An Access Control System for Multimedia Content Distribution

  • Manuel Sánchez
  • Gabriel López
  • Óscar Cánovas
  • Juan A. Sánchez
  • Antonio F. Gómez-Skarmeta
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4043)


Multimedia content distribution has appeared as a new growth market offered by network providers, defining resource access infrastructures able to support both wired and wireless accesses. Although these infrastructures have been widely studied in the last years, the main aim of those works has been focused more on the distribution process than on a suitable security infrastructure to protect that content. Therefore, the study of security systems able to offer authentication, authorization and other security-related requirements for those kinds of scenarios is still an open research field. In this paper, we propose a new scheme which takes advantage of a previously existing underlying authorization infrastructure among the involved organizations, the NAS-SAML system, to build a multimedia content distribution with an advanced and extensible authorization mechanism. The target scenario is the one proposed by the VIDIOS project, which defines an architecture for multimedia transmissions across error prone networks such as Internet backbones and mobile access networks.


Access Control Multimedia Content Content Provider Internet Service Provider Access Control Policy 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Apache tomcat project home page,
  2. 2.
  3. 3.
    End-to-End QoS through Integrated Management of Content, Networks and Terminals, ENTHRONE (Funded under 5th FWP),
  4. 4.
    Live networks home page,
  5. 5.
    MiniSIP project home page,
  6. 6.
    OpenDIAMETER project home page,
  7. 7.
    OpenSAML project home page,
  8. 8.
    SunXACML project home page,
  9. 9.
    The Innovative Rights and Access Management Inter-platform SolUtion (TIRAMISU), Funded under 6th FWP,
  10. 10.
    VIdeo DIstribution Over MPLS networks supporting heterogeneous format environments (VIDIOS),
  11. 11.
    Arkko, J., Carrara, E., Lindholm, F., Naslund, M., Norrman, K.: MIKEY: Multimedia Internet KEYing, RFC 3830 (August 2004)Google Scholar
  12. 12.
    Arkko, J., Carrara, E., Lindholm, F., Naslund, M., Norrman, K.: Key Management Extensions for Session Description Protocol (SDP) and Real Time Streaming Protocol (RTSP), IETF Draft (June 2005)Google Scholar
  13. 13.
    Blake, S., Black, D., Carlson, M., Davies, E., Wang, Z., Weiss, W.: An architecture for Differentiated Services, RFC 2475 (December 1998)Google Scholar
  14. 14.
    Cánovas, Ó., López, G., Gómez-Skarmeta, A.F.: A credential conversion service for SAML-based scenarios. In: Katsikas, S.K., Gritzalis, S., López, J. (eds.) EuroPKI 2004. LNCS, vol. 3093, pp. 297–305. Springer, Heidelberg (2004)CrossRefGoogle Scholar
  15. 15.
    de Laat, C., Gross, G., Gommans, L., Vollbrecht, J., Spence, D.: Generic AAA Architecture, RFC 2903 (August 2000)Google Scholar
  16. 16.
    Ferraiolo, D., Sandhu, R., Gavrila, S., Kuhn, D.R., Chandramouli, R.: Proposed nist standard for role-based access control. ACM Transaction on Information and System Security 4(3) (2001)Google Scholar
  17. 17.
    Jayarama, P., López, R., Ohba, Y., Parthasarathy, M., Yegin, A.: PANA Framework. IETF Draft (2005)Google Scholar
  18. 18.
    LAN MAN Standards Committee of the IEEE Computer Society. IEEE Draft P802.1X/D11: Standard for Port based Network Access Control (March 2001)Google Scholar
  19. 19.
    López, G., Cánovas, O., Gómez, A.F.: Use of xacml policies for a network access control service. In: Proceedings 4th International Workshop for Applied PKI, IWAP 2005, pp. 111–122. IOS Press, Amsterdam (2005)Google Scholar
  20. 20.
    López, G., Cánovas, O., Gómez, A.F., Jimenez, J.D., Marín, R.: A network access control approach based on the aaa architecture and authorzation attributes. Journal of Network and Computer Applications (JNCA 2006) (to be published)Google Scholar
  21. 21.
    López, G., Cánovas, Ó., Gómez-Skarmeta, A.F., Otenko, S., Chadwick, D.W.: A heterogeneous network access service based on PERMIS and SAML. In: Chadwick, D., Zhao, G. (eds.) EuroPKI 2005. LNCS, vol. 3545, pp. 55–72. Springer, Heidelberg (2005)CrossRefGoogle Scholar
  22. 22.
    Morita, N., Karlsson, G.: Framework of Priority Promotion Scheme. IETF Draft (October 2003)Google Scholar
  23. 23.
    Open Mobile Alliance. DRM specification, Draft Version 2.0 (April 2004)Google Scholar
  24. 24.
    Sanchez, M., Lopez, G., Cánovas, O., Gómez-Skarmeta, A.F.: Grid Authorization Based on Existing AAA Architectures (2006) (submitted to the Fourth International Workshop on Security In Information Systems WOSIS-2006)Google Scholar
  25. 25.
    Schulzrinne, H., Rao, A., Lanphier, R.: Real Time Streaming Protocol (RTSP), RFC 2326 (April 1998)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • Manuel Sánchez
    • 1
  • Gabriel López
    • 1
  • Óscar Cánovas
    • 2
  • Juan A. Sánchez
    • 1
  • Antonio F. Gómez-Skarmeta
    • 1
  1. 1.Department of Information Engineering and Communications 
  2. 2.Department of Computer EngineeringUniversity of MurciaSpain

Personalised recommendations