1、 g49g50g3g38g50g51g60g44g49g42g3g58g44g55g43g50g56g55g3g37g54g44g3g51g40g53g48g44g54g54g44g50g49g3g40g59g38g40g51g55g3g36g54g3g51g40g53g48g44g55g55g40g39g3g37g60g3g38g50g51g60g53g44g42g43g55g3g47g36g58equipment and systems in and out of use Part 1: GeneralICS 33.160.60; 35.040Multimedia security Gui
2、deline for privacy protection of DRAFT FOR DEVELOPMENTDD IEC/TS 62045-1:2006DD IEC/TS 62045-1:2006This Draft for Development was published under the authority of the Standards Policy and Strategy Committee on 31 January 2007 BSI 2007ISBN 978 0 580 50108 1an international Standard, to extend the life
3、 of the Technical Specification or to withdraw it. Comments should be sent to the Secretary of the responsible BSI Technical Committee at British Standards House, 389 Chiswick High Road, London W4 4AL.The UK participation in its preparation was entrusted to Technical Committee EPL/100, Audio, video
4、and multimedia systems and equipment.A list of organizations represented on EPL/100 can be obtained on request to its secretary.This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. Amendments issued since publicat
5、ionAmd. No. Date Commentsthat UK experience can be reported to the international organization responsible for its conversion to an international standard. A review of this publication will be initiated not later than 3 years after its publication by the international organization so that a decision
6、can be taken on its status. Notification of the start of the review period will be made in an announcement in the appropriate issue of Update Standards.According to the replies received by the end of the review period, the responsible BSI Committee will decide whether to support the conversion into
7、National forewordThis Draft for Development was published by BSI. It is the UK implementation of IEC TS 62045-1:2006.This publication is not to be regarded as a British Standard.It is being issued in the Draft for Development series of publications and is of a provisional nature. It should be applie
8、d on this provisional basis, so that information and experience of its practical application can be obtained.Comments arising from the use of this Draft for Development are requested so TECHNICAL SPECIFICATION IECTS 62045-1First edition2006-12Multimedia security Guideline for privacy protection of e
9、quipment and systems in and out of use Part 1: General Reference number IEC/TS 62045-1:2006(E) CONTENTS INTRODUCTION.3 1 Scope.4 2 Normative references .4 3 Terms and definitions .4 4 Privacy of user .5 4.1 Privacy protection5 4.2 Definition of privacy.5 4.3 Characteristics of privacy 6 5 Methods fo
10、r privacy protection8 5.1 System model .8 5.2 Case of usage .10 5.3 Methods for data protection.10 6 Methods for user assistance.12 6.1 Importance of user assistance.12 6.2 Education for user .13 6.3 Instructions for user 13 6.4 Failsafe and multiple protection system .13 Figure 1 System model 8 Tab
11、le 1 Privacy attribution .5 Table 2 Origin of information5 Table 3 Information attribution .6 Table 4 Rights holder.7 Table 5 Protection execution7 Table 6 Access rights holder8 Table 7 Communication paths9 Table 9 Case of usage.10 Table 10 Combination table .10 Table 11 Operation modes.11 2 Table 8
12、 Storage functionality.10 DD IEC/TS 62045-1:2006INTRODUCTION There has been an increase in consumer products of multimedia that store the users private data and privacy information. For instance, a digital TV tuner has a kind of IC card which stores the users information and sometimes includes credi
13、t information. Also, from a wider viewpoint, digital cameras or digital video recorders store the private data of users, and digital audio players, cellular phones and PCs are banks of private data. This private information should be protected from unauthorized or illegal access and use. When the us
14、er discards such products, private data remains stored and this should be protected or deleted. In addition, when a user lends his product to others, private information should be protected. For instance, even if all the contents in the memory of digital video recorders or digital cameras are delete
15、d, these data can be recovered easily with some software technology. As consumer products of multimedia include storage and computer architecture, this problem will be raised in many aspects of usage. All products should have privacy protection methods. This technical specification describes the sys
16、tem model and general methods for the users privacy protection of data storage, equipment and systems, both in and out of use. Equipment and systems have their own structure in each application, therefore, the other part of this technical specification defines a dedicated method for privacy protecti
17、on for the specific application. Also, the implementation of the privacy protection method depends on each design. 3 DD IEC/TS 62045-1:2006MULTIMEDIA SECURITY GUIDELINE FOR PRIVACY PROTECTION OF EQUIPMENT AND SYSTEMS IN AND OUT OF USE Part 1: General 1 Scope This part of IEC 62045 gives the guidelin
18、e for methods for the protection of the users privacy in consumer equipment and systems, both when the equipment or systems are in use and out of use. 2 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edit
19、ion cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. IEC 60958-3, Digital audio interface Part 3: Consumer applications IEC 61880-2, Video systems (525/60) Video and accompanied data using the vertical blanking interval Analogue
20、 interface Part 2: 525 progressive scan system IEC 61883-6, Consumer audio/video equipment Digital interface Part 6: Audio and music data transmission protocol 3 Terms and definitions For the purposes of this document, the following terms and definitions apply. 3.1 data storage all kinds of data-sto
21、ring functions, which are devices or systems including hard disk drive, optical disc and memory devices and others 3.2 data encryption conversion of data into code or cipher 3.3 data access reading, writing or use of data stored in data storage 3.4 access control control for condition of use or entr
22、y to system or data 3.5 private data data that is property of the user 4 DD IEC/TS 62045-1:20063.6 social engineering cracking techniques that rely on human rather than hardware and software weaknesses 4 Privacy of user 4.1 Privacy protection The reason for protecting the users privacy is that the p
23、rivacy of the user is the property of the user. The manufacture of equipment and systems, and the service providers have the responsibility of safeguarding the users privacy. 4.2 Definition of privacy Privacy, as defined in this specification, is the private information of the user or private inform
24、ation created by the user that is produced or accompanied with users usage, operation and behaviour with multimedia equipments or systems. Using the equipment, system and service, these activities produce private information that is stored or transferred. This privacy has attribution and origination
25、. Attribution is specified depending on its nature as shown in Table 1. Table 1 Privacy attribution Privacy attribution Description Example Identification of user User can be identified with this information Name, address, telephone number, e-mail address Social information, credit card information,
26、 social number Biometrics data of user Creation by user Information that is the property of user Document, photograph, video, music Provided by user Information provided by user operation Broadcasting programme, downloaded contents, cookie, usage record The identification of the user is fundamental
27、information of the user. The user can be identified by this information, and others can access to the user or the property of user with this information. Creation by the user is a property of the user. This information should be protected from others. Provided by the user is also a property of user.
28、 This is provided by user operation or behaviour. The origin of that information is specified as shown in Table 2. Table 2 Origin of information Origin Description Direct information Provided direct by user Indirect information Provided indirectly by users use of equipment or systems Accompanied inf
29、ormation Data accompanied by the users use of equipment or systems 5 DD IEC/TS 62045-1:2006Direct information is provided by the user intentionally and consciously, or unintentionally and unconsciously. When the user inputs his private information or recalls his information, that information is prov
30、ided direct by the users operation or behaviour. Indirect information is provided by the users use of equipment or systems intentionally and consciously, or unintentionally and unconsciously. When the user uses equipment or systems, this behaviour causes communication of information including the us
31、ers private information. Accompanied information is information other than that made by the user, which is created by equipment or systems having a relation with the users use or behaviour. For instance, when the user uses equipment, the equipment may record a log. This log will include private info
32、rmation regarding the user. 4.3 Characteristics of privacy 4.3.1 Characteristics of privacy general Privacy defined as private information has the characteristic of protection. 4.3.2 Information attribution The information to be protected is specified by a judgment of what is important information f
33、or the user who has the right to that information. Information itself is the object to be protected and also indirect information is the object. Three kinds of information are specified as shown in Table 3. Table 3 Information attribution Information attribution Case Original information All the ori
34、ginal information Part of the original information Derivative information Secondary information from original information Proxy information of original information Access information Access information to original or derivative information Original information is principal information primarily prov
35、ided by the user. All of this information is private and, in some cases, part of the original information is the subject of protection. Derivative information is produced from original information by the user or other persons, there are two cases of this information. Secondary information is produce
36、d from the original information and it includes private information of original information. Proxy information is a proxy of the original information, it includes information of the relation with the original information. Access information is a key or authentication information used to access to th
37、e original information or derivative information. This is not private information in itself but the subject of protection. 4.3.3 Rights holder The rights holder who has the rights of private information is defined by a judgment of what authorized person or organization control or has the rights of t
38、hat information to protect their rights or property. Basically the rights belong to the user, but there will be other cases where part or all of the rights belong(s) to others or other organizations. Rights holders are shown in Table 4. 6 DD IEC/TS 62045-1:2006Table 4 Rights holder Rights holder Con
39、dition User User rights Manufacture Manufacture rights Contents provider Contents provider rights The manufacturer provides consumer products including the property of manufacture. The user can take advantage of that property but the rights belong to the manufacturer. The contents provider has the r
40、ights of the contents. 4.3.4 Protection execution Protection should be executed depends on each condition as shown in Table 5. Table 5 Protection execution Protection execution Description Always To be protected whether user desires or not, and is aware or not Automatically To be protected automatic
41、ally depending on operation On request of the user To be protected when user desires Never Not to be protected because of other conditions (see note) On request of other than user To be protected because of other conditions (see note) NOTE Legal or security reason will affect conditions irrespective
42、 of user preference. Always is applied for principal information of properties of user, that information should be protected always. Automatically is provided by equipment or systems in appropriate timing of operation by use. On request of the user is controlled by the user, information should be pr
43、otected by the request of the user. Never may apply because of legal or security reason regardless of user preferences. On request of other than user is controlled by legal or security reason. 4.3.5 Access rights holder In some cases, persons other than the user can access the users information. Whe
44、n the user accepts access from others, others can use them. An authorized supervisor can access users information. NOTE For security reasons, for instance, the police may access users information in the framework of investigation. 7 DD IEC/TS 62045-1:2006Table 6 Access rights holder Access rights ho
45、lder Description User User Others Persons other than user Authorized supervisor Person authorized other than user (see note) NOTE Legal or security reasons will affect conditions irrespective of the users preference. 5 Methods for privacy protection 5.1 System model 5.1.1 Definition of system model
46、The system model consists of body of equipment or systems and communication paths as shown in Figure 1. Privacy information is data that is stored in storages. These are: data storage; equipment with data storage device; systems involving these data storage and equipment. Storage device, equipment o
47、r systems have plural paths of data access that is categorized by attribution. These are: data interface; user interface; reproduction; other paths. Memory device Controller and system Data interface User interface Reproduction Body of equipment or systems Communication paths Other path IEC 2242/06
48、Figure 1 System model The privacy information of the user is a kind of data. The data is created through a relationship with data storage, equipment or systems, and it is stored in storage device, or it is not stored. Relationship means possession, operation, usage and end of use. These 8 DD IEC/TS
49、62045-1:2006activities produce information including privacy of user. Private data will be transmitted or communicated to outside or accessible from outside through communication paths, or data can be reproduced by a function of equipment and systems. Therefore, the method for protection of these data should be implemented in storage device, equipment or systems or in a combination of these. Also, the method should be implemented in communic
