DCI Specs - Digital Cinema Initiatives

More documents

Recommendations

Info

FIPS 140-2 level 3 devices provide physical and logical protection of their parametersand functions 24/7 and shall be able to respond to attacks under both powered and unpoweredconditions. This means that if a type 1 SPB requires a power source toaccomplish tamper detection and response, it must zeroize its Critical SecurityParameters (CSPs) prior to any situation arising where such power source may not beavailable. By way of example, if a type 1 SPB is in storage and relying upon a battery fortamper detection and response, it must self-destruct prior to a battery depletion conditionwhich would not support proper tamper detection and/or response.”9.5.2.6. Critical Security Parameters and D-Cinema Security ParametersA requirement of FIPS-140-2 is to list the Critical Security Parameters (CSP) that areimportant for the security of Digital Cinema cryptographic module(s) (Secure ProcessingBlock) and its functions. The following CSPs shall receive Secure Processing Block(SPB) type 1 protection, whenever they exist outside of their originally encrypted state.1. Device Private Keys – RSA private key that devices use to prove their identity andfacilitate secure Transport Layer Security (TLS) communications.2. Content Encryption Keys – KDM AES keys that protect content.3. Content Integrity Keys – HMAC-SHA-1 keys that protect the integrity of compressedcontent (integrity pack check parameters).4. Control Message Encryption and Integrity Keys – AES, HMAC-SHA-1/SHA-256keys/parameters that protect the privacy and/or integrity of Composition Play Lists,Track File Lists, Key Delivery Messages and other ETMs.5. Link Encryption Keys – Keys that protect the privacy and integrity of uncompressedcontent for link encryption.6. Transport Layer Security (TLS) secrets – These are transient keys/parameters usedor generated in support of TLS and Intra-Theater Messaging (ITM). (TLS secretsassociated with the SMS end point of the SMS-SM TLS connection are notconsidered CSPs.)The following items are not considered FIPS 140-2 CSPs, but are considered D-CinemaSecurity Parameters, and shall at all times be protected by a type 1 SPB perimeter(except where log data is extracted per Section 9.4.6.3).1. Watermarking or Fingerprinting command and control – Any of the parameters orkeys used in a particular Forensic Marking process.2. Logged Data – All log event data and associated parameters constituting a logrecord or report.9.5.2.7. SPB Firmware ModificationsThe Limited Operational Environment operating system requirement of FIPS 140-2Section 9.5.2.5 FIPS 140-2 Requirements for Type 1 Secure Processing Blocks restrictsSPBs type 1 and the secure silicon chip of SPB type 2 from having their operatingsystem or firmware modified in the field. The following defines the requirements formaking firmware 30 changes to these security devices. FIPS 140-2 constrained devicesshall:30 The term firmware shall mean all operating system, software, firmware or ROM based code within the SPB type 1 SPBtype 2 silicon chip.DCI Digital Cinema System Specification v.1.2 Page 140
• Be designed such that their firmware cannot be modified without the knowledgeand permission of the original manufacturer.• Require a Digital Cinema compliant certificate that authenticates and confirmsthe identity of the authority figure responsible for making a firmware change, andshall include time/date and version number information associated with anyfirmware change, in addition to the authority figure.• Not undergo firmware changes without informing potentially affected informationbases that support Digital Cinema equipment operations (e.g., databases usedby stakeholders for facility lists, KDM and TDL creation), and the owner of thedevice.• Log the firmware change event by meeting FIPS 140-2 Operational Environment(row 6 of Table 20: Summary of FIPS 140-2 Security Requirements)audit/recording requirements of the Operating System Requirements subsectionSecurity Level 3, except that Common Criteria (CC) and Evaluation AssuranceLevel (EAL) certification mandates shall not be required. The requirements forFIPS Level 3 audit/recording are encouraged but shall be optional.• Enable the extraction of the above firmware change related log records usingstandard log record messages per Section 9.4.6.3 Logging Subsystem. For thedelivery of these log records, it shall be mandatory that the records be signed..• Follow FIPS 140-2 certification body change notification requirements regardingmodifications to security devices. Undergo re-certification if required.9.5.3. Screen Management System (SMS)There are no physical constraints or requirements imposed on the SMS by the securitysystem (i.e., no SPB requirements); however, the SMS implementation shall not otherwiseweaken or effect the security operations of other Security Entities or SPBs.9.5.4. Subtitle ProcessingSubtitle encryption is directed primarily against interception during transport, andcryptographic protection within the theater is not required. Thus there are no protectionrequirements imposed on subtitle post-decryption processes, other than its implementationshall not weaken or otherwise effect the security operations of other Security Entities orSPBs.As an alternative to encryption of subtitle essence, the Composition Playlist (CPL)SubtitleTrackFileAssetType “Hash” element may be used to validate the integrity of receivedsubtitle content that has not been encrypted. The optional subtitle hash element, if used,shall be present and in the same signed CPL used for the image and audio. This integritycheck could be performed by the Security Manager, but may also be performed externally tothe IMB by, for example, the SMS.9.5.5. Compliance Testing and CertificationCompliance Testing is the process of qualifying Secure Processing Blocks (SPBs) and theirSecurity Entities for use in Digital Cinema systems. All SPBs shall be subject to qualifyingcriteria in the following areas:• Compliance to Intra-Theater Messaging (ITM) specifications – The SPB and internallogical SEs shall interpret and respond to the standard ITM message set accordingDCI Digital Cinema System Specification v.1.2 Page 141
Page 1 and 2:
Digital Cinema Initiatives, LLCDigi
Page 3 and 4:
Table of Contents1. OVERVIEW 151.1.
Page 5 and 6:
5.2.2. Packaging Fundamental Requir
Page 8 and 9:
7.5.5.1. Introduction..............
Page 10 and 11:
9.4.2.5. Screen Management System (
Page 12 and 13:
Table of FiguresFigure 1: System Ov
Page 14 and 15:
THIS PAGE LEFT BLANK INTENTIONALLYD
Page 16 and 17:
equirements for encrypting the esse
Page 18 and 19:
• This document specifies a basel
Page 20 and 21:
DCI Digital Cinema System Specifica
Page 22 and 23:
2.1.1. Major System Concepts2.1.1.1
Page 24 and 25:
2.1.1.8. ReelsFeature films have be
Page 26 and 27:
Metadata within the DCDM provides a
Page 28 and 29:
3.2.1.6. Transfer FunctionThe CIE X
Page 30 and 31:
The information, as shown in Table
Page 32 and 33:
AES Pair#/Ch# Channel # Label / Nam
Page 34 and 35:
3.3.4. File Format3.3.4.1. GeneralT
Page 36 and 37:
3.4.3. Timed Text Concepts and Requ
Page 38 and 39:
Page 40 and 41:
• All decoders shall decode each
Page 42 and 43:
Page 44 and 45:
5.2.2.3. InteroperableThe Packaging
Page 46 and 47:
Figure 6: Example Show PlaylistThe
Page 48 and 49:
Length (Value Length), followed by
Page 50 and 51:
which it was stopped or paused. It
Page 52 and 53:
5.3.4.2. Frame BoundariesThe Audio
Page 54 and 55:
• Rating• Aspect Ratio• Image
Page 56 and 57:
• Annotation Text parameter (opti
Page 58 and 59:
Page 60 and 61:
7.2.3.1. ReliabilityA key part of t
Page 62 and 63:
• Country• Rating• Aspect Rat
Page 64 and 65:
facility, while the system is in op
Page 66 and 67:
Exhibitor and the Distributor, data
Page 68 and 69:
7.5.2.2. Ingest InterfacesExcept fo
Page 70 and 71:
(channels) * hours * 60 min/hour *
Page 72 and 73:
7.5.4.2.4. UnpackagingAny packaged
Page 74 and 75:
7.5.6. Audio System7.5.6.1. Introdu
Page 76 and 77:
made up of Theater System devices a
Page 78 and 79:
DCI Digital Cinema System Specifica
Page 80 and 81:
8.2.2.3. Alternative ContentThe pro
Page 82 and 83:
With the projector turned off or wi
Page 84 and 85:
Image ParametersNominal(Projected I
Page 86 and 87:
Input Code Values Output Chromatici
Page 88 and 89:
8.4. Projector Interfaces8.4.1. Int
Page 90 and 91: • Lens Shift Up / Down• Lamp Mo
Page 92 and 93: • Essence Encryption and Cryptogr
Page 94 and 95: content keys and Trusted Device Lis
Page 96 and 97: Figure 14: Digital Cinema Security
Page 98 and 99: Figure 15 presents the two fundamen
Page 100 and 101: DCI Digital Cinema System Specifica
Page 102 and 103: 9.4.2.3. Media Blocks (MBs)The term
Page 104 and 105: which TLS-based authentication alon
Page 106 and 107: working with the security infrastru
Page 108 and 109: Figure 18: Show Playback Overview9.
Page 110 and 111: a. Playout shall be fully supported
Page 112 and 113: 9.4.5. Intra-Theater Communications
Page 114 and 115: 4. Projector SPB designs shall not
Page 116 and 117: the event, and zero all Critical Se
Page 118 and 119: window) shall be UTC.Security Manag
Page 120 and 121: . The SM shall independently authen
Page 122 and 123: 6. No broadcast RRP commands shall
Page 124 and 125: Functions of the Security Manager (
Page 126 and 127: Note: DCI reserves the right, at so
Page 128 and 129: • Is required to survive camcorde
Page 130 and 131: • Log Data - Security event infor
Page 132 and 133: using the GetEventList and GetEvent
Page 134 and 135: failure) per Section 9.6.1.3 Digita
Page 136 and 137: • Secure Silicon -Sensitive data
Page 138 and 139: secure silicon chip, input/output s
Page 142 and 143: to the appropriate Section 9.4.5.2.
Page 144 and 145: those under the control of the Secu
Page 146 and 147: Security Managers (SMs) other than
Page 148 and 149: The above RSA asymmetric protection
Page 150 and 151: THIS PAGE LEFT BLANK INTENTIONALLYD
Page 152 and 153: CPRL Acronym for Component Position
Page 154 and 155: LTCMain TitlesMBMDMEMetadataMTBFMXF
Page 156: TDLTimed TextTLMTLSTMSTrack FileUDP
show all

DCI Specs - Digital Cinema Initiatives

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?