Research On User Privacy Protection In Moblie Digital Rights Management

In today’s era of rapid development of the Internet, because of the characteristicsof digital media, that they are easily copied and distributed, it becomes a commonphenomenon that digital products and contents which are protected by intellectualproperty are massively copied and randomly disseminated, thus Digital RightsManagement (DRM) comes into being, and has drawn keen attention from manyglobalized organizations and manufacturers. While it effectively protects the digitalcontents, the DRM system violates users’ privacy in different ways. Since nowadaysthe data and privacy of users are closely related to their economic interests, it is veryessential to ensure the effective management of digital contents while protectingusers’ privacy.Among all the DRM technical standards, the one which is the most mature,having the most participants, as well as the greatest influence is the OMA DRMstandard made by Open Mobile Alliance (OMA). However, though the OMA DRMstandard defines some functional entities which includes the architecture of the DRMsystem, the contents center and the copyright center, it needs further improvement inusers’ privacy protection.This thesis studies the problem of users’ privacy protection in the DRM system.Firstly, we introduce the DRM system and the related technologies briefly, then westudy on mobile digital rights management and the users’ privacy protectiontechnology in OMA DRM, afterwards we propose a solution to protect users’ privacyin mobile digital rights management system, which meets the need of managingdigital rights and can also protect the privacy of digital contents bought by users. Inthe solution we propose in this thesis, we design and implement a DRM digital rightsmanagement system according to the OMA DRM standard definition, which containsa content server, a license server and DRM clients, and we achieve the DRM users’privacy protection by the improved Right Object Acquisition Protocol (ROAP) whichcombines the Oblivious Transfer protocol. Also, we give a detailed complementationscheme of a improved ROAP protocol based on oblivious transfer protocol in theprocess of DRM digital licenses’ registration, acquisition, updating, and backout toprotect users’ privacy under the specific circumstance. And we also perform anexperiment of the DRM users’ protection scheme we proposed and make comparisonsin terms of safety, performance, etc. To prove the feasibility and practicability of the system. Finally, we make a summary of the thesis and propose the direction of thefuture work and research.