User guide

ManualsBrandsDVS ManualsComputer equipmentClipster

101

102

103

104

105

106

107

108

109

110

6-13

Miscellaneous

–The private key of the Signing Key is used to create a signature

for the files of a DCP, i.e. it is used to encrypt hash values of the

files.

–The public key of the Signing Key will be part of a certificate

that will be attached to the extra files (if required, the certificate

chain will be attached).

The private key has to be set on CLIPSTER. Normally, it is stored en-

crypted in a PFX file and will require a password to be opened. The cre-

ator of a DCP has to provide this key (i.e. his own Signing Key).

Alternatively, you can use a system specific (unique) Signing Key that

DVS generates for each DCI Mastering system. It can be used instead

of your own key if you are sure that it meets the safety requirements of

your distribution chain (setting Use System Signing Key, see section

“Configuring the System for a DCP Creation” on page 2-25).

The public key of the Signing Key will be attached to the extra files of

the DCP via certificates. Thus, it will be distributed with them to the

D-Cinema player automatically. There the exhibitor can extract it from

the files and use it to verify the origin and validity of the DCP.

Self KDM Key

This key is not necessarily required. A DCP can be created without it,

but afterwards it would be impossible to load it again with a DVS DCI

Mastering system.

The key for a self KDM is in most respects identical to an Encryption

Key. While the private key is stored securely in the hardware of the re-

spective DVS DCI Mastering system, the complementary public key is

provided via a certificate file. You can find this file either already stored

in the installation directory of the DVS software on the respective sys-

tem or on a separate CD-ROM. However, compared to the Encryption

Key this key has to be set differently in the DVS software.

The most appropriate way to receive a Signing Key is to order

it from a certificate authority (CA). However, you can find in-

cluded in the delivery of the DCI Mastering feature a tool that

can be used to create a Signing Key (i.e. a self-signed certifi-

cate).

DVS grants you usage of this Signing Key under the provision

that you shall be directly and exclusively liable for its applica-

tion.

Further information about a self KDM and where it can be set

in the DVS software can be found in chapter “Using the DCP

and Self KDM” on page 4-1.