DCI Specs - Digital Cinema Initiatives

More documents

Recommendations

Info

Figure 15 presents the two fundamental auditorium security system architectures, with andwithout Link Encryption, and the security message types ETM and ITM. This diagram doesnot attempt to detail functions that are unrelated to security (e.g., decoding), but doesanticipate such functions by noting where plain text content exists.Though not shown in Figure 15: Digital Cinema Auditorium Security Implementations, but asindicated in the requirements above, every auditorium shall support image, audio, andsubtitle decryption 17 , and image and audio Forensic Marking.9.4.1.1. Architecture Description and CommentsThe security architecture descriptions and requirements revolve around twoembodiments: the SPB and the SE. As defined in Section 9.3.3 Security Messaging andSecurity Entities, SEs are logical devices that perform specific security functions. Theyare logical because these specifications do not dictate how SEs are actually designed,and more than one type of SE may be implemented within a single circuit.All functional Security Entities (SEs) (except the SMS) shall be contained within SPBs,which provide physical protection for the Security Entities (SEs). The SPB is itself aliteral SE Type – its security function is physical protection. The Security Entities (SEs)and SPB type 1 and type 2 containers are depicted in Figure 15: Digital CinemaAuditorium Security Implementations. This figure shows that there are only threepermitted physical protection scenarios:• No physical protection required – Screen Management System (SMS)• SPB type 1 protection required – Image Media Blocks and Link Decryptor Blocks• SPB type 2 protection required – Content essence entering the projector from anIMB or LD Block.These requirements are more fully defined in the SM and SPB functional requirementsbelow (see Section 9.5 Implementation Requirements).Note: The security network is shown (in red) in Figure 15: Digital Cinema AuditoriumSecurity Implementations. This is described below as operating under Transport LayerSecurity (TLS), a readily available and well known protocol standard for providingprotection between application layer processes that must communicate betweendevices, in this case between auditorium devices (Secure Processing Blocks) performingsecurity functions. 18As part of TLS session establishment, each party to the session presents its digitalcertificate to the other. In this fashion, the IMB Security Manager identifies the otherSPBs in the auditorium, and mutual authentication is accomplished (see Section 9.4.3.1Transport Layer Security (TLS) Establishment and Secure Processing Block (SPB)Authentication and Section 9.4.5.1 Transport Layer Security Sessions, End Points andIntra-Theater Messaging). Although the SM may establish secure TLS communicationswith an SPB, it will not “trust” (approve) that SPB for content playback functions until theidentity of such SPB appears on the appropriate Trusted Device List (TDL) for theparticular composition (see Section 9.6.2 “Trust” and the Trusted Device List (TDL)).17 Subtitle encryption is directed primarily against interception during transport, and cryptographic protection within thetheater is not required. For example, plaintext subtitle content may be transmitted from a server device to a projection unit.It is preferred, but not required, that subtitle content be maintained in encrypted form except during playback.18 Transport Layer Security (TLS) can be viewed as an extension of the SPB physical protection container, but forcommunications, a “steel pipe” that surrounds the wire between devices. Thus, these specifications define both physicaland logical protection mechanisms for all security and playback processes.DCI Digital Cinema System Specification v.1.2 Page 98
The playback processes begins and ends with the SMS, under the control of Exhibition.Thus, the SMS is viewed as the initiator of security functions, and the window into theexhibition security system. Protection over cryptographic processes begins by requiringthe SMS to communicate, in a secure fashion (i.e., under TLS), with the SecurityManagers (SM) under its control. The security system takes advantage of these securecommand and control features to protect itself, as well as the exhibition operator, fromseveral forms of attacks, including SMS imposters and Denial of Service.While it is true that the security system places no physical protection requirements onthe SMS, the extent to which the SMS is vulnerable to being tampered with, or itsfunctions subverted, is a result of exhibition implementation and policy (e.g., who getsaccess to the SMS, how it is physically protected by room locks, operator access). Thesecurity system requires the SMS and SMS operator to identity itself to the SecurityManager. The extent to which this information is reliable is subject to issues outside thescope of the security system and this specification. But the security system structure andstandards requirements are appropriately specified to enable policies to regiment theseaspects according to any particular security needs, without needing to change orenhance SE device operations or features.DCI Digital Cinema System Specification v.1.2 Page 99
Page 1 and 2:
Digital Cinema Initiatives, LLCDigi
Page 3 and 4:
Table of Contents1. OVERVIEW 151.1.
Page 5 and 6:
5.2.2. Packaging Fundamental Requir
Page 8 and 9:
7.5.5.1. Introduction..............
Page 10 and 11:
9.4.2.5. Screen Management System (
Page 12 and 13:
Table of FiguresFigure 1: System Ov
Page 14 and 15:
THIS PAGE LEFT BLANK INTENTIONALLYD
Page 16 and 17:
equirements for encrypting the esse
Page 18 and 19:
• This document specifies a basel
Page 20 and 21:
DCI Digital Cinema System Specifica
Page 22 and 23:
2.1.1. Major System Concepts2.1.1.1
Page 24 and 25:
2.1.1.8. ReelsFeature films have be
Page 26 and 27:
Metadata within the DCDM provides a
Page 28 and 29:
3.2.1.6. Transfer FunctionThe CIE X
Page 30 and 31:
The information, as shown in Table
Page 32 and 33:
AES Pair#/Ch# Channel # Label / Nam
Page 34 and 35:
3.3.4. File Format3.3.4.1. GeneralT
Page 36 and 37:
3.4.3. Timed Text Concepts and Requ
Page 38 and 39:
Page 40 and 41:
• All decoders shall decode each
Page 42 and 43:
Page 44 and 45:
5.2.2.3. InteroperableThe Packaging
Page 46 and 47:
Figure 6: Example Show PlaylistThe
Page 48 and 49: Length (Value Length), followed by
Page 50 and 51: which it was stopped or paused. It
Page 52 and 53: 5.3.4.2. Frame BoundariesThe Audio
Page 54 and 55: • Rating• Aspect Ratio• Image
Page 56 and 57: • Annotation Text parameter (opti
Page 58 and 59: THIS PAGE LEFT BLANK INTENTIONALLYD
Page 60 and 61: 7.2.3.1. ReliabilityA key part of t
Page 62 and 63: • Country• Rating• Aspect Rat
Page 64 and 65: facility, while the system is in op
Page 66 and 67: Exhibitor and the Distributor, data
Page 68 and 69: 7.5.2.2. Ingest InterfacesExcept fo
Page 70 and 71: (channels) * hours * 60 min/hour *
Page 72 and 73: 7.5.4.2.4. UnpackagingAny packaged
Page 74 and 75: 7.5.6. Audio System7.5.6.1. Introdu
Page 76 and 77: made up of Theater System devices a
Page 78 and 79: DCI Digital Cinema System Specifica
Page 80 and 81: 8.2.2.3. Alternative ContentThe pro
Page 82 and 83: With the projector turned off or wi
Page 84 and 85: Image ParametersNominal(Projected I
Page 86 and 87: Input Code Values Output Chromatici
Page 88 and 89: 8.4. Projector Interfaces8.4.1. Int
Page 90 and 91: • Lens Shift Up / Down• Lamp Mo
Page 92 and 93: • Essence Encryption and Cryptogr
Page 94 and 95: content keys and Trusted Device Lis
Page 96 and 97: Figure 14: Digital Cinema Security
Page 100 and 101: DCI Digital Cinema System Specifica
Page 102 and 103: 9.4.2.3. Media Blocks (MBs)The term
Page 104 and 105: which TLS-based authentication alon
Page 106 and 107: working with the security infrastru
Page 108 and 109: Figure 18: Show Playback Overview9.
Page 110 and 111: a. Playout shall be fully supported
Page 112 and 113: 9.4.5. Intra-Theater Communications
Page 114 and 115: 4. Projector SPB designs shall not
Page 116 and 117: the event, and zero all Critical Se
Page 118 and 119: window) shall be UTC.Security Manag
Page 120 and 121: . The SM shall independently authen
Page 122 and 123: 6. No broadcast RRP commands shall
Page 124 and 125: Functions of the Security Manager (
Page 126 and 127: Note: DCI reserves the right, at so
Page 128 and 129: • Is required to survive camcorde
Page 130 and 131: • Log Data - Security event infor
Page 132 and 133: using the GetEventList and GetEvent
Page 134 and 135: failure) per Section 9.6.1.3 Digita
Page 136 and 137: • Secure Silicon -Sensitive data
Page 138 and 139: secure silicon chip, input/output s
Page 140 and 141: FIPS 140-2 level 3 devices provide
Page 142 and 143: to the appropriate Section 9.4.5.2.
Page 144 and 145: those under the control of the Secu
Page 146 and 147: Security Managers (SMs) other than
Page 148 and 149:
The above RSA asymmetric protection
Page 150 and 151:
Page 152 and 153:
CPRL Acronym for Component Position
Page 154 and 155:
LTCMain TitlesMBMDMEMetadataMTBFMXF
Page 156:
TDLTimed TextTLMTLSTMSTrack FileUDP
show all

DCI Specs - Digital Cinema Initiatives

Create successful ePaper yourself

Delete template?

Save as template?