SIST EN 62698:2013

SLOVENSKI STANDARD
SIST EN 62698:2013
01-julij-2013
6LVWHPLYHþSUHGVWDYQRVWQLKGRPDþLKVWUHåQLNRY,QIRUPDFLMVNDPHGREUDWRYDOQRVW
XSRUDEQLãNLKSUDYLFSULLQWHUQHWQLWHOHYL]LML,379,(&
Multimedia home server systems - Rights information interoperability for IPTV (IEC
62698:2013)
Multimedia-Homeserversysteme - Interoperabilität von Rechteinformationen für IPTV
(IEC 62698:2013)
Systèmes de serveur domestique multimédia - Interopérabilité d'information des droits
pour TVIP (CEI 62698:2013)
Ta slovenski standard je istoveten z: EN 62698:2013
ICS:
33.160.60 9HþSUHGVWDYQLPXOWLPHGLMVNL Multimedia systems and
VLVWHPLLQRSUHPD]D teleconferencing equipment
WHOHNRQIHUHQFH
SIST EN 62698:2013 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST EN 62698:2013

---------------------- Page: 2 ----------------------

SIST EN 62698:2013

EUROPEAN STANDARD
EN 62698

NORME EUROPÉENNE
April 2013
EUROPÄISCHE NORM

ICS 33.160.60; 35.240.99


English version


Multimedia home server systems -
Rights information interoperability for IPTV
(IEC 62698:2013)


Systèmes de serveur domestique Multimedia-Homeserversysteme -
multimédia - Interoperabilität von Rechteinformationen
Interopérabilité d'information des droits für IPTV
pour TVIP (IEC 62698:2013)
(CEI 62698:2013)




This European Standard was approved by CENELEC on 2013-04-15. CENELEC members are bound to comply
with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard
the status of a national standard without any alteration.

Up-to-date lists and bibliographical references concerning such national standards may be obtained on
application to the CEN-CENELEC Management Centre or to any CENELEC member.

This European Standard exists in three official versions (English, French, German). A version in any other
language made by translation under the responsibility of a CENELEC member into its own language and notified
to the CEN-CENELEC Management Centre has the same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus,
the Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany,
Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland,
Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom.

CENELEC
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung

Management Centre: Avenue Marnix 17, B - 1000 Brussels


© 2013 CENELEC - All rights of exploitation in any form and by any means reserved worldwide for CENELEC members.
Ref. No. EN 62698:2013 E

---------------------- Page: 3 ----------------------

SIST EN 62698:2013
EN 62698:2013 - 2 -
Foreword
The text of document 100/1947/CDV, future edition 1 of IEC 62698, prepared by “Technical Area 8
“Multimedia home server systems” of IEC/TC 100 “Audio, video and multimedia systems and
equipment” was submitted to the IEC-CENELEC parallel vote and approved by CENELEC as
EN 62698:2013.
The following dates are fixed:
(dop) 2014-01-15
• latest date by which the document has
to be implemented at national level by
publication of an identical national
standard or by endorsement
• latest date by which the national (dow) 2016-04-15
standards conflicting with the
document have to be withdrawn

Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CENELEC [and/or CEN] shall not be held responsible for identifying any or all such
patent rights.

Endorsement notice
The text of the International Standard IEC 62698:2013 was approved by CENELEC as a European
Standard without any modification.

---------------------- Page: 4 ----------------------

SIST EN 62698:2013
- 3 - EN 62698:2013
Annex ZA
(normative)

Normative references to international publications
with their corresponding European publications

The following documents, in whole or in part, are normatively referenced in this document and are
indispensable for its application. For dated references, only the edition cited applies. For undated
references, the latest edition of the referenced document (including any amendments) applies.

NOTE  When an international publication has been modified by common modifications, indicated by (mod), the relevant EN/HD
applies.

Publication Year Title EN/HD Year

IEC 62227 2008 Multimedia home server systems - Digital EN 62227 2008
rights permission code


IEC/TR 62636 2009 Multimedia home server systems - - -
Implementation of digital rights permission
code


ISO 3166-1 - Codes for the representation of names of EN ISO 3166-1 -
countries and their subdivisions -
Part 1: Country codes


ITU-T 2009 High-level specification of metadata for IPTV - -
Recommendation services
H.750


ITU-T - Information technology - Open systems - -
Recommendation interconnection - The Directory: Public-key
X.509 and attribute certificate frameworks

---------------------- Page: 5 ----------------------

SIST EN 62698:2013

---------------------- Page: 6 ----------------------

SIST EN 62698:2013




IEC 62698

®


Edition 1.0 2013-03




INTERNATIONAL



STANDARD




NORME



INTERNATIONALE
colour

inside










Multimedia home server systems – Rights information interoperability for IPTV



Systèmes de serveur domestique multimédia – Interopérabilité d'information des


droits pour TVIP

















INTERNATIONAL

ELECTROTECHNICAL

COMMISSION


COMMISSION

ELECTROTECHNIQUE

PRICE CODE
INTERNATIONALE

CODE PRIX XB


ICS 33.160.60; 35.240.99 ISBN 978-2-83220-684-3



Warning! Make sure that you obtained this publication from an authorized distributor.

Attention! Veuillez vous assurer que vous avez obtenu cette publication via un distributeur agréé.

® Registered trademark of the International Electrotechnical Commission
Marque déposée de la Commission Electrotechnique Internationale

---------------------- Page: 7 ----------------------

SIST EN 62698:2013
– 2 – 62698 © IEC:2013
CONTENTS
FOREWORD . 4
INTRODUCTION . 6
1 Scope . 7
2 Normative references . 7
3 Abbreviations and acronyms . 7
4 Systems: the RII environment . 8
4.1 General . 8
4.2 Permission subjects . 9
4.3 Permission limit components . 9
5 Permission subject identifiers . 10
5.1 Permission subject identifiers . 10
5.2 Content identifier . 10
5.3 Issuer identifier . 10
5.4 Receiver identifier . 10
6 Permission classification . 10
6.1 Permission classification . 10
6.2 Disclosure class . 11
6.3 Purpose class. 11
6.4 Charge model class . 11
6.5 Sponsor class. 11
6.6 Territory class . 12
6.7 Usage class . 12
6.8 Compilation class . 12
7 Permission limit components . 13
7.1 Permission limit components . 13
7.2 General usage condition . 13
7.2.1 General . 13
7.2.2 Quality limits . 13
7.2.3 Lifetime limits . 13
7.2.4 Permission management system limits . 14
7.2.5 Simultaneous output limits . 14
7.3 Extended usage condition . 15
8 Data management condition . 15
9 Data export condition . 16
Annex A (informative) SECURITY related issues . 18
Annex B (informative) Syntax (encoding) . 20
Annex C (informative) Rights information interoperability background . 24
Annex D (informative) Two basic technologies for enabling RII . 27
Annex E (informative) RII elements corresponding to existing DRM . 32
Bibliography . 48

Figure A.1 – Example of PkiPath . 19
Figure C.1 – Concept – Rights information interoperability . 24
Figure D.1 – Common semantics of Metadata . 27

---------------------- Page: 8 ----------------------

SIST EN 62698:2013
62698 © IEC:2013 – 3 –
Figure D.2 – The necessity of information consolidation for content distribution . 28
Figure D.3 – Common semantics for RII . 30
Figure D.4 – Core elements and common semantics for RII . 31

Table A.1 – Rough composition of distribution format data . 18
Table B.1 – Permission actors and permission classifications . 21
Table B.2 – Playback usage conditions . 22
Table B.3 – Printout usage conditions . 22
Table B.4 – Execution usage conditions . 22
Table B.5 – Data management conditions . 22
Table B.6 – Data output conditions . 23
Table E.1 – Marlin BB (broadband) . 32
Table E.2 – Marlin IPTV-ES (end-point service), Download license, EXPORT for Copy
with Direct Key Delivery . 34
Table E.3 – Marlin IPTV-ES, Download license, EXTRACT with Direct Key Delivery,
Download. 35
Table E.4 – Marlin IPTV-ES, Download license, EXTRACT with Direct Key Delivery,
VOD streaming . 37
Table E.5 – Marlin IPTV-ES, Broadcast license, EXTRACT with IndirectKey Delivery
license, Terrestrial re-distribution/BS (broadcasting satellite) re-distribution . 38
Table E.6 – Marlin IPTV-ES, Broadcast license, EXTRACT with DirectKey Delivery
license, IP multicast . 39
Table E.7 – Marlin IPTV-ES, VOD license, EXTRACT with Simple Key Delivery license . 41
Table E.8 – WM-DRM (Windows Media DRM) . 42
Table E.9 – OMA DRM v2.0 . 43
Table E.10 – AACS, basic . 45
Table E.11 – AACS, extended . 46

---------------------- Page: 9 ----------------------

SIST EN 62698:2013
– 4 – 62698 © IEC:2013
INTERNATIONAL ELECTROTECHNICAL COMMISSION
____________

MULTIMEDIA HOME SERVER SYSTEMS –
RIGHTS INFORMATION INTEROPERABILITY FOR IPTV

FOREWORD
1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising
all national electrotechnical committees (IEC National Committees). The object of IEC is to promote
international co-operation on all questions concerning standardization in the electrical and electronic fields. To
this end and in addition to other activities, IEC publishes International Standards, Technical Specifications,
Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC
Publication(s)”). Their preparation is entrusted to technical committees; any IEC National Committee interested
in the subject dealt with may participate in this preparatory work. International, governmental and non-
governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely
with the International Organization for Standardization (ISO) in accordance with conditions determined by
agreement between the two organizations.
2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international
consensus of opinion on the relevant subjects since each technical committee has representation from all
interested IEC National Committees.
3) IEC Publications have the form of recommendations for international use and are accepted by IEC National
Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC
Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any
misinterpretation by any end user.
4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications
transparently to the maximum extent possible in their national and regional publications. Any divergence
between any IEC Publication and the corresponding national or regional publication shall be clearly indicated in
the latter.
5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity
assessment services and, in some areas, access to IEC marks of conformity. IEC is not responsible for any
services carried out by independent certification bodies.
6) All users should ensure that they have the latest edition of this publication.
7) No liability shall attach to IEC or its directors, employees, servants or agents including individual experts and
members of its technical committees and IEC National Committees for any personal injury, property damage or
other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and
expenses arising out of the publication, use of, or reliance upon, this IEC Publication or any other IEC
Publications.
8) Attention is drawn to the Normative references cited in this publication. Use of the referenced publications is
indispensable for the correct application of this publication.
9) Attention is drawn to the possibility that some of the elements of this IEC Publication may be the subject of
patent rights. IEC shall not be held responsible for identifying any or all such patent rights.
International Standard IEC 62698 has been prepared by technical area 8: Multimedia home
server systems, of IEC technical committee 100: Audio, video and multimedia systems and
equipment.
Parts of the text of this standard have been developed in collaboration with ITU-T/Study
Group 16: Multimedia application platforms and end systems for IPTV.
NOTE The ITU-T Recommendation, which is the parallel text of this standard, is ITU-T Recommendation H.751
"Metadata for rights information interoperability in IPTV services" and is under revision/approval. See ITU website
for more details.

---------------------- Page: 10 ----------------------

SIST EN 62698:2013
62698 © IEC:2013 – 5 –
The text of this standard is based on the following documents:
CDV Report on voting
100/1947/CDV 100/1998/RVC

Full information on the voting for the approval of this standard can be found in the report on
voting indicated in the above table.
This publication has been drafted in accordance with the ISO/IEC Directives, Part 2.
The committee has decided that the contents of this publication will remain unchanged until
the stability date indicated on the IEC web site under "http://webstore.iec.ch" in the data
related to the specific publication. At this date, the publication will be
• reconfirmed,
• withdrawn,
• replaced by a revised edition, or
• amended.

IMPORTANT – The 'colour inside' logo on the cover page of this publication indicates
that it contains colours which are considered to be useful for the correct
understanding of its contents. Users should therefore print this document using a
colour printer.

---------------------- Page: 11 ----------------------

SIST EN 62698:2013
– 6 – 62698 © IEC:2013
INTRODUCTION
At present, there are no mechanisms or rules for flexible digital distribution that allow the easy
exchange of content based on individual commitments between content creators and
consumers. This is because a technological and social environment where there is a sense of
trust between copyright holders and consumers who feel safe about information distribution is
not always perfectly provided.
To provide content creators and consumers with this type of content usage environment, to
give them more opportunities for all kinds of digital content regardless of the support they use
to store it, interoperability is required that will enable the IPTV systems and equipment that
make up the envisioned value chain to communicate and work with each other across
different systems which manage content distribution.
Rights Information Interoperability (RII) solves these issues by helping to provide content
rights holders and consumers with common semantics and core elements that extend across
different systems which manage content distribution.

---------------------- Page: 12 ----------------------

SIST EN 62698:2013
62698 © IEC:2013 – 7 –
MULTIMEDIA HOME SERVER SYSTEMS –
RIGHTS INFORMATION INTEROPERABILITY FOR IPTV



1 Scope
This International Standard defines the common semantics and core elements on rights
information interoperability for IPTV systems/equipment that is subject to multimedia content
to be used across different platforms legally.
The rights information includes rights and security related metadata that is described in
ITU-T Recommendation H.750.
Rights related information, such as content ID, permission issuer ID and permission receiver
ID, which is used to bridge between rights related metadata, is considered in this standard.
On the other hand, rights management and content protection technology are beyond the
scope of this standard.
2 Normative references
The following documents, in whole or in part, are normatively referenced in this document and
are indispensable for its application. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any
amendments) applies.
IEC 62227:2008, Multimedia home server systems – Digital rights permission code
IEC/TR 62636:2009, Multimedia home server systems – Implementation of digital rights
permission code
ISO 3166-1, Codes for the representation of names of countries and their subdivisions –
Part 1: Country codes
ITU-T Recommendation H.750:2009, High-level specification of metadata for IPTV services
ITU-T Recommendation X.509, Information technology – Open systems interconnection –
The Directory: Public-key and attribute certificate frameworks
3 Abbreviations and acronyms
For the purposes of this document, the following abbreviations and acronyms apply.
AAC Advanced Audio Coding
AACS Advanced Access Content System
CD Compact Disc
CGMS Copy Generation Management System
CM Commercial Message
CPRM Content Protection for Recordable Media
DCF DRM Content Format
DRM Digital Rights Management

---------------------- Page: 13 ----------------------

SIST EN 62698:2013
– 8 – 62698 © IEC:2013
DRPC Digital Rights Permission Code
DSA Digital Signature Algorithm
DTCP Digital Transmission Content Protection
DVD Digital Versatile Disk
EC-DSA Elliptic Curve Digital Signature Algorithm
GC Group Content
GIF Graphic Interchange Format
HD High Definition
HDCP High-bandwidth Digital Content Protection
HDD Hard Disk Drive
ID Identifier
IPTV Internet Profile TeleVision
JPEG Joint Photographic Experts Group
MP3 MPEG Audio Layer-3
MPEG Moving Picture Experts Group
MTMO Marlin Trust Management Organization
OMA Open Mobile Alliance
PCM Pulse Code Modulation
PNG Portable Network Graphics
RII Rights Information Interoperability
RSA Rivest Shamir Adleman
SAFIA Security Architecture For Intelligent Attachment
SHA Secure Hash Algorithm
VCPS Video Content Protection System
VOD Video On Demand
WIPO World Intellectual Property Organization
4 Systems: the RII environment
4.1 General
This standard gives the high-level standard of the metadata for rights information
interoperability, including representation of the minimum required elements.
The RII metadata provides descriptive and contextual classification for representing rights
information using the permission framework.
RII is concerned with finding the greatest common denominators in rights expressions that
include the minimum required components when trying to implement the mutual use of rights
information.
It is about conveying rights information in units of groups of context expressions called
permissions.
Here we consider the constituent components of permissions. Permissions can encode “what
from whom to whom under what conditions” using context expressions. When permissions are
sent to a terminal, the minimum required components are the subject information in the
permissions that corresponds to the “what from whom to whom” part, and the content usage
information that corresponds to the “under what conditions” part.

---------------------- Page: 14 ----------------------

SIST EN 62698:2013
62698 © IEC:2013 – 9 –
4.2 Permission subjects
One permission subject is the issuer information that expresses the “from whom” part of the
permissions. This information is held by the service provider, and in RII, its minimum required
component is the rights holder ID.
Only the issuer ID is included because in RII, it is sufficient if the service provider and the
terminal can identify who is granting the permissions. It is not necessary to send all of the
issuer information from the server to the terminal. Therefore, the rights holder ID corresponds
to the Issuer ID in RII context expressions. The service provider receives the digital rights
permission code from the terminal and loads the rights holder ID included in the Issuer ID to
identify the rights holder who granted the permissions.
Another permission subject is receiver information that expresses the “to whom” part of the
permissions. In RII, that minimum required component is the User ID/Device ID.
Only the receiver ID is included because in RII, it is sufficient if the service provider and the
terminal can identify to whom the permissions are being granted. Therefore, the User
ID/Device ID corresponds to the Receiver ID in RII context expressions. The terminal receives
the digital rights permission code from the service provider and determines whether or not the
User ID/Device ID included in the Receiver ID corresponds to the local terminal, or the service
provider receives the digital rights permission code from the terminal and loads the User
ID/Device ID included in the Receiver ID to identify the user to whom permissions were
granted.
Another permission subject is information about the content for which permissions are being
granted, which is expressed in the “what” part. In RII, that minimum required component is the
Content ID.
Only the Content ID is included in RII because it is sufficient for the service provider and the
terminal to be able to identify the content for which permissions are being granted. The
terminal receives the digital rights permission code from the service provider and determines
that the content that corresponds to the Content ID is being granted.
4.3 Permission limit components
One permission limit component is the type of the permissions (hereinafter referred to as “the
permission classification component”), which expresses stipulations about what is being
granted. These permissions are agreed upon between the issuer and the receiver. This is
information that the receiver needs to be able to check offline. In RII, those minimum required
components are the following: a type that indicates whether the permission content being
granted is public or not (hereinafter referred to as “the disclosure class”), a type that indicates
the purpose of use being granted (hereinafter referred to as the “purpose class”), a type that
indicates the billing format being granted (hereinafter referred to as the “charge model class”),
a type that indicates the request format being granted (hereinafter referred to as the “request
class”), a type that indicates the sponsor format being granted (hereinafter referred to as the
“sponsor class”, a type that indicates the usage format being granted (hereinafter referred to
as the “usage class”), and a type that indicates the territory being granted, (hereinafter
referred to as the "territory class”). These permission limit components are included in RII
because it is necessary to be able to see that information even in an offline environment that
is not connected to a network. This is so that the terminal can determine what type of
permissions are being granted between the service provider and the terminal.
Another permission limit component contains limiting conditions that are in addition to the
restrictions in the items granted above. These are mainly items of information that limit the
type of permissions stipulated by the usage class. In RII, those minimum required
components are the permission usage format and its limiting conditions (hereinafter referred
to as "normal usage limits”), content usage limits for compliant terminals (hereinafter referred
to as the “permission management system limits”), and the limits on output of the content to
non-compliant terminals or media (hereinafter referred to as the “simultaneous output limits”).

---------------------- Page: 15 ----------------------

SIST EN 62698:2013
– 10 – 62698 © IEC:2013
These permission limit components are included in RII, because it is necessary for
...