CN102647393B - Digital signage content piracy prevention method - Google Patents
Digital signage content piracy prevention method Download PDFInfo
- Publication number
- CN102647393B CN102647393B CN201110007271.6A CN201110007271A CN102647393B CN 102647393 B CN102647393 B CN 102647393B CN 201110007271 A CN201110007271 A CN 201110007271A CN 102647393 B CN102647393 B CN 102647393B
- Authority
- CN
- China
- Prior art keywords
- key
- content
- encrypted
- terminals
- ciphertext
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Storage Device Security (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
The invention discloses a digital signage content piracy prevention method which can prevent content to be played from being pirated by tapping, copying and other ways by controlling and managing the content to be played in the application of digital signage. The technical scheme includes a secure operation framework, a key management framework, a random encrypted point extraction method, an encryption process, a decryption process, a terminal system and other contents. The key management framework is as follows: private keys are issued to playing terminals, the public keys of the terminals are stored in a server, and the terminals store respective private keys; the related keys are stored in dedicated hardware security modules, and the method of offline application, installation and upgrading is adopted. The technical points of encryption and decryption are as follows: all the data entering the terminals from the server needs to be encrypted; the terminals carry out decryption before playing; in order to increase the speed of played content encryption and decryption and reduce the occupation of terminal resources, the method of randomly extracting encrypted points to carry out encryption transformation is adopted to encrypt the content to be played; after being encrypted by the public keys of the terminals, the random encrypted point information is transmitted to the terminals; the one-time pad method is adopted to carry out the encryption transformation of the data of the extracted encrypted points, and one-time encryption keys are transmitted to the terminals after being encrypted by the public keys of the terminals; and the terminals first utilize respective private keys to decrypt the random encrypted point information and the one-time encryption keys, and then decrypt the content to be played.
Description
Technical field
The present invention relates to digital information safety technical field, specifically a kind of content piracy prevention method of digital signage.
Background technology
In recent years, with expanding economy, vast government unit, bank, enterprise, traditional media etc. using digital signage as
The main carriers of information issue, products propaganda and advertisement marketing, management service in content set is pushed away by way of networking
Send, rich media information is presented to audient by numeric display unit.
However, digital signage system wide variety of simultaneously, its safety issue also highlights further, often face
Face the risk of bootlegging broadcasting, that is, play content in transmission or during terminal buffers, unauthorized after being ravesdropping or copying
Local broadcasting.Still do not cause enough attention at present, just there is no preferable solution yet.
Content of the invention
For solving the above problems, the present invention provides a kind of content piracy prevention method of digital signage.
The present invention provides in a kind of application in digital signage, by the control playing content and management, preventing in broadcasting
Hold the method bootlegging broadcasting such as be ravesdropping, copy.Play content to include broadcasting control information, play content material information etc..
The application scenario of the present invention includes server and playback terminal.Server calculates secure data according to playing content
Structure;Server is encrypted conversion to playing content;Playback terminal, according to oneself private key and secured data structure, deciphers warp
Cross the broadcasting content after enciphering transformation, to prevent broadcasting content to be ravesdropping or to copy.
The present invention provides a kind of key management framework, for issuing, depositing required key or certificate.Key management frame
Frame includes option A and option b:
In option A, playback terminal preserves the private key certificate of oneself, and server also preserves all broadcastings being attached thereto eventually
The public key certificate at end.
In option b, using the distributed key management system on the basis of symmetric cryptographic algorithm.Playback terminal preserves oneself
Private key, server preserves the diffusion source key of all terminal secret key, and this diffusion source key is equivalent to the public key of playback terminal.
The storage of involved key and using all in secure hardware module in the present invention, and adopt off-line application, installation
With the mode updating it is ensured that the safety of key storage and use.
The present invention adopts the cipher mode of one-time pad.Server, when being encrypted broadcasting content, randomly generates and adds
Key, to be encrypted after the completion of, the public key of this encryption key playback terminal is encrypted, obtains single encryption key
Ciphertext, then together sends the ciphertext of the broadcasting content after enciphering transformation and single encryption key to playback terminal.Broadcast
Put terminal and first encryption key is decrypted according to oneself private key, then recycle single encryption key, decrypt broadcasting content.
The present invention provides a kind of encryption method randomly selecting pass point.All broadcasting contents are encrypted to be needed to expend
Greatly operand and operation time.For playing content, server randomly selects several points first, to the number on random point
According to being encrypted, then the public key of random point Information Pull playback terminal is encrypted, obtains the ciphertext of random point information,
Afterwards the broadcasting content after enciphering transformation, the ciphertext of single encryption key are sent to broadcasting eventually together with the ciphertext of random point information
End.Playback terminal is after decrypting random point with the private key of oneself, then carries out follow-up decryption oprerations.
The present invention provides a kind of terminal system playing content of multimedia.This terminal system includes:Cipher key storage block, with
Machine point deciphering module, single encryption key decryption module and broadcasting content decryption module.Random point deciphering module using terminal
Private key, the random point information ciphertext in deciphering secured data structure, obtain the plaintext of random point information;Single encryption key decryption
The private key of module using terminal decrypts single encryption key ciphertext, obtains single encryption key;Playing content decryption module makes
Use single encryption key, the broadcasting content after enciphering transformation is deciphered according to random point information.
The present invention passes through data encryption, prevents broadcasting content to be ravesdropping or illegally copy.
Brief description
Fig. 1 shows the key management framework schematic diagram of the present invention.
Fig. 2 shows a kind of random point structural representation of the present invention.
Fig. 3 shows the ciphering process of server.
Fig. 4 shows the decrypting process of playback terminal.
Specific embodiment
Be to allow the above-mentioned of the present invention and its objects, features and advantages can become apparent, cited below particularly go out preferred embodiment,
And coordinate accompanying drawing, describe in detail as follows.
In the application in digital signage proposed by the present invention, using to broadcasting content (list file, media file etc. are broadcast in inclusion)
The processing mode being encrypted, produces including broadcasting content ciphertext, random point information ciphertext, single encryption key ciphertext etc.
Corresponding security information bag, this bag is transferred to playback terminal.Playback terminal be provided with corresponding extract and deciphering module so that
Illegal terminal is unable to played file content, thus preventing media content by illegal wiretapping or copy.
Fig. 1 shows the key management framework of the present invention.Key management framework includes option A and option b.In option A,
Playback terminal preserves the private key certificate of oneself, and server preserves the public key certificate of all playback terminals being attached thereto.In option b
In, using the distributed key management system on the basis of symmetric cryptographic algorithm.Content server adopts public-key cryptography management system, broadcasts
Put terminal and preserve the private key of oneself, server preserves the key before the diffusion of all terminal secret key.Above-mentioned key all leaves in specially
In hardware device, the granting of key and renewal are all using offline mode.
Server includes several steps as follows to the complete procedure playing content-encrypt:
1. the size according to pending content, generates random point information by random number generation module, random point has multiple fixed
Right way of conduct formula, Fig. 2 shows a kind of random point message structure, the figure illustrates 10 random points, each random point original position
To define with size;
2. random number generation module produces a random number as the key of single file encryption;
3., according to single file encryption key and random point information, carry out adding to playing content by playing content-encrypt module
Close:
3.1, according to random point, extract, from played file, the clear data that will encrypt in plain text;
3.2 adopt symmetric key algorithm, are encrypted conversion using single file encryption key to clear data, obtain close
Civilian data;
Ciphertext data is replaced corresponding clear data in played file by 3.3, finally gives broadcasting after enciphering transformation
Put content ciphertext;
4. utilize the public key of terminal, " single file encryption key " is encrypted, obtains the ciphertext of single encryption key;
5. utilize the public key of terminal, " random point information " is encrypted, obtains the ciphertext of random point information, whole encryption
Process terminates.
After said process, the result that obtains is to play the ciphertext of content and the ciphertext by random point, single add respectively
The secured data structure of the compositions such as the ciphertext of key.Play the generating process of ciphertext of content as shown in Figure 3 a, random point
As shown in Figure 3 b, the generating process of the ciphertext of single encryption key is as shown in Figure 3 c for the generating process of ciphertext.
Playback terminal is sent to, the medium of transmission can be light together with ciphertext and secured data structure of content etc. being play
The wireless communication such as the wire message way such as cable, coaxial cable, netting twine or mobile communication, satellite communication, bluetooth, WLAN
Road, and move the external equipments such as storage.
The complete procedure of playback terminal deciphering includes several steps as follows:
1. extract the ciphertext of random point information from secured data structure, using terminal secret key, by random point deciphering module
According to random point ciphertext, decrypt random point information, such as Fig. 4 a;
2. extract the ciphertext of single encryption key from secured data structure, using terminal secret key, encrypted by single close
Key deciphering module, according to single encryption key ciphertext, decrypts single encryption key, such as Fig. 4 b;
3., according to random point information, the deciphering of content ciphertext, such as Fig. 4 c will be play by playing content decryption module:
3.1, according to random point, extract, from played file, the ciphertext data that will decipher in plain text;
3.2 adopt symmetric key algorithm, are decrypted conversion using single file encryption key to clear data, obtain bright
Civilian data;
Clear data is replaced corresponding ciphertext data in played file by 3.3, finally gives the plaintext of played file, entirely
Decrypting process terminates.
The foregoing is only present pre-ferred embodiments, so it is not limited to the scope of the present invention, any be familiar with basis
The personnel of top technology, without departing from the spirit and scope of the present invention, can further be improved on this basis and be changed, because
This protection scope of the present invention is defined when the scope being defined by claims hereof specification.
Claims (5)
1. one kind is in digital signage application, by playing the control of content and management, preventing from playing content by by eavesdropping
Or copy mode bootlegging broadcasting method it is adaptable to media issuing system based on file it is characterised in that:
Play content to include broadcasting control information and play content material information;Server is encrypted conversion to playing content,
For playing content, server provides a kind of method randomly selecting pass point, chooses several random points, using symmetric cryptography
Algorithm completes to the described enciphering transformation playing content according to selected by random point, and described enciphering transformation adopts adding of one-time pad
Close mode, encryption key randomly generates, to prevent broadcasting content to be ravesdropping or to copy;
Server calculates secured data structure according to described broadcasting content, and described secured data structure includes broadcasting content is taken out
The ciphertext of random point information of sample and the ciphertext of single encryption key, concretely comprise the following steps:
Generate described single encryption key at random to be encrypted to playing content, after completing enciphering transformation, using the public key of terminal,
Described single encryption key is encrypted, obtains the ciphertext of described single encryption key, then by described single encryption key
Ciphertext store in described secured data structure;
The public key of random point Information Pull playback terminal is encrypted the ciphertext forming random point information, and by random point information
Ciphertext stores in described secured data structure.
2. method according to claim 1 is it is characterised in that provide a kind of key management framework, for issuing, depositing institute
The key needing or certificate, key management framework includes option A and option b:
In option A, playback terminal preserves the private key certificate of oneself, and server preserves the public affairs of all playback terminals being attached thereto
Key certificate;
In option b, using the distributed key management system on the basis of symmetric cryptographic algorithm, playback terminal preserves the private of oneself
Key, server preserves the diffusion source key of all terminal secret key.
3. method according to claim 2 is it is characterised in that described key all leaves in special hardware device, close
The granting of key and updating all using offline mode it is ensured that the safety of key storage and use.
4. method according to claim 1 is it is characterised in that also include:
Broadcasting content after enciphering transformation and described secured data structure are transferred to broadcasting by network or mobile storage mode
Terminal.
5. method according to claim 4 is it is characterised in that also include:
Terminal uses the private key of oneself, the random point information ciphertext in deciphering secured data structure, obtains random point information in plain text;
Terminal uses the private key of oneself to decipher described single encryption key ciphertext, obtains described single encryption key;
Terminal uses described single encryption key, deciphers the broadcasting content after enciphering transformation according to described random point information, goes forward side by side
The related successor operation of row.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110007271.6A CN102647393B (en) | 2011-02-21 | 2011-02-21 | Digital signage content piracy prevention method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110007271.6A CN102647393B (en) | 2011-02-21 | 2011-02-21 | Digital signage content piracy prevention method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102647393A CN102647393A (en) | 2012-08-22 |
| CN102647393B true CN102647393B (en) | 2017-02-22 |
Family
ID=46659972
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110007271.6A Active CN102647393B (en) | 2011-02-21 | 2011-02-21 | Digital signage content piracy prevention method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102647393B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20140068036A1 (en) * | 2012-09-05 | 2014-03-06 | Sony Corporation | System and method for configuring an electronic sign for operation at an advertising site |
| CN102855449B (en) * | 2012-09-18 | 2016-01-20 | 上海基美文化传媒股份有限公司 | Broadcast Control safety control system |
| CN104253694B (en) * | 2014-09-27 | 2018-03-27 | 杭州电子科技大学 | A kind of time slot scrambling for network data transmission |
| CN105721903B (en) * | 2014-12-26 | 2017-12-12 | 乐视网信息技术(北京)股份有限公司 | The online method and system for playing video |
| CN106384025A (en) * | 2016-11-29 | 2017-02-08 | 首影科技(深圳)有限公司 | Display system and method for safely issuing and displaying content |
| CN111131311A (en) * | 2019-12-31 | 2020-05-08 | 北京中电普华信息技术有限公司 | Data transmission method based on block chain and block chain link point |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1761948A (en) * | 2003-03-18 | 2006-04-19 | 威德万技术公司 | System, method, and apparatus for securely providing content viewable on a secure device |
| CN1937495A (en) * | 2006-09-29 | 2007-03-28 | 清华大学深圳研究生院 | Digital copyright protection method and system for media network application |
| CN101488850A (en) * | 2008-01-18 | 2009-07-22 | 中兴通讯股份有限公司 | Method for ciphering content of multimedia broadcast |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7190791B2 (en) * | 2002-11-20 | 2007-03-13 | Stephen Laurence Boren | Method of encryption using multi-key process to create a variable-length key |
-
2011
- 2011-02-21 CN CN201110007271.6A patent/CN102647393B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1761948A (en) * | 2003-03-18 | 2006-04-19 | 威德万技术公司 | System, method, and apparatus for securely providing content viewable on a secure device |
| CN1937495A (en) * | 2006-09-29 | 2007-03-28 | 清华大学深圳研究生院 | Digital copyright protection method and system for media network application |
| CN101488850A (en) * | 2008-01-18 | 2009-07-22 | 中兴通讯股份有限公司 | Method for ciphering content of multimedia broadcast |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102647393A (en) | 2012-08-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8712041B2 (en) | Content protection apparatus and content encryption and decryption apparatus using white-box encryption table | |
| CN102647393B (en) | Digital signage content piracy prevention method | |
| CN108123794A (en) | The generation method and encryption method of whitepack key, apparatus and system | |
| US20130275755A1 (en) | Systems, methods and apparatuses for the secure transmission of media content | |
| CN104221023A (en) | Digital rights management | |
| CN102802036A (en) | System and method for identifying digital television | |
| CN103841469A (en) | Digital film copyright protection method and device | |
| CN108270558A (en) | A kind of private key introduction method based on temporary key pair | |
| CN101640785B (en) | Encrypting/decrypting system and encrypting/decrypting method for interactive network television | |
| CN101242275B (en) | Secure transmission method based on stream password encryption | |
| CN101132408B (en) | Stream media content processing method, equipment and system | |
| CN102111681A (en) | Key system for digital television broadcast condition receiving system | |
| CN103117850B (en) | A kind of method for building up of the cryptographic system based on random sequence database | |
| CN101626484A (en) | Method for protecting control word in condition access system, front end and terminal | |
| CN102594549A (en) | Multistage data encryption and decryption methods | |
| CN100461199C (en) | Method and device for encrypting and de-encrypting digital content | |
| CN100547955C (en) | A kind of method of protecting mobile multimedia service, system and equipment | |
| CN102917252B (en) | IPTV (internet protocol television) program stream content protection system and method | |
| JPH10107832A (en) | Cipher multi-address mail system | |
| CN106803980A (en) | The guard method of encrypted control word, hardware security module, master chip and terminal | |
| CN103546767B (en) | Content protection method and system of multimedia service | |
| CN101145932B (en) | A realization method and system for program stream secret key in mobile multi-media broadcast service | |
| CN101204037A (en) | System and method for efficient encryption and decryption of drm rights objects | |
| CN102594772B (en) | A kind of safe control method for playing back of digital signage | |
| CN101227271A (en) | Method and apparatus for enciphering and deciphering of contents |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| DD01 | Delivery of document by public notice |
Addressee: Beijing Honghe Window Scene Technology Co., Ltd. Document name: Notification of Patent Invention Entering into Substantive Examination Stage |
|
| C53 | Correction of patent for invention or patent application | ||
| CB02 | Change of applicant information |
Address after: C1104 room 100085 Beijing city Haidian District Third Street No. 9 C Applicant after: HONGHE TECHNOLOGY CO., LTD. Address before: 100085, room 402, building A, Ka Wah building, No. 9, 3rd Street, Haidian District, Beijing Applicant before: Beijing Honghe Window Scene Technology Co., Ltd. |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: APPLICANT; FROM: BEIJING HONGHE WINSIGN TECHNOLOGY CO., LTD. TO: HONGHE TECHNOLOGY CO., LTD. |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP01 | Change in the name or title of a patent holder | ||
| CP01 | Change in the name or title of a patent holder |
Address after: C1104 room 100085 Beijing city Haidian District Third Street No. 9 C Patentee after: Hitevision Polytron Technologies Inc Address before: C1104 room 100085 Beijing city Haidian District Third Street No. 9 C Patentee before: HONGHE TECHNOLOGY CO., LTD. |