19 May
2014
19 May
'14
4:10 p.m.
Am 19.05.2014 um 17:53 schrieb Carl Hetherington:
I imagine the major problem might be trust in tieing
certificates to particular cinemas and screens. If Alice said
"Here is the certificate for Screen 1 in `My Great Cinema' in York,
England"
(and she was telling the truth) but then Mallory said "Here is
the certificate for Screen 1 in `My Great Cinema' in York,
England" (and he was lying): who do you believe? If you believe
Mallory, he could use that trust to obtain KDMs for his
equipment that were not due to him.
That's why TKR looks so simple (and seems to be favoured by now): The Equipment can
obtain KDMs for it's own certificate all on itself, automatically or manually
triggered, with the 'coresponding lookup address' comunicated in the CPL, so you
don't need to trust anyone, you do not even need to know where the cinema is. It
creates more lookup traffic, but no properly maintained database is needed. The KDMs are
created or stored at the site who owns the right for the content. That could be content
owners, indies themselves, or service companies.
I think, for now it would be sufficient to put up a help page on the dcp-o-matic site
depicting how certificates can be retrieved for various type of equipment, what the
difference is between serial number and certificate, etc. That would also be compatible
with DCP-o-matics current way to create KDMs from locally stored certificates.
- Carsten