[Cryptography Team] Daap Implementation

Ron Teitelbaum Ron at USMedRec.com
Tue Nov 7 14:38:20 UTC 2006 

Hi Yann,

Thank you for your interest in the Cryptography group and welcome to the
team.  Your project sounds very interesting.  

Before we talk about the Daap implementation I think it would make sense to
do some bookkeeping.  Could you spend some time researching the iTunes
license?  What we are doing here is developing Open Source code.  What I
need to know first is if we develop a system that can do Daap connections
and sharing could we then distribute our works under an open source license.


What I need from you or anyone in the group interested in participating is
any links that show the license for Daap, or iTunes.  If you can find
something that shows that someone else has done Daap and released it Open
Source, or someone that comments that it can be done and redistributed OS
that would be helpful.  Once I get that research from you I will review it
and get an evaluation from our Attorney so that we can make a decision if
this project can be done legally.  It concerns me that the code needs to be
reverse engineered.

Thanks,

Ron Teitelbaum
Squeak Cryptography Team Leader

> -----Original Message-----
> From: Yann Monclair
> Sent: Tuesday, November 07, 2006 3:21 AM
> 
> (Sorry if this is a resend, it seems I sent the first email before
> being completely registered to the mailing list, it must have been
> moderated.)
> 
> Hello,
> 
> I just started an implementation of the Digital Audio Access Protocol
> [1] in Squeak. This protocol is used by Apples iTunes [2] to share
> music over a lan. I found very little documentation[3] on this
> protocol, since Apple has decided not to disclose the documentation
> on its specifics.
> I have published the little code I wrote so far on SqueakSource [4].
> I am stuck after the login request. As I understand it, iTunes
> doesn't send you the session-id, but an encrypted id, leaving you to
> decrypt it. Unfortunately, Apple added some byte switching or
> something to the classic MD5 encryption (I'm far from an expert in
> crypto, so I might not be using the appropriate vocabulary). I found
> a c library to connect to daap shares [5], but I didn't really get,
> even after looking at the code.
> 
> I would appreciate any help to figure this session-id thing out :) I
> think having a daap implementation in Squeak, can be really useful
> for multimedia purposes, and we could probably find cool applications :p
> 
> Here the code I write in a workspace to get a daapsession
> 
>   DaapSession connectTo: 'localhost'.
> 
> this will return a DaapSession knowing the server, the content codes
> (typing info) and a DaapLogin. the encrytped session-id is accessible
> via DaapSession>>sid (or DaapLogin>>mlid)
> 
> Thanks,
> 
> Yann
> 
> [1] http://en.wikipedia.org/wiki/Digital_Audio_Access_Protocol
> [2] http://www.apple.com/itunes/overview/
> [3] http://tapjam.net/daap/
> [4] http://www.squeaksource.com/daap.html
> [5] http://crazney.net/programs/itunes/authentication.html
> 
> _______________________________________________
> Cryptography mailing list
> Cryptography at lists.squeakfoundation.org
> http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/cryptography

More information about the Cryptography mailing list