DTS KeyPortSolving the security key management problem for distributors and exhibitorsDigital Cinema security key management poses unique challenges to content distribution. Distributors need to deliver security keys to exhibitors by means of open protocols without incurring a gatekeeper. Exhibitors need to securely and knowingly communicate digital equipment certificate information to security key distributors to ensure delivery of the correct keys. Exhibitors also need firewall protection to prevent illicit access to their networks KeyPort™ Security Key Management Server from DTS Digital CinemaThe DTS KeyPort is a KDM (Key Delivery Message) management server utilizing open protocols to enable the communication of security keys from any KDM distributor. KeyPort provides the tools necessary at the exhibition site to simplify and automate the management of KDMs by those entities so equipped and authorized. The DTS KeyPort security key management server delivers an intuitive user interface that streamlines the exhibitor's workload. It can simplify theatre operations by communicating KDMs to the appropriate digital cinema servers. The unencrypted data within each KDM can be easily viewed, giving users the option to manually identify and move each KDM to the appropriate playout server. DTS KeyPort resides at the demarcation point which exists between the worldwide distribution system and the exhibition premises. To the outside world, a standard secure portal is presented, with no access beyond the internal firewall contained within the KeyPort itself. Inside the theatre, only exhibitor-authorized access is available to the outside world, allowing the ability to collect digital cinema certificates and communicate them to the appropriate entities by means of an FLM (Facility List Message). On the KeyPort user interface, KDMs appear as web resources which can be routed to playback servers as required by theatre operations. The KeyPort security key management server can receive KDMs distributed over a persistent network connection by means of standard email. VPN (Virtual Private Network) connections are permitted to secure the communication path. Internal filters validate the payloads to ensure that only KDMs for installed security devices are received. Once the payload is validated, a receipt is sent to the sender to acknowledge delivery. If an invalid KDM is received, the KeyPort will also communicate the error to the sender. An optional modem port is also available for alternative delivery of KDMs. KeyPort pays for itself by providing important network functions that replace stand-alone devices in the system. Its internal firewall is purpose-built, eliminating the tedious configuration and additional cost encountered when a general-purpose firewall is employed. KeyPort can also function as a router with NAT (Network Address Translation), providing the means to securely isolate theatre operations, point of sale, and back-end operations from the digital cinema operations network. It can also function as the system time clock with its internal NTP (Network Time Protocol) server. In addition, as KeyPort provides the critical function of KDM reception, its health status can be monitored by means of periodic email reports. The DTS KeyPort security key management server is offered as a standalone system including custom software and web interface. For more information or a demonstration, please contact cinemainfo@dtsdcinema.com Download product information: |
|