Device Revocation in Paradiso DRM System
Status: Open
Background
DRM Paradiso aims to extend the concept of superdistribution by letting personal entertainment devices like MP3 players to not only use the content but also enpower them to redistribute the content in a DRM preserving manner.
We already have a prototype implementation that showcases the possibility of implementing such a redistribution system. This prototype was implemented on a Neuros Developer Board and boasts of the ability to wirelessly transfer data between the boards, symmetric and asymmetric encryption, basic device revocation etc.
Device Revocation: The device revocation support in the current prototype is not adequate for real-world use. This project involves an indepth look into the exisiting approaches proposed to support certificate revocation on personal devices where memory and bandwidth constrains prevent the use of traditional methods. The student would, after the necessary literature study, propose and implement a device revocation system that could be derived from an existing approach or could be a new apporach all together.
Project details
The students work would involve:
- Studying the current Paradiso system and understand the constrains under which the model operates.
- Peforming a literature review of existing revocation mechanism, with emphasis on systems with memory and bandwidth constrains.
- Proposing a device revocation solution that would work under the constrains imposed by the Paradiso model.
Requirement
This project involves a mix of both theoretical security/cryptography methods as well as coding. Interested student should be comfortable within both fields. To implement the prototype syste,, you will need to be comfortable with coding in C programming language in Linux.
What you will gain
The student would gain a good knowledge about exisiting methods for cerificate revocation, which form a very crucial part of the Public Key Infrastructure (PKI) that orgaization pay huge amounts to implement. The student would also be able to work on an exisiting system and extend it. This would hone their programming skills as well as provide a deeper understanding of the working of security systems within constrained environments of the real-world! A well done project could also result in a paper submission to a reputed conference.
Supervision
Bruno Crispo will be the faculty staff supervising the project with support from Srijith K. Nair who is a PhD. student at the faculty. The student will have regular meetings with Bruno and Srijith and is expected to work consistently throughout the project.
Contacts
If you are interested to know more about this project please send a mail to crispo@cs.vu.nl or srijith@few.vu.nl
References
- Srijith K. Nair, Bogdan C. Popescu, Chandana Gamage, Bruno Cripso, Andrew S. Tanenbaum, "Enabling DRM-preserving Digital Content Redistribution" - Proceedings of 7th International IEEE Conference on E-Commerce Technology 2005, July 19-22, 2005, Munich, Germany - PDF File
- H. Jonker, S. Krishnan Nair and M. Torabi Dashti, "Nuovo DRM Paradiso: Formal specification and verification of a DRM protocol" - Technical Report IR-CS-019, Department of Computer Science, Vrije Universiteit, March 2006. - PDF File
- Ron Gerrits, Implementing a DRM-Preserving Digital Content Redistribution System - Masters Thesis, Vrije Universiteit, October 2006. (not available online yet)
- B.C. Popescu, B. Crispo. and A.S. Tanenbaum, "A Certificate Revocation Scheme for a Large-Scale Highly Replicated Distributed System"-SCC 03: 8th IEEE Symposium on Computer and Communications Kemer, Turkey, 30 June - 3 July 2003.
Warning: include(/home/srijith/www/includes/randomquote.php): Failed to open stream: No such file or directory in /home/srijith/public_html/vu/masters/paradiso-drl.php on line 103 Warning: include(): Failed opening '/home/srijith/www/includes/randomquote.php' for inclusion (include_path='.:/opt/alt/php83/usr/share/pear:/opt/alt/php83/usr/share/php:/usr/share/pear:/usr/share/php') in /home/srijith/public_html/vu/masters/paradiso-drl.php on line 103