Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Credential Based Approach to Managing Exceptions in Digital Rights Management Systems Jean-Henry Morin University of Geneva – CUI.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "A Credential Based Approach to Managing Exceptions in Digital Rights Management Systems Jean-Henry Morin University of Geneva – CUI."— Presentation transcript:

1 A Credential Based Approach to Managing Exceptions in Digital Rights Management Systems Jean-Henry Morin morin@cui.unige.ch University of Geneva – CUI CCNC’05, DRM Workshop, 6 Jan, 2005

2 1/6/2005CCNC'05 DRM Workshop2 Outline Motivation & Background Usage Scenarios Expressing Exceptions as Credentials The proposed approach : Attribute Certificates Resulting Scenario Conclusion & Discussion

3 1/6/2005CCNC'05 DRM Workshop3 Motivation & Background Problem Statement Managing Exceptions in DRM enabled systems Hard problem, given little attention Exceptions in the context of DRM Particular situation unanticipated by the legitimate content « right holder » where : Rights or policy should be waived or dynamically adapted While maintaining a required persistent protection level and governed usage control Rational for considering Exceptions Conflicting national and international legal frameworks Cannot reasonably anticipate and formalize all situations…

4 1/6/2005CCNC'05 DRM Workshop4 Motivation & Background (cont.) Unrealistic, impossible nor desirable Limited resource devices Cell phones, PDAs, sensors, etc. 100 kb 1 Mb Content Rules & Policies 

5 1/6/2005CCNC'05 DRM Workshop5 Usage Scenarios Fair use policies E.g., Academics, scholars, etc. Copyright law and national provisions E.g., Blind and visually impaired (Spain, Portugal, Scandinavia) Communities and affiliations E.g., national and local chapters of professional associations Etc.

6 1/6/2005CCNC'05 DRM Workshop6 Expressing Exceptions as Credentials Based on « real world » credential patterns Locally managed and held (credential store) Short lived or fixed life time Revocable Late binding (enforcement point)

7 1/6/2005CCNC'05 DRM Workshop7 The proposed approach : Attribute Certificates X.509 Attribute Certificates (AC): digitally signed (certified) identity and set of attributes PKC bind PK to identity (passport analogy) AC bind attributes to identity (no PK, visa analogy) Short lived Delegation model separating identity from authorization ACA AC Authority (ACA) Holder identity Validity Period Attributes AC Serial # Etc.

8 1/6/2005CCNC'05 DRM Workshop8 Resulting Scenario AC Credentials delivered by local ACA together with other administrative tokens Requires provisioning DRM systems for checking locally held credentials for applicability and precedence (Enforcement point) prior to rendering / exception license acquisition Exception licenses granted for short time periods Logging and audit trails of granted exceptions for ACA reputation management and reporting purposes

9 1/6/2005CCNC'05 DRM Workshop9 Conclusion & Discussion Future Work and Leads : Feasibility, formal specification and design, proof of concept prototype Interoperability and Semantics of Exceptions (Exception Data Dictionary) Format and Media independent descriptor for content assets Generic Renewable Space shifting for portability Rights, Policies expressed as attributes (AC)

10 1/6/2005CCNC'05 DRM Workshop10 Questions… … & Discussion

Download ppt "A Credential Based Approach to Managing Exceptions in Digital Rights Management Systems Jean-Henry Morin University of Geneva – CUI."

Similar presentations

The Role of the IRB An Institutional Review Board (IRB) is a review committee established to help protect the rights and welfare of human research subjects.

The Role of the IRB An Institutional Review Board (IRB) is a review committee established to help protect the rights and welfare of human research subjects.
Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.

Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.
ITU WORKSHOP ON STANDARDS AND INTELLECTUAL PROPERTY RIGHTS (IPR) ISSUES Session 5: Software copyright issues Dirk Weiler, Chairman of ETSI General Assembly.

ITU WORKSHOP ON STANDARDS AND INTELLECTUAL PROPERTY RIGHTS (IPR) ISSUES Session 5: Software copyright issues Dirk Weiler, Chairman of ETSI General Assembly.
Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
Cobalt: Separating content distribution from authorization in distributed file systems Kaushik Veeraraghavan Andrew Myrick Jason Flinn University of Michigan.

Cobalt: Separating content distribution from authorization in distributed file systems Kaushik Veeraraghavan Andrew Myrick Jason Flinn University of Michigan.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.

Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
Copyright, 2010 Maryland’s New Power of Attorney Law Presented September 1, 2010 by Marjorie A. Corwin and Carla Stone Witzel Gordon, Feinblatt, Rothman,

Copyright, 2010 Maryland’s New Power of Attorney Law Presented September 1, 2010 by Marjorie A. Corwin and Carla Stone Witzel Gordon, Feinblatt, Rothman,
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.

Geneva, Switzerland, 2 June 2014 Introduction to public-key infrastructure (PKI) Erik Andersen, Q.11 Rapporteur, ITU-T Study Group 17 ITU Workshop.
Report on Attribute Certificates By Ganesh Godavari.

Report on Attribute Certificates By Ganesh Godavari.
ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct, 17 2012.

Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
Confidential 1 Electronic Prescribing of Controlled Substances (EPCS) Part 1 of a 3 Part Series Chuck Klein, Ph.D. GM/Director, Medication Management.

Confidential 1 Electronic Prescribing of Controlled Substances (EPCS) Part 1 of a 3 Part Series Chuck Klein, Ph.D. GM/Director, Medication Management.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
“...creating knowledge.” Enabling Digital Content Protection on Super-Distribution Models - Carlos Serrão ISCTE – Intituto Superior.

“...creating knowledge.” Enabling Digital Content Protection on Super-Distribution Models - Carlos Serrão ISCTE – Intituto Superior.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.

CoreGRID Workpackage 5 Virtual Institute on Grid Information and Monitoring Services Authorizing Grid Resource Access and Consumption Erik Elmroth, Michał.
May 18, 2004SCORM/NSDL Technical Meeting SCORM/NSDL Technical Meeting Alexandria, Virginia May 18, 2004 Reusability & Persistence: Talking Points -Robby.

May 18, 2004SCORM/NSDL Technical Meeting SCORM/NSDL Technical Meeting Alexandria, Virginia May 18, 2004 Reusability & Persistence: Talking Points -Robby.
FI-WARE – Future Internet Core Platform FI-WARE Security July 2011 High-level Description.

FI-WARE – Future Internet Core Platform FI-WARE Security July 2011 High-level Description.

Similar presentations

Ads by Google