Presentation is loading. Please wait.

Presentation is loading. Please wait.

Content Protection for Recordable Media Florian Pestoni IBM Almaden Research Center.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Content Protection for Recordable Media Florian Pestoni IBM Almaden Research Center."— Presentation transcript:

1

2 Content Protection for Recordable Media Florian Pestoni IBM Almaden Research Center

3 Why content protection? Shift from physical to digital distribution Content is licensed, not sold Digital content resides in potentially “hostile” environment

4 Can copyright infringement be prevented? It can be discouraged –Self enforcement –Inconvenience Infringers can be prosecuted $5 lock protects $1000’s of property No No, but…

5 It is Not About the Cryptography... Thought experiment: –Movies'R'us.com has just invented a novel compression technique for video –They get a strong patent on the technique –They license the technique for prerecorded DVDs, and require players to verify usage rights –Finally, they give the studios "third party beneficiary rights" which gives them status in court to sue infringers A complete, logical, copy protection scheme … it’s about the license

6 Global secret schemes Once broken, all content is exposed to everyone at once Weakness in: –Thought experiment just described –CSS (DVD)

7 CPRM Jointly developed by “4C”: –IBM, Intel, Matsushita and Toshiba Currently announced for: –Secure Digital (SD) card, DVD-RAM/R/RW … and its cousin CPPM –DVD-Audio

8 Goals Protect stored content from simple replication Trace and revoke non-compliant devices –Renewable security Survive multiple “hacking events” Practical –Storage –Processing

9 Algorithmic lineage Broadcast encryption –Fiat and Naor, Crypto ’93 Tracing traitors –Chor et al., Crypto ‘94

10 Elements of CPRM C2 Symmetric cryptosystem –Efficient implementation in hardware Media Key Blocks –MKBs are recorded on the media Device Keys –Are stored at the players

11 Licensing All elements must be licensed from licensing center (License Management International, LLC) –C2 “S-boxes” To implement compliant players –MKBs To CPRM-enable media –Device keys To be able to play and record CPRM-protected content Small fees associated with the keys and MKBs

12 CPRM at work Device Keys Media Key Block ID media E Kmu (Kt ) E Kt (content) Process MKB Km Media key Kmu Media Unique key One-wayDecrypt Kt Title key Decrypt Content

13 Device Keys A scheme consists of a large matrix of random keys –K i, j where 0  i < R, 0  j < C Each device is assigned C keys –each Kd j where 0  j < C corresponds to a key from column j in the scheme matrix Device keys must be stored “securely” on each device

14 E Ki,j (Km) Media Key Blocks A Media Key Block is a data structure that contains multiple ciphers of the same media key Km under different device keys Kd E Ki,j (Km) Device A Device B

15 Revocation To revoke Device B, an MKB is written that has invalid keys in all the positions corresponding to the keys assigned to B E Ki,j (Km) Device A Device B

16 Threat model I Over time, keys will be leaked: –Reverse engineering –“Sloppy” or “evil” licensees Solution: –Disable compromised keys –Prevent “cloned” devices from playing new content Limitation: –As the number of revocations grows, the probability that compliant devices will be disabled increases

17 Threat model II Save/restore attack: –Bit-by-bit copy of media contents –Delete (e.g. SDMI checkout) –Restore media image Solution: –Dynamic media id (used to compute Kmu) is incremented after every secure delete Limitation: –Must re-encrypt all title keys with the new Kmu

18 Tracing If a cloned device is “captured,” custom MKBs are created to trace the compromised device keys: –For each column, write garbage in the top half and real keys in the bottom half –If the player cannot decrypt, write good keys in the top quarter and garbage in the rest –Otherwise, continue binary search in “good” section until it is pinned down –Proceed to the next column

19 Call to action In the interest of copyright owners, we are making circumvention “inconvenient” But we need to make the usage of copyrighted content more convenient for consumers

Download ppt "Content Protection for Recordable Media Florian Pestoni IBM Almaden Research Center."

Similar presentations

© 2003 Verance Corporation. 1 Verance Copy Management System Presentation to CPTWG ARDG April 10, 2003.

© 2003 Verance Corporation. 1 Verance Copy Management System Presentation to CPTWG ARDG April 10, 2003.
T O P I C ST O P I C S Uses of Technical Measures Case Studies and Types of Technical Measures The Problem of Hacking and Circumvention Online Music Distribution.

T O P I C ST O P I C S Uses of Technical Measures Case Studies and Types of Technical Measures The Problem of Hacking and Circumvention Online Music Distribution.
Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.

Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.
© 2000 Verance Corporation Verance Audio Watermarking Technologies for Protection of Digital Audio and Video Joseph M. Winograd, Ph.D. Verance Corporation.

© 2000 Verance Corporation Verance Audio Watermarking Technologies for Protection of Digital Audio and Video Joseph M. Winograd, Ph.D. Verance Corporation.
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.
Data Encryption Standard (DES)

Data Encryption Standard (DES)
Payment Systems 1. Electronic Payment Schemes Schemes for electronic payment are multi-party protocols Payment instrument modeled by electronic coin that.

Payment Systems 1. Electronic Payment Schemes Schemes for electronic payment are multi-party protocols Payment instrument modeled by electronic coin that.
Traitor Tracing Vijay Ramachandran CS 655: E-commerce Foundations October 10, 2000.

Traitor Tracing Vijay Ramachandran CS 655: E-commerce Foundations October 10, 2000.
Traitor Tracing Papers Benny Chor, Amos Fiat and Moni Naor, Tracing Traitors (1994) Moni Naor and Benny Pinkas, Threshold Traitor Tracing (1998) Presented.

Traitor Tracing Papers Benny Chor, Amos Fiat and Moni Naor, Tracing Traitors (1994) Moni Naor and Benny Pinkas, Threshold Traitor Tracing (1998) Presented.
Broadcast Encryption and Traitor Tracing 2001. 12. 2001507 Jin Kim.

Broadcast Encryption and Traitor Tracing Jin Kim.
1 Florian Pestoni IBM Research IBM xCP Cluster Protocol IBM Presentation to Copy Protection Technical Working Group July 18 th, 2002.

1 Florian Pestoni IBM Research IBM xCP Cluster Protocol IBM Presentation to Copy Protection Technical Working Group July 18 th, 2002.
Copyright Law Boston College Law School March 13, 2003 Rights - Digital Rights.

Copyright Law Boston College Law School March 13, 2003 Rights - Digital Rights.
In the last part of the course we make a review of selected technical problems in multimedia signal processing First problem: CONTENT SECURITY AND WATERMARKING.

In the last part of the course we make a review of selected technical problems in multimedia signal processing First problem: CONTENT SECURITY AND WATERMARKING.
ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.

ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.
Scalable Secure Bidirectional Group Communication Yitao Duan and John Canny Berkeley Institute of Design Computer Science.

Scalable Secure Bidirectional Group Communication Yitao Duan and John Canny Berkeley Institute of Design Computer Science.
1 DVD Copyright Management Schemes Tanveer Alam CVN.

1 DVD Copyright Management Schemes Tanveer Alam CVN.
Freenet A Distributed Anonymous Information Storage and Retrieval System I Clarke O Sandberg I Clarke O Sandberg B WileyT W Hong.

Freenet A Distributed Anonymous Information Storage and Retrieval System I Clarke O Sandberg I Clarke O Sandberg B WileyT W Hong.
DRM & Key Revocation By David Coleman. DRM & Key Revocation ► Digital Rights Management – A system for controlling the use of content ► Key Revocation.

DRM & Key Revocation By David Coleman. DRM & Key Revocation ► Digital Rights Management – A system for controlling the use of content ► Key Revocation.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
Key Management and Distribution. YSLInformation Security – Mutual Trust2 Major Issues Involved in Symmetric Key Distribution For symmetric encryption.

Key Management and Distribution. YSLInformation Security – Mutual Trust2 Major Issues Involved in Symmetric Key Distribution For symmetric encryption.

Similar presentations

Ads by Google