CDP.ex

security features assessment

Daniel Morandini, 12286

Introduction

media library (walk through)

HTTP Live Streaming (also known as HLS) is an HTTP-based adaptive bitrate streaming communications protocol developed by Apple Inc. and released in 2009.

https://en.wikipedia.org/wiki/HTTP_Live_Streaming

CDP

provide limited access to clients through the distribution of pay-per-view tokens

 

track each unique file access

allows product owners to

CDP

access unprotected content

access protected content, providing the proper access grant

allows users to

Implementation

based on the OAuth 2.0 framework, as of
RFC 6749

Authorization Scheme

+--------+                               +---------------+
|        |--(A)- Authorization Request ->|   Resource    |
|        |                               |     Owner     |
|        |<-(B)-- Authorization Grant ---|               |
|        |                               +---------------+
|        |
|        |                               +---------------+
|        |--(C)-- Authorization Grant -->| Authorization |
| Client |                               |     Server    |
|        |<-(D)----- Access Token -------|               |
|        |                               +---------------+
|        |
|        |                               +---------------+
|        |--(E)----- Access Token ------>|    Resource   |
|        |                               |     Server    |
|        |<-(F)--- Protected Resource ---|               |
+--------+                               +---------------+

Protocol Flow

Obtaining An Access Token (demo)

Conclusion

cdp.ex security features assessment

By Daniel Morandini

Made with Slides.com

cdp.ex security features assessment

  • 406

More from Daniel Morandini