I put a very rarely used EDITOR comment when I posted this on OpenStandards.net because I'm having a really hard time understanding how this is supposed to work with open source. It's obvious why Mozilla is not in this group. This cannot possibly be good for Firefox, my favorite browser for privacy and security. I'm having a hard time understanding their plan for open source browsers. This is what they have today (emphasis added):
5. Simple Decryption
All user agents must support the simple decryption capabilities described in this section regardless of whether they support a more advanced CDM. This ensures that there is a common baseline level of protection that is guaranteed to be supported in all user agents, including those that are entirely open source. Thus, content providers that need only basic protection can build simple applications that will work on all platforms without needing to work with any content protection providers.
What exactly does this "basic protection" that open source browsers will be limited to provide? What is a "simple application"?
You look under this, and unless I'm missing something, all they have for open source browsers is an encryption key for clear text! WHAT?!? Why on earth would anyone want to use "a plain-text clear (unencrypted) key ... to decrypt the source". Is this where open technical standards are going?
Techdirt has not posted any stories submitted by OpenStandards.net.
Open source?
I put a very rarely used EDITOR comment when I posted this on OpenStandards.net because I'm having a really hard time understanding how this is supposed to work with open source. It's obvious why Mozilla is not in this group. This cannot possibly be good for Firefox, my favorite browser for privacy and security. I'm having a hard time understanding their plan for open source browsers. This is what they have today (emphasis added):
What exactly does this "basic protection" that open source browsers will be limited to provide? What is a "simple application"?
You look under this, and unless I'm missing something, all they have for open source browsers is an encryption key for clear text! WHAT?!? Why on earth would anyone want to use "a plain-text clear (unencrypted) key ... to decrypt the source". Is this where open technical standards are going?