DCI Specs - Digital Cinema Initiatives

More documents

Recommendations

Info

those under the control of the Security Manager and those under the control of theScreen Management System.9.6.1.2. Digital Rights Management: Security Manager (SM)The Security Manager is the executor of Digital Rights Management for each auditorium.It controls content keys and the delivery of such keys to the appropriate securityequipment to enable playback of encrypted content.Each Security Manager (and the Image Media Block it is part of) is assigned to a singleprojector. Keys are considered active for the business defined play period. Subject tosecurity equipment authentication, proper operation, and integrity checks (see Section9.4.3 Theater Security Operations), the Security Manager exercises no control overplayback, other than content key delivery during the valid play period. Under privatebusiness negotiations, a Distributor may provide keys for selected or all SecurityManagers (i.e., projectors) in a complex.Item, Observation or IssueAuthorized auditoriumEngagement Play-out WindowOnly known & trusted devices are enabledModified Movie FileApproachKDM (keys) is sent to authorized auditorium SMKDM contains designated key use time/date windowSM authenticates equipment prior to key deliveryAt playback, SM checks and logs movie against CPLTable 21: Examples of Security Manager EventsThe above table depicts events related to the Security Manager and the system’sbehavior. A film will not play-out if there is a failure in any of the items in rows 1, 2 and 3due to wrong location (row 1), wrong date/time (row 2), or the attempted use of anunauthorized device (row 3). In the event of modification in a movie file (row 4), the fileshould be replaced, but there are no Security System controls preventing an Exhibitorfrom playing-out a modified file. This event, like all security events, will be logged.9.6.1.3. Digital Rights Management: Security Entity (SE) EquipmentSecurity Entity equipment must perform to specified standards and function as designed.The Security Manager will continuously test for proper Security Entity identification(authentication), operation and physical integrity (tampering). Content playback isrestricted to passing all security tests at all times.Item, Observation or IssueSecurity equipment tampering or failureAuditorium (intra-suite) Security NetworkDCI Digital Cinema System Specification v.1.2 Page 144ApproachA tampered or failed device is non-functional untilreplacedNetwork must be operative to initiate playbackTable 22: Examples of Failure or Tampering of Security EquipmentThe above table depicts tampering or failure of security equipment. Security equipmentthat has been tampered with or is malfunctioning (row 1) shall not continue operationand must be replaced before playback can commence (or continue). An example ofmalfunctioning security equipment is a Media Block that no longer performs one of itssecurity functions (e.g., decryption, Forensic Marking, logging). If the auditorium securitynetwork is inoperative (row 2), playback cannot start. However, the security system willnot cause playback to stop upon failure of the network during a show.
9.6.2. “Trust” and the Trusted Device List (TDL)In a “trust” relationship, it is said “A trusts B regarding X”. More specifically, the relying partyA believes that B will behave in certain predictable ways under a certain range of conditions.This behavior-based definition can apply both to business relationships and to the moreformalized regime of standardized security devices. And in fact, a useful Digital Cinema trustsystem must bridge the former to the latter.When a Distributor trusts a piece of equipment, his level of confidence in its behavior isbased on several factors such as those in Table 23FactorRoot of Trust1 Robust equipment design Manufacturer and certification organization2 Reliable manufacturing process Manufacturer3 Properly installed Installer and organization operating device4 Properly maintained (e.g., required firmware orsecurity updates)5 Properly managed (configured, inspected andoperated in accordance with expectations duringoperational life)Organization operating device,manufacturer and certification organizationOrganization operating device6 Has not been tampered with before or after installation Organization operating device, certificationorganizationTable 23: Factors Supporting Trust in a Security DeviceProtecting the content keys under a full range of potential situations can be a complex task,representing a set of behaviors involving rules and policy that meet the requirements ofthese specifications and (optionally) the particular business relationship. To simplify trustissues for the Digital Cinema environment, the TDL approach to equipment trustcommunications has been defined. In this approach, Rights Owners will indicate theirapproval of specific trusted equipment to be used in conjunction with an engagement byplacing the identification of trusted equipment (Secure Processing Blocks and projectors)into the Key Delivery Messages (KDMs) that are sent to Security Managers. SecurityManagers will trust and accept devices so listed for all security functions subject to thedevice’s certificate declared roles (see Section 9.5.1 Digital CertificatesThe content of TDLs (e.g., facility-wide, auditorium-specific, inclusive of spares) shall beaccording to business party agreement, and is out of scope of these specifications.9.6.2.1. Trust DomainsThe SM Security Domain is represented by the collection of security devices associatedwith a single SM that work together to perform a security function. In this system, the SMSecurity Domain and its Trust Domain 31 are equal, and in the theater these domains area single auditorium equipment suite. Multiple trust domains are typically used (chained)together to achieve overall security management objectives (e.g., distributing contentkeys from post-production to Distribution and Exhibition via multiple KDMs).The SM functions as an anchor for a given Trust Domain. For convenience, thisspecification uses descriptors such as Distributor SM, Auditorium SM, etc., but it will berecognized that the security system does not mandate any particular topology for31 Trust Domain areas also exist for post-production and distribution, but are out of scope.DCI Digital Cinema System Specification v.1.2 Page 145
Page 1 and 2:
Digital Cinema Initiatives, LLCDigi
Page 3 and 4:
Table of Contents1. OVERVIEW 151.1.
Page 5 and 6:
5.2.2. Packaging Fundamental Requir
Page 8 and 9:
7.5.5.1. Introduction..............
Page 10 and 11:
9.4.2.5. Screen Management System (
Page 12 and 13:
Table of FiguresFigure 1: System Ov
Page 14 and 15:
THIS PAGE LEFT BLANK INTENTIONALLYD
Page 16 and 17:
equirements for encrypting the esse
Page 18 and 19:
• This document specifies a basel
Page 20 and 21:
DCI Digital Cinema System Specifica
Page 22 and 23:
2.1.1. Major System Concepts2.1.1.1
Page 24 and 25:
2.1.1.8. ReelsFeature films have be
Page 26 and 27:
Metadata within the DCDM provides a
Page 28 and 29:
3.2.1.6. Transfer FunctionThe CIE X
Page 30 and 31:
The information, as shown in Table
Page 32 and 33:
AES Pair#/Ch# Channel # Label / Nam
Page 34 and 35:
3.3.4. File Format3.3.4.1. GeneralT
Page 36 and 37:
3.4.3. Timed Text Concepts and Requ
Page 38 and 39:
Page 40 and 41:
• All decoders shall decode each
Page 42 and 43:
Page 44 and 45:
5.2.2.3. InteroperableThe Packaging
Page 46 and 47:
Figure 6: Example Show PlaylistThe
Page 48 and 49:
Length (Value Length), followed by
Page 50 and 51:
which it was stopped or paused. It
Page 52 and 53:
5.3.4.2. Frame BoundariesThe Audio
Page 54 and 55:
• Rating• Aspect Ratio• Image
Page 56 and 57:
• Annotation Text parameter (opti
Page 58 and 59:
Page 60 and 61:
7.2.3.1. ReliabilityA key part of t
Page 62 and 63:
• Country• Rating• Aspect Rat
Page 64 and 65:
facility, while the system is in op
Page 66 and 67:
Exhibitor and the Distributor, data
Page 68 and 69:
7.5.2.2. Ingest InterfacesExcept fo
Page 70 and 71:
(channels) * hours * 60 min/hour *
Page 72 and 73:
7.5.4.2.4. UnpackagingAny packaged
Page 74 and 75:
7.5.6. Audio System7.5.6.1. Introdu
Page 76 and 77:
made up of Theater System devices a
Page 78 and 79:
DCI Digital Cinema System Specifica
Page 80 and 81:
8.2.2.3. Alternative ContentThe pro
Page 82 and 83:
With the projector turned off or wi
Page 84 and 85:
Image ParametersNominal(Projected I
Page 86 and 87:
Input Code Values Output Chromatici
Page 88 and 89:
8.4. Projector Interfaces8.4.1. Int
Page 90 and 91:
• Lens Shift Up / Down• Lamp Mo
Page 92 and 93:
• Essence Encryption and Cryptogr
Page 94 and 95: content keys and Trusted Device Lis
Page 96 and 97: Figure 14: Digital Cinema Security
Page 98 and 99: Figure 15 presents the two fundamen
Page 100 and 101: DCI Digital Cinema System Specifica
Page 102 and 103: 9.4.2.3. Media Blocks (MBs)The term
Page 104 and 105: which TLS-based authentication alon
Page 106 and 107: working with the security infrastru
Page 108 and 109: Figure 18: Show Playback Overview9.
Page 110 and 111: a. Playout shall be fully supported
Page 112 and 113: 9.4.5. Intra-Theater Communications
Page 114 and 115: 4. Projector SPB designs shall not
Page 116 and 117: the event, and zero all Critical Se
Page 118 and 119: window) shall be UTC.Security Manag
Page 120 and 121: . The SM shall independently authen
Page 122 and 123: 6. No broadcast RRP commands shall
Page 124 and 125: Functions of the Security Manager (
Page 126 and 127: Note: DCI reserves the right, at so
Page 128 and 129: • Is required to survive camcorde
Page 130 and 131: • Log Data - Security event infor
Page 132 and 133: using the GetEventList and GetEvent
Page 134 and 135: failure) per Section 9.6.1.3 Digita
Page 136 and 137: • Secure Silicon -Sensitive data
Page 138 and 139: secure silicon chip, input/output s
Page 140 and 141: FIPS 140-2 level 3 devices provide
Page 142 and 143: to the appropriate Section 9.4.5.2.
Page 146 and 147: Security Managers (SMs) other than
Page 148 and 149: The above RSA asymmetric protection
Page 150 and 151: THIS PAGE LEFT BLANK INTENTIONALLYD
Page 152 and 153: CPRL Acronym for Component Position
Page 154 and 155: LTCMain TitlesMBMDMEMetadataMTBFMXF
Page 156: TDLTimed TextTLMTLSTMSTrack FileUDP
show all

DCI Specs - Digital Cinema Initiatives

Create successful ePaper yourself

Delete template?

Save as template?