ie8 fix
madison

Hardware 2.0

Adrian Kingsley-Hughes
Home / News & Blogs / Hardware 2.0

Amazon's Kindle for PC DRM busted

By | December 23, 2009, 4:18am PST

It seems that an enterprising hacker has busted Amazon’s Kindle for PC DRM.

The hacker, going by the name i♥cabbages, has released an app called Unswindle that decrypts Kindle content and transforms them into Mobi format.

The hacker seems to have some admiration for Amazon’s DRM implementation on the PC:

The Kindle proper and Kindle for iPhone/iPod app both use a single “device” encryption key for all DRMed content. K4PC uses the same encryption algorithms, but ups the ante with a per-book session key for the actual en/decryption. And they seem to have done a reasonable job on the obfuscation. Way to go Amazon! It’s good enough that I got bored unwinding it all and just got lazy with the Windows debugging APIs instead.

It’s been possible to decrypt some Amazon Kindle content for some time using a tool called MobiDeDRM, but this is the first time that it’s been possible to decrypt Kindle content on the PC. Given that even hardcore DRM such as that implemented on Blu-ray discs was busted, the chances to Amazon’s DRM holding out for long was negligible.

Note: I say that it’s possible to decrypt some files as opposed to all files because there’s no way to decrypt “Topaz” files which contain embedded fonts.

Big business versus the lone hacker is a cat and mouse game. I guess that either Amazon’s lawyers or programmers will be working over the Holidays, depending on which counterattack the book giant takes.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Hardware 2.0”

Topics

PC, Amazon.com Inc., Hacker, Amazon Kindle, K4PC, Digital Rights Management (DRM), Hacking, Digital Media, Security, Consumer Electronics, Personal Technology, Adrian Kingsley-Hughes

Adrian Kingsley-Hughes is an internationally published technology author who has devoted over a decade to helping users get the most from technology.

Disclosure

Adrian Kingsley-Hughes

All opinions expressed on Hardware 2.0 are those of Adrian Kingsley-Hughes. Every effort is made to ensure that the information posted is accurate. If you have any comments, queries or corrections, please contact Adrian via the email link here. Any possible conflicts of interest will be posted below. [Updated: February 23, 2010] - Adrian Kingsley-Hughes has no business relationships, affiliations, investments, or other actual/potential conflicts of interest relating to the content posted so far on this blog.

Biography

Adrian Kingsley-Hughes

Adrian Kingsley-Hughes is an internationally published technology author who has devoted over a decade to helping users get the most from technology -- whether that be by learning to program, building a PC from a pile of parts, or helping them get the most from their new MP3 player or digital camera.

Adrian has authored/co-authored technical books on a variety of topics, ranging from programming to building and maintaining PCs. His most recent books include "Build the Ultimate Custom PC", "Beginning Programming" and "The PC Doctor's Fix It Yourself Guide". He has also written training manuals that have been used by a number of Fortune 500 companies.

Adrian also runs a popular blog under the name The PC Doctor, where he covers a range of computer-related topics -- from security to repairing and upgrading.

42
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Amazon's Kindle for PC DRM busted
FAULKNE 13th Oct
Good day to confirm this comment I would appreciate T h e b e s t o f Z D N e t d e l i v e r e d your website very nice to everyone Yes, Oracle is the only one with shared-disk architecture, but that is there advantage. It means you can add or remove nodes and the database lives on. In a shared nothing architecture, if you lose a node, you lose the system. I'm sure Oracle appreciates EMC highlighting their advantage.I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate Awesome post! Thank you very much || thanks for nice content this is really benefit to me.
View in thread
0 Votes
+ -
Verses v. Versus
bmgoodman 23rd Dec 2009
I'm sure you meant "versus" rather than "verses" near the bottom of your column. Please send me an additional search coupon to reward my helpfulness!

Happy Holidays to all!
0 Votes
+ -
The coupon...
Bill4 23rd Dec 2009
...works great! I'd thought there'd be a free search with one the engines but you get a Yahoo, Bing, and Google search with it!
0 Votes
+ -
Lone hacker?
John Zern 23rd Dec 2009
Probally a heck of alot more working to break the DRM then just a lone hacker.

The only reason we hear about it is because he/she did it.
0 Votes
+ -
There is no try. Do or not do.
compufixer 25th Dec 2009
nt
0 Votes
+ -
windoze is so lame
Linux Geek 23rd Dec 2009
that hackers would break encryptions so easy.
Only Linux is safe for encrypted books.
0 Votes
+ -
No method of encrypytion is safe ...
mrlinux 23rd Dec 2009
if you ship the keys to decrypt it, even if the key is bundled in an application or a piece of hardware.
0 Votes
+ -
I don't agree.
compufixer 25th Dec 2009
If the key were to identify its owner, say by name and address, that would discourage a lot of the common 'sharing' behavior.
0 Votes
+ -
Nope, I'd Hide Behind "Just War Theory!"
mistermachine Updated - 25th Dec 2009
IMO, I'd simply counter with "just war theory!" i.e. "The content
producers 'ripped me off for years' and the only way to encourage
better market practices is to 'go to war!'"

That's "Obama's endorsed approach" and it makes sense since--
swapping words-- "paying for things didn't lead to 'fairer prices' so a
different strategy was needed!" IMO, Wal-Mart followed this strategy
and took on the high margins of "mom and pop" shops.

Of course, once the people start revolting, the "content producers"
can't do a thing since-- once public opinion starts shifting-- and "rule
of law" is redrafted in their favor, there's no going back!

As we know, BlockBuster is starting to collapse and the bookstores are
too; Border's imploding, I've heard.

War is Peace; Peace is War!
0 Votes
+ -
amazon sells books at a loss
rogerv 26th Dec 2009
At $10 a book amazon is
selling them at a loss.
Their strategy seems to be
to take that loss in order
to try establish a beach
head for digital readers.

Talks of unfair pricing is
complete nonsense. It's
just a lame excuse that
people that would tend to
steal content trot out to
soothe their conscious and
justify themselves.
0 Votes
+ -
Actually if you give them the key to decrypt it...
mrlinux Updated - 28th Dec 2009
why bother encrypting it ??? I think what you want is water marking, this will not work either, code can be written to extract/change the water mark.

They need to learn this lesson quickly before they suffer the fate of the music industry.

1) DRM only hurts the paying customer, not the ones
who download it free from the internet
Making your paying customers suffer is a good way
to make them non-buying customers.

2)The competition is against the pirated copies,
the only way to win is to make it easy for the customers to use the content they pay for.
Example of how to screw your customer,
Microsoft was supporting "plays for sure"
DRM and then dumped it when they released the Zune
so now if an existing customer wanted to get a Zune they could not use their old (purchased content) on the device. Simple solution just go download them for free off the internet, it's not like they had not purchased them first.
0 Votes
+ -
Most people don't WANT their books/music ...
mwagner@... 23rd Dec 2009
... encrypted. Either way, whan it comes to encryption, Linux is just as vulnerable to the knowledgeable hacker. It is just that there are lot fewer knowledgeable Linux hackers around than knowledgeable Windows hackers.
0 Votes
+ -
Come now: you haven't figured out that LG
John Zern 23rd Dec 2009
is just trolling?

Think about it, no one (and I repeat) no one could be a clueless as LG and still be able to function on a daily basis.

He's just a troll. That's what he does.

It's what he is.
0 Votes
+ -
I for one want my books encrypted
Too Old For IT 23rd Dec 2009
... especially the ones I author.

I've always said that my biggest issue with have a electronic version available is that some script-kiddie in his Amiga tee shirt and spiderman underoos living parents basement would suddenly be "sharing" my hard work to several million of his new best friends for free ... and not passing along the appropriate royalty.
0 Votes
+ -
It's not the appropriation of royalties that bothers customers
Michael Kelly 24th Dec 2009
about DRM. It's the fact that content owners are using DRM to redefine what the appropriate royalty is, not to mention the rules of use. If content owners did not abuse DRM in this fashion then they would be the ones holding the moral high ground on this matter.
0 Votes
+ -
And your are one of the reasons why sharing on the internet is so rampant..
mrlinux 28th Dec 2009
1) Encryption will never work when you have to provide the key to the customer via (ebook reader app).
So the only one affected by DRM here is the customer who is paying for the content, and so if there are issues with the DRM you upset your paying customers,
those pirating will not have any issues, because they are getting around the DRM.

2) Look @ the music industry they have learned and are selling music in unencrypted MP3 format and people are buying lots of music they could just get off the net for free. The reason for this is that the customers want it to be easy and simple to acquire and use the content, DRM prevents this.
Example, digital copy DVDs provided with DVD purchases, I can not use them because I do not have an iPod or Windows Media player device, so I do not purchase those DVD's with digital copies anymore, since the content is useless to me. I have device capable of playing Digital Video just not one of the 2 above.

3) Bottom line in order to compete with pirates you need to make the content easier to get and use, because you will never win on price.
0 Votes
+ -
Do Public Libraries pay you each time someone borrows a book?
minardi 4th Jan 2010
nt
0 Votes
+ -
And the linux trolls
Pete "athynz" Athens 23rd Dec 2009
are much lamer...

Back to the topic at hand - which in way, shape, or form involves linux or it's variants.
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
Dude Angus 23rd Dec 2009
I wonder how many authors will give their books away for
free in the future, or use the "pay whatever the user
wants" method (like what Radiohead did with their last
album).

I give my book away for free in pdf, but I'm just a no-
namer. It will be interesting to see if a famous author
does it someday. Anyone think it will ever happen?

Dude Angus (www.dudeangus.com)
0 Votes
+ -
Famous Authors
_JohnH 23rd Dec 2009
I think Cory Doctorow would count as "famous". He's "given away" numerous books via the Creative Commons license, and last I checked he claims he's making plenty of money on the paper versions.
0 Votes
+ -
some authors DO give away books
llamasaki 5th Jan 2010
Check this site for an example:

http://www.baen.com/library/
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
mwagner@... 23rd Dec 2009
The bottom line is that DRM schemes don't work. What they DO is entice clever young hackers to break the law and put themselves at serious legal risk. (The DMCA makes it felony to even OWN decrypton tools - even if they are otherwise used in a legal context.)

In the end, these attempts to stop piracy (the excuse they use) are ultimately fruitless.

Pirates for profit won't be detered because there is too much money to be made - and the hacker sees no personal threat becasue all he is going to do is share the new tool (and some content) with his hacker friends. Way too little money is lost by the publishers to pay lawyers to pursue these kids.
0 Votes
+ -
wrong on one point...
michaelstn@... 23rd Dec 2009
If the music industry is a guide, with their
outrageous lawsuits for poor quality music
copying, publishers will pursue the small pirates.
They'll also continue to ignore the big pirates.
0 Votes
+ -
Greed
Al_nyc 23rd Dec 2009
It's all about GREED. The music industry is greedier than the publishing industry.
0 Votes
+ -
The ENTERTAINMENT industry is greedier than the financial industry
VinceGlorthos 23rd Dec 2009
maybe there ought to be a 100% entertainment tax on movies, music, sports and the lot performed for profit. that will either drive costs in line with what the average person can afford to attend or it will generate a lot of revenue that can be used to support actual useful meaningful generally productive activity like engineering education.
Sorry, I just couldn't resist.
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
Pete "athynz" Athens 23rd Dec 2009
I guess it was inevitable - and in all honesty I'm not feeling too sorry for Amazon or their kindle team right now given the situation with the Orwell books a few months ago... It'll be quite interesting to see Amazon's response to this.
0 Votes
+ -
Amazon made right with the Orwell book situation...
Aragorn_z 23rd Dec 2009
as I understand it anyway. Still, I own several Mobipocket books purchased from Mobipocket that have encryption on them that I'd love to be able to view on my Kindle. I understand the why behind DRM, but I hate that it has to be implemented. I do pay for my books and wish I could view them on whatever device is supposed to support them. Nevertheless, I love my Kindle and my reading has gone way up since purchasing it.
0 Votes
+ -
They did eventually make things right
Pete "athynz" Athens 23rd Dec 2009
but it took a major public outcry over the whole thing... I am hopeful that they have learned their lesson about how to react to such a situation in the event such happens again.
0 Votes
+ -
I'm with you on hoping lesson learned
Aragorn_z 24th Dec 2009
I'm willing to give them the benefit of the doubt now unless they violate my trust again.
0 Votes
+ -
Not enough
rpmyers1 23rd Dec 2009
They need to completely remove the capability from the Kindle. That's the only acceptable solution.
0 Votes
+ -
I'll still buy my eBooks elsewhere
leopards 23rd Dec 2009
I'll still buy my eBooks elsewhere in a format that my digital book reader can use without going through that kind of hassle to defeat the DRM that Amazon uses to sell Kindles! So far there has only been one book I was interested in that was Kindle edition only from Amazon! Have been lucky so far and own no DRMed eBooks, all have been available, (With a little searching) from other publishers in nonDRMed formats like lrf, epub or pdf!
0 Votes
+ -
A cracker should not be labeled a hacker.
softwareFlunky Updated - 23rd Dec 2009
However, he could be labeled a freedom fighter instead of a pirate, in which case he would be a hacker and not a cracker.
0 Votes
+ -
1984
dcdavy 24th Dec 2009
I am completely opposed to it ever since Amazon deleted the Orwell's book from people's Kindles. The time is coming when history is going to be easily editable by government. Seeing what Bush's administration was able to get away with, in the recent past, may give you an idea where all this is heading to.
0 Votes
+ -
happy new year
hello002 25th Dec 2009
Welcome to: http://www.wowowbiz.com
The website wholesale for many kinds of fashion shoes,
like the nike,jordan,prada,adidas, also including the
eans,shirts,bags,hat and the decorations. All the
products are free shipping, and the the price is
competitive, and also can accept online payment.,after the
payment, can ship within short time.
http://www.wowowbiz.com
our price:
jordan air max oakland raiders $34--39;
Ed Hardy AF JUICY POLO Bikini $25;
Christan Audigier BIKINI JACKET $25;
gstar coogi evisu true jeans $35;
coach chanel ***** LV ******** $36;
coogi DG edhardy ***** t-shirts $18;
CA edhardy vests.paul smith shoes $32;
jordan dunk af1 max ***** shoes $37;
EDhardy ***** ny New Era cap $16;
coach okely Adidas CHANEL DG Sunglass $18;
http://www.wowowbiz.com
thank you for your visit
fgedhe
0 Votes
+ -
Cool, then I might buy a Kindle
urbandk 25th Dec 2009
I don't buy content that I can't consume as I see fit within my fair use rights.
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
MACKENZI 11th Sep
I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate! nccma cooler
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
PEARLINEI 12th Sep
I used to be more than happy to seek out this internet-site.I wanted to thanks in your time for this glorious read!! I positively enjoying each little bit of it and I have you bookmarked to check out new stuff you weblog post. this thread is amazing i like your work and i appreciate you that you have share a useful stuff thanks for sharing the i shop abatwa
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
RHIANNONA 13th Sep
I used to be more than happy to seek out this internet-site.I wanted to thanks in your time for this glorious read!! I positively enjoying each little bit of it and I have you bookmarked to check out new stuff you weblog post.Bookmarking now thanks please consider a follow up post. power sa shop
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
SATURNINA 14th Sep
I think the representation of this article is actually superb one. This is my first visit to your site. Thanks a lot and keep sharing the information. Keep updating the information for all of us. Thanks ZDNet Government was launched as the brand's first industry vertical, with a mission to cater to IT professionals in the public secto I agree with your post. However, do you have any sources I can cite for my paper wheel car com bury
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
TOCCAR 25th Sep
Well welcome, hopefully you can become a vital member of the community and really help to push far ahead of google. Which Im sure the development team would love. This will of course earn you alot points too and get you on the leaders board. z d n e t t h a n k Im not sure i come to an agreement with you on every level, howevor it absolutely was a good posting, many thanks for taking the time to put up your ideas.
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
MCKNIGH 26th Sep
Thanks nice info z d n e t I really liked your current article write more..let me add you to its favorite The articles you have on zdnet s i t e are always so enjoyable to read. Good work and I bookmarked it.
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
MEJIAHA 30th Sep
Fantastic news about the new release.I positively enjoying each little bit of it and I have you b o o k m a r k e d to check out new stuff you weblog post.Im not sure i come to an agreement with you on every level, howevor it absolutely was a good posting, many thanks for taking the time to put up your ideas
0 Votes
+ -
RE: Amazon's Kindle for PC DRM busted
FAULKNE 13th Oct
Good day to confirm this comment I would appreciate T h e b e s t o f Z D N e t d e l i v e r e d your website very nice to everyone Yes, Oracle is the only one with shared-disk architecture, but that is there advantage. It means you can add or remove nodes and the database lives on. In a shared nothing architecture, if you lose a node, you lose the system. I'm sure Oracle appreciates EMC highlighting their advantage.I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate Awesome post! Thank you very much || thanks for nice content this is really benefit to me.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix