Securing the 2030 Vision

As a companion to the ten principles of the 2030 Vision published in 2019, MovieLabs and its member studios published a security white paper that lays out six core security principles for media production in the cloud. The paper describes a new security model for a future in which all assets are stored in the cloud and all processing of those assets runs in the cloud. It explains each of the six core principles and articulates practical ways that each principle can be achieved.

A key goal of the security white paper is to help guide the industry to a shared security architecture that can be implemented by studios, production companies, cloud providers, and application and service providers to deliver a strong foundation for protecting future media assets and the future cloud workflows that produce them.

The MovieLabs security architecture is designed for the paradigms of production in the cloud described in the 2030 Vision and to provide guidance for those implementing the principles of the 2030 Vision security white paper.

The architecture is a collaboration-oriented Zero-Trust Architecture (ZTA), concerned with securing and protecting the integrity of assets, processes, and workflows in the collaborative environment of media production. It is not concerned with providing perimeter security or protecting the underlying infrastructure of production, but is instead focused squarely on enabling secure production even on infrastructure that is not trusted.

The architecture describes the components of the security system and the interactions between those components. It strives to balance security, availability, usability, and cost-efficiency to deliver usable security.

However, we are at the very beginning of production in the cloud and cybersecurity is a rapidly evolving field. While every effort has been made to describe an architecture that is flexible and durable, this is an initial version. MovieLabs and the industry will learn as implementation of a new cloud security model proceeds, and it is expected that the architecture will evolve and improve through ongoing collaboration with partners across the ecosystem.