近年來隨著無線網路傳輸技術的快速發展和數位家庭相關的軟硬體設備發展成熟，讓每個家庭開始都能享受這些科技所帶來的便利性。尤其是提供連結這些數位家庭設備的UPnP網路技術，它讓設備之間能無縫的連結，並且無須設定便能相互溝通、操作。這些優點讓使用者能非常容易的去使用這些數位家庭設備。然而相關的安全議題也相繼浮上台面，在UPnP的網路環境中使用者身份並無任何區別，因此使用者無法對家中的設備、服務、內容進行授權管理。同性質的服務、內容分散在各個設備之中，對使用者來說存取十分不便。而當這些設備、服務、內容發生異常或錯誤時，也缺乏良善的處理機制。此外，使用者也會開始有家庭對家庭間的連結需求，但同樣的現有的UPnP網路環境並無法提供便利而安全的家庭與家庭間內容交換機制。
針對上述的問題，本論文重新檢視UPnP網路環境，藉由資源虛擬化、中央管控網路架構與容錯的設計，進而提供相關資源認證、授權、稽核、異常管理的能力，並且使用PKI的架構來提供家庭對家庭間的認證與安全連線。最終我們設計與實作出UPnP數位家庭網路之安全管理系統，它提供了安全而便利的數位家庭網路環境並與標準UPnP/UPnP AV相容。在使用者方面，提供了使用者的認證、授權、稽核。在數位家庭資源方面，提供受管理的網路、設備、服務、內容，並提供整合性和可客制化的服務與內容入口，智慧的設備/服務/內容管理。在異常管理方面，提供容錯的機制。最後針對家庭與家庭間，提供互信家庭的機制，支援安全的跨家庭使用者漫遊、內容分享與異地存取。

The rapid development in wireless network technology, together with the extensive progress in the digital home hardware and software, have allowed every family to enjoy the conveniences of these new technologies. In particular, the UPnP network technologies link various digital home devices together, coming alone with seamless connection and configuration-less environment. These benefits make it very easy for users to enjoy their digital home devices. However, related security issues have begun to surface one after another. Under a UPnP network environment, users’ identity are not distinguished and therefore, they can not authorize the usage of those devices, services and content. Devices with similar types of service and content lack of integration, it is inconvenient when users need to search or access. In addition, there seems to be a lack of proper handling mechanisms when these devices, services, and content encounter anomaly problems and errors. Lastly, family users will also inevitably have connection requirements between homes but unfortunately, the current UPnP network environment is unable to provide convenient and secured home-to-home content exchange mechanisms.
To address the issues mentioned above, this study surveyed the UPnP network environment from a fresh perspective. And through virtual resources, central control network framework and fault tolerance design, it further provides abilities to do related resource authentication, authorization, auditing, and fault handling. It also uses PKI framework to provide the authentication and secure connection between homes. Lastly, we designed and implemented a secure Management System for a UPnP digital home network. It provides secure and convenient home network environment that is compatible with UPnP/UPnP AV standards. On the user’s control aspect, we provided user authentication, authorization, and auditing functionalities. On the home resource management aspect, we provided networks, devices, services, and content which can be controlled and managed. And we also provide integrated and customized entries for service and content. We have a management system with smart and user friendly features. On the anomaly management aspect, we provide fault detection, handling, and basic fault tolerance mechanism. Lastly, we provide trusted homes mechanism, supporting secure user roaming outside their homes, allowing content sharing between trusted homes, and ensuring that users roaming in other locations may still access specific content in their homes.

List of Figures vi
List of Tables x
Chapter 1 Introduction 1
1.1 Overview 1
1.2 Motivations 2
1.3 Goals 3
1.4 The Contributions of This Dissertation 4

Chapter 2 Background 6
2.1 UPnP 6
2.2 UPnP AV 10
2.3 DLNA 12
2.4 A Conceptual Framework for System Fault Tolerance 15
2.5 Resource Management for UPnP Home Network 17
2.6 Authentication and Authorization of Users for UPnP Home Network 18
2.7 Inter-Home Sharing Based on UPnP AV 19

Chapter 3 System Design 21
3.1 Design Issues 21
3.2 System Architecture 23
3.3 UPnP 24
3.4 Virtualized Mechanism for UPnP Resources 26
3.5 User Authentication 28
3.6 User Authorization and Auditing 29
3.6.1 Authorization and Auditing of Devices and Services 30
3.6.2 Authorization and Auditing of Content 30
3.6.3 The Design of Authorization Privileges 32
3.7 Integrated Media Server 33
3.8 Content Collecting and Publishing Subsystem 35
3.9 Establishing Trusted Home Relations 36
3.10 Cross Home Roaming 38
3.11 Mutually Trusted Home Information Exchanging Mechanism 39
3.12 Guest Content Management 40
3.13 Anomaly Management and Fault Tolerance 42

Chapter 4 System Implementation 45
4.1 System Components 45
4.1.1 Home Network Controller 45
4.1.2 Content Collecting and Publishing Subsystem 48
4.2 UPnP 50
4.3 Virtual UPnP Device and Service 53
4.4 Integrated Media Server 57
4.4.1 Privileged and Integrated Content List 57
4.4.2 Content Redirect Agent 61
4.4.3 Content Sharing between Trusted Homes 64
4.5 Authentication Manager 65
4.6 Trusted Homes Management 71
4.6.1 Trusted Home Establishment and Digital Certificate 71
4.6.2 Trusted Home Manager 74
4.6.3 Roaming in Trusted Homes 75
4.7 Content Collecting and Publishing Subsystem 77
4.8 Guest Content Management 80
4.9 Anomaly Management and Fault Tolerance 82
4.10 Digital Home Management System 86

Chapter 5 Ubiquitous Home Multimedia Service 88
5.1 Scenarios 88
5.2 System Design 90
5.3 Experiment 96

Chapter 6 Household Effects Management System 98
6.1 System Design 98
6.1.1 Functions 98
6.1.2 RFID Middleware 103
6.2 Implementation 103

Chapter 7 Conclusions and Future Works 107

Bibliography 109

[1] B. Otjacques, M. Krier, F. Feltz, D. Ferring and M. Hoffmann, “Helping older people to manage their social activities at the retirement home,” British Computer Society Conference on Human-Computer Interaction, pp. 375-380, 2009.
[2] C. L. Huang, P. C. Chung, M. H. Tsai, Y. K. Yang, and Y. C. Hsu, “Reliability improvement for an RFID-based psychiatric patient localization system,” Computer Communications, Vol. 31, No. 10, pp. 2039-2048, Jun. 2008.
[3] C. W. Huang and K. M. Lee, “Pervasive Service Model: Using OWL-S to extend Service Model in OSGi Service Platform,” Journal of Internet Technology, Vol. 3, Issue 9, pp. 281-287, August 2008.
[4] E. W. T. Ngai, K. K. L. Moon, F. J. Riggins and C. Y. Yi, “RFID research : an academic literaturere view (1995-2005) and future research directions,” International Journal of Production Economics, Vol. 112, No. 2, pp.510-520, 2009.
[5] G. Ferrer, N. Dew and U. Apte, “When is RFID right for your service?,” International Journal of Production Economics, vol. 124, no.2, pp414-425, 2009.
[6] J. D. Tseng, W. D. Wang and R. J. Ko, “An UHF Band RFID Vehicle Management System,” IEEE International Workshop on Anti-counterfeiting, pp. 390-393, April 2007.
[7] J. T. Kim, Y. J. Oh, H. K. Lee, E. H. Paik and K. R. Park, “Implementation of the DLNA Proxy System for Sharing Home Media Contents,” IEEE Transactions on Consumer Electronics, Vol. 53, pp.139-144 , 2007.
[8] K. Römer, T. Schoch, F. Mattern and T. Dübendorfer, “Smart Identification Frameworks for Ubiquitous Computing Applications,” IEEE International Conference on Pervasive Computing and Communications, pp. 689-700, 2004.
[9] L. M. Ni, Y. Liu, Y. C. Lau and A. P. Patil, “LANDMARC:indoor location sensing using active rfid,” IEEE International Conference on Pervasive Computing and Communications, Vol. 10, pp. 407-415, 2003.
[10] L.T. Lee and W.A. Shan, “An Integrated Logical Structure-Based UPnP Architecture,” 2005.
[11] Microsoft Corporation, “Universal Plug and Play Device Architecture Reference Specification, Version 1.0", 2000.
[12] M. Jeronimo and J. Weast, “UPnP design by example,” Intel Press, 2003.
[13] M. Mamei and F. Zambonelli, “Pervasive Pheromone-Based Interaction with RFID Tags,” ACM Transactions on Autonomous and Adaptive System, Vol. 2, Issue 2, No. 4, June 2007.
[14] M. Minoh and T. Yamazaki, “Daily life support experiment at ubiquitous computing home,” International Conference on Information Processing and Management of Uncertainty in Knowledge-Based Systems, pp. 534-540, July. 2006.
[15] M. Miura, S. Ito, R. Takatsuka and S. Kunifuji, “Aware Group Home Enhanced by RFID Technology,” International Conference on Knowledge Based Intelligent Information and Engineering Systems, Vol. 5178, pp.847–854, Sept. 2008.
[16] M. Jakab, M. Kropfberger, M. Ofner, R. Tusch, H. Hellwagner and L. Böszörmenyi, “Metadata Integration and Media Transcoding in Universal-Plug-and-Play (UPnP) Enabled Networks,” Euromicro Conference on Parallel, Distributed and Network-based Processing, pp. 363–372, 2007.
[17] M. Kangas, “Authentication and Authorization in Universal Plug and Play Home Networks,” Ad Hoc Mobile Wireless Networks – Research Seminar on Telecommunications Software, January 2004
[18] N.C. Wu, M.A. Nystrom, T.R. Lin and H.C. Yu, “Challenges to global RFID adoption,” Technovation, Vol. 26, Issue. 12, pp. 1317–1323, Dec. 2006.
[19] “OSGi Service Platform Core Specification, Release 4,” Version 4.1, OSGi Alliance, 2007.
[20] P. Dobrev, D. Famolari, C. Kurzke, and B.A. Miller, “Device and service discovery in home networks with OSGi”, IEEE Magazine on Communication, Vol. 40, Issue 8, pp. 86-92, Aug. 2002.
[21] R. Iglesias, N. G. Segura and M. Iturburu, “The Elderly Interacting with a Digital Agenda through an RFID Pen and a Touch Screen,” ACM SIGMM international workshop on Media studies and implementations that help improving access to disabled users, pp. 63-70, 2009.
[22] R. Kistler, S. Knauth and A. Klapproth, “UPnP in Integrated Home- and Building Networks,” IEEE International Workshop on Factory Communication Systems, 2008.
[23] R. Tesoriero, R. Tebar, J. A. Gallud, M.D. Lozano and V. M. R. Penichet, “Improving location awareness in indoor spaces using RFID technology,” Expert Systems with Applications, Vol. 37, Issue 1, pp. 894-898, 2010
[24] Satoshi Konno, “CyberLink for Java Programming Guide,” 2005.
[25] S. Chetan, A. Ranganathan and R. Campbell, “Towards fault tolerant pervasive computing,” IEEE Technology and Society,Vol. 24, No.1, pp. 38–44, 2005.
[26] “SIP: Session Initiation Protocol,” IETF RFC 2543, 1999.
[27] T. Hwang, H. Park, and J. Chung, “Personal Mobile A/V Control Point for Home-to-Home Media Streaming,” IEEE Transaction on Consumer Electronics, Vol. 54, No.1, pp.87-92, January 2008.
[28] T. Kim, J. Shin and S. Tak, “Cell Planning for Indoor Object Tracking Based on RFID,” International Conference on Mobile Data Management: Systems, Services and Middleware, pp.709-713, 2009.
[29] T. Mori, “Active rfid-based object management system in sensor-embedded environment,” Future Generation Communication and Networking, Vol.2, pp. 25-30, 2007.
[30] T. Miaoqing, “Service Discovery between Multiple Home Networks,” Seminar on Internetworking, 2007.
[31] T. Yamazaki, “Ubiquitous Home: Real-Life Testbed for Home Context-Aware Service,” International Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities and Workshops, pp. 54-59, 2005.
[32] “UPnP AV Architecture Version 1.0.,” UPnP Forum
[33] “UPnP Device Architecture 1.0.,” UPnP Forum, 2003.
[34] W. L. Heimerdinger and C. B. Weinstock, “A conceptual framework for system fault tolerance,” Technical Report CMU/SEI-92-TR-33, Oct. 1992
[35] W. Lee, “An intelligent agent for rfid-based home network system,” International Conference on Embedded and Ubiquitous Computing, Vol.3824, pp. 499-508, 2005.
[36] X. Li, G. Xu and L. Li, “RFID based Smart Home architecture for improving lives,” IEEE International Workshop on Anti-counterfeiting, Security, pp. 440-443, April 2007.
[37] Y.J. Lin, M.J. Su, S.J. Chen, S.C. Wang, C.I. Lin and H.S. Chen, “A study of ubiquitous monitor with RFID in an elderly nursing home”, International Conference on Multimedia and Ubiquitous Engineering, pp.336-340, 2007.
[38] Y. S. Son ,T. Y. Ku ,J. H. Park and K. D. Moon, “Design of the Autonomous Fault Processing Mechanism for Home Network,” IEEE International Symposium on Consumer Electronics, pp.1-4, June 2007.
[39] CP base driver, http://domoware.isti.cnr.it/
[40] CyberGarage, http://www.cybergarage.org/
[41] CyberLink, http://www.cybergarage.org/net/upnp/cc/
[42] CyberLink for Java, http://www.cybergarage.org/cgi-bin/twiki/view/Main/CyberLinkForJava
[43] Developer Tools for UPnP, http://opentools.homeip.net/dev-tools-for-upnp
[44] DLNA, “http://www.dlna.org/home”
[45] Gmediaserver, http://www.gnu.org/software/gmediaserver/
[46] JDK, http://java.sun.com/
[47] Knopflerfish, http://www.knopflerfish.org/
[48] Media Player, http://www.mplayerhq.hu/
[49] OSGi Alliance, http://www.osgi.org/
[50] Overview: Making PCs Easier to Set Up and Use, http://www.deviceforge.com/articles/AT9110123456.html
[51] Universal Plug and Play, http://www.upnp.org/
[52] UPnP Technology and Rich Media for the Digital Home, http://software.intel.com/en-us/articles/upnp-technology-and-rich-media-for-the-digital-home-part-1/
[53] VLC Media Player, http://www.videolan.org/vlc/