摘要
数字版权管理(Digital Rights Management,DRM)系统旨在端到端地保护数字内容的可控使用,然而客户端平台的安全隐患使得数字内容的合理使用受到威胁。在研究可信计算技术的基础上,提出可信计算技术与DRM系统相结合的可信DRM系统的一般结构,并重点阐述了可信计算技术在许可证分发和数字内容使用两个重点环节中的应用。进一步地,设计并提出一个可信DRM系统的身份认证及密钥协商协议,并给出其安全性分析。该协议实现许可证服务器对DRM客户端的身份认证及完整性验证,并产生共享密钥保护数字版权的发放。
Digital rights management is designed to protect digital content usage from end to end. While, the hidden se- curity problems in client system threaten the reasonable usage of digital contents. Through researching on trusted com- puting technology, a common architecture of DRM combined with trusted computing was presented. Especially, the ap- plication of trusted computing in license distributing and digital content usage was introduced. Then, an identity authen- tication and key agreement protocol for trusted DRM were designed, and also described with its security analysis. Through the protocol, license server can authenticate the DRM client and validate its integrity. Otherwise, the peer can obtain sharing key to protect the digital license distributing.
出处
《计算机科学》
CSCD
北大核心
2013年第6期103-107,共5页
Computer Science
基金
国家自然科学基金项目(61003234)
河南省科技创新人才计划(134100510011)
河南省高等学校科技创新人才计划基金项目(2011HASTIT015)资助
关键词
数字版权管理
可信计算
远程证明
SKAE
认证协议
Digital rights management, Trusted computing, Remote attestation, SKAE
Authentication protocol
