ECS Encoding?

Design Document ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------Local EPUB Encryption ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------Use Cases: Transfer electronic documents to and from the e-book reader after initial load? Initial transfer of the document using a special transfer program E-book has no internet access? Electronic documents are encrypted? Are the documents encrypted while they are being read? When a document is being read it is un-ecrypted in memory When it is stored on the disk it is encrypted Need to be able to determine who the document belongs to? a license?

Phase 1 - License ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------1.) License the e-pub electronic document with the license information using the transfer program 2.) The e-book reader will only open documents that are licensed Challenges 1.) Stealing the license What is to prevent somebody from browsing through the system and stealing the license and then being able to verify documents on other devices? The license must be linked to something unique in the hardware or it itself must be the unique hardware id. The transfer program uses the hardware id to license the document at the time of transfer. When the modified e-book reader program runs it uses the hardware id to verify the licensed document. 2.) Book reader program is not modifiable. Sony e-book is reader is proprietary software, so the source is not available and it does not have an external API. One way around this is to create bootstrap program that will perform the license checks and then if successful....launch the e-book reader software. It might be possible to re-complie the existing executable into the the new executable...that way making one executable and ensuring that all the e-book reading

has to go through the modified code. Action Items 1.) Find unique hardware id on Sony E-book Reader Device and way to retrieve it on MontaVista Embedded Linux 2.) Figure out if I can envelop an existing executable into a new one.

-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------Notes: Sony Ebook Reader MontaVista Embedded Linux Strategy

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------Public and Private Key cryptography - public key and cipher text can be transferred without ever having to transfer the private key Digital Signature - authorizes the information

----------------------------------------------------------------------------------------------------------------------------------------------------mac address, license information, random seeded timestamp in pico seconds Typical use case for a digital signature is verify authenticity of electronic information. In the ebook case, the ebook reader program is the verifier and the epub electronic document is the information being verified. The private key is stored with the information and the party verifying the information has a public key. The ebook reader program is a closed system and not accessible so storage of the public key must be placed somewhere else on the device. If the document were to be transferred to another ebook reader then it cannot be read by that reader. The document can only be read by the device it was originally transferred too. The ebook reader program must be marked with the public key at the time of transfer. That way if the document is moved to another reader it won't open because that reader was not marked. Digital Signature
Digital signatures enable the recipient of information to verify the authenticity of the information's origin, and also verify that the information is intact. Public key digital signatures provide authentication and data integrity. A digital signature also provides non-repudiation, which means that it prevents the sender from claiming that he or she did not actually send the information. http://www.pgpi.org/doc/pgpintro/#p9 Digital Signature Implementation

The Digital Signature Algorithm (DSA) is a United States Federal Government standard or FIPS for digital signatures. It was proposed by the National Institute of Standards and Technology (NIST) in August 1991 for use in their Digital Signature Standard (DSS), specified in FIPS 186 [1], adopted in 1993. A minor revision was issued in 1996 as FIPS 186-1 [2]. The standard was expanded further in 2000 as FIPS 186-2 and again in 2009 as FIPS 186-3 [3] http://en.wikipedia.org/wiki/Digital_Signature_Algorithm