Towards Security of Native DRM Execution in HTML5

David Livshits; Alexandra Mikityuk; Stefan Pham; Asaf Shabtai

doi:10.1109/ISM.2015.48

Towards Security of Native DRM Execution in HTML5

David Livshits, Alexandra Mikityuk, Stefan Pham, Asaf Shabtai

Department of Software and Information Systems Engineering

Ben-Gurion University of the Negev

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In this paper we present an open, secure and flexible architectural approach for integrating Content Decryption Module (CDM) and Encryption Media Extensions (EME) interface with Trusted Execution Environment (TEE). This provides security hardening for playback of the Digital Rights Management (DRM) protected content without any need for a dedicated secure processor. This article is not focused on specific TEE approaches, but rather considers that any TEE can be potentially integrated with CDM through the EME interface. Our work introduces the approaches for integrating CDM with Intel SGX and ARM TrustZone TEE technologies.

Original language	American English
Title of host publication	Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015
Pages	411-416
Number of pages	6
ISBN (Electronic)	9781509003792
DOIs	https://doi.org/10.1109/ISM.2015.48
State	Published - 25 Mar 2016
Event	17th IEEE International Symposium on Multimedia, ISM 2015 - Miami, United States Duration: 14 Dec 2015 → 16 Dec 2015

Publication series

Name	Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015

Conference

Conference	17th IEEE International Symposium on Multimedia, ISM 2015
Country/Territory	United States
City	Miami
Period	14/12/15 → 16/12/15

Keywords

ARM TrustZone
CDM
DRM
EME
Intel SGX
TEE

All Science Journal Classification (ASJC) codes

Computer Science Applications
Hardware and Architecture
Software
Computer Networks and Communications

Access to Document

10.1109/ISM.2015.48

Cite this

@inproceedings{c061e756bf6747a6a7d587b913568397,

title = "Towards Security of Native DRM Execution in HTML5",

abstract = "In this paper we present an open, secure and flexible architectural approach for integrating Content Decryption Module (CDM) and Encryption Media Extensions (EME) interface with Trusted Execution Environment (TEE). This provides security hardening for playback of the Digital Rights Management (DRM) protected content without any need for a dedicated secure processor. This article is not focused on specific TEE approaches, but rather considers that any TEE can be potentially integrated with CDM through the EME interface. Our work introduces the approaches for integrating CDM with Intel SGX and ARM TrustZone TEE technologies.",

keywords = "ARM TrustZone, CDM, DRM, EME, Intel SGX, TEE",

author = "David Livshits and Alexandra Mikityuk and Stefan Pham and Asaf Shabtai",

note = "Publisher Copyright: {\textcopyright} 2015 IEEE.; 17th IEEE International Symposium on Multimedia, ISM 2015 ; Conference date: 14-12-2015 Through 16-12-2015",

year = "2016",

month = mar,

day = "25",

doi = "10.1109/ISM.2015.48",

language = "American English",

series = "Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015",

pages = "411--416",

booktitle = "Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015",

}

Livshits, D, Mikityuk, A, Pham, S & Shabtai, A 2016, Towards Security of Native DRM Execution in HTML5. in Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015., 7442370, Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015, pp. 411-416, 17th IEEE International Symposium on Multimedia, ISM 2015, Miami, United States, 14/12/15. https://doi.org/10.1109/ISM.2015.48

Towards Security of Native DRM Execution in HTML5. / Livshits, David; Mikityuk, Alexandra; Pham, Stefan et al.
Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015. 2016. p. 411-416 7442370 (Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Towards Security of Native DRM Execution in HTML5

AU - Livshits, David

AU - Mikityuk, Alexandra

AU - Pham, Stefan

AU - Shabtai, Asaf

PY - 2016/3/25

Y1 - 2016/3/25

N2 - In this paper we present an open, secure and flexible architectural approach for integrating Content Decryption Module (CDM) and Encryption Media Extensions (EME) interface with Trusted Execution Environment (TEE). This provides security hardening for playback of the Digital Rights Management (DRM) protected content without any need for a dedicated secure processor. This article is not focused on specific TEE approaches, but rather considers that any TEE can be potentially integrated with CDM through the EME interface. Our work introduces the approaches for integrating CDM with Intel SGX and ARM TrustZone TEE technologies.

AB - In this paper we present an open, secure and flexible architectural approach for integrating Content Decryption Module (CDM) and Encryption Media Extensions (EME) interface with Trusted Execution Environment (TEE). This provides security hardening for playback of the Digital Rights Management (DRM) protected content without any need for a dedicated secure processor. This article is not focused on specific TEE approaches, but rather considers that any TEE can be potentially integrated with CDM through the EME interface. Our work introduces the approaches for integrating CDM with Intel SGX and ARM TrustZone TEE technologies.

KW - ARM TrustZone

KW - CDM

KW - DRM

KW - EME

KW - Intel SGX

KW - TEE

UR - http://www.scopus.com/inward/record.url?scp=84969677408&partnerID=8YFLogxK

U2 - 10.1109/ISM.2015.48

DO - 10.1109/ISM.2015.48

M3 - Conference contribution

T3 - Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015

SP - 411

EP - 416

BT - Proceedings - 2015 IEEE International Symposium on Multimedia, ISM 2015

T2 - 17th IEEE International Symposium on Multimedia, ISM 2015

Y2 - 14 December 2015 through 16 December 2015

ER -

Towards Security of Native DRM Execution in HTML5

Abstract

Publication series

Conference

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this