Presentation is loading. Please wait.

Presentation is loading. Please wait.

DRM & Key Revocation By David Coleman. DRM & Key Revocation ► Digital Rights Management – A system for controlling the use of content ► Key Revocation.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "DRM & Key Revocation By David Coleman. DRM & Key Revocation ► Digital Rights Management – A system for controlling the use of content ► Key Revocation."— Presentation transcript:

1 DRM & Key Revocation By David Coleman

2 DRM & Key Revocation ► Digital Rights Management – A system for controlling the use of content ► Key Revocation – The ability for content producers to “revoke” the ability of a given device/player to consume the content ► Important because…  Digital content can be perfectly reproduced  CD Audio was a disaster from music studios’ perspective (the need for DRM)  DVD-Video wasn’t much better (the need for good DRM) ► I’ll be discussing 3 systems: CSS (DVD-Video), Microsoft Windows Media DRM, and AACS

3 DRM & Key Revocation Content Scramble System (CSS) ► Used on DVD-Video discs ► 40-bit keys using a secret encryption algorithm (2 LFSRs) ► Keys  Disc key – Key that allows (indirectly) decrypting the content  Player key – Key that allows player to decrypt disc key  400+ player keys ► Key block  Disc key hashed with CSS hashing algorithm  Table containing disc key encrypted with all valid player keys  Player would decrypt the disc key and then hash it to compare against hashed value ► Revocation  Removing the player key from the key block ► Completely broken  Player key recovered from Xing software player  Remaining player keys were poorly chosen and quickly guessed  Encryption was very weak anyway (a few discrepencies allowed for an O(25) attack)

4 DRM & Key Revocation Microsoft Windows Media DRM ► My motivation for this topic ► Widely used in online music services (not Apple) ► Basics  StubLib – Certificate that is statically linked in to player  Encrypted content file  License – Contains key to decrypt the content file. Encrypted with player’s public key (from StubLib).

5 DRM & Key Revocation Microsoft Windows Media DRM License acquisition

6 DRM & Key Revocation Microsoft Windows Media DRM ► Revocation  Certificate Revocation List (CRL)  Microsoft maintains the CRL and license servers are expected to pull and keep local copy current  CRL is included in the license  Works because API to play is a black box

7 DRM & Key Revocation Advanced Access Control System (AACS) ► Used on next generation DVD (blue laser) ► Strong encryption based on published standards (AES-128, SHA-1, etc.) ► Certificates  Not X.509  Each player & drive have a certificate ► Keys  Media key – necessary to decrypt content  Device keys ► Each device given a set of keys ► Sets overlap, but no two devices have the identical set ► NNL Key Management ► Keys actually organized in a binary tree where child keys of a node can be computed via a one-way function

8 DRM & Key Revocation AACS ► Revocation  Two methods  CRL ► Every disc has a player CRL and a drive CRL ► CRLs must be stored after reading  Player key revocation ► Media key is encrypted with the minimal set of keys s.t. no revoked device’s key is used but one of every valid device’s key is used ► Subset-difference ► Tree structure helps

9 DRM & Key Revocation Questions?

Download ppt "DRM & Key Revocation By David Coleman. DRM & Key Revocation ► Digital Rights Management – A system for controlling the use of content ► Key Revocation."

Similar presentations

1 G CARD Lock your data in memory card. The key to unlock your data is your memory card. Cross Platform for your security solution 8/25/2011.

1 G CARD Lock your data in memory card. The key to unlock your data is your memory card. Cross Platform for your security solution 8/25/2011.
Packaging a Presentation on a CD, using PowerPoint 2003 Multimedia Services at The Citadel Updated 6-20-07.

Packaging a Presentation on a CD, using PowerPoint 2003 Multimedia Services at The Citadel Updated
Content Scramble System for DVD PeiXian Yan,Bo Zhou,Gang Liu, ZongPeng Liu, Matthew Black December 6,2004 Supervised by Andy Brown.

Content Scramble System for DVD PeiXian Yan,Bo Zhou,Gang Liu, ZongPeng Liu, Matthew Black December 6,2004 Supervised by Andy Brown.
1 Copyright Protection Lecture 1:Watermarking and Fingerprinting (passive copyright protection) Lecture 2:Tracing and Revoking pirates. (copyright protection.

1 Copyright Protection Lecture 1:Watermarking and Fingerprinting (passive copyright protection) Lecture 2:Tracing and Revoking pirates. (copyright protection.
Why the DMCA has the right to outlaw numbers

Why the DMCA has the right to outlaw numbers
DR. MIGUEL ÁNGEL OROS HERNÁNDEZ 8. Cracking. Cracking Magnitude of piracy  All kinds of digital content (music, software, movies)  Huge economic repercussions.

DR. MIGUEL ÁNGEL OROS HERNÁNDEZ 8. Cracking. Cracking Magnitude of piracy  All kinds of digital content (music, software, movies)  Huge economic repercussions.
1 Windows Media Rights Manager and FairPlay Seminar Digital Rights Management Clara Fernández de Castro.

1 Windows Media Rights Manager and FairPlay Seminar Digital Rights Management Clara Fernández de Castro.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.
 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.

 Key exchange o Kerberos o Digital certificates  Certificate authority structure o PGP, hierarchical model  Recovery from exposed keys o Revocation.
Computer Concepts 2013 Chapter 8 Digital Media. 8 Digital Audio Basics  Sampling a sound wave Chapter 8: Digital Media 2.

Computer Concepts 2013 Chapter 8 Digital Media. 8 Digital Audio Basics  Sampling a sound wave Chapter 8: Digital Media 2.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.
Content Protection for Recordable Media Florian Pestoni IBM Almaden Research Center.

Content Protection for Recordable Media Florian Pestoni IBM Almaden Research Center.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
The Downside to DRM. What is DRM? “Digital Rights Management” Software used to control access to copyrighted material Protect company from piracy.

The Downside to DRM. What is DRM? “Digital Rights Management” Software used to control access to copyrighted material Protect company from piracy.
Software Infrastructure for Electronic Commerce All About Cryptography Professor Fred B. Schneider Dept. of Computer Science Cornell University.

Software Infrastructure for Electronic Commerce All About Cryptography Professor Fred B. Schneider Dept. of Computer Science Cornell University.
1 DVD Copyright Management Schemes Tanveer Alam CVN.

1 DVD Copyright Management Schemes Tanveer Alam CVN.
CONTENT PROTECTION AND DIGITAL RIGHTS MANAGMENT

CONTENT PROTECTION AND DIGITAL RIGHTS MANAGMENT
Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.

Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.
Chapter 14 Recording and Editing Sound. Getting Started FAQs: − How does audio capability enhance my PC? − How does your PC record, store, and play digital.

Chapter 14 Recording and Editing Sound. Getting Started FAQs: − How does audio capability enhance my PC? − How does your PC record, store, and play digital.

Similar presentations

Ads by Google