Re: Mozilla and DRM

Wed, 21 May 2014 07:05:48 -0700 

On 2014-05-21, 1:30 AM, Jim wrote:

There are very real technical differences in the ability to sandbox a
separate DRM player versus an integrated web based media player.


I'm not sure there are.


It is trivially obvious. It is much easier for people to sandbox a
separate computing device, they can just disconnect it!



Which separate device are you talking about?  As far as I understand, 
before this email you were arguing that the DRMed content should run in 
a different program on the user's machine that is separate from their 
web browser, but integrated with the web page in a seamless way.


> Granted people

could use a separate computer to run a web based media player too, but
it needs to be more capable than a dedicated media decoder, and this
increases the barrier.



If the user indeed wants to run the DRM code on a separate computer for 
some reason, they can already do so with what we're planning to 
implement: they can refuse to run the CDM on their main machine the 
first time we prompt them, and they can open up the page which triggered 
the prompt on their other machine.



But do you really think people are going to want to run such code on a 
different machine?  Please note that our users are already running DRM 
code inside the Firefox process through the Flash and Silverlight 
plugins, and I haven't heard of a large number of them moving away to 
run the DRM in those plugins (which is not sandboxed today, so it's much 
more dangerous than the sandboxed CDM) on a separate machine.



With a standard that supports a separate media player the user can
choose the tradeoffs between using an integrated player versus a
separate device. With the EME the user has less choice and thus less
control over their security and privacy.



Like I described above, this choice is given to the user through our 
prompt before we run the CDM for the first time.  Please note that what 
other browser engines have implemented thus far doesn't give their users 
this choice because they do not show a similar prompt.  The EME spec in 
itself doesn't specify anything to make it impossible to implement this 
prompt and give the choice of running the CDM code to the user.


Cheers,
Ehsan
_______________________________________________
governance mailing list
governance@lists.mozilla.org
https://lists.mozilla.org/listinfo/governance


























					Reply via email to