@WPalant This has been going on since the mid 1990's. In the US it rather started with the DMCA, which made it illegal to circumvent "access control", but that law was basically made to comply with the EU based treaties it had already agreed to. It's earliest win in the courts was over DeCSS, which was a brute force attack on 40bit encryption. It continues to be applied to ridiculously weak security provisions to this day. Out of state researchers arrested on entry for presenting research.