| Abstract [eng] |
Today digital rights management systems are more and more widely used in Smart devices from Smart TV receivers, PC and mobile phones as well. These systems allow only the rightful owner to use the digital content. However, they are not as user-friendly as they could be. The principles and the protection methods of digital rights management systems are analyzed in the work. While comparing digital rights management systems, which are presented in the market, it is noticed, that no one of these have the possibility to transfer the video file to another device and view it there. Therefore, it was decided to create an own digital rights management system with this opportunity. Android OS was chosen for the implementation of digital rights management system, encrypting multimedia files with AES-CTR encryption method. Multimedia content decryption keys are stored together with mobile application files in encrypted text file, while this text file decryption key is generated using the mobile device technical data and application values. This application is associated with one device, and it can properly function offline. ProGuard software was selected as protection from reverse engineering. The research of created digital rights management system is composed from the ability to view the video file in other user devices and application resistance from reverse engineering. The first results of research are positive and confirms proposed digital rights management system concept. The second part of research was successful, because it helped to determine that standard Proguard protection is insufficient and it is better not to use. It just prolonged the time to the search for protection functions in the original code from five to twenty minutes, but these functions were still found and analyzed. Since ProGuard protection is insufficient and does not protect properly mobile application as expected, to resolve this problem it is recommended to use commercial anti-reverse engineering analogs with more security options, including real-time protection. |
