Core Security Requirements of DRM Systems
نویسندگان
چکیده
The use of Digital Rights Management (DRM) systems involves several stakeholders, such as the content provider, the license provider and the user, each having their own incentives to use the system. Proper use of the system implies that these incentives can only be met if certain security requirements are fulfilled. Quite some attention in literature has been devoted to specific security aspects of DRM systems. The contributions of this chapter consist of a systematic overview of core security requirements for DRM systems. This chapter conducts a stakeholder analysis and develops a simple, generic conceptual model to arrive at such a set of core security requirements.
منابع مشابه
Verification and Application of Conceptual Model and Security Requirements on Practical Drm Systems in E-learning
The paper represents a verification of a previously developed conceptual model of security related processes in DRM implementation. The applicability of established security requirements in practice is checked as well by comparing these requirements to four real DRM implementations (Microsoft Media DRM, Apple's iTunes, SunnComm Technologies’s MediaMax DRM and First4Internet’s XCP DRM). The expl...
متن کاملIdentity Based Drm System with Total Anonymity and Device Flexibility Using Ibes
Most of the Digital Rights Management (DRM) systems fail to cover all requirements like user anonymity, user fairness, security and others. Device based DRM systems, adopted by most providers, lack user fairness and mostly follow proprietary formats. On the contrary, Smart Card DRM systems satisfy user anonymity and fairness, but have certain vulnerabilities, as identified in this paper. We pro...
متن کاملNuovo DRM Paradiso: Designing a Secure, Verified, Fair Exchange DRM Scheme
We introduce Nuovo DRM, a digital rights management scheme aimed to provide formal and practical security. The scheme is based on a recent DRM scheme, which we formally specify in the μCRL process algebraic language. The original scheme stated the following security requirements: effectiveness, secrecy and resistance of content masquerading. We formalise these security requirements as well as s...
متن کاملPersistent Protection in Multicast Content Delivery
Persistent Protection in Multicast Content Delivery Malek Barhoush, Ph.D. Concordia University, 2012 Computer networks make it easy to distribute digital media at low cost. Digital rights management (DRM) systems are designed to limit the access that paying subscribers (and non-paying intruders) have to these digital media. However, current DRM systems are tied to unicast delivery mechanisms, w...
متن کاملAnonymous Pairing-Free and Certificateless Key Exchange Protocol for DRM System
Mostly, current security architectures for Digital rights management (DRM) systems use either Public Key Cryptography (PKC) or Identity-based Public Key Cryptography (ID-PKC). However, PKC has a complex certificate management and ID-PKC has a key escrow problem. Certificateless Public Key Cryptography (CL-PKC) has some attractive properties which seem compatible with the requirements of DRM sys...
متن کامل