Article

Towards a secure and interoperable DRM architecture

Authors:
Gelareh Taban

University of Maryland, College Park, MD

University of Maryland, College Park, MD
View Profile

,
Alvaro A. Cárdenas

University of Maryland, College Park, MD

University of Maryland, College Park, MD
View Profile

,
Virgil D. Gligor

University of Maryland, College Park, MD

University of Maryland, College Park, MD
View Profile

DRM '06: Proceedings of the ACM workshop on Digital rights managementOctober 2006Pages 69–78https://doi.org/10.1145/1179509.1179524

Published:30 October 2006Publication History

DRM '06: Proceedings of the ACM workshop on Digital rights management

Pages 69–78

ABSTRACT

In this paper we look at the problem of interoperability of digital rights management (DRM)systems in home networks. We introduce an intermediate module called the Domain Interoperability Manager (DIM) to efficiently deal with the problem of content and license translation across different DRM regimes. We also consider the threat model specific to interoperability systems, and introduce threats such as the cross-compliancy and splicing attacks. We formalize the adversary model and define security of an interoperable DRM system with respect to this adversary. We finalize by proposing detailed protocols which achieve our security requirements. In order to achieve these requirements we provide novel applications of recently proposed proxy resignature and proxy re-encryption algorithms.

References

G. Ateniese, K. Fu, M. Green, S. Hohenberger, Improved Proxy Re-Encryption Schemes with Applications to Secure Distributed Storage, NDSS, 2005. 2 With an off-line attestation protocol, connection is only sporadic.Google Scholar
G. Ateniese, S. Hohenberger, Proxy Re-Signatures: New Definitions, Algorithms, and Applications, ACM CCS'05. Google ScholarDigital Library
M. Blaze, G. Bleumer, M. Strauss, Divertible Protocols and Atomic Proxy Cryptography, EUROCRYPT'98.Google Scholar
T. Hauser and C. Wenz, DRM Under Attack: Weaknesses in Existing Systems, Digital Rights Management: Technological, Economic, Legal and Political Aspects, November 2003.Google Scholar
N. Herberger, Virgin Media versus iTunes, http://www.indicare.org/tiki-read article.php?articleId=150, October 2005.Google Scholar
P. A. Jamkhedkar, G. L. Heileman, DRM Interoperability Analysis from the Perspective of a Layered Framework, Proceedings of the ACM Digital Rights Management workshop DRM'05, 2005. Google ScholarDigital Library
H. L. Jonker and S. Mauw, Core Security Requirements of DRM Systems, Symposium on Information Theory in the Benelux, June 2004.Google Scholar
R. H. Koenen, J. Lacy, M. Mackey, S. Mitchell, The Long March to Interoperable Digital Rights Management, Proceedings of the IEEE, vol 92(6), June 2004.Google Scholar
D. W. Kravitz, T. S. Messerges, Achieving Media Portability through Local Content Translation and End-to-End Rights Management, Proceedings of the ACM Digital Rights Management workshop DRM'05, 2005. Google ScholarDigital Library
M. Mambo, K. Usuda, E. Okamoto, Proxy Signatures: Delegation of the Power to Sign Messages, IEICETrans. Fundamentals, 1996.Google Scholar
S. Michiels, K. Verslype, W. Joosen, B. De Decker, Towards a Software Architecture for DRM, Proceedings of the ACM Digital Rights Management workshop DRM'05, 2005. Google ScholarDigital Library
S. K. Nair, B. C. Popescu, C. Gamage, B. Crispo, A. S. Tanenbaum, Enabling DRM-preserving Digital COntent Redistribution, IEEE Conference on E-Commerce Technology (CEC'05), 2005. Google ScholarDigital Library
B. C. Popescu, B. Crispo, A. Tanenbaum, F. Kamperman, A DRM Security Architecture for Home Networks, Proceedings of the ACM Digital Rights Management workshop DRM'04, 2004. Google ScholarDigital Library
R. Safavi-Naini, N. P. Sheppard, T. Uehara. Import/Export in Digital Rights Management, Proceedings of the ACM Digital Rights Management workshop DRM'04, 2004. Google ScholarDigital Library
A. U. Schmidt, O. Tafreschi, R. Wolf, Interoperability Challenges for DRM Systems, IFIP/GI Workshop on Virtual Goods, Ilmenau (Germany), May 2004.Google Scholar
Z. Tan, Z. Liu, Provably Secure Delegation-by-Certification Proxy Signature Schemes, ACM International Conference on Information Security, 2004. Google ScholarDigital Library
Susan Wegner, Prototype Description of an Open DRM Architecture, OPERA-Interoperability of Digital Rights Management Technologies, EURESCOM project report, December 2003.Google Scholar
DVB - The Digital Video Broadcasting Consortium. http://www.dvb.org/Google Scholar
Hymn Project. http://hymn-project.org/Google Scholar
iTunes FairPlay. http://www.apple.com/lu/support/itunes/authorization.htmlGoogle Scholar
Open Mobile Alliance. http://www.openmobilealliance.org/Google Scholar
Secure Digital Container. http://www.digicont.com/Google Scholar
Sharpmusique. http://www.nanocrew.net/Google Scholar
Trusted Computing Group, Trusted Computing Platform Alliance Main Specification, February 2002, Version 1.1b, http://www.trustedcomputinggroup.orgGoogle Scholar
Microsoft Windows Media Rights Manager. http://www.microsoft.com/windows/windowsmedia/howto/articles/drmarchitecture.aspxGoogle Scholar
Windows Media DRM, wikipedia entry. http://en.wikipedia.org/wiki/Windows Media DRMGoogle Scholar
Can we learn from Apple's success with iTunes Music services?. http://www.dk.capgemini.com/NewsmailSystem/Telecom/Ver1/Documents/ITunes.shtml.Google Scholar
Intertrust's Coral and Marlin. http://www.intertrust.com/main/research/initiatives.htmlGoogle Scholar
MPs in digital downloads warning. http://news.bbc.co.uk/2/hi/technology/5041684.stmGoogle Scholar
http://www.coral-interop.org/Google Scholar
Advanced access content system. http://www.aacsla.com/homeGoogle Scholar
PachyDRM. http://www.pachydrm.com/Google Scholar
The Informed Dialogue about Consumer Acceptability of DRM Solutions in Europe (INDICARE), "Consumer Survey on Digital Music and DRM", May 2005, www.indicare.org/surveyGoogle Scholar

Index Terms

Towards a secure and interoperable DRM architecture
1. Security and privacy
  1. Cryptography
    1. Cryptanalysis and other attacks
  2. Intrusion/anomaly detection and malware mitigation
2. Social and professional topics
  1. Computing / technology policy
    1. Computer crime
    2. Intellectual property
      1. Copyrights

Recommendations

Towards a software architecture for DRM
DRM '05: Proceedings of the 5th ACM workshop on Digital rights management

The domain of digital rights management (DRM) is currently lacking a generic architecture that supports interoperability and reuse of specific DRM technologies. This lack of architectural support is a serious drawback in light of the rapid evolution of ...
Read More
Secure interoperable digital content distribution mechanisms in a multi-domain architecture

Current DRM systems use the Authorized Domain concept to allow sharing of DRM-enabled multimedia contents across multiple devices. However, some devices in an authorized domain may support only a limited number of DRM systems of the content providers ...
Read More
Fairer usage contracts for DRM
DRM '05: Proceedings of the 5th ACM workshop on Digital rights management

DRM has been widely promoted as a means to enforce copyright. In many previous papers, it has been argued that DRM gives too much power to rights holders and actually goes beyond the restrictions provided by copyright laws. In this paper we argue that ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
DRM '06: Proceedings of the ACM workshop on Digital rights management
October 2006
112 pages
ISBN:159593555X
DOI:10.1145/1179509
General Chair:
Moti Yung
Columbia University
,
Program Chairs:
Kaoru Kurosawa
Ibaraki University, Japan
,
Rei Safavi-Naini
University of Wollongong, Australia
Copyright © 2006 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 30 October 2006
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
DRM
home networks
interoperability
Qualifiers
- Article
Conference
Upcoming Conference
CCS '24

Sponsor:

sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 63
  Total Citations
  View Citations
- 1,461
  Total Downloads
- Downloads (Last 12 months)24
- Downloads (Last 6 weeks)2
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Towards a secure and interoperable DRM architecture

DRM '06: Proceedings of the ACM workshop on Digital rights management

ABSTRACT

References

Cited By

Index Terms

Recommendations

Towards a software architecture for DRM

Secure interoperable digital content distribution mechanisms in a multi-domain architecture

Fairer usage contracts for DRM