I've already touched on the issue of Ring 0 access in the StarForce discussion further above.
For one thing, it hasn't even been proven that SecuROM has Ring 0 access, however even if it turns out that it does, a wide range of third party programs will install device drivers as a normal part of their behavior, some of which have Ring 0 access. In fact some of them even have known security vulnerabilities, as we saw with SpeedFan. A search of the trusted security advisory site Secunia doesn't show any past or present listed security vulnerabilities in SecuROM, while other third party drivers, even older versions of protection methods such as SafeDisc have had such vulnerabilities in the past, though they are usually patched quickly. However rather than getting into a confusing technical debate about this issue here,
let me instead point you to this discussion on the official Daemon Tools forums, conducted between one of the parties involved in the Spore class action lawsuit (username sblade), one of the developers of Daemon Tools (username LocutusofBorg), and a knowledgeable person with verified experience in the field (username evlncrn8). I direct your attention in particular to this post in which he (evilncrn8) counters the vague, deliberately misleading and unverifiable claims against SecuROM. As he states, after conducting extensive research and debugging of SecuROM on his own,
he can't find any evidence that SecuROM does anything malicious, nor that it does any of the things that the other anti-SecuROM so-called experts claim it does:
- It appears you guys didn't really do your research properly and are spreading misinformation, no other ulterior or secret motive... I know the protections, pretty much all of them, I've debugged them, I've cracked them in the past.. and nothing you've posted so far matches up.
The developer of Daemon Tools backs him up:
- With all respect, please stick to FACTS that you can write down and show everyone before make such claims - at least here at our forum. It's total different if you dislike Securom or love it OR to write informations that are not based on facts... What concerns evlncrn8, rest assured that this guy knows what he wrote, even if you dislike it.
This is the heart of the issue:
people with no real knowledge of SecuROM are deliberately and systematically creating and then perpetuating absolutely unverifiable, often patently false claims against such protection systems, more to debase and undermine the protection system's credibility in the eyes of the public than anything else. Even a quick check of Wikipedia's SecuROM article shows that the entire article is flagged with the heading: 'The neutrality of this article is disputed' and 'This article may contain original research or unverified claims.' Facts are taking a back seat to hysteria and a clear agenda to demonize SecuROM.