《ISO-21000-5-2004.pdf》由会员分享,可在线阅读,更多相关《ISO-21000-5-2004.pdf(132页珍藏版)》请在三一文库上搜索。
1、 Reference number ISO/IEC 21000-5:2004(E) ISO/IEC 2004 INTERNATIONAL STANDARD ISO/IEC 21000-5 First edition 2004-04-01 Information technology Multimedia framework (MPEG-21) Part 5: Rights Expression Language Technologies de linformation Cadre multimdia (MPEG-21) Partie 5: Langage dexpression des dro
2、its ISO/IEC 21000-5:2004(E) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing
3、. In downloading this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be fou
4、nd in the General Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the
5、 address given below. ISO/IEC 2004 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address belo
6、w or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2004 All rights reserved -,-,- ISO/IEC 21000-5:2004(E) ISO/IEC 2004 A
7、ll rights reserved iii Contents Page Forewordviii Introduction .ix 1 Scope1 2 Normative references .1 3 Terms, definitions, symbols, and abbreviated terms2 4 Namespaces and conventions 6 4.1 Namespaces 6 4.2 Namespace conventions7 4.3 Special typographical conventions.7 4.4 XML structural notation c
8、onventions .8 4.5 Authorization context conventions.8 5 Authorization model .8 5.1 General.8 5.2 Authorization request.9 5.3 Authorization context.10 5.4 Authorization story.10 5.5 Authorizer 10 5.6 Authorization model authorization context properties.10 5.7 Authorization proof.11 5.8 License Semant
9、ics12 6 Architectural concepts.12 6.1 Equality 12 6.2 License syntax 12 6.3 License parts.12 6.4 License issuers .13 6.5 Variables 14 6.5.1 Variable definition.14 6.5.2 Variable referencing14 6.6 Conceptually abstract elements and types15 6.7 Revocable 15 6.8 Principal surpassing.15 6.8.1 General.15
10、 6.8.2 Principal set representation.15 6.9 Derived grants and grant groups 15 6.9.1 General.15 6.9.2 One-step-derived grants and grant groups15 6.10 Encrypted Elements17 7 Core17 7.1 General.17 7.2 Core authorization context properties17 7.3 General core elements and types18 7.3.1 License.18 7.3.2 L
11、icenseGroup20 7.3.3 ForAll20 7.3.4 DelegationControl.20 7.3.5 NonSecureReference21 7.3.6 EncryptedContent.21 7.4 Core conceptually abstract elements and types .21 7.4.1 LicensePart21 -,-,- ISO/IEC 21000-5:2004(E) iv ISO/IEC 2004 All rights reserved 7.4.2 Principal .21 7.4.3 Right .21 7.4.4 Resource
12、21 7.4.5 Condition22 7.4.6 AnXmlPatternAbstract22 7.4.7 DcConstraint22 7.4.8 TrustRoot .23 7.4.9 ServiceDescription23 7.4.10 PropertyAbstract.23 7.5 Core principals 23 7.5.1 AllPrincipals.23 7.5.2 KeyHolder.23 7.6 Core rights .24 7.6.1 Issue .24 7.6.2 Obtain .24 7.6.3 PossessProperty.24 7.6.4 Revoke
13、25 7.7 Core resources25 7.7.1 DigitalResource.25 7.7.2 Grant.26 7.7.3 GrantGroup26 7.7.4 Revocable.26 7.7.5 ServiceReference 27 7.8 Core conditions.27 7.8.1 AllConditions.27 7.8.2 ExerciseMechanism28 7.8.3 ExistsRight.28 7.8.4 Fulfiller29 7.8.5 PrerequisiteRight.29 7.8.6 RevocationFreshness.29 7.8.7
14、 ValidityInterval.30 7.9 Core patterns.30 7.9.1 General patterns30 7.9.2 Principal patterns PropertyPossessor.31 7.9.3 Right patterns31 7.9.4 Resource patterns.31 7.9.5 Condition patterns.33 7.10 Core delegation constraints.33 7.10.1 ConditionIncremental .33 7.10.2 ConditionUnchanged33 7.10.3 DepthC
15、onstraint 33 7.10.4 ToConstraint34 7.11 Core trust roots .35 7.11.1 TrustedRootGrants35 7.11.2 TrustedRootIssuers.35 7.12 Core service descriptions 35 7.13 Core properties35 8 Standard extension.35 8.1 General .35 8.2 Standard extension authorization context properties.35 8.3 General standard extens
16、ion elements and types 38 8.3.1 AccountPayable.38 8.3.2 ProfileCompliance.38 8.3.3 Rate.39 8.3.4 StateDistinguisher.39 8.3.5 UddiKey39 8.3.6 Uuid.39 8.4 Standard extension conceptually abstract elements and types 39 8.4.1 Name.39 ISO/IEC 21000-5:2004(E) ISO/IEC 2004 All rights reserved v 8.4.2 State
17、fulCondition 39 8.5 Standard extension principals.39 8.6 Standard extension rights RightUri .40 8.7 Standard extension resources.40 8.8 Standard extension conditions .40 8.8.1 CallForCondition.40 8.8.2 ExerciseLimit.40 8.8.3 FeeFlat40 8.8.4 FeeMetered 41 8.8.5 FeePerInterval .41 8.8.6 FeePerUse42 8.
18、8.7 FeePerUsePrePay .42 8.8.8 SeekApproval 42 8.8.9 Territory43 8.8.10 TrackQuery 43 8.8.11 TrackReport.43 8.8.12 TransferControl.44 8.8.13 ValidityIntervalFloating.44 8.8.14 ValidityIntervalStartsNow.44 8.8.15 ValidityTimeMetered.45 8.8.16 ValidityTimePeriodic.45 8.9 Standard extension patterns .46
19、 8.9.1 General patterns46 8.9.2 Principal patterns46 8.9.3 Right patterns46 8.9.4 Resource patterns X509SubjectNamePattern.47 8.9.5 Condition patterns ValidityIntervalDurationPattern.47 8.10 Standard extension delegation constraints.47 8.11 Standard extension trust roots47 8.12 Standard extension se
20、rvice descriptions.47 8.12.1 AnonymousStateService47 8.12.2 Uddi 48 8.12.3 WsdlAddress .48 8.12.4 WsdlComplete .49 8.13 Standard extension properties PropertyUri49 8.14 Standard extension name properties49 8.14.1 CommonName.49 8.14.2 DnsName49 8.14.3 EmailName.49 8.14.4 X509SubjectName.49 9 Multimed
21、ia extension50 9.1 General.50 9.2 Multimedia extension authorization context properties.50 9.3 General multimedia extension elements and types resource attribute set definitions51 9.3.1 Complement 51 9.3.2 Intersection51 9.3.3 Set.52 9.3.4 Union52 9.4 Multimedia extension conceptually abstract eleme
22、nts and types.52 9.5 Multimedia extension principals .52 9.6 Multimedia extension rights.52 9.6.1 Adapt52 9.6.2 Delete53 9.6.3 Diminish.53 9.6.4 Embed 53 9.6.5 Enhance .53 9.6.6 Enlarge.54 9.6.7 Execute.54 9.6.8 Install54 -,-,- ISO/IEC 21000-5:2004(E) vi ISO/IEC 2004 All rights reserved 9.6.9 Modify
23、.54 9.6.10 Move .55 9.6.11 Play .55 9.6.12 Print 55 9.6.13 Reduce55 9.6.14 Uninstall .56 9.7 Multimedia extension resources56 9.7.1 DiItemReference56 9.7.2 DiReference56 9.8 Multimedia extension conditions.56 9.8.1 Digital Item conditions56 9.8.2 Marking conditions57 9.8.3 Security conditions.57 9.8
24、.4 Transaction59 9.8.5 Resource attribute conditions .59 9.9 Multimedia extension patterns.60 9.10 Multimedia extension delegation constraints 60 9.11 Multimedia extension trust roots.60 9.12 Multimedia extension service descriptions60 9.13 Multimedia extension properties.60 9.14 Multimedia extensio
25、n name properties.60 Annex A (normative) W3C XML Schemas61 A.1 General .61 A.2 Schema for the Core Namespace61 A.3 Schema for the Standard Extension Namespace 72 A.4 Schema for the Multimedia Extension Namespace.80 Annex B (normative) Country, region, and currency Qualified Names.87 B.1 Namespace UR
26、I structure.87 B.2 Country Qualified Names .87 B.3 Region Qualified Names.87 B.4 Currency Qualified Names .88 Annex C (informative) Simplified equality algorithm 89 C.1 General .89 C.2 The equalQuickItem function.89 C.3 The equalQuickList function91 C.4 The equalQuickSimple function.91 Annex D (info
27、rmative) Example Rights Expressions92 D.1 Overview of examples.92 D.2 Simple end-user License example.92 D.3 Distribution License example 94 Annex E (informative) Design philosophy concerning extensions and profiles of this part of ISO/IEC 21000 99 E.1 General .99 E.2 Definition of extension99 E.3 D
28、efinition of profile99 E.4 Extensibility points99 Annex F (informative) Extension mechanisms for introducing new rights101 F.1 General .101 F.2 Use existing rights and conditions101 F.3 Use rightUri102 F.4 Use type extension103 F.5 Use element extension .103 Annex G (informative) Example profile of
29、this part of ISO/IEC 21000 .104 G.1 General .104 G.2 Profile elements.104 G.3 Profile schema.105 -,-,- ISO/IEC 21000-5:2004(E) ISO/IEC 2004 All rights reserved vii G.3.1 General.105 G.3.2 Example profile schema for the Core Namespace 105 G.3.3 Example profile schema for the Standard Extension Namesp
30、ace.106 G.3.4 Example profile schema for the Multimedia Extension Namespace .107 G.4 Profile signalling .107 G.5 Profile expressiveness.107 G.5.1 General.107 G.5.2 Everyone can play a song for the year of 2004107 G.5.3 A key holder can play a song three times within the year of 2004 108 Annex H (inf
31、ormative) Relationship between ISO/IEC 21000-6 and this part of ISO/IEC 21000 .110 Annex I (informative) Relationship between ISO/IEC 21000-2 and this part of ISO/IEC 21000.111 Annex J (informative) Example revocation mechanism.113 J.1 General.113 J.2 Designing a revocation mechanism113 J.3 Indicati
32、ng a revocation mechanism and freshness Condition when issuing a License.114 J.4 Checking for freshness115 J.5 Delegating revoke Right.116 J.6 Requesting revocation .117 J.7 Latency until revocation goes into effect.119 J.8 Latency until freshness duration passes.119 Annex K (informative) Patent sta
33、tements 120 Bibliography .121 ISO/IEC 21000-5:2004(E) viii ISO/IEC 2004 All rights reserved Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are me
34、mbers of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international o
35、rganizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO
36、/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as an International Standard requires approval by at least 7
37、5 % of the national bodies casting a vote. ISO/IEC 21000-5 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 29, Coding of audio, picture, multimedia and hypermedia information. ISO/IEC 21000 consists of the following parts, under the general title Info
38、rmation technology Multimedia framework (MPEG-21): Part 1: Vision, Technologies and Strategy Technical Report Part 2: Digital Item Declaration Part 3: Digital Item Identification Part 5: Rights Expression Language Part 6: Rights Data Dictionary Part 7: Digital Item Adaptation -,-,- ISO/IEC 21000-5:2
39、004(E) ISO/IEC 2004 All rights reserved ix Introduction The growth of the Internet has enabled worldwide distribution and consumption of valuable multimedia resources, reduced the cost of doing business, enabled new business models for industry participants, and provided consumers with unprecedented
40、 access to high-quality multimedia resources. Internal distribution, external distribution, and retail sales now are conducted on the Internet to establish cost effective, reliable, flexible, highly available, and secure means of managing the delivery of multimedia resources. Consumers routinely sea
41、rch for and download multimedia resources from sources world-wide and can conveniently redistribute those resources. This has fuelled the development of technologies to manage, secure, control, and automate the flow of multimedia resources over the Internet. The free and convenient flow of multimedi
42、a resources through the Internet presents many challenges to content owners and distributors. Before making high-quality and valuable multimedia resources available online, content owners want to be assured that their rights to those resources are respected. In addition, the business models and cont
43、racts of content distributors often involve conditions regarding distribution, such as fees, territory restrictions, time limits, and so on. To meet these requirements, the players involved in the online distribution and consumption of multimedia resources need to exchange information about the righ
44、ts, terms, and conditions associated with each resource at each step in the multimedia resource lifecycle. For example, a publisher needs to communicate the available consumption rights and the terms and conditions under which those rights may be exercised. To use the multimedia resources, a consume
45、r needs to know the types of usage allowed and the terms and conditions that must be met. In distribution and super distribution business models, this information needs to be communicated to each participant in the distribution chain. Depending on the business model, expressing rights, terms, and co
46、nditions can be simple or complex. In a simple example, a consumer might pay a flat fee to obtain unlimited rights to play a video file. In a more complex example, a video publisher might grant a distributor the right to sell usage rights for classic movie titles to consumers. The distribution agree
47、ment might specify the rights that consumers may purchase, the maximum fee the distributor may charge, and a percentage of the fee that must be paid to the publisher. In an end-to-end system, other considerations such as authenticity and integrity of Rights Expressions become important. For example,
48、 any party who issues rights to use or distribute multimedia resources must be identified and authorized. In addition, a Rights Expression may be accessed by different participants during its life cycle, which requires mechanisms and semantics for validating the authenticity and integrity of the Rig
49、hts Expression. To address many of these issues, a common Rights Expression Language that can be shared among all participants in this digital workflow is required. A common Rights Expression Language addresses important aspects of the interoperability issues inherent in digital multimedia resource dis