Legal Security: OCP and Apple's Intel Macs
John Robinson continues to expand his discussions on the runtime layer underlying our new desktop software architecture, the OCP. His post is here, with some background discussion here.
There's some novel concepts around services and process groups John covers, and a few unique details he skims over without real comment, but I wanted to point out one specific, um... interesting thing he mentions only in passing - the OCP Haiku that you (developer-"you", not end-user-"you") must submit (in code) before you can activate and consume services:
Writing Code
The Dawn Sun Breaks
I am at Peace
- The OCP “Haiku”© AOL 2003-2006
Almost exactly like the poem that Apple embedded in the software/hardware interface of OS X for their Intel Macs, this isn't a cute wink to hackers or a nudge to anyone's conscience: its actually a platform "security" feature. The idea is not to prevent hackers, per se, but to try and cloak one's technology with as many legal protections as possible to prevent "white hats" from absconding with your IP without recourse. In the OCP design, we attempt to engender the protection of patent, contract, DMCA and copyright law - our Haiku being about the latter two, in particular, of course.
An original poem is the smallest legal copyrightable work - or I should, a poem is a copyrightable work, of which a Haiku is the shortest legally recognized form (or so I'm told). Incidentally, John was the author of our OCP Haiku - we held an internal contest amongst our client developers, and his was selected as most poetic.
It will be interesting to see how this turns out for Apple - as far as I know, these types of protections have been in the theoretical category (legally speaking), though they've been extended and applied in the real world in a number of novel ways (including ours) for a few years now.
There's some novel concepts around services and process groups John covers, and a few unique details he skims over without real comment, but I wanted to point out one specific, um... interesting thing he mentions only in passing - the OCP Haiku that you (developer-"you", not end-user-"you") must submit (in code) before you can activate and consume services:
Writing Code
The Dawn Sun Breaks
I am at Peace
- The OCP “Haiku”© AOL 2003-2006
Almost exactly like the poem that Apple embedded in the software/hardware interface of OS X for their Intel Macs, this isn't a cute wink to hackers or a nudge to anyone's conscience: its actually a platform "security" feature. The idea is not to prevent hackers, per se, but to try and cloak one's technology with as many legal protections as possible to prevent "white hats" from absconding with your IP without recourse. In the OCP design, we attempt to engender the protection of patent, contract, DMCA and copyright law - our Haiku being about the latter two, in particular, of course.
An original poem is the smallest legal copyrightable work - or I should, a poem is a copyrightable work, of which a Haiku is the shortest legally recognized form (or so I'm told). Incidentally, John was the author of our OCP Haiku - we held an internal contest amongst our client developers, and his was selected as most poetic.
It will be interesting to see how this turns out for Apple - as far as I know, these types of protections have been in the theoretical category (legally speaking), though they've been extended and applied in the real world in a number of novel ways (including ours) for a few years now.
posted by Sree Kotay at 7:45 PM
64 Comments:
Sree,
Um, stating the haiku on your blog wouldn't that kinda give away any protection? What about individual DIDs (Developer ID's) kinda like an Emp ID or a GUID? That way also if any service winds up being comprimised/any code that isn't written correctly they can be "educated"?
After talking with a few of the engineers the biggest issue is they don't exactlly know wrote a piece of code, and so bad code is built on top of bad code and it keeps getting messed up. For what I know the OCP ARB is supposed to stop this however my knowledge is very limited.
Fair question :) - but no. The Haiku is still copyright AOL, so copyright law is still in effect (though one supposes AOL *could* sue me for reproducing without written permission - perhaps I should write myself a note :P)
In fact, the whole point is that this is *not* TECHNICAL security, nor is this intended to be about 3rd party developer management (or revocation of rights) - this (like Apple's poem) is simply to prevent legal and legitimate partners and developers from distributing something that interfaces with our software without our permission.
For things like the upcoming AIM developer's program - where it IS about cert management and identification we are indeed using a GUID-esqe scheme.
If they'd done something like this for the TOC or OSCAR protocols, then AOL could legally pursue folks who create and distribute non-AOL AIM clients. This could have been used to prevent people from creating non-AOL AIM clients. I don't think this is a good thing.
Using copyright law to prevent people from creating unauthorized network consumer client applications is just wrong in my opinion.
Putting the OCP Haiku in the source code to prevent unauthorized duplication or reproduction of the intellectual property (the source code) I agree with. Making it part of the required network handshake in order to interoperate with OCP is Evil.
Of course, these are my two cents, worth probably not even that much, since what's done is done ... but, maybe there's hope for the future?
Hm... when you say "wrong" you mean technically, strategically, or morally?
I'm of the view that (as much as possible) these things ought to be business choices, not technical limitations.
Technology itself is an enabler.
I mean wrong strategically and morally.
Technology is the enabler and laws are a hindrance.
I have a saying I like to use to describe this problem:
"The only reason we need lawyers is because lawyers exist."
The long form of this is that old joke about "a lawyer moved into a town and was starving until another lawyer moved into town."
s3SStv write more, thanks.
Magnific!
Magnific!
Please write anything else!
Please write anything else!
Magnific!
Good job!
Nice Article.
actually, that's brilliant. Thank you. I'm going to pass that on to a couple of people.
Magnific!
Thanks to author.
Good job!
Please write anything else!
Magnific!
Beam me aboard, Scotty..... Sure. Will a 2x10 do?
Please write anything else!
Thanks to author.
Good job!
A flashlight is a case for holding dead batteries.
Calvin, we will not have an anatomically correct snowman!
Hello all!
The gene pool could use a little chlorine.
I'm not a complete idiot, some parts are missing!
What is a free gift ? Aren't all gifts free?
Nice Article.
640K ought to be enough for anybody. - Bill Gates 81
Give me ambiguity or give me something else.
Hello all!
640K ought to be enough for anybody. - Bill Gates 81
Clap on! , Clap off! clap@#&$NO CARRIER
When there's a will, I want to be in it.
Oops. My brain just hit a bad sector.
A lot of people mistake a short memory for a clear conscience.
Save the whales, collect the whole set
When there's a will, I want to be in it.
When there's a will, I want to be in it.
When there's a will, I want to be in it.
Oops. My brain just hit a bad sector.
Suicidal twin kills sister by mistake!
When there's a will, I want to be in it.
A flashlight is a case for holding dead batteries.
What is a free gift ? Aren't all gifts free?
C++ should have been called B
Oops. My brain just hit a bad sector.
Friends help you move. Real friends help you move bodies.
Thanks to author.
Please write anything else!
Clap on! , Clap off! clap@#&$NO CARRIER
A lot of people mistake a short memory for a clear conscience.
Give me ambiguity or give me something else.
Save the whales, collect the whole set
Oops. My brain just hit a bad sector.
Friends help you move. Real friends help you move bodies.
When there's a will, I want to be in it.
Thanks to author.
The gene pool could use a little chlorine.
Oops. My brain just hit a bad sector.
Build a watch in 179 easy steps - by C. Forsberg.
runescape money runescape gold runescape money runescape gold wow power leveling wow powerleveling Warcraft Power Leveling Warcraft PowerLeveling buy runescape gold buy runescape money runescape items runescape gold runescape accounts runescape gp dofus kamas buy dofus kamas Guild Wars Gold buy Guild Wars Gold runescape accounts buy runescape accounts runescape lotro gold buy lotro gold lotro gold buy lotro gold lotro gold buy lotro gold lotro gold buy lotro gold runescape money runescape power leveling runescape money runescape gold dofus kamas cheap runescape money cheap runescape gold Hellgate Palladium Hellgate London Palladium Hellgate money Tabula Rasa gold tabula rasa money 陈楚生 压力开关 压力传感器 流量开关 流量计 液位计 液位开关 温湿度记录仪 风速仪 差压开关 可燃气体检测仪 过滤器 强磁水处理器 自清洗过滤器 自动反冲洗过滤器 保鲜棕榈树 棕榈树
Post a Comment
Links to this post:
Create a Link
<< Home