Enhanced digital rights management authentication scheme based on smart card

Yang, Hung-Wen; Yang, Chou Chen; Lin, Woei

doi:10.1049/iet-ifs.2012.0191

Cited by 19 publications

(19 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this section, we evaluate the performance and security of the improved scheme via comparison with Zhang et al's scheme [39] and Yang et al's scheme [36]. For convenience, we enlist the necessary notations for the different operations used in these schemes in Table 2.…”

Section: Performance and Security Comparison Of The Improved Schemementioning

confidence: 99%

“…Since our scheme is an improvement of Yang et al's, we first analyze its efficiency as compared to scheme [36]. Our scheme uses two extra one-way hash operations during registration phase and two extra hash operations during authentication phase at the user side to provide efficient authentication and password update phase as displayed by Tables 4 and 5.…”

Section: Performance and Security Comparison Of The Improved Schemementioning

confidence: 99%

“…In 2012, Yang et al [36] pointed out that Zhang et al's scheme fails to withstand stolen smart card attack and insider attack. To solve these problems, Yang et al proposed an enhanced DRM authentication scheme using smart card.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A more secure digital rights management authentication scheme based on smart card

Kumari

Khan

2014

Multimed Tools Appl

View full text Add to dashboard Cite

Digital rights management (DRM) system is a technology based mechanism to ensure only authorized access and legal distribution/consumption of the protected digital content. DRM system deals with the whole lifecycle of the digital content including production, management, distribution and consumption. DRM schemes are effective means for the transfer of digital content and safeguard the intellectual property. Recently, Yang et al. proposed a smart-card based DRM authentication scheme providing mutual authentication and session key establishment among all the participants of the DRM environment. We show that their scheme does not resist threats like smart card attack; fails to provide proper password update facility; and does not follow forward secrecy. To overcome these weaknesses, we propose an improvement of Yang et al.'s scheme. The security of our scheme remains intact even if the smart card of the user is lost. In our scheme, user's smart card is capable of verifying the correctness of the inputted identity and password and hence contributes to achieve an efficient and user-friendly password update phase. In addition, the session keys established between the participating entities are highly secure by virtue of forward secrecy property. We conduct security analysis and comparison with related schemes to evaluate our improved scheme. During comparison, we also highlight the computational cost/time complexity at the user and the server side in terms of the execution time of various operations. The entire analysis shows that the design of the improved scheme is robust enough for the for DRM environment.

show abstract

Section: Performance and Security Comparison Of The Improved Schemementioning

confidence: 99%

Section: Performance and Security Comparison Of The Improved Schemementioning

confidence: 99%

See 1 more Smart Citation

A more secure digital rights management authentication scheme based on smart card

Kumari

Khan

2014

Multimed Tools Appl

View full text Add to dashboard Cite

show abstract

“…The DRM system manages the procedure of the digital contents including protection, distribution, and authorization. Using DRM technology, intellectual property is respected and protected by data encryption, so it can only be accessed by authorised users without limitless distribution [10,11].…”

Section: Introductionmentioning

confidence: 99%

“…In 2009, the first three-role based DRM implementation scenario authentication scheme using smart card was proposed by Zhang et al [12]. Then, Yang et al showed that Zhang et al 's scheme was vulnerable to the insider attack and the stolen smart card attack [10]. Due to surmounting the weaknesses of Zhang 's scheme and found that their scheme cannot resist the password guessing attack and the denial of service attack.…”

Section: Introductionmentioning

confidence: 99%

Provable Secure and Efficient Digital Rights Management Authentication Scheme Using Smart Card Based on Elliptic Curve Cryptography

Zhang

Khan

Chen

et al. 2015

Mathematical Problems in Engineering

View full text Add to dashboard Cite

Since the concept of ubiquitous computing is firstly proposed by Mark Weiser, its connotation has been extending and expanding by many scholars. In pervasive computing application environment, many kinds of small devices containing smart cart are used to communicate with others. In 2013, Yang et al. proposed an enhanced authentication scheme using smart card for digital rights management. They demonstrated that their scheme is secure enough. However, Mishra et al. pointed out that Yang et al.’s scheme suffers from the password guessing attack and the denial of service attack. Moreover, they also demonstrated that Yang et al.’s scheme is not efficient enough when the user inputs an incorrect password. In this paper, we analyze Yang et al.’s scheme again, and find that their scheme is vulnerable to the session key attack. And, there are some mistakes in their scheme. To surmount the weakness of Yang et al.’s scheme, we propose a more efficient and provable secure digital rights management authentication scheme using smart card based on elliptic curve cryptography.

show abstract

Construction of a secure and efficient content key distribution framework for DRM systems

Mishra,

Obaidat,

Kasi

et al. 2023

Int J Communication

View full text Add to dashboard Cite

SummaryRecent advances in networks and digital technology have provided many user‐friendly environments such as telemedicine, e‐banking, e‐content, and e‐commerce. It has revolutionized the multimedia industry and made it accessible anytime and anywhere. However, its limitation also appeared in digital content piracy, which is more prevalent nowadays. Digital rights management (DRM) systems were developed to control the illegal spreading of digital content. Protocols are being developed to enable effective and secure communication in DRM systems. As security and efficiency are essential parameters, the approach should be two birds with one stone; i.e., the protocol should achieve efficiency and security together. Our investigation identified that secure mechanisms either have increased computation/communication overhead or fail to meet specified security criteria when discussing efficient content key delivery mechanisms. So, an efficient protocol design with the right security attributes is required. We have worked on designing a content delivery mechanism keeping in mind the desirable attribute of security and without decreasing overhead. The suggested solution targets “two birds with one stone.” We proved the security of the scheme in the random oracle model. We verify the security against active attacks using the formal simulation tool AVISPA. Detailed analysis is performed for the evaluation of computational and communication overhead. The comparative study is also presented to understand the gains in efficiency and security.

show abstract

Enhanced digital rights management authentication scheme based on smart card

Cited by 19 publications

References 13 publications

A more secure digital rights management authentication scheme based on smart card

A more secure digital rights management authentication scheme based on smart card

Provable Secure and Efficient Digital Rights Management Authentication Scheme Using Smart Card Based on Elliptic Curve Cryptography

Construction of a secure and efficient content key distribution framework for DRM systems

Contact Info

Product

Resources

About