Traitor tracing

Traitor tracing is an anti-piracy system which works by tracing the source of leaked files rather than by direct copy protection. The method is that the distributor adds a unique value to each copy given out. When a copy of it is leaked to the public, the distributor can check the value on it and trace it back to the "leaker".

Primary Methods

Activation Controls

The practice of traitor tracing is most often implemented with computer software, and evolved from the previous method of activation codes. In this model, software ships with a sticker or label printed on the outside of the software, but inside the package. This number is an encoded serial number, expanded to a usually large number or string of numbers, digits, and hyphens. When the software is being installed, or the first time it is run, the user is prompted to type in the license code. This code is then decoded back to its base serial number. This process reduces the number in complexity, and the additional information removed by this process is used to verify the authenticity of the serial number. If the user mistypes a single character in what is sometimes a very long code, the software will refuse to install and require them to retype the number until they get it right.

This activation code is generated during the packaging phase of manufacture, so that every user is receiving the same software but a different activation code. If a user performs a "casual copy" of the software for a friend, that friend must have the license code as well as the software to install it on their system. Since the software cannot determine that it is a copy, this is a way to beat this basic system.

With the expansion of computer networking, two additional levels of software protection have evolved, "network registration" and "online registration".

Network Registration

Software that employs this additional security keeps a copy of the actual serial number being used in the license code. When it is active, it is broadcasting this number on a clandestine channel on the local network. If the software has been installed on another computer on that same network, using the same license code, when the second copy is run it will detect its serial number in use on the network and typically will refuse to run. It may also cause the other copy of itself already in use to close. This prevents a small business from buying one copy of expensive software and installing it on several of the computers at their location, provided they are networked.

On-line Registration

The process is very similar to activation codes, but adds an additional step. Most modern companies are now not only internally networked, but are also connected to the internet. This allows the software manufacturers to add an additional check to their system during the installation process. When the user enters a valid license code, the software does not immediately install. Instead, it uses the active internet connection to contact a server being operated by the software manufacturer. The license code is transmitted to the server, and it waits for the server to tell it whether it's ok to install or not. The server maintains a database of all the serial numbers that have been used to install their software. If a single serial number is used on a number of machines (5 is a typical limit) then the server tells the software that it is likely a copy and to abort the installation. The user is usually presented with a dialog instructing them to contact the manufacturer.

Other Methods

Some software that implements online registration extends this with a process commonly known as "phoning home". In this case, the software, either each time it is used or at some preset interval such as monthly, makes another connection back to the registration server. It does this to check in with the server to see if the serial number it is using has been determined to be one that is being used to install in many places. Serial numbers that have been identified as "pirated" (illegally distributed) are added to a blacklist on the server, a process referred to as being "burned". Burned serial numbers cannot be used to install or activate the product. Serial number lists are available on the internet that include a large number of valid registration codes for many software titles. It's common for software manufacturers to seek out these lists and burn the serial numbers for their product that appear on these lists. This discourages individuals from giving out their registration codes for fear that their software will phone home and find the number has been burned, which will disable the software.

Some of the more expensive software requires the user to send personal information to the software vendor before receiving the activation code. The activation code is usually a large sequence of numbers and letters, and encodes information including the license serial number, information to ensure the code is valid, and also includes the ability to verify the personal information the user sent to the software vendor. In this way, his/her name or business name must be entered along with the registration code. The registration code will not be accepted by the software unless the user types in his/her business name exactly as submitted to the software vendor. The business name is usually displayed by the software on its opening banner whenever the software is used. If the customer gives away his activation code it will be useless without his business name, and anyone that uses the activation code must enter it in during the activation process, leaving the original buyer's business name on the banner of the software. This makes it very easy to "trace the traitor" and find the customer that originally gave out their activation code. Since giving away the registration code is a violation of the license agreement, the software vendor may burn the user's serial number (disabling his/her software in the process) and may take legal action against him/her as well. This does raise privacy concerns in some areas.