WHITE-BOX IMPLEMANTATION TO ADVANTAGE DRM
Antonius Cahya Prihandoko, Hossein Ghodosi, Bruce Litow
Digital Rights Management (DRM) is a popular approach for secure content distribution. Typically, DRM encrypts the content before delivers it. Most DRM applications use secure algorithms to protect content. However, executing these algorithms in an insecure environment may allow adversaries to compromise system and obtain the key. To withstand such attack, algorithm implementation is modified in such a way to make the implementation unintelligible, namely obfuscation approach. White-box cryptography (WBC) is an obfuscation technique intended to protect secret keys from being disclosed in a software implementation using a fully transparent methodology. This mechanism is appropriate for DRM applications and able to enhance security for content provider. However, DRM is required to provide a balanced protection for content provider and users. We construct a protocol on implementing WBC to improve DRM system; The system does not only provide security for content provider, but also preserves privacy for users.
Index Terms — Digital Rights Management, Content distribution system, Obfuscation, White-box Cryptography, Security, Privacy
This paper is an extended version of the paper titled “Obfuscation and WBC: Endevour to Secure Encryption in the DRM Context” presented at the International Conference on Computer Science and Information Technology (CSIT) 2013, Yogyakarta, Indonesia on 16-18 June 2013. Submitted to a special issue journal related to the conference.