Virgin Media to trial filesharing monitoring system

[pedantry] DPI can't determine legality

"Virgin Media will trial deep packet inspection technology to measure the level of _____ sharing of copyrighted material on its network, ..."

There, fixed it for you. Of course, a DPI filter cannot determine whether permission was obtained from the copyright holder, nor can it determine if the law was broken since it is not an officer or court of law.

DPI and encypted traffic

Genuine question - how well does DPI worth when the p2p traffic is encrypted? If it's on arbitrary ports, and encryption enabled, surely this is shutting the door after the horse has bolted - or are we going after teens/grannies again?

The PR reads like they just want better figures to prove how wonderful their new download service is going to be. "Ooh, look, 50% less piracy now!", whereas everyone will simply move on.

Bad VM. Bad.

RE: DPI has no place on any internet connection

Aren't BE now owned by Virgin or something?

Anyway, if you are looking for a place to go, Zen Internet are my ISP of choice. I've been an avid Zen user for years now and they are top notch (there is a reason they keep getting ISP of the year awards).And I know this is really sounding like an advert but I really think they deserve the publicity, they also announce that they don't do traffic shaping or DPI, and don't plan to.

Also they are not owned by some supercorp. They are one of the few remaining true ISPs.

Not shocked.

I always wondered why VM backed away from Phorm. And at least we can clearly see why the Govt didn't go against Phorm, given BAE's love in.

So VM they cap you and now that capped allowance is inspected, which must slow it down further. I pity the fool that pays for their super fast package. All that wasted bandwidth.

Heres to mass use of encryption and two fingers to our Facist government.

Then again, it could just prove that people aren't actually downloading and sharing music, and then the message will clearly be that record sales have dropped because music on offer today is utter SHITE.

What's licensing got to do with it?

'it will then peer inside those packets and try to determine what is licensed and what is unlicensed, based on data provided by the record industry.'

Whether the thing being transfered is licensed or not is irrelevant. The question is whether the copyright owner gave permission. A trial version of software could well be identified as licensed, but sharing that is perfectly legal, infact helping the owning company!! So, my guess is the above statement should actually say

'it will then peer inside those packets and determine what is licensed, which will be all music, video etc.etc. (even though it may not be). It will then determine that as it's peer-to-peer, the copyright holder cannot possibly have given permission and therefore it must be illegal.'

"Require Encrypted Connection" and "Lazy Bitfield On"

... for a start. And if it gets any sillier I might subscribe to an SSH VPN service. And beyond that it might be time to look at encrypted newsgroup feeds ....

Horse has bolted

The Pirate Bay has switched to Distributed Hash Tables for its trackers, BitTorrent clients are beginning to enable encrypted streams by default, and more people are learning about darknets / Tor.

You're squeezing a water balloon, Mandelson; The only thing keeping everyone in one place is convenience. Squeeze too hard and the balloon will burst. File sharers will obscure and secure, and you'll be left holding the flaccid remnants and a giant clean-up bill.

Give up. Tell the music industry to adapt its business model, or fail. They are relics of a time of scarcity and limited resources. Distribution is no longer in their control, and shouldn't be their business.

I don't download unlicensed music, as I already own all of the music I like. That is the worst place for you to be, in my opinion. Improve your products so I *want* to pirate your music, and make it easy for me to buy it so I'll do that instead. Or...

[See tag]

Sigh..

Its a good thing Ive used SSL for most of my online business since I joined virgin.

Here's a question, does the CView system have the ability to peer into encrypted traffic, I presume it doesnt due to processing limitations but Im interested to know

Encryption?

Er, all you guys talking about encryption... who's got they keys?

If all you mean is encrypt your traffic as some P2P clients have been doing for a while, it's pointless. The Man just joins the P2P community like any other P2P user and gets to see what IPs are tracked as offering what torrents (or whatever). Where's your encryption there? All it might have done is bypass simple-minded throttling hardware.

Encrypted VPN to an overseas server and take it from there. I see a business opportunity here...

Encryption time

There we go. Just turned Vuze to use and allow only RC4-160 bit encrypted connections, and my speed is better to boot by about 25%. Welcome to the war Virgin, you are going to spend a lot of money to find out you can't read anything. Governments just hate it when they can't read your traffic. Soon enough all Internet apps will be using encryption and I think it is a good thing.

They miss the point, don't they

I'd love to know if this DPI can "see" into encrypted P2P. Will they break the law to enforce a law?

The last time I bought a CD must have been 5 years ago. I. like others don't buy them now, because I'm not going to buy an album of filler tracks just to listen to two reasonable tracks. The music today is SHITE, mass produced industrialised SHITE. In fact we should coin a new use of the word SHITE to mean 21st century pop music. The reg needs another icon, as well as the thumbs up, the middle finger. Meanwhile i'll be trying to stay with virgin as I get a 10MB line and unlimited 24/7 UK phone calls for £25 a month. I used to be with Zen, but the copper lines in my area are shot. £25 might sound a lot, but the phone is used for a business, and gets a lot of use.

I smell BS

Our uni has just got some peerscope hardware installed, so I looked into their product. I was flabbergasted! It's so much BS, but clueless bosses, the media, and the creative industry will gobble it up without looking deeper.

On one page, they say they have a database of copyrighted stuff, which the network traffic is compared to. How? Filenames? A certain 'release' hash (that can be encoded/packaged differently a thousand times etc)? ... and the onus is on the music/film/whatever industry to inform them!

However, on another page, they maintain they can spot illegal traffic without even checking packet contents. Amazing tech!

On a product page demonstrating how it works, 'Honeypots' was a major component, and then it all twigged.

Guys like this are the people that create fake torrents, they track those fake torrents, they report on how popular the fake torrents are, and boom, we have a filesharing epidemic (fake) and a company that can monitor it (themselves!). They have a top 100 shared files, and some are not even proper pirated releases... (DVD rip of Saw 6 tracked two weeks before cinema release?)

I think the filesharing 'problem' is actually overinflated, with gullible 'normal' people being duped into downloading stuff, and then massive figures being extrapolated from the entrapments. Companies like peerscore and in the article are not helping. However, the proliferation of the idea that piracy is massive and bad helps keep media profits up in a digital age, where distribution and talent are cheap.

To be fair, there's hardly any point being pirate anymore. Any song I want from Napster/Spotify for a tenner? Any DVD/Blu Rays I want from Lovefilm for £7? Bargains, and it's easy too! In our house we have Sky and Cineworld unlimited passes as well... we're consuming probably more content than pirates, at high quality, legally and fairly cheaply!

tl;dr: piracy is overinflated, there are now decent legal services for most stuff

Define "aggregated and anonymised"

If its truly nothing for us to worry about then they wont mind giving us an example of what's actually going to be stored about us.

It is our data after all...isn't it?

Licensed or Not ?

Copyright owners permission.

OK, yes, in theory you could have the copyright owners permission for a P2P transfer, so DPI cannot tell if the transfer is illegal or not.

HOWEVER, since the vast majority of "music" being transferred by P2P will not have the copyright owners permission, it is a reasonable measure of the extent of the problem.

The music industry needs to learn some new sports instead of using wreckingballs to crack peanuts.

@ John186... Simple - Get a Mac

Eh...? The operating system you use is irrelevant. Even Mac users have access to software that enables them to download from bit torrent sites (Transmission is an example, and even µTorrent has been ported to Mac now).

The packets whizzing across the network are still going to be intercepted, irrespective of whether they originated from or are destined for a Mac. This is all being done at the network level, it's not a client that Vermin Media are going to ask you to install on your Windows PC.

Personally, I think this approach is short-sighted. It will just speed up the adoption of encrypted file sharing, which no ISP will be able to examine - they may be able to see where your traffic is coming from & going to, and therefore assume that any encrypted traffic seen immediately after you've searched the Pirate Bay's website is going to be a DVD5 copy of the latest Hollywood blockbuster. But we all know what happens when you assume something ;o)

@ACs

@AC 11:04: BE is owned by O2 Telefonica, not VM.

@AC 11:28: you're not the first having that business idea ;) check out:

http://filesharefreak.com/2008/10/18/total-anonymity-a-list-of-vpn-service-providers/

I have a feeling

I have a feeling im on there "random" watch list for this and they can bring it on. Its not like they are going to decrypt my p2p packets anyway.

Roll'd son.

"Illegal" file sharing..?

"Virgin Media will trial deep packet inspection technology to measure the level of illegal filesharing on its network"

As usual there is the assumption and implication here that all file sharing activity is illegal, shame on you Reg for conftributing to the industry / government propoganda, drop the 'illegal' please!

Of course, file sharing clients can / are often used for unlawful activities (there is a difference) but it is wrong to assume or imply that this MUST be the case.

While DPI can identify file sharing client activity, if user have enabled encryption (as anyone sharing data in this was should), then it cannot tell the ISP what is actually being shared and therefore does not provide any information as the the lagitimacy or otherwise of the data being shared.

Not to split hairs, but VM don't cap, they throttle!!

I perceived throttling to be a major ball ache, but pretty quickly found that it works well, for me at least.

Downloading at 20mb for about 8gb to get the night's worth of immediate 720p tv I want to watch before my tea is even half-cooked, then it's 5mb for other stuff. The throttle also lasts a few hours - then you are back at 20mb, and even then it's only throttled when you do it at "peak" times. I've had them for almost a year, and so far been much more stable than Be/o2 were when I used them.

The reason I gave VM another chance? Even at the throttled 5mb, it beats the crap out of the service my bt line is offering me - which is "up to 3mb"... so probably about 1.5mb since my street and house are old! Hilariously, the 20mb connection isn't even the fastest speed vm offer to the street.

Never been a big fan of NTL, or Virgin, but they have actually improved their broadband since I last had a go in 2006 - and I'd accept a 3-hour throttle at a faster-than-average-adsl speed, to being a BT customer again any day - and on top of that, it's cheaper than anything I buy when you add the line rental costs.

This DPI tech is useless against encryption, which I use for my copyrighted stuff... it's my unprotected stuff like facebook, messenger, work email, that worries me.

@Gareth

I'm pretty sure he meant get a MAC code...

@ Gareth RE: @ John186... Simple - Get a Mac #

*slap*

He's joking about "Get a mac"... he doesn't mean an Apple Mac, he means the migration code isp's provide so you can move from one isp to another quickly.

I don't think MAC's are useful for the majority of VM customers though, since most of them will be cable customers, not using the VM adsl stuff.

Paris - because she probably didn't read the actual comment, just the title too! :)

RIPA interception and consent?

So when will VM be seeking the consent of all parties to the communication in order to intercept it and inspect its contents? Will RIPA apply? Are they in contact with the ICO regarding any infringement of DPA? Have they taken/sought legal advice/opinion? Have any government department been comforting them recently?

How does this stand under EU law both current and proposed?

Does Commissioner Reding's department know about this?

Here we go again!!!

unlawful interception?

surely this is as illegal as Phorm surely was?

Attaching equipment to the telco network for the purpose of eavesdropping is illegal isnt it?

Still don't know how they can tell.....

"In a step beyond how ISPs currently monitor their networks, it will then peer inside those packets and try to determine what is licensed and what is unlicensed, based on data provided by the record industry"

Yeah like that's gonna work fine with no false positives then. It will all end in tears, with the innocent constantly having to plead their case while the guilty rotate through various clever methods that keep them under the radar.

Time to leave the country - or at least to leave Virgin! If they suffered a mass migration of disgruntled customers that would be a message the other ISPs could not afford to ignore.

Legality?

If it is illegal for Virgin Media to listen in on my phone calls, how is it legal for them to listen in on my internet connection? I may be passing confidential information, business details or research information across my connection. They may well be 'looking' for one thing, but who knows what they are logging and storing? Am I now meant to inform my clients that their communications may well be subject to DPI and that a third party may well read, store and pass on information that they collect from our communications?

Someone needs to clarify this properly, Virgin's 'it doesn't affect customers directly' is wrong, just because they own the network that I am using, doesn't mean that they own the information that I am passing along it.

As an aside, one good thing could come of this. It could prove to the music industry that their claims of 95% of all music being pirated are absolute rubbish.

It's illegal under RIPA

RIPA, as we now know from the Phorm debacle, makes it an offence to intercept the traffic. It doesn't matter whether you "aggregate and anonymise" it. The interception offence has already been committed.

Whether the powers that be will actually enforce this inconvenient aspect of RIPA is another matter, as we have seen in the Phorm case, where everybody was falling over each other in an effort to pass the hot potato to somebody else.

@Licensed or Not?

"the vast majority of "music" being transferred by P2P will not have the copyright owners permission"

You no doubt have evidence of this? Thought not. You're guessing (very scientific of you), which means you will have no more of a clue as to what is licenced or not in the packets than Detica. They probably won't be able to detect what is music or not in most cases, let alone whether it is licensed or not.

Made-up numbers are made up, regardless of what you'd like them to be.

Some Questions

1) Given the consent of Virgin customers, and the people they communicate with, has not been obtained for the interception, copying, and analysis of their traffic... Who in Government authorised this trial?

2) Detica said of telcos; "We also provide intelligence and insight that helps them better...exploit social networks within their customer base". How do you 'exploit social networks', in particular without illegally intercepting private/confidential communications or identifying individuals in that social network from their private/confidential communications traffic?

3) You say "Our clients include BT, Vodafone and 3". What is the nature of your relationship with BT, Vodafone and 3?

This trial is wrong. It is so far beyond wrong I can't believe it is happening [again].

I don't believe in sharing files illegally; but you don't need DPI to find the people who are sharing files illegally. Simply joining a P2P network and noting the IP addresses is sufficient, and the music industry have been doing that for years.

This has nothing to do with preventing piracy.

Slightly off topic but I wonder if anyone can help

How do all these computer / video / music exchange shops work then, as they are technically "sharing" music / video. The last time I bought a DVD it had a notice on saying something like, "not for resale. rental blah blah blah". Now when some johnny come lately rocks up to his local tat bazarr (exchange shop) and sells his last three xbox games or DVDs do they contact all the copyright owners and ask for permission to re-sell them?

I'm really curios how they get around this, anyone who can answer will certainly be on my "buy them a pint" list !

:)

Does this mean

Does this mean they are going to shut down their newsgroup server down now then :(

Or will they completely ignore that and focus on P2P? Who gains anything from this? Virgin Media don't so what the hell?

Way to lose customers Virgin Media...

Working for you

Just like Mandelson, you pay for them but they work for Big Media's interests.

Just like Mandelson, their contracts don't last forever...

How about...

Everytime you aren't using your connection, just download anything that /is/ legal.

If everybody did this, the amount of traffic that would need to be checked would be so huge that they might not have enough resources to monitor everything.

And as it's bene pointed out that VM throttles, and doesn't cap, it will not affect your usage.

False Positive

I recently used BitTorrent to download an Ubuntu ISO. As a matter of course, I have it set to secure. Will VM therefore analyse this as dodgy? Even worse, I always try and share twice as much as I downloaded.

OK I don't download ISOs every day, but there are those who do. I don't download films or copyright music. It makes it easier to teach the kids not to steal if I don't. Except that stooges of the media parasites won't be able to tell.

Heart warming

Ooooh good. This news is heart warming.

As a Virgin Media customer, I give them my permission to sniff any of my packets, delve deep into my communication stream and generally analyse it.

I have nothing to fear. It is sad that piracy has brought us to this state of affairs, but that is what it has done. Again, my thanks to the pirates for these draconian measures.

'Proved' by their rules?

"try to determine what is licensed and what is unlicensed, based on data provided by the record industry."

Is this:

!> Byte for byte identical with their copyright material, and proven not licensed for transmission

2> Has a bit of the file name in common with something they once copyrighted, or is authored by somebody with a similar name to one of their artists

Or

3> Isn't on their list of things which they will condescend to permit people to share, and is therefore obviously illegal and will be included in the deliberately warped statistics which they will shout from the rooftops as evidence that they need to be given total control of everything.

"a senior civil servant suggested that a crude estimate based on the level of illegal filesharing observed by rights holder organisations could be used."

Why does this 'senior civil servant' still have a job?

Just looking for hands

Anyone see this going the same way as RIPA III, where it does nothing but target the wrong people and when the music and film industry realise that its not file sharing but just the sh*t they produce that has caused there down fall will they go quitely?

Hey dumb sh*ts i can get 24 hour music channels on my free view box same as everyone else in the country, so can all the teenage girls that use to support your bloated industry.

Oops...

Ho-hum..... yeah, I was only joking all along, guys. Of course I knew he meant a MAC code, not a computer made in Cupertino.

Erm, you do believe me, right? Right...?

OK, you got me. But in fairness I've been having a bad day.... week.... fortnight.

Fail icon... for me, obviously.

SLL to my news host

+ VM 50mb with no caps I have ever seen

Inspect away

Or we could just...

I propose randomly (without looking at the address so you can't tie it back to a person) we open people’s mail.

We have a look at the contents to see what is and isn't illegal, that of course will be decided by a random group of people who'll never be held accountable for their choices.

That will give us a good indication of the level of horrible plagiarism that must be going on in these letters.

Think of all the starving artists who aren’t getting any money from lines of their songs or films that you steal to either try and pass off as your own or in bad poetry to a loved one!

Eventually with a new law if we find something that's 'illegal' we'll send a letter to them asking them to stop and after a few of those letters if they don't stop they'll simply never get letter again.

I'm about to lose more friends. :(

I'm Going to block all VM IP ranges! :(

Sorry to all the innocent Servers & Users but a compromised Communications System is de facto exactly that!

Norwich is already under the thumb!

with packets suddenly going missing or suffering unexplained delays in transmission once on the VM Wan#er NET and connection slowdowns at random times, VPN traffic being heavily curtailed if not being actively being blocked by them.

with friends like this who needs enemies

especially when they are sniffing ur packets on wiffler road!

http://maps.google.co.uk/maps?hl=en&ie=UTF8&ll=52.650432,1.265989&spn=0.000976,0.002224&t=h&z=19

is the local VM/(cough cough)GCHQ packet intercept and processing center.

notice the stack of Generators parked outside...

with some anonymouse black cars parked in the car park...

no doubt a heli pad somewhere nearby... for when the dark sith lord mandy is wanting an inspection of his black project of suppressing the little yolkes into dust....

No No No

<flame>

"It would be counter-productive because it doesn't affect customers directly," Iam sorry but if the information is mine YOU can F*ck off as you don't have the right to spy on it. If you think I am sharing files illigally then get a warrent for my arrest if not F*ck off. If the F*cking Govenment or EU wants to monitor my internet access they can F*cking pay for it!

</flame>

I think dephormation.org.uk makes some exelent points perticcly "This has nothing to do with preventing piracy".

@AC "Who gains anything from this? Virgin Media don't so what the hell? Way to lose customers Virgin Media" Lets face it Virgin will get the record industry off its back it will probaple lose high use file sharers and be able to profile what its customers use their conection for so they win on a number of levels. As for the record industry we have seen how inaccurate they are at finding illegal file sharers so they will probably take the data and assume all music shares are illegal and so force the Government to force through laws to stop file sharing.

Fail....

And so the filesharing tools migrate to encrypted as default and this technology becomes worthless.....

Dark times indeed...

On top of this news, I just wandered over to Mininova. It seems someone has 'got to' them, as they are now only hosting "content distribution" torrents. Browsing the music section brings back a grand total of just 5253 torrents!

Dark days....

I royally want to know

How they can tell what is copyrighted and what is not by DPI? Seriously if I rip a CD or DVD its checksum and bit arrangement will be different than another person's ripping the same item, and unless they take every packet and reassemble it completely (good luck seeing bit torrent doesn't transfer pieces sequentially) and view it I do not see how this is possible.

Only things I can come up with is that they are using piratebay(and popular trackers) to download the torrents and using those files as a basis to search for. Or just basing if somethings pirated or not on the file name that is transferred.

Let's do something positive!

All you techies - what is the best technical (or other) way to disrupt this invasion?

Get thinking, get preparing and get publishing...

@Sir Runcible Spoon

Please quantify this for me. I read nowhere in this article about the direct impact it will have on VM customers (aside from the bit that says it doesn't affect them directly). I would like to know what basis you are using to determine that my connection will be significantly affected.

I have a very adequate cable connection which is never throttled (on account of me not pirating things) and wouldn't mind if my packets take a couple more microseconds to arrive at my network adapter.

Inspection ?

They are inspecting for illegally shared music, and lets face it there is bugger all music worth sharing so they won't notice all my favorite movies and American TV shows.

Humm...

Is this designed to look for copyrighted material, or the popularity of different protocols? Will it, say, flag an unauthorised use of a song on a youtube video? or is it just to see how many songs get downloaded over, say, gnutella?

Is they hint from virgin media here that users should be encrypting their data traffic?

Off to the pub

As I very, very, very rarely download music and instead also feast on US programmes that might get here eventually (anybody know when "V" will be shown here), so if I do want to download music I'll just pop down to a pub with a hot-spot and do it from there.

StopCP

The whole thing stinks of Common Purpose.

All I have to say about this...

...is that this is why SSL was created.

CView = WebWise revisited

I reckon that its just the Phorm tech under the guise of inspecting for piracy.

Lets think about it ... they have employed a company that is comfortable in the mass data gathering field .... Hmmmmm

.... mines the one with all the data you dont treat with DPA respect

Election coming

I hope this blows up in NuLab's face.

If, by some mischance, they manage to pass this into law before their thrashing at the polls next year I hope that the EU decides that it can't be allowed to stand.

Alex

Surveillance

How is this even legal? They're spying on the data that people are passing to each other. Does this not count as unauthorised surveillance?

password protected .rar files anyone?

try inspecting that for musical content... (password in the readme in the torrent)

illegal?

They can't actually check if people are downloading illegally unless they break data protection laws!!!!!!!!!!!!!!!!!!!!

to all virgin media customers

Please start any P2p Programs you have and leave multiple instances running 24/7

Plug-in heaven

Phorm, Nebuad, front porch, omniture, uk.gov database....

illegal?

Data Protection laws ignored then

s.1 RIPA

"Any form of DPI is an interception under s.1 RIPA and thus illegal

unless covered by the appropriate warrant."

(All PartyParliamentary Group Inquiry into communications data surveillance proposals & theIntercept ion Modernisat ion Programme)

http://tiny.cc/ZDvAG

Tech Solution

"All you techies - what is the best technical (or other) way to disrupt this invasion?"

SSL pipes and VPNs to everything.

Encrypt the shit out the internet - good look decrypting the 256GB/sec running through LINX right now, forget that, who knows how much data is being pushed around - I think the terrorists just won.