1、 Reference number ISO 26430-1:2008(E) ISO 2008INTERNATIONAL STANDARD ISO 26430-1 First edition 2008-07-15 Digital cinema (D-cinema) operations Part 1: Key delivery message Oprations du cinma numrique (cinma D) Partie 1: Message de remise de cl ISO 26430-1:2008(E) PDF disclaimer This PDF file may con
2、tain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept therein the responsib
3、ility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation pa
4、rameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. COPYRIGHT PROTECTED DOCUMENT ISO 2008 All
5、rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member body in the country of
6、 the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO 2008 All rights reservedISO 26430-1:2008(E) ISO 2008 All rights reserved iii Foreword ISO (the International Org
7、anization for Standardization) is a worldwide federation of national standards bodies (ISO member bodies). The work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a technical committee has been establi
8、shed has the right to be represented on that committee. International organizations, governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardizatio
9、n. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of technical committees is to prepare International Standards. Draft International Standards adopted by the technical committees are circulated to the member bodies for voting.
10、Publication as an International Standard requires approval by at least 75 % of the member bodies casting a vote. ISO 26430-1 was prepared by the Society of Motion Picture and Television Engineers (as SMPTE 430-1-2006) and was adopted, under a special “fast-track procedure”, by Technical Committee IS
11、O/TC 36, Cinematography, in parallel with its approval by the ISO member bodies. ISO 26430 consists of the following parts, under the general title Digital cinema (D-cinema) operations: Part 1: Key delivery message Part 2: Digital certificate Part 3: Generic extra-theater message format ISO 26430-1:
12、2008(E) iv ISO 2008 All rights reservedIntroduction The International Organization for Standardization (ISO) draws attention to the fact that it is claimed that compliance with this document may involve the use of a patent. ISO takes no position concerning the evidence, validity and scope of this pa
13、tent right. The holder of this patent right has assured ISO that he is willing to negotiate licences under reasonable and non-discriminatory terms and conditions with applicants throughout the world. In this respect, the statement of the holder of this patent right is registered with ISO. Informatio
14、n may be obtained from: Eastman Kodak Company Intellectual Property Transactions 343 State Street Rochester, NY 14650 USA Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights other than those identified above. ISO shall not be held resp
15、onsible for identifying any or all such patent rights. ISO 26430-1:2008(E) ISO 2008 All rights reserved 1Table of Contents Page 1 Scope 3 2 Normative References 3 3 Glossary 3 4 Overview of the KDM (Informative). 4 4.1 Basic KDM Elements and D-Cinema Relationships. 4 4.2 XML Overview of the KDM . 6
16、5 Authenticated and Enencrypted Information. 6 5.1 Message Type 6 5.2 RequiredExtentions. 7 5.2.1 Receipt . 7 5.2.2 CompositionPlaylisted 7 5.2.3 ContentTitleText. 7 5.2.4 ContentAuthenticalor (Optical). 8 5.2.5 AuthorizedDeviceInfo. 9 5.2.6 ContentKeysNotValidBefore 9 5.2.7 ContentKEysNotValidAfter
17、. 10 5.2.8 LeyIDList 10 5.2.9 ForensicMarkFlagList (Optional) 10 5.3 NonCriticalExtensions. 11 6 Authenticated and Excrypted Information. 11 6.1 EncryptedKey 12 6.1.1 KenInfo. 12 6.1.2 CipherData. 12 6.2 EncryptedData 13 7 Signature Information 13 Annex A Design Features and Secutiry Goals (Informat
18、ive) 14 Annex B Bibliography (Informative) 15 Annex C XML Schema for KDM (Normative) 16 Page 1 of 17 pages SMPTE 430-1-2006 Copyright 2006 by THE SOCIETY OF MOTION PICTURE AND TELEVISION ENGINEERS 3 Barker Avenue, White Plains, NY 10601 (914) 761-1100 Approved October 3, 2006 SMPTE STANDARD D-Cinema
19、 Operations Key Delivery Message ISO 26430-1:2008(E) 2 ISO 2008 All rights reservedSMPTE 430-1-2006 Page 2 of 17 pages Foreword SMPTE (the Society of Motion Picture and Television Engineers) is an internationally recognized standards developing organization. Headquartered and incorporated in the Uni
20、ted States of America, SMPTE has members in over 80 countries on six continents. SMPTEs Engineering Documents, including Standards, Recommended Practices and Engineering Guidelines, are prepared by SMPTEs Technology Committees. Participation in these Committees is open to all with a bona fide intere
21、st in their work. SMPTE cooperates closely with other standards-developing organizations, including ISO, IEC and ITU. SMPTE Engineering Documents are drafted in accordance with the rules given in Part XIII of its Administrative practices. SMPTE Standard 430-1 was prepared by Technology Committee DC2
22、8. ISO 26430-1:2008(E) ISO 2008 All rights reserved 3 SMPTE 430-1-2006 Page 3 of 17 pages 1 Scope This specification defines a “Key Delivery Message” (KDM) for use in Digital Cinema (D-Cinema) systems. The KDM has been designed to deliver security parameters and usage rights between D-Cinema content
23、 processing centers (e.g. from post production to distribution, or from distribution to exhibition). The KDM carries fundamentally three information types: Content keys for a specified Composition Play List (CPL). Content key parameters primarily the permitted key usage date/time window. The Trusted
24、 Device List (TDL) which identifies equipment permitted to use the content keys. The KDM is based on the D-Cinema generic Extra-Theater Message (ETM) format ETM. It uses XML to represent the information about the content decryption keys and TDLs, and provides security using standardized XML encrypti
25、on and signature primitives. The KDM message uses X.509 digital certificates, specified in D-Cinema Digital Certificate, to provide authentication and trust. NOTE The brackets convention “” as used herein denotes either a normative or informative reference. 2 Normative References The following stand
26、ards contain provisions which, through reference in this text, constitute provisions of this standard. At the time of publication, the editions indicated were valid. All standards are subject to revision, and parties to agreements based on this standard are encouraged to investigate the possibility
27、of applying the most recent edition of the standards indicated below. KLV SMPTE 429-6-2006, D-Cinema Packaging MXF Track File Essence Encryption D-Cinema Digital Certificate SMPTE 430-2-2006, D-Cinema Operations Digital Certificate ETM SMPTE 430-3-2006, D-Cinema Operations Generic Extra Theater Mess
28、age Format RFC2253 Lightweight Directory Access Protocol (v3):UTF-8 String Representation of Distinguished Names, December 1997. See: http:/www.ietf.org/rfc/rfc2253.txt Time UTC, RFC 3339: Date and Time on the Internet: Timestamps. G. Klyne and C. Newman. Informational, July 2002. See: http:/ietf.or
29、g/rfc/rfc3339.txt UUID “A Universally Unique Identifier (UUID) URN Namespace” July 2005. See: http:/www.ietf.org/rfc/rfc4122.txt 3 Glossary The following paragraphs define the acronyms used in this standard. AES: Advanced Encryption Standard secret key algorithm. See FIPS-197. ASN.1: Abstract Syntax
30、 Notation 1. Base64: A printable encoding of binary data. See Base64. DES: Data Encryption Standard. See FIPS-46-3. ETM: Extra Theatre Message See ETM FIPS: Federal Information Processing Standards of NIST. HMAC-SHA-1: Hash-based Message Authentication Code based on SHA-1. See FIPS-198. IETF: Intern
31、et Engineering Task Force standards group. ISO 26430-1:2008(E) 4 ISO 2008 All rights reservedSMPTE 430-1-2006 Page 4 of 17 pages IP: Internet Protocol. An IETF standard. ISO: International Standards Organization. KEK: Key Encrypting Key LE: Link Encrypter. LD: Link Decrypter. MD: Media Decrypter. NI
32、ST: National Institute of Standards and Technologies. OAEP: Optimal Asymmetric Encryption Pattern. See PKCS1. RO: Rights Owner. RSA: Rivest Shamir Adleman public key algorithm. SE: Security Entity. Any Digital Cinema entity that performs cryptography. SHA-1: Secure Hash Algorithm revision 1. See FIP
33、S-180-2. SHA-256: Secure Hash Algorithm. See FIPS-180-2. SM: Security Manager. S/MIME: Secure Multipurpose Internet Mail Extensions. SPB: Secure Processing Block. TCP: Transmission Control Protocol. IETF standard for reliable bi-directional streams. TDES: Triple DES. See FIPS-43-3. TLS: Transport La
34、yer Security protocol. See Rescorla. TMS: Theater Management System. X.509. A widely used and supported digital certificate standard. XML: Extensible Markup Language. 4 Overview of the KDM (Informative) 4.1 Basic KDM Elements and D-Cinema Relationships This standard presents a specification for the
35、Key Delivery Message (KDM) for use in a Digital Cinema (D- Cinema) system. The D-Cinema Key Delivery Message is normally sent: 1. Between a post-production system and a Distributor, or 2. Between a Distributor and a Theater facility. D-Cinema systems require that content keys, key usage time window
36、(key parameters) and “trusted equipment” information (Trusted Device List or TDL) be communicated to exhibition facilities. The KDM carries all the critical information required to enable content decryption according to a baseline interoperable security standard. The basic form of the KDM is shown i
37、n figure 1. Access to the full information payload of the KDM requires knowledge of the targeted recipients private key. Having this key, the legitimate recipient may unlock and validate both encrypted and plain text information contents carried. As is explained further in the appropriate sections o
38、f this document, the structure of the KDM has been designed to allow this without the recipient having stores of root certificates. To preserve intended security, full KDM information access should only take place within a secure environment (e.g., within a D- Cinema Secure Processing Block). KDMs c
39、an, however, be authenticated by insecure devices if such devices have copies of the root certificate of the entity that created and signed the KDM. The KDM uses XML to represent the information about content decryption keys and provides security using the XML Encryption and Signature primitives. To
40、 facilitate efficient processing with hardware security chips, the KDM individually encrypts each content key (along with other information) with RSA, and is structured to allow KDMs to be processed by devices that have limited resources of physically secure memory. ISO 26430-1:2008(E) ISO 2008 All
41、rights reserved 5 SMPTE 430-1-2006 Page 5 of 17 pages Recipient Public Key Content Keys & Parameters TDL Issuer Private Key Recipient Private Key Content Keys & Parameters TDL Issuer Public Key Key Delivery Message Issuer RecipientFigure 1 KDM Information Flow The KDM message is a particular instanc
42、e of the generic XML security wrapper defined by the D-Cinema Generic Extra Theatre Message Format ETM and uses digital certificates defined by the D-Cinema Digital Certificate specification. This document defines the characteristics that are specific to the KDM, and should be followed in combinatio
43、n with ETM, which in turn references the digital certificate specification. The relationship between the KDM and the Composition Play List (CPL) is shown in figure 2. Figure 2 Linking Between CPL and KDM Structures CPL KDM Id Message Id Composition Play Track File Asset Key Id EncryptedKey Key Id Ke
44、y Value Track File Asset Key Id EncryptedKey Key Id Key Value Key Id List Key Id Key Id ISO 26430-1:2008(E) 6 ISO 2008 All rights reservedSMPTE 430-1-2006 Page 6 of 17 pages Each CPL is identified by a globally unique value UUID that appears in the element named “Id” in the top- level XML structure
45、for a CPL. There are other elements in the CPL that are also called “Id”, such as the identifier for a track file, though these are not the identifier of the whole CPL itself. The KDM contains an element named “CompositionPlaylistId” whose value matches the UUID of the CPL for which it carries keys.
46、 The CPL identifies the (optional) key associated with each track file by a UUID in an element called “KeyId”. The KDM has matching elements called KeyId. An unencrypted list of the KeyId values that are carried in the KDM appears in the first part of the KDM. The actual key values (and their matchi
47、ng KeyId) appear in an encrypted portion of the KDM that can only be decrypted by the intended recipient (typically a Security Manager in an exhibition facility). 4.2 XML Overview of the KDM NOTE The XML figures shown in this specification are informative. See Annex C for the normative XML schema th
48、at defines the KDM. The XML diagrams in this document conform to the legend given in ETM. A KDM is an ETM instance which has in the RequiredExtensions element a child element named KDMRequiredExtensions (defined below), and which also makes use of the AuthenticatedPrivate element of the ETM to store
49、 content encryption keys. The KDMRequiredExtensions element contains information that must be visible without decryption in order to properly handle the KDM within D-Cinema systems. The information made available in this element includes a list of the Content Key Ids (but not the value of those keys) in the message. The AuthenticatedPrivate portion contains a collection of content decryption keys each encrypted in an EncryptedKey element. These RSA encr
