Archive for the 'interoperability' Category

FTC Hearing: DRM Interoperability


This morning, I had the pleasure and honour to speak – “as the European voice” – at the FTC hearing on “Protecting Consumers in the Next Tech-ade” (check out the official weblog for more information and summaries of the discussion.) I was asked to report about the legal and regulatory discussions on DRM in Europe and to focus on DRM interoperability in particular. The latter question is also part of an ongoing research collaboration between the Berkman Center at Harvard Law School and our St. Gallen Research Center for Information Law. The research project is aimed at exploring the interaction between interoperability and e-innovation, an important aspect that was only briefly mentioned at today’s hearing.
Here is the longer and slightly modified (links added) written version of my statement. For a more detailed discussion, check out the excellent paper “DRM Interoperability and Intellectual Property Policy in Europe” by Mikko Valimaki and Ville Oksanen.

Over the past few years, much of the legal/regulatory debate in Europe about DRM has focused on the legal protection of technological protection measures and its ramifications for the digital ecosystem, because EU member states have faced the challenge to transpose the rather vague EU Copyright Directive into their national laws and comply with the relevant anti-circumvention provisions of the WIPO Internet Treaties.

Introducing and harmonizing anti-circumvention laws across Europe has been a long and an enormously controversial process. As far as DRM is concerned, three topics in particular have caused heated controversies:

  • DRM and its legal protection vis-à-vis traditional limitations on copyright such as the “right” (or privilege) to make copies for private purpose;
  • DRM and “fair compensation”;
  • DRM and interoperability.

Given our panel’s topic, please let me address the interoperability issue in some greater detail – a topic that has gained much attention in the context of iTunes’ penetration of the European market, esp. in France.

At the European level, though, no coherent DRM interoperability framework exists, although DRM interoperability has been identified as an emerging issue by the European Commission, which has established – among other things – a multi-stakeholder High Level Group on DRM that has also addressed DRM interoperability issues.

The lack of specific and EU-wide DRM interoperability provisions leaves us with three areas of law that address this issue more generally, both at the EU level as well as the level of EU member states. The areas are: copyright law, competition law, and consumer protection law.

Copyright Law

The EU Copyright Directive, mandating the legal protection of DRM systems, does not set forth rules on DRM interoperability. Recital 54 only mentions that DRM interoperability is something member states should encourage, but does not provide further guidance and seems to trust in the market forces. However, one might argue that the anti-circumvention framework itself allows the design of interoperable systems – e.g. a music player able to play songs encoded in different DRM standards – by outlawing only trafficking in such circumvention devices that are (inter alia) primarily designed and marketed for circumvention of effective TPM. Along these lines, at least one Italian Court has ruled – in one of the Bolzano rulings – that the use of modified chips aimed at restoring the full functionality of a Sony PlayStation (incl. its ability to read all discs from all markets despite region coding) is not illegal under the EUCD’s anti-circumvention provisions.

At the EU member state level, France has taken a much more proactive approach to DRM interoperability. A draft of the revised copyright law (implementing the EUCD) introduced an obligation of DRM providers to disclose interoperability information upon requests without being compensated. This “lex iTunes” has triggered strong reactions by the entertainment industry, and the final version of the law softened up the original proposal. Current French law states that a regulatory authority mediates interoperability requests on a case-by-case basis. Under this regime, too, DRM providers can be forced (under certain conditions) to disclose interoperability information on non-discriminatory terms, but they now have the right to reasonable compensation in return.

Competition Law

The baseline is: Competition law in Europe may become relevant in cases where a company with a dominant market position refuses to license its DRM standard to its competitors. However, to date, there exists no case law at the EU level where competition law has been applied to the DRM interoperability problem. But there are important cases (IMS Health and Magill, but also the anti-trust actions against Microsoft) illustrating how competition law — at least in exceptional circumstances — can give the need for interoperability more weight than the IP claims by dominant players. In France, Virgin Media tried to use competition law as an instrument to enforce access to iTunes FairPlay system. The French competition authority, however, has ruled in favour of iTunes, partly because it considered the market for probable music players to be sufficiently competitive (click here for more details).

Consumer Protection

From a consumer protection law perspective, three issues seem particularly noteworthy. First, the Norwegian Consumer Ombudsman has been very critical about Apple’s iTMS interoperability policy in response to a complaint by the consumer council. The Ombudsman argues that iTMS is using DRM and corresponding terms of services to lock its consumers into Apple’s proprietary systems.

Second, a French court fined EMI Music France for selling CDs with DRM protection schemes that would not play on car radios and computers (check here and here). EMI violated consumer protection law because it did not appropriately inform consumers about these restrictions. The court obliged EMI to label its CDs with the text: “Attention – cannot be listened on all players or car radios”.

Third, a recent proposal by the European Consumers’ Organisation proposes to include DRM in the unfair contract directive. The idea behind it is that consumer protection authorities should also be able to intervene against unfair consumer contract terms if the terms are “code-” rather than “law-based”.

John Clippinger Quoted in the Boston Globe


Today, the Boston Globe runs a story about a promising cross-industry project on user-centric identity that is directed by my colleague Dr. John Clippinger at the Berkman Center for Internet and Society, Harvard Law School. It has now become public that the Berkman Center together with an industry consortium of tech companies, including IBM Corp. and Novell Inc., is working on an open security project – code-named Higgins – aimed at creating code that gives users more control over their online identities. John is quoted as follows:

“For individuals, such a system promises a ‘single sign-on’ enabling the sharing with third parties of personal information, ranging from bank and credit card accounts to medical records and phone numbers, said John H. Clippinger, senior fellow at the Berkman Center at Harvard Law School.

Clippinger said the system will enable people to share tiers of their digital data with different parties, giving broader access to doctors, for example, than to cable companies.

‘The web wasn’t designed with a security layer in it, so we’re addressing that missing piece,’ Clippinger said. ‘This is a whole new system called ‘open security’ where the control point is the individual.’

Recently, I commented on this blog on the merits of user-centric identity systems – sometimes referred to as Identity 2.0 – from a privacy perspective. After the discussions at the workshop mentioned in the previous post, I’m more convinced than ever that the approach taken by Clippinger et al – despite remaining challenges, which, BTW, were fully acknowledged by the leading technologists at the workshop – has the potential to solve some of the thorniest pivacy issues on the web.

I trust that we’ll get back to this issue before the June conference mentioned in the Globe. In any event, stay tuned.

EU Court rules against Microsoft

0 and others report that the European Court of First Instance today dismissed Microsoft’s application for interim measures in its entirety, since Microsoft “has not shown that it might suffer serious and irreparable damage as a result of implementation of the contested decision.”

iLaw on Digital Media, EUCD, and OSS


Yesterday was the IP-day at iLaw Eurasia, a five-day program about ICT policy organized by the Berkman Center, the eGovernance Academy Estonia, the Center for Democracy and Technology, the Advanced Network Research Group at the University of Cambridge, and the Open Society Institute. In the first session, Professor Terry Fisher provided a fantastic introduction to IP law in cyberspace in general and the current tussles over digital media in particular. He also analyzed and evaluated scenarios for the future of digital media, including approaches such as strengthening IP rights, self-help, and alternative compensation systems. I had the pleasure to talk about the implementation of the EU Copyright Directive and discuss basic policy approaches and -choices in the context of anti-circumvention legislation. We used the implementation of the EUCD as an example to illustrate some of the thorny problems often associated with the transposition of EU-IP directives and harmonizing treaty law more generally: Scope and definitions, exceptions and limitations, and sanction and remedies.

In a second module, we were discussing IP protection of computer software. Terry started the session with an excellent lecture, offering a comprehensive overview of the different approaches to – and the evolution of – software protection by law. Much of the subsequent discussion, most ably led by Berkman Center’s Excecutive Director and iLaw program chair John Palfrey, was about the promise of Free/Open Source Software in Eurasia. Many of the fifty representatives from government, the private sector, and civil society in Eurasia emphasized the important role of OSS in creating a more sustainable information industry in economically less developed countries. However, we also discussed potential problems related to OSS, such as documentation, training, maintenance, etc., and legal risks associated with it. In this context, we touched upon potential concerns such as liability and (increased?) exposure to IP litigation – a much discussed topic here and abroad, given recent litigation in the U.S.

Our fabulous Mary Bridges, Communication Director at the Berkman Center, has summarized some of the take-away points from yesterday’s discussion.

Log in