1、 Reference number ISO 26429-6:2008(E) ISO 2008INTERNATIONAL STANDARD ISO 26429-6 First edition 2008-07-15 Digital cinema (D-cinema) packaging Part 6: MXF track file essence encryption Emballage du cinma numrique (cinma D) Partie 6: Chiffrement de lessence du fichier de piste MXF ISO 26429-6:2008(E)
2、PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file,
3、parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relat
4、ive to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. COPYRI
5、GHT PROTECTED DOCUMENT ISO 2008 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below o
6、r ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO 2008 All rights reservedISO 26429-6:2008(E) ISO 2008 All rights reserved iii
7、 Foreword ISO (the International Organization for Standardization) is a worldwide federation of national standards bodies (ISO member bodies). The work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a
8、technical committee has been established has the right to be represented on that committee. International organizations, governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matter
9、s of electrotechnical standardization. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of technical committees is to prepare International Standards. Draft International Standards adopted by the technical committees are circulat
10、ed to the member bodies for voting. Publication as an International Standard requires approval by at least 75 % of the member bodies casting a vote. ISO 26429-6 was prepared by the Society of Motion Picture and Television Engineers (as SMPTE 429-6-2007) and was adopted, under a special “fast-track p
11、rocedure”, by Technical Committee ISO/TC 36, Cinematography, in parallel with its approval by the ISO member bodies. ISO 26429 consists of the following parts, under the general title Digital cinema (D-cinema) packaging: Part 3: Sound and picture track file Part 4: MXF JPEG 2000 application Part 6:
12、MXF track file essence encryption Part 7: Composition playlist ISO 26429-6:2008(E) iv ISO 2008 All rights reservedIntroduction The International Organization for Standardization (ISO) draws attention to the fact that it is claimed that compliance with this document may involve the use of a patent. I
13、SO takes no position concerning the evidence, validity and scope of this patent right. The holder of this patent right has assured ISO that he is willing to negotiate licences under reasonable and non-discriminatory terms and conditions with applicants throughout the world. In this respect, the stat
14、ement of the holder of this patent right is registered with ISO. Information may be obtained from: Eastman Kodak Company Intellectual Property Transactions 343 State Street Rochester, NY 14650 USA Attention is drawn to the possibility that some of the elements of this document may be the subject of
15、patent rights other than those identified above. ISO shall not be held responsible for identifying any or all such patent rights. ISO 26429-6:2008(E) ISO 2008 All rights reserved 1Table of Contents 1 Scope 3 2 Normative References 3 3 Overview . 4 4 Encrypted Essence Container 5 5 Cryptographic Fram
16、ework. 5 5.1 Cryptographic Framework Key . 6 5.2 Length . 6 5.3 Context SR 7 6 Cryptographic Context 7 6.1 Cryptographic Context Key . 7 6.2 Length . 8 6.3 Context ID . 8 6.4 Source Essence Container Label . 8 6.5 Cipher Algorithm . 8 6.6 MIC Algorithm . 8 6.7 Cryptographic Key ID 9 7 Encrypted Trip
17、let. 9 7.1 Encrypted Triplet Key 10 7.2 Length . 10 7.3 Cryptographic Context Link. 10 7.4 Plaintext Offset 10 7.5 Source Key 10 7.6 Source Length. 10 7.7 Encrypted Source Value . 11 7.8 TrackFile ID optional . 11 7.9 Sequence Number optional 12 7.10 MIC optional. 12 8 Encrypted Track File Constrain
18、ts 12 8.1 Encrypted Essence Track . 12 8.2 Cryptographic Framework DM Track 12 8.3 Index Tables 13 9 Reference Decryption Processing Model 13 9.1 Overall Flow 13 9.2 Modules. 14 Page 1 of 25 pages SMPTE 429-6-2006 SMPTE STANDARD D-Cinema Packaging MXF Track File Essence Encryption Copyright 2006 by
19、THE SOCIETY OF MOTION PICTURE AND TELEVISION ENGINEERS 3 Barker Avenue, White Plains, NY 10601 (914) 761-1100 Approved October 3, 2006 ISO 26429-6:2008(E) 2 ISO 2008 All rights reservedSMPTE 429-6-2006 Page 2 of 25 pages 10 Label and Key Structures 18 10.1 Encrypted Essence Container Label 18 10.2 C
20、ryptographic Framework Label 19 10.3 Cryptographic Framework Key.20 10.4 Cryptographic Context Key.21 10.5 Encrypted Triplet Key .22 10.6 AES-CBC with 128-bit Key UL .22 10.7 HMAC-SHA1 with 128-bit Key UL 23 Annex A Security Properties (Informative) 24 Annex B Bibliography (Informative).25 Foreword
21、SMPTE (the Society of Motion Picture and Television Engineers) is an internationally-recognized standards developing organization. Headquartered and incorporated in the United States of America, SMPTE has members in over 80 countries on six continents. SMPTEs Engineering Documents, including Standar
22、ds, Recommended Practices and Engineering Guidelines, are prepared by SMPTEs Technology Committees. Participation in these Committees is open to all with a bona fide interest in their work. SMPTE cooperates closely with other standards-developing organizations, including ISO, IEC and ITU. SMPTE Engi
23、neering Documents are drafted in accordance with the rules given in Part XIII of its Administrative Practices. Proposed SMPTE Standard 429-6 was prepared by Technology Committee DC28. ISO 26429-6:2008(E) ISO 2008 All rights reserved 3SMPTE 429-6-2006 Page 3 of 25 pages 1 Scope This standard defines
24、the syntax of encrypted D-Cinema non-interleaved MXF frame-wrapped track files and specifies a matching reference decryption model. It uses the AES cipher algorithm for essence encryption and, optionally, the HMAC-SHA1 algorithm for essence integrity. The D-Cinema track file format is designed to ca
25、rry D-Cinema essence for distribution to exhibition sites and is specified in the Sound and Picture Track File specification. This standard assumes that the cryptographic keys necessary to decrypt and verify the integrity of encrypted Track Files will be available upon demand. More precisely, it doe
26、s not specify the fashion with which cryptographic keys and usage rights are managed across D-Cinema distribution and exhibition environments. In addition, this document does not address, but does not preclude, the use of watermarking, fingerprinting or other security techniques to provide additiona
27、l protection. The scope is limited to D-Cinema and does not define a generic MXF encryption framework. 2 Normative References The following standards contain provisions which, through reference in this text, constitute provisions of this standard. At the time of publication, the editions indicated w
28、ere valid. All standards are subject to revision, and parties to agreements based on this standard are encouraged to investigate the possibility of applying the most recent edition of the standards indicated below. SMPTE 336M-2001, Television Data Encoding Protocol Using Key-Length-Value SMPTE 377M-
29、2004, Television Material Exchange Format (MXF) File Format Specification SMPTE 429-3-2006, D-Cinema Packaging Sound and Picture Track File IETF 2898 (September 2000). PKCS #5: Password-Based Cryptography Specification Version 2.0. IETF 2104 (February 1997). HMAC: Keyed-Hashing for Message Authentic
30、ation National Institute of Standards and Technology (December 1, 2001). Recommendation for Block Cipher Modes of Operation Methods and Techniques (SP 800-38A). National Institute of Standards and Technology, FIPS 197 (November 26, 2001). Advanced Encryption Standard (AES). National Institute of Sta
31、ndards and Technology, FIPS PUB 186-2 (+Change Notice 1) (January 27, 2000). Digital Signature Standard (DSS). ISO 26429-6:2008(E) 4 ISO 2008 All rights reservedSMPTE 429-6-2006 Page 4 of 25 pages 3 Overview This specification defines the encryption of the sensitive essence information contained in
32、D-Cinema Track Files using the Advanced Encryption Standard (AES) cipher algorithm in Cipher Block Chaining (CBC) mode as defined in NIST SP 800-38A. As an option, it also allows the integrity of the same essence to be verified using the HMAC-SHA1 algorithm. More specifically this specification allo
33、ws any individual track contained within a plaintext Track File to be encrypted using a single cryptographic key. The resulting encrypted Track File is extremely similar to a plaintext Track File, which is itself a constrained version of the MXF OP-ATOM operational pattern 1 . It differs in the foll
34、owing three areas. First, the Essence Container Label associated with the plaintext track is replaced by an Encrypted Essence Container Label. The replacement Label signals the presence of encrypted essence and allows any receiving MXF application which cannot perform decryption to “fail fast” as de
35、scribed in SMPTE EG 41. The Encrypted Essence Container is defined in Section 4. Second, cryptographic information associated with the encrypted track as a whole is inserted in the MXF header metadata as a Cryptographic Framework. The Cryptographic Framework contains a link to the single cryptograph
36、ic key used to encrypt the essence track. It also lists the algorithms necessary to process the encrypted essence and contains the original Essence Container Label. The latter allows implementations to determine the nature of the plaintext essence without further processing. The Cryptographic Framew
37、ork is defined in Sections 5 and 5.1. K L Cryptographic information V K L V K L E(V) encryption / decryption Cryptographic information (opt)Figure 1 Correspondence between Source and Encrypted Triplets. Red hatching depicts the encrypted portion of the Encrypted Triplet; other items are left as plai
38、ntext. Only the value item of Source Triplet is encrypted, allowing the essence information to be encrypted prior to wrapping. See Section 7 for a description of the cryptographic information associated with each Encrypted Triplet. Third, the plaintext Triplets containing essence information have be
39、en replaced by Encrypted Triplets see SMPTE 336M for details on KLV (Key-Length-Value) coding. Each Encrypted Triplet, is designed to be processed independently, allowing decryption to start anywhere within the encrypted Track File. Figure 1 illustrates the correspondence between a plaintext and an
40、Encrypted Triplet 2 . The value V of a source plaintext KLV Triplet is first encrypted to yield E(V). The encrypted value E(V), along with K and L, is wrapped in a KLV Encrypted Triplet. K is a unique label common to all Encrypted Triplets, independent of their content. L refers to the full length o
41、f V. V consists of K, L and E(V) from the source Triplet as well as cryptographic information specific to the Encrypted Triplet. This cryptographic information includes, for instance, the initialization vector used in generating E(V) and the message integrity code (MIC) used to verify the integrity
42、of the Triplet. The structure of Encrypted Triplets is detailed in Section 7. 1This specification assumes that the reader is familiar with the MXF and Track File formats. 2This specification does not require the essence to be wrapped in a KLV Triplet to enable its encryption. In other words, essence
43、 may be encrypted prior to being wrapped in an Encrypted Triplet. ISO 26429-6:2008(E) ISO 2008 All rights reserved 5SMPTE 429-6-2006 Page 5 of 25 pages 4 Encrypted Essence Container In order to signal the presence of encrypted tracks, the Essence Container Label of any track containing Encrypted Tri
44、plets shall be replaced by the Encrypted Essence Container Label listed in Table 1. This replacement shall occur both in the Preface set and in the Partition Pack. The Essence Container Label in the File Descriptor (SMPTE 377M) shall however remain unchanged to identify the underlying plaintext esse
45、nce. Table 1 Encrypted Essence Container Label (See Section 10.1 for the complete structure of the Label.) 060e2b34 04010107 0d010301 020b0100 5 Cryptographic Framework As depicted in Figure 2, the Cryptographic Context shall be carried in encrypted Track Files as an MXF Descriptive Metadata (DM) Fr
46、amework 3 . Specifically, Track Files may contain one or more Descriptive Metadata Tracks containing each a single Cryptographic Framework 4 . The Cryptographic Framework structure is detailed in Table 3. Essence Partition Pack Header Metadata Source Package DM Track (Static) DM Sequence DM Segment
47、Cryptographic Framework Cryptographic Context Essence Container Encrypted Triplet Track reference by UID n reference by UID 1 reference by UID 1 reference by UID 1 reference by Context ID 1 Cryptographic Key link by Track Number link by Context ID link by Cryptographic Key ID 1 containsFigure 2 Cryp
48、tographic Framework The DM Track is static since in encrypted Track Files a single cryptographic key is associated with any given track. Each Encrypted Triplet within a Track must refer to the same Cryptographic Context. 3DM frameworks are defined in SMPTE 377M under Plug-in Mechanism and follow the
49、 principles described in SMPTE EG 42. 4(Informative) The Cryptographic Framework is specified as a subclass of the DM Framework abstract superclass (see SMPTE 380M). ISO 26429-6:2008(E) 6 ISO 2008 All rights reservedSMPTE 429-6-2006 Page 6 of 25 pages The Cryptographic Framework forms a Cryptographic DM Scheme. The Cryptographic Framework Label listed in Table 2 shall be included in the Preface set as the identifier of the Cryptographic DM Scheme. Table 2 Cryptographic Framework Label (See
