Presentation is loading. Please wait.

Presentation is loading. Please wait.

When DRM Meets Restricted Multicast A Content Encryption Key Scheme for Restricted Multicast and DRM Min FENG and Bin ZHU Microsoft Research Asia.

Published byMelanie Franklin Modified over 9 years ago

Similar presentations

Presentation on theme: "When DRM Meets Restricted Multicast A Content Encryption Key Scheme for Restricted Multicast and DRM Min FENG and Bin ZHU Microsoft Research Asia."— Presentation transcript:

1 When DRM Meets Restricted Multicast A Content Encryption Key Scheme for Restricted Multicast and DRM Min FENG and Bin ZHU Microsoft Research Asia

2 Outline Introduction Two straight-forward solutions Our solution Conclusion

3 Scenario Restricted multicast/broadcast ̵ Content is encrypted with symmetric encryption ̵ Users may want to save encrypted multicast/broadcast content locally for replay Premium content stored at client side should be DRM protected to prevent unauthorized usage How to combine DRM with restricted multicast/broadcast?

4 Challenges Encryption is designed differently for restricted multicast/broadcast and DRM ̵ Restricted multicast/broadcast Content encryption keys sent to a privileged group of users Rekey whenever membership changes ̵ DRM A single key is typically used to encrypt a file to simplify key management and delivery It is difficulty to integrate the two encryption systems into one

5 Straightforward Solution: Direct Recording Scheme ̵ Save encrypted multicast content directly ̵ Get all the encryption keys associated to the saved content from license server before playing Strength ̵ No extra operations needed to save content Weakness ̵ Complex key management – all multicast content encryption keys are maintained at license server ̵ Many keys may need to be delivered in a license to a client

6 Straightforward Solution: Transcryption Scheme ̵ Transcrypt the encrypted multicast content into DRM- encrypted content in saving to local files ̵ One simple key is transferred in the license before playing Strength ̵ One single key is in a license ̵ Key management can be simply Weakness ̵ Additional secure module – content packaging ̵ Additional operations during recording

7 Question Is it possible to design a key scheme for multicast such that the DRM has the advantages of both schemes? ̵ Saving multicast content directly to local files ̵ Simple DRM key management and delivery The answer is yes – An integrated content encryption key scheme proposed here

8 Goals of Our Project Combining advantages of both straightforward methods With the knowledge of all used keys, a hacker cannot derive the next key Control is exact: Only the requested content can be decrypted Secure against collusion and other attacks

9 Main Ideas in Our Solution Content encryption keys ̵ Related to each other ̵ Generated with some master secret A “seed” secret corresponding to saved content can be generated Content decryption keys can be regenerated from the “seed” secret “Seed” secret cannot derive the master secret or other content encryption keys

10 Our Solution – Setup n = pq, p and q are two large secret prime numbers P – a large collection of prime numbers s – a random number in (1, n) and co-prime to n A selection scheme to select numbers from P sequentially that are co-prime to and selection scheme are master secret

11 Our Solution – Multicast The first content encryption key is The k-th content encryption key: Selected prime number is sent to clients with the content encrypted with

12 Our Solution – Recording Def. Encryption block or block means a block of data encrypted with the same content encryption key in multicast – i-th block encrypted with the key Saved content and corresponding primes to be replayed directly to a local file ̵ { } & { } (i<I), I is an arbitrary set of indexes.

13 Our Solution – Replay Acquire a single key for saved content, where For any block in the saved file, its decryption key is derived as:

14 Our Solution – Security We have proved: ̵ The seed key in the license can derive only the keys corresponding to saved content and vice versa ̵ Collusion attacks cannot deduce any new keys that they have already had We can prove our scheme is equivalent to Strong RSA Assumption

15 Our Solution – Strength & Weakness Strength ̵ Saving multicast content directly ̵ Easy key management and one single key in a license for an arbitrarily saved blocks (no need to be indexed consecutively) ̵ Easy merging and deleting contents – Only a new seed key is delivered in a new license ̵ Secure Weakness ̵ Computation complexity ̵ Set of prime numbers may run out and reset of parameters such as s is then needed.

16 Conclusion We addressed problem to protect with DRM recorded content from restricted multicast/broadcast We proposed a novel multicast content encryption key scheme to facilitate subsequent DRM operations Our solution is secure and makes recording and DRM key management/delivery very simple

17 Questions?

Download ppt "When DRM Meets Restricted Multicast A Content Encryption Key Scheme for Restricted Multicast and DRM Min FENG and Bin ZHU Microsoft Research Asia."

Similar presentations

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.
Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.

Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.
Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).

Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).
A Survey of Key Management for Secure Group Communications Celia Li.

A Survey of Key Management for Secure Group Communications Celia Li.
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
Secure Multicast (II) Xun Kang. Content Batch Update of Key Trees Reliable Group Rekeying Tree-based Group Diffie-Hellman Recent progress in Wired and.

Secure Multicast (II) Xun Kang. Content Batch Update of Key Trees Reliable Group Rekeying Tree-based Group Diffie-Hellman Recent progress in Wired and.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
1 A secure broadcasting cryptosystem and its application to grid computing Eun-Jun Yoon, Kee-Young Yoo Future Generation Computer Systems (2010),doi:10.1016/j.future.2010.09.012.

1 A secure broadcasting cryptosystem and its application to grid computing Eun-Jun Yoon, Kee-Young Yoo Future Generation Computer Systems (2010),doi: /j.future
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.

Securing Data Storage Protecting Data at Rest Advanced Systems Group Dell Computer Asia Ltd.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
PRIAM: PRivate Information Access Management on Outsourced Storage Service Providers Mark Shaneck Karthikeyan Mahadevan Jeff Yongdae Kim.

PRIAM: PRivate Information Access Management on Outsourced Storage Service Providers Mark Shaneck Karthikeyan Mahadevan Jeff Yongdae Kim.
Building an Encrypted and Searchable Audit Log 11th Annual Network and Distributed Security Symposium (NDSS '04); 2004 February 5-6; San Diego; CA. Presented.

Building an Encrypted and Searchable Audit Log 11th Annual Network and Distributed Security Symposium (NDSS '04); 2004 February 5-6; San Diego; CA. Presented.

Similar presentations

Ads by Google