A formal foundation for XrML-Reference-Cited by-同舟云学术

A formal foundation for XrML

Published:2008-02 Issue:1 Volume:55 Page:1-42
ISSN:0004-5411
Container-title:Journal of the ACM
language:en
Short-container-title:J. ACM

Author:

Halpern Joseph Y.¹,Weissman Vicky¹

Affiliation:

1. Cornell University, Ithaca, New York

Abstract

XrML is becoming a popular language in industry for writing software licenses. The semantics for XrML is implicitly given by an algorithm that determines if a permission follows from a set of licenses. We focus on a fragment of the language and use it to highlight some problematic aspects of the algorithm. We then correct the problems, introduce formal semantics, and show that our semantics captures the (corrected) algorithm. Next, we consider the complexity of determining if a permission is implied by a set of XrML licenses. We prove that the general problem is undecidable, but it is polynomial-time computable for an expressive fragment of the language. We extend XrML to capture a wider range of licenses by adding negation to the language. Finally, we discuss the key differences between XrML and MPEG-21, an international standard based on XrML.

Funder

Office of Naval Research

Air Force Office of Scientific Research

Division of Information and Intelligent Systems

National Science Foundation

Publisher

Association for Computing Machinery (ACM)

Subject

Artificial Intelligence,Hardware and Architecture,Information Systems,Control and Systems Engineering,Software

Link

https://dl.acm.org/doi/pdf/10.1145/1326554.1326558

Reference19 articles.

1. ContentGuard. 2001. XrML: The digital rights language for trusted content and services. Available at http://www.xrml.org/. ContentGuard. 2001. XrML: The digital rights language for trusted content and services. Available at http://www.xrml.org/.

2. Ellison C. Frantz B. Lampson B. Rivest R. Thomas B. and Ylonen T. 1999a. SPKI certificate theory. Available at http://www.ietf.org/html.charters/spki-charter.html. Internet RFC 2693. Ellison C. Frantz B. Lampson B. Rivest R. Thomas B. and Ylonen T. 1999a. SPKI certificate theory. Available at http://www.ietf.org/html.charters/spki-charter.html. Internet RFC 2693.

3. Ellison C. Frantz B. Lampson B. Rivest R. Thomas B. and Ylonen T. 1999b. Simple public key certificate. Available at http://world.std.com/~cme/spki.txt. Internet RFC 2693. Ellison C. Frantz B. Lampson B. Rivest R. Thomas B. and Ylonen T. 1999b. Simple public key certificate. Available at http://world.std.com/~cme/spki.txt. Internet RFC 2693.

Cited by 7 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Unified Model for Data Security - A Position Paper;2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications;2014-09

2. An approach to the formal analysis of license interoperability;Computers & Electrical Engineering;2012-11

3. SMASHUP: Secure Mashup for Defense Transformation and Net-Centric Systems;PROC SPIE;2011

4. Game-Theoretic Analyses and Simulations of Adoptions of Security Policies for Drm in Contents Sharing Scenario;Intelligent Automation & Soft Computing;2011-01

5. Digital Rights Management;Chapman & Hall/CRC Cryptography and Network Security Series;2010-08-02