Gallery of CSS Descramblers

On January 20, 2000, United States District Judge Lewis A. Kaplan of the Southern District of New York issued a preliminary injunction in Universal City Studios et al. v. Reimerdes et al., prohibiting the defendants from distributing computer code for reading encrypted DVDs. The defendants had been sued under 17 USC 1201(a)(2), also known as section 1201(a)(2) of the Digital Millenium Copyright Act.

Judge Kaplan subsequently issued a memorandum order in which he indicated that executable source code was not subject to First Amendment protection against prior restraint of speech. This finding is contrary to that of the 9th Circuit US Court of Appeals, who ruled in the Bernstein cryptography case that source code is indeed protected speech. In their decision, The 9th Circuit even quoted some Scheme code from the declaration of MIT Professor Harold Abelson, explaining why source code is an effective and sometimes preferred means of human communication. Professor Andrew Appel of Princeton University also filed a declaration explaining the importance for computer science of being able to publish source code. More recently, the 6th Circuit US Court of Appeals ruled in the Junger cryptography case that, independent of its functional significance, the expressive nature of source code affords it First Amendment protection.

If code that can be directly compiled and executed may be suppressed under the DMCA, as Judge Kaplan asserts in his preliminary ruling, but a textual description of the same algorithm may not be suppressed, then where exactly should the line be drawn? This web site was created to explore this issue, and point out the absurdity of Judge Kaplan's position that source code can be legally differentiated from other forms of written expression.

Change Log as of 01/28/2004
Exhibit Description
Anonymous
C source code



Hoy filing
This is the source code for the CSS descrambling algorithm that was posted anonymously to the LiViD mailing list in October 1999. The C code was supposedly written by someone who disassembled a software DVD player to uncover the descrambling algorithm. It was this posting that led Frank Stevenson to conduct his analysis of the CSS encryption scheme.

The code was subsequently included in an unsealed (whoops!) legal filing by John Hoy, president of the DVD-CCA, in the California trade secret lawsuit against Andrew McLaughlin and 92 other defendants. Guess it's not a trade secret anymore. More about that here.

css_descramble.c

or

shortest-anonymous.c

or

Videolan's dvd_css.c

or

vobdec.cpp

These are different C implementations of the descrambling algorithm. css_descramble.c, by Derek Fawcus, is part of the css-auth package, which is a component of LiViD, a Linux DVD player. It is interesting to compare this implementation with the anonymous C source code to see how they differ in strategy. Fawcus' version uses fewer tables, and unrolls one of the loops. Such a comparison is only possible by examining the source code. Yet another implemenation, with only a single table, was produced by Frank Stevenson, and is less than 2,000 characters long.

A group of computer scientists from the École Centrale Paris have produced an open source DVD player called Videolan; its decryption module is here.

qrpff Perl code:
shorter
or
faster


Cotton version:
order the t-shirt
Two Perl implementations courtesy of MIT Student Information Processing Board members Keith Winstein and Marc Horowitz. The shorter one, qrpff, is 472 bytes (discounting newlines). The faster one, 531 bytes long, caches the permutation corresponding to CSStab1, and is actually fast enough to use to watch a movie. The program takes a five-byte title key on the command line (five decimal numbers in least to most-significant order, separated by colons) and an MPEG2 Program Stream VOB file on stdin, and outputs a decrypted version of the VOB file. Title keys can be obtained using VobDec. To play a movie whose title key is 0xcd302010fe, do: cat file.vob | perl -I 254:16:32:48:205 qrpff | extract_mpeg2 | mpeg2dec -

This work grew out of Keith's preparation for a 6-hour seminar on DVD decryption taught at MIT in Jan-Feb 2001. Suggestions for further shortening the code should be sent to sipb-iap-dvd@mit.edu. Recently featured in Wired, Slashdot, The Register, and ZDNet / USA Today / MSNBC. And now you can order the t-shirt.

efdtt.c:
The tiniest
known C
implementation

ASCII art
efdtt.c as a
DVD logo

This tiniest known C implementation, now just 434 bytes (discounting newlines), is also plenty fast. It originated with Charles M. Hannum, who then shrunk it further, and got additional suggestions for shrinkage from Phil Carmody. Mr. Hannum writes: "on my Mac G4 cube (running NetBSD, not MacOS), it can descramble in excess of 15MB/s [better than 10 times maximum DVD bit rate], ... without even particularly trying to optimize the I/O. This makes it pretty insignificant compared to the rest of the decoding process." He performed these measurements using artificial data; he would of course be in violation of 17 USC 1201(a)(1) if he used the code to watch a movie he had lawfully purchased. Author interview; article in The Register.

Here's an ASCII art version of efdtt.c by Alex Bowley.

Anonymous
SML code
This is a translation of the Anonymous C source code into Standard ML, a functional programming language popular among theoretically-oriented computer scientists. Since the code is purely functional, the author of this translation, a Carnegie Mellon undergraduate, says: Coupled with the ML definition, it's no stretch to think of it as a mathematical formula rather than a "device". Are mathematical formulas still protected speech? The student is taking no chances; he's asked to remain anonymous.
Mathematical
description

and

Mathematical
proof

Another mathematical description of the decryption algorithm, by Charles M. Hannum, who writes: "The mathematical description ... is very similar to how things like FFT algorithms are presented in journals. These are clearly scholarly works, and are vital to progress -- e.g. in the area of signal processing. And yet, even an average programmer can easily translate such a description directly into code."

Hannum's description inspired Ralph Loader to use the LEGO proof development system to generate a proof that any CSS-encrypted text can be decrypted. According to Loader: "a deep mathematical result called the Curry-Howard isomorphism ... relates mathematical proofs and computer programs. Applied to the theorem I proved, Curry-Howard states that any proof of that theorem is in fact a program implementing CSS. The theorem proving tool I used (LEGO) can actually run this program - albeit very inefficiently." Maybe theorem provers should be illegal too.

Merlin and Robby
explain Hannum's
decryption formula:
Javascript or
VBScript
These Javascript and VBScript routines use animated Microsoft Agents Merlin and Robby to explain Charles Hannum's CSS decryption formula to you. You must access these pages using Internet Explorer after having downloaded the agent software and character definitions from here. Maximize the browser window for best effect. Animation courtesy of anonymous contributor anniepoo. If you don't run Windows, just view the source files to see the dialog.
css_descramble.scheme

css_descramble.java
DiatriBe's Java code

css_descramble.js
css_descramble.php
css-auth.pascal.zip

pure lambda calculus

or

descrambler written
in Brainfuck

This translation of css_descramble.c into the Scheme programming language was contributed by John R. Hall. Scheme is a variant of Lisp popular among academic computer scientists. Here is a Java version contributed by Gavin Hall, and another Java version by anonymous author DiatriBe. And here is a JavaScript version by Shlomi Fish and Chen Shapira of Hackers-IL, along with some HTML code to activate it. This PHP version, based on their work, was sent in by Tom Stepleton. And Bruce Christensen sent in a Pascal translation of the css-auth routines.

An anonymous author contributed a CSS descrambler in pure lambda calculus, where even integers are represented as functions. Is this "code"? Or is it pure mathematics?

The same author also produced a descrambler written in Brainfuck, a Turing machine-like language with only eight operators. A truly minimalist description of the algorithm.

page1.gif
page2.gif
page3.gif
Screen dump of the CSS descrambling code.

This is not the source code; it's a picture of the source code. These GIF files are not directly readable by a C compiler.

However, a human looking at these images could certainly type the C code into a text file. Or the files could perhaps be converted automatically, by an OCR program.

Are these page images considered an illegal "circumvention device" under the DMCA? Or, since they're not executable, are they protected speech?

new-language.txt Here is an implementation of the descrambling algorithm in a new programming language for which no compiler currently exists. This language, similar to C, was invented by Dave Touretzky. Since the code in this form is not executable, it is presumably protected speech. But if someone writes a compiler for this language, would Dave Touretzky then become liable for trafficking in a circumvention device under section 1201 of the DMCA?
plain-english.html A description of the descrambling algorithm in plain English, written by Dave Touretzky. This description is not machine readable, but it can easily be translated into C code by a knowledgeable C programmer. It could not be translated by a non-programmer, or a machine. Is it therefore protected speech?

If natural language processing technology advances to the point that a machine could translate this English text into executable code, could the text then be suppressed under the DMCA?

css-auth.eng

and

css-auth.babel-eng

In October, 2000, Omri Schwarz released Perl scripts for automatically translating C to English, and English back to C. Here is the English version of css-auth.c that it produces, called css-auth.eng.

Another C-to-English-to-C tool, called BabelBuster, has been released by Jonathan M. Baccash of Princeton University in April, 2001. This work was Jonathan's senior thesis. Here is his version of css-auth in English.

english-and-c.html Another version of the descrambling algorithm in plain English, but this time each line is annotated with the equivalent statement written in the C language. This description is not directly machine readable because the C code is interspersed with English text and HTML formatting instructions. But the C code can easily be extracted from the document, and this requires less skill than translating the English into C. Can this text document therefore be suppressed under the DMCA?
decss-haiku.txt DeCSS Haiku: this ingenious poem by Seth Schoen is both a commentary on the DeCSS situation and a correct and complete description of the descrambling algorithm. Truly inspired. (Original version February 12, 2001, published anonymously; minor revisions sent by author on February 23.) You can read about the poem in this Wall Street Journal article, or read Seth's own account of its history now that he's dropped anonoymity.
Cryptanalysis
of CSS
This is an analysis of the CSS algorithm by Frank Stevenson, along with a description of various attacks on the encryption scheme. Please see our Frank Stevenson archive for more documents and program examples.

And here is a more accessible tutorial on CSS by Gregory Kesden. Should these lecture notes, taken from a course taught at Carnegie Mellon University, be declared illegal? What about this case study on CSS by Jason Cherry?

DeCSS T-shirt
or
qrpff t-shirt
from CopyLeft


qrpff tie
from
The Digital Group

The source code for css_descramble.c was available on the back of this t-shirt from CopyLeft. (Don't try ordering from them now.) Copyleft was sued for their trouble. Also offered: "I am a circumvention device" t-shirt with the qrpff Perl code on the front.

The Digital Goroup was offering this qrpff tie, with the Perl decryption code. Click here for a close-up view.

Are sales of these clothing items banned under the DMCA?

Would merely wearing one of these in public constitute "trafficking in a circumvention device" as defined in section 1201 of the DMCA?

Dramatic reading

or

Code set to music

or

Square-dance version


Code as music:
Schrepfer
Castleman

MP3
file A dramatic reading of the file css_descramble.c, read by Xader Vartec. This is a 3.5Mbyte MP3 file; it runs 7 minutes and 20 seconds.

Joe Wecker of the band Don't Eat Pete recorded a musical version of my "plain English" rendition of the source code, with musical accompaniment. This is a 7.2Mbyte MP3 file that runs 7 minutes 28 seconds. Transcript courtesy of Keith Dawson of tbtf.com. Shane Killian later did a hilarious square dance version. Both songs have been banned from MP3.com. Are these kinds of "artistic performances" covered by Judge Kaplan's injunction?

Jeff Schrepfer turned the code directly into music, as a MIDI file. The file was created by starting with the source code and "removing all the white space, then transforming each ASCII character into a single 32nd note of its midi equivalent (midi notes, like ASCII characters, are coded into values ranging from 1 to 127.)" Mike Castleman improved on this by encoding whitespace and newlines in the note lengths.

css-auth
inspired
audio CD
A CD called Circumvention Device offers "an MP3 compilation of sound artists and musicians from around the world using the css_descramble.c source code as an artistic element in their work," courtesy of Chicago-based art and technology center Deadtech. Tracks may also be downloaded directly from the web site.
DeCSS The Movie

and

Stairs of Freedom

Left: DeCSS The Movie, by Samuel Hocevar and friends. Watch the code scroll by in a Star Wars-like MPEG animation. This is method #40 in Hocevar's list of 42 ways to distribute DeCSS. Right: Stairs of Freedom, by Anders Sandberg, another DeCSS animation.
DVD logo
in css-auth source
This DVD logo formed out of the characters in the css-auth source was generated by someone using the MosASCII tool created by Robert DeFusco. The intensity changes are accomplished by changing the font color every few characters.

To view the entire source, click on "Select All" from your browser's Edit menu.

Circuit
implementation

in Verilog,
with pictures

A toy
implementation

Highly optimized
implementation

(very few gates)

Verilog is a hardware description language. Here is the Verilog source for an actual circumvention device, contributed by anonymous author DAH, who writes: "not only can a human read the source, and a simulator interpret it, but with other quasi-pushbutton tools you could configure an FPGA (or fab an ASIC) with it. The README.txt explains more." This is not a device; it's just a description of a device. Should it be illegal to distribute this circuit description? Here's another Verilog implementation by an anonymous author.

Tony Bybell contributed a highly optimized Verilog implementation based on the mathematical formulation of the decryption algorithm by Charles Hannum.

Yahoo greeting card Someone sent me a Yahoo electronic greeting card with the source code for css_descramble.c as the message (plus a two-for-one coupon for a Slurpee). Yahoo greeting cards expire after 60 days, so this file would have been good through the end of October, 2000, but Yahoo pulled it on September 13 after the Salon article referenced it.
2001 Onteora
High School
yearbook
Erik Michaels-Ober included a piece of the css-auth source in his 2001 Onteora High School yearbook entry, along with a quote from Thomas Jefferson: "The people are the only sure reliance for preservation of our liberty." What's remarkable is that Erik didn't sneak the code into the yearbook; he explained his motivations and received official permission from the school to publish it.
The New York Times linked to 2600 magazine's list of DeCSS mirrors in a CyberLaw Journal column published on April 28, 2000. Such a link may be illegal according to Judge Kaplan's ruling, although this affidavit by Richard J. Meislin, editor in chief of New York Times Digital, says it is "sound and appropriate journalism".
Visit our Steganography Wing to see many additional creative ways to encode the source for the decryption algorithm, including as a prime number.

As long as I am mayor of this city [Jersey City, New Jersey] the great industries are secure. We hear about constitutional rights, free speech and the free press. Every time I hear these words I say to myself, That man is a Red, that man is a Communist. You never hear a real American talk like that.
        -- Frank "I am the law" Hague (1896-1956)          (Quote provided by Marina Brown.)

New York DVD Trial and Its Sequelae
My declaration referencing this Gallery
Other declarations that reference mine: Schumann, Gold, Boyden
My deposition, discussing the Gallery and other things
My testimony at trial, and the Source vs. Object Code essay referenced therein.
Defendant's post-trial brief, August 8, 2000. (Cites Touretzky testimony that code is expressive speech)
Plaintiff's post-trial brief, August 8, 2000. (Unsupported argument that code is not speech; evasive about the Gallery exhibits)
Judge Kaplan's decision, August 18, 2000 (see footnotes 183 and 275)
EFF document archive for this case.
Amicus brief filed in the appeal to the 2nd Circuit, co-sponsored by Touretzky and many other computer scientists. January 23, 2001.
MPA legal threat against this web site, my reply, and their acknowledgement. (February-March, 2001)
My Viewpoint piece in the Communications of the Association for Computing Machinery (vol. 43, August 2001, pp. 23-25)
My slides from A Great Debate: Is Computer Code Protected Speech?, November 30, 2001, at Carnegie Mellon University. Michael Shamos v. David Touretzky; moderated by Peter Shane. Peter Shane's and Michael Shamos' slides are here (Powerpoint). You can also watch the video (Windows media). More info is available in this article from The Tartan.

How Did We Get Into This Mess?
Jessica Litman's book, Digital Copyright, is the best explanation you will find of how the current copyright situation came about. You can read chapter 2 online for free. Basically, since 1909 copyright law has been written by committees of lawyers for various content-producing industries, each looking out for their own group's interests. No one effectively represented the public's interest; those groups that tried to do so lacked the political clout to influence legislation. Professor Litman's interview with the Chronicle of Higher Education appeared on October 12, 2001.
The OpenLaw DVD FAQ is an authoritative source of information related to DVD encryption, the DeCSS software, applicable law, and the various legal cases in progress. Also see the (anti)-MPAA FAQ.
Charles C. Mann's thoughtful essay on copyright issues in the September, 1998 edition of Atlantic Monthly is well worth reading, as is the excellent roundtable discussion among Mann, John Perry Barlow, Lawrence Lessig, and Mark Stefik.

Media Coverage of the Gallery or Testimony
EFF Press Release, July 25, 2000 (EFF Detonates Mind Bomb on Final Day of DVD Trial)
Associated Press, July 26, 2000
Hollywood Reporter, July 26, 2000 (story by Ian Mohr)
The Industry Standard, July 26, 2000 (story by Jeff Howe)
The Micro Times, July 26, 2000 (story by Steven Bonisteel)
New York Times, July 31, 2000 (by Amy Harmon; front page of Business section)
Slashdot, July 31, 2000 (sparked by NY Times story)
The Industry Standard, July 31, 2000 (story by Chris Howe)
Slashdot, August 1, 2000 ("If you can put it on a t-shirt, it's speech")
Wired, August 2, 2000 (by Farhad Manjoo; focuses on the DeCSS t-shirt)
The Village Voice, August 2, 2000 (by Jeff Howe)
Newsday, August 6, 2000 (by Clive Thompson: Is Software Free Speech?)
Pittsburgh Post-Gazette, August 7, 2000 (by Byron Spice; front page!)
Salon, August 7, 2000 (by Damien Cave)
CBS News, August 9, 2000 (story by Chris Hawke)
Videobusiness.com, August 7, 2000 (by Paul Sweeting)
Newsday, August 10, 2000 (by Rita Ciolli: "Key Witness in Internet Drama") [link expired]
Washington Post, August 18, 2000 (by David Streitfeld; page E01)
Pittsburgh Tribune-Review, August 21, 2000 (by Bill Zlatos)
Linux World, August 22, 2000 (by Deborah Durham-Vichr)
TBTF.com, August 24, 2000 (by Keith Dawson)
Washington Post, August 25, 2000 (by Rob Pegoraro; page E01)
The Standard, September 4, 2000 (by Keith Dawson)
Salon, September 13, 2000 (a substantial interview, with Damien Cave)
Slashdot, September 13, 2000 (discussion of the Salon interview)
USA Today, September 21, 2000 (Hot Sites section)
Wired, November 17, 2000 (article on Judge Kaplan by Declan McCullagh)
The Chronicle of Higher Education, February 16, 2001 (by Andrea Foster)
Slashdot, February 25, 2001 (DeCSS Haiku and reply to MPA threat letter)
Linux Today, February 27, 2001 (reply to MPA threat letter)
Wired, March 7, 2001 (Perl descrambler, MPA letter)
Slashdot, March 7, 2001 (Perl descrambler)
The Register, March 8, 2001 (Perl descrambler)
ZDNet, March 8, 2001 (by Rob Lemos: Perl descrambler) -- also carried by USA Today and MSNBC
Geek.com, March 8, 2001 (Perl code; Gallery of Descramblers)
The Register, March 13, 2001 (tiniest known C implementation)
Geek.com, March 13, 2001 (Hannum code; Gallery of Descramblers)
Digital Coast Daily, March 14, 2001 (Hannum interview; Gallery and free speech)
SiliconValley.com, March 14, 2001 (scroll 2/3 down: Gallery, Hannum code)
Le Monde, March 16, 2001. English translation here.
TBTF.COM, March 16, 2001 (Phil Carmody's prime encoding)
Video Business, March 19, 2001 (by Ann Donahue)
The Independent, March 19, 2001 (by Chris Gulker; also available here
Wired News, March 20, 2001 (by gonzo journalist Declan McCullagh)
Vilaweb.com, March 21, 2001 (in Catalan; based on Wired News article)
ACM Technews, March 21, 2001 (quotes from Wired News profile)
The Bangkok Post, March 28, 2001
New York TimesCyber Law Journal, March 30, 2001 (by David Gallagher)
Premier, March 2001 issue ("Hack to the Future", by Janet Shprintz)
Milwaukee Journal Sentinel Online, March 31, 2001 (by Jim Higgins; DeCSS haiku)
Neue Zurcher Zeitung, April 7, 2001 (in German)
April 12, 2001 (by David Hamilton)
01net.com, April 23, 2001 (in French; includes an interview with Samuel Hocevar)
Tech TV, April 24, 2001 (live interview on "Screen Savers" TV show; supplementary info webbed)
Scientific American, May 2001 issue (News Scan: In Brief)
Linux User (UK), May 2001 issue (PDF format; article name "Prime suspect: a story of encryption, piracy, farce, and the film industry")
Newsday, May 1, 2001, p. A45 (by Rita Ciolli: Appeals court hears case on DVD code)
USA Today, May 2, 2001 (editorial: Hollywood's Hush Tactics)
San Francisco Chronicle, May 3, 2001 (by Benny Evangelista)
Liberation, May 9, 2001 (Liberation is a prominent French newspaper)
CMU School of Computer Science, June 28, 2001 (by Jai Glasgow)
Technology Review, July 1, 2001 (by Simson Garfinkel)
Communications of the ACM, August, 2001 (Viewpoint piece by David S. Touretzky: Free speech rights for programmers)
The Chronicle of Higher Education, August 10, 2001 (by Andrea L. Foster; interviews with four CMU faculty members)
BarraPunto.com (the Spanish SlashDot), August 28, 2001 (interview in Spanish; scroll down for Enlgish version)
The Vigil of Planetary NetArt, October 2001 (selection by John Ippolito)
Los Angeles Times, November 3, 2001 (Dave Wilson on California appeals court trade secret ruling)
The Tartan, December 4, 2001 (by John Davin, on the Shamos-Touretzky debate)
The New York Times, December 9, 2001
BYTE magazine, January 21, 2002 (op-ed piece by Shannon Cochran)
Illegal Art, October 2002, with gallery showings in New York and Chicago. Sponsored by The Center for Media, Culture, and History at New York University.
News.com, January 2, 2003 (by Declan McCullagh; links to the Gallery)

To Experiment with DVD Technology
Doom9's MPEG Palace provides both source code and executables for a variety of programs for decrypting DVD movies, compressing them to DivX format, and playing them.
AfterDawn.com offers downloadable software plus helpful technical information, explaining things like how various ripping programs work.
Expert Guide to Copying DVDs. The ad copy says: "The Expert Guide to DVD Ripping is a 90+ page tutorial that will teach you EVERYTHING you need to know about DVD Ripping and DeCSS. It also includes all the DVD ripper tools and featured reviews of DVD decoder software such as CladDVD, Smart Ripper and more." Published by New Venture Marketing, located in North Vancouver, British Columbia (Canada).
Dave Wilson, technology editor for the LA Times, has a March 15, 2001 article about these web sites. The MPAA wants to ban them, but many are outside the US.
Popular open source or GPLed DVD player programs include Videolan (from France), Ogle (from Sweden), and Xine. Xine requires a plugin to add CSS decryption capabilities; several different plugins are available. The most recent is DVDNAV at dvd.sf.net. Another, called d4d, was released by Captain CSS. A now obsolete plug-in can be found at kuroyi.net.
csscat version 0.2 is a Linux utility that decrypts and copies VOB files to a hard drive. It's based on the libdvdcss library from Videolan. Here's the gzipped tar file.
Looking for the source code to the original DeCSS program (as a matter of purely historical interest)? It's available: DeCSS.c. There's also DeCSSplus, which improves upon the original DeCSS by replacing the Xing player key with Frank Stevenson's cryptographic attack on the title key.
Another comprehensive source of information about programs to decrypt DVDs or modify DVD players (e.g., to remove region coding) is Oleg's DVDsoft.

USA TODAY AWARD              Return to the main DeCSS page


Gallery curator: Dr. David S. Touretzky, Computer Science Department, Carnegie Mellon University

The Gallery is a scholarly publication. Cite it as follows:

Touretzky, D. S. (2000) Gallery of CSS Descramblers. Available: <http://www.cs.cmu.edu/~dst/DeCSS/Gallery>, (access date).

For more information on citation of web sites in scholarly publications, see How to Cite a Website or visit APAStyle.org.

Also visit the Gallery of Adobe Remedies.


Last modified: Wed Feb 13 21:39:39 EST 2008