Application Authentication for Hybrid Services of Broadcasting and Communications Networks

摘要

Broadcasting and communications networks can be used to gether to offer hybrid broadcasting services that incorporate a variety of personalized information from communications networks in TV pro grams. To enable these services, many different applications have to be run on a user terminal, and it is necessary to establish an environment where any service provider can create applications and distribute them to users. The danger is that malicious service providers might distribute applications which may cause user terminals to take undesirable actions. To prevent such applications from being distributed, we propose an ap plication authentication protocol for hybrid broadcasting and communi cations services. Concretely, we modify a key-insulated signature scheme and apply it to this protocol. In the protocol, a broadcaster distributes a signing key to a service provider that the broadcaster trusts. As a result, users can verify that an application is reliable. If a signed application causes an undesirable action, a broadcaster can revoke the privileges and permissions of the service provider. In addition, it can update the signing key. That is, our protocol is secure against leakage of the signing key by the broadcaster. Moreover, a user terminal uses only one verifi cation key for verifying a signature, so the memory needed for storing the verification key in the user terminal's is very small. With our protocol, users can securely receive hybrid services from broadcasting and communications networks.