I've asked this question on the list every couple of months and I'm
still
quite shocked that no one has built something that's secure, API-level
and
multi-platform for one of the most popular digital media technologies
out
there! Is this still the case?
I think it's been kind of a wait and see game. Who wants to build a
solution on a architecture that might change in a few years? Apple's
push towards MEPG-4 and the lack of progress in the wired sprites and
component download areas and the lack of SSL support have been
deterrents in coming up with a solution (at least for me).
To do it right, Apple would probably need to implement it at the
architectural level. The client-side stuff (like wired sprites) only
works to a point. The savvy users can easily circumvent it. There is a
tutorial on QuickTiming.org if you're interested, that explains a level
of security above just copy-protecting your movies.
http://www.quicktiming.org/tutorials/drm.php
MPEG-4 does have a layer for intellectual property management and
protection. The ISMA (which Apple is a part of) has a specification for
encryption and authentication.
http://www.isma.tv/specreq.nsf/SpecRequest
As AVC becomes more widespread, perhaps more companies with take a
closer look at it.
To me, it's a matter of how much time do I want to spend on a solution
that a 15 year old can easily break? I'm looking forward in seeing
MPEG-4 gain some momentum. The standards ship can sure be slow at
times. :-)
