Feeds

Texas Instruments aims lawyers at calculator hackers

Is device modding a punishable offense?

Security for virtualized datacentres

Lawyers for Texas Instruments are taking aim at a group of calculator enthusiasts who posted the cryptographic keys used to modify the devices so they run custom-designed software.

Over the past few weeks, TI has sent webmasters letters invoking the DMCA, or US Digital Millennium Copyright Act (PDF), and demanding they remove the keys published in blog postings. The private keys are needed to sign operating systems before they work on a wide variety of calculator models designed by the Dallas-based electronics manufacturer.

Because TI generated the keys using extremely weak 512-bit ciphers, the hobbyists were able to crack the vast majority of them in a matter of weeks using an open-source project for distributed computing known as BOINC. The keys make it possible for them to write DIY versions of firmware that in some cases hasn't been updated in more than four years.

"Writing an operating system allows us to use the calculator in ways that are either very difficult or infeasible with TI's operating system," said Brandon Wilson, a 25-year-old programmer who's been writing his own calculator software for about a decade. "By writing our own, we can go about things our own way."

In late August, an attorney sent Wilson a letter warning that a posting on his website ran foul of TI's copyrights because it contained "information that bypasses TI's anti-circumvention technology" that could defeat encryption systems protecting the TI-83 Plus OS. Wilson quickly complied and removed the keys.

On Monday, the attorney struck again, this time against University of Washington student Duncan Smith, who had published the keys' raw materials on ticalc.org, a website dedicated to, well, TI calculators. Smith also took down the posting.

Neither hobbyist consulted with an attorney before caving in to the demands, and that may have been a mistake. According to two attorneys, it's not at all clear TI is using DMCA takedown provisions as Congress intended. What's more, modifications to calculators may be similar to unlocking cell phones, an activity the US Copyright Office has formally exempted from the DMCA.

"When websites publish these cracked keys, the websites aren't violating the copyright per se," said Eric Goldman a professor specializing in cyber law at Santa Clara University. Rather, "they might be violating provisions of the anti-circumvention rules under the copyright act."

While it's clear the DMCA requires websites to remove content that infringes copyright, courts have yet to weigh in on whether those provisions apply to material that makes it possible for others to defeat electronic locks protecting copyrighted works, he added.

Internet Security Threat Report 2014

More from The Register

next story
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
Special pleading against mass surveillance won't help anyone
Protecting journalists alone won't protect their sources
Phones 4u website DIES as wounded mobe retailer struggles to stay above water
Founder blames 'ruthless network partners' for implosion
Apple's iPhone 6 first-day sales are MEANINGLESS, mutters analyst
Big weekend queues only represent fruity firm's supply
Radio hams can encrypt, in emergencies, says Ofcom
Consultation promises new spectrum and hints at relaxed licence conditions
Bill Gates, drugs and the internet: Top 10 Larry Ellison quotes
'I certainly never expected to become rich ... this is surreal'
Big Content Australia just blew a big hole in its credibility
AHEDA's research on average content prices did not expose methodology, so appears less than rigourous
EMC, HP blockbuster 'merger' shocker comes a cropper
Stand down, FTC... you can put your feet up for a bit
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.