Presentation is loading. Please wait.

Presentation is loading. Please wait.

Digital Rights Management John Manferdelli University of Washington.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Digital Rights Management John Manferdelli University of Washington."— Presentation transcript:

1 Digital Rights Management John Manferdelli University of Washington

2 DRM as Protection for copyrighted materials Digital objects are very easy and cheap to copy: –Music, Movies, Text, Executables. –Essentially no “friction” from duplication costs How to protect digital copyrighted content? Should content be protected? –40 billion dollars a year in foreign trade for the US. –Should not conflict with “fair-use” doctrine. –What is fair use anyway? Can content be protected? –Persistent pirate will always succeed in copying. –Technology can potentially prevent small scale copying: “keeping honest people honest” Slide from Dan Boneh

3 Computer Security and DRM Computer Security involves processes and technology that enable the enforcement of a security policy on a computer system. Security Policy specifies: –Isolation/Secure Execution and other “safety” properties –Access and use restrictions on resources imposed on security principals (think “users”) using the computer system (“Access Control”) –Availability and other “liveness” properties Digital Right Management (a.k.a – copyright/content protection) involves enforcement of a security policy affecting use of digitally encoded material specified by a content “owner” on computers not in the physical control of the content owner.

4 Kernelized Design Trusted Computing Base –Hardware and software for enforcing security rules Reference monitor –Part of TCB –All system calls go through reference monitor for security checking –Note implicit trust assumption: “owner” or “Admin” fully trusted and omnipotent –Additional assumption: no offline attack. User space Kernel space User process OS kernel TCB Reference monitor

5 … and now for something completely different Superficially anyway Trust Model Changes –Admin is not “root of trust” for all actions –Model is naturally distributed Persistent Rights –Off-line –Granular and Flexible Cryptographic protection Software runs in Trusted Environment. –Software is the Security Principal –Lampson, Abadi, Wobber model

6 Key Elements of DRM Licensing –The process of packaging and delivering protected bits with un-forgeable terms of usage (“digital license”) useable only by authenticated user/environment Enforcement –The process of insuring that the use of the digital work adheres to enumerated use, privacy and operating restrictions stated in a digital license

7 Encryption and Rules Content is encrypted –Therefore unusable with the right to decrypt the content Content license specifies rights (“capabilities”) – cannot be forged –Specifies authentication information, environment (application, OS, etc.) –Specifies usage/access control rules –Contains the “sealed” key for the content. Key can be sealed by any licensor (using a public key) but can only be “unsealed” within an isolated, trusted environment (by a private key only known in that trusted environment) Content License 938473 Machine 02345 Running Program 1 (with hash 0x7af33) Can view Document 3332 on 2002-20-01 Sealed Key: 0x445635 Signed Boeing

8 Enforcement At initialization, Trusted Program says: 1.Isolate me 2.Authenticate me After Initialization completes successfully, Jeff’s PC 1.Makes Private key available for use When consuming content, Trusted Program: 1.Retrieves license and encrypted content file 2.Authenticates license by checking digital signature 3.Checks rule compliance 4.Uses private key to unseal the content key 5.Decrypts and uses content within Trusted Program Trusted Program Trusted Program Authenticating Public Key (“Root of Trust”) 0x7af33 PK: 8374505 Jeff’s PC

9 Obtaining Rights and Permissions License Server Content License 938473 Machine 02345 Running Program 1 (with hash 0x7af33) Can view Document 3332 on 2002-20-01 Sealed Key: 0x445635 Signed Boeing Machine License 83874 Machine 02345 Running Program 1 (with hash 0x7af33) Has access to a private key Whose public key is 0x2231 Signed Microsoft 2) Response Here’s your license Customer benefits Licenses can be used offline Licenses can be used offline Simple management of authorization (no central authority) Simple management of authorization (no central authority) Very simple and flexible distribution (a server can distribute to “any” client) Very simple and flexible distribution (a server can distribute to “any” client) 12 Jeff’s PC 1) Request I want document 2346. Here’s my Machine License to show you can trust my machine

10 Key Hardware Components    

11 A Hypervisor?

12 XrML Expressions Each “rights expression” may specify a combination of rules such as: –what rights are available, –for whom, –for how many times, –within what time period, –under what access conditions, –for what fees, –within which territory, and –with what obligations, –Etc.

13 “Small” Rights Management Protecting Personal Information Protecting personal Health and Financial information Protecting individual communication Protecting Corporate information

14 Scenarios for Small Rights Management Centralized logging of license requests Centralized logging of license requests Centralized templates to express policy Centralized templates to express policy Offline and online scenarios Offline and online scenarios Secure database-backed content Secure database-backed content Intranet portals Intranet portals Backward compatibility for earlier apps Backward compatibility for earlier apps Who can access sensitive plans Who can access sensitive plans Level of access: print, edit, save, etc. Level of access: print, edit, save, etc. Length of access period Length of access period Keep mail off internalmemos.com Keep mail off internalmemos.com Secure Executive-level mail Secure Executive-level mail Consistent application of expiry rules Consistent application of expiry rules Web Content Protected Information Do-Not-Forward Email Centralized Policy Control

15 “Big” Rights Management Mass Market Content –Books –Audio –Video –Software Much more flexible use and better content management –But there are “Fair Use” concerns which can be mitigated … maybe

16 Scenarios for Big Rights Management Library/archive Library/archive Roaming Roaming “Active” content “Active” content Premium releases Premium releases Price discrimination Price discrimination I hear it. I want it. I get it. I hear it. I want it. I get it. Lower manufacturing costs Lower manufacturing costs More variety? More variety? Most popular use of DRM Most popular use of DRM I don’t get it I don’t get it Pay per view movies Web distributed songs Ring tones E-Books

17 Watermarking Durable, imperceptible marking of content. Each “mark” is one bit of information. –Robust watermarking – watermark is hard to removed (using Stirmark, etc) –Approach taken by SDMI, Digimarc, Verence. –A failure, generally speaking Watermarking is content specific –Text- custom spacing, custom fonts, deliberate errors –Music – Changes to Fourier transformed components –Picture – Slight changes to Fourier transformed image –Video Watermarking bandwidth is also content specific

18 How a watermarking system protection systems work One bit of information (The “protected bit”) signals to player (IE, RealPlayer, Windows Media Player, DVD Player) that content is protected and requires a license. –Sometimes additional bits encoded identifying content Player refuses to play content without a license Can you think how to defeat this? –Hint: Don’t ask, don’t tell, don’t enforce

19 DRM Systems in the News SDMI Windows Media Player Real DRM Apple DRM IRM CSS Macrovision LexMark Xbox Sony Playstation

20 Technical Issues in Mechanisms Break Once Break Everywhere Degree of isolation –Transducer Problem –I/O Privacy and Interoperability Flexibility (transfer, etc) –Multiple devices –Multiple users –Migration User Control/Backup

21 Social and Policy Issues “Fair Use” Monopoly “Lock-in” Erosion of copyright in favor of “contracts” Archive DMCA and hacking “Information wants to be free” Consumer expectations Draconian licensing policies

22 An Analog Attack …

Download ppt "Digital Rights Management John Manferdelli University of Washington."

Similar presentations

ContentGuard An Intellectual Property Company IPED Conference November 1, 2007 Presented By Eddie Chen CONTENTGUARD.

ContentGuard An Intellectual Property Company IPED Conference November 1, 2007 Presented By Eddie Chen CONTENTGUARD.
CONFIDENTIAL DIGITAL WATERMARKING ALLIANCE. CONFIDENTIAL DIGITAL WATERMARKING ALLIANCE 2 Digital Watermarking Alliance Charter The Digital Watermarking.

CONFIDENTIAL DIGITAL WATERMARKING ALLIANCE. CONFIDENTIAL DIGITAL WATERMARKING ALLIANCE 2 Digital Watermarking Alliance Charter The Digital Watermarking.
Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential. Mobile Content Strategies and Deployment Best Practices.

Copyright © 2012 AirWatch, LLC. All rights reserved. Proprietary & Confidential. Mobile Content Strategies and Deployment Best Practices.
Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Chapter 6A Operating System Basics PART II.

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Chapter 6A Operating System Basics PART II.
Rights Management Services (RMS) Paul Cullimore Graham Calladine Security Solutions Team, MCS, UK.

Rights Management Services (RMS) Paul Cullimore Graham Calladine Security Solutions Team, MCS, UK.
Rob Farraher Ken Pickering Lim Vu

Rob Farraher Ken Pickering Lim Vu
| Copyright© 2010 Microsoft Corporation Quick Start into Activating and Selling Office 365.

| Copyright© 2010 Microsoft Corporation Quick Start into Activating and Selling Office 365.
Digital Rights Management (DRM) Goal: Provide access control to digital content in order to support a variety of business models. Technical Challenge:

Digital Rights Management (DRM) Goal: Provide access control to digital content in order to support a variety of business models. Technical Challenge:
1 Copyright Protection Lecture 1:Watermarking and Fingerprinting (passive copyright protection) Lecture 2:Tracing and Revoking pirates. (copyright protection.

1 Copyright Protection Lecture 1:Watermarking and Fingerprinting (passive copyright protection) Lecture 2:Tracing and Revoking pirates. (copyright protection.
Lesson 13 PROTECTING AND SHARING DOCUMENTS

Lesson 13 PROTECTING AND SHARING DOCUMENTS
Blue Spike © 2001 Blue Spike, Inc. - 1 Copyright Protection? What are the technologies which can address copyright management in a world of digital copies?

Blue Spike © 2001 Blue Spike, Inc. - 1 Copyright Protection? What are the technologies which can address copyright management in a world of digital copies?
CSE331: Introduction to Networks and Security Lecture 28 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 28 Fall 2002.
CSE331: Introduction to Networks and Security Lecture 36 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 36 Fall 2002.
Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.

Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.
1 Are “Trusted Systems” Useful for Privacy Protection? Joan Feigenbaum PORTIA Workshop Stanford Univ., July 8-9, 2004.

1 Are “Trusted Systems” Useful for Privacy Protection? Joan Feigenbaum PORTIA Workshop Stanford Univ., July 8-9, 2004.
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.

Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
CONTENT PROTECTION AND DIGITAL RIGHTS MANAGMENT

CONTENT PROTECTION AND DIGITAL RIGHTS MANAGMENT
Electronic Customer Portal System. Reducing Risks – Increasing Efficiency – Lowering Costs Secure Internet based Communication Gateway direct to your.

Electronic Customer Portal System. Reducing Risks – Increasing Efficiency – Lowering Costs Secure Internet based Communication Gateway direct to your.

Similar presentations

Ads by Google