CN104253794B - A kind of method and device for the scope that control content uses - Google Patents

A kind of method and device for the scope that control content uses Download PDF

Info

Publication number
CN104253794B
CN104253794B CN201310262777.0A CN201310262777A CN104253794B CN 104253794 B CN104253794 B CN 104253794B CN 201310262777 A CN201310262777 A CN 201310262777A CN 104253794 B CN104253794 B CN 104253794B
Authority
CN
China
Prior art keywords
anchor point
point device
terminal
content
digital
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310262777.0A
Other languages
Chinese (zh)
Other versions
CN104253794A (en
Inventor
刘昆
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201310262777.0A priority Critical patent/CN104253794B/en
Publication of CN104253794A publication Critical patent/CN104253794A/en
Application granted granted Critical
Publication of CN104253794B publication Critical patent/CN104253794B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Computer And Data Communications (AREA)
  • Small-Scale Networks (AREA)

Abstract

A kind of method and device of the scope used the invention discloses control content, belongs to the communications field.Methods described includes:Asked according to the content-on-demand of user, obtain the encrypted media streams of the content and the digital publishing rights of the content;According to the digital publishing rights of the content, the digital publishing rights type for determining the content is home network copyright;It whether there is the first anchor point device in current local network where search terminal, first anchor point device is the non-moving anchor point device in the family lan of the terminal;If there is first anchor point device, it is determined that current local area network where the terminal is the family lan of the terminal, decrypts the encrypted media streams of the content using the digital publishing rights and plays out.The present invention can realize that control user uses content to be used in home network.

Description

A kind of method and device for the scope that control content uses
Technical field
The present invention relates to the communications field, the method and device for the scope that more particularly to a kind of control content uses.
Background technology
With the fast development of communication network technology, sales of the contents business can be given sales of the contents based on communication network technology User, user can buy content from sales of the contents business and using the contents of purchase.
Wherein, the sales of the contents chamber of commerce defines the scope that user uses content, and a kind of typical scene is that sales of the contents is decided through consultation The scope that the content of adopted user uses is family lan, i.e., sales of the contents business allows user interior using this in family lan Hold, without allowing user to use the content in other networks in addition to family lan.
At present sales of the contents business by use range for family lan sales of the contents to user after, it is also not practical Method control the user to use the content in family lan.
The content of the invention
In order to realize that control user uses content in family lan, the invention provides a kind of control content to make The method and device of scope.The technical scheme is as follows:
A kind of method for the scope that first aspect, control content use, methods described include:
Asked according to the content-on-demand of user, obtain the encrypted media streams of the content and the digital publishing rights of the content;
According to the digital publishing rights of the content, the digital publishing rights type for determining the content is home network copyright;
It whether there is the first anchor point device in current local network where search terminal, first anchor point device is described Non-moving anchor point device in the family lan of terminal;
If there is first anchor point device, it is determined that current local area network where the terminal is the family of the terminal LAN, decrypt the encrypted media streams of the content using the digital publishing rights and play out.
With reference in a first aspect, in the first possible implementation of first aspect, the number according to the content Letter is weighed, and the digital publishing rights type for determining the content is home network copyright, including:
The digital publishing rights of the content are parsed, determine to mark comprising family in the digital publishing rights, it is determined that the content Digital publishing rights type be home network copyright.
With reference in a first aspect, in second of possible implementation of first aspect, the search terminal place is current It whether there is the first anchor point device in LAN, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the numeral label of anchor point device generation Name;
First public key of the server certificate for first anchor point device for judging to have stored can decrypt the numeral label Name, it is determined that the anchor point device is first anchor point device.
With reference in a first aspect, in the third possible implementation of first aspect, the search terminal place is current It whether there is the first anchor point device in LAN, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the device identification of the anchor point device;
Digital signature is generated, send the digital signature according to the device identification of the anchor point device sets to the anchor point It is standby, make the anchor point device that the digital signature be encrypted according to the first private key stored;
The digital signature that the anchor point device is encrypted is received, first anchor point for judging to have stored is set First public key of standby server certificate can decrypt the digital signature of encryption, it is determined that the anchor point device is institute State the first anchor point device.
With reference to the second of first aspect or the third possible implementation, in the 4th kind of possible realization of first aspect In mode, before whether there is the first anchor point device in current local network where search terminal, in addition to:
Receive the first public key of the server certificate for first anchor point device that DRM server issues;
Store the first public key of the server certificate of first anchor point device.
With reference to the 4th kind of possible implementation of first aspect, in the 5th kind of possible implementation of first aspect In, before the first public key of the server certificate for receiving first anchor point device that DRM server issues, in addition to:
To the equipment identification information of business platform reporting terminal, so that the business platform is according to the equipment mark of the terminal Know information the terminal is added in the family lan of first anchor point device of setting.
Second aspect, a kind of method for the scope that control content uses, methods described include:
The anchor point device that receiving terminal is sent finds request;
Send response message and carry the equipment identification information of anchor point device to the terminal, the response message;
Receive the digital signature that the terminal is sent according to the response message;
The digital signature is encrypted the first private key according to having stored;
The digital signature of encryption is sent to the terminal, the terminal is judged that current local area network where it is It is no its family lan and to make the terminal be determined whether to use content according to judged result.
The third aspect, a kind of method for the scope that control content uses, methods described include:
The anchor point device that receiving terminal is sent finds request;
Digital signature is generated, the digital signature is encrypted according to the first private key stored;
The digital signature of encryption is sent to the terminal, the terminal is judged that current local area network where it is It is no its family lan and to make the terminal be determined whether to use content according to judged result.
Fourth aspect, a kind of terminal, the terminal include:
Acquiring unit, for being asked according to the content-on-demand of user, obtain the encrypted media streams of the content and described interior The digital publishing rights of appearance;
Determining unit, for the digital publishing rights of the content obtained according to the acquiring unit, determine the content Digital publishing rights type is home network copyright;
Search unit, for after the determining unit is defined as home network copyright, current local where search terminal It whether there is the first anchor point device in network, first anchor point device is the non-moving anchor in the family lan of the terminal Point device;
The determining unit, first anchor point device be present if being additionally operable to the search unit and searching, it is determined that Current local area network where the terminal is the family lan of the terminal, and adding for the content is decrypted using the digital publishing rights Close Media Stream simultaneously plays out.
With reference to fourth aspect, in the first possible implementation of fourth aspect, the determining unit is according to The digital publishing rights of content, the digital publishing rights type for determining the content are the mode of home network copyright, including:
The digital publishing rights of the content are parsed, determine to mark comprising family in the digital publishing rights, it is determined that the content Digital publishing rights type be home network copyright.
With reference to fourth aspect, in second of possible implementation of fourth aspect, the search unit search terminal It whether there is the mode of the first anchor point device in the current local network of place, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the numeral label of anchor point device generation Name;
First public key of the server certificate for first anchor point device for judging to have stored can decrypt the numeral label Name, it is determined that the anchor point device is first anchor point device.
With reference to fourth aspect, in the third possible implementation of fourth aspect, the search unit search terminal It whether there is the mode of the first anchor point device in the current local network of place, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the device identification of the anchor point device;
Digital signature is generated, send the digital signature according to the device identification of the anchor point device sets to the anchor point It is standby, make the anchor point device that the digital signature be encrypted according to the first private key stored;
The digital signature that the anchor point device is encrypted is received, first anchor point for judging to have stored is set First public key of standby server certificate can decrypt the digital signature of encryption, it is determined that the anchor point device is institute State the first anchor point device.
With reference to the second of fourth aspect or the third possible implementation, in the 4th kind of possible realization of fourth aspect In mode, the terminal also includes:
Receiving unit, the first of the server certificate of first anchor point device issued for receiving DRM server are public Key;
Memory cell, the first of the server certificate of first anchor point device received for storing the receiving unit Public key.
With reference to the 4th kind of possible implementation of fourth aspect, in the 5th kind of possible implementation of fourth aspect In, the terminal also includes:
Transmitting element, for the equipment identification information of business platform reporting terminal, so that the business platform is according to institute The terminal is added in the family lan of first anchor point device of setting by the equipment identification information for stating terminal.
5th aspect, a kind of anchor point device, the anchor point device include:
Receiving unit, request is found for the anchor point device that receiving terminal is sent;
Transmitting element, for after receiving unit receives the anchor point device discovery request, sending response message to described Terminal, the response message carry the equipment identification information of anchor point device;
The receiving unit, be additionally operable to after the transmitting element sends the response message, receive the terminal according to The digital signature that the response message is sent;
Ciphering unit, the digital signature for being received according to the first private key stored to the receiving unit are carried out Encryption;
The transmitting element, it is additionally operable to send the digital signature of the ciphering unit encryption to the terminal, The terminal is set to judge whether current local area network where it is its family lan and makes the terminal true according to judged result It is fixed whether to use content.
6th aspect, a kind of anchor point device, the anchor point device include:
Receiving unit, request is found for the anchor point device that receiving terminal is sent;
Ciphering unit, for after the receiving unit receives the anchor point device discovery request, generating digital signature, root The digital signature is encrypted according to the first private key stored;
Transmitting element, the digital signature for sending the ciphering unit encryption make described to the terminal Terminal judges whether current local area network where it is its family lan and the terminal is determined whether according to judged result Use content.
7th aspect, a kind of terminal, the terminal includes memory and processor, for performing above-mentioned first aspect or the Method described in the first of one side to any of the 5th kind of possible implementation implementation.
Eighth aspect, a kind of anchor point device, the anchor point device include memory and processor, for performing such as second party Method described in face.
9th aspect, a kind of anchor point device, the anchor point device include memory and processor, for performing such as third party Method described in face.
In embodiments of the present invention, if the digital publishing rights type of content is home network copyright, where search terminal It whether there is the first anchor point device in current local area network, the first anchor point device is the non-moving anchor point in the family lan of terminal Equipment;If there is the first anchor point device, it is determined that current local area network is the family lan of terminal, and plays content, so Realize that control user uses content in home LAN.
Brief description of the drawings
Fig. 1 is the method flow diagram for the scope that a kind of control content provided in an embodiment of the present invention uses;
Fig. 2 is the method flow diagram for the scope that a kind of control content that another embodiment of the present invention provides uses;
Fig. 3 is the method flow diagram for the scope that a kind of control content that another embodiment of the present invention provides uses;
Fig. 4 is the method flow diagram for the scope that a kind of control content that another embodiment of the present invention provides uses
Fig. 5 is a kind of terminal structure schematic diagram provided in an embodiment of the present invention;
Fig. 6 is a kind of anchor point device structural representation provided in an embodiment of the present invention;
Fig. 7 is a kind of anchor point device structural representation that another embodiment of the present invention provides;
Fig. 8 is a kind of terminal structure schematic diagram that another embodiment of the present invention provides;
Fig. 9 is a kind of anchor point device structural representation that another embodiment of the present invention provides;
Figure 10 is a kind of anchor point device structural representation that another embodiment of the present invention provides.
Embodiment
To make the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing to embodiment party of the present invention Formula is described in further detail.
Referring to Fig. 1, a kind of method of the scope used the embodiments of the invention provide control content, including:
Step 101:Asked according to the content-on-demand of user, obtain the encrypted media streams of the content and the digital version of the content Power;
Step 102:According to the digital publishing rights of the content, the digital publishing rights type for determining the content is home network copyright;
Step 103:It whether there is the first anchor point device in current local network where search terminal, the first anchor point device is Non-moving anchor point device in the family lan of terminal;
Step 104:If there is the first anchor point device, it is determined that current local area network where terminal is the family LAN of terminal Net, decrypt the encrypted media streams of the content using the digital publishing rights and play out.
In embodiments of the present invention, if the digital publishing rights type of the content is home network copyright, search terminal institute It whether there is the first anchor point device in current local network, the first anchor point device is the non-moving anchor in the home network of terminal Point device;If there is the first anchor point device, it is determined that current local area network is the family lan of terminal, and plays the content, So realize that control user uses content in family lan.
A kind of method of the scope used the embodiments of the invention provide control content.
Wherein, in embodiments of the present invention, user opens an account to operator in advance, and operator is that user's one anchor point of distribution is set Standby, the anchor point device is non-moving physical equipment, and using the anchor point device as corresponding to user in family lan One anchor point device.Then, business platform generates the certificate of service and the first private key of the first anchor point device, and the certificate of service at least wraps The first public key corresponding to the first private key is included, the information such as certificate serial number and/or the term of validity can also be included, by the first anchor point device First private key is stored in the first anchor point device, and the certificate of service of the user account of user and the first anchor point device is stored In DRM(Digital Rights Management, Digital Right Management technology)User account and certificate of service in server Corresponding relation in.Or
Wherein, in embodiments of the present invention, equipment production firm production anchor point device, the anchor point device is non-moving thing Equipment is managed, while obtains the certificate of service and the first private key of the anchor point device, the certificate of service of the anchor point device and first is private Key is stored in the anchor point device.When user opens an account to operator, the anchor point device of slave unit production firm of operator production In for user select an anchor point device, using the anchor point device of selection as the first anchor corresponding to user in family lan Point device.Business platform obtains the certificate of service of the first anchor point device from the first anchor point device, by the user account of the user In the user account and the corresponding relation of certificate of service that are stored in the certificate of service of the first anchor point device in DRM server.
Further, business platform can also generate the first anchor point device according to the equipment identification information of the first anchor point device Device certificate, the device certificate includes equipment identification information, the second public key and the second private key of the first anchor point device, by first The device certificate of anchor point device is stored in DRM server.
Wherein, the first anchor point device can be deployed in family lan by user, and the terminal in the family lan can To register and oneself will be added in the family lan into business platform, itself is then determined by the first anchor point device Whether it is located in the family lan, and content is used according to the result of determination.Referring to Fig. 2, this method includes:
Step 201:Terminal sends login request message and carries user's account of user to business platform, the login request message Family;
Further, the login request message can be with the equipment identification information of carried terminal.
Further, terminal also reports the equipment identification information of itself to business platform, so that business platform is according to terminal Equipment identification information terminal is added in the family lan of the first anchor point device of setting.
Step 202:Business platform receives the login request message, the user account carried according to the login request message, The certificate of service of the first anchor point device where obtaining terminal in family lan;
Specifically, the user account that business platform carries according to the login request message, from user's account in DRM server Certificate of service corresponding to being obtained in the corresponding relation of family and certificate of service, using the certificate of service of acquisition as office of family where terminal The certificate of service of the first anchor point device in the net of domain.
Further, the equipment identification information for the terminal that business platform can carry according to the login request message generates eventually The device certificate at end, the device certificate includes the equipment identification information of terminal, the second public key and the second private key, by the terminal Device certificate is stored in DRM server.
Step 203:The certificate of service of first anchor point device of acquisition is sent to terminal by business platform;
Further, if business platform generates the device certificate of terminal, business platform can also setting terminal Standby certificate is sent to terminal.
Step 204:Terminal receives the certificate of service for the first anchor point device that business platform is sent, and stores the first anchor point and set Standby certificate of service;
Further, terminal can also receive the device certificate of the terminal of business platform transmission, and the equipment for storing terminal Certificate.
Wherein, streaming media server includes digital product, digital product include a content content identification information and Digital publishing rights type.User can buy some digital product with using terminal into streaming media server, it is assumed that the digital product Including digital publishing rights type be home network copyright;Also, after user buys the digital product, terminal sends user's purchase The digital product product identification and user user account to business platform.Business platform receives the product of the digital product Mark and the user account of the user, according to the product identification of the digital product, obtain the interior of the content that the digital product includes Hold mark and digital publishing rights type, the content identification information and digital publishing rights type and solution of the content that the digital product is included Key forms the digital publishing rights of the content, and the user account of the user and the digital publishing rights are stored in DRM server In the corresponding relation of user account and digital publishing rights.
Step 205:When needing to use content, the content-on-demand that terminal sends user is asked to business platform, the content Order request carries the user account of user and the content identification information of the content;
Step 206:Business platform receives is asked with the content-on-demand, is bought according to content-on-demand acquisition request user The digital publishing rights and encrypted media streams of the content, the digital publishing rights of the content and encrypted media streams are sent to terminal;
Specifically, business platform receives content-on-demand request, the user for the user for asking to carry according to the content-on-demand Account, the number of all the elements of user's purchase is obtained from the user account and the corresponding relation of digital publishing rights in DRM server Letter is weighed, and according to the content identification information of the content, the content is obtained from the digital publishing rights of all the elements of user's purchase Digital publishing rights, the encrypted media streams of the content are obtained according to the content identification information of the content, by the digital publishing rights of the content and Encrypted media streams are sent to terminal.
Further, business platform can also be according to the identification information of terminal, the equipment that terminal is obtained from DRM server The digital publishing rights of the content are encrypted by certificate, the second private key included according to the device certificate of terminal, then will encryption The digital publishing rights of the content of processing are sent to terminal.
Wherein, the digital publishing rights of the content include decryption decryption, the content identification information of the content and digital publishing rights type For home network copyright.
Step 207:Terminal receives the digital publishing rights and encrypted media streams of the content, is determined according to the digital publishing rights of the content It is family lan to go out using the scope of the content;
Specifically, terminal receives the digital publishing rights and encrypted media streams of the content, is somebody's turn to do according to what the digital publishing rights included The digital publishing rights type of content is home network copyright, determines that using the scope of the content be family lan.
Further, after terminal receives the digital publishing rights of the content, according to itself store device certificate include second Public key, processing is decrypted to the digital publishing rights of the content, it is then true according to the digital publishing rights of the content Jing Guo decryption processing It is family lan to make using the scope of the content.
Step 208:It whether there is the first anchor point device in its place current local area network of terminal searching, the first anchor point device is Non-moving anchor point device where terminal in family lan;
Specifically, network equipment multicast anchor point device of the terminal into the current local area network where it finds request, currently Non-moving anchor point device in LAN receives after the anchor point device finds request and carries out response;Terminal receives anchor point device The response message of response is carried out, the response message carries the equipment identification information of the anchor point device, so that it is determined that going out to search it Non-moving anchor point device in the current local area network of place;Terminal determines the equipment according to the certificate of service of the first anchor point device Whether the anchor point device corresponding to identification information is the first anchor point device, if it is, determining to deposit in current local area network where it In the first anchor point device.
Wherein, network equipment multicast anchor point device of the terminal into current local area network where it finds request.Current local Anchor point device in net receives the anchor point device and finds request, and starts response, i.e., anchor point device transmission response message to Terminal, the response message carry the equipment identification information of the anchor point device.Terminal receives the response message of anchor point device transmission, According to the certificate of service for the first anchor point device that itself is stored, determine whether anchor point device corresponding to the equipment identification information is the One anchor point device, the first anchor point device in current network where it be present if it is, searching.
Wherein, terminal determines anchor point device corresponding to the equipment identification information according to the certificate of service of the first anchor point device Whether it is the first anchor point device, can includes:
Terminal generates digital signature, and the digital signature is sent to the anchor point device according to the equipment identification information;The anchor point The digital signature is encrypted the first private key that equipment has stored according to it, sends the numeral label Jing Guo encryption Name;Terminal receives digital signature by encryption of anchor point device transmission, is set according to the first anchor point that itself is stored Processing is decrypted to the digital signature Jing Guo encryption in the first public key that standby certificate of service includes, if successful decryption Go out the digital signature, it is determined that anchor point device corresponding to the device identification is the first anchor point device, that is, determines its own place Current local area network be its where family lan.
Wherein, in embodiments of the present invention, the equipment that terminal can also be by multicast mode into its current local network Send anchor point device and find request.Anchor point device in the LAN receives the anchor point device and finds request, generates digital signature, The digital signature is encrypted the first private key according to having stored, and sends response message to terminal, the response message Carry the digital signature of encryption.Terminal receives the response message that anchor point device is sent, and judges the first anchor point stored First public key of the server certificate of equipment can decrypt the digital signature, it is determined that the anchor point device is the first anchor point device.
Step 209:If terminal searches the first anchor point device, it is determined that where itself being located at it in family lan, And decrypt the encrypted media streams of the content using the digital publishing rights and play out.
Specifically, if terminal searches the first anchor point device, it is determined that where itself being located at it in family lan, root The encrypted media streams of the content are decrypted with processing according to the decruption key that the digital publishing rights of the content include, is played at decryption The Media Stream of the content after reason.
In embodiments of the present invention, terminal is registered to business platform, and obtains the first anchor in its place family lan The certificate of service of point device.When needing to use content, terminal obtains the digital version of the content from business platform, interior according to this The digital publishing rights of appearance, determine that the scope that the content uses is family lan, be then in current local area network where search terminal No existing anchor point device, determines whether the anchor point device is the first anchor point device according to the certificate of service of the first equipment, if It is, it is determined that current local area network is the family lan of terminal, and uses the content, so realizes control user in family LAN The content is used in net.
Referring to Fig. 3, a kind of method of the scope used the embodiments of the invention provide control content, including:
Step 301:The anchor point device that receiving terminal is sent finds request;
Step 302:Send response message and carry the equipment identification information of anchor point device to terminal, the response message;
Step 303:The digital signature that receiving terminal is sent according to the response message;
Step 304:The digital signature is encrypted the first private key according to having stored;
Step 305:The digital signature of encryption is sent to terminal, makes whether terminal judges its place current local area network For its family lan and terminal is set to be determined whether according to judged result to use content.
In embodiments of the present invention, the digital signature that receiving terminal is sent, numeral is signed according to the first private key stored Name is encrypted, and sends the digital signature of encryption to terminal, makes whether terminal judges its place current local area network For its family lan and make terminal be determined whether according to judged result to use content, so realize control user in office of family The content is used in the net of domain.
Referring to Fig. 4, a kind of method of the scope used the embodiments of the invention provide control content, including:
Step 401:The anchor point device that receiving terminal is sent finds request;
Step 402:Digital signature is generated, the digital signature is encrypted according to the first private key stored;
Step 403:The digital signature of encryption is sent to terminal, makes whether terminal judges its place current local area network For its family lan and terminal is set to be determined whether according to judged result to use content.
In embodiments of the present invention, the anchor point device that receiving terminal is sent finds request, digital signature is generated, according to having deposited Digital signature is encrypted first private key of storage, sends the digital signature of encryption to terminal, judges terminal Whether current local area network where it be its family lan and make terminal be determined whether to use content according to judged result, so Realize that control user uses the content in family lan.
Referring to Fig. 5, the embodiments of the invention provide a kind of terminal, including:
Acquiring unit 501, for being asked according to the content-on-demand of user, obtain the encrypted media streams of the content and described The digital publishing rights of content;
Determining unit 502, for the digital publishing rights of the content obtained according to the acquiring unit 501, it is determined that described The digital publishing rights type of content is home network copyright;
Search unit 503, for after the determining unit 502 is defined as home network copyright, working as where search terminal It whether there is the first anchor point device in preceding LAN, first anchor point device is non-in the family lan of the terminal Mobile anchor point equipment;
The determining unit 502, first anchor point device be present if being additionally operable to the search unit 503 and searching, Current local area network where then determining the terminal is the family lan of the terminal, described interior using digital publishing rights decryption The encrypted media streams of appearance simultaneously play out.
Wherein, the determining unit 502 determines the digital publishing rights type of the content according to the digital publishing rights of the content For the mode of home network copyright, including:
The digital publishing rights of the content are parsed, determine to mark comprising family in the digital publishing rights, it is determined that the content Digital publishing rights type be home network copyright.
Wherein, with the presence or absence of the first anchor point device in current local network where the search terminal of search unit 503 Mode, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the numeral label of anchor point device generation Name;
First public key of the server certificate for first anchor point device for judging to have stored can decrypt the numeral label Name, it is determined that the anchor point device is first anchor point device.
Wherein, with the presence or absence of the first anchor point device in current local network where the search terminal of search unit 503 Mode, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the device identification of the anchor point device;
Digital signature is generated, send the digital signature according to the device identification of the anchor point device sets to the anchor point It is standby, make the anchor point device that the digital signature be encrypted according to the first private key stored;
The digital signature that the anchor point device is encrypted is received, first anchor point for judging to have stored is set First public key of standby server certificate can decrypt the digital signature of encryption, it is determined that the anchor point device is institute State the first anchor point device.
Further, the terminal also includes:
Receiving unit, the first of the server certificate of first anchor point device issued for receiving DRM server are public Key;
Memory cell, the first of the server certificate of first anchor point device received for storing the receiving unit Public key.
Further, the terminal also includes:
Transmitting element, for the equipment identification information of business platform reporting terminal, so that the business platform is according to institute The terminal is added in the family lan of first anchor point device of setting by the equipment identification information for stating terminal.
In embodiments of the present invention, if the digital publishing rights type of content is home network copyright, where search terminal It whether there is the first anchor point device in current local area network, the first anchor point device is the non-moving anchor point in the family lan of terminal Equipment;If there is the first anchor point device, it is determined that current local area network is the family lan of terminal, and plays the content, such as This realizes that control user uses content in family lan.
Referring to Fig. 6, the embodiments of the invention provide a kind of anchor point device, including:
Receiving unit 601, request is found for the anchor point device that receiving terminal is sent;
Transmitting element 602, the equipment for carrying anchor point device to the terminal, the response message for sending response message Identification information;
The receiving unit 601, it is additionally operable to receive the digital signature that the terminal is sent according to the response message;
Ciphering unit 603, for the numeral label received according to the first private key stored to the receiving unit 601 Name is encrypted;
The transmitting element 602, it is additionally operable to send the digital signature of the encryption of ciphering unit 603 to described Terminal, the terminal is set to judge whether current local area network where it is its family lan and the terminal is tied according to judgement Fruit determines whether to use content.
In embodiments of the present invention, the digital signature that receiving terminal is sent, numeral is signed according to the first private key stored Name is encrypted, and sends the digital signature of encryption to terminal, makes whether terminal judges its place current local area network For its family lan and make terminal be determined whether according to judged result to use content, so realize control user in office of family The content is used in the net of domain.
Referring to Fig. 7, the embodiments of the invention provide a kind of anchor point device, including:
Receiving unit 701, request is found for the anchor point device that receiving terminal is sent;
Ciphering unit 702, for after the receiving unit 701 receives the anchor point device discovery request, generation to be digital Signature, the digital signature is encrypted according to the first private key stored;
Transmitting element 703, for sending the digital signature of the encryption of ciphering unit 702 to the terminal, The terminal is set to judge whether current local area network where it is its family lan and makes the terminal true according to judged result It is fixed whether to use content.
In embodiments of the present invention, the anchor point device that receiving terminal is sent finds request, digital signature is generated, according to having deposited Digital signature is encrypted first private key of storage, sends the digital signature of encryption to terminal, judges terminal Whether current local area network where it be its family lan and make terminal be determined whether to use content according to judged result, so Realize that control user uses the content in family lan.
Referring to Fig. 8, the embodiments of the invention provide a kind of terminal, including memory 801 and processor 802, for performing Following method:
Asked according to the content-on-demand of user, obtain the encrypted media streams of the content and the digital publishing rights of the content;
According to the digital publishing rights of the content, the digital publishing rights type for determining the content is home network copyright;
It whether there is the first anchor point device in current local network where search terminal, first anchor point device is described Non-moving anchor point device in the family lan of terminal;
If there is first anchor point device, it is determined that current local area network where the terminal is the family of the terminal LAN, decrypt the encrypted media streams of the content using the digital publishing rights and play out.
Preferably, the digital publishing rights according to the content, the digital publishing rights type for determining the content are home network Network copyright, including:
The digital publishing rights of the content are parsed, determine to mark comprising family in the digital publishing rights, it is determined that the content Digital publishing rights type be home network copyright.
Preferably, it whether there is the first anchor point device in current local network where the search terminal, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the numeral label of anchor point device generation Name;
First public key of the server certificate for first anchor point device for judging to have stored can decrypt the numeral label Name, it is determined that the anchor point device is first anchor point device.
Preferably, it whether there is the first anchor point device in current local network where the search terminal, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the device identification of the anchor point device;
Digital signature is generated, send the digital signature according to the device identification of the anchor point device sets to the anchor point It is standby, make the anchor point device that the digital signature be encrypted according to the first private key stored;
The digital signature that the anchor point device is encrypted is received, first anchor point for judging to have stored is set First public key of standby server certificate can decrypt the digital signature of encryption, it is determined that the anchor point device is institute State the first anchor point device.
Preferably, before whether there is the first anchor point device in current local network where search terminal, in addition to:
Receive the first public key of the server certificate for first anchor point device that DRM server issues;
Store the first public key of the server certificate of first anchor point device.
Preferably, before the public key of the server certificate for receiving first anchor point device that DRM server issues, Also include:
To the equipment identification information of business platform reporting terminal, so that the business platform is according to the equipment mark of the terminal Know information the terminal is added in the family lan of first anchor point device of setting.
In embodiments of the present invention, if the digital publishing rights type of content is home network copyright, where search terminal It whether there is the first anchor point device in current local area network, the first anchor point device is the non-moving anchor point in the family lan of terminal Equipment;If there is the first anchor point device, it is determined that current local area network is the family lan of terminal, and plays content, so Realize that control user uses content in home LAN.
Referring to Fig. 9, the embodiments of the invention provide a kind of anchor point device, including memory 901 and processor 902, it is used for Perform following method:
The anchor point device that receiving terminal is sent finds request;
Send response message and carry the equipment identification information of anchor point device to the terminal, the response message;
Receive the digital signature that the terminal is sent according to the response message;
The digital signature is encrypted the first private key according to having stored;
The digital signature of encryption is sent to the terminal, the terminal is judged that current local area network where it is It is no its family lan and to make the terminal be determined whether to use content according to judged result.
In embodiments of the present invention, the digital signature that receiving terminal is sent, numeral is signed according to the first private key stored Name is encrypted, and sends the digital signature of encryption to terminal, makes whether terminal judges its place current local area network For its family lan and make terminal be determined whether according to judged result to use content, so realize control user in office of family The content is used in the net of domain.
Referring to Figure 10, the embodiments of the invention provide a kind of anchor point device, including memory 1001 and processor 1002, uses In the following method of execution:
The anchor point device that receiving terminal is sent finds request;
Digital signature is generated, the digital signature is encrypted according to the first private key stored;
The digital signature of encryption is sent to the terminal, the terminal is judged that current local area network where it is It is no its family lan and to make the terminal be determined whether to use content according to judged result.
In embodiments of the present invention, the anchor point device that receiving terminal is sent finds request, digital signature is generated, according to having deposited Digital signature is encrypted first private key of storage, sends the digital signature of encryption to terminal, judges terminal Whether current local area network where it be its family lan and make terminal be determined whether to use content according to judged result, so Realize that control user uses the content in family lan.
One of ordinary skill in the art will appreciate that hardware can be passed through by realizing all or part of step of above-described embodiment To complete, by program the hardware of correlation can also be instructed to complete, described program can be stored in a kind of computer-readable In storage medium, storage medium mentioned above can be read-only storage, disk or CD etc..
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all the present invention spirit and Within principle, any modification, equivalent substitution and improvements made etc., it should be included in the scope of the protection.

Claims (19)

1. the method for the scope that a kind of control content uses, it is characterised in that methods described includes:
Asked according to the content-on-demand of user, obtain the encrypted media streams of the content and the digital publishing rights of the content;
According to the digital publishing rights of the content, the digital publishing rights type for determining the content is home network copyright;
It whether there is the first anchor point device in current local network where search terminal, first anchor point device is the terminal Family lan in non-moving anchor point device;
If there is first anchor point device, it is determined that current local area network where the terminal is the family LAN of the terminal Net, decrypt the encrypted media streams of the content using the digital publishing rights and play out.
2. the method as described in claim 1, it is characterised in that the digital publishing rights according to the content, determine in described The digital publishing rights type of appearance is home network copyright, including:
The digital publishing rights of the content are parsed, determine to mark comprising family in the digital publishing rights, it is determined that the number of the content Word copyright type is home network copyright.
3. the method as described in claim 1, it is characterised in that whether there is in current local network where the search terminal First anchor point device, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;Anchor point is received to set The response message that preparation is sent, the response message include the digital signature of anchor point device generation;
First public key of the server certificate for first anchor point device for judging to have stored can decrypt the digital signature, then It is first anchor point device to determine the anchor point device.
4. the method as described in claim 1, it is characterised in that whether there is in current local network where the search terminal First anchor point device, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the device identification of the anchor point device;
Digital signature is generated, the digital signature is sent to the anchor point device according to the device identification of the anchor point device, made The digital signature is encrypted according to the first private key stored for the anchor point device;
The digital signature that the anchor point device is encrypted is received, first anchor point device that judgement has stored First public key of server certificate can decrypt the digital signature of encryption, it is determined that the anchor point device is described the One anchor point device.
5. the method as described in claim 3 or 4, it is characterised in that whether deposited in current local network where search terminal Before the first anchor point device, in addition to:
Receive the server certificate for first anchor point device that Digital Right Management technology DRM server issues first is public Key;
Store the first public key of the server certificate of first anchor point device.
6. method as claimed in claim 5, it is characterised in that the reception Digital Right Management technology DRM server issues First anchor point device server certificate the first public key before, in addition to:
To the equipment identification information of business platform reporting terminal, so that the business platform is believed according to the device identification of the terminal The terminal is added in the family lan of first anchor point device of setting by breath.
7. the method for the scope that a kind of control content uses, it is characterised in that methods described includes:
The anchor point device that receiving terminal is sent finds request;
Send response message and carry the equipment identification information of anchor point device to the terminal, the response message;
Receive the digital signature that the terminal is sent according to the response message;
The digital signature is encrypted the first private key according to having stored;
The digital signature of encryption is sent to the terminal, make the terminal get the encrypted media streams of content and According to the digital publishing rights of the content after digital publishing rights, the digital publishing rights type for determining the content is home network copyright;Search It whether there is the first anchor point device in current local network where rope terminal, first anchor point device is the family of the terminal Non-moving anchor point device in LAN;If there is first anchor point device, it is determined that current local where the terminal Net is the family lan of the terminal, decrypts the encrypted media streams of the content using the digital publishing rights and plays out.
8. the method for the scope that a kind of control content uses, it is characterised in that methods described includes:
The anchor point device that receiving terminal is sent finds request;
Digital signature is generated, the digital signature is encrypted according to the first private key stored;
The digital signature of encryption is sent to the terminal, make the terminal get the encrypted media streams of content and According to the digital publishing rights of the content after digital publishing rights, the digital publishing rights type for determining the content is home network copyright;Search It whether there is the first anchor point device in current local network where rope terminal, first anchor point device is the family of the terminal Non-moving anchor point device in LAN;If there is first anchor point device, it is determined that current local where the terminal Net is the family lan of the terminal, decrypts the encrypted media streams of the content using the digital publishing rights and plays out.
9. a kind of terminal, it is characterised in that the terminal includes:
Acquiring unit, for being asked according to the content-on-demand of user, obtain the encrypted media streams of the content and the content Digital publishing rights;
Determining unit, for the digital publishing rights of the content obtained according to the acquiring unit, determine the numeral of the content Copyright type is home network copyright;
Search unit, for after the determining unit is defined as home network copyright, current local network where search terminal In whether there is the first anchor point device, first anchor point device sets for the non-moving anchor point in the family lan of the terminal It is standby;
The determining unit, first anchor point device be present if being additionally operable to the search unit and searching, it is determined that described Current local area network where terminal is the family lan of the terminal, uses the encryption matchmaker of the digital publishing rights decryption content Body stream simultaneously plays out.
10. terminal as claimed in claim 9, it is characterised in that the determining unit is according to the digital publishing rights of the content, really The digital publishing rights type of the fixed content is the mode of home network copyright, including:
The digital publishing rights of the content are parsed, determine to mark comprising family in the digital publishing rights, it is determined that the number of the content Word copyright type is home network copyright.
11. terminal as claimed in claim 9, it is characterised in that current local network where the search unit search terminal In whether there is the first anchor point device mode, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the digital signature of anchor point device generation;
First public key of the server certificate for first anchor point device for judging to have stored can decrypt the digital signature, then It is first anchor point device to determine the anchor point device.
12. terminal as claimed in claim 9, it is characterised in that current local network where the search unit search terminal In whether there is the first anchor point device mode, including:
Anchor point device is sent by equipment of the multicast mode into the terminal current local network and finds request;
The response message that anchor point device is sent is received, the response message includes the device identification of the anchor point device;
Digital signature is generated, the digital signature is sent to the anchor point device according to the device identification of the anchor point device, made The digital signature is encrypted according to the first private key stored for the anchor point device;
The digital signature that the anchor point device is encrypted is received, first anchor point device that judgement has stored First public key of server certificate can decrypt the digital signature of encryption, it is determined that the anchor point device is described the One anchor point device.
13. the terminal as described in claim 11 or 12, it is characterised in that the terminal also includes:
Receiving unit, the server of first anchor point device issued for receiving Digital Right Management technology DRM server First public key of certificate;
Memory cell, the first of the server certificate of first anchor point device received for storing the receiving unit are public Key.
14. terminal as claimed in claim 13, it is characterised in that the terminal also includes:
Transmitting element, for the equipment identification information of business platform reporting terminal, so that the business platform is according to the end The terminal is added in the family lan of first anchor point device of setting by the equipment identification information at end.
15. a kind of anchor point device, it is characterised in that the anchor point device includes:
Receiving unit, request is found for the anchor point device that receiving terminal is sent;
Transmitting element, for being received in receiving unit after the anchor point device finds request, response message is sent to the terminal, The response message carries the equipment identification information of anchor point device;
The receiving unit, it is additionally operable to after the transmitting element sends the response message, receives the terminal according to The digital signature that response message is sent;
Ciphering unit, for the digital signature that the receiving unit receives to be encrypted according to the first private key stored Processing;
The transmitting element, it is additionally operable to send the digital signature of the ciphering unit encryption to the terminal, makes institute Terminal is stated after the encrypted media streams and digital publishing rights of content are got according to the digital publishing rights of the content, determines the content Digital publishing rights type be home network copyright;It whether there is the first anchor point device in current local network where search terminal, First anchor point device is the non-moving anchor point device in the family lan of the terminal;If there is first anchor point Equipment, it is determined that current local area network is the family lan of the terminal where the terminal, is decrypted using the digital publishing rights The encrypted media streams of the content simultaneously play out.
16. a kind of anchor point device, it is characterised in that the anchor point device includes:
Receiving unit, request is found for the anchor point device that receiving terminal is sent;
Ciphering unit, for after the receiving unit receives the anchor point device discovery request, digital signature being generated, according to The digital signature is encrypted first private key of storage;
Transmitting element, the digital signature for sending the ciphering unit encryption make the terminal to the terminal According to the digital publishing rights of the content after the encrypted media streams and digital publishing rights of content are got, the numeral of the content is determined Copyright type is home network copyright;It whether there is the first anchor point device in current local network where search terminal, described the One anchor point device is the non-moving anchor point device in the family lan of the terminal;If there is first anchor point device, Current local area network where then determining the terminal is the family lan of the terminal, described interior using digital publishing rights decryption The encrypted media streams of appearance simultaneously play out.
17. a kind of terminal, it is characterised in that the terminal includes memory and processor, for performing such as claim 1 to 6 Method described in any one claim.
18. a kind of anchor point device, it is characterised in that the anchor point device includes memory and processor, for performing such as right It is required that the method described in 7.
19. a kind of anchor point device, it is characterised in that the anchor point device includes memory and processor, for performing such as right It is required that the method described in 8.
CN201310262777.0A 2013-06-27 2013-06-27 A kind of method and device for the scope that control content uses Active CN104253794B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310262777.0A CN104253794B (en) 2013-06-27 2013-06-27 A kind of method and device for the scope that control content uses

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310262777.0A CN104253794B (en) 2013-06-27 2013-06-27 A kind of method and device for the scope that control content uses

Publications (2)

Publication Number Publication Date
CN104253794A CN104253794A (en) 2014-12-31
CN104253794B true CN104253794B (en) 2017-12-01

Family

ID=52188335

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310262777.0A Active CN104253794B (en) 2013-06-27 2013-06-27 A kind of method and device for the scope that control content uses

Country Status (1)

Country Link
CN (1) CN104253794B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104837035B (en) * 2015-04-30 2018-07-13 华为软件技术有限公司 A kind of video broadcasting method and terminal

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1859245A (en) * 2005-11-02 2006-11-08 华为技术有限公司 Power managing method in digital household network and household network system
CN101459826A (en) * 2008-12-30 2009-06-17 青岛华威视通数字传媒有限公司 Copyright protection method for video play-on-demand system
CN101814990A (en) * 2010-04-15 2010-08-25 华中科技大学 Home network-oriented digital rights certificate management system
CN101951335A (en) * 2010-09-29 2011-01-19 广州市聚晖电子科技有限公司 System and method for realizing interconnection and interworking protocol stack between digital home network devices
CN102177676A (en) * 2008-10-10 2011-09-07 三星电子株式会社 System and method for setting up security for controlled device by control point in a home network
CN102655511A (en) * 2012-05-25 2012-09-05 中山大学 Home gateway based cloud security decryption method and system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1859245A (en) * 2005-11-02 2006-11-08 华为技术有限公司 Power managing method in digital household network and household network system
CN102177676A (en) * 2008-10-10 2011-09-07 三星电子株式会社 System and method for setting up security for controlled device by control point in a home network
CN101459826A (en) * 2008-12-30 2009-06-17 青岛华威视通数字传媒有限公司 Copyright protection method for video play-on-demand system
CN101814990A (en) * 2010-04-15 2010-08-25 华中科技大学 Home network-oriented digital rights certificate management system
CN101951335A (en) * 2010-09-29 2011-01-19 广州市聚晖电子科技有限公司 System and method for realizing interconnection and interworking protocol stack between digital home network devices
CN102655511A (en) * 2012-05-25 2012-09-05 中山大学 Home gateway based cloud security decryption method and system

Also Published As

Publication number Publication date
CN104253794A (en) 2014-12-31

Similar Documents

Publication Publication Date Title
CN100450176C (en) Method of rights management for streaming media
CN109146481B (en) Method, medium and device for automatically importing account private key of blockchain wallet and blockchain system
CN103841469B (en) A kind of digital movie copyright protection method and apparatus
US20080216177A1 (en) Contents Distribution System
KR20040108533A (en) Contents transmitter, contents receiver, and contents transfer method
US20200351107A1 (en) Secure authentication of remote equipment
RU2010106080A (en) METHOD AND DEVICE FOR JOINT USE OF SECRET INFORMATION BY DEVICES IN THE HOME NETWORK
KR101297648B1 (en) Authentication method between server and device
JP2011518450A5 (en)
CN106331751A (en) Online encrypted slice video playing method based on iOS operating system
CN104009989A (en) Link-stealing-prevention method and system for media files and server
JP2008130096A (en) Method and device for providing device with access right to access right controlled digital content
CN105119891B (en) A kind of data interactive method, set-top box and server
JP2009201090A (en) Key generating device, encrypting device, receiving device, key generating method, encrypting method, key processing method, and program
WO2007083891A1 (en) Method and apparatus for transmitting content to device which does not join domain
CN109408015A (en) A kind of multimedia file processing method sends terminal and display terminal
CN110213669A (en) A kind of video content burglary-resisting system and method based on TS slice
CN101335615A (en) Method used in key consultation of USB KEY audio ciphering and deciphering device
AU2007216943B2 (en) Method of implementing a state tracking mechanism in a communications session between a server and a client system
JP2005303449A (en) Radio communication system, access point, terminal and radio communication method
CN106789008B (en) Method, device and system for decrypting sharable encrypted data
CN102546528A (en) Stream media playing method and stream media playing equipment
JP4113462B2 (en) Content communication history analysis system and data communication control device
CN104253794B (en) A kind of method and device for the scope that control content uses
CN103237011A (en) Digital-content encryption transmission method and server side

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20200210

Address after: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen

Patentee after: HUAWEI TECHNOLOGIES Co.,Ltd.

Address before: 210012 HUAWEI Nanjing base, 101 software Avenue, Yuhuatai District, Jiangsu, Nanjing

Patentee before: Huawei Technologies Co.,Ltd.

TR01 Transfer of patent right