KS A ISO 26430-5-2012 Digital cinema(D-cinema) operations－Part 5：Security log event class and constraints《数字影院(D-影院)运营 安全日志事件类别和限制》.pdf

1、 KSKSKSKSKSKSKSK KSKSKS KSKSK KSKS KSK KS KS A ISO 26430 5 (D- ) 5： KS A ISO 26430 5:2012 2012 12 31 http:/www.kats.go.krKS A ISO 26430 5:2012 : ( ) ( ) ( ) : (http:/www.standard.go.kr) ： ：2012 12 31 2012-0858 ： ： ( 02-509-7278) (http:/www.kats.go.kr). 10 5 , . KS A ISO 26430 5:2012 i ii 1 1 2 1 3 2

2、 4 .2 4.1 2 4.2 .3 4.3 .4 4.4 4 4.5 .4 4.6 5 5 .5 5.1 5 5.2 8 6 8 6.1 ReferencedID 9 6.2 9 6.3 .10 6.4 .19 7 ( ) 20 7.1 1.20 8 .20 A( ) .21 B( ) .22 ZZ( ) 23 KS A ISO 26430 5:2012 ii 2009 1 ISO 26430 5, Digital cinema(D-cinema) operations Part 5：Security log event class and constraints . KS A ISO 26

3、430 5:2012 (D- ) 5： Digital cinema(D-cinema) operations Part 5： Security log event class and constraints 1 . D- ( ) . , . . . ( ) . 2 . . ( ) . RFC 3280 Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List(CRL) Profile URL： http:/www.ietf.org/rfc/rfc3280.txt DCMLTypes

4、 SMPTE 433-2008, XML Data Types for Digital Cinema LogRecord SMPTE 430-4-2008, Log Record Format Specification for D-Cinema KDM SMPTE 430-1-2006, D-Cinema Operations Key Delivery Message D-Cert SMPTE 430-2-2006, D-Cinema Operations Digital Certificate ETM SMPTE 430-3-2006, D-Cinema Operations Generi

5、c Extra-Theater Message Format ASM SMPTE 430-6-2008, D-Cinema Operations Auditorium Security Messages for Intra-Theater Communications TFE SMPTE 429-6-2006, D-Cinema Packaging MXF Track File Essence Encryption CPL SMPTE 429-7-2006, D-Cinema Packaging Composition Playlist PKL SMPTE 429-8-2007, D-Cine

6、ma Packaging Packing List TRK SMPTE 429-3-2007, D-Cinema Packaging Sound and Picture Track File RFC 4051 Additional XML Security Uniform Resource Identifiers (URIs) http:/www.ietf.org/rfc/rfc4051.txt RFC 2253 Lightweight Directory Access Protocol (v3): UTF-8 String Representation of Distinguished Na

7、mes. URL: http:/www.ietf.org/rfc/rfc2253.txt KS A ISO 26430 5:2012 2 3 D- . . , , . , . , “ (Security Device)” . , , . , , . LogRecord . . LogRecord . ( ), . D- LogRecord. . LogRecord , , , . LogRecord “ ” , . 4 4.1 (Security Log Event) . . (Security Log Data) , . (Security Log Record) (Security Log

8、 Report) LogRecord , KS A ISO 26430 5:2012 3 . (Security Device) D- D- (Security Entity, SE) D- (： ) (Security Processing Block, SPB) . . (Image Media Block, IMB) , , , ( ) (Remote SPB) (Security Manager, SM) . . . (Screen Management System, SMS) SPB (SPB Marriage and Divorce) ( ) . (Forensic Markin

9、g) / . SPB (SPB Shutdown and Initialization) SPB SPB . (Sequence Number) TFE 7.9 “Sequence Number”(2006) , KLV . (Main Asset) CPL . . CPL CPL (SMPTE 429-7 ). 4.2 4.2.1 . SMPTE 429-7 8.2.2 CPL Hash . KS A ISO 26430 5:2012 4 Signature D-Cert . 4.2.2 . TFE . . TFE MIC . . . . ( , ) 4.2.3 CPL (CPL) . 4.

10、3 . . . LogRecord EventClass , 4.4 URI . . , . . 4.4 XML , (URI) . http:/www.smpte-ra.org/430-5/2008/SecurityLog/ . 4.5 XSDL XML . DCMLTypes . KS A ISO 26430 5:2012 5 xs XMLSchema ds XMLDsig xsi XMLSchema-Instance dcml DcmlTypes lr LogRecord 4.6 1 . 1 . (a) . (b) . 5 D- LogRecord . . , . 5.1 , . Log

11、Record . 5.1.1 KS A ISO 26430 5:2012 6 . 5.1.1.1 ( ) . . TimeStamp . 5.1.1.2 EventSequence . , EventSequence ( , ). ( ), EventSequence . 5.1.1.3 DeviceSourceID , . 5.1.1.4 . . , EventClass 4.4 URI . . 5.1.1.5 PreviousHeaderHash , . PreviousHeaderHash , 0 ( , 0). PreviousHeaderHash LogRecord . Record

12、BodyHash . RecordBodyHash LogRecord . 5.1.2 (body) . 5.1.2.1 , EventClass , EventType . KS A ISO 26430 5:2012 7 EventSubType . , . , , . 5.1.2.2 , KeyDeliveryMessageID . (KDM) MessageId . 5.1.2.3 , / ReferencedIDs . IDName “CompositionID” “TrackfileID” , IDValue . CPL ID UUID . TRK ( ) , ID , SMPTE

13、UUID . . , . 5.1.2.4 (Exceptions) Exception 6.3 Exception . 5.1.3 . LogRecord . RecordAuthData Signature . RecordAuthData SHA-1 . SignedInfo RSA-SHA-256 . KeyInfo , . Object , Reference URI “ ”( ) . Reference DigestMethod URI “http:/www.w3.org/2000/09/xmldsig#sha1“ KS A ISO 26430 5:2012 8 . Referenc

14、e Transform URI “http:/www.w3.org/2000/09/xmldsig#envelopedsignature“ . CanonicalizationMethod URI “http:/www.w3.org/TR/2001/REC-xml-c14n-20010315“ . SignatureMethod URI “http:/www.w3.org/2001/04/xmldsig-more#rsa-sha256“RFC 4051 . KeyInfo X509Data . X509Data , X509IssuerSerial X509Certificate . X509

15、IssuerName Distinguished Name XML-Signature Syntax and Processing RFC 2253 . 5.2 LogRecord . . . . D- . 6 D- LogRecord . , . , , . . EventClass 4.4 . EventType . EventSubType EventType . “ ” , , EventType, EventSubType Security Log Record Body Parameters . XML DCMLTypes Named Parameter Type Paramete

16、r List Type . , RecordTextExtention . . KS A ISO 26430 5:2012 9 6.1 ReferencedID ReferencedID ReferencedID IDName scopedTokenType . . URI . “http:/www.smpte-ra.org/430-5/2008/SecurityLog/#EventTypes“ ReferencedID IDName , . ReferencedIDs ReferencedID IDName . / IDValue( ) UUID . ReferencedID IDName KeyDeliveryMessageID KeyDeliveryMessageID UUID , . UUID KDM AuthenticatedPublic MessageId . CompositionID CompositionID UUID . UUID Id . TrackFileID TrackFileID UUID . UUID SMPTE 429.3 ( ) UID, SMPTE 429.5 SubtitleReel Id , SMPTE . 6.2 EventType . URI . “http:/www.smpte-ra.org/430-5/2008/Sec