New Tool Cracks Apple's FairPlay DRM

goombah99 writes "PlayFair is an integrated utility that removes the DRM from AAC music files protected by Apple's FairPlay encryption. Information is limited, but the source code is on SourceForge.net and it appears to actually remove the encryption itself and not simply hijack the QuickTime audio stream as earlier methods did. The cracking operation can only be done on songs the user has already has valid licenses for and requires either an iPod or a windows computer for key recovery. If you choose to redistribute these songs you will be violating the contract you bought them under: better hope they aren't watermarked or you might end up paying for releasing one in the wild. To me the authors are vandals not revolutionaries, and may have ensured WMA becomes the standard."

Lies

[monstroyer (748389)]

1) My computer, my data, my choice. DRM snake oil providers can deal with it. The future won't tolerate the crap these copywrite perverters are trying to enforce, may as well wake up now before it's too late.

2) Downloading music does not affect sales. [dailytarheel.com] DRM is only there to appease the record industry, still scared shitless that artists can have direct contact with their fans who still provide them with income. This cuts them out as the middleman. Like the landlord [landandfreedom.org] of times before us, they will be replaced or burnt to the ground. Again, deal with it.

3) The previous two paragraphs are both 'revolutionary' premises. Vandals these coders are not.

Re:Lies

[seffala (134325)]

The plural of 'anecdote' is not 'data'.

Re:Lies

[geeber (520231)]

Amen brother. The problem is in polite conversation (and slashdot too, for that matter) "I know a guy..." trumps statistics every time.

Re:Lies

[Anonymous Coward]

The problem is in polite conversation (and slashdot too, for that matter) "I know a guy..." trumps statistics every time.

That is simply not true. A friend of mine who is a sociologist studied this very phenomenon and found that it didn't exist.

Re:Lies

[Catbeller (118204)]

Regardless, I choose to reward the artist*, rather than blatantly "steal"** from them.

I wasn't aware the labels were paying the artists a large part of the iTunes income. Anyone you know getting a check from RIAA?

Artists - don't - get - money - from - labels. Artists PAY labels for the privilege of making money for the labels, unless they get more than one gold record, at which point, if they were very careful negotiators, they might actually pay off their creditor and start seeing a royalty stream. Most musicians under a label make the only money they can keep from live performances. If ClearChannel hasn't ripped them off.

The labels, represented by RIAA, are NOT the artists and are NOT their benefactors. Let's stake this meme in the heart. We aren't paying the artists, we're paying the crooks who take advantage of them with their hold on the distribution chain.

Altogether, people:

WHEN WE PAY THE LABELS, WE ARE NOT PAYING THE ARTISTS. WE ARE PAYING DOWN THE DEBT THE ARTISTS OWE THE LABELS, WHICH WOULDN'T EXIST IF THEY HADN'T RAPED THE ARTISTS IN THE FIRST PLACE.

Re:Lies

[Alsee (515537)]

You have a license to use it.

No such thing. Doesnt' exist.

You can only licence the right to create new copies and derivative copies and to distribute those copies and for public performances. Those are the only licences that exist (at least under US law anyway).

You don't need any licence at all for any sort of fair use.

Apple's DRM is pretty benign... They worked out a lot of rights for their customers.

It doesn't matter WHAT rights that "worked out". The fact is that ALL fair use is perfectly legal and legitimate, and a copyright holder has absolutely no legal right to say squat when I make fair use.

Unauthorized use and unauthorized copies are perfectly legal and legitimate when they are fair use.

-

Re:Lies

[zcat_NZ (267672)]

Not 'fair use'; 'unregulated use'

Fair use relates to things that would have been covered by copyright; derivative works, quoting, etc. They're allowed, even though technically they're a little bit of the 'copying and redistribution' that copyright is supposed to regulate.

Unregulated use relates to things that have nothing to do with "copying", and should never have been covered. Transfering a work 'I own' into another format, playing a DVD on a non-standard platform, etc. If I bought the work, I should have the right to do anything I want short of making copies and giving them to my friends. Playing DVD's under Linux, converting AAC's into MP3's, etc -should- all be unregulated uses. It's none of the copyright-holders business what I do with the disc after I bought it, unless they can PROVE that I'm redistributing unauthorised copies!

Re:Lies

[badasscat (563442)]

Except that it's NOT your data. You have a license to use it.

Bullshit. If it's on my hard drive, which is a physical platter that I purchased at retail, then it's a physical thing that exists in the real world and it's mine. You're telling me my hard drive is mine but its contents aren't? I don't buy that for a second, whatever some RIAA lackey wants to say to convince me. If it somehow found a way (legally) into my house and onto my hard drive, it belongs to nobody else but me, and as long as I keep it for myself, I'm allowed to do whatever I damn well please with it.

In fact, DRM exists because copyright holders know this. Otherwise, there wouldn't be a need for DRM! The whole point of DRM is to keep you from doing things you are legally entitled to do as specifically written in copyright law. The RIAA does not like the way copyright law is written so they are doing their best to usurp it with DRM (which they seem to think gains them additional protections under the DMCA that they don't otherwise have under regular old copyright law). I see no problem in breaking DRM in order to exercise my legal rights.

Now, as for this sob story about WMA becoming a "standard" because of this... I mean really, cry me a river. Neither AAC nor WMA will ever be considered a "standard". The only thing close to a "standard" is MP3 (only because so many people have already ripped their music to it, so every piece of hardware has to support it) and it obviously isn't used for many applications where real compression efficiency or the best absolute sound quality are required. MP3 will always be around - I'm sure not about to re-rip all 2,000 or so CD's I own, and doubt many others will either - so whatever gets declared a "standard" for any specific use doesn't really matter anyway.

WMA's DRM will be broken in time just as FairPlay apparently has been, in any case. It's the nature of digital data. Anything that's expressed in bits can and will be cracked, so WMA has no advantage here. Eventually these companies will hopefully accept that all DRM is doomed to fail, and just go back to allowing their customers to exercise their rights under the law, as they used to do many years ago.

Re:Lies

[Kelson (129150)]

If it's on my hard drive, which is a physical platter that I purchased at retail, then it's a physical thing that exists in the real world and it's mine. You're telling me my hard drive is mine but its contents aren't?

I own a lot of books. The paper, the ink, the glue - I own those, uncontested. I own that instance of the book. I can lend that particular book to a friend, I can sell it to someone, I can throw it in the trash, put it in a barbequeue, whatever. I can take the book down to Kinko's, photocopy it and write all over the photocopies. But if the book is still in copyright, I can't legally give those photocopies to someone else, nor can I legally typeset it, publish a new edition, and start selling it. Even though those words are physical objects in my possession.

The whole point of DRM is to keep you from doing things you are legally entitled to do as specifically written in copyright law.

More bull. Companies pushing DRM don't give a damn whether you make copies for yourself, they just want to make sure you don't upload it to the net and share it with a few thousand of your closest friends. And it's easier for them to prevent you from doing anything than it is to only prevent you from handing out free copies everywhere. That's why most DRM is so draconian - not because they want to lock you into only listening in one room, but because they just don't care.

Apple at least made an effort to compromise.

Re:Lies

[ncc74656 (45571)]

So I suppose that you think that just because you purchased a copy of a book you're entiteld to do whatever you want with the contents? Up to and including violating copyright laws?

Quit yer trolling...who said anything about violating copyright laws? If I'm working on my car and want to refer to some pages out of the shop manual, I'll make a copy of the relevant pages and work from those so the manual doesn't get dirtied up. That is fair use. Another example of fair use is dubbing a CD to tape so I can play it in my car (which doesn't have a CD player). That's also fair use. How, then, is stripping the DRM off an .m4p so I can convert it to Ogg Vorbis for playback on my Palm (an example of format-shifting analogous to the aforementioned CD-to-tape dub) not fair use? It's only copyright infringement if I turn around and put the resulting .m4a files up on $P2P_NETWORK or otherwise distribute them to others.

Re:Lies

[DeltaSigma (583342)]

But that copy does belong to him if he acquired it legally. If I'm the only occupant in my living space and I have twelve individuals computers comprising an obscene amount of redundant backup storage, and I make twelve freaggin' copies of every piece of data legally acquired by myself, plus a DVD for the television, and a CD for the stereo, it still shouldn't make a lick of difference to musicians, game makers, virtually everyone who creates information for a living, because they succeeded in selling one copy to one consumer.

End of story, no "ifs" "ands" or "buts" about this license restriction crap.

Re:Lies

[Anonymous Coward]

Whatever. I can play the songs on my Macs, my Dell and my iPod. I can burn CDs and play it in my car, on my stereo, in my portable CD player. Not very restrictive at all. That works for me.
Great. Sounds like you've found something that is still more restrictive than WMA music, but you're happy with it.

Besides, I can buy MP3s from anywhere else. Oh wait. Who sells those?

http://www.magnatune.com/ [magnatune.com] for starters.

Re:Lies

[Yakko (4996)]

Show me a free (costs nothing, free of encumberances like patent and EULA issues, etc) media player that plays these "rights managed" WMAs, and maybe then I'll consider starting a WMA collection. I may not be fully imformed, but until I'm certain there's one out there that won't tie me to a Windows machine, I'm just going to have to continue using mp3. Simple as that. ITMS lets me get mp3s from the AACs I buy, so they're in.

Oh... said player needs to work on most any Unix I care to throw at it. No Rube Goldberg devices, no tricky hacks.

(I don't think those "bum the win32 codecs" players are going to cut it, either. Something that'll natively play it is what I'm seeking. My point is that WMA is not cross-platform to the extent that mp3 is.)

Re:Lies

[Sparks23 (412116)]

Not to further fuel the flames, but it's not quite that straightforward.

I think part of the problem is that folks are looking at AAC as 'Apple's format.' It's not. AAC -- Advanced Audio Coding -- is an open standard; there's an ISO number for it, and it was come up with by the MPEG standards group. AAC is to MPEG4 what MP3 (MPEG1 Audio Layer 3) was to the original MPEG. AAC itself is quite widely played by software players -- more than just iTunes -- and is more or less the intended successor to MP3. (NOTE: Intended. I make no predictions about whether or not it will actually happen.)

Where you can point the finger at Apple is on their DRM implementation on top of AAC; that's not part of the AAC specification, and so means that while an un-protected AAC file can play on iTunes, WinAmp, etc., a protected iTunes Music Store one cannot. THIS is a little unfortunate; I'd love to be able to load protected AAC onto my NetMD minidisc player without having to burn it to CD first.

WMA makes me more nervous as a format, because as far as I know it's controlled by a single entity (Microsoft) instead of an open group (MPEG standards group). However, it can't be discounted that WMA's integration of DRM has made it the more attractive commercial option for folks, since it's possible to make differing players handle the same DRM-protected files.

Whether or not AAC with some form of DRM will catch on remains to be seen, I guess.

Re:Lies

[Sparks23 (412116)]

As an addendum, everything I've ever read -- including the PlayFair website linked to in this article -- says that FairPlay was licensed from Veridisc. So before anyone points fingers to tell me that Apple didn't write FairPlay, yes, I'm aware of that; they took an open standard and a publicly licensed DRM technology which can wrap digital files, and put the two together.

In theory, anyone who wanted could use the FairPlay DRM and thus play Apple iTunes Music Store music. However, AAC not having an inherent DRM seems to have discouraged everyone but Apple from using it commercially, whereas WMA has the DRM right there so if you're using WMA you don't have to go shopping for separate DRM solutions.

That was the point I attempted to make in the earlier post. :)

Re:Lies

[Bombcar (16057)]

Here [allofmp3.com] you go.......

Re:Lies

[rjelks (635588)]

When I spend $15.00 dollars on a CD, I own that media. I don't claim to own the copyright to it, just the CD itself. With my ownership, comes "fair use" rights and the ability to sell said CD. I can't copy it and sell multiple copies, but I can sell the CD....which to me confirms my ownership of it. When I buy a CD, I don't just purchase the "ability to listen to it", but also the ability to copy it for personal use, put it on an mp3 player or sell it. /don't really buy CD's anymore, new music sounds strange

We can only hope WMA will win!

[SeanTobin (138474)]

Wouldn't it be wonderfull once the WMA standard becomes available everywhere? All online music stores will use it because it will be so secure. On-demand video companies will spring up from this new found industry standard. Portable players and home stereo systems will all support it. Every media file on your computer will fall under one standard.

And then a code monky from Argentina will be codeing at 3am and have a Mountain Dew inspired breakthrough, and WMA will be broken wide open forever.

Software companies continue to forget the days of dongles, code wheeles, and manual page/paragraph/word lookups. All it will do is annoy real consumers.

Re:We can only hope WMA will win!

[Colonel Sponsz (768423)]

Unfortunately, if that happens it will only bring the age of gov't mandated hardware DRM even closer - and then you can say goodbye to actually owning your own computer. What it's really time for is a property revolution - and I'm not talking about the Lenin/Che Guevara kind, I'm talking about actually giving people control over what they legally own. My computer? Then let me hack it as much as I want - software as well as hardware. My DVD? Then let me play it however I want (skip trailers, play it backwards, make my own "phantom edit"). All those things are already restricted by the DMCA and other laws, and it will only get worse unless somethings is done, soon...

Re:We can only hope WMA will win!

[Saeger (456549)]

On the one hand we have information being naturally free [eff.org], and on the other we have attempts by clever control freaks to put the genie back in the bottle [fourmilab.ch] so that there is profit from (artificial) scarcity again.

I'm of the mind that the genie can't be put back - that open hardware will prevail, DRM will fail, and that alternative means of funding digital works will emerge such as variations on the street performer protocol [firstmonday.dk], where it's the SCARCE act of creation that is funded, rather than the zero marginal cost of reproducing abundant old data.

--

Monkey See, Monkey Do

[ackthpt (218170)]

To me the authors are vandals not revolutionaries, and may have ensured WMA becomes the standard."

The problem with incredibly clever people is inevitably they come up with something you don't want. Who's to say they weren't WMA or even (shudder) RIAA proponents, bent on showing the public can't be trusted and DMCA is the right approach?

I agree that they are vandals and scoundrels...

[csoto (220540)]

but it's not as if WMA can't also be cracked.

ALL technological barriers can be subverted. It just takes the proper motivation, be it economic, political or otherwise.

I'll stick with purchasing tracks on iTMS. I love my iPod, iTunes and the quality and economical service Apple provides.

Vandals

[cgenman (325138)]

(from dictionary.com)

Vandal (van'dl)

1. vandal One who willfully or maliciously defaces or destroys public or private property.
2. A member of a Germanic people that overran Gaul, Spain, and northern Africa in the fourth and fifth centuries A.D. and sacked Rome in 455.

As these people obviously have not maliciously defaced or destroyed public or private property, I can only assume, then, that the repeated references to them as "vandals" means that the FBI has identified the coders as coming from an obscure Germanic sect, whose culture was believed lost.

Which leads to a conundrum. If we don't arrest these people, then we are validating the viewpoint that the DMCA is far overreaching. If we do arrest these people, then we are destroying the remnants of a lost civilization important to our shared cultural heritage.

Declare a law overly broad, or destroy a valuable culture? What is Ashcroft to do?

Re:I agree that they are vandals and scoundrels...

[daw (7006)]

What if the next version of WMA encryption were as secure as AES? It's certainly not likely, but I wouldn't say it's impossible either. I understand that there are fundamental differences between DRM and plain encryption, but the point is that uncrackable systems are possible.

This is nonsense. Encryption systems may be practically uncrackable. Encryption systems that have to decrypt the "protected" contents for you so that you can listen to them will never be in the least bit secure. If you can hear it you can record it. There is no getting around this. The entire idea of DRM is, on the face of it, futile.

Let's hope

[nsample (261457)]

I already have a removal tool for WMA. Just waiting for it to become a standard. ;)

Is FairPlay really better than WMA?

[Anonymous Coward]

To me the authors are vandals not revolutionaries, and may have ensured WMA becomes the standard.

If DRM is offensive to you, than FairPlay is no better than WMA.

If you don't particularly mind DRM, then what's your complaint about WMA? I think it is the iTunes contract you like, and not FairPlay itself.

DeCSS

[Jeffrey Baker (6191)]

Lots of ignorant comments already. PlayFair is the same as DeCSS: it removes restrictions on fair use, and allows compatibility. Now I can play my paid-for iTunes songs wherever I wish, just as DeCSS allowed me to play DVDs anywhere.

It's a good thing.

I think this is good

[shadowcabbit (466253)]

Contrary to the knee-jerk reaction (and incidentally, also contrary to the blurb), I think that this tool is a blessing. Since it only works on songs that you have a valid license for (ie stuff you bought), it removes the burn-to-cd step from the "buy from ITMS, burn to CD, re-rip to MP3" process for those of us who don't have an iPod. I've bought quite a bit of music from the store, and I relish the opportunity to use it on my Lyra. This, I think, was the developers' intention with this tool-- not infringement. This is the only use I will have for this tool. Others may use it improperly or illegally, but that does not mean I should be denied access to the tool.

Incorrect background on VeriDisc/FairPlay

[ikewillis (586793)]

When Apple opened the iTunes Music Store, they licensed a technology called "FairPlay" from a company called "Veridisc".

Apple bought VeriDisc. They didn't license FairPlay; they own it.

This is like a selling point

[AtariAmarok (451306)]

Having this available is like a selling point for ITMS. I've been rather resistant about buying songs there because they place restrictions about what I can do with my own data on my own machine. (and no, I'm not talking about selling them).

Legalities - FairPlay hacking is illegal

[MacFury (659201)]

If Apple and the RIAA has its way, using a tool like this will be just as illegal as getting the music with Kazaa

It is just as illegal. Actually, more so. Downloading copyrighted music is simple a copyright infringment. (at the moment) This means it falls under civil law.

However, creating a tool like this circumvents a copyright protection scheme. This is a criminal act punishable by up to 5 years in prison or $500,000, under the DMCA of 1998. (section 1201)

As an aside you mention if Apple had it's way...Even at the risk of appearing as an Apple apologist...Apple didn't want DRM at all. They struck a deal with the RIAA. Essentially the RIAA said, NO DRM, NO MUSIC. Apple said, okay...we'll put in a little DRM. I wish I could find the quote from Steve Jobs but he essentially said, "DRM is stupid, users want control of their files and rightly so, DRM will kill the market."

Largely irrelevant.

[Llywelyn (531070)]

The cracking operation can only be done on songs the user has already has valid licenses for and requires either an iPod or a windows computer for key recovery.

Let's emphasize this part. You still have to go through the trouble of downloading it, compiling it, and using it on your own songs. I don't see many people doing this just to share them over a P2P network.

There would be a problem if this was something that could decrypt other's songs. If you do a search there are people sharing m4p files on filesharing networks (mainly because they just share their music library) and so the ability to then download those files and decrypt them would be more serious. As it stands with this program, I have to go through that for my own files, which I wouldn't go through the trouble of doing unless FairPlay got in my way, which it doesn't.

Even then, however, I suspect it would not be a major concern. Apple expected this kind of thing and has a philosophy that most people will pay for their service regardless of if they can get it free elsewhere--simply because they will pay for quality and service.

watermarking?

[ziggy the zagnut (639592)]

Well, what are we waiting for? Let's diff two cracked AAC's of the same iTune bought by different people to see if there's any encoding!

Just a GUI

[m1a1 (622864)]

These guys didn't do anything special. The libraries they used have been out and available in a simple command-line form for quite awhile. They apparently just made it more accessible to the public. The libs are available at http://www.audiocoding.com/ [audiocoding.com]. I've played with the command-line version before and it works fine.

fairplay CVS is still up

[dj_paulgibbs (619622)]

Although Sourceforge have pulled the .tar.gz mirror, you can still login into the CVS and get it:

cvs -d:pserver:anonymous@cvs.sourceforge.net:/cvsroot/ playfair login
cvs -d:pserver:anonymous@cvs.sourceforge.net:/cvsroot/ playfair checkout playfair

What's the problem

[smartin (942)]

This only works if you already have a key, so you aren't stealing anything, it just makes it possible to get better use out of music you paid for. Such as putting it on your slimserver etc. I don't think that the availability of such a tool is going to cause people to go hunting for protected aac files to crack, and if you are going share them, you could just rip them as mp3 (yes i know lesser quality yada yada). I think this tool is useful for people that do buy iTunes an i for one will probably buy more now that i can get better use out of them.

Think of it as the same thing as cracking a game you already bought so that you don't have to put the CD in the drive every time you want to play it.

Beware, downloaded songs are watermarked

[smadnessness (702008)]

Songs bought and downloaded from iTMS are watermarked with your account information. Checking out the source for the song with a simple text editor I was able to clearly see my name and email address used for purchasing from the store. I don't know yet if these are stripped when playfair strips DRM, but it's worth verifying before you start playing pirate again.

Besides, CD quality is still better audio.

Wow, whats with all the hoopla?

[msimm (580077)]

To me the authors are vandals not revolutionaries, and may have ensured WMA becomes the standard.

Vandals? Really? Wow, because the first thing that came to my mind is: wow, I can unencrypt MY files and put them on my MythTV box, or trascode them to use in my cars mp3 player or send them through my Slimplayer. People are getting a little weird about DRM. Vandals is probably the most ridiculous thing I've hear yet. Itunes is great, but if we are going to continue to have fair use we are going to have to stop buying in to all the hype and realize that using a product we bought isn't criminal. I'm a fucking consumer, not a pirate.

Fair use...

[Rick Zeman (15628)]

...sure, I'm all for fair use--for me. My definition doesn't include me and a couple million of my closest friends.

All the Kazaa-using pirate assholes and those cracking Fairplay are doing is making my life harder and as time goes on, interfering more and more with what can be considered fair use.
You all need to consider what is cause and what is effect here. Was there DRM before Napster? Nope. So this is all a reaction to your sleazoid thievery and it just royally pisses me off.

As DRM goes, Fairplay is by far the best of a bad lot. Its compromises I can live with. What are you assholes going to make Apple come up with next?

Is this Slashdot or New York Times?

[Hao Wu (652581)]

"To me the authors are vandals not revolutionaries, and may have ensured WMA becomes the standard."

Interesting. Good point. So why was this allowed in reporting the story?

This belongs in the comment section, to be moderated fairly, like my little opinion and other people's comments.

Re:What was the point?

[Ziviyr (95582)]

Maybe they wanted to play their paid for tunes on something other then iTunes or an iPod.

Re:What was the point?

[ctr2sprt (574731)]

To you, Apple's DRM system is distinct from "other DRM" because it doesn't prevent you from doing the things you want. To me, Apple's DRM system is exactly like every other, because it does prevent me from doing what I want. (At least, as far as I've heard; I'm not going to pay for something that may or may not work, even if it is only a buck.)

Maybe the guy who did this project is like me. He needed to something with AAC that "FairPlay" wasn't allowing him to do, so he found a way around it. Or maybe he was just being a geek and wanted to see if it could be done.

Re:What was the point?

[James Lewis (641198)]

Slashdotters lamenting the cracking of AAC and looking down their noses at the authors of this program need to wake up. You're spitting in the wind. This was GOING to happen, just like every single lock companies have put on their programs has been broken in the past. This should be further proof the the record companies that DRM does NOT WORK. If they want to switch to WMA fine... but no matter how hard Microsoft tries, it will be cracked too, just like it HAS been cracked over and over. Any time a company makes a product and says, "Don't do this, whatever you do please don't do this!" some nerd is going to wet himself in the anticipation of doing just whatever it was that company didn't want done. Like Steve Jobs himself said, it doesn't matter how good the lock is, because all it takes is ONE person getting in ONE time, and the whole thing is worthless. I totally agree that a solution to mass pirating needs to be found, but it isn't DRM. If we can't find a socially exceptable way of stopping pirating, then maybe someone is just going to pull their head out of the sand and change their business model...

Re:What was the point?

[pavon (30274)]

The fairplay system allowed for FAIRPLAY, it is seen as the best DRM scheme online

This line of reasoning drives me crazy. For the last 20 years we have had an open, digital, non-DRM music standard which has succeded wildly. And yet now people are constantly praising FairPlay, because it is the least restrictive of the new DRM schemes. I am supposed to be happy that we have only taken one step back instead of two? To be fair it is worse than a step backwards, because it is introducing restrictions that have never existed before. FairPlay is not the best DRM - no DRM is the best DRM.

But you are right on one thing. What is the point of buying music under terms that you don't agree with? If you don't like DRM, then don't buy DRM'd music. At least now you still have the option. If consumers continue to be so eager to support these new formats, that option won't exist for very long.

Re:FoulPlay

[Slack3r78 (596506)]

Honestly, this is borderline, but I can understand the logic behind it. What happens if it turns out the trolls are right, Apple does die, and you need new hardware? Or play your AACs under Linux? Or any number of other scenarios that could call for legitimate fair use?

Here's the thing you and many others are missing - PlayFair only strips the DRM if you already own a legal copy. If you read so much as the single paragraph summary on their site, you'd see that in order crack the DRM, PlayFair extracts your key from either your iPod or your iTunes software. So if you don't already have legal access to the music, you're not going to be able to strip the DRM.

Yes, it can be used as a piracy tool, but really the argument for this isn't really any different than the one for DeCSS. This can be, and very much is, a tool for fair use.

Re:FoulPlay

[Shimmer (3036)]

At the moment, it's illegal in the US under the DMCA. You might not like it, but that's a different question.

So maybe it's not secure...

[raehl (609729)]

But is that a bad thing?

What if sales of music in this format increase, because people are more likely to buy songs they can use as they please instead of buying songs that have annoying DRM restrictions on them?

The bad assumption here is that by removing DRM, people won't want to buy a product, because they'll just copy it instead of paying for it. The problem with that assumption is it ignores the fact that copying itself has a cost, even if it's not a financial one: You both have to have a copy of what you want to make a copy of, and you then have to actually distribute that copy to whoever actually wants it.

Or you could just go to a central store of digital copies, pay your paltry 99 cents, and get your own copy. For most people, 99 cents is worth the convenience of having whatever they want on demand.

Before you start thinking this won't work, look at DVD sales nowadays. VHS tapes were priced to cost many, many times more than the price of a rental. Rentals were attractive. DVD's are priced at about $20-$30 each. Result? Even though people could fairly easy copy DVDs if they REALLY wanted to, it's just "easier" to walk into Best Buy and plop down the $20 - so much so that many many more people buy DVD's than used to buy VHS tapes.

For most people, trying to find and download a copy of something off the internet just isn't worth the $20 to buy the copy at Best Buy, or the $20/month to have Netflix mail it to you.

Very little of the cost/value of content is the content itself - most of it is the distribution. Efficient distribution can distribute content at prices low enough to be competitive with comparatively inefficient illegal distribution while still creating enough revenue to pay content providers.

Re:So maybe it's not secure...

[FredFnord (635797)]

> What if sales of music in this format increase, because people are more likely to buy songs they can use as they please instead
> of buying songs that have annoying DRM restrictions on them?

Let's think this through. What if they do?

Then the RIAA claims that Apple is in violation of their licensing terms. They could ask Apple to rewrite FairPlay, which I think is unlikely because it'll just get cracked again, given the way quicktime works. (I suspect, though I'm not certain, that I could have written a crack for this myself, because I know how QuickTime's guts work.)

They could impose some much more restrictive DRM scheme on iTunes. This is the way I suspect they'd go.

They could let things go on the way they are. I think that unlikely.

Or they could just pull Apple's license altogether.

Before you see this as a good thing, it might be wise to wonder which they'll do?

Re:Not Apple's problem

[Hawthorne01 (575586)]

Given the iPod's approach to piracy (an admonishment not to steal music on the package), I'm quite certain Job's didn't push the security of iTMS as a selling point to the labels. Rather, I can see him stressing the ease of use and karmic value to the user.

So it's been cracked. Does this affect the massive quantity of illegal MP-3's out there in the least? No. If you needed a copy of a song that was on iTMS, you could always find it elsewhere if you weren't worried about copyrights.

I use iTMS because of:

• Download speed
• Gauranteed Results
• Gauranteed Quality
• Ease of use

The DRM affects me not in the least. I have no reason to crack what I've bought from iTMS, and won't do so.

Re:The author implies that...

[badasscat (563442)]

The iTunes store afforded consumers much more freedom with their purchases than any of the other online stores, and this software may well have a hand in taking that away.

So f'ing what? Seriously. You gloom and doom types are overlooking the patently obvious here: without iTunes, what's left? KaZaA, Gnutella, etc. Shut down iTunes and you drive all those consumers right back to the free (and illegal) services, including the ones currently in the works that encrypt data across multiple nodes and make it nearly impossible to track downloaders. It's not like there's no other way to download music (and if you want it legally, it's not like there's no other way to buy it besides downloading). And let's not forget that it's legal to share music in Canada!

Shuttering iTunes is not in the record industry's best interests. Oh, they still may not realize it, but they will eventually or they will die. What is in their best interests is to simply let this go. Don't publicize it. Let the Slashdot crowd break the DRM on the tunes they've purchased; they're not the ones downloading music on KaZaA anyway. Sue more people who are sharing illegally and drive them to iTunes.

Alternative strategy is to try to shut this software down with a massive legal and PR blitz. Won't work, but it'll put the fear into a few people, at least. But shutting down iTunes does not seem to be an option in any case. It would be suicidal. It's not as if alternatives don't exist, that cost less (ie. free) and don't have DRM. Why push customers back to that at the very moment you seem to be educating them on the benefits of actually paying for music?