More on the Sony XCP DRM (Rootkit)



Freedom-to-tinker.com has some good detailed analysis on Sony’s (mis) use of GPL software in their XCP DRM (Digital Rights Management) software that’s been at the center of somewhat of a firestorm the last couple months. DRMS was the source of the code that was allegedly misappropriated, but the puzzle was why a Digital Rights Management removal bit of software was used in Digital Rights Management software to begin with…


The answer is that XCP utilizes the DRMS code not to remove Apple DRM but to add it. I’ve discovered that XCP uses code from DRMS as part of a hidden XCP feature that provides iTunes and iPod compatibility. This functionality has shipped on nearly every XCP CD, but it has never been enabled or made visible in the XCP user interface. Despite being inactive, the code appears to be fully functional and was compatible with the current version of iTunes when the first XCP CDs were released. This strongly suggests that the infringing DRMS code was deliberately copied by XCP’s creator, First4Internet, rather than accidentally included as part of a more general purpose media library used for other functions in the copy protection system.

Technical details and more musings at the above link.

Related Posts

Blog Traffic Exchange Related Posts
  • Sun Java security updates/ Windows software update rant... Incidents.org has the story on Sun's release of new versions of the Java Runtime Environment and the Java SDK to fix some remote security vulnerabilities. These security vulnerabilities could allow malicious, untrusted code to compromise a user's computer. Sun recommends that users update to the newest version of the SDK......
  • More on Sony's copyright infringement with their DRM Rootkit "What a tangled web..." there is more today at freedom-to-tinker on the evidence that Sony (and or first4internet), have infringed on copyrighted code in their DRM software XCP which has been at the middle of quite a bit of controversy the last few weeks. Most of the coverage has been......
  • Today's Sony DRM rootkit stories.... Amazingly I haven't seen any big Sony news today, but there are a couple stories out that are worth noting... First up is freedom-to-tinker with their take on the lawsuits announced yesterday and the one thing that isn't getting much press coverage, the MediaMax DRM software. XCP is the name......
Blog Traffic Exchange Related Websites
  • How To Secure Your Wordpress Blog Security is always a major concern of bloggers and online business owners using a wordpress platform. Wordpress developers also emphasize a lot on security in every upgrade. However, even then vulnerabilities still occur. It can be your fault or your Web host fault. Before a hacker breaks into your wordpress......
  • SANS Baltimore 2011, Baltimore, MD, Save $250 until September 7   This is your final reminder that SANS will be hosting hands-on security management, technical security, and computer forensics training at SANS Baltimore 2011 October 9-15! * Register & pay for any five- or six-day course by Wednesday, September 7, 2011, to receive up to a $250 discount and get......
  • Cloud Business Services In 2010 businesses are experimenting with cloud computing as a way to save money and human resources. By moving some or all of their daily server and IT needs as well as specific applications to cloud systems, they significantly reduce their reliance on traditional computing costs. These include purchasing and......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site