo A0A^|gOn0:wŔԼr]AZ<-C E<@\f8jǯc˦$NG]ش=YAY4l;2._ *}' Me~~#,쵔={ {h-ւ&ޗ ӐsٓN/WSB: BzբP)a20W