OpenSDRM Panel

Open and Secure Digital Rights Management

Issues in security for Digital Rights Management

Carlos Serrã[email protected]

[email protected]

ISCTE/DCTI/ADETTILisboa, Portugal

UPC/AC/DMAGBarcelona, Spain

mailto:[email protected]




OpenSDRM

• What is OpenSDRM

• Distributed DRM architecture

• Each of the functionalities is implemented has an independent distributed service

• There can exist multiple instances of the same service provided by different entities

2

OpenSDRM

• OpenSDRM is open:

• open-source

• open specifications

• open interfaces

• open to different types of content

• open to support many different business models

• open to interoperability

3

OpenSDRM

• OpenSDRM is secure:

• relies on public and secret cryptography: RSA, AES, X.509, ...

• XML and X.509 certificates allow the establishment of trust environments between all the components

• client-side rights management intermediary - wallet

• client content rendering applications authentication and registration

• secure storage

• secure rights management intermediation with DRM platform

4

OpenSDRM

5

End-User

System

End-Users

Content Management System

Authentication and Accounting

System

License Management System

Payment System

Protection Tools System

Content Rendering

Applications

WalletDRM-IMw

CommerceService (COS)

Media Distribution

Service (MDS)

Content Production

Service (CPS)

RegistrationService (RGS)

AuthenticationService (AUS)

ConfigurationService (CFS)

LicenseService (LIS)

Payment GatewayService (PGW)

Protection Tools

Service (PTS)

Browse through

available content

Content

Send content

order

Content

MetadataRegister content

and metadata

License template

production and

content key

storage

Payment authorization

and requests

Request and download

content protection tools

Content protection

tools

Licenses

Creates and distributes

digital credentials

OpenSDRM

• Components

6

TCP/IP

HTTP(s)

SOAP

Service A

TCP/IP

HTTP(s)

SOAP

Service B

Application level securityApplication Application

Channel level securitySSL/TLS SSL/TLS

OpenSDRM

• Wallet Rights Management interoperable Middle-ware

7

Content Rendering Application

A

Wallet Rights Management interoperability Middle-ware


B


C


...


Z

DRM platform

OpenSDRM

8

Pro

vid

er

Pro

vid

er

DRMsystem

DRMsystem

Governed and Protected content

Content RenderingApplication






Content

Content

Content

DRMsystem

Pro

vid

er

Content from different providersand DRM systems

OpenSDRM

9

RightsExpressionInterpreter

MPEG-21REL

ODRL

Secure Storage Module

Application Registration

Application Authorisation

Application Authenticator

DRM Secure Comm.

Protection Tools Manager1

23

4

5

6

7

8 9

10

11

12

CRA

DRM

OpenSDRM

10


A


B


C


...


Z

DRM platform

Common Operation Language command


Protocols and formats DRM-dependent

DRM platform DRM platform

RightsExpressionInterpreter

MPEG-21REL

ODRL

Secure Storage Module

Application Registration

Module

Application Authorisation

Module

Application Authenticator

ModuleDRM Secure Comm. Module

Protection Tools

Manager

OpenSDRM

• OpenSDRM usage cases:

• Until now, mostly used on R&D projects

• Content business scenarios

• Digital Music, MOSES FP5-IST project, Music-4You.com

• JPEG2000 digital images, HICOD2000 ESA RTD project

• Video-Surveillance, WCAM FP6-IST project

• Home Networking Digital Music, MediaNet FP6-IST project

11

OpenSDRM

• OpenSDRM is available at:

• This “info” sites are still under development:

• http://www.opensdrm.com

• http://www.opensdrm.org

• The source-code can be fetched (SVN) from:

• http://sourceforge.net/projects/opensdrm/

• Contributions are quite welcome!

12

http://sourceforge.net/projects/opensdrm/

http://sourceforge.net/projects/opensdrm/

OpenSDRM Panel

Business

Transcript of OpenSDRM Panel