移动数字版权管理代理的设计与实现
|
摘要
随着无线网络和移动增值业务的发展,数字内容易于复制的特点导致数字内容所有者的权益难以得到保护的问题日益突出,为使整个移动增值业务行业健康有序地发展,需要行之有效的DRM(Digital Rights Management,数字版权管理)系统来解决上述问题。
由于移动业务灵活多变和个性化的特点,目前最可行的移动DRM实施方案是把数字内容的强制保护放在消费终端上进行。在用户终端上构建一个可信任的计算环境,将DRM内容在其中使用,从而强制完成对于DRM内容使用的许可和限制。
本篇论文以开放移动联盟的OMA DRM v2.0协议为背景,重点介绍了基于Java SIM卡的移动终端的DRM的设计与实现。本文的主要工作如下:(1)分析了OMA DRM v2.0标准框架下移动DRM系统的体系结构和内容保护机制,提出了结合SIM卡技术部署DRM Agent的移动DRM体系结构模型。(2)给出了DRM Agent的结构以及DRM的实施过程和系统流程。研究了Java SIM卡下载过程中的安全认证机制以及手机与卡建立安全通道的方式。(3)研究了Java SIM卡功能模块的划分,密钥和版权对象RO等的文件存储机制,定义了SIM卡与手机通信的API以及SIM卡字节码与版权描述语言REL的对应关系。(4)在智能手机MS Smartphone2003平台上开发和部署了一个移动终端视频播放DRM功能的实例。(5)对该方案的优势和特点作了总结,并提出了还需要进一步研究的环节。
With the development of wireless network and value-added services, the problem, that is hard to protect the interests of digital content owners, is becoming more and more critical as digital contents are easily copied. For the healthy development of the entire mobile value-added service industry, we need an effective DRM (Digital Rights Management) system.
Because of the flexible and characteristic features in the mobile services, the feasible solution is deploying the data protection in consumers’terminals. The license and restriction of the DRM content will be implemented by building a trusted computing environment on the user’s terminal and using the DRM content in it.
Based on the protocol OMA DRM v2.0 of the Open Mobile Alliance,this paper designs and Implements DRM on Java SIM card-based mobile terminals. The main works of this thesis are summarized as following: (1) The architecture and content protection mechanism of the mobile DRM system are analysed. The mobile DRM architecture model combining SIM card technology is raised too. (2) The structure, implementation process and work flow of DRM agent are described. The secure authentication mechanism during the Java SIM card downloading and the establishment of safe channel between the phone and the card are presented. (3)The function module of Java SIM card, the file storage mechanism of key and RO, the definition of API on card for mobile phone, the relation between byte code in card and REL are displayed. (4) An example of the new copyright protection technology is Implemented on MS smartphone Smartphone2003 platform. (5) At last, the advantages and features of this technology are reviewed, and the further study is also put forward.
由于移动业务灵活多变和个性化的特点,目前最可行的移动DRM实施方案是把数字内容的强制保护放在消费终端上进行。在用户终端上构建一个可信任的计算环境,将DRM内容在其中使用,从而强制完成对于DRM内容使用的许可和限制。
本篇论文以开放移动联盟的OMA DRM v2.0协议为背景,重点介绍了基于Java SIM卡的移动终端的DRM的设计与实现。本文的主要工作如下:(1)分析了OMA DRM v2.0标准框架下移动DRM系统的体系结构和内容保护机制,提出了结合SIM卡技术部署DRM Agent的移动DRM体系结构模型。(2)给出了DRM Agent的结构以及DRM的实施过程和系统流程。研究了Java SIM卡下载过程中的安全认证机制以及手机与卡建立安全通道的方式。(3)研究了Java SIM卡功能模块的划分,密钥和版权对象RO等的文件存储机制,定义了SIM卡与手机通信的API以及SIM卡字节码与版权描述语言REL的对应关系。(4)在智能手机MS Smartphone2003平台上开发和部署了一个移动终端视频播放DRM功能的实例。(5)对该方案的优势和特点作了总结,并提出了还需要进一步研究的环节。
With the development of wireless network and value-added services, the problem, that is hard to protect the interests of digital content owners, is becoming more and more critical as digital contents are easily copied. For the healthy development of the entire mobile value-added service industry, we need an effective DRM (Digital Rights Management) system.
Because of the flexible and characteristic features in the mobile services, the feasible solution is deploying the data protection in consumers’terminals. The license and restriction of the DRM content will be implemented by building a trusted computing environment on the user’s terminal and using the DRM content in it.
Based on the protocol OMA DRM v2.0 of the Open Mobile Alliance,this paper designs and Implements DRM on Java SIM card-based mobile terminals. The main works of this thesis are summarized as following: (1) The architecture and content protection mechanism of the mobile DRM system are analysed. The mobile DRM architecture model combining SIM card technology is raised too. (2) The structure, implementation process and work flow of DRM agent are described. The secure authentication mechanism during the Java SIM card downloading and the establishment of safe channel between the phone and the card are presented. (3)The function module of Java SIM card, the file storage mechanism of key and RO, the definition of API on card for mobile phone, the relation between byte code in card and REL are displayed. (4) An example of the new copyright protection technology is Implemented on MS smartphone Smartphone2003 platform. (5) At last, the advantages and features of this technology are reviewed, and the further study is also put forward.
引文
[1]俞银燕,汤帜.数字版权保护技术研究综述.计算机学报.2005.
[2]范科峰赵新华.数字电视接收机内容保护技术体系与标准的研究进展.信息技术与标准化2006,(1-2).
[3]赛迪顾问互联网与电子商务咨询中心,《中国移动DRM市场现状及投资前景研究报告》,北京,2006年7月.
[4] Open Mobile Alliance. OMA DRM v2.0 Extensions for Broadcast Support. OMA-TS-DRM-XBS-V1_0-20060425-D.
[5] Open Mobile Alliance OMA DRM Requirements Candidate Version 2.0. OMA-RD-DRM-V2_0-20040715-C.
[6] Open Mobile Alliance. OMA DRM Specification Candidate Version 2.0. OMA-DRM-DRM-V2_0-20041210-C.
[7] Open Mobile Alliance. DRM Architecture Draft Version 2.0 2003.
[8] Open Mobile Alliance. DRM Content Format Draft Version 2.0 2004.
[9]范科峰,赵新华,中国电子技术标准化研究所《OMA DRM技术与标准研究》标准与技术追踪,2006年第7期.
[10] Daniel Thull, Roberto Scannino《Performance Considerations For an Embedded Implementation of OMA DRM 2》, STMicroelectronics, Advanced System Technology Via Olivetti 2,20041 Agrate Brianza, Italy.
[11]王明华,钮心忻,杨义先,移动网络数字内容分发的版权管理研究,北京邮电大学数字内容研究中心,北京.
[12]曹乐平,李伟章,SIM卡与基于STK的SIM卡业务,中国数据通信,2005年第4期.
[13]李伟章,基于STK的SIM卡技术,电信技术,2005年第7期.
[14]陈志平,陈仁洪,SIM卡知识漫谈,江西财经大学电子学院,南昌,330013.
[15] Global System for Mobile Communications.GSM11.11;GSM11.14; GSM3.48.
[16]林胜利,路宗强,王坤茹,《Java智能卡开发关键技术与实例》,北京:中国铁出版社,2006年8月.
[17] Sun Microsystems.Java Card 2.0 Specification.
[18] Sun Microsystems.JAVA SIM CARD Forum.
[19] Sun Microsystems.JAVA SIM CARD 2.2 Virtual Machine Specification.
[20] Sun Microsystems.JAVA SIM CARD 2.2 Runtime Environment (JCRE) Specification.
[21]曲鸣镝,马灵芝,GSM网络STK Java卡应用的开发,无线电通讯技术,2003年第2期.
[22]董威,杨义先等,基于Java SIM卡的GlobalPlatform安全技术研究,北京邮电大学学报.
[23] Subscriber Identity Module Applicafion Programming Interface (SIM API)for Java CardTM.
[24] 3rd Generation Partnership Project(3GPP),Specification of the SIM Applicafion Toolkit for the Subscriber Identity Module-Mobile Equipment (SIM-ME)interface.
[25] Global System For Mobile Communication, GSM11.11 Specification.
[26]王明华,杨义先,钮心忻,基于Java SIM卡的移动数字版权管理研究,北京邮电大学信息中心.
[27]王明华,杨义先等,基于Java SIM卡的流媒体数字版权管理研究,计算机系统应用,2006年第二期.
[28]王明华,杨义先等,移动网络数字内容分发的版权管理研究,硕博论文.北京:北京邮电大学图书馆. 2006
[29]国际标准化组织ISO.ISO7816-4智能卡专用协议.第五章.
[30] JCP.SATSA-JSR177, Security and Trust Services API for J2ME Specification 1.0 Public Review Draft.
[31]李翔,智能卡研发技术与工程实践.第一版.北京:人民邮电出版社,2003年.
[32]严冬冬,智能卡技术及应用,西安:西安电子科技大学出版社,1998年.
[33] Security and Trust Services API(SATSA)for Java 2 Platform, Micro Edition Proposed Final Draft Version 1.0.
[34] ISO/IEC,7816-3-1998,Identification cards-Integrated circuit(s) cards with contacts,Part3.
[35] ISO/IEC, 7816-4-1988,Identification cards一Integrated circuit(s) cards with contacts,Part4.
[36]张昌明,PKI安全技术原理,高等教育出版社,1998年7月.
[37]龙冬阳,王常吉,吴丹编著《应用密码与计算机密码学》,高等院校计算机应用技术系列教材,北京:清华大学出版社2005年11月.
[38] Krawczyk H, Bellare M, Canetti R. HMAC: Keyed-Hashing for Message Authentication. RFC 2104 Informational, February, 1997. 56 ~ 78
[39] Gaj K, Chodowiec P. Comparison of the Hardware Performance of the AES Candidates using Reconfigurable Hardware: The Third Advanced Encryption Standard (AES3) Candidate Conference. New York: April 2000. 13 ~ 14
[40] RSA Laboratories,[PKCS #1 v2.1:RSA Cryptography Standard],RSA Security, 2002, Bedford(MA),USA.
[41] URL:http://www.rsasecurity.com/rsalabs/pkcs/schemas/pkcs-1#rsaes-kem-kdf2-kw-aes128.
[42]冉懿,开发基于Java Card技术的智能卡应用,教学与科技,2000年12月,第四期.
[43]吴东辉,周杰,陈章龙,Javacard的设计,微型电脑应用,2003年第十九卷第十二期.
[44] Open Mobile Alliance. DRM Digital Right Expression Language Version 2.0 .OMA-TS-DRM-REL-V2_0-20060303-A.
[2]范科峰赵新华.数字电视接收机内容保护技术体系与标准的研究进展.信息技术与标准化2006,(1-2).
[3]赛迪顾问互联网与电子商务咨询中心,《中国移动DRM市场现状及投资前景研究报告》,北京,2006年7月.
[4] Open Mobile Alliance. OMA DRM v2.0 Extensions for Broadcast Support. OMA-TS-DRM-XBS-V1_0-20060425-D.
[5] Open Mobile Alliance OMA DRM Requirements Candidate Version 2.0. OMA-RD-DRM-V2_0-20040715-C.
[6] Open Mobile Alliance. OMA DRM Specification Candidate Version 2.0. OMA-DRM-DRM-V2_0-20041210-C.
[7] Open Mobile Alliance. DRM Architecture Draft Version 2.0 2003.
[8] Open Mobile Alliance. DRM Content Format Draft Version 2.0 2004.
[9]范科峰,赵新华,中国电子技术标准化研究所《OMA DRM技术与标准研究》标准与技术追踪,2006年第7期.
[10] Daniel Thull, Roberto Scannino《Performance Considerations For an Embedded Implementation of OMA DRM 2》, STMicroelectronics, Advanced System Technology Via Olivetti 2,20041 Agrate Brianza, Italy.
[11]王明华,钮心忻,杨义先,移动网络数字内容分发的版权管理研究,北京邮电大学数字内容研究中心,北京.
[12]曹乐平,李伟章,SIM卡与基于STK的SIM卡业务,中国数据通信,2005年第4期.
[13]李伟章,基于STK的SIM卡技术,电信技术,2005年第7期.
[14]陈志平,陈仁洪,SIM卡知识漫谈,江西财经大学电子学院,南昌,330013.
[15] Global System for Mobile Communications.GSM11.11;GSM11.14; GSM3.48.
[16]林胜利,路宗强,王坤茹,《Java智能卡开发关键技术与实例》,北京:中国铁出版社,2006年8月.
[17] Sun Microsystems.Java Card 2.0 Specification.
[18] Sun Microsystems.JAVA SIM CARD Forum.
[19] Sun Microsystems.JAVA SIM CARD 2.2 Virtual Machine Specification.
[20] Sun Microsystems.JAVA SIM CARD 2.2 Runtime Environment (JCRE) Specification.
[21]曲鸣镝,马灵芝,GSM网络STK Java卡应用的开发,无线电通讯技术,2003年第2期.
[22]董威,杨义先等,基于Java SIM卡的GlobalPlatform安全技术研究,北京邮电大学学报.
[23] Subscriber Identity Module Applicafion Programming Interface (SIM API)for Java CardTM.
[24] 3rd Generation Partnership Project(3GPP),Specification of the SIM Applicafion Toolkit for the Subscriber Identity Module-Mobile Equipment (SIM-ME)interface.
[25] Global System For Mobile Communication, GSM11.11 Specification.
[26]王明华,杨义先,钮心忻,基于Java SIM卡的移动数字版权管理研究,北京邮电大学信息中心.
[27]王明华,杨义先等,基于Java SIM卡的流媒体数字版权管理研究,计算机系统应用,2006年第二期.
[28]王明华,杨义先等,移动网络数字内容分发的版权管理研究,硕博论文.北京:北京邮电大学图书馆. 2006
[29]国际标准化组织ISO.ISO7816-4智能卡专用协议.第五章.
[30] JCP.SATSA-JSR177, Security and Trust Services API for J2ME Specification 1.0 Public Review Draft.
[31]李翔,智能卡研发技术与工程实践.第一版.北京:人民邮电出版社,2003年.
[32]严冬冬,智能卡技术及应用,西安:西安电子科技大学出版社,1998年.
[33] Security and Trust Services API(SATSA)for Java 2 Platform, Micro Edition Proposed Final Draft Version 1.0.
[34] ISO/IEC,7816-3-1998,Identification cards-Integrated circuit(s) cards with contacts,Part3.
[35] ISO/IEC, 7816-4-1988,Identification cards一Integrated circuit(s) cards with contacts,Part4.
[36]张昌明,PKI安全技术原理,高等教育出版社,1998年7月.
[37]龙冬阳,王常吉,吴丹编著《应用密码与计算机密码学》,高等院校计算机应用技术系列教材,北京:清华大学出版社2005年11月.
[38] Krawczyk H, Bellare M, Canetti R. HMAC: Keyed-Hashing for Message Authentication. RFC 2104 Informational, February, 1997. 56 ~ 78
[39] Gaj K, Chodowiec P. Comparison of the Hardware Performance of the AES Candidates using Reconfigurable Hardware: The Third Advanced Encryption Standard (AES3) Candidate Conference. New York: April 2000. 13 ~ 14
[40] RSA Laboratories,[PKCS #1 v2.1:RSA Cryptography Standard],RSA Security, 2002, Bedford(MA),USA.
[41] URL:http://www.rsasecurity.com/rsalabs/pkcs/schemas/pkcs-1#rsaes-kem-kdf2-kw-aes128.
[42]冉懿,开发基于Java Card技术的智能卡应用,教学与科技,2000年12月,第四期.
[43]吴东辉,周杰,陈章龙,Javacard的设计,微型电脑应用,2003年第十九卷第十二期.
[44] Open Mobile Alliance. DRM Digital Right Expression Language Version 2.0 .OMA-TS-DRM-REL-V2_0-20060303-A.