Towards Security of Native DRM Execution in HTML5

David Livshits, Alex, ra Mikityuk, Stefan Pham, Asaf Shabtai

2015 IEEE International Symposium on Multimedia (ISM), 411-416, 2015

In this paper we present an open, secure and flexible architectural approach for integrating Content Decryption Module (CDM) and Encryption Media Extensions (EME) interface with Trusted Execution Environment (TEE). This provides security hardening for playback of the Digital Rights Management (DRM) protected content without any need for a dedicated secure processor. This article is not focused on specific TEE approaches, but rather considers that any TEE can be potentially integrated with CDM through the EME interface. Our work introduces the approaches for integrating CDM with Intel SGX and ARM TrustZone TEE technologies.