LCP eBook DRM: A Cautiously Optimistic Assessment
Readium's LCP eBook DRM scheme allows offline reading after download, eliminating the need for constant online verification. It uses AES-256 encryption and is authorized via an .lcpl file containing decryption information. While the scheme relies on a proprietary decryption BLOB, its open ePub format and multi-reader support make it relatively secure and allow for offline backups. However, the bookseller can track reading devices and times, and forgotten passwords are unrecoverable. Furthermore, the long-term compatibility and security of the BLOB are questionable, and the risk of cracking remains. In short, LCP represents a relatively benign attempt at DRM, but its long-term security and level of user control require cautious assessment.