nuovo drm paradiso
play

Nuovo DRM Paradiso Towards a verified, fair DRM protocol Hugo - PowerPoint PPT Presentation

Jan 21, 2024 •203 likes •557 views

Nuovo DRM Paradiso Towards a verified, fair DRM protocol Hugo Jonker h.l.jonker@tue.nl Srijith Krishnan Nair srijith@few.vu.nl Mohammad Torabi Dashti dashti@cwi.nl Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising

  1. Nuovo DRM Paradiso Towards a verified, fair DRM protocol Hugo Jonker h.l.jonker@tue.nl Srijith Krishnan Nair srijith@few.vu.nl Mohammad Torabi Dashti dashti@cwi.nl Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 1/12

  2. Digital Rights Management ■ Goal: Introduction ◆ restrict access to digital contents ● Digital Rights Management ◆ access granted only when complying with license NPGCT Scheme Nuovo DRM Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 2/12

  3. Digital Rights Management ■ Goal: Introduction ◆ restrict access to digital contents ● Digital Rights Management ◆ access granted only when complying with license NPGCT Scheme ■ Method: Nuovo DRM Assessment enforce link by bundling license with content Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 2/12

  4. Digital Rights Management ■ Goal: Introduction ◆ restrict access to digital contents ● Digital Rights Management ◆ access granted only when complying with license NPGCT Scheme ■ Method: Nuovo DRM Assessment enforce link by bundling license with content Conclusions ■ Environment: ◆ trusted devices (well...) ◆ trusted content providers Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 2/12

  5. Digital Rights Management ■ Goal: Introduction ◆ restrict access to digital contents ● Digital Rights Management ◆ access granted only when complying with license NPGCT Scheme ■ Method: Nuovo DRM Assessment enforce link by bundling license with content Conclusions ■ Environment: ◆ trusted devices (well...) ◆ trusted content providers ■ Enemy: ◆ untrusted device owners ◆ Untrusted network Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 2/12

  6. Enabling C2C exchange ■ bottleneck in provider-to-client exchanges: bandwidth Introduction NPGCT Scheme ● Enabling C2C exchange ● Protocols ● Weaknesses Nuovo DRM Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 3/12

  7. Enabling C2C exchange ■ bottleneck in provider-to-client exchanges: bandwidth Introduction ■ solution: enable client-to-client exchanges... NPGCT Scheme ● Enabling C2C exchange ● Protocols ● Weaknesses Nuovo DRM Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 3/12

  8. Enabling C2C exchange ■ bottleneck in provider-to-client exchanges: bandwidth Introduction ■ solution: enable client-to-client exchanges... NPGCT Scheme ● Enabling C2C exchange ■ ... whilst preserving DRM ● Protocols ● Weaknesses Nuovo DRM Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 3/12

  9. Enabling C2C exchange ■ bottleneck in provider-to-client exchanges: bandwidth Introduction ■ solution: enable client-to-client exchanges... NPGCT Scheme ● Enabling C2C exchange ■ ... whilst preserving DRM ● Protocols ● Weaknesses Nuovo DRM Adapt intruder model: Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 3/12

  10. Enabling C2C exchange ■ bottleneck in provider-to-client exchanges: bandwidth Introduction ■ solution: enable client-to-client exchanges... NPGCT Scheme ● Enabling C2C exchange ■ ... whilst preserving DRM ● Protocols ● Weaknesses Nuovo DRM Adapt intruder model: Assessment ■ complete, lasting protection unrealistic... Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 3/12

  11. Enabling C2C exchange ■ bottleneck in provider-to-client exchanges: bandwidth Introduction ■ solution: enable client-to-client exchanges... NPGCT Scheme ● Enabling C2C exchange ■ ... whilst preserving DRM ● Protocols ● Weaknesses Nuovo DRM Adapt intruder model: Assessment ■ complete, lasting protection unrealistic... Conclusions ■ thus: migitation procedures: ◆ detection ◆ revocation list Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 3/12

  12. Protocols Provider-client: Introduction NPGCT Scheme 1 . C → P : Request content ● Enabling C2C exchange ● Protocols 2 . C ↔ P : Mutual authentication, [payment] ● Weaknesses Nuovo DRM 3 . P → C : { M } K , { K } pk ( C ) , R, metadata ( M ) , Λ Assessment Conclusions Client-client: 1 . D → C : Request content 2 . C ↔ D : Mutual authentication { M } K ′ , { K ′ } pk ( D ) , R C ( M ) , R ′ , metadata ( M ) , Λ , Λ ′ 3 . C → D : 4 . D : Verification 5 . D → C : ψ, [ payment ] Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 4/12

  13. Weaknesses 1. P2C: no link request — rights Introduction attack: insert rights NPGCT Scheme ● Enabling C2C exchange ● Protocols ● Weaknesses Nuovo DRM Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 5/12

  14. Weaknesses 1. P2C: no link request — rights Introduction attack: insert rights NPGCT Scheme ● Enabling C2C exchange ● Protocols 2. C2C: No link delivery — payment ● Weaknesses attack: abort before payment Nuovo DRM Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 5/12

  15. Weaknesses 1. P2C: no link request — rights Introduction attack: insert rights NPGCT Scheme ● Enabling C2C exchange ● Protocols 2. C2C: No link delivery — payment ● Weaknesses attack: abort before payment Nuovo DRM Assessment Fairness (violated in C2C): Conclusions “Either both parties terminate successfully, or none does” Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 5/12

  16. Weaknesses 1. P2C: no link request — rights Introduction attack: insert rights NPGCT Scheme ● Enabling C2C exchange ● Protocols 2. C2C: No link delivery — payment ● Weaknesses attack: abort before payment Nuovo DRM Assessment Fairness (violated in C2C): Conclusions “Either both parties terminate successfully, or none does” ■ Not possible without TTP ■ Optimistic fair exchange: only use TTP if fairness violated otherwise ■ Two protocols: optimistic exchange and recovery Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 5/12

  17. Design Motivation: Introduction NPGCT Scheme Nuovo DRM ● Design ● P2C protocol ● C2C protocols Goals of Nuovo: Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 6/12

  18. Design Motivation: Introduction NPGCT Scheme ■ address weaknesses Nuovo DRM ■ increase assurance of security ● Design ● P2C protocol ● C2C protocols Goals of Nuovo: Assessment Conclusions Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 6/12

  19. Design Motivation: Introduction NPGCT Scheme ■ address weaknesses Nuovo DRM ■ increase assurance of security ● Design ● P2C protocol ● C2C protocols Goals of Nuovo: Assessment Conclusions ■ effectiveness ■ secrecy ■ resist content masquerading ■ fairness Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 6/12

  20. P2C protocol Provider — client exchange: Introduction NPGCT Scheme 1 . owner ( C ) → C : P, h ( M ) , R Nuovo DRM ● Design 2 . C → P : C, n C ● P2C protocol ● C2C protocols 3 . P → C : { n P , n C , C } sk ( P ) Assessment 4 . C → P : { n C , n P , h ( M ) , R, P } sk ( C ) Conclusions 5 . P → C : { M } K , { K } pk ( C ) , { R, n C } SK ( P ) ■ concrete protocol ■ first weakness addressed (validity of R ) Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 7/12

  21. C2C protocols Client — client optimistic exchange: Introduction NPGCT Scheme C, h ( M ) , R ′ 1 . owner ( D ) → D : Nuovo DRM ● Design 2 . D → C : D, n D ● P2C protocol ● C2C protocols 3 . C → D : { n C , n D , D } sk ( C ) Assessment { n D , n C , h ( M ) , R ′ , C } sk ( D ) 4 . D → C : Conclusions { M } K , { K } pk ( D ) , { R ′ , n D } sk ( C ) 5 . C → D : Client — client, recovery: 5 r . D : resolves ( D ) 6 r . D, n ′ D → P : D 7 r . { n P , n ′ P → D : D , D } sk ( P ) 8 r . { n ′ D , n P , � n D , n C , h ( M ) , R ′ , C � , P } sk ( D ) D → P : 9 r . { M } K , { K } pk ( D ) , { R ′ , n ′ P → D : D } SK ( P ) Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 8/12

  22. Formal analysis Modelling in µ CRL: Introduction NPGCT Scheme ■ Nuovo DRM Nuovo DRM ■ communication model Assessment ● Formal analysis ■ intruder model – Dolev-Yao, with restrictions ● Analysis results ● Device revocation Conclusions Analysed scenario’s: 1. no intruder, synchronous communication (effectiveness) 2. intruder, asynchronous communication (secrecy, masquerading, fairness) Hugo Jonker, WISSEC2006, November 8, 2006, Antwerpen Formalising Receipt-freeness - p. 9/12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Paradiso Presentation November 2010 David Dickinson PARADISO (major societal PARADigm shift and

Paradiso Presentation November 2010 David Dickinson PARADISO (major societal PARADigm shift and

Paradiso Presentation November 2010 David Dickinson PARADISO (major societal PARADigm shift and the future Information SOciety) First of all, thank you to the organisers of Paradiso for giving me the opportunity to speak to this discerning and

689 views • 4 slides
The music of the spheres on the front of the Ges Nuovo in Naples Lrnt Rz organist 2013.

The music of the spheres on the front of the Ges Nuovo in Naples Lrnt Rz organist 2013.

The music of the spheres on the front of the Ges Nuovo in Naples Lrnt Rz organist 2013. Eszterhzy Kroly College In 2010 Vincezo de Pasquale from Naples asked me to work as a musician with the symbo ls of the Ges Nuovo. This is one

360 views • 3 slides
10 Slides for Dagstuhl Joe Paradiso Responsive Environments Group MIT Media Lab ResEnv Research

10 Slides for Dagstuhl Joe Paradiso Responsive Environments Group MIT Media Lab ResEnv Research

10 Slides for Dagstuhl Joe Paradiso Responsive Environments Group MIT Media Lab ResEnv Research Update 4/16 Joe Paradiso http://resenv.media.mit.edu Dagstuhl Notification 4/17/2017 Scientific American Cover Article July 2014 Building the

538 views • 10 slides
Chlorambucil plus anti-CD20 MoAb Peter Hillmen peter.hillmen@nhs.net St Jamess University

Chlorambucil plus anti-CD20 MoAb Peter Hillmen peter.hillmen@nhs.net St Jamess University

Impossibile visualizzare l'immagine. La memoria del computer potrebbe essere insu ffj ciente per aprire l'immagine oppure l'immagine potrebbe essere danneggiata. Riavviare il computer e aprire di nuovo il file. Se viene visualizzata di nuovo la x

443 views • 40 slides
CB2 e la Malattia Celiaca: nuovo biomarker di malattia e futuro target terapeutico? Francesca

CB2 e la Malattia Celiaca: nuovo biomarker di malattia e futuro target terapeutico? Francesca

CB2 e la Malattia Celiaca: nuovo biomarker di malattia e futuro target terapeutico? Francesca Rossi Cannabis in Medicina 3000 a.c.: Il pi antico testo cinese sulle piante medicinali, il Pen Tsao ching, la raccomanda per disordini

666 views • 32 slides
Italo - Nuovo Trasporto Viaggiatori Introduction to Italo Company profile Introduction

Italo - Nuovo Trasporto Viaggiatori Introduction to Italo Company profile Introduction

Italo - Nuovo Trasporto Viaggiatori Introduction to Italo Company profile Introduction First, private high-speed operator in the European passenger rail industry operating in Italy under the Italo brand Established in December 2006 in

374 views • 12 slides
Endometriosi alle porte del nuovo decennio Stili di vita: lapproccio alimentare Cherubino Di

Endometriosi alle porte del nuovo decennio Stili di vita: lapproccio alimentare Cherubino Di

Endometriosi alle porte del nuovo decennio Stili di vita: lapproccio alimentare Cherubino Di Lorenzo Dipartimento di Scienze medico-chirurgiche e Biotecnologie, Universit La Sapienza Roma - Fondazione Don Gnocchi Onlus Trieste, 13/12/2019

613 views • 24 slides
Endometriosi alle porte del nuovo decennio 13/12/2019 Auditorium Museo Revoltella Roberta

Endometriosi alle porte del nuovo decennio 13/12/2019 Auditorium Museo Revoltella Roberta

Endometriosi alle porte del nuovo decennio 13/12/2019 Auditorium Museo Revoltella Roberta Bulla, PhD Via Diaz,27 Trieste Laboratory of Immunology Deparment of Life Sciences University of Trieste ITALY pelvic pain dysmenorrhea

446 views • 31 slides
Allergologia e Immunologia Clinica Ospedale Nuovo San Giovanni di Dio Azienda Sanitaria di

Allergologia e Immunologia Clinica Ospedale Nuovo San Giovanni di Dio Azienda Sanitaria di

Allergologia e Immunologia Clinica Ospedale Nuovo San Giovanni di Dio Azienda Sanitaria di Firenze Responsabile: Donatella Macchia Responsabile: Donatella Macchia Stefania Capretti, Giuseppe Ermini, Maria L Iorno, Elisa Meucci, Sergio Testi

487 views • 33 slides
Leosinofilo come nuovo target terapeutico Paola Parronchi XXX Congresso SIAAIC Sezione

Leosinofilo come nuovo target terapeutico Paola Parronchi XXX Congresso SIAAIC Sezione

Leosinofilo come nuovo target terapeutico Paola Parronchi XXX Congresso SIAAIC Sezione Toscana IX Congresso Sezione SIAAIC Toscana, Emilia Romagna, San Marino Firenze, 10-11 Ottobre 2014 Benign and sinister eosinophils Variety of diseases

679 views • 55 slides
An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your

An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your

An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your dad should have told you about Prog Session 2; Canterbury Session 3: Rock in Opposition Session 4: Zeuhl Session 5: Space Rock and Neopsychedelia

484 views • 46 slides
An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your

An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your

An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your dad should have told you about Prog Session 2; Canterbury Session 3: Rock in Opposition Session 4: Zeuhl Session 5: Space Rock and Neopsychedelia

310 views • 29 slides
An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your

An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your

An Introduction to Prog Rock Prof. J. Paradiso MIT Media Lab Session 1: Intro - Things your dad should have told you about Prog Session 2; Canterbury Session 3: Rock in Opposition Session 4: Zeuhl Session 5: Space Rock and Neopsychedelia

374 views • 35 slides
MAS-S61 - Emerging Technologies in Loca1on-Aware Compu1ng

MAS-S61 - Emerging Technologies in Loca1on-Aware Compu1ng

MAS-S61 - Emerging Technologies in Loca1on-Aware Compu1ng J. Paradiso, G. Dublon, B. Mayton Dynamics This is a project class Credit will

517 views • 17 slides
Kingfish 25 Kingfish 25 Differenze da Moray 25 Kingfish 25 Kingfish 25 Stile St e Parti

Kingfish 25 Kingfish 25 Differenze da Moray 25 Kingfish 25 Kingfish 25 Stile St e Parti

Kingfish 25 Kingfish 25 Differenze da Moray 25 Kingfish 25 Kingfish 25 Stile St e Parti elettriche Estetica di nuova generazione come Wahoo Nuovo impianto Affidabilit dab t - Tutti i componenti elettrici sono made in Japan. -

227 views • 11 slides
Presenter Paolo MANZONI, MD, PHD Director Division of Pediatrics and Neonatology Department of

Presenter Paolo MANZONI, MD, PHD Director Division of Pediatrics and Neonatology Department of

Presenter Paolo MANZONI, MD, PHD Director Division of Pediatrics and Neonatology Department of Maternal-Infant Medicine Nuovo Ospedale degli Infermi Ponderano (Biella), Italy Board of Directors Neonatal Infectious Disease Group of the

546 views • 53 slides
Challenges for Providing Processing Integrity in Grid Computing Felipe Martins 1 , Mrcio Maia 1

Challenges for Providing Processing Integrity in Grid Computing Felipe Martins 1 , Mrcio Maia 1

Challenges for Providing Processing Integrity in Grid Computing Felipe Martins 1 , Mrcio Maia 1 , Rossana M. de C. Andrade 2 Aldri L. dos Santos 2 , Jos Neuman de Souza 1,2 1 Teleinformatics Engineering Department - Federal University of Cear

364 views • 12 slides
DHCP (RFC 2131) Deliver host-specific configuration parameters from DHCP server to host.

DHCP (RFC 2131) Deliver host-specific configuration parameters from DHCP server to host.

DHCP (RFC 2131) Deliver host-specific configuration parameters from DHCP server to host. Allocate network address to nodes: Automatic allocation: permanent assignment. Dynamic allocation: for a limited period of time. Manual

387 views • 9 slides
1 Electronic Pearl Harbor Is this just scare-mongering? Slammer worm took down Bank of

1 Electronic Pearl Harbor Is this just scare-mongering? Slammer worm took down Bank of

Website: http://www.richmond.edu/~dszajda/classes/cs334/ Fall_2008/main.html Fall 2008 Fall 2008 CS 334 Computer Security 1 Fall 2008 CS 334 Computer Security 2 Text: Security in Computing by Charles P. Thanks to Anthony Joseph, Doug and

278 views • 6 slides
Mobile Communications Mobile Communications Security Types of Attacks 802.11 Security

Mobile Communications Mobile Communications Security Types of Attacks 802.11 Security

Mobile Communications Mobile Communications Security Types of Attacks 802.11 Security Access Control Lists Access Control Lists GSM Security GSM Security WEP Authentication WPA/WPA2 Encryption 802.1X/EAP

409 views • 15 slides
Congestion? What Congestion? Mark Handley Is there a problem to be solved? TCP has done a

Congestion? What Congestion? Mark Handley Is there a problem to be solved? TCP has done a

Congestion? What Congestion? Mark Handley Is there a problem to be solved? TCP has done a pretty good job since 1988 of matching offered load to available capacity and avoiding congestion collapse. Doesnt need any support from the

194 views • 17 slides
netfilter/iptables training Nov 05/06/07, 2007 Day 1 by Harald Welte

netfilter/iptables training Nov 05/06/07, 2007 Day 1 by Harald Welte

netfilter/iptables training Nov 05/06/07, 2007 Day 1 by Harald Welte <laforge@netfilter.org> 1 netfilter/iptables tutorial Contents Day 1 Introduction Highly Scalable Linux Network Stack Netfilter Hooks Packet selection based on IP

342 views • 20 slides
Political Risk Analysis with Chinese Characteristics T H E C U R I O U S C A S E O F C H I N A

Political Risk Analysis with Chinese Characteristics T H E C U R I O U S C A S E O F C H I N A

Political Risk Analysis with Chinese Characteristics T H E C U R I O U S C A S E O F C H I N A - V E N E Z U E L A R E L A T I O N S Introduction Topic: China, Political Risk, Venezuela What is Political Risk? China, Stability and

439 views • 8 slides
Virtualization CERN openlab II quarterly review 20 September 2006 Hvard Bjerke Community,

Virtualization CERN openlab II quarterly review 20 September 2006 Hvard Bjerke Community,

Virtualization CERN openlab II quarterly review 20 September 2006 Hvard Bjerke Community, tracking Visit to USENIX, Argonne National Labs Testing Xen paravirtualization and VT extensions new machines Montecito / VT-i Dempsey /

422 views • 6 slides

More recommend