基于自保护模式的数据防泄密版权管理技术研究

项目名称： 基于自保护模式的数据防泄密版权管理技术研究

项目编号： No.61272519

项目类型： 面上项目

立项/批准年度： 2013

项目学科： 自动化技术、计算机技术

项目作者： 马兆丰

作者单位： 北京邮电大学

项目金额： 81万元

中文摘要： 电子数据的非授权复制、扩散和泄密是当前数字版权保护与数据防泄密领域的一个难题。传统的数字版权保护模型更多地是从数字资产权利属主主动保护角度来对内容对象进行保护，但该模型无法解决数字化资产制作者本人蓄意的复制、扩散和泄密数字内容等问题。本课题研究基于自保护模式的数据防泄密版权管理技术。构建基于时间/空间约束的数据防泄密版权保护安全信任模型，研究内核态可参数化的数据自保护可信执行环境，设计支持域控和层次化安全的动态可配置安全策略，研究基于时空约束的数据防泄密版权保护安全认证协议，设计允许在线/离线模式的版权保护使用控制安全许可协议，研究基于身份的域密钥管理算法，研究多域环境下代理多重加密数据安全分发算法及协议。通过算法和协议安全性论证及实验验证数据防泄密版权保护理论和技术的有效性、安全性和可行性。本课题对数字化资产、电子文档防泄密版权保护理论和技术支撑具有重要意义。

中文关键词： 数字版权管理；数据防泄密；自保护模式；时空约束；许可管理

英文摘要： Illegal copying, spreading and leakage of electronic data is now becoming a difficult problem in current digital rights management(DRM) field. Traditional DRM mode focused on protection digital content and its rights according to rights owner's active purpose, however traditional DRM models can not solve the problem of content author' or maker's premeditated copying, spreading and leakage of valuable content for personal use. The proposal will study the data leakage protection and its digital rights management based on self-protection mode, in which we will construct a new DRM trusted model that supports time and space constraint(TSC), then we will develop kernel-level DRM configurable security executive environment. Based on the above model and environment, we will design DRM policy that supports domain and hierarchical management, and DRM authentication and authorization that can satisfied TSC and online/offline usage control as the most key technologies will be focused on for further research. Finally, we will design domain key management algorithm based on user's identity, and study distribution protocol based on proxy re-encryption in the domain environment for digital content dispatch, more importantly, we will verify the security and availability of the proposed algorithm and protocol in the project. The

英文关键词： Digital Rights Management；Data Leakage Protection；Self-Protection Mode；Time and Space Constraint；License Management