Без темы
<<  Packaging range 2GO Particulate Matter Air Pollution and Health Risks  >>
Panther Content Security
Panther Content Security
Introduction: Panther/Lyon
Introduction: Panther/Lyon
Panther/Lyon Security Improvement
Panther/Lyon Security Improvement
Panther Content Security
Panther Content Security
End
End
Backup
Backup
Memory Protection
Memory Protection
Secure Media Pipeline
Secure Media Pipeline
Secure Computation Environment
Secure Computation Environment
End of backup
End of backup

Презентация: «Panther Content Security». Автор: . Файл: «Panther Content Security.pptx». Размер zip-архива: 51 КБ.

Panther Content Security

содержание презентации «Panther Content Security.pptx»
СлайдТекст
1 Panther Content Security

Panther Content Security

Mar. 14, 2014 Sony Corporation

2 Introduction: Panther/Lyon

Introduction: Panther/Lyon

Panther is FY14 F1 Box implemented on new platform. 2nd generation F1 Box Supports multiple network services including Video Unlimited 4K and playback of User Generated Contents Includes secure SoC “Lyon” Lyon is in-house secure SoC. Dedicated for Sony’s product Includes decryptor and AVC/HEVC decoder Handles (decrypts and decodes) Video Unlimited 4K contents

2

3 Panther/Lyon Security Improvement

Panther/Lyon Security Improvement

Lyon supports Trusted Execution Environment (cf. 1st generation F1 Box does not support TEE) and H/W Root of Trust with Secure Boot. By introduction of TEE, the following items are improved from FMP-X1 (1st generation F1 Box) Secure media pipeline Secure computation environment Memory protection The following items are fully supported as well as FMP-X1. Device Binding Device-unique private key HDCP2.2 Playback control watermark (Cinavia) Note: Panther expands the coverage of Verance watermark screening to UGC in addition to VU 4K contents. UGC ... User Generated Contents (e.g. contents from camcoder) Cf. FMP-X1 playbacks only Video Unlimited 4K contents

3

4 Panther Content Security

Panther Content Security

About communication with Verance About WASU service

4

5 End

End

5

6 Backup

Backup

6

7 Memory Protection

Memory Protection

Lyon is able to protect memory of the secure zone against access from untrusted code. This means that Secure Data is still protected even if Normal Zone is rooted. Secure Data includes e.g. decrypted/decoded data.

Lyon

Normal Zone

Secure Zone

Normal Process

Secure Process

Memory Protection: Secure Data cannot be accessed by untrusted code in Normal Zone.

RAM

Secure Data

Normal Memory

Secure Memory

7

8 Secure Media Pipeline

Secure Media Pipeline

Panther implements a secure media pipeline that provides protection from Key Management to protected output (HDCP2.2).

Application

Decryption

Decode

HDCP2.2

Main Board

App. Processor

Lyon

HDMI Bridge

Secure Media Pipeline (Decryption - Protected Output)

Key Management

Secure Media Pipeline: Protection between Key Calculation to HDCP

8

9 Secure Computation Environment

Secure Computation Environment

Lyon supports a TEE isolated by hardware mechanisms running only authenticated code for performing secure operations (e.g. decryption). Lyon keeps integrity of secure process by TEE mechanism, i.e. can protect from unauthorized access to secure process.

Lyon

Flash Memory

?

?

Signed & Encrypted Binary

Verification

Decryption

Execution

Keep Integrity of Secure Process: Unauthorized access is impossible by TEE.

Trusted RAM

Authenticated Code: Only signed and encrypted process is running.

authorized Binary

9

10 End of backup

End of backup

10

«Panther Content Security»
http://900igr.net/prezentacija/anglijskij-jazyk/panther-content-security-132983.html
cсылка на страницу
Урок

Английский язык

29 тем
Слайды