General digital rights management solution based on white-box cryptography

作     者：Liu Jun Hu Yupu Chen Jie Liu Jun;Hu Yupu;Chen Jie

作者机构：School of Telecommunications EngineeringXidian UniversityXi’an 710071China 

出 版 物：《The Journal of China Universities of Posts and Telecommunications》 (中国邮电高校学报（英文版）)

年 卷 期：2021年第28卷第1期

页      面：52-63页

核心收录：

学科分类：08[工学] 0807[工学-动力工程及工程热物理] 

基　　金：supported by the National Key Research and Development Program of China (2017YFB0802000) the National Natural Science Foundations of China (61672412,61972457) the National Cryptography Development Fund of China (MMJJ20170104, MMJJ20180219) 

主　　题：digital rights management(DRM) white-box cryptography traceable white-box program white-box compiler 

摘      要：Digital rights management(DRM) applications are usually confronted with threats like key extraction, code lifting, and illegal distribution. White-box cryptography aims at protecting software implementations of cryptographic algorithms and can be employed into DRM applications to provide security. A general DRM solution based on white-box cryptography was proposed to address the three threats mentioned above. The method is to construct a general perturbation-enabled white-box compiler for lookup-table based white-box block ciphers, such that the white-box program generated by this compiler provides traceability along with resistance against key extraction and code lifting. To get a traceable white-box program, the idea of hiding a slight perturbation in the lookup-table was employed, aiming at perturbing its decryption functionality, so that each user can be identified. Security analysis and experimental results show that the proposed DRM solution is secure and practical.