Implementing Trustworthy Dissemination of Digital Contents by Using a Third Party Attestation Proxy-Enabling Remote Attestation Model

A secure and trusted distribution of digital contents is a fundamental requirement for Digital Rights Management (DRM) system, so that the integrity of user terminal platform should be verified prior to contents' distribution in order to assure that the platform is free from a malicious modification and attack. Recent years the emerging trusted computing has better enhanced the necessary functionality, though existing remote attestation models and relevant protocols could not solve a critical problem of the privacy protection of the attested platform states, which include basic configurations and security attributes. We proposed an implementation of trustworthy dissemination of digital contents by using a third party attestation proxy-enabling remote attestation model with the privacy protection of the front-end user device environment. Also, a Xen virtualization-based terminal platform architecture, which primarily enforces the domain isolation among the processes or key components, was presented. Finally, an application case manifested the proposed model and platform architecture not only realized the remote integrity verification of user end devices that was carried out on the back-end contents server side, but effectively protected the platform states privacy, further improving the usability of DRM system.