Paper 08

WHITE-BOX IMPLEMANTATION TO ADVANTAGE DRM

Antonius Cahya Prihandoko, Hossein Ghodosi, Bruce Litow

Abstract.

Digital Rights Management (DRM) is a popular approach for secure content distribution. Typically, DRM encrypts the content before delivers it. Most DRM applications use secure algorithms to protect content. However, executing these algorithms in an insecure environment may allow adversaries to compromise system and obtain the key. To withstand such attack, algorithm implementation is modified in such a way to make the implementation unintelligible, namely obfuscation approach. White-box cryptography (WBC) is an obfuscation technique intended to protect secret keys from being disclosed in a software implementation using a fully transparent methodology. This mechanism is appropriate for DRM applications and able to enhance security for content provider. However, DRM is required to provide a balanced protection for content provider and users. We construct a protocol on implementing WBC to improve DRM system; The system does not only provide security for content provider, but also preserves privacy for users.

Index Terms Digital Rights Management, Content distribution system, Obfuscation, White-box Cryptography, Security, Privacy

This paper is an extended version of the paper titled “Obfuscation and WBC: Endevour to Secure Encryption in the DRM Context” presented at the International Conference on Computer Science and Information Technology (CSIT) 2013, Yogyakarta, Indonesia on 16-18 June 2013. Submitted to a special issue journal related to the conference.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s