Sony sends 'dangerous' message with PS3 lawsuit, says EFF
Fight over PS3 jailbreak seen as effort to intimidate security researchers
Computerworld - A recent lawsuit filed by Sony Computer Entertainment Inc. against several security researchers for allegedly jailbreaking the company's PS3 hardware is evoking howls of protest from the Electronic Frontier Foundation (EFF).
In a blog post this week, the digital rights advocacy group called Sony's lawsuit (download PDF) a dangerous move designed expressly to scare security researchers away from looking at flaws in its products.
"The real point, it appears, is to send a message to security researchers around the world: publish the details of our security flaws and we'll come after you with both barrels blazing," the EFF wrote.
Sony did not respond to a request for comment.
Sony earlier this month filed a lawsuit against hacker George Hotz and two other people, one in Spain, the other in Hungary. The suit lists another 100 unidentified "John Does."
According to Sony, Hotz and members of a group of hackers calling themselves Failoverflow circumvented the PS3's anti-tampering measures designed to prevent users from installing or playing unauthorized software and video games on the system. Sony contends that the hack allows Hotz and others to run pirated games on the console.
In its complaint, Sony accused Hotz and the other defendants of not only breaking its anti-tampering technology but of then publicizing their findings at the Chaos hacker conference in Berlin in December. Sony alleges that Hotz and the others publicly talked about and widely distributed code and detailed instructions on how to jailbreak the PS3.
"Unless Defendants are immediately enjoined, users will be able to copy, create, sell and play unauthorized or pirated games without limit," Sony argues.
The lawsuit alleges that Hotz and the others violated the Digital Millennium Copyright Act and the Computer Fraud and Abuse Act, which carries both criminal and civil penalties.
But Corynne McSherry, intellectual property director at the EFF, called the Sony lawsuit misdirected and an attempt to intimidate security researchers.
Based on information in the complaint, the jailbreak appears to be the result of a security vulnerability that Hotz and the other defendants exploited. What Sony has done is to invoke the DMCA in an attempt to stop the researchers from publishing details of the security hole they discovered, she said.
In this case, the information has already been widely distributed "so it's not like they are going to be able to put the cat back in the bag again," she said. Enjoining the defendants now will mean that only Hotz and the others have no access to their own work, while everyone else that downloaded their instructions will. "This is clearly about punishment," McSherry said.
- Path Selection Infographic Path Selection Infographic
- Hyperconvergence Infographic A wide range of observers agree that data centers are now entering an era of "hyperconvergence" that will raise network traffic levels faster...
- Preparing Your Infrastructure for the Hyperconvergence Era From cloud computing and virtualization to mobility and unified communications, an array of innovative technologies is transforming today's data centers.
- How WAN Optimization Helps Enterprises Reduce Costs If you wanted to break down innovation into a tidy equation, it might go something like this: Technology + Connectivity = Productivity. Productivity...
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Legal White Papers | Webcasts