Se ha denunciado esta presentación.
Se está descargando tu SlideShare. ×

eSmartlock a USB Javacard dongle with anti-piracy and DRM services

Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Anuncio
Cargando en…3
×

Eche un vistazo a continuación

1 de 8 Anuncio
Anuncio

Más Contenido Relacionado

A los espectadores también les gustó (20)

Similares a eSmartlock a USB Javacard dongle with anti-piracy and DRM services (20)

Anuncio

Más de Yiannis Hatzopoulos (20)

Más reciente (20)

Anuncio

eSmartlock a USB Javacard dongle with anti-piracy and DRM services

  1. 1. eSmartlockeSmartlock A javacard USB dongle delivering DRM and anti-piracy services Presented at CardTech-SecureTech Washington DC Designed by Yiannis Hatzopoulos
  2. 2. Anti-piracy module Timestamp Authenticator eCommerce Token Key distribution server eSignature generator Crypro web access Secure CD/DVD access Encrypted save/load On Hard Disk Multi user Lincensing engine Digital rights Management engine Esmartlock API services Esmartlock API services
  3. 3. Certs eGate AntiPiracy Protection ERP/CRM eBilling Server eSignature Validation Protected CD/ DVD access Internet Crypto Access Soft Product Key / Credits / DRM eSessioning Encrypted Storage on Hard Disk Trusted Third Party – VPN service Trusted Third Party – VPN service + eSmartLock Functional Components
  4. 4. K(R) K(R) K(R) PC to Card authentication Card to PC authentication Card to Card authentication eSmartLock mutual authentication patterns Client Server R R R eGate eGate eGate eGate
  5. 5. Challenge CardID Soft Product Key Data MAC Soft Product Key It only decodes on a specific card Credit Update Operation Soft Product Key Data Credit Credit UpdateData New Authenticated TimeStamp Generic DRM Command Set Soft Product Key Data On Card Parser PC based DRM parser ( option sets / keysets / commands etc) On PC Parser Vendor’s Order Processing dept Compiles DRM request from Customer eSmartLock Soft Product Key Processing pattern PersistentStorageonCard DRM Command SentOnline/Off-line eGate
  6. 6. Produces RSA encrypted PK [CardID,eSession Key,K(eSessionKey), K(TimeStamp)] eSession Request: Encrypts K[Random pad, CardID, eSession parameters] Performs RSA Private Key decryption, authenticates with K => eSessionKey, TimeStamp Internet Secure Channel eSessionKey TimeStamp eSmartLock eSmartLock eSessioning Content Access Server eGate eGate
  7. 7. Object of Interest eSmartLock Public Keys ESmartLock Client i Access Control List Authenticate Identity - Submit PK Authorized Services ESmartLock Server CA - KDC ESmartLock Client A Client PK Registration ESmartLock Client B B’s Public Key A’sPublicKey VPN eSignature Checks Key Distribution Center function Store PK safely eSmartLock Client – Server Trusted Third Party Service Extranet eGate eGate eGate eGate
  8. 8. 010010100100010100101001000001 100101000101001010100101010011 101001010101001010100101010010 101010101010010101001010101001 010101010100101010101001010101 111110100101010111110100101011 Secure Hash Algorithm Encrypt with RSA Private Key Signature 010010100100010100101001000001 100101000101001010100101010011 101001010101001010100101010010 101010101010010101001010101001 010101010100101010101001010101 111110100101010111110100101011 Signature Secure Hash Algorithm Decrypt with RSA Public Key Comparison The RSA Public key is imported from an eSmartLock KDC eSignature Creation eSignature Verification eSmartLock eSignature support Sourcedata eGate eGate

×