Untitled Document

Requirements for Interoperable DRM Platform and Interoperable End-user Devices

This document is a draft identification of Requirements (RQ) to be used for the specification of Interoperable DRM Platform (IDP) and Interoperable End-user Devices (IED).

At the current stage RQs are at various levels, high to low with no single TRU and/or requirement covered in its entirety. With the progress of the work it can be anticipated that individual RQs will spawn families of more specific RQs.

This document should be read with the understanding that it just covers one (the 2nd) of a seven-step process:

This means that RQs given below should not be considered as absolute. E.g. a RQ like

1. "DMP shall support continuous access to DMP content" should be interpreted to mean that in a hypothetical country where:

a. usage rules are not legally supported, DMP end-users have the right to access DMP content they have bought for the period of time prescribed by the law

b. usage rules are legally supported, DMP end-users have the right to access DMP content they have bought according to the usage rules.

2. "DMP shall support the ability of a DMP user to publish DMP content anonymously" should be complemented by the words "of which he has the right" after "DMP content". The ways the DMP user has acquired the right can be manifold, e.g. because he is the creator of that piece of DMP content or because it is a quote or because the usage rules allow him to do so.

The requirements have been derived from the TRU list. More requirements will be added from existing or new TRUs as appropriate.

RQ#	Description	TRU#
	creation of DMP quotes by a user	1.
	automatic notification to a DMP right holder that a portion of his piece of DMP content is being quoted	1.
	making accessible quotes from a piece of DMP content by an anonymous DMP user to other DMP users	1.
	filtering/suppression of quotes from a piece of DMP content, within a given circle of DMP users, especially based on criteria such as assigned ratings or an excessive number emanating from an anonymous DMP user	1.
	preservation of a stable DMP content rendering to be quoted	1.
	attribution of a piece of DMP content to a DMP creator	1., 11.
	sectional reference to specific portions of a piece of DMP content (e.g. chapter-and-verse with text, timecode start-stop with linear audio and audiovisual material, geometrical sections of 2D/3D art, references to the state of the piece of DMP content)	1.
	fully enjoying the referenced sections of a quote by DMP users who have rights to the referenced DMP content	1.
	means to locate/purchase/rent full access to DMP content or else to obtain limited access to rendered references	1.
	continuous access to DMP content by DMP users	2., 19, 20.
	space-shifted use of DMP content according to the rules of the place in which it is used (Add/cover restricting this)	3.
	time-shifted use of DMP content (Add/cover restricting this)	4.
	the manufacturing of DMP devices by a manufacturer	5.
	the users' free choice of DMP devices	6.
	access and use DMP content whose copyright has expired	7.
	the ability of a DMP user to allow certain DMP users to receive DMP content and to prevent other DMP users from receiving it	8., 48.
	making available a piece of DMP content by an anonymous creator to DMP users	9.
	anonymous use of a piece of DMP content by a DMP end-user	10., 30.
	editing of a piece of DMP content by a DMP user	13., 14., 15.
	checking by a DMP right holder that a piece of DMP content released to another DMP user is being used according to the law of the jurisdiction of the DMP user and usage rules	13., 14., 15., 16
	placing of links to a piece of DMP content by a DMP user	18.
	inhibiting the making accessible to a DMP user a modification of a piece of DMP content made by a DMP user who is not the creator	24.
	temporary/permanent revocation of one's rights to a piece of DMP content and temporary/permanent transfer of those rights to another DMP end-user	25., 49.
	transcoding of a piece of DMP content from one format to another	26.
	moving a piece of DMP content from one device to another	26.
	removal of a piece of DMP content that has been declared prohibited by a DMP user with the appropriate authority from public access	27.
	insertion of a non-removable piece of DMP content at a given time in another piece of DMP content by a DMP user	28.
	making a piece of content available to a community of DMP users at a time that is different from another community	29.
	withdrawal of a piece of DMP content by the DMP creator	32.
	making accessible DMP content of authenticated origin	52.
	access to published DMP content	55., 57.
	guarantee given to a DMP user that a piece of DMP content is what it says it is	56.
	the creation and introduction in the platform of governed content	67.
	access content of an end-user choice	69.
	running applications chosen by an end-user on his content consumption device	70.
	attaching content-consumption devices of end-user's choice to a delivery systems	71.
	interoperable end-user devices (IEDs) to receive and provide access to content from multiple sources and services.	6., 36.
	a DMP compliant bitstream/file shall be transmission-agnostic, able to exist as a file or be transmitted by wire or wireless.	6.
	the persistent association of rights expressions and conditions to DMP DRM compliant bitstreams/files.	?
	the persistent and unique identification of DMP DRM compliant bitstreams/files and their derivatives.	?
	the persistent binding or association of an individual person, user or other entity with DMP DRM compliant bitstreams/files.	22., 23
	extensibility of rights expressions and conditions for DMP DRM compliant bitstreams/files such that new, trusted and duly authorized semantics and syntax can be introduced periodically over time.	n+1
	trust relationships to be determined as existing between DMP DRM compliant devices, applications, services, and DMP DRM compliant bitstreams/files.	5., 36., 37., 39-51., 56., 60., 62-66., 73., 75.
	the secure transfer of governed DMP DRM compliant bitstreams/files in cleartext over unsecure channels.	5., 6., 8., 9., 10., 15., 23., 24., 27., 28-30., 32., 34-45., 47-66., 71., 73., 75.
	a DMP bitstream/file to exist in a DRM governed state unless stored in or accessed from a DMP DRM compliant device or virtual environment.	5., 6., 8., 9., 10., 15., 23., 24., 27., 28-30., 32., 34-45., 47-66., 71., 73., 75.
	the transfer and use of DMP DRM compliant bitstreams/files between one given DMP DRM compliant DRM implementation and another DMP DRM compliant DRM implementation.	2., 3., 5., 6., 10., 25., 26., 34., 36., 55., 57., 58., 62., 65., 71., 75.
	the storage, transfer and use of DMP DRM compliant bitstreams/files on non-DMP DRM compliant devices.	5.
	the transfer of DMP DRM compliant bitstreams/files from one DMP DRM compliant device to another with the secure removal from the first device.	25.
	the implementation of the loan, transfer by intent (including but not limited to by inheritance or last will and testament), or deletion of DMP DRM compliant bitstreams/files.	25, 33-37., 42., 48-50., 62., 73.
	the acquisition and use of DMP DRM compliant bitstreams/files anonymously. (Needs additional TRU)	10.
	efficient access control.	27., 62., 45., 48.
	and motivate license respect and royalty payment.	37.
	tools for assistance in law enforcing.	?
	the prevention of illegal access to the protected media.	48.
	association of legal access to media with payment mechanisms.	37(?)
	elimination of the proliferation of unprotected copyrighted media.	69.
	assurance that digital media consumers enjoy at least the same rights and usages as they had with traditional media.	?
	assurance of access to protected media is as easy and as simple as to unprotected media.	?
	anonymity of the consumers.	12.
	avoidance of adding extra encumbrance to the cost of the media creation, distribution and consumption.	?
	free choice of services independently of the media item and the license.	57., 5.
	assuring consumers that remuneration is distributed fairly.	?42.
	innocent consumers aware when the media is pirated.	?
	tracing the media source and trail.	?
	making it difficult for violators to stay anonymous. On-line/off-line?	?
	key for decryption/unscrambling being distributed to authenticated license holders only.	?
	the decryption/unscrambling key enabling only operations authorized in the license.	?
	the key being used in automated operations only. Users shall not have direct access to the key.	?
	the system being resistant to tampering as much as possible.	?
	monitoring each usage or transit of media that is subject to authorization or fiscal transaction.	?
	reporting of such events (76) to management systems. The reports shall identify the operation, the media item and the license involved in the event.	?
	reporting of violations to management systems. The reports should include as much details as possible for identifying the violators.	?
	protection of media all the way from creation (mastering) to consumption (playback) so that at no middle stage it is available as clear text.	?
	prevention of keys from being stolen and used for operations that are not allowed by the license terms.	?
	an in individual key for each media item, so that if one key is exposed only the single associated media item is endangered.	?
	a standard algorithm to encrypt/scramble the media.	?
	use of standard signaling.	?
	use of standard environment for key management.	?
	The use of proprietary or renewable algorithms to be softly loadable into the devices through a standard framework.	?
	to be authenticated through a virtual identity (VI)

The Digital Media Project
Source	DMP	Date	2004/02/20
Title	RQs for IDP and IEDs	No.	0036/Heidelberg

#	Step	Status of work
1.	Make a full “census” of Traditional Rights and Usages (TRU) of media users	This is being done on the public DMP reflector
2.	Use the full set of TRUs to develop RQs	This is what the present document is about
3.	Use the RQs to design IDP and IEDs	This is part of the DMP program of work
4.	Let individual jurisdictions determine which TRUs shall be mandatorily supported in IDPs and IEDs operating under their jurisdiction and which TRUs are to be left to individual negotiations	To be executed by relevant public autorities
5.	Develop RQs for the use of IDP and IEDs	This is part of the DMP program of work
6.	Use the RQs to develop Recommended Practices for End-to-End Conformance (EEC)	This is part of the DMP program of work
7.	Let users agree which EEC clauses should be referenced in their business agreements.	To be executed by relevant users

Term	Definition
DMP access	The ability to access a piece of DMP content according to DMP specifications
DMP content	Digital media designed to be used by DMP devices
DMP creator	A DMP user who creates DMP content
DMP device	A device designed according to DMP specifications that can use DMP content
DMP end-user	A DMP user who uses DMP content
DMP quote	A piece of DMP content extracted from another piece of DMP content
DMP right	The legally-supported ability to use a piece of DMP content in accordance with DMP specifications
DMP right holder	A DMP user who has rights on a piece of DMP content
DMP specification	A DMP approved document. Its use in products may require business agreements between relevant DMP users that are outside of DMP
DMP user	Any user of DMP content who is on the value chain between (and including) creator and end user
TRU (Traditional Rights and Usages)	Any use of content that value chain users between (and including) creators and end users have traditionally performed as permitted, tolerated or unspecified by law