利用MPEG-4 IPMPX系統介面在MPEG-21測試平台上實現MPEG-21 IPMP 與REL

Abstract

隨著網路科技與數位媒體技術的進步，人人可以容易地製造和散佈數位化的多媒體內容。於是，如何有效的管理與保護數位內容變成一個重要的議題。本論文將介紹在MPEG標準中的智財權保護與管理MPEG-21 IPMP以及權利描述語言MPEG-21 REL。此外，在MPEG-4標準內所制訂的多媒體智財權保護與管理系統IPMPX提供本論文一個基本的系統架構。 為了模擬一個即時傳輸系統，我們使用MPEG-21多媒體傳輸測試平台作為系統傳輸之用。MPEG-21 IPMP提供保護DIDL物件的方法。MPEG-21 REL能夠描述各種權利，並且提供一個可產生認證結果的架構來管理權利。為何實現這些標準規格，我們設計一組擁有MPEG-21 IPMP與REL功能之MPEG-4 IPMP工具，並整合在至具有MPEG-4 IPMPX系統介面之MPEG-21測試平台。一個MPEG-4 IPMP工具能夠透過IPMP 訊息交換機制，要求認證結果以確認是否允許繼續處理資料。 為了安全地傳遞數位內容，我們使用伺服器端的加密工具來加密數位內容。因此我們提出一個擁有金鑰管理能力的內容保護機制，並用來確保傳輸解密金鑰的安全性。在這個機制中，我們另外設計一個能夠管理金鑰並傳遞加密過的解密金鑰至用戶端的伺服器。最終，我們詳述三個應用範例，以說明我們的系統能夠成功地保護數位資源和有效地管理權利。

As the network and digital media technologies advance, it is easy nowadays for everyone to create and distribute digital multimedia contents. How to effectively manage and protect the digital content becomes an important issue. In this thesis, the technologies of MPEG-21 IPMP (Intellectual Property Management and Protection) and REL (Rights Expression Language) are adopted to construct a DRM system. The MPEG-4 IPMPX (Intellectual Property Management and Protection Extension) system is also used as a basic framework for our implementation. To simulate a real-time streaming system, we use the MPEG-21 Testbed as our multimedia delivery platform, which is part 13 of the MPEG-21 standard for testing the multimedia resource delivery. The MPEG-21 IPMP provides ways to protect a DIDL element. The MPEG-21 REL is able to describe various kinds of rights and it provides an authorization model to generate an authorization proof to manage the rights. To implement these standard specifications, we design a set of IPMP Tools, which owns the functionalities of the MPEG-21 IPMP and REL, and we integrate this set of tools into the MPEG-4 IPMPX framework on the MPEG-21 Test Bed. Through the IPMP Message exchange mechanism, an IPMP Tool can request an authorization proof to check if the data processing is permitted. In order to deliver digital contents securely, we encrypt digital contents by using a server-side encryption Tool. To ensure the security of delivering decryption keys, we propose a content protection mechanism with a key management mechanism. In this mechanism, we design a key server that manages decryption keys and sends encrypted decryption keys to the client. At the end, we develop three application examples to demonstrate that our system can successfully safeguard digital resources and effectively manage the rights.