Transcript Slide 1
Security & Key Management
P.J. Harr
20th Century FOX
WAEA Meeting 1/22/2008
WAEA’s History of Security-Related Documents
1)
WAEA Specification 0395
-- Adopted 11/6/2001
Content Delivery for In-Flight Entertainment v2.0
(and v1.1 -- 6/7/96)
2)
WAEA Specification 0598
-- Adopted 1/24/2001
DVD Delivery for In-Flight Entertainment v1.0
3)
WAEA Specification 0403
-- Adopted 3/6/2007
Digital Content Delivery Methodology for Airline In-Flight Entertainment Systems v1.0
WAEA Specification(s)
[0395] Content Delivery for In-Flight Entertainment v2.0
[0598] DVD Delivery for In-Flight Entertainment v1.0
Charter “ .. To identify and standardize specifications for the distribution of
digital entertainment
In Flight Entertainment systems.” /
DVD
media to Which “ .. Identifies and standardizes several aspects of source media, digitization, compression & encoding,
authoring & navigation
, encryption, duplication and distribution media.”
WAEA Specification 0395
Content Delivery for In-Flight Entertainment v2.0
Security Issues Addressed
Content security for both MPEG-based and File based encryption with 3-DES using RSA public / private keys.
DES (56-bit Key for MPEG-1); 3-DES (56-bit Key for MPEG-2); RSA algorithm w/ 1024-bit Keys, Control Words, EMM’s, ECM’s, Public / Private Keys, Copyright Flags, Secure Facilities, etc.
Parties: Airlines, Delivery System Provider, & Content Provider / Laboratory.
WAEA Specification 0598
DVD Delivery for In-Flight Entertainment v1.0
Security Issues Addressed
Early & Late Window Content Rules DVD Region Code 8 for IFE (amongst others) Security of Special Purpose DVD Drives / Players Security Module, 3-DES, 1024-bit RSA, KMAs, Device Keys, Private Keys, Key Protection, Decryption, Authentication, Fingerprinting, Secure Environments, etc.
Parties: Airlines, Device Manufacturers, KMA’s, & Content Providers.
WAEA Specification 0403
Digital Content Delivery Methodology for Airline In-Flight Entertainment Systems v1.0
“ .. Scope includes the interfaces, delivery processes, security & key management between content point of origin and delivery to onboard IFES.”
Multi-phased approach
Phase 1 -- completed
Phase 2 -- about to begin
Phase 3 -- who knows ??
WAEA Specification 0403
Digital Content Delivery Methodology for Airline In-Flight Entertainment Systems v1.0
“Phase 1” Security & Key Mgmt. Issues
Security system for MPEG-4 pt. 2, MPEG-4 pt. 10, and VC-1 codecs which would encourage the provisioning of early-window release content
Simplification of the content distribution process including enhanced automation
WAEA Specification 0403
Digital Content Delivery Methodology for Airline In-Flight Entertainment Systems v1.x
“Phase 2” Security & Key Mgmt. Issues Physical &/or Logical Characteristics
Fixed & Portable Players
Wired & Wireless Connections
Airline-provided & Passenger-owned (PAX) Players
Security to Aircraft by “Tail Number”
WAEA Specification 0403
Digital Content Delivery Methodology for Airline In-Flight Entertainment Systems v1.x
“Phase 2” Security & Key Mgmt. Issues
(cont.)
Business Model(s) &/or Legal Issues Portable Players [both airline & PAX (or passenger-owned)]
Who owns them?
What about security for each portable?
How do they effect other systems?
Broadband streaming / downloading to PAX units where encrypted keys are transmitted, but not the actual content?
WAEA 0403 Drilling Down into “Phase 2”
Physical &/or Logical Characteristics A) “System” Type(s) Tape, Disk, IP, Memory-based B) “Device” Type(s) Fixed – to – Portable Continuum (i.e. fixed, portable, hybrid) C) “Loading” [or “Transmission”] Type(s) Wired – to – Wireless Continuum Getting content onto System and Device Types D) Security to Aircraft by “Tail Number” Content identified per plane
WAEA 0403 “Phase 2”
Conclusion:
One can see the different facets of content security which will need to be dealt with during Phase 2. Many of these are difficult problems which require much thought and collaboration among the diverse industries.
Security & Key Management
P.J. Harr
20th Century FOX
Thank-you !!
WAEA Meeting 1/22/2008