Using FreeBSD to Design a Secure Digital Cinema Server (Usenix 2004)

��

��

��

�� !!"

��#$ ��$%#�&��% ��'��'��#$ ��$%#'��

(!)�*��+ �� ' �, %�� -��".!,

/ .��01�!!"��#$ ��$%#�&��% ��'�2�&�3��-�� +�� %�$��$� #��4� %��$� ��'��5%��4�� %��$�� $��4�� $��$��# ��$�� %�� #�� #��%� �� #��$�� 44��$��4��&�'�� %��6��$#�� 7� ��$��%�7� �'

��

8��

� ��

� � �� %��'��

� ��4��

� ��

� -��#��4�� %��

��

-7�� #$ ��$%#�&��% ��'

� ��.��,�7#�9��:��%�

� 9�� $��;� �

� ��<'! ��=��+�

� &�� +

� ��44�� $��#��2�9-3

� 5��$��

� �� #�4��%��%1�4��$ ��4��

� �+� �� $� ��1 �� $�>�� %��? �� $��$��7��

� 9�� #� �%��#�� $�� %� �7�� #�$��

��

5%��+��-7�� #

��

*�� #

�� !��"

#��$$%&%��% �

.!!@

!

'�%$��&��

(��)��*$%��+��"��+��

��,�-+�$.�

/��.$&%�&�*"��,��"� ��%��

'.%&��0�+�$�.��*��%��

+��.�%��% �1-/�.��%��&%��2

��% �� ,�"� ��&%�"2

��.��.��&��" �&%"��% ��%��% �

%��&��2

3�.�,��.��.��&��"�&%"��

�% 2

�� 4

� �� %A�� %��#� �� +�� +�B

C%� �� %��4��2��+��3�� +B

��#$ ��$��$�7�� %

-��4��D��$�'

&��7�� #C%� �%�$$��4 �� +��B

*�� 7��7�� $�� %��$�� 7�

-��

� �� % -��

&��7�� #=��#$ ��≠ �� # ��#�≠ -��

&�� ≠ &��7�� #

�� 5

��

�� 6

5�� 9��

� 9��

� ��

� �%�$��

� 9�� 1$�� 2-��3

� 5��4��4�� 7��+

� =�� $��44� � � �'

� �� 7� ��

� *�+� %��4�4��$�� E< !!!��%

� 9��;� ��

� 9��;� �� 7�� E<! !!!

� 9�� 4 ��+��4��

�� 7

�� 9��

� 9�� :

� ��$ �� %��

� 9�� 1$�� 2�� %�� 4�� $�3

� �� 7� �� 9%#��F��G� � �$

� 8�1 ��1�� $�� +�� 2��#3

� 9��;� �� 2�� H�G�� '3

� � �� %��

� �8�=��2��D��3

� 5%� ��

� 9��;� ��2�%�� '3� �:�� 2��.:3

� A�1�� 4��4��

�� )

�� 5%� ��=I��$��

5%� ��

-��

-��

�$�+��

5%� �-� ��

9��;� ��

� ��+

��

��

�� *��+

� .��

� .:�$��;� �� %� ��

� �!!!

� >5� ��-'='? �� 4�7��

� >��? ��

� <!�� %� ��'�'

� �!!<

� �� %� ��%��A��2�� 3

� �� 2��3��I�� $��$��

� �!�� %� ��'�'

� 8��$��7��

� �� 6� ��2�� 4��4�� '3

� A��%�$�1 %� �� 2E.!! !!!3

� C%��$�#�4�� 4� B��$��B

��

5%�9��;� ��J

��

�� #

� ��1��+��$$��%��&�� $��7�� $ ��

� �� #��%��7��+��$��#�� 4��

� =�� I��$�� 4�� 4�� #

� ��4��$�� #$��#� �

� 5��$�� 1��$��4��

� � ��#$ �

� *�� 14�� %� ��

� ��7�� %��6� ��$��#

� &��7��$��#7��+�� %�� 4��

� &�$��$�� 2"�� %�3

��

*��5��$�� -��#��

� � ��+

� ��F�� 2K."�%��3

� 8�<F�%��%�� $�� %� ��2K��%��3

� �� F�%��%�� 7� �� 6��2K,�%��3

� 9%#��2�"�%��3

� �G�F�"',��$��

� A�� $F�.,!��$��

� �� %��<!!� %� �� %�$$��%�� 44� ��

� 8 %��

��

�� #�-��#��

� 5%�� 4��$��;� ��7�� %

� 9%#��7�7��+#

� �� %��

� �� 7#�$��;� ��

� ��$��

� *�� 7�� % ��%�$

� �� 7#��

� ��$��$�� #$��

� =��#$ ��7� � � ��$��7��4�$�� %��4�� %�$�� +#

� ��+#� %��%�� 14�� %�� %��$$��

� 9%#�� #��4 � �� $�� 44��

�� 4

5%� ��-��#��

� ��$��

� �� %��#�� 7��

� �� %�� -��

� <<*%69��9�

� ("�*��

� ��L1��+�8�

� 0�%��2"�� $ ��3

� ��$��4�

� �� 7�

� ��-9��

� =�$� �� 1$��

�� 5

��+�� 4��

� �� 7��4��D8

� = %��

� ��

� ��

� 5��

� -��D��

� 5��$�� $� �7��%��

� �� I��

�� 6

�� 4��

� A��#��%��+�� %�$��#7��+�$��B

� �� %� %� ��

� ��#� ��%��+�� $��#7��+�$� %�2-9�3

� �� %��7��9�

� ��$#�$�� %� ��

� ��+�� 4��#� �4��

� �� 4��

�� 7

= %�� 4��

� �� 4�� 4��

� �� F��

� .!D.!!�$�� M�K.!�*D��M�.�%�'�$��

� 5�9D�9��$$��

� �� %��$� ��F�7��

� �� 4��2.�*D�3

� 9��$�� #�C�� 2��593

�� )

�� 4��

� �� F��

� �� C�M�0!�*D��M�)�� $��

� �� %��1 �� 4��

� =� ��

� �� %��$� ��F�7��7� ��7�

� ��$�� %��$$�� +��4��4 ��#

� �� .D" % %� � ��

� C��+��F�� 1�%�� +��$� %��44��

��

-� %� ��

� *�� 14�� %� �� I��$�� $�� 7�$�� +#

� A�� %��

� ��

� 8��%�� %�� %��

� ��7��$��#

� ��4�� 4��4�� %� �� $��

� -�� %�� $�� $��$��#��$�� #

� &�� F�� $�� %�� %�� %��4�� $�

��

5%� �� 9�� #$

� 5��$�� #��#$ D��#$ �7��+�� 1 ��

� � �� %��#

� �� %��%� %� ��

� ��$#��

� ��$�� %�� $�� %��$%��7��+�$

5%� �� 5%� �� *��

��

��

-� %��

��

��985�

��

�5�� #

��

��#$ � �9��

� C� %��#$ � � %�� 4��#��

� &�� #1�� +��#$ ��$�� <�=��=�

� � ��$%� ��$$��$�� 4��$��

<�=��<�=��=��

��

� ��#$ ��9��

� 5��$�

� ��#� ��2�� 5�� =��3

� =��#$ �4��

� ��N ��#$ �� 2��6 �� 7� � � �'3

� ��+�29�9��+ �� #$ ��=8* �� $-=�3

� =��#$ �7��+�� 7��4��#� ��#�

� ��$� �7�� %�� 27��+�$ �� 3

� -��%��$$��%�

� ��$%�� %��+#�� %��4��

� ��+�� F� �#� �� $��

� �� #�$��

� �%��2�� 3�%�� %�$��

� �� $�� 4��

�� 4

5%�� *��

� �� F�$�� #��I��

� �$��#�� F��$� � ��#��

� � �� %�� 2��3

� - ��+��%��1 ��1��#�� $%� �

� - ��+��%��$� ��1��#�� $%� �

� - ��+��%��1 ��1�� $%� �

� - ��+��%��$� ��1�� $%� �

� *�� #$ ��$�� #�� $� � %�4�� %��

� 8 %�� %�� 7��

� =��$�F��$��+�� $��#��-�

�� 5

� �� $�� #�$�� 2�3�4��$$��5�1. �� 7� 2�3�4��$$��95�� -��$� �#��7��95�1.

� �%�� %��G��7� �4��$�� %��7��

�� #�9��

�G

�:

⊕

�5�.

95�.

�:

⊕

�5�!

2��+3

�� 6

� ��+��#$ ��4�� +�

� �� $�� #$ �D��#$ ��

� ��+#�$��$��

� =��#$ ��F��%�� %�=��'2�� O3��G

=��$�F��

��$ ��.

-=�:

�� O

-=�:

⊕

95�!

�5�!

-=�:

⊕

95�.

�5�.�G

.'��&' �� ' ��P�>5%��#$ ��$%��+��?P��=��L��!!<��&==��L� ��+

�� 7

=��$�F��

5%�� *��-��#��

� 5%�� *��F��1 ��1��#�� 9��#�� +#��$��$��#

� 5%�� *��F��$� ��1��#�� :#�� $�� G�� $�1��

� �� $%� �

� 5%�� F��1 ��1�� 4#��$�� 7��+��4#��

� =��$�� *��4#�$��4��#$ ��+� �� +�� %��#� �

� *�� G� ��7�L8&��

� 5%�� F��$� ��1�� 5��7�� $ �� +

�� )

�� #�5%��

� -�� %� �� 2*-�3

� ��#$ ��$%��#1� �� #��%�+�2'�' ��A-1.�A*-�3

� ��$�4��%�

� 5%�� F�� +��#�%��44��2��3��

� 9�4��%�� $��7�

� ��6��#��$�� *-�� 2�� %�� %3

� �%�+�*-�� +�� 7� ��$

� ��F�7��#��+��#�� %��

Using FreeBSD to Design a Secure Digital Cinema Server (Usenix 2004)

Technology