![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
RSA Conference, Day 3 (updated)
Feb. 18th, 2005 11:38 pmAnd now we return for another exciting episode of security conference updates. This time we've got a short time-lag; I'll be writing about yesterday's sessions rather than today's, since I didn't get a chance to do a write-up yesterday.
I began the day with another 6:50 alarm, and once again skipped hotel breakfast in favor of eating at the conference. I had a cold bagel and cream cheese. Why does anywhere serve bagels cold? They're so much better toasted! Who doesn't like a nice, toasty warm bagel? But I digress.
The first session was a panel on DRM. The panelists consisted of two DRM makers (Crypto Research and RSA Security) and two media companies (Warner Bros. and Fox.) Which is to say, watching the panel was like watching the choir preach to itself. The only opposing viewpoint came from the audience's tendency to applaud at precisely the wrong times, on purpose. The Warner Bros. representative engaged in a bit of historical revisionism about DeCSS (claiming it appeared on Windows before Linux, and that there were Linux DVD player apps before DeCSS was written.) There was some spectacular ignorance, some of it willful -- they all seemed to accept the (incorrect) axiom that CSS is a form of copy protection for DVDs (it's not -- if what you want to do is copy discs, you don't have any reason to break CSS), and save for the Crypto Research guy, none of them even seemed to comprehend the trusted client problem (the fact that if a person can play a disc, they can copy it, and there's absolutely nothing you can do to change that fundamental fact.) One interesting thing was that they agreed that DRM schemes must contain some provision in them that allows them to be relaxed if the initial settings and policies turn out to be too draconian, and they went so far as to suggest upgradeable firmware for consumer electronics devices. This, of course, would be heaven for device hackers, who would produce "custom" firmware in a heartbeat. Also, we learned that the HDTV Broadcast Flag is Andy Setos's fault (he was one of the panelists.) It will, of course, never work, but in the world of DRM, when has that ever stopped anyone? Also, Setos claimed that the media companies have no desire to interfere with legitimate home use of media that doesn't involve transferrence -- a claim that seems to be contradicted by the DVD-CCA's current lawsuit against Kaleidascape (a company that makes hard drive based DVD jukebox appliances that have no transferrence capabilities.) All in all, it seems DRM makers and media companies are continuing their proud tradition of stumbling around in the dark while claiming they can see perfectly.
( Cut for really long and geeky... )
Thus ended Day 3 of the conference, so I walked back to my hotel. I called up Sarah, one of my coworkers, to see if she was interested in dinner; she was not, but redirected me to Greg, who was going to a seafood place called the Tadich Grill at 8:00. So I joined Greg, Himani, and two guys named Dave (one PM, one test) at the Tadich Grill. I took a taxi there, but it only ran $5, so it was quite near my hotel. The Tadich Grill was quite packed, and served quite good seafood -- and a lot of it. I got the grilled petrale sole, and it was good, but I could only actually eat half of it. Atferwards, it was about 9:45, and Greg and the Daves were going to go get coffee and dessert somewhere, but Himani and I both wanted to go back to the hotel and get some sleep. Since it was quite comfortable out (aside from being raining), we just walked back to the hotel. Along the way, we discussed, of all things, martial arts and guns. Her topics, so she doesn't think I'm a loon now. :)
Back at the hotel, I signed on to World of Warcraft for a few minutes, which turned into an hour when I discovered someone selling a really nice weapon and had to borrow money from![[livejournal.com profile]](https://www.dreamwidth.org/img/external/lj-userinfo.gif)
pyran to buy it. I also got a phone call from my lovely wife, which always makes me happy. And then I went to sleep, glad that RSA Day 4 started at 9:00, rather than 8:00 like the first three days.
I began the day with another 6:50 alarm, and once again skipped hotel breakfast in favor of eating at the conference. I had a cold bagel and cream cheese. Why does anywhere serve bagels cold? They're so much better toasted! Who doesn't like a nice, toasty warm bagel? But I digress.
The first session was a panel on DRM. The panelists consisted of two DRM makers (Crypto Research and RSA Security) and two media companies (Warner Bros. and Fox.) Which is to say, watching the panel was like watching the choir preach to itself. The only opposing viewpoint came from the audience's tendency to applaud at precisely the wrong times, on purpose. The Warner Bros. representative engaged in a bit of historical revisionism about DeCSS (claiming it appeared on Windows before Linux, and that there were Linux DVD player apps before DeCSS was written.) There was some spectacular ignorance, some of it willful -- they all seemed to accept the (incorrect) axiom that CSS is a form of copy protection for DVDs (it's not -- if what you want to do is copy discs, you don't have any reason to break CSS), and save for the Crypto Research guy, none of them even seemed to comprehend the trusted client problem (the fact that if a person can play a disc, they can copy it, and there's absolutely nothing you can do to change that fundamental fact.) One interesting thing was that they agreed that DRM schemes must contain some provision in them that allows them to be relaxed if the initial settings and policies turn out to be too draconian, and they went so far as to suggest upgradeable firmware for consumer electronics devices. This, of course, would be heaven for device hackers, who would produce "custom" firmware in a heartbeat. Also, we learned that the HDTV Broadcast Flag is Andy Setos's fault (he was one of the panelists.) It will, of course, never work, but in the world of DRM, when has that ever stopped anyone? Also, Setos claimed that the media companies have no desire to interfere with legitimate home use of media that doesn't involve transferrence -- a claim that seems to be contradicted by the DVD-CCA's current lawsuit against Kaleidascape (a company that makes hard drive based DVD jukebox appliances that have no transferrence capabilities.) All in all, it seems DRM makers and media companies are continuing their proud tradition of stumbling around in the dark while claiming they can see perfectly.
( Cut for really long and geeky... )
Thus ended Day 3 of the conference, so I walked back to my hotel. I called up Sarah, one of my coworkers, to see if she was interested in dinner; she was not, but redirected me to Greg, who was going to a seafood place called the Tadich Grill at 8:00. So I joined Greg, Himani, and two guys named Dave (one PM, one test) at the Tadich Grill. I took a taxi there, but it only ran $5, so it was quite near my hotel. The Tadich Grill was quite packed, and served quite good seafood -- and a lot of it. I got the grilled petrale sole, and it was good, but I could only actually eat half of it. Atferwards, it was about 9:45, and Greg and the Daves were going to go get coffee and dessert somewhere, but Himani and I both wanted to go back to the hotel and get some sleep. Since it was quite comfortable out (aside from being raining), we just walked back to the hotel. Along the way, we discussed, of all things, martial arts and guns. Her topics, so she doesn't think I'm a loon now. :)
Back at the hotel, I signed on to World of Warcraft for a few minutes, which turned into an hour when I discovered someone selling a really nice weapon and had to borrow money from
pyran to buy it. I also got a phone call from my lovely wife, which always makes me happy. And then I went to sleep, glad that RSA Day 4 started at 9:00, rather than 8:00 like the first three days.
