Share via

2.2.9.7.4 ISSUEDPRINCIPALS

  • Article

The ISSUEDPRINCIPALS element identifies a server principal that will issue licenses from this PL. The ISSUEDPRINCIPALS element contains the server public key, as well as the symmetric content key encrypted with the server public key.

The ISSUEDPRINCIPALS element MUST use the following template.

 <ISSUEDPRINCIPALS>
    <PRINCIPAL internal-id="1">
       <OBJECT type="MS-DRM-Server">
          <ID type="MS-GUID">
             [[- GUID -]]
          </ID>
          [[- name -]]
          [[- address -]]
       </OBJECT>
       [[- publickey -]]
       <SECURITYLEVEL name="Server-Version" value="1.0.3246.0" />
       <SECURITYLEVEL name="Server-SKU" value="RMS 1.0" />
       [[- enablingbits -]]
    </PRINCIPAL>
 </ISSUEDPRINCIPALS>

[[- GUID -]]: MUST be a unique GUID that identifies the server that issues licenses from this PL, represented as a literal ASCII string enclosed in braces. For an offline-published PL, this MUST be taken from the object of the ISSUER element of the CLC. For an online-published PL, this MUST be taken from the object of the principal of the ISSUEDPRINCIPALS element of the SLC.

[[- name -]]: In RMS 2.0, this element SHOULD be a string that describes the server's name. This element is not present in RMS 1.0. For an offline-published PL, this MUST be taken from the object of the ISSUER element of the CLC. For an online-published PL, this MUST be taken from the object of the principal of the ISSUEDPRINCIPALS element of the SLC.

[[-address -]]: MUST be an ADDRESS element of type "URL" containing the URL of the server. For an offline-published PL, this MUST be taken from the object of the ISSUER element of the CLC. For an online-published PL, this MUST be taken from the object of the principal of the ISSUEDPRINCIPALS element of the SLC.

[[- publickey -]]: MUST contain the server public key. The exponent MUST be set to 65537. The size MUST be the size of the public key, in bits. The modulus MUST contain the modulus of the server public key. For an offline-published PL, this MUST be taken from the PUBLICKEY of the ISSUER element of the CLC. For an online-published PL, this MUST be taken from the PUBLICKEY of the principal of the ISSUEDPRINCIPALS element of the SLC.

[[- enablingbits -]]: MUST contain the symmetric content key encrypted with the server public key, contained within an ENABLINGBITS element.