Apple conceals buyer data in DRM-free iTunes tracks
LATEST NEWS
SUBSCRIBE
Computerworld is New Zealand's only specialised information systems fortnightly. Subscribe now for $100 (23 issues) and save more than 37% off the cover price!
SIGN UP
The data added to noncopy protected files purchased on iTunes can be viewed after the track is played, says security blog
By Gregg Keizer | Framingham | Monday, 4 June, 2007
A security researcher has warned iTunes customers that Apple encodes the buyer's account name and email address in the new DRM-free tracks that debuted on Wednesday last week.
The data added to noncopy protected files purchased on iTunes can be viewed after the track is played by pulling up its File Info dialog in Mac OS X, said "mordaxus," one of the regulars who writes on the security blog Emergent Chaos.
"They [Apple] aren't the only one to watermark the files," said mordaxus, who pointed out that eMusic does something similar.
All iTunes files include the name on the buyer's account and the associated email address — not just the new DRM-free tunes. But their inclusion on noncopy protected songs is significant, mordaxus said, because some people might be tempted to share bought music on a peer-to-peer (P2P) network.
"If you're going to put music files up a P2P network, you cannot be paranoid. They are out to get you," said mordaxus. "It would be folly to take any music you bought from any service and serve it up."
The Unofficial Apple Weblog posted a three-step set of instructions on how Mac OS X users can use Terminal to dig into an iTunes Plus file.
Apple did not returns calls asking why iTunes tracks, whether protected by DRM or not, contain buyer data.
MOST POPULAR
Social Media @Computerworld NZ
Computerworld NZ has now reached LinkedIn! Join to expand your networks and meet others interested in information systems.
