Digital rights and privacy policies management as a service

The 2005 International Symposium on Web …, 2005

Trustworthy Internet, 2011

There are several initiatives working in the definition and implementation of distributed architectures that enable the development of distributed multimedia applications on top of them, while offering Digital Rights Management (DRM) features. In the paper, the main features of MPEG Extensible Middleware (MXM) [1], the Advanced IPTV terminal (AIT) [2] and DMAG [3] Multimedia Information Protection and Management System (MIPAMS) [4] are presented, while highlighting the common ground and differences between MIPAMS and the standards. A set of usage scenarios is proposed to show how MIPAMS enables the development of applications on top of it, which deal with the needs of content creators, distributors and consumers according to different business models.

Proceedings of the IEEE, 2000

Information Security Policies and Actions in Modern Integrated Systems

Multimedia content delivery applications are becoming widespread thanks to increasingly cheaper access to high bandwidth networks. Also, the pervasiveness of XML as a data interchange format has given origin to a number of standard formats for multimedia, such as SMIL for multimedia presentations, SVG for vector graphics, VoiceXML for dialog, and MPEG-21 and MPEG-7 for video. Innovative programming paradigms (such as the one of web services) rely on the availability of XML-based markup and metadata in the multimedia flow in order to customize and add value to multimedia content distributed via the Net. In such a context, a number of This chapter appears in the book, Information Security Policies and Actions in Modern Integrated Systems, edited by Mariagrazia Fugini and Carlo Bellettini.

Proceedings of the IADIS …, 2006

2006

High level security is a key requirement in hypermedia/web applications. The systems opening to the Internet makes the research effort to move towards protecting the information transmission (i.e. SOAP messages, policy descriptions.. .), but little attention is paid to what the user can do with the system. Role-based access control (RBAC) allows to formulate the organization's resource access policy in a natural way, so a role-based access model for hypermedia will make it easier to integrate the security design with the rest of the system design. In service oriented architectures, an access policy service would allow to gather the management and deployment of the security policy in distributed and heterogeneous environments. This paper describes a role-based access control model for hypermedia called MARAH, and its implementation as a web service. An use case of the model in the design of the ARCE application is also discussed.

Computer Law & Security Review, 2004

This paper aims at linking researches in copyright law and in multimedia. It presents the core legal issues in the field of content protection and proposes a renewed approach to copyright enforcement. Stating the necessity of tackling the exemptions to copyright from a technical-based approach, it introduces the notion of Digital Rights and Exemptions Management Systems. The authors emphasize the need for moving into such DREMS protection schemes and examine the possibility to implement the "balance of interests" within the protection devices.

IEEE Multimedia, 2011

The wide range of media and consumer devices, currently available, has raised new security requirements for multimedia systems and their applications. Despite the wide variety of work conducted on the access control, Digital Rights Management (DRM) and adaptation areas to date, there is a lack of initiatives addressing them together. This article analyzes existing initiatives and proposes new technologies for the governed adaptations of secured content in heterogeneous environments. These technologies are integrated in an architecture for the secure management of multimedia contents, which covers the complete digital content value chain, from creation to consumption by end users. Video Surveillance is the application scenario chosen for further illustrating the use of the proposed architecture. Two use cases are discussed in order to address governance, protection and adaptation requirements in surveillance applications.