11.04.09

Gemini version available ♊︎

Orwellian EIF, Fake Open Source, and Security Implications

Posted in Deception, Free/Libre Software, Microsoft at 5:53 am by Dr. Roy Schestowitz

George Orwell

Open is close enough

Summary: The manipulation of Europe’s interoperability framework (by Microsoft lobbyists and others) is made more visible; other news of relevance

Yesterday we wrote about the European Interoperability Framework (EIF), which Microsoft front groups were leaning on [1, 2, 3] until “open” almost came to mean “proprietary” and “patent-encumbered”. The original analysis has received a lot of response; for instance, Neko Nata compares this to Microsoft’s corruption of ISO and Bob Robertson quotes Orwell as follows: “Languages evolve, sometimes faster than others.” In ComputerWorld UK, E.T. Anderson compares it to “War is peace”.

Here is new coverage from The Register:

The European Union has long promoted open source software, but it seems that years of expensive lobbying by big software companies has finally worn down the bureaucrats’ resistance.

The latest version of the European Interoperability Framework – which aims to offer governments and businesses guidance on using open source software – has substantially weakened its definition of what open source is. This follows years of lobbying by the BSA, representing multinational, and substantially closed-source, companies.

Ars Technica covers this too:

The EIF’s new definition of openness is also troubling. The text no longer explicitly requires that patents on standards be made available under royalty-free terms. Royalty-free patent grants are important because they ensure that open source implementations of the standard can be created without serious intellectual property impediments. The new draft attempts to address that same issue, but does so poorly—it requires that the standard be possible to implement “under different software development approaches” and indicates that open source software is an example of one such approach.

The ambiguity is potentially problematic. There are some cases where standards are provided under terms that make it technically possible to create open source implementations but with significant impediments that inhibit broad downstream redistribution or make it practically unfeasible. An arrangement like the controversial deal between Microsoft and Novell is arguably an example.

Yes, part of Microsoft’s plan is to use patent deals (like that of Microsoft and Novell) to eliminate the Freedom of free software and to make it expensive. Steve Ballmer said at the beginning of 2007: “The deal that we announced at the end of last year with Novell I consider to be very important. It demonstrated clearly the value of intellectual property even in the Open Source world. I would not anticipate that we make a huge additional revenue stream from our Novell deal, but I do think it clearly establishes that Open Source is not free and Open Source will have to respect intellectual property rights of others just as any other competitor will.

The FSFE’s founder, Georg Greve, became aware of this EIF subversion and he immediately responded. Deep inside he is not a fan of Microsoft’s behaviour; just days ago he wrote: “Unethical, appaling and disgusting: #FamilyGuy corrupted by #Microsoft http://is.gd/4G5QH, a clear violation of http://is.gd/4G5Sh, it seems

One of our readers gave us input by mail, referring specifically to the news about Skype playing similar tricks with “open source” and interoperability (David Gerard compares it to Helix at Real). According to SJVN, Skype is not going Open Source any time soon. Well, not yet anyway.

The basis for this? Some correspondence between Skype technical support and a Mandriva Linux user (Skype supports generally older versions of Debian, Fedora, openSUSE, and Ubuntu). In it, the French-speaking Skype technical support rep said that it’s possible that the final version of Skype for Linux will be open source.

That wasn’t much, but it did hint that it might be possible that Skype was going to at least make its Linux client open-source. I decided it was worth my time to look further.

I gave Skype a call in Luxembourg. A Skype public relations spokesperson quickly replied: “We appreciate our user community’s enthusiasm and realize this is something they have been wanting for a while. We realize the potential of the open-source community and believe that making Skype for Linux an open source application will help to speed up its development and enhance its compatibility with different versions of Linux. While it is our goal to make Skype for Linux source code available to the community in the near future, we are not at a point to disclose an exact release date yet.”

Our reader explains: “It seems Skype is joining the effort to mislead the public about openness and to try cash in on the need for FOSS while not actually providing it.” A sort of retraction has just been posted.

Our reader continues as follows: “It would be great if it were true that Skype really released an open source package, but like most things that are too good to be true, it isn’t true. The new Skype will be neither open source nor open standards. It will contain a blob and still use that same tired old insecure, proprietary protocol instead of SIP.”

He then cites the original story about EIF being subverted by Microsoft and its allies. “This comes at a time where the word, and advantages, of ‘open’ are under attack even in the EU,” he explains. He adds some links for perspective:

“You’d think that with recent news

Der Spiegel: Mossad hacked Syrian computer to uncover nuclear site

“…and with not so recent news

US software ‘blew up Russian gas pipeline’
The Farewell Dossier
[ISN] Interview: Theo de Raadt of OpenBSD

“…and with downright old news

David A. Wheeler’s Page on Countering Trusting Trust through Diverse Double-Compiling (DDC) – Countering Trojan Horse attacks on Compilers

“…and with just plain ancient news

Reflections on Trusting Trust

“…that jobs, economies and sometimes lives are at stake.”

This leads to another important issue which is cost/debt, not just death.

We previously wrote about Windows malware at NASA facilities that are located in space [1, 2]. They foolishly relied on Microsoft Windows and another reader of ours wrote about “anti virus software on the ISS” in light of this new interview:

Have you ever had hackers infiltrating the ISS systems?

“The software we use to interface with the ground is just a file transfer back and forth, and it would be a very difficult thing to do. The chances of someone hacking up into the station is pretty much non-existent and it has never happened. Even if they could, the laptops themselves do not have a critical function like life support. There is a set of laptops that do provide the crew with cautions and warnings, but from a daily standpoint the astronauts really don’t use them — the ground monitors everything for them.”

“This is 2009,” says our reader, “we should all be going round in flying cars, yet even NASA can’t protect itself from Microsoft Viruses… From the tone of the questions, it’s even considered normal to get ‘viruses’.”

Even Microsoft is finally admitting the scale of the Windows worms epidemic, soon using “malware” to encourage people to pay more to Microsoft.

Microsoft blames malware on illegally copied software

[...]

Jeff Williams, the principal group program manager for the Microsoft Malware Protection Center claims there is a link between use of illegally copied software and malware infection rates.

They are just trying to upsell “licensed” Windows and charge for it in places where Microsoft does not really mind counterfeiting because it is used as a weapon against GNU/Linux adoption.

Our reader Ryan (fourth one mentioned in this post) sent us a pointer to this new Microsoft patch, which he summarises as “new IE patch patches the last patch.” Yes, Microsoft can't even get its patches to work right the first time. It usually means that the code is messy and thus hard to maintain (modify reliably). Ryan also points out that T-Mobile is suffering another major outage following the Sidekick fiasco that we wrote about in:

The next post will look at more distortion of openness, in the context of document formats.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

A Single Comment

  1. Yuhong Bao said,

    November 9, 2009 at 6:14 pm

    Gravatar

    ” It usually means that the code is messy and thus hard to maintain (modify reliably). ”
    Some of it is because of lots of legacy code. Wonder why MS disabled imports of old file formats?

DecorWhat Else is New


  1. Linux News or Marketing Platform?

    Ads everywhere: Phoronix puts them at the top, bottom, navigation bar, left, and right just to read some Microsoft junk (puff pieces about something that nobody other than Microsoft even uses); in addition there are pop-ups asking for consent to send visitors’ data to hundreds of data brokers



  2. Daily Links at Techrights Turn 15, Time to Give Them an Upgrade

    This year we have several 15-year anniversaries; one of them is Daily Links (it turned 15 earlier this week) and we've been working to improve these batches of links, making them a lot more extensive and somewhat better structured/clustered



  3. Back to Focusing on Unified Patent Court (UPC) Crimes and Illegal Patent Agenda, Including the EPO's

    The EPO's (European Patent Office, Europe's second-largest institution) violations of constitutions, laws and so on merit more coverage, seeing that what's left of the "media" not only fails to cover scandalous things but is actively cheering for criminals (in exchange for money)



  4. European Patent Office Staff Votes in Favour of Freedom of Association (97% of Voters in Support)

    The Central Staff Committee (CSC) at the EPO makes a strong case for António Campinos to stop breaking and law and actually start obeying court orders (he’s no better than Benoît Battistelli and he uses worse language already)



  5. Links 02/02/2023: Glibc 2.37 and Go 1.20

    Links for the day



  6. IRC Proceedings: Wednesday, February 01, 2023

    IRC logs for Wednesday, February 01, 2023



  7. Links 01/02/2023: Security Problems, Unrest, and More

    Links for the day



  8. Links 01/02/2023: Stables Kernels and Upcoming COSMIC From System76

    Links for the day



  9. IRC Proceedings: Tuesday, January 31, 2023

    IRC logs for Tuesday, January 31, 2023



  10. Links 31/01/2023: Catchup Again, Wayland in Xfce 4.20

    Links for the day



  11. Links 31/01/2023: elementary OS 7

    Links for the day



  12. Intimidation Against Nitrux Development Team Upsets the Community and Makes the Media Less Trustworthy

    Nitrux is being criticised for being “very unappealing”; but a look behind the scenes reveals an angry reviewer (habitual mouthpiece of the Linux Foundation and Linux foes) trying to intimidate Nitrux developers, who are unpaid volunteers rather than “corporate” developers



  13. Links 31/01/2023: GNOME 44 Wallpapers and Alpha

    Links for the day



  14. Free and Open Source Software Developers' European Meeting (FOSDEM) and KU Leuven Boosting Americans and Cancellers of the Father of Free Software

    The Free Software Foundation (FSF) and its founder, Richard M. Stallman (RMS), along with the SFLC one might add, have been under a siege by the trademark-abusing FSFE and SFC; Belgium helps legitimise the ‘fakes’



  15. Techrights in the Next 5 or 10 Years

    Now that I’m free from the shackles of a company (it deteriorated a lot after grabbing Gates Foundation money under an NDA) the site Techrights can flourish and become more active



  16. 60 Days of Articles About Sirius 'Open Source' and the Long Road Ahead

    The Sirius ‘Open Source’ series ended after 60 days (parts published every day except the day my SSD died completely and very suddenly); the video above explains what’s to come and what lessons can be learned from the 21-year collective experience (my wife and I; work periods combined) in a company that still claims, in vain, to be “Open Source”



  17. IRC Proceedings: Monday, January 30, 2023

    IRC logs for Monday, January 30, 2023



  18. Taking Techrights to the Next Level in 2023

    I've reached a state of "closure" when it comes to my employer (almost 12 years for me, 9+ years for my wife); expect Techrights to become more active than ever before and belatedly publish important articles, based on longstanding investigations that take a lot of effort



  19. The ISO Delusion: When the Employer Doesn’t Realise That Outsourcing Clients' Passwords to LassPass After Security Breaches Is a Terrible Idea

    The mentality or the general mindset at Sirius ‘Open Source’ was not compatible with that of security conscientiousness and it seemed abundantly clear that paper mills (e.g. ISO certification) cannot compensate for that



  20. Links 30/01/2023: Plasma Mobile 23.01 and GNU Taler 0.9.1

    Links for the day



  21. EPO Management Isn't Listening to Staff, It's Just Trying to Divide and Demoralise the Staff Instead

    “On 18 January 2023,” the staff representatives tell European Patent Office (EPO) colleagues, “the staff representation met with the administration in a Working Group on the project “Bringing Teams Together”. It was the first meeting since the departure of PD General Administration and the radical changes made to the project. We voiced the major concerns of staff, the organization chaos and unrest caused by the project among teams and made concrete proposals.”



  22. Links 30/01/2023: Coreboot 4.19 and Budgie 10.7

    Links for the day



  23. IRC Proceedings: Sunday, January 29, 2023

    IRC logs for Sunday, January 29, 2023



  24. [Meme] With Superheroes Like These...

    Ever since the new managers arrived the talent has fled the company that falsely credits itself with "Open Source"



  25. Not Tolerating Proprietary 'Bossware' in the Workplace (or at Home in Case of Work-From-Home)

    The company known as Sirius ‘Open Source’ generally rejected… Open Source. Today’s focus was the migration to Slack.



  26. The ISO Delusion: A Stack of Proprietary Junk (Slack) Failing Miserably

    When the company where I worked for nearly 12 years spoke of pragmatism it was merely making excuses to adopt proprietary software at the expense of already-working and functional Free software



  27. Debian 11 on My Main Rig: So Far Mostly OK, But Missing Some Software From Debian 10

    Distributions of GNU/Linux keep urging us to move to the latest, but is the latest always the greatest? On Friday my Debian 10 drive died, so I started moving to Debian 11 on a new drive and here's what that did to my life.



  28. Stigmatising GNU/Linux for Not Withstanding Hardware Failures

    Nowadays "the news" is polluted with a lot of GNU/Linux-hostile nonsense; like with patents, the signal-to-noise ratio is appalling and here we deal with a poor 'report' about "Linux servers" failing to work



  29. Microsofters Inside Sirius 'Open Source'

    Sirius ‘Open Source’ has been employing incompetent managers for years — a sentiment shared among colleagues by the way; today we examine some glaring examples with redacted communications to prove it



  30. Links 29/01/2023: GNOME 43.3 Fixes and Lots About Games

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts