中国邮电高校学报(英文) ›› 2021, Vol. 28 ›› Issue (1): 52-63.doi: 10.19682/j.cnki.1005-8885.2021.0006

• security • 上一篇    下一篇

General digital rights management solution based on white-box cryptography

刘君1,胡予濮2,陈杰1   

  1. 1. 西安电子科技大学
    2. 西安电子科技大学 计算机网络与信息安全教育部重点实验室
  • 收稿日期:2020-03-27 修回日期:2020-08-11 出版日期:2021-02-28 发布日期:2021-03-28
  • 通讯作者: 刘君 E-mail:junl1212@163.com
  • 基金资助:
    国家重点研发计划项目;国家自然科学基金;“十三五”国家密码发展基金

General digital rights management solution based on white-box cryptography

  1. School of Telecommunications Engineering, Xidian University, Xi'an 710071, China
  • Received:2020-03-27 Revised:2020-08-11 Online:2021-02-28 Published:2021-03-28
  • Contact: Jun LIU E-mail:junl1212@163.com
  • Supported by:
    National Key R&D Program of China;National Natural Science Foundations of China;National Cryptography Development Fund of China

摘要:

Digital rights management (DRM) applications are usually confronted with threats like key extraction, code lifting, and illegal distribution. White-box cryptography aims at protecting software implementations of cryptographic algorithms and can be employed into DRM applications to provide security. A general DRM solution based on white-box cryptography was proposed to address the three threats mentioned above. The method is to construct a general perturbation-enabled white-box compiler for lookup-table based white-box block ciphers, such that the white-box program generated by this compiler provides traceability along with resistance against key extraction and code lifting. To get a traceable white-box program, the idea of hiding a slight perturbation in the lookup-table was employed, aiming at perturbing its decryption functionality, so that each user can be identified. Security analysis and experimental results show that the proposed DRM solution is secure and practical.


关键词:

digital rights management (DRM)|white-box cryptography|traceable white-box program|white-box compiler

Abstract:

Digital rights management (DRM) applications are usually confronted with threats like key extraction, code lifting, and illegal distribution. White-box cryptography aims at protecting software implementations of cryptographic algorithms and can be employed into DRM applications to provide security. A general DRM solution based on white-box cryptography was proposed to address the three threats mentioned above. The method is to construct a general perturbation-enabled white-box compiler for lookup-table based white-box block ciphers, such that the white-box program generated by this compiler provides traceability along with resistance against key extraction and code lifting. To get a traceable white-box program, the idea of hiding a slight perturbation in the lookup-table was employed, aiming at perturbing its decryption functionality, so that each user can be identified. Security analysis and experimental results show that the proposed DRM solution is secure and practical.


Key words: digital rights management (DRM)|white-box cryptography|traceable white-box program|white-box compiler

中图分类号: