This paper describes a security architecture allowing digital rights management in home networks consisting of consumer electronic devices. The idea is to allow devices to establish dynamic groups, so called "Authorized Domains", where legally acquired copyrighted content can seamlessly move from device to device. This greatly improves the end-user experience, preserves "fair use" expectations, and enables the development of new business models by content providers. Key to our design is a hybrid compliance checking and group establishment protocol, based on pre-distributed symmetric keys, with minimal reliance on public key cryptographic operations. Our architecture does not require continuous network connectivity between devices, and allows for efficient and flexible key updating and revocation.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	DVB - The Digital Video Broadcasting Consortium. http://www.dvb.org/.
	2	Secure Hash Standard. FIPS 180-1, Secure Hash Standard, NIST, US Dept. of Commerce, Washington D. C. April 1995.
	3	xCP Cluster Protocol. http://www.almaden.ibm.com/software/ds/ ContentAssurance/papers/xCP_DVB.pdf.
	4	Smartright technical white paper. http://www.smartright.org/images/SMR/ content/SmartRight_tech_whitepaper_jan28.pdf, Jan. 2003.
	5	Colin Boyd, A Class of Flexible and Efficient Key Management Protocols, Proceedings of the Ninth IEEE Computer Security Foundations Workshop, p.2, March 10-12, 1996
	6	Michael Burrows , Martin Abadi , Roger Needham, A logic of authentication, ACM Transactions on Computer Systems (TOCS), v.8 n.1, p.18-36, Feb. 1990  [doi>10.1145/77648.77649]
	7	Claudine Conrado , Frank Kamperman , Geert Jan Schrijen , Willem Jonker, Privacy in an Identity-based DRM System, Proceedings of the 14th International Workshop on Database and Expert Systems Applications, p.389, September 01-05, 2003
	8	B. Crispo, B. Popescu, and A. Tanenbaum. Symmetric key authentication services revisited. In Proc. 9th Australasian Conference on Information Security and Privacy, July 2004.
	9	Call for proposals for content protection & copy management technologies, July 2001.
	10	A. Eskicioglu and E. Delp. An overview of multimedia content protection in consumer electronic devices. Signal Processing: Image Communication, 16(5):681--699, April 2001.
	11	A. Eskicioglu, J. Town, and E. Delp. Security of Digital Entertainment Content from Creation to Consumption. Signal Processing: Image Communication, 18(4):237--262, April 2003.
	12	Amos Fiat , Moni Naor, Broadcast Encryption, Proceedings of the 13th Annual International Cryptology Conference on Advances in Cryptology, p.480-491, August 22-26, 1993
	13	F.L.A.J. Kamperman and S.A.F.A.van den Heuvel and M.H.Verberkt. Digital Rights Management in Home Networks. In Proc. IBC 2001, pages 70--77, Sept. 2001.
	14	J. A. Halderman. Evaluating New Copy-Prevention Techniques for Audio CDs. In Proc. 2002 ACM Workshop on Digital Rights Management, 2002.
	15	J. Kohl and B. Neuman. The Kerberos Network Authentication Service (Version 5). Technical report, IETF Network Working Group, 1993. Internet Request for Comments RFC-1510.
	16	H. Krawczyk, M. Bellare, and R. Canetti. RFC 2104 - HMAC: Keyed-Hashing for Message Authentication. Internet RFC 2104, Feb. 1997.
	17	Jeffrey Lotspiech , Stefan Nusser , Florian Pestoni, Broadcast Encryption's Bright Future, Computer, v.35 n.8, p.57-63, August 2002  [doi>10.1109/MC.2002.1023789]
	18	Alfred J. Menezes , Scott A. Vanstone , Paul C. Van Oorschot, Handbook of Applied Cryptography, CRC Press, Inc., Boca Raton, FL, 1996
	19	Dalit Naor , Moni Naor , Jeffrey B. Lotspiech, Revocation and Tracing Schemes for Stateless Receivers, Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology, p.41-62, August 19-23, 2001
	20	M. Ripley, C. Traw, S. Balogh, and M. Reed. Content Protection in the Digital Home. Intel Technology Journal, 6(9):49--56, 2002.
	21	William Rosenblatt , Stephen Mooney , William Trippe, Digital Rights Management: Business and Technology, John Wiley & Sons, Inc., New York, NY, 2001
	22	Sampo Sovio , N. Asokan , Kaisa Nyberg, Defining Authorization Domains Using Virtual Devices, Proceedings of the 2003 Symposium on Applications and the Internet Workshops (SAINT'03 Workshops), p.331, January 27-31, 2003
	23	Stuart G. Stubblebine , Rebecca N. Wright, An Authentication Logic with Formal Semantics Supporting Synchronization, Revocation, and Recency, IEEE Transactions on Software Engineering, v.28 n.3, p.256-285, March 2002  [doi>10.1109/32.991320]
	24	S. van den Heuvel, W. Jonker, F. Kamperman, and P. Lenoir. Secure Content Management in Authorized Domains. In Proc. IBC 2002, pages 467--474, Sept. 2002.
	25	Chung Kei Wong , Mohamed Gouda , Simon S. Lam, Secure group communications using key graphs, Proceedings of the ACM SIGCOMM '98 conference on Applications, technologies, architectures, and protocols for computer communication, p.68-79, August 31-September 04, 1998, Vancouver, British Columbia, Canada  [doi>10.1145/285237.285260]