• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer

mkpeReport

top analysis covering digital cinema, 3-D, HFR, and laser illumination

  • Reports
  • About
  • mkpe.com
  • cinepedia.com

Keeping The Trust

October 2015 by Michael Karagosian

The primary role of the Digital Cinema Initiatives (DCI) specification is to establish the mechanisms that define trusted devices for the playback of first release movies. Up to now, DCI has relied on the US Federal Information Processing Standards (FIPS) 140-2 specification for the specific requirements and testing protocol of secure processing blocks, governing everything aspect of security from key generation and use to a device’s response to physical tampering.

The US National Institute of Standards and Technology (NIST) is responsible for FIPS 140-2, and for many years has openly discussed a transition to an updated version of the specification, FIPS 140-3. However, this may change. NIST is instead considering the adoption of a parallel standard, ISO/IEC 19790:2012, as recently announced below:

ISO/IEC 19790 2nd Edition was published 2012-08-15
It was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 27, IT Security techniques. ISO/IEC 19790 1st Edition was derived from NIST Federal Information Processing Standard (FIPS) PUB 140-2, Security Requirements for Cryptographic Modules.
The CMVP [Cryptographic Module Validation Program] does not validate cryptographic modules tested for conformance to ISO/IEC 19790. The CMVP is studying the adoption of this International Standard as the revision of FIPS 140-2.

(http://csrc.nist.gov/groups/STM/cmvp/standards.html)

In response, DCI this month issued an advisory that ISO/IEC 19790:2012 may replace the security requirements of the DCI specification now established by FIPS 140-2. Figuratively, this would be a good move for non-US manufacturers of digital cinema media blocks, as reliance on ISO would better internationalize DCI’s core security requirements. For manufacturers, however, it could be a different story, as the updated specification is expected to impose somewhat stricter rules. One of the changes that could occur is the requirement for more thorough documentation from the manufacturer regarding operation of its security modules.

If DCI were to have its way, its updated requirements, including any imposed by ISO/IEC 19790:2012, could impact all products sold in the market. DCI asks that all designs having undergone more than 4 updates be rested every 3-4 years. (Devices with 4 updates would include every media block in the market.) However, revising and retesting to updated DCI requirements is an expense that is likely to lead to a silent revolt by manufacturers. Given that DCI’s security requirements, even its older ones, are more likely to overshoot than undershoot, mandatory retesting would seem to be unnecessary. In truth, DCI places far more trust in the manufacturers of digital cinema equipment than it is willing to admit. After all, it is the security data directly supplied by manufacturers that populate the Trusted Device List (TDL) databases from which Key Delivery Messages (KDMs) are generated. (KDMs supply the keys needed to decrypt movies for playout.)

None of this means that manufacturers can sit on their laurels when it comes to revised DCI security requirements. It is the ability of the manufacturer to demonstrate that it can produce products that can be trusted that counts. In that light, ISO/IEC 19790:2012 is worth a study.

Filed Under: Servers and IMBs, Technical Bodies Tagged With: DCI, NIST, Security

Primary Sidebar

Search

Topics

  • 3-D
  • Accessibility
  • Alt Content & Advertising
  • Anti-Piracy
  • Color
  • Communications
  • Deployment Entities
  • Distributors
  • Exhibitors
  • Fulfillment
  • High Dynamic Range
  • Higher Frame Rates
  • Installations
  • Patents
  • Projectors
  • Servers and IMBs
  • Sound
  • Technical Bodies
  • Theatre Management Systems
  • Trade Organizations and Shows

Full Archives

a publication of
MKPE Consulting LLC

Footer

Important Stuff

  • About
  • Privacy Policy

Archives

  • Category & Monthly Archives
Archives date back to 2008.

MKPE

mkpeReport is a publication of MKPE, a world-class consultancy building business at the crossroads of cinema and technology.
Learn more about MKPE.

copyright © 2008 - 2023 mkpe consulting llc

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of all cookies.
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
Powered by CookieYes Logo