![\"DCP](\"https://serverless.industries/assets/digital-cinema-disks.jpg\")
The Cinema Industry is using its own standards for creating and distributing movies in a secure way. The DCI (Digital Cinema Initiatives) specification defines everything from file formats and encryption to the projection systems itself.
\n\nThe specification itself is publicly available but relies on various IEEE (Institute of Electrical and Electronics Engineers) and SMPTE (Society of Motion Picture and Television Engineers) standards, which have to be purchased.
\n\nThis document will show a rough overview of the DCI workflow and describe in detail how the encryption of a DCI movie works. It will not show how to break any encryption and no encryption has been broken while writing this document. From our perspective, the DCI standard is safe.
\n\nThe author of this document has been operating a cinema since 2021, without any insight to the distribution or production side of the industry. Some information may be incomplete.
\n\nEnd of 2023 the movie WONKA was released. Some cinemas reported, that they are unable to start this movie on their projector.
\n\nThe reason was, that a certificate used by the distributor was expired. This certificate was used to sign the DCP files.
\n\nThe distributor published new files, starting the movie worked again.
\n\nOut of curiosity the author started to check how the validation process on the projector is working.
\n\ngraph TD\n classDef red fill:#a91900\n classDef green fill:#126500\n classDef purple fill:#650072\n legendprod[Producer]:::red\n legenddist[Distributor]:::green\n legendcine[Cinema]:::purple\n legendvendors[Projector Manufacturer]\ngraph LR\n classDef red fill:#a91900\n classDef green fill:#126500\n classDef purple fill:#650072\n\n dcpcreated([\"DCP\\ncreated\"]):::red --\"AES Key\"--> dkdmcreated\n dkdmcreated([\"DKDM\\ncreated\"]):::red --\"encrypted\\nAES Key\"--> dkdmp\n \n dkdmp[DKDM]:::green --> verify([\"Projector\\nverified\"]):::green\n dcpcreated --\"to Distributor\"--> dcp([\"DCP by\\nDownload or\\nHarddrive\"]):::green\n distcert[\"Distributor\\nCertificate\"]:::green --\"to Producer\"--> dkdmcreated\n \n verify --\"to Cinema\"--> kdm[KDM]:::purple\n dcp --\"to Cinema\"--> dcp2[\"DCP\"]:::purple\n cinecert[\"Projector\\nCertificate\"]:::purple --\"to Distributor\"--> verify\n trusted[\"Trusted Device List\"] --> verify\n dcp2 --> projector[Projector]:::purple\n kdm --> projector\nMost of the Projection Systems consists of Server, Audio Processor and Projector.
\n\ngraph LR\n server[Server] --> mediablock[Media Block]\n hdmi[HDMI Source] --> splitter[Audio Splitter]\n splitter --\"Video\"--> projector\n splitter --\"Audio\"--> sound\n subgraph Projector\n mediablock --\"Video\"--> projector[Projector]\n end\n \n projector --> screen[Theatre Screen]\n mediablock --\"Audio\"--> sound[Audio Processor]\n sound --> speakers[Speakers]\nThe Server stores the DCPs and KDMs, manages Playlists and controls the Projector and Audio Processor hardware.
\n\nMany Cinemas also connect their Theatre Automation (light, curtains, etc.) to the projector. By setting time-based commands into the playlists, lights and screen curtain can be controlled automatically. The Projector Server provides 12V/24V relays for this.
\n\nThese time-based commands are also used to set the correct Aspect Ratio and Volume on the different DCPs in a Playlist.
\n\nThe Server can be controlled remotely by a PC or in larger cinemas by a Theatre Management System.
\n\nThe DCPs are imported from USB/CRU hard drives or by internet download to the server. They are stored encrypted at all times.
\n\nThe projector includes a so called \u201cMedia Block\u201d which handles DRM and decryption. It receives the DCP data and the KDM to decrypt each frame in real time.
\n\nOn DCP playback the Projector will send the decrypted PCM audio to the Audio Processor which will then send each processed Audio Channel to the respective Speakers.
\n\n
A DCP is a folder which contains XML metadata files and multiple MXF files for the actual movie.
\n\nAwesomeMovie_FTR-2_S_DE-XX_DE-16_51_4K_20240119_SMPTE_OV\nAwesomeMovie: A short version of the movie titleFTR: Media Type, in this case \u201cFeature\u201d2: Version NumberS: Aspect ratio, in this case 2.35:1 aka \u201cSope\u201dDE: Audio LanguageXX: Subtitle Language, in this case is no subtitle availableDE: Territory16: Age Rating51: Audio channels, in this case 5.1 surround sound4K: Movie resolution, in this case 4096x1716 pixels20240119: Mastering timestampSMPTE: DCP standard, there is also Interop\nOV: Package type, original version or VF for version fileCredits: http://static.kinofreund.com/dcnt/
\n\nDuring the Mastering Process a static AES 128 bit key is generated and the original medium is converted into MXF files. One for picture and one for audio.
\n\nFor mastering the tool DCP-o-matic can be used. There are also some commercial products.
\n\ngraph LR\n movie[\"Source\"] --> mastering{{\"Movie Mastering\"}}\n mastering --> dcpkey[\"Static<br>AES-128 Key\"]\n mastering --> dcp[\"Digital Cinema Package (DCP)\"]\n dcp --> dcppics[\"Encrypted<br>Picture Data\"]\n dcp --> dcpsound[\"Encrypted<br>Audio Data\"]\n dcp --> dcpsub[\"Encrypted<br>Subtitle Data\"]\nThe video stream is encoded as one single JPEG2000 picture per frame. Each frame is encrypted with the same static AES key.
\n\nThe audio stream is (most likely) chunked into one BWF (Broadcast Wave Format) stream per frame and also encrypted separately. (The author haven\u2019t found any information about this yet.)
\n\nA DCP can have a size of 200 GB or more. Some newer releases can hit the Terabyte, if multiple versions (Languages, Subtitles, 2D/3D) are shipped on the same harddrive.
\n\nThe subtitles are provided in an XML file or are burned directly into the picture frames. If it is provided as an XML file, the projector will render the subtitles using a TTF font file.
\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<DCSubtitle Version=\"1.0\">\n <SubtitleID>xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx</SubtitleID>\n <MovieTitle>MovieTitle</MovieTitle>\n <ReelNumber>1</ReelNumber>\n <Language>de</Language>\n <LoadFont Id=\"Font1\" URI=\"Arial.ttf\" />\n <Font Id=\"Font1\" Color=\"ffffffff\" Effect=\"border\" EffectColor=\"ff000000\" Italic=\"no\" Script=\"normal\" Size=\"42\" Underlined=\"no\" Weight=\"normal\" AspectAdjust=\"1\" Spacing=\"0em\">\n <Subtitle SpotNumber=\"1\" TimeIn=\"00:07:45:094\" TimeOut=\"00:07:48:000\" FadeUpTime=\"000\" FadeDownTime=\"000\">\n <Text HPosition=\"0\" VAlign=\"bottom\" VPosition=\"7\">W\u00dcSTE VON NEVADA - HEUTE</Text>\n </Subtitle>\n </Font>\n</DCSubtitle>\nA supplemental DCP allows to reuse the Original DCP (OV, Original File) picture and replace audio or subtitle tracks. This makes it possible to support different languages without the need of shipping hundreds of gigabytes of duplicated picture data to the cinemas.
\n\ngraph TD\n f[PaktDerWoelfe_FTR_S-235_FR-XX_DE_51_4K_SC_20230926_EGB_SMPTE_OV]\n f --> a[PaktDerWoelBoC_FTR_S-235_DE-DE_DE_51_4K_SC_20231115_EGB_SMPTE_VF]\n f --> b[PaktDerWoelBoC_FTR_S-235_FR-DE_DE_51_4K_SC_20231115_EGB_SMPTE_VF]\nExample: One version file for German with German subtitles and one for French with German subtitles.
\n\nIt is even possible to provide differnt cuts of a movie for different regions.
\n\nTwo Open Source C++ implementations, both in active development, one from the industry!
\n\ncth103/libdcp, a C++ library written by the makers of DCP-o-matic:
\n\nasdcplib, a C++ library written by companies active in the cinema industry:
\n\n\n\n\nThe asdcplib project was originally exchanged by FTP. The project was on SourceForge between 2005 and 2008, when it moved to a release-only distribution via CineCert. As of late February 2019, its new home is on github.
\n\n \n
Almost all software, commercial or open source is using one of these libraries.
\n\nThe symmetric encryption key for the DCP has to be protected in some way. For this, the producer will create a DKDM XML file, containing the AES Key, which has been encrypted with the Certificate Public Key of the distributor.
\n\nThe distributor can then use the DKDM to create KDM XML files for cinemas. This means decrypting the DCP AES Key and encrypting it again with the Certificate Public Key of the target projection system.
\n\nBoth projectors and distributors use SSL certificate chains to sign and encrypt/decrypt data.
\n\nA chain always consists of a Root Certificate Authority (CA), Intermediate CA and a Leaf Certificate.
\n\ngraph TD\n a[\"dnQualifier=ZwVjULQy61,CN=.smpte-430-2.root,OU=movies.serverless.industries,O=serverless.industries\"]\n a --> b[\"dnQualifier=/JLF0JtscFuJahVNXfYu1w1u7SI=,CN=.smpte-430-2.intermediate,OU=movies.serverless.industries,O=serverless.industries\"]\n b --> c[\"dnQualifier=TEqiLeRuVnkbNOUsPlbDHIdp1tM=,CN=CS.smpte-430-2.leaf,OU=movies.serverless.industries,O=serverless.industries\"]\nThe field dnQualifier in the subject is the fingerprint of the public key of the generated certificate:
cat leaf.pem | openssl x509 -pubkey -noout | \\\n openssl base64 -d | dd bs=1 skip=24 2>/dev/null | \\\n openssl sha1 -binary | openssl base64\nScript for creating a certificate chain: create-smpte-chain.sh
\n\nA KDM is a XML file which contains the AES key of the DCP encrypted with the projectors Public Key.
\n\n<enc:CipherValue> elements contain the AES keys and some metadata for multiple DCP OV/VF, both encryptedDecrypt the <enc:CipherValue> with openssl:
cat KDM_KaizoTrap_FTR-1_F_XX-XX_20_2K_20240119_SMPTE_OV_My_nonexistent_cinema_Nonexistent_Screen_1.xml | \\\n xq -r '.DCinemaSecurityMessage.AuthenticatedPrivate.\"enc:EncryptedKey\"[0].\"enc:CipherData\".\"enc:CipherValue\"' | \\\n base64 -d | \\\n openssl pkeyutl -decrypt -inkey leaf.key -pkeyopt rsa_padding_mode:oaep > kdminfo.bin\nOutput of hexdump -C kdminfo.bin:
00000000 f1 dc 12 44 60 16 9a 0e 85 bc 30 06 42 f8 66 ab |...D`.....0.B.f.|\n00000010 28 fd 80 bf a9 bb f1 dc 48 d9 87 e9 5c c9 a5 41 |(.......H...\\..A|\n00000020 ab 8e 14 82 88 40 c3 90 2a 0b 46 21 b4 10 49 6b |.....@..*.F!..Ik|\n00000030 b8 a4 a9 4f 4d 44 41 4b 2e 2e 05 b5 bb ed 45 79 |...OMDAK......Ey|\n00000040 96 cc 9c d6 00 ed db 4c 32 30 32 34 2d 30 31 2d |.......L2024-01-|\n00000050 32 38 54 31 39 3a 30 30 3a 30 30 2b 30 31 3a 30 |28T19:00:00+01:0|\n00000060 30 32 30 32 34 2d 30 32 2d 30 34 54 32 30 3a 30 |02024-02-04T20:0|\n00000070 30 3a 30 30 2b 30 31 3a 30 30 4c 3a b6 ed 71 eb |0:00+01:00L:..q.|\n00000080 29 25 90 48 6b 4f 96 2f 44 f6 |)%.HkO./D.|\n0000008a\nThe file can now be sliced into single fields with dd:
# fingerprint base64 encoded\ndd if=kdminfo.bin bs=1 skip=16 count=20 status=none | base64\n\n# AES key in hexadecimal\ndd if=kdminfo.bin bs=1 skip=122 count=16 status=none | hexdump -C\n\n# date string in plain text ASCII\ndd if=kdminfo.bin bs=1 skip=97 count=25 status=none; echo\nFormat:
\n\n| Start | \nLength | \nDescription | \n
|---|---|---|
| 0 | \n16 | \nStructure ID, binary, static 0xf1dc124460169a0e85bc300642f866ab\n | \n
| 16 | \n20 | \nSigner certificate fingerprint, binary, KP2Av6m78dxI2YfpXMmlQauOFII=\n | \n
| 36 | \n16 | \nComposition Playlist UUID, 8840c390-2a0b-4621-b410-496bb8a4a94f\n | \n
| 52 | \n4 | \nKey Type, ASCII, MDAK = Main Sound | \n
| 56 | \n16 | \nKey UUID, 2e2e05b5-bbed-4579-96cc-9cd600eddb4c\n | \n
| 72 | \n25 | \nNot valid before date string, ASCII, 2024-01-28T19:00:00+01:00\n | \n
| 97 | \n25 | \nNot valid after date string, ASCII, 2024-02-04T20:00:00+01:00\n | \n
| 122 | \n16 | \nAES decryption key, binary, 0x4c3ab6ed71eb292590486b4f962f44f6\n | \n
openssl asn1parse -in leaf.pem -noout -strparse 4 -out - | \\\n openssl dgst -sha1 -binary | \\\n openssl base64\n<CompositionPlaylistId>\n<KeyId>\n<TypedKeyId> block<ContentKeysNotValidBefore> and <ContentKeysNotValidAfter>\n(This is a subset of checks documented in the DCI Compliance Test Plan)
\n\nThe projector itself has no trusted CA store for validating KDMs or DCPs. The whole process relies on the fingerprint stored in the <enc:CipherValue> and that the recipient cinema has no access to the Projectors Private Key.
Could one just build their own DCI/DCP projector?
\n\nYes and no.
\n\nThe software exists, in theory just a Linux PC and any projector / sound system is required.
\n\nThe distributors use a so called \u201cTrusted Device List\u201d provided by the DCI certified projection system manufacturers. Projectors which are not mentioned on these lists will not get a DCP/KDM from many distributors.
\n\nAlso a DCI certified projection system must be installed by an authorized company.
\n\nIf a cinema is not \u201cplaying by the rules\u201d, a 30k+ EUR projection system will become an expensive brick.
\n\nMXF is used by the whole movie and broadcasting industry.
\n\nThe paper of the SMPTE standard is again purchase-only.
\n\nSince the standard is quite complex, the Author used MXFInspect as a shortcut and only parsed a single Frame / Triplet.
\n\nBasic Encoding Rules:
\n\n1\n| BER Indicator | \nLength | \nContent | \n
|---|---|---|
\n0x83 = 10000011b= 3 bytes for length | \n \n0x004F0C= 20236d\n | \n 20236 bytes of data | \n
| Start | \nType | \nLength | \nDescription | \n
|---|---|---|---|
| 0 | \nDAT | \n16 | \nEncrypted triplet key | \n
| 16 | \nBER | \n1 | \nBER 0x83 = 10000011b = Next field is 3 bytes long | \n
| 17 | \nLEN | \n3 | \n\n0x004F0C = 20236d = Length of the data | \n
| 20 | \nBER | \n1 | \nBER 0x83 = 10000011b = Next field is 3 bytes long | \n
| 21 | \nLEN | \n3 | \n\n0x000010 = 16d = Length of the next field | \n
| 24 | \nDAT | \n16 | \nCryptographic Context Link | \n
| 40 | \nBER | \n1 | \nBER 0x83 = 10000011b = Next field is 3 bytes long | \n
| 41 | \nLEN | \n3 | \n\n0x000008 = 8d = Length of the next field | \n
| 44 | \nDAT | \n8 | \nPlaintext offset | \n
| 52 | \nBER | \n1 | \nBER 0x83 = 10000011b = Next field is 3 bytes long | \n
| 53 | \nLEN | \n3 | \n\n0x000010 = 16d = Length of the next field | \n
| 56 | \nDAT | \n16 | \nSource Key | \n
| 72 | \nBER | \n1 | \nBER 0x83 = 10000011b = Next field is 3 bytes long | \n
| 73 | \nLEN | \n3 | \n\n0x000008 = 8d = Length of the next field | \n
| 76 | \nDAT | \n8 | \nSource Length | \n
| 84 | \nBER | \n1 | \nBER 0x83 = 10000011b = Next field is 3 bytes long | \n
| 85 | \nLEN | \n3 | \n\n0x004e90 = 20112d = Length of the next field | \n
| 88 | \nDAT | \n20112 | \nEncrypted Source Value | \n
# slice the first frame from the MXF bodypartition\n# offsets from MXFInspect\ndd if=file.mxf bs=1 count=20256 skip=16524 of=block.bin\n\n# slice data from the frame\ndd if=block.bin skip=88 count=20112 bs=1 of=block-encrypted-data.bin\nThe DCP encryption key: 4c3ab6ed71eb292590486b4f962f44f6
Every Frame is using a unique IV (Initialization Vector), which ensures that the AES Block Cipher generates always different cipher texts and makes brute force harder. This works similar to a Password Salt.
\n\n# the data starts with 16 bytes of iv and 16 bytes of cv\n# AES iv bytes\ndd if=block-encrypted-data.bin bs=1 count=16 of=iv.bin\nOutput of hexdump -C iv.bin:
00000000 16 6e 7b d1 67 81 44 2e 7a ca de 3c 46 cc d7 39 |.n{.g.D.z..<F..9|\n00000010\nSee also \u201cECB Penguin\u201d on $searchengine for more details why the IV is so important.
\n\nSince there is no way to know if a decryption was successful when the content of the data is unknown, a CV (Check Value) is used. The Check Value is encrypted with the same AES Key + IV, but the plain text value is known.
\n\n# the data starts with 16 bytes of iv and 16 bytes of cv\n# AES cv bytes\ndd if=block-encrypted-data.bin bs=1 count=16 skip=16 of=cv.bin\ncat cv.bin | openssl enc -aes128 -d \\\n -K 4c3ab6ed71eb292590486b4f962f44f6 \\\n -iv 166e7bd16781442e7acade3c46ccd739 \\\n -nosalt -nopad | hexdump -C\n00000000 43 48 55 4b 43 48 55 4b 43 48 55 4b 43 48 55 4b |CHUKCHUKCHUKCHUK|\n00000010\nIf the result matches 0x4348554B4348554B4348554B4348554B the key is correct.
# Remove IV and CV from the encrypted data block\ndd bs=1 skip=32 \\\n if=block-encrypted-data.bin \\\n of=block-encrypted-data-nocryptinfo.bin\n# Decrypt data block\ncat block-encrypted-data-nocryptinfo.bin | \\\n openssl enc -aes128 -d \\\n -K 4c3ab6ed71eb292590486b4f962f44f6 \\\n -iv 166e7bd16781442e7acade3c46ccd739 \\\n -nosalt -nopad > block-decrypted-data.bin\nMXFs created by DCP-o-Matic contain libdcp in the hexdump, which indicates that the decryption was successful.
Output of hexdump -C block-decrypted-data.bin | head:
00000000 3a f0 b7 f5 53 49 eb b7 c0 c0 cb a5 c9 2f 35 19 |:...SI......./5.|\n00000010 00 00 00 00 00 00 00 00 00 00 07 ce 00 00 04 38 |...............8|\n00000020 00 00 00 00 00 00 00 00 00 03 0b 01 01 0b 01 01 |................|\n00000030 0b 01 01 ff 52 00 12 01 04 00 01 01 05 03 03 00 |....R...........|\n00000040 00 77 88 88 88 88 88 ff 5c 00 23 22 97 20 96 f0 |.w......\\.#\". ..|\n00000050 96 f0 96 c0 8f 00 8f 00 8e e0 87 50 87 50 87 68 |...........P.P.h|\n00000060 70 05 70 05 70 47 77 d3 77 d3 77 62 ff 55 00 13 |p.p.pGw.w.wb.U..|\n00000070 00 50 00 00 00 4d 40 00 00 00 00 49 00 00 00 00 |.P...M@....I....|\n00000080 49 ff 64 00 0a 00 01 6c 69 62 64 63 70 ff 90 00 |I.d....libdcp...|\n00000090 0a 00 00 00 00 4d 40 00 03 ff 93 ef fe 2c 71 ff |.....M@......,q.|\nAt first, the decrypted Frame could not be opened in GIMP.
\n\nTo enable programs to open a file in the correct way, many files contain so called \u201cMagic Signatures\u201d at its beginning.
\n\nThis magic value in block-decrypted-data.bin is incorrect for unknown reasons. When extracting a JPEG2000 frame from an unencrypted MXF, the signature is correct. As a simple hack, the author just copied the signature from the unencrypted MXF frame to the decrypted one:
# offset again from MXFInspect\ndd if=j2c_caa6b39e-bd57-4676-9797-112e96a6f0c3.mxf bs=1 skip=16524 count=20085 of=frame.bin\n\n# unencrypted frame does not contain crypto info\n# so we just have to slice the first BER header\ndd if=framedata.bin.j2k bs=1 skip=20 count=16 of=j2k_header.bin\n\n# now back to the decrypted mxf frame\n# replace signature\ncp j2k_header.bin frame.j2k\ndd if=block-decrypted-data.bin bs=1 skip=16 >> image.j2k\nIt should now be possible to open the file in GIMP. GIMP will show the frame with wrong colors, as MXF files use a custom color space.
\n\n![\"Movie](\"https://serverless.industries/assets/kaizotrap-decrypted.jpg\")
The original Frame with correct colors:
\n\n![\"Movie](\"https://serverless.industries/assets/kaizotrap-original.jpg\")
Credit: Kaizo Trap by Guy Collins Animation
\n\nEverything relies on \u201cnever reusing AES Keys\u201d and \u201cprotected private keys\u201d.
\n\n![\"Encryption](\"https://serverless.industries/assets/xkcd-encryption-security.png\")
Source: xkcd.com/538/
\n\nEncrypted DCPs use Forensic Watermarks which contain the serial number of the\nprojection system. So if a recorded copy of a movie appears online, the theatre will have to answer\nserious questions and may never get movies again.
\n\nPirated copies of movies have it\u2019s origin most likely from other sources.
\n\nDCI has released version 1.4.4 of the specification, which now allows playback of DCPs with expired signer certificate.
\n\nThe manufacturers already started to work on a software update.
\n\nThanks for reading and feedback goes to: Pliskin, babel
\n\nThere are alot of comments on Hacker News.
", "value": "The Cinema Industry is using its own standards for creating and distributing movies in a secure way. The DCI (Digital Cinema Initiatives) specification defines everything from file formats and encryption to the projection systems itself.\nThe specification itself is publicly available but relies on various IEEE (Institute of Electrical and Electronics Engineers) and SMPTE (Society of Motion Picture and Television Engineers) standards, which have to be purchased. Scope\nThis document will show a rough overview of the DCI workflow and describe in detail how the encryption of a DCI movie works. It will not show how to break any encryption and no encryption has been broken while writing this document. From our perspective, the DCI standard is safe.\nThe author of this document has been operating a cinema since 2021, without any insight to the distribution or production side of the industry. Some information may be incomplete. How it\u2019s started\nEnd of 2023 the movie WONKA was released. Some cinemas reported, that they are unable to start this movie on their projector.\nThe reason was, that a certificate used by the distributor was expired. This certificate was used to sign the DCP files.\nThe distributor published new files, starting the movie worked again.\nOut of curiosity the author started to check how the validation process on the projector is working. Glossar DCP: Digital Cinema Package - A folder which contains all components of a movie. Metadata, Subtitles, Audio and Picture in seperate files CPL: Composition Playlist - A DCP can contain multiple audio and video streams which will combined in a CPL KDM: Key Delivery Message - A XML file which contains the cryptographical information to allow a movie playback on a specific DCI certified projection system DKDM: Distribution Key Delivery Message - Similar to a KDM, but for a remastering or distribution system, not for a projection system Distribution Process graph TD classDef red fill:#a91900 classDef green fill:#126500 classDef purple fill:#650072 legendprod[Producer]:::red legenddist[Distributor]:::green legendcine[Cinema]:::purple legendvendors[Projector Manufacturer] graph LR classDef red fill:#a91900 classDef green fill:#126500 classDef purple fill:#650072 dcpcreated([\"DCP\\ncreated\"]):::red --\"AES Key\"--> dkdmcreated dkdmcreated([\"DKDM\\ncreated\"]):::red --\"encrypted\\nAES Key\"--> dkdmp dkdmp[DKDM]:::green --> verify([\"Projector\\nverified\"]):::green dcpcreated --\"to Distributor\"--> dcp([\"DCP by\\nDownload or\\nHarddrive\"]):::green distcert[\"Distributor\\nCertificate\"]:::green --\"to Producer\"--> dkdmcreated verify --\"to Cinema\"--> kdm[KDM]:::purple dcp --\"to Cinema\"--> dcp2[\"DCP\"]:::purple cinecert[\"Projector\\nCertificate\"]:::purple --\"to Distributor\"--> verify trusted[\"Trusted Device List\"] --> verify dcp2 --> projector[Projector]:::purple kdm --> projector Projection Systems\nMost of the Projection Systems consists of Server, Audio Processor and Projector. graph LR server[Server] --> mediablock[Media Block] hdmi[HDMI Source] --> splitter[Audio Splitter] splitter --\"Video\"--> projector splitter --\"Audio\"--> sound subgraph Projector mediablock --\"Video\"--> projector[Projector] end projector --> screen[Theatre Screen] mediablock --\"Audio\"--> sound[Audio Processor] sound --> speakers[Speakers]\nThe Server stores the DCPs and KDMs, manages Playlists and controls the Projector and Audio Processor hardware.\nMany Cinemas also connect their Theatre Automation (light, curtains, etc.) to the projector. By setting time-based commands into the playlists, lights and screen curtain can be controlled automatically. The Projector Server provides 12V/24V relays for this.\nThese time-based commands are also used to set the correct Aspect Ratio and Volume on the different DCPs in a Playlist.\nThe Server can be controlled remotely by a PC or in larger cinemas by a Theatre Management System.\nThe DCPs are imported from USB/CRU hard drives or by internet download to the server. They are stored encrypted at all times.\nThe projector includes a so called \u201cMedia Block\u201d which handles DRM and decryption. It receives the DCP data and the KDM to decrypt each frame in real time.\nOn DCP playback the Projector will send the decrypted PCM audio to the Audio Processor which will then send each processed Audio Channel to the respective Speakers.\nDCP Disks DCP Format\nA DCP is a folder which contains XML metadata files and multiple MXF files for the actual movie. Folder Naming Pattern AwesomeMovie_FTR-2_S_DE-XX_DE-16_51_4K_20240119_SMPTE_OV AwesomeMovie: A short version of the movie title FTR: Media Type, in this case \u201cFeature\u201d 2: Version Number S: Aspect ratio, in this case 2.35:1 aka \u201cSope\u201d DE: Audio Language XX: Subtitle Language, in this case is no subtitle available DE: Territory 16: Age Rating 51: Audio channels, in this case 5.1 surround sound 4K: Movie resolution, in this case 4096x1716 pixels 20240119: Mastering timestamp SMPTE: DCP standard, there is also Interop OV: Package type, original version or VF for version file\nCredits: http://static.kinofreund.com/dcnt/ Mastering Process\nDuring the Mastering Process a static AES 128 bit key is generated and the original medium is converted into MXF files. One for picture and one for audio.\nFor mastering the tool DCP-o-matic can be used. There are also some commercial products. graph LR movie[\"Source\"] --> mastering{{\"Movie Mastering\"}} mastering --> dcpkey[\"Static