CN1883201A - Meta data access control system, method thereof, reception device, and transmission device - Google Patents
Meta data access control system, method thereof, reception device, and transmission device Download PDFInfo
- Publication number
- CN1883201A CN1883201A CN 200480033804 CN200480033804A CN1883201A CN 1883201 A CN1883201 A CN 1883201A CN 200480033804 CN200480033804 CN 200480033804 CN 200480033804 A CN200480033804 A CN 200480033804A CN 1883201 A CN1883201 A CN 1883201A
- Authority
- CN
- China
- Prior art keywords
- content
- metadata
- information
- control information
- access control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
It is possible to prevent a content from being used by meta data not permitted and not intended by a content providing source. Meta data verification means verifies meta data. Content verification means verifies a content and a content providing source. Meta data access control information verification means verifies meta data access control information indicating relationship between a content and meta data which can access a content, and verifies an issuing source of the meta data access control information. Meta data judgment means judges whether the issuing source of the meta data access control information can be trusted by the content providing source. When it is judged that the meta data can be trusted, the meta data is used by the meta data use means.
Description
Technical field
The present invention relates to utilize the metadata that content is controlled, carry out access control and meta data access control system, the method for storage control and receiving system, the dispensing device that uses them content.
Background technology
At present, the progress of digitization of broadcasting is implemented multichannelization by the importing of digital broadcasting, looks the hearer and can receive many broadcasted contents.On the other hand, the popularizing of ADSL by in recent years and the high-speed Internet environment of FTTH, the music content that not only carries out melody etc. distributes, and the service that the live image content of having utilized stream transmission and download is distributed is also being increased.
Its result, the content that the user can select enlarges.Therefore, in the world that the standard by service type broadcasting and TVAnytime etc. can realize, can give, send for metadata as the attribute information of content.By using metadata, the user not only carries out the retrieval of ECG (digital content guide) and content easily, by to the navigation of content and easily carry out the selection of content, and can pass through to summary (highlight) audiovisual of content with by the navigation to special scenes, enjoy content at short notice.Except utilization as simple content monomer, by being provided for the metadata of such summary audiovisual, produce the new method of utilizing of this content, metadata self is produced be worth.The making of this metadata, provide also and can be undertaken, produce the new commercial affairs of so-called ' being provided for the metadata that content is utilized ' thus by the cause merchant beyond the cause merchant that content is provided.
As giving, send a kind of prior art of such conduct, the technology that is illustrated in the patent documentation 1 is for example arranged for the metadata of the attribute information of content.
Content is being given under the situation of metadata, content provides unit own to give metadata to content, thereby improves the added value of content.In the broadcasting that can utilize service type broadcasting and TVAnytime etc. and the environment of communicating by letter, who distributes after can making content and metadata.As its result, after content provides different provider of unit to make metadata, can distribute by timing different and path with content.
Under such situation, owing at random give metadata, so the situation that the content that unit's (or, content supplier) provides is provided of illegal use content is arranged sometimes for content.For example, the content of unit is provided for content, the third party who provides unit that permission is not provided by content makes, distributes metadata, as an example, at random cross the metadata of main points (highlight) audiovisual of the CM (advertisement) of content, can distribute the content utilization of violating content supplier's purpose.In addition, the content of utilizing content to provide unit to provide, the metadata distribution unit to serving is difficult to replace the utilization permission that content is provided, and constitutes the new commercial form of accepting interests from metadata distribution unit.
In order to solve uncomfortable situation as described above, for example in patent documentation 1, in the technology of record, utilize reliability subsidiary in metadata, become the structure that whether can use metadata by receiving system for differentiating.
In addition, the content stores control service system as in the past according to the storage control command from the center, makes content automatically store (for example, with reference to patent documentation 2) to user's receiving system.In addition, the cause merchant personal attribute that the hearer is looked in setting to receiver uses this attribute, selects to be fit to user's service automatically, thereby offers user's (for example, with reference to patent documentation 3).In addition, the method as the audiovisual of content to storage limits has the audiovisual control information is sent to receiving system from the center with content, and counterweight is put the method (for example, with reference to patent documentation 4) of row control into.
And, in the past, as collaborative with broadcast data (content) and show technology to the link information of internet, the known datacasting that utilizes.For example, in patent documentation 4, disclose transmitting terminal and in broadcast data CM link (link information) has been broadcasted after multiplexing, receiving terminal extracts the CM link from broadcast data, can download the structure that this CM link the CM data of (link) appointment from network.
But, in above-mentioned patent documentation 1, in the solution of record,, can all use so receiving system is judged as reliable metadata owing to only verify the reliability of metadata.It doesn't matter for this reliability and content supplier.Therefore, as having accepted reliable metadata, even under the situation of certain metadata of the reliability that the third party that it doesn't matter of making and distribution and content supplier makes, receiving system also can utilize this metadata from certain certification authority.Therefore, in this structure, can not solve the problem that content is illegally utilized because of the metadata of third party's making.
In addition, in such structure in the past of patent documentation 2 record to the patent documentation 4, the such video recording control service of user's self adaptation automatic video recording is appearring, and by HDD (Hard Disk Drive) high capacity, caused under the situation of the stored situation of most content, the user does not carry out real-time audiovisual, and watch most content in the replay video mode, audio-visual content repeatedly, can preserve on semipermanent ground, can also skip CM, existence can not be kept and all merchants' of content of current real-time broadcasting the use contract and the problem of CM business.
Therefore,, also seek the playback condition when cause merchant end can designated user carries out replay video, so that be not affected with content owner's contract and CM commerce for broadcasted content.
But on the other hand, broadcasted content also is the existing user's that can freely reset in the individual records a video scope a right, can not exercise this right fully and be to be difficult to the problem accepted by the user.
On the other hand, as link information, can utilize the arbitrary address on the internet is carried out specified message, but obtaining under the situation of link information from the internet, or even with public order and moral contrary link information and danger that the hurtful link information of user also is shown.And, may show that the unmatched link information of content (for example for the broadcasting industry merchant, although introducing the content of the commodity of regulation is reset, but the link information of commodity of rival company of introducing the commodity of this regulation can be shown) time, the value of content descends, the danger that has business prototype to be hindered.
Therefore; utilizing the internet; work in coordination with the playback of content and show under the situation of link information; must become the effective structure of link information that the broadcasting industry merchant is maked a promise; and; about the link information that the broadcasting industry merchant makes a promise, also needing is that the link information maked a promise is protected and the structure illegally do not altered.But, in technology in the past, can not realize such structure.
Patent documentation 1:(Japan) spy opens the 2003-204308 communique
Patent documentation 2:(Japan) spy opens the 2000-278618 communique
Patent documentation 3:(Japan) spy opens flat 10-75219 communique
Patent documentation 4:(Japan) spy opens the 2001-128130 communique
Summary of the invention
In view of above-mentioned problem, provide in content under the service condition of first purpose, exist receiving terminal not observe the problem of using.
The present invention is the invention in view of above-mentioned problem, a kind of meta data access control system, method are provided and use their receiving system and dispensing device, being used to realize provides the access control information of service condition of first purpose and structure that the using method that receives end side is controlled according to having recorded and narrated content.
As the means that solve above-mentioned problem, the present invention comprises in the content reception apparatus of relevant metadata access control: the metadata verification unit is used to check metadata; Metadata access control information unit is used to check the metadata access control information; Test to content in the content inspection unit; And the metadata identifying unit, can the judgement metadata be utilized.
In addition, in meta data access control system of the present invention, comprising: possess to have and give metadata dispensing device at the metadata access control information extra cell of metadata with the information that is used for checking metadata; Possesses the content sending apparatus that the content inspection information extra cell of giving the information that is used for inspection content is arranged; Possess the metadata access control information dispensing device of giving the metadata access control information checking information extra cell that is used to check the information that the metadata access control information generates is arranged; And by the metadata access control information verification unit of the metadata verification unit that is used to check metadata, check metadata access control information, the content inspection unit of inspection content and the content reception apparatus whether judgement can utilize the metadata identifying unit of metadata to constitute.
In addition, the present invention includes: the content providing device that the storage control information from storage control service generator is provided check; To be used for that content is obtained the storage control information that location contents stores and be delivered to the storage control service generator that described content obtains the unit; And, only under the situation that the content by storage control information storage is authenticated by the content providing device that provides, come the content of memory contents to obtain the unit according to the storage control information for from storing the storage control information that control service generator is obtained.Thus, can provide cause merchant's right to protect to the service that services such as content provides are provided.
In addition, the present invention includes: hold in being applicable to and store the situation of control information control and storage, the content providing device of authentication is provided after having added the playback control information; Additional the storage control information that obtains from storage control service generator have under the situation of playback control information, and the content that playback control information and content are stored obtains the unit; And under to the situation of resetting with the stored content of playback control information, the content playback unit of resetting according to the playback control information.Thus, can protect the right that the broadcasting industry of content merchant is provided.
In addition, the present invention includes: after controlling the ID that has added the playback control information in the storage control information of serving generator, provide authentication, the playback control information is offered the content providing device that content obtains the unit from storage; And obtain and be attached to the corresponding playback control information of playback control information ID from the storage control information that storage control service generator is obtained from content providing device, and the content that the playback control information that will obtain and content are stored obtains the unit.Thus, can use the frequency band of service business merchant and receiving system expeditiously.
In addition, present invention resides in when the content video recording consistent with user's personal attribute and hobby stored, under the situation that has received the playback control information corresponding with content, the content that playback control information and content are stored obtains the unit.Thus, can protect broadcasting industry merchant's right, store the content of the hobby that meets the user simultaneously.
In addition, as the link information Verification System, the present invention includes: the content providing device that carries out the broadcasting of content by radio network; Content reception apparatus from the described content providing device reception and the described content of resetting; And to described content reception apparatus, the link information generator of the link information that should show simultaneously with the playback of described content in the described content reception apparatus is provided, described link information generator has: be associated with described content, generate the link information generation unit of the link information of the link destination that is used to specify regulation; Described link information is sent to described content providing device, receive the link information transmission receiving element of described link information having been given the link information of having signed of digital electronic signature from described content providing device simultaneously; And provide the unit with the link information of signature that the described link information of having signed offers described content reception apparatus, described content providing device has: receive described link information from described link information generator, signed the link information that link information sends to described link information generator and send receiving element described simultaneously; Management is to the content management units of the described content of described content reception apparatus broadcasting; Generate the corresponding testimonial certificate generation unit of described content with described content management units management; For the described link information that receives from described link information generator, give described digital electronic signature by using the described certificate that generates by described certificate generation unit, generate the described signature unit of having signed link information; The described content of described content management units management is passed through the radio unit of described radio network to described content reception apparatus broadcasting; And the described certificate corresponding with described content that described certificate generation unit generates sent to the certificate transmitting element of described content reception apparatus, described content reception apparatus has: the broadcast reception unit that receives described content from described content providing device by described radio network; Receive the described testimonial certificate receiving element corresponding from described content providing device with described content; Receive the described link information receiving element of having signed link information from described link information generator; The described link information administrative unit of having signed link information that management is received by described link information receiving element; Retrieve the described link information retrieval unit of having signed information the link information from described signature of described link information administrative unit management, described signature information comprises the described link information that is associated with the described content of described broadcast reception unit reception; The described certificate that uses described certificate receiving element to receive, carry out the described check of having signed the described digital electronic signature in the link information that retrieves by described link information retrieval unit, can be judged as the signature authentication ' unit of effective link information the described described link information of having signed in the link information that described digital electronic signature is tested; The content playback unit that the described content that described broadcast reception unit is received is reset; And during the described content playback in described content playback unit, show the link information display unit that is judged as effective described link information by described signature authentication ' unit simultaneously, playback time in described content, with be associated by the described content of being reset, and be judged as effective described link information by described signature authentication ' unit and in described content reception apparatus, be shown.
According to this structure, estimated in the legitimacy of the link information of making a promise by the broadcasting industry merchant, and only being judged as being under the situation of effective link information, in content reception apparatus, effectively the playback of link information and content is shown together.
According to the present invention; provide the access control information of the service condition of first purpose to control the structure of the using method of receiving terminal side by providing according to having recorded and narrated content; thereby under the service condition of content supplier's purpose, use, so can protect content cause merchant's right.
Description of drawings
Fig. 1 is a block diagram of discussing the summary of relevant meta data access control system of the present invention.
Fig. 2 is illustrated in the figure of summary of example of metadata of control that resets of expression in the system of Fig. 1.
Fig. 3 is the figure that has recorded and narrated the example of the metadata of expression playback control in the system of Fig. 1 with the XML form.
Fig. 4 is the block diagram of the meta data access control system structure of expression the present invention the 1st execution mode.
Fig. 5 is the figure of the metadata of having given digital electronic signature of above-mentioned the 1st execution mode of expression.
Fig. 6 is the figure of the relevant metadata access control information of an example of above-mentioned the 1st execution mode of expression.
Fig. 7 A and Fig. 7 B are the figure of expression as the content of the corresponding content information of the metadata access control information key element of above-mentioned the 1st execution mode.
Fig. 8 A-Fig. 8 D is the figure of expression as the content of the corresponding element data content information of the metadata access control information key element of above-mentioned the 1st execution mode.
Fig. 9 is the synoptic diagram of the relevant permission of above-mentioned the 1st execution mode of expression.
Figure 10 is the flow chart of action of the receiving system of above-mentioned the 1st execution mode of explanation.
Figure 11 is the figure of a routine metadata access control information of above-mentioned the 1st execution mode of expression.
Figure 12 A, Figure 12 B are the head of related content of above-mentioned the 1st execution mode of expression and the figure of manifold content.
Figure 13 is that explanation BIT and SDT according to PSI/SI in above-mentioned the 1st execution mode confirms that content provides the figure of the method for unit.
Figure 14 is the block diagram of the meta data access control system structure of expression the present invention the 2nd execution mode.
Figure 15 is the figure of the relevant metadata access control information of the present invention of an example of above-mentioned the 2nd execution mode of expression.
Figure 16 is the block diagram of the meta data access control system structure of expression the present invention the 3rd execution mode.
Figure 17 is the figure of the relevant metadata access control information of the present invention of an example of above-mentioned the 3rd execution mode of expression.
Figure 18 is the overall structure figure of the present invention's the 4th execution mode.
Figure 19 is the broadcasting industry merchant cut-away view of the present invention the 4th~the 5th execution mode.
Figure 20 is the video recording control service business merchant cut-away view of the 4th, the 8th execution mode of the present invention.
Figure 21 is the receiving terminal cut-away view of the present invention's the 4th execution mode.
Figure 22 is the figure of personal attribute's data example of expression the present invention the 4th~the 8th execution mode.
Figure 23 is the figure of the video recording control information example of expression the present invention the 4th~the 8th execution mode.
Figure 24 is each video recording control service business merchant's of expression the present invention the 4th~5th, the 8th execution mode the figure of example of playback condition.
Figure 25 is the figure of example of the playback condition table of expression the present invention the 4th~the 8th execution mode.
Figure 26 is the figure of example of playback condition of each content of expression the present invention the 4th~the 8th execution mode.
Figure 27 is the figure of example of the playback condition that obtains of receiving terminal of expression the present invention the 4th~the 8th execution mode.
Figure 28 is the figure of example of data format of the video recording control information on services of expression the present invention the 4th~5th, the 8th execution mode.
Figure 29 is the flow chart of the content choice process of expression the present invention the 4th~the 8th execution mode.
Figure 30 is the figure of example of the recording schedule admin table of expression the present invention the 4th~the 8th execution mode.
Figure 31 is the figure of example of the memory contents admin table of expression the present invention the 4th~the 8th execution mode.
Figure 32 is the overall structure figure of the present invention's the 5th execution mode.
Figure 33 is the video recording control service business merchant cut-away view of the present invention's the 5th execution mode.
Figure 34 is the receiving terminal cut-away view of the present invention's the 5th execution mode.
Figure 35 is the sale cause merchant cut-away view of the present invention's the 5th execution mode.
Figure 36 is the overall structure figure of the present invention's the 6th execution mode.
Figure 37 is the broadcasting industry merchant cut-away view of the present invention the 6th~the 7th execution mode.
Figure 38 is service business merchant's cut-away view of the present invention's the 6th execution mode.
Figure 39 is the receiving terminal cut-away view of the present invention's the 6th execution mode.
Figure 40 is the figure of data format example of the video recording control information of expression the present invention the 6th execution mode.
Figure 41 is the figure of data format example of the playback condition of expression the present invention the 6th execution mode.
Figure 42 is the overall structure figure of the present invention's the 7th execution mode.
Figure 43 is the receiving terminal cut-away view of the present invention's the 7th execution mode.
Figure 44 is the overall structure figure of the present invention's the 8th execution mode.
Figure 45 is content supplier's cut-away view of the present invention's the 8th execution mode.
Figure 46 is the receiving terminal cut-away view of the present invention's the 8th execution mode.
Figure 47 is the permission cause merchant cut-away view of the present invention's the 8th execution mode.
Figure 48 is the figure that the data format example of information on services is controlled in the video recording of expression the present invention the 8th execution mode.
Figure 49 is the figure of data format example of the licence of expression the present invention the 8th execution mode.
Figure 50 is the integrally-built block diagram of the link information Verification System of expression the present invention the 9th execution mode.
Figure 51 is the block diagram of the content providing device that possesses of the broadcasting industry merchant of the link information Verification System of expression the present invention the 9th execution mode.
Figure 52 is the block diagram of the link information generator that possesses of the ISP of the link information Verification System of expression the present invention the 9th execution mode.
Figure 53 is the block diagram of the link information authenticate device that possesses of the receiving system of the link information Verification System of expression the present invention the 9th execution mode.
Figure 54 is the link information Verification System that is used for illustrating at the present invention's the 9th execution mode, for link information, the content providing device till the broadcasting industry merchant signs and the sequential chart of the processing in the link information generator of ISP generation.
Figure 55 is the link information Verification System that is used for illustrating at the present invention's the 9th execution mode, the link information authenticate device is from broadcasting industry merchant received content and public-key cryptography certificate, the sequential chart of the processing the content providing device till the link information that the ISP retrieval can show simultaneously with the playback of content, link information generator, the link information authenticate device.
Figure 56 is the link information Verification System that is used for illustrating at the present invention's the 9th execution mode, the link information that the link information authenticate device will authenticate after the signature of link information is tested and the playback of content side by side show, the link information generator till the access and the sequential chart of the processing in the link information authenticate device are carried out in the link destination of link information.
Figure 57 is the figure of the data example put down in writing in the link information of link information Verification System of expression the present invention the 9th execution mode.
Figure 58 is SI, the link information of the routine content of link information Verification System of expression the present invention the 9th execution mode and content, the figure of the testimonial relation of public-key cryptography.
Figure 59 is SI, the link information of another the routine content of link information Verification System of expression the present invention the 9th execution mode and content, the figure of the testimonial relation of public-key cryptography.
Figure 60 is the integrally-built figure under the situation of the authentication platform that utilizes the link information system of expression the present invention the 9th execution mode.
Label declaration
1 metadata dispensing device
2 metadata access control information dispensing devices
3 content sending apparatus
4 receiving systems
5 dispense path
11 metadata generation units
12 metadata checking information extra cells
21 metadata access control information generating apparatus
22 metadata access control information checking information extra cells
31 content generation units
32 content inspection information extra cells
41 metadata verification units
42 metadata access control information verification units
43 content inspection unit
44 metadata identifying units
45 metadata are utilized the unit
46 contents are utilized the unit
101,201,301,401 broadcasting industry merchants
102,202,302,502 video recording control service business merchants
103,203,303,402,503 receiving terminals
111 content management units
112,312 content radio units
113 video recording control informations obtain the unit
114,314 playback condition administrative units
115,311 signature unit
116 information on services transmitting elements
121 audiovisual historical collection unit
122 audiovisual historical analysis unit
123 service management unit
124 personal attribute's data transmission unit
125 video recording control informations form the unit
126,321 video recording control information transmitting elements
127 information on services receiving elements
128 information on services transmitting elements
The historical transmitting element of 131 audiovisual
The historical holding unit of 132 audiovisual
133 personal attribute's Data Receiving unit
134 personal attribute's data holding unit
135 information on services receiving elements
136 certificate holding units
137 signature verification units
138 content choice unit
139 content receiving elements
140 content management units
141 content display unit
142 content playback unit
143 user's recording schedule holding units
144 certificate administrative units
204 sell the cause merchant
221 information on services cryptographic processing units
222 encryption key transmitting elements
231 demodulation key receiving elements
232 demodulation key holding units
233 information on services demodulation process unit
241 encryption key receiving elements
242 key holding units
243 demodulation key transmitting elements
313,322 signed video recording control information transmitting element
321 have signed video recording control information receiving element
331 video recording control information receiving elements
332 broadcast reception unit
501 content suppliers
504 permission cause merchants
511 content encryption unit
512 permission transmitting elements
531 licence receiving elements
541 permission receiving elements
542 permission holding units
543 licence transmitting elements
206,303,408 communication units
300 link information generators
301 link information generation units
302,405 link information administrative units
The 304Web service provides the unit
400 link information authenticate devices
401 broadcast reception unit
402 content playback unit
404 signature authentication ' unit
406 link information retrieval units
407 link information display units
409Web serves display unit
1104 authentication platforms
Embodiment
Below, relevant execution mode more specifically of the present invention is described.Have, the present invention is not subjected to any qualification of these execution modes again, in the scope that does not break away from its main idea, can implement by various modes.
(summary of the present invention)
Fig. 1 is the system construction drawing that is used to illustrate summary of the present invention.Dispense path 1802 is passed through with the content supplier 1801 that carries out the VOD service in the broadcasting station, and the receiving system 1804 that the user is being utilized distributes contents 1811.
On the other hand, metadata provider 1803 is formed for carrying out access control, summary audiovisual and storage control, the link of content 1811 is given etc. the metadata 1813 of control content 1811, by above-mentioned dispense path 1802, to user's receiving system 1804 distribution metadata 1813.And, from content supplier 1801 to user's receiving system 1804 distribute can control content 1811, representation element data 1813 and with content 1811 metadata corresponding access control informations 1812.Receiving system confirms it whether is metadata X813 by 1811 permissions of metadata access control information, and whether metadata 1813 and content 1811 be with metadata access control information 1812 correspondences, utilizes metadata 1813 and control content 1811.In dispense path 1804, except the radio network of the digital satellite broadcasting 1822 of ground wave digital broadcasting 1821, BS and CS etc., digital CATV broadcasting 1823 etc., also has internet 1824 as bilateral network, utilize which dispense path 1804, according to the cause merchant's who changes because of the state that whether has distributed content 1811, metadata 1813, metadata access control information 1812 equipment, utilization, can at random select.
Metadata 1813 be used to make content can carry out TV programme etc. content 1811 attribute information or only the special scenes of content 1811 perhaps made specific content 1811 be stored in storage control in the receiving system 1804, be illustrated in the various control purposes such as link control of the link information of the Web page or leaf that can show in the content etc. by the playback of the summary audiovisual of audiovisual control.The metadata that is used to carry out the summary audiovisual as shown in Figure 2.This Fig. 2 represents to represent in the present invention to reset the figure of schematic configuration of metadata of control.In addition, as the metadata with TV Anytime Forum definition, it is such to become Fig. 3 when recording and narrating with XML.This Fig. 3 will represent the figure of the metadata of playback control with the record of XML form among the present invention.And being used for making content 1811 to be stored in the metadata of receiving system 1804, its details back is discussed, but it is such to become Figure 40.The relevant details back of the link information of displayable Web page or leaf is discussed in the content, but it is such to become Figure 57.
(execution mode 1)
Fig. 4 is the block diagram of the receiving system that is used to implement the metadata access control method of the 1st execution mode of the present invention, dispensing device and the meta data access control system that is made of them.Meta data access control system shown in Figure 4 comprises the receiving system 4 of metadata dispensing device 1, content sending apparatus 3, metadata access control information dispensing device 2, dispense path 5 and received content.Have, content sending apparatus 3 is devices that the content supplier 1801 of Fig. 1 has again, and metadata dispensing device 1 is the device that the metadata provider 1803 of Fig. 1 has.Metadata access control information dispensing device 2 is the device that keeps of content supplier 1801 normally, but the situation that is seen as the third party who is trusted by content supplier by authentication platform etc. is also arranged.Dispense path 5 is corresponding with dispense path 1802, and receiving system 4 is corresponding with receiving system 1804.In addition, the distribution of metadata unit is corresponding with metadata provider 1803.
Receiving system 4 is the devices that are used to receive and use metadata and metadata access control information and content.Receiving system 4 comprises: the metadata verification unit 41 that is used to check metadata; The metadata access control information verification unit 42 of check metadata access control information; The content inspection unit 43 of inspection content; Judge whether metadata is provided first metadata identifying unit 44 of permitting by content; Use the metadata of metadata to use unit 45 according to result of determination; And according to the content use unit 46 of metadata with content playback.
Below, the action about the meta data access control system that is made of such device and unit is described.
The metadata that is sent by metadata dispensing device 1, the metadata access control information that is sent by metadata access dispensing device 2, the content that is sent by content sending apparatus 3 are assigned to receiving system 4 via dispense path 5.At first, discuss relevant metadata dispensing device 1, metadata access control information dispensing device 2, content sending apparatus 3 as dispensing device.
At metadata dispensing device 1, generate and the content metadata corresponding by metadata generation unit 11.In metadata, as shown in Figure 3, will as the identifying information 1101 of the content of the object of metadata control (crid: ∥ broadcast.com/ContentID1), 1102 navigation informations of the summary of content etc., to content ' crid: after the method definition of the playback of ∥ broadcast.com/ContentID1 ', record has the metadata body, is used to discern the metadata identifying information 1100 of metadata self, is it (corresponding with position shown in Figure 3 that the metadata body has comprised the script informations such as information 1103 that are used for putting the navigation of audiovisual and scene?).For the metadata that generates, at metadata checking information extra cell 12, give checking information, whether this checking information is used for receiving system 4 and can checks the identifying information of the distribution unit of the extraction of distribution metamessage of metadata and metadata and metadata legal.As the example of additional checking information,, the methods such as identifying information that key is given digital electronic signature and the use eletric watermark is put down in writing distribution metamessage and metadata in metadata self by the distribution unit of metadata are arranged for metadata.In addition, the situation of the information when the transmission of metadata can be utilized and check to the information that replaces the metadata checking information etc. also can not given the metadata checking information down.
As an example of metadata checking information, the relevant situation of having utilized digital electronic signature describes with Fig. 5.For the body part 1901 and 1911 of metadata, give digital electronic signature 1902 as the metadata checking information.As the method for digital electronic signature, for example have by standardized mode etc. X.509.Digital electronic signature 1902 comprises: signature object 1912, signature algorithm 1913, digest value computational algorithm 1914, digest value 1915, signature value 1916, key information 1917.Signature object 1912 is that the expression digital electronic signature is the scope of effective range, specify metadata entity is arranged, promptly 1911.Do not specify this signature object yet, and make all methods for the signature object.In signature algorithm 1913, the algorithm that has appointment that signature value described later is encrypted is specified the Public Key Cryptographic Systems that so-called DSA (Digital Signature Algorithm) arranged here.Digest value computational algorithm 1914 from as the data of signature object by hash function, specify the algorithm that is used to generate digest value, designated have a SHA-1.Digest value 1915 is to utilize the SHA-1 of digest value computational algorithm 1914 to calculate the value of the data gained of signature object 1912, becomes ' Sagfsukgfd8k2, sd@ '.Signature value 1916 is that digest value 1915 is utilized the value of signing after algorithm 1913 is encrypted.In example, become and utilize DSA, with utilize metadata distribution unit secret key encryption digest value ' Sagfsukgfd8k2, the value of sd@ ' gained ' Gljm, l; K90k4buxzl3 '.In key information 1917, specify to be used for the key information of receiving system 4 with necessity of signature value 1913 deciphering, here, as public-key cryptography certificate ID, designated ' 004587 '.As the testimonial designation method of this public-key cryptography, except the appointment public-key cryptography certificate ID that has discussed, specify the testimonial possessory method of public-key cryptography in addition.In addition, the method that has the testimonial solid data of public-key cryptography itself in addition.Add the metadata of metadata checking information, be sent to dispense path 5 in order to distribute to receiving system 4.
Below, the action of relevant metadata access control information dispensing device 2 is described.At metadata access control information dispensing device 2, by the 21 generator data access control informations of metadata access control information generation unit.Example about the metadata access control information describes with Fig. 6.Be contained in the information in the metadata access control information, comprise corresponding content information 18 and corresponding element data message 16 or non-corresponding element data message 17.Corresponding content information 18 is the information of content 20 that is identified for carrying out the access control of metadata, by the identifying information of content 20 with expression such as metamessage is provided.About corresponding content information 18, the figure that illustrates in greater detail is Fig. 7.Fig. 7 A is the situation of the identifying information of expression corresponding content information representation content, directly specifies meaningful identifier.Identifier as content, utilization is described in the metadata with the method utilization of TV Anytime Forum, for the content that is utilized from metadata indication and displaying contents with reference to identifier (CRID), or under the situation of digital broadcasting, also can utilize the network ID, service ID, the event id that comprise among the PSI/SI by ARIB STD-B10 definition.In this case, determine content by the content identifier that is recorded in the corresponding content information.
On the other hand, Fig. 7 B is the situation of the identifier that unit is provided of expression corresponding content information representation content, and providing of content is first designated.As other appointments, the identifier of unit is provided as content, except the URL (Unique Resource Locator) that utilizes by the internet, cause merchant's identifier (being ABCD among Fig. 7 B), except the domain name of URN (Unique Resource Name), DNS, also will transmit substantial routing information regard as provide the unit, as its identifying information, can utilize the broadcasting industry merchant ID of the PSI/SI that utilizes by digital broadcasting and service ID etc.Relevant PSI/SI information is discussed with Figure 13 (back appearance) back.
Corresponding element data message 16 is metadata informations that expression can be carried out the metadata 13A-13C of access to content 20, the information 14 of the identifying information of representation element data and definite metadata distribution unit etc.For example, as the information of determining 14, be useful on the public-key cryptography certificate of the distribution unit that confirms to be endowed the digital electronic signature in metadata and be used to specify the testimonial identifier of public-key cryptography, determine the identifying information of metadata distribution unit---owner ID, be contained in the service_id of broadcaster_id broadcasting industry merchant ID, terrestrial_broadcaster_id, affiliation_id or expression service in the PSI/SI information of digital broadcasting etc.About corresponding element data message 16, the figure that describes in more detail is Fig. 8.Fig. 8 A is the situation of the identifying information of corresponding element data message 16 representation element data, directly specifies the identifier that metadata is arranged.In this case, only specify be endowed be recorded in the corresponding element data in the metadata of the consistent metadata identifier of metadata ID.Fig. 8 B has specified the situation of issuing first ID, so that the distribution unit of corresponding element data identification metadata.In this case, as the distribution unit of metadata, only specify be recorded in the corresponding element data in the metadata of the consistent ID of distribution unit of the ID of distribution unit.
Below, discuss relevant corresponding element data and specify the testimonial situation of public-key cryptography.Fig. 8 C is that the corresponding element data have been specified the testimonial situation of public-key cryptography, as an example, utilizes the ID of the testimonial identifier of public-key cryptography sometimes.In this case, giving that digital electronic signature in metadata only specifies can be by the metadata of the public-key cryptography certificate check of corresponding element data appointment.Have again,, except public-key cryptography certificate identifier, can also specify the testimonial owner of public-key cryptography as the testimonial designation method of public-key cryptography.Fig. 8 D is that the corresponding element data are public-key cryptography certificate self.In this case, the digital electronic signature that is endowed in metadata is only specified the enough metadata that be contained in the public-key cryptography certificate check in the corresponding element data of energy.
Non-corresponding element data message 17 is opposite with corresponding element data message 16, be the information of the metadata 13D that expression can not access content, the identifying information of such metadata 13D and the information 14 of definite metadata distribution unit are similarly put down in writing with corresponding element data message 16.Information as the metadata of this metadata access control information reference has non-corresponding element data message 17 and corresponding element data message 16, by the record of the data more than one of them, works as the metadata access control information.Have again, the specific distribution of the data allocations that on receiving system, the user is generated alone unit identifier, and their identifier is documented in corresponding element data message or the non-corresponding element data message.Thus, can pass through the metadata access control information, could the using of the content of the metadata that control generates alone for the user.
The metadata access control information has situation in the metadata of being contained in, be contained in the situation of content, be contained in the various methods such as situation of permission.Have again, for situation about being contained in the metadata, with discussing in the execution mode 2, for situation about being contained in the content, with discussing in the execution mode 3.Situation for being contained in the permission describes with Fig. 9.Permission 1501 is to comprise to be used for key 1511 that the content of encrypting is decrypted and the permission that utilizes condition 1512 that is used to utilize content; be in order to protect content; under the content situation encrypted, these encrypted content 1521 playback times are being formed the permission that content is utilized unit 1531 by the DRM system.In permission, comprise under the situation of metadata access control information 1513, make up with the corresponding content of permission and encrypted content and with the key of its deciphering, but it is corresponding to pass through the DRM system, so permit self corresponding with content.Therefore, also can omit the corresponding content information 18 that comprises in 1513 sometimes.
In this metadata access control information,, additional be used for the checking information 19 of legitimacy etc. that receiving system 4 can be checked the distribution unit of metadata access control information by metadata access control information checking information extra cell 22.This metadata access check information, for the metadata access control information, the privacy key that can enumerate by metadata access control information distribution unit carries out digital electronic signature, or utilizes eletric watermark and imbed the method etc. of the information of the distribution unit check that is used for the metadata access control information in the metadata access control information.The metadata access control information that has added checking information is sent to dispense path 5, so that distribute to receiving system 4.
Have again, as described above, under the situation that content has been applied the utilization restriction, also can distribute the information and the metadata access control information of the utilization that is used for licensed content.As concrete example; have for the content that is subjected to the DRM system protection; part of utilizing condition as content; record and narrate the metadata access control information; and only to the terminal of the utilization of having permitted content; there is distribution to be used to comprise the mode that this utilizes the permission of condition, promptly such as described above, there is the metadata access control information to be contained in mode in the permission etc.
Below, describe for content sending apparatus 3.At content sending apparatus 3, generate content by content generation unit 31.For the content that generates, give checking information by content inspection information extra cell 32.Checking information be used for that receiving system 4 confirms contents provide metamessage whether legal and be endowed in the whether legal information of the identifying information of content.Example as checking information, substantially provide digital electronic signature that unit gives content, utilize eletric watermark with content provide the identifying information of metamessage and content be embedded in information in the content, be inserted in content in the head of content-data provide metamessage and content identifying information information or under the situation of the content that constitutes by a plurality of files and resource (below, be called many parts content), be recorded in the identifying information that content in a configuration file and the resource provides metamessage and content.The content of having added checking information is sent to dispense path 5, so that be assigned to receiving system 4.The metadata, metadata access control information, the content that are sent to receiving system 4 from dispensing device also can be encrypted the back transmission, so that not only be used to protect content, also make from metadata the access control rule of content is carried out reliably.Promptly, only can observe and implement reliably the receiving system 4 of the condition of the metadata access control information of content to be provided with the restriction of the decruption key that can obtain described encrypted metadata, metadata access control information, content, observe restriction when when content is utilized, being decrypted from metadata.
(receiving system)
Below, discuss the action of relevant receiving system 4 with Fig. 4 and Figure 10.
(check of metadata)
In receiving system 4 for the check of the metadata that received, by 41 pairs of metadata of metadata verification unit test (S301).The check of metadata is by using checking information additional in metadata, confirm the distribution metamessage of metadata, thereby prevents the pretending to be of publisher of malice.Obtaining by broadcast route under the situation of metadata, obtaining one of them of method of the broadcast route information of metadata by the method for utilizing digital electronic signature, the method for utilizing the identifier in the metadata, the method for utilizing CAS, utilization, can test.Obtaining by communication path under the situation of metadata, method by utilizing digital electronic signature, utilize the testimonial method of public-key cryptography that obtains from meta data server, utilize DRM to make one of them of the reliable method of information of metadata record, can test.Below, discuss the detailed method of inspection.
(utilizing the method for digital electronic signature)
As an example of the method that the distribution metamessage of metadata is tested,, utilize Fig. 5 to discuss for the situation of utilizing the digital electronic signature of in the metadata checking information, giving.At metadata verification unit 141, obtain the signature check of metadata and go up required public-key cryptography certificate.The public-key cryptography certificate that is used for necessity that the digital electronic signature of metadata is tested, whether the testimonial identifier of public-key cryptography of record in the key information 1917 of utilization in being contained in digital electronic signature is retrieved the public-key cryptography certificate consistent with this identifier and is kept by not shown certificate administrative unit.If the public-key cryptography certificate that can not agree then utilizes the public-key cryptography that comprises in the disclosure key certificate, with 1916 deciphering of signature value.Relatively value and the digest value (1915) after the deciphering if can confirm unanimity, then can be confirmed digital electronic signature.After carrying out having inspected of digital electronic signature of check, metadata of digital electronic signature, the testimonial owner information of public-key cryptography of the signature check usefulness of using when confirming the check of metadata checking information is tested to the distribution unit of metadata.Perhaps, approve really by digital electronic signature and to know and do not carry out altering of metadata, so can also utilize provider's information of in metadata, putting down in writing (Fig. 3 1100).The disclosure key certificate uses the certificate by reliable CA authority releases, or uses the signed certificate by the intermediate proof book of the machine-operated distribution of reliable CA.Thus, can be judged as and to trust testimonial content.In addition, so-called signature is not only corresponding with the privacy key that has carried out signature, and only just can checks with a public-key cryptography that the cause merchant who metadata has been carried out signature can judge the testimonial owner who uses really in check.
(utilizing the metadata information in broadcast transmitted path)
Another example as the method that the distribution metamessage of metadata is tested, obtaining under the situation of metadata from cause merchant's specific broadcast route in addition, will by put down in writing in the metadata that obtains or regard reliable method as by identifying information and distribution metamessage (for example 1100 of Fig. 3) that eletric watermark is embedded in the metadata.
(utilizing the identifier in broadcast transmitted path)
Another example as the method that the distribution metamessage of metadata is tested, also have and to obtain the broadcast route information of metadata, to be to utilize broadcaster_id under the situation of broadcasting industry merchant ID, for example BS digital broadcasting in the path of designation number broadcasting, utilize the PSI/SI information of terrestrial_broadcaster_id and so-called family ID (affiliation_id) and service ID to determine the method for the distribution metamessage of metadata on the ground under the situation of digital broadcasting.
(utilizing CAS)
As another example of the method that the distribution metamessage of metadata is tested, discuss the relevant situation of having used CAS.CAS is the access control method that utilizes in the digital broadcasting, is the situation by CAS protection metadata.Promptly, also have under the situation of encrypted transmission, because the unique key that can only have with receiving system is decrypted, so regard the metadata distribution metamessage put down in writing in the metadata (for example 1100 of Fig. 3) and metadata identifier information and broadcasting industry merchant identifier as reliable method etc.Under the situation of CAS, only the unique key that has with receiving system is decrypted, and is to take out the working key that is used for the ECM deciphering from possible EMM grouping.Then, can the scrambling key (scramble key) that be used for stream deciphering that metadata is comprised will be obtained after the ECM deciphering.The scrambling key that utilization obtains with the deciphering of the metadata on the stream, thereby can be obtained metadata.By above processing, metadata is protected and can be sent to receiving system.That is be reliable content owing to can be judged as the content of metadata,, so can have cause merchant's identifying information in the path of metadata to determine distribution unit by certain cause merchant information and the transmission of putting down in writing in the metadata.
(utilizing the public-key cryptography certificate of server)
As another example of the method that the distribution metamessage of metadata is tested, be to utilize the public-key cryptography certificate.This can authenticate receiving system by reliable cause merchant's information of utilizing receiving system self to have and obtain the public-key cryptography certificate that the meta data server of destination is obtained from metadata, obtains thereby can be judged as from being judged as reliable meta data server.Therefore, have and the content of metadata self can also be judged as correctly, utilize the metadata distribution metamessage of recording and narrating in the metadata to determine the method for the distribution unit of metadata.Perhaps, utilize certain owner information of from the public-key cryptography certificate that server obtains, putting down in writing to determine.Have again,, the public-key cryptography certificate is arranged and be used at first determining testimonial identifier of public-key cryptography and the testimonial owner information of public-key cryptography as reliable cause merchant's information that receiving system can keep.
(utilizing the DRM system)
Another example as the method that the distribution metamessage of metadata is tested has the situation of utilizing the DRM system.It is encrypted that it is that metadata is passed through the DRM system, and same with CAS, metadata is protected.Therefore, receiving system is obtained with maintaining secrecy and is used for the permission with metadata deciphering from the DRM system, is reliable content so the content of the distribution unit identifying information put down in writing in the metadata can be judged as, and can determine metadata distribution unit thus.As described above, the method of inspection that the legitimacy of various metadata distribution units and content is arranged, but use which type of method, by utilization, the easness of installing, pretend to be taking into account of degree of difficulty that metadata distribution unit and content alter, and decide by the transfer approach of the selectable metadata of each cause merchant.
After having inspected of metadata, as assay, with the metadata identifying information of metadata and metadata distribution metamessage (for example, ' crid: be sent to identifying unit 144 (S302) more than ∥ broadcast.com/ContentID1 ') one of them that records and narrates of the crid shown in 1101 as ProgramRef.Then, at least one of the testimonial identifying information of public-key cryptography that utilizes in the check with metadata identifying information, metadata distribution metamessage (for example metadata publisher ID=ABCD) and metadata and with reference under the situation of the identifying information of the content of metadata, SegmentInformation that for example metadata is Fig. 3 with 1101 represent as the crid record of ProgramRef ' crid: ∥ broadcast.com/ContentID1 ' is sent to metadata access control information verification unit 142 (S303).
(one of check of metadata access control information)
At metadata access control information verification unit 142, the identifying information of search metadata and the consistent metadata access control information (S311) of distribution unit.One of metadata access control information is illustrated in Figure 11.This metadata access control information 11001 comprises: each data of corresponding element data 11002, corresponding content 11003 and checking information.The metadata publisher is under the situation of ABCD, retrieves the metadata access control information 11001 that first ABCD is issued in 11002 expressions of corresponding element data from the administrative unit that the metadata access control information to not shown receiving system manages.As additive method, the testimonial identifier of public-key cryptography, owner information that utilization utilizes in the check of the digital electronic signature of above-mentioned metadata are retrieved this metadata access control information.This retrieval is different because of the form (Fig. 8 A~Fig. 8 D) of the corresponding element data message of metadata access control information.No matter the metadata access control information has passed to receiving system, still because still unallocated and obtain by network.
After finding this metadata access control information, the content by the reference metadata and the metadata access control information of this metadata of discovery confirm they whether corresponding (S312).That is, whether metadata and with reference to the correspondence of the content of metadata is confirmed corresponding by the corresponding element data message 16 and the corresponding content information 18 of metadata access control information.In addition, also confirm whether to become the object of non-corresponding element data message 17.Have again, needn't once take into account corresponding element data 211 and non-corresponding element data message 17.If metadata access control information shown in Figure 11, ' crid: ∥ broadcast.com/ContentID1 ' and the content identifier corresponding with the metadata that sends from the metadata verification unit (are ' crid: ∥ broadcast.com/ContentID1 '), whether consistently confirm under the situation of Fig. 3 then to compare the content identifier of putting down in writing in the corresponding content 11003.Above-mentionedly confirmed that by content identifier and metadata distribution unit metadata is corresponding with content, but as corresponding content, also can replace content identifier and utilize content that unit, content decryption key are provided, as the corresponding element data, also can replace metadata distribution unit and to utilize the metadata identifier to confirm corresponding.
(check of metadata access control information two)
Obtained the affirmation of correspondence of metadata and content by the metadata access control information after, use the checking information of metadata access control information, the distribution unit (S313) of check metadata access control information.Under the situation of metadata access control information with the broadcast mode transmission, by utilizing digital electronic signature, utilize publisher's information of imbedding in the eletric watermark mode in the metadata access control information, the information that obtains destination self of utilizing broadcast route, utilizing the distribution metamessage of in the metadata access control information, putting down in writing, can issue the check of unit.Under the situation of metadata access control information with the communication mode transmission, by utilizing digital electronic signature, utilizing publisher's information, the receiving system in the metadata access control information, imbedded to obtain from the server of trusting, can issue the check of unit with the public-key cryptography certificate in the eletric watermark mode.
Below, about the method for inspection of metadata access control information, discuss method separately.
(utilizing digital electronic signature)
Have by checking in the metadata access control information, to be used as the digital electronic signature that checking information is given, and determine the testimonial owner of the public-key cryptography that in check, utilizes, the method for testing by the method identical with metadata.
(utilizing the identifier in broadcast transmitted path)
Another example as the distribution unit that checks the metadata access control information, also have by utilize transmit simultaneously by the broadcast route of obtaining the metadata access control information, to the information of these broadcast route supplementary features, be terrestrial_broadcaster_id and serial ID (affiliation_id) under the situation of service ID that comprises among the PSI/SI that for example is broadcasted and broadcasting industry merchant ID, terrestrial digital broadcasting, determine the distribution unit of metadata access control information, and the method for testing.
(utilizing the metadata access control information that sends with broadcast mode)
Another example as the method for checking the metadata access control information, also have under the situation that the metadata access obtains from the broadcast route of being determined by the cause merchant, cause merchant's identifying information of putting down in writing in the metadata access control information of obtaining (Fig. 3 1100) is counted as the method that can trust.
(utilizing CAS)
Another example as the distribution metamessage of checking metadata, also have under the situation of using CAS to transmit, the metadata of putting down in writing in the metadata is issued metamessage and metadata identifier information or broadcasting industry merchant identifier be counted as reliable method etc. with broadcast mode.This method of inspection checks the method for metadata identical with utilizing CAS.
(utilizing the public-key cryptography certificate of server)
Another example of the method for testing as distribution unit to the metadata access control information, also have at communication path and obtain under the situation of metadata access control information by internet etc., cause merchant's information of the public-key cryptography certificate that keeps by the cause merchant who trusts as receiving system etc., the public-key cryptography certificate that check obtains from the server that has obtained the metadata access control information can be judged as and can obtain from be judged as reliable metadata access control information server.Thus, can be judged as the metadata access control information can obtain from the path of being trusted, certain that put down in writing the testimonial owner information of public-key cryptography that utilization obtains from server, the metadata access control information is issued first identifying information, determine the provider of metadata access control information, thus the method for check metadata access control information distribution unit.
(utilizing the DRM system)
Another example as the method that the metadata access control information is tested has the situation of utilizing the DRM system.It is that the metadata access control information is encrypted by the DRM system, receiving system from the DRM system secrecy obtain the permission that is used for metadata access control information deciphering, so the content of the distribution put down in writing in metadata access control information unit identifying information can be judged as is reliable content, can determine metadata access control information distribution unit thus.
(utilizing permission)
Argumentation metadata access control information is comprised in the situation in the permission below, and permission comprises the encryption key that is used for contents decryption.Permission is provided unit to offer the user's that can utilize content terminal from content with maintaining secrecy.Therefore, can determine the metadata access control information provide unit and content supplier to be identical to provide first.
After the distribution unit that has checked the metadata access control information, to the affirmation result of the correspondence of metadata identifying unit 44 notice metadata and content and the distribution unit (S314) of metadata access control information.And, be sent to content inspection unit 43 (S315) more than one of them of the distribution metamessage of the identifying information of the content that will utilize and content.
(content inspection)
In content inspection unit 43, provide the unit and the identifying information of content test (S321) to content.
(utilizing digital electronic signature)
As the method for inspection of content, same with metadata, have by utilize by the testimonial owner information of public-key cryptography of trusts such as authentication platform, identifier is confirmed and check the method for the digital electronic signature that the checking information that is used as content gives.
(utilization is combined in the data in the content)
As the method for another content inspection,, confirm the head of content or constitute the file and the resource of many parts content or in content, utilize the identifying information that unit and content are provided of the content of eletric watermark record when broadcast route is obtained content.Situation for identifying information is arranged in the head of content describes with Figure 12 A.In this case, content is divided into head portion 1601 and body 1602, comprises the information that is used for content playback in head portion---codec (codec) information of content, the attribute information of content etc.In this head portion 1601, in Figure 12 A, record broadcasting industry merchant identifier, but provide unit as content, inserting content provides identifier, the broadcasting industry merchant identifier of metamessage or is used to discern more than one of them of content identification information of content.Body 1602 is actual content-data, comprises by the video of codings such as MPEG-2 or MPEG-4 or the data of sound.
Situation with resource name under the situation of Figure 12 B explanation many parts content or content etc.In this case, it is one that content 1611 is gathered as many parts, and each resource and file by from 1612 to 1615 constitute.Each resource comprises the data by data, THML or the BML of the video of codings such as MPEG-2 or MPEG-4 or JPEG and image and sound.As one of them resource, as 1613,, record broadcasting industry merchant identifier as content information, and provide metamessage as content, inserting content provides identifier, the broadcasting industry merchant identifier of metamessage or is used to discern more than one of them of content identification information of content.Perhaps, in content, utilize eletric watermark and the identifying information of first identifying information of providing of content or content is provided.Under such situation, owing to be the retrievable content of dispense path by cause merchant's qualification of what is called broadcasting, be the content information of putting down in writing in the header information after synthetic or multi-part message or the eletric watermark with content, so the method that provides the identifying information of metamessage and content to test by the content of having confirmed record is arranged.
(utilizing the identifier in broadcast transmitted path)
In this case, by the broadcasting industry merchant ID that the receiving system storage is provided by the PSI/SI that utilizes in the digital broadcasting, confirm that content provides unit.For confirming that content in this case provides first method, utilizes Figure 13 to describe.When content is broadcasted, use SDT (Service Description Table) 1701 investigation to transmit the server ID of content by the server ID of channel selection.In the present example, ServiceID is 1021.Then, utilize BIT (Broadcast Information Table) 1711, investigate the Broadcast_id of this ServiceID1021.Compare with 1713 with BIT1712, this Broadcast_id is 7, so should value provide first identifier to utilize as content.Have again, in the broadcast environment that does not utilize BIT, also can provide unit to check as content Service id1024.Under the situation of terrestrial digital broadcasting, also the information of terrestrial_broadcast_id or family ID (affiliation_id) can be used as the check of distribution metamessage.
(utilizing the public-key cryptography certificate of server)
As method in addition, obtaining by communication path under the situation of content, cause merchant's information at the public-key cryptography certificate that can utilize receiving system to keep etc. is checked under the testimonial situation of public-key cryptography of the server of obtaining the destination, can be judged as from reliable content server and obtain.Therefore, the method that has the testimonial owner information of the content server that utilization obtains to test.In addition, owing to can obtain content by reliable means, so the head of the content utilized is arranged or constitute the file of many parts content and resource in the identifying information that unit or content are provided of certain content of putting down in writing, obtain the method that unit tests by having confirmed content.
(utilizing CAS)
Under the situation that content obtains, the method for the structure of utilizing CAS is arranged from encrypted broadcasting.This method is, determines the information of content, by identifier, the content identifier of the content supplier that comprised in the ECM of content key, confirmed that content obtains unit and test.
(utilizing DRM)
As another means that content is tested, synthetic checking information in content is arranged, simultaneously content is carried out the DRM method of encrypting.The head that has comprised content or constitute the file of many parts content and resource or the information imbedded in the eletric watermark mode in put down in writing under the state of the identifying information that unit or content are provided of certain content, content is utilized the DRM system, when content self is encrypted, content self can obtain secretly, thus the head by having confirmed content is arranged or constitute the file of many parts content and resource in the identifier that unit or content are provided of the content the put down in writing method of testing.
(utilizing permission)
Discussing the License Info utilized the content key below comes situation that content is tested, content key to be used for that encrypted content is decrypted to utilizing the DRM system.Because permission is provided secretly,, can carry out the check of content so utilize the content supplier's information that in permission, comprises.Under the metadata access control information is also contained in situation in the permission, that content key is provided is the cause merchant that content provides unit or permitted by content supplier, so whether the distribution unit that also can check the metadata access control information and content provide unit identical or trusted.
After the check of having carried out metadata, to the identifying information that unit or content are provided (S322) of metadata identifying unit 44 contents of announcement.At metadata identifying unit 44, according to the information that obtains from metadata verification unit 41, metadata access control information verification unit 42, content inspection unit 43, distribution unit at the metadata access control information provides unit consistent with content, and it is whether corresponding for content with metadata by the metadata access control information, confirmed under the situation of the assay that the control of this metadata is licensed, for content, be judged to be the control (S341) that to carry out metadata.That is, content provides unit by self distribution metadata access control information, content provide unit can specify can access to content metadata.Have again, provide first public-key cryptography certificate that authenticates etc., know that the relation that is provided unit to trust by content is provided in the distribution unit of metadata access control information, then be judged to be available metadata (S341) equally if utilize by content.Under the situation in addition, be judged as and utilize, do not carry out the utilization of metadata.
Have again,, handle by the order of the check of the check of the check of metadata, metadata access control information, content, but not necessarily implement by this order in present embodiment.In addition, though in one of them of content, metadata, metadata access control information in case in receiving system, after the storage, also can carry out the judgement that could utilize of metadata by same action.
In present embodiment,, discussed the metadata access control information and be assigned to the situation of receiving system 4, but had the situation of metadata access control information at server end in addition as the action of receiving system 4.In this case, receiving system 4 comes the publisher's information or the metadata identifying information of metadata the server with metadata access control information is inquired about as key, makes server judge whether the relation of metadata and content is licensed.And the server of judging provides unit to have relation of trust with affirmations such as public-key cryptography certificates by content.Thus, can judge on server could access for the content of metadata.In addition, the check of metadata, the check of content, metadata are judged can carry out the differentiation of metadata by same action, can expect identical effect.
(execution mode 2)
Below, about the 2nd execution mode, describe with Figure 14.Figure 14 is illustrated in the meta data access control system shown in Figure 4, in metadata dispensing device 1, append metadata access control information extra cell 10, on the other hand, the block diagram of the meta data access control system after metadata checking information extra cell 12, metadata access control information dispensing device 2, metadata verification unit 41 are removed.In this meta data access control system, in the metadata that generates by metadata generation unit 11, the additional metadata access control information that adds by metadata access control information extra cell 10, and send to receiving system 4.
Figure 15 is the data structure diagram of data structure of roughly representing the metadata access control information of present embodiment.In this metadata access control information 19, with synthetic metadata 13 from as object, so do not need to be identified for carrying out the metadata of access control.In addition, the content 20 of reference is documented in the metadata 13 self, so the metadata access control information only is counted as being used to prove the checking information 19 that sends unit.As the method that the metadata access control information is attached in the metadata, there is the transmission unit of metadata access control information in metadata, to carry out the method for digital electronic signature.As other method, the multiplexing method of metadata access control information of using eletric watermark and will put down in writing the distribution metamessage of metadata access control information in metadata is arranged.
At the metadata access control information verification unit 42 of receiving system 4, the distribution unit of metadata access control information is tested.As the method for check, the method that the favourable testimonial owner information of public-key cryptography that utilizes when being used in the digital electronic signature of confirming to be endowed in the metadata is tested, utilize the metadata access control information to confirm multiplexing method of testing as eletric watermark.The distribution metamessage and the metadata self of the metadata access control information after this affirmation are sent to metadata identifying unit 44.In content inspection unit 43, the distribution unit from the content of metadata reference is tested, and the distribution unit of content is sent to metadata identifying unit 44.At metadata identifying unit 44, whether that confirms the distribution unit of metadata access control information and content provides unit consistent.If both unanimities then are judged to be for this content and can utilize this metadata, permission is from the access of this metadata to this content.
As described above, according to present embodiment, by utilizing the metadata access control information that is endowed in the metadata, according to the permission that unit is provided from content, receiving system can be judged could carry out the control of the content of metadata.
(execution mode 3)
About the 3rd execution mode, describe with Figure 16.Figure 16 is in the block diagram of expression expression meta data access control system shown in Figure 4, in content sending apparatus 3, appended content synthesis unit 33, simultaneously in receiving system 4, appended content separative element 48, the block diagram of the meta data access control system after metadata access control information checking information extra cell 22, content inspection information extra cell 32, metadata verification unit 41, metadata access control information verification unit 42 are removed.
In meta data access control system, discuss different with the 1st execution mode from dispensing device with such structure.For the metadata access control information that generates by metadata access control information generation unit 121, not attaching metadata access control information checking information.And, additional test information in the content that content generation unit 31 generates not, but metadata access control information and content are synthesized and send to receiving system by metadata synthesis unit 33.
In the receiving system 4 with not being both of execution mode 1, test by the distribution unit of 43 pairs of contents in content inspection unit and metadata access control information, and content separated with the metadata access control information by content separative element 48.About the metadata access control information, as shown in Figure 17, synthesized in expression under the situation of content of metadata access control information itself, do not need the corresponding content information 18 of metadata access control information shown in Figure 6.In addition, do not change.
About the details of present embodiment, use a concrete example to describe.For metadata dispensing device 1, identical with execution mode 1.By content synthesis unit 31 content of content generation unit 31 generations and the metadata access control information that generates with metadata access control information generation unit 21 are synthesized.As synthetic method, the method for using eletric watermark and multiplexing metadata access control information in content is arranged.As additive method, have the metadata access control information is put down in writing as the content head, or be documented in for content and metadata access control being combined and constituting the file of many parts content and the method in the resource.
In the content inspection unit 48 of receiving system 4, whether check metadata access control information and content be inseparable.Method as check has the method that is re-used and confirms as eletric watermark by the metadata access control information.As the method for inspection in addition, the metadata access control information be used as the content head or constitute the file of many parts content and situation that resource transmits under, by from cause merchant's information of the public-key cryptography certificate that keeps according to receiving system etc. and authentic cause merchant's server obtains content and confirms.Perhaps, obtain content, discern to determine content supplier or determine to obtain the destination by content identifier by cause merchant by broadcast transmitted from broadcast route as the path that can trust, thus inspection content.
By checking out content and metadata access control information inseparable, the provide unit and the content of metadata access control information provide unit consistent as can be known.The metamessage that provides of the metadata access control information of checking out here, is sent to metadata identifying unit 44.Then, in content separative element 48, content is separated with the metadata access control information.The metadata access control information is passed to metadata identifying unit 44, and content is passed to content and utilizes unit 46.At metadata identifying unit 44, whether the metadata that affirmation will utilize is in the corresponding element data message in the metadata access control information.Under the situation about in tabulation, existing, be judged to be and utilize metadata, in tabulation, under the non-existent situation, be judged to be the metadata that does not have licensed utilization.Corresponding element data by the appointment of metadata access control information are under the testimonial situation of public-key cryptography, if can be confirmed the digital electronic signature of metadata by appointed public-key cryptography certificate, then differentiate for can control by metadata.
As described above, according to present embodiment, by utilize the metadata access control information of giving in content, according to the permission that unit is provided from content, receiving system can be judged the control that could carry out based on the content of metadata.
(execution mode 4)
The following describes and adopted the 4th execution mode of the present invention.In present embodiment,, related content video recording control service system is described as the more detailed example of the metadata of storing control.Figure 18 has represented to adopt the schematic configuration example of content video recording control service system integral body of the present invention.This content video recording control service system comprises: the content as broadcast program is provided---the broadcasting industry merchant 101 of content; Be connected to this broadcasting industry merchant 101, as storage control service business merchant's video recording control service business merchant 102; And as the receiving terminal 103 of content acquisition device.Receiving terminal 103 is connected to broadcasting industry merchant 101 and video recording control service business merchant 102 by network 100.Network is to use the broadcasting of electric wave and has used the radio network of the multicast and broadcast etc. of IP network, or bilateral network.Broadcasting industry merchant 101 has pair receiving terminal 103 to distribute the content providing device (back 104) of contents.Video recording control service business merchant 102 has the video recording control service generator 105 as storage control service generator, and this device transmits the storage control information that is used for memory contents to receiving terminal 103---video recording control information (access control information).Content providing device 104 also is connected to video recording control service generator 105, is used for generating the storage control information---the various processing of video recording control information on services.
Broadcasting industry merchant 101 can the entity of the content that provides be provided.The entity of content is the numerical data of video and music etc.Here said broadcasting is meant the broadcasting based on the electric wave of BS and CS110 or received terrestrial digital broadcasting etc., or has referred to use the IP broadcast of the multicast on the IP network.Example as based on the broadcast mode of electric wave has standards such as ARIB STD-B10, B20, B21, B24, B31, B32, ARIBTR-B14, B15.
Following, describe as the embodiment in the broadcasting of these BS, CS110, received terrestrial digital broadcasting.The application of present embodiment is not limited to these broadcasting, also can be applied to the content distribution service under the server-type broadcast mode shown in the ARIB STD-B38, and used and met by the metadata format of MPEG7 regulation with by the metadata of the metadata format of the regulations such as normative document SP003, SP004 of TV Anytime Forum, based on the content distribution service of the content method of salary distribution on the bilateral network.
In addition, the playback condition of the content that will provide can be provided broadcasting industry merchant 101.The playback condition is to forbid skipping when audio-visual content when CM carries out the audiovisual of audiovisual etc. limiting, but content audiovisual number of times, but audiovisual time limit, for example, only beyond during the specific zero hour to the finish time of every day, but the audiovisual restricted information of the audiovisual time of the playback of licensed content etc.Video recording control service business merchant 102 can generate, be kept for the video recording control information of memory contents to receiving terminal 103.Receiving terminal 103 is by the radio network or the bilateral network of the broadcasting of using electric wave and the multicast and broadcast that has used IP network etc., be connected with video recording control service business merchant 102, can obtain from video recording control service business merchant 102, playback condition, video recording control information, and can keep.In addition, receiving terminal 103 is connected with broadcasting industry merchant 101 by radio network or bilateral network, can obtain content from broadcasting industry merchant 101, and can store, reset.
Figure 19 represents the internal structure example of the content providing device 104 that the broadcasting industry merchant 101 of present embodiment has.In Figure 19, content management units 111 can the entity of the content that provides be provided.Content radio unit 112 is connected with receiving terminal 103 by radio network or bilateral network, content can be sent to receiving terminal 103.In addition, content radio unit 112 can be obtained certificate ID from signature unit 115, and certificate ID represents to sign the signature of using in the processing.In addition, content radio unit 112 can send to receiving terminal 103 by the corresponding informance of broadcasting industry merchant ID that radio network or bilateral network have carried out certificate ID, expression the broadcasting industry merchant of signature.
The video recording control information obtains unit (the storage control information obtains the unit) 113 can obtain 102 information that generate, that be used to make user's memory contents---the video recording control information by video recording control service business merchant from video recording control service business merchant 102, obtains the video recording control service business merchant ID that is used to discern video recording control service business merchant simultaneously.Playback condition administrative unit 114 can obtain unit 113 from the video recording control information and obtain video recording control information and video recording control service business merchant ID.In addition, playback condition administrative unit 114 can decide the playback condition according to the service business merchant ID that obtains.Playback condition and video recording control information can be obtained from playback condition administrative unit 114 in signature unit 115, and the administrative office's name of going forward side by side is handled.Information on services transmitting element 116 can be obtained certificate ID, sign playback condition and the video recording control information handled from signature unit 115.In addition, information on services transmitting element 116 can be controlled information on services as video recording with playback condition and video recording control information, certificate ID, the broadcasting industry merchant ID that obtains, and is transferred to video recording control service business merchant 102.
Figure 20 represents the internal structure example of the video recording control service generator 105 that the video recording control service business merchant of present embodiment has.In Figure 20, audiovisual historical collection unit 121 can be connected with receiving terminal 103 by bilateral network, collects user's content audiovisual history from receiving terminal 103.Audiovisual historical analysis unit 122 is by obtaining content audiovisual history from audiovisual historical collection unit 121, and analyzes, and can generate personal attribute's data, with reflection user's hobby.Service management unit 123 can be obtained personal attribute's data from audiovisual historical analysis unit 122, and keeps with user identifier.Personal attribute's data transmission unit 124 can be connected with receiving terminal 103 by bilateral network, and the personal attribute's data that keep in the service management unit 123 are sent to receiving terminal 103.
Video recording control information generation unit (storage control information generation unit) 125 can be collaborative with service management unit 123, generates the video recording control information of the content that is used to store the hobby that belongs to the user.In addition, video recording control information generation unit 125 generates the video recording control information after the intention of controlling the service business merchant of can also considering to record a video when generating the video recording control information.The video recording control service business merchant's that video recording control information transmitting element (storage control information transmitting element) 126 can generate the video recording control information with the video recording control information and the expression of generation video recording control service business merchant ID is transferred to content providing device 104.Information on services receiving element 127 can be obtained video recording control information on services from content providing device 104.Information on services transmitting element 128 can be connected with receiving terminal 103 by radio network or bilateral network, and the control information on services of will recording a video sends to receiving terminal 103.In addition, information on services transmitting element 128 sends under the situation of receiving terminal 103 at the video recording control information on services with a plurality of broadcasting industry merchants, video recording control information on services separately can be cut apart transmission.
Figure 21 represents the internal structure example of the receiving terminal 103 of present embodiment.In Figure 21, the historical transmitting element 131 of audiovisual can be connected with video recording control service generator 105 by bilateral network, and the user's that the historical holding unit 132 of audiovisual is kept content audiovisual history sends to video recording and controls and serve generator 105.The historical holding unit 132 of audiovisual can be obtained the information of the content of user's audiovisual from content display unit 141, and can keep.Personal attribute's Data Receiving unit 133 can be connected with video recording control service generator 105 by radio network or bilateral network, obtains personal attribute's data from video recording control service generator 105.Personal attribute's data holding unit 134 can obtain personal attribute's data from personal attribute's Data Receiving unit 133, and can keep.Information on services receiving element 135 can be connected with video recording control service generator 105 by radio network or bilateral network, obtains video recording control information on services from video recording control service generator 105.
In addition, content receiving element 139 can be transferred to certificate administrative unit 144 with the corresponding informance of broadcasting industry merchant ID and certificate ID.Content management units 140 can obtain the playback condition of the content that obtains from content receiving element 139, the content that obtains from content choice unit 138, and content and playback condition are kept together.Content display unit 141 can be according to the request from the user, to the user prompt content information.User's playback unit 142 can be reset the content of storage by the playback condition like that.User's recording schedule holding unit 143 can keep the information of the content of individual subscriber recording schedule.Certificate administrative unit 144 can keep the broadcasting industry merchant ID that obtains from content receiving element 133 and the corresponding informance of certificate ID.Have again, owing to have a broadcasting industry merchant to have a plurality of testimonial situations, so, the situation of a plurality of certificate ID correspondences is arranged for a broadcasting industry merchant ID.
For above such video recording control service that constitutes, below its action of explanation.The generation of relevant personal attribute's data at first, is described.Join when service or go into the content audiovisual history that obtains the user after the meeting termly from the historical transmitting element 131 of audiovisual by bilateral network the user in audiovisual historical collection unit 121.By the audiovisual history that the audiovisual historical collection unit 121 of video recording control service generator 105 is obtained, analyzed in audiovisual historical analysis unit 122, generate personal attribute's data.The example of personal attribute's data used herein is shown in Figure 22.As shown in figure 22, personal attribute's data are correspondence table of project and value.The personal attribute's data that generate are maintained in the service management unit 123 of video recording control service generator 105, send to personal attribute's Data Receiving unit 133 of receiving terminal 103 simultaneously by radio network or bilateral network from personal attribute's data transmission unit 124.The personal attribute's data that receive in personal attribute's Data Receiving unit 133 of receiving terminal 103 are maintained in personal attribute's data holding unit 134.
Below, the generation of relevant video recording control information is described.The video recording control information generation unit 125 of video recording control service generator 105 is obtained the project of personal attribute's data from service management unit 123, can generate and can will belong to the video recording control information of content stores in receiving terminal 103 of user's hobby.Have, the generation of video recording control information not only can generate the content of the hobby that meets the user again, and also the content that can will store according to video recording control service business merchant generates the video recording control information.Here the example of the video recording control information of Sheng Chenging is shown in Figure 23.As shown in figure 23, the video recording control information is the correspondence table of project, value, content.For example, be under the situation of ' car ' as its value as the user's of project interest, content ' 1 ', ' 3 ', ' 5 ' is stored in the receiving terminal 103.
Below, the generation of relevant video recording control information on services is described.The video recording control information of content providing device 104 obtains unit 113 and obtains video recording control information and video recording control service business merchant ID from video recording control service generator 105.The video recording control information obtains the video recording control information and the video recording control service business merchant ID that will obtain unit 113 and is transferred to playback condition administrative unit 114.114 decisions of playback condition administrative unit are according to video recording control service business merchant ID that obtains and the playback condition that contract generated prior and video recording control service business merchant.Based on contract the playback condition of Sheng Chenging is different to each video recording control service business merchant, becomes the playback condition that video recording control service business merchant makes the stored content whole of receiving terminal 103 reflections.
The example of the correspondence table of video recording control service business merchant ID used herein and playback condition is shown in Figure 24.As shown in figure 24, for example, the playback condition that the video recording of id=100 control service business merchant is reflected in the id=2 of playback condition table is stored in the full content in the receiving terminal.The example of playback condition table used herein is shown in Figure 25.As shown in figure 25, for example, the playback condition of id=1 becomes the playback number of times and is once condition.Then, playback condition administrative unit 114 determines from correspondence table and the corresponding playback condition of recording and narrating in the video recording control information of content.The correspondence table of content used herein and playback condition is shown in Figure 26.As shown in figure 26, for example, under the situation of content by name 2, become the id=1 of playback condition table, 3 playback condition is employed.Playback condition administrative unit 114 generates the new content and the correspondence table of playback condition from the correspondence table of correspondence table, content and the playback condition of video recording control service business merchant ID and playback condition.
The example of newly-generated correspondence table is shown in Figure 27.Figure 27 is the correspondence table from Figure 24 and Figure 26 generation.As shown in figure 27, for example, in Figure 26,, but be added with the playback condition of id=2 to content name 1 condition of not resetting.Playback condition administrative unit 114 as the playback condition, is transferred to signature unit 115 with the video recording control information with the tabulation of playback condition and newly-generated correspondence table.Signature unit 115 keeps press the right of the privacy key of certificate ID correspondence and public-key cryptography, uses privacy key, and the playback condition that obtains and the control information of recording a video are signed processing.Have, signature is handled and is adopted the standard that X.509 waits of ITU-T just passable again.Signature unit 115 will carry out signature the playback condition of handling and the control information of recording a video and be transferred to information on services transmitting element 116 with the pairing certificate ID of privacy key that has carried out signature.The playback condition that the information on services transmitting element 116 of content providing device 104 will be obtained, video recording control information, certificate ID and broadcasting industry merchant ID are transferred to video recording control service generator 105 as video recording control information on services.The information on services receiving element 127 of video recording control service generator 105 will send to receiving terminal 103 from information on services transmitting element 128 via radio network or bilateral network from the video recording control information on services that content providing device 104 is obtained.
Figure 28 represents the example of the data format of video recording control information on services used herein.As shown in figure 28, video recording control information on services is cut apart to each broadcasting industry merchant ID, and by each broadcasting industry merchant signature.In this Figure 28, the data of ' video recording control ' and the data of ' content information ' are corresponding with the video recording control information.
Below, the storage of related content is described.The information on services receiving element 135 of receiving terminal 103 will be transferred to signature verification unit 137 from the video recording information on services that video recording control service generator 105 is obtained.The certificate ID and the broadcasting industry merchant ID that record and narrate in the video recording control information on services that the signature verification unit 137 of receiving terminal 103 will be obtained are transferred to certificate administrative unit 144.Certificate ID that certificate administrative unit 144 usefulness keep and the corresponding informance of broadcasting industry merchant ID are confirmed whether the certificate ID that obtains and broadcasting industry merchant ID be legal.Have again, sometimes be for a broadcasting industry merchant ID and the corresponding situation of a plurality of certificate ID, but in this case, retrieve broadcasting industry merchant ID with the certificate ID that has obtained certificate ID from signature verification unit 137, under the broadcasting industry merchant ID that the finds situation consistent with the broadcasting industry merchant ID that obtains the verification unit 137 from signature, it is legal to be judged as.
The certificate administrative unit 144 of receiving terminal 103 is transferred to certificate holding unit 136 with certificate ID under the situation of having confirmed legitimacy.Certificate holding unit 136 is retrieved the certificate that keeps according to the certificate ID that obtains, and by certificate administrative unit 144, and signature verification unit 137 is passed on certificate.And, under the testimonial situation of the certificate ID that does not keep 144 appointments of certificate administrative unit, can obtain the certificate corresponding from reliable mechanism with the ID of appointment.The mechanism that can trust in this case is, certificate administrative unit 144 holds, with route (the certificate issuer that Le-ト) certificate is corresponding etc.The certificate that signature verification unit 137 usefulness obtain is tested to the signature of video recording control information on services.Video recording control information on services after signature verification unit 137 will be checked is transferred to content choice unit 138.
The processing of the content choice unit 138 of relevant receiving terminal 103 describes with the handling process of Figure 29.The video recording control information (S9) that content choice unit 138 will be obtained is carried out filtering (S11) with every next from personal attribute's data (S10) that personal attribute's data holding unit 134 obtains.
Figure 30 represents the example of the final recording schedule admin table that forms.As shown in figure 30, for example, under the situation of content name 1, be not used in the playback condition of private video recording, but under the situation of content name 2, with the id=1 of playback condition table as the playback condition, must storage, to be applicable to playback time.Content choice unit 138 is transferred to content receiving element 139 with the recording schedule admin table and the broadcasting industry merchant ID of chosen content, simultaneously playback condition table is transferred to content management units 140 (S17).Content receiving element 139 is by radio network or bilateral network, according to the broadcasting industry merchant ID that obtains from content providing device 104 and the correspondence table of content, whether be that the broadcasting industry merchant's that represents with the broadcasting industry merchant ID that obtains content is carried out the affirmation of legitimacy to the content of the recording schedule admin table obtained from content choice unit 138.
The content receiving element 139 of receiving terminal 103 is obtained the content that has been identified legitimacy by radio network or bilateral network from content providing device 1 04.Content receiving element 1 39 is transferred to content management units 140 with the content that obtains.Content management units 140 is stored content that obtains from content receiving element 139 and the playback condition table of obtaining from content choice unit 138 together.140 pairs of playback conditions of content management units are added ID, so that the playback condition becomes in content management units 140 is unique, and storage playback condition table.Content management units 140 generates the memory contents admin table with the content of storage and playback condition and manages.Figure 31 represents the example of memory contents admin table used herein.As shown in figure 31, the memory contents admin table is the correspondence table of content and playback condition, and for example, under the situation of content name 2, the playback condition of the id=1 of the playback condition table of the necessary employing of expression id=100 is with content playback.Have again, in the above description, carry out every next filtering, but also can carry out filtering simultaneously with a plurality of personal attribute's data based on the video recording control information of personal attribute's data.
Below, the playback of related content is described.Content display unit 141 is according to the request from the user, to the user prompt content information.For the content that is stored in the content management units 140 140 pairs of content playback unit 142 content transfers of content management units and the playback condition under the situation that the playback condition is arranged are proposed under the situation of audiovisual request the user.Content playback unit 142 is under the situation that the playback condition is arranged, according to the playback condition, with content playback, under the situation of the condition of not resetting, according to user's request, with content playback.
As described above, in present embodiment, by the playback condition of content and content is stored together, the broadcasting industry merchant can specify the playback condition, and the while can be protected existing user's right for the situation that user individual records a video.
Have, in present embodiment, the certificate that signature is tested is maintained in the receiving system again, but also can be method that obtains from the broadcasting industry merchant and the method that obtains from other reliable places.
(execution mode 5)
The following describes and adopted the 5th execution mode of the present invention.In described execution mode 4, content video recording control service is free, but considers when moving, and needs charge to handle.In present embodiment, sale cause merchant is set, and has appended the charge processing of carrying out content video recording control service with charge method.
Figure 32 represents the overall structure example of the content video recording control service system of present embodiment.The entity of the content that will provide can be provided broadcasting industry merchant 201.In addition, the playback condition of the content that will provide can be provided broadcasting industry merchant 201.Video recording control service business merchant 202 can generate, be kept for making the video recording control information of receiving terminal memory contents.Receiving terminal 203 can be connected with video recording control service business merchant 202 by radio network or bilateral network, obtains playback condition, video recording control information from video recording control service business merchant 202, and with its maintenance.In addition, receiving terminal 203 can be connected with broadcasting industry merchant 201 by radio network or bilateral network, obtains content from broadcasting industry merchant 201, and with its storage, playback.Sale cause merchant 204 can obtain and keeps the playback condition and encrypted the key of video recording control information from video recording control service business merchant 202.In addition, selling cause merchant 204 can be connected with receiving terminal 203 by bilateral network, receiving terminal 203 is sent the key of obtaining from video recording control service business merchant.Have, broadcasting industry merchant 201 has the content providing device 104 same with the 4th execution mode again.
Figure 33 represents the internal structure example of the video recording control service generator 205 of the conduct storage control service generator that the video recording control service business merchant of present embodiment has.Video recording control information on services after information on services cryptographic processing unit 221 can be handled the signature that information on services receiving element 127 is obtained from broadcasting industry merchant's content providing device 104 is encrypted.Encryption key transmitting element 222 can be encrypted employed key with information on services cryptographic processing unit 221 and be transferred to sale cause merchant 204.Other main structural components is identical with the main structural components of Figure 20.
Figure 34 represents the internal structure example of the receiving terminal 203 of present embodiment.Restoring key receiving element 231 can be connected with the cause of sale merchant 204 by bilateral network, obtains the key that video recording control information on services is restored from selling cause merchant 204.Restore key holding unit 232 and can keep restoring key receiving element 231 from selling the key that cause merchant 204 obtains.Information on services restores processing unit 233 can control information on services with the video recording that the recovery key recovery information on services receiving element 135 that restores the maintenance of key holding unit is obtained from video recording control service generator 205.Other main structural components is identical with the main structural components of Figure 21.
Figure 35 represents the sale cause merchant's of present embodiment internal structure example.Encryption key receiving element 241 can be obtained from video recording control service generator 205 video recording control information on services has been carried out encrypted secret key.The encryption key that key holding unit 242 can keep encryption key receiving element 241 to obtain.Restoring key transmitting element 243 can be connected with receiving terminal 203 by bilateral network, and the key that the video recording control information on services that will be used for that key holding unit 242 is kept restores sends to receiving terminal 203.
For above such content stores control system that constitutes, below its action of explanation.The generation of relevant personal attribute's data at first, is described.The generation of personal attribute's data generates by the method identical with the generation of personal attribute's data in the above-mentioned execution mode 4.The personal attribute's data that generate remain in personal attribute's data holding unit 134.
The generation of relevant video recording control information then, is described.The generation of video recording control information generates by the method identical with the generation of video recording control information in the above-mentioned execution mode 4.The video recording control information that generates is transferred to broadcasting industry merchant's content providing device 104 from video recording control information transmitting element 126.
The generation of relevant video recording control information on services then, is described.The generation of video recording control information on services generates by the method identical with the generation of video recording control information on services in the above-mentioned execution mode 4.The video recording control information on services that generates is carried out encryption in information on services cryptographic processing unit 221, be sent to receiving terminal 203 from information on services transmitting element 128 by radio network or bilateral network.As said cipher mode here, for example, have the spy open the 2001-142472 communique, the spy opens disclosed mode in the 2001-142786 communique.
The sale of relevant key then, is described.Encryption key transmitting element 222 will be used for encrypted secret key and be transferred to sale cause merchant 204 in information on services cryptographic processing unit 221.Encryption key receiving element 241 receives the key that passes on from encryption key transmitting element 222, and is transferred to key holding unit 242.Key holding unit 242 keeps acquired key.Restore key transmitting element 243 according to the request from the user, the key that key holding unit 242 is kept sends to receiving terminal 203 by bilateral network.Restore key receiving element 231 and receive the key that sends from recovery key transmitting element 243, and be transferred to recovery key holding unit 232.Restore key holding unit 232 and keep acquired key.
The storage of related content then, is described.Information on services receiving element 135 will be transferred to information on services from the video recording control information on services that video recording control service generator 205 is obtained and restore processing unit 233.Information on services restores the key that keeps in the processing unit 233 usefulness recovery key holding unit 232 the video recording control information on services of obtaining is restored processing.The video recording control information on services that information on services processing unit 233 will restore is transferred to signature verification unit 137.The later action until content stores becomes the action identical with above-mentioned execution mode 4.
The playback of related content then, is described.The playback of content is undertaken by the method identical with the playback of content in the above-mentioned execution mode 1.
As described above; in present embodiment, by sale cause merchant is set, except the effect of above-mentioned execution mode 4; on the basis that can carry out content stores control service with charge method, can further protect broadcasting industry merchant, video recording control service business merchant's right.
(execution mode 6)
The following describes and adopted the 6th execution mode of the present invention.In above-mentioned execution mode 4, the playback condition is sent to receiving terminal with the video recording control information from video recording control service business merchant.In present embodiment, that the playback condition is different when the broadcasting industry merchant sends to receiving terminal.
Figure 36 represents the overall structure example of the content video recording control service system in the present embodiment.The entity of the content that will provide can be provided broadcasting industry merchant 301.In addition, broadcasting industry merchant 301 can keep the playback condition of the content that is being held.Video recording control service business merchant 302 generates, is kept for making the video recording control information of receiving terminal 303 memory contentss.Receiving terminal 302 can be connected with video recording control service business merchant 302 by radio network or bilateral network, obtains the video recording control information from video recording control service business merchant 302, and with its maintenance.In addition, receiving terminal 303 can be connected with broadcasting industry merchant 301 by radio network or bilateral network, obtains content and playback condition from broadcasting industry merchant 301, and with its storage, playback.
Figure 37 represents the internal structure example of the content providing device 304 that the broadcasting industry merchant 301 of present embodiment has.Signature unit 311 can be signed the playback condition that keeps in the content management units 111.In addition, signature unit 311 can be obtained unit 113 to the video recording control information and signs from the video recording control information that video recording control service business merchant 302 obtains.Content radio unit 312 can be connected with receiving terminal 303 by radio network or bilateral network, and the playback condition after content and the signature processing is sent to receiving terminal 303.The video recording control information transmitting element of having signed 313 can be transferred to the video recording control information of signed processing in signature unit 311 video recording control service business merchant 302.Playback condition administrative unit 314 can decide the playback condition according to obtaining the video recording control information that obtains unit 113 from the video recording control information.Other main structural components is identical with the main structural components of Figure 19.
Figure 38 represents the internal structure example of the video recording control service generator 305 of the conduct storage control service generator that the video recording control service business merchant 302 of present embodiment has.Having signed video recording control information receiving element 321 can obtain from content providing device 304 and sign the video recording control information of handling.Sign video recording control information transmitting element 322 and the video recording control information that signature was handled can have been sent to receiving terminal 303 by radio network or bilateral network.Other main structural components is identical with the main structural components of Figure 20.
Figure 39 represents the internal structure example of the receiving terminal 303 of present embodiment.Video recording control information receiving element 331 can be connected with video recording control service generator 305 by radio network or bilateral network, obtains the video recording control information from video recording control service generator 305.Broadcast reception unit 332 can be connected with content providing device 304 by radio network or bilateral network, obtains content and playback condition from content providing device 304.Other main structural components is identical with the main structural components of Figure 21.
For above such video recording control service that constitutes, below its action of explanation.The generation of relevant personal attribute's data at first, is described.The generation of personal attribute's data generates by the method identical with the generation of personal attribute's data in the above-mentioned execution mode 4.The personal attribute's data that generate remain in personal attribute's data holding unit 134.
The generation of relevant video recording control information then, is described.The generation of video recording control information generates by the method identical with the generation of video recording control information in the above-mentioned execution mode 4.The video recording control information that generates is transferred to the video recording control information from video recording control information transmitting element 126 and obtains unit 113.Signature unit 311 is obtained unit 113 from the video recording control information and is obtained the video recording control information, and the administrative office's name of going forward side by side is handled.Having signed video recording control information that video recording control information transmitting element 313 handled certificate ID, signature from signature unit 311 is transferred to broadcasting industry merchant ID and signs the control information receiving element 321 of recording a video.Signed video recording control information transmitting element 322 and obtained the video recording control information, and sent to receiving terminal 303 by radio network or bilateral network from signing video recording control information receiving element 321.Here, Figure 40 represents to be sent to the example of data format of the video recording control information of receiving terminal.As shown in figure 40, the video recording control information is cut apart to each broadcasting industry merchant ID, by each broadcasting industry merchant signature.
The generation of relevant playback condition then, is described.Playback condition administrative unit 314 obtains the video recording control information and obtains the video recording control information that unit 113 is obtained from video recording control service generator 305.Playback condition administrative unit 314 determines the corresponding playback condition of content recorded and narrated in the control information with video recording from correspondence table.Playback condition after playback condition administrative unit 314 will determine is transferred to signature unit 311.The playback condition that obtains of 311 pairs of unit of signature is signed processing, and content radio unit 312 is passed on the playback condition of signing processing.Playback condition and content that content radio unit 312 will be obtained send to receiving terminal 303 by radio network or bilateral network together.Here, Figure 41 represents to be sent to the example of data format of the playback condition of receiving terminal 303.As shown in figure 41, the playback condition is cut apart to each video recording control service business merchant, by each video recording control service business merchant signature.
The storage of related content then, is described.Video recording control information receiving element 331 will be transferred to signature verification unit 137 from the video recording control information that video recording control service generator 305 is obtained.In addition, broadcast reception unit 332 will be transferred to signature verification unit 137 from the playback condition that content providing device 304 is obtained.The record a video check of signature of control information and playback condition of signature verification unit 137.The action of the signature check of signature in the verification unit 137 become with above-mentioned execution mode 4 in the identical action of signature check action.After this action until content stores becomes the action identical with above-mentioned execution mode 4.
The playback of related content then, is described.The playback of content is undertaken by the method identical with the playback of content in the above-mentioned execution mode 4.
As described above, in present embodiment, by sending the playback condition, each broadcasting industry merchant stored in receiving terminal each video recording control service business merchant is stored in playback condition in the receiving terminal, so can suppress invalid data from the broadcasting industry merchant.
(execution mode 7)
The following describes and adopted the 7th execution mode of the present invention.In above-mentioned execution mode 4, the video recording control information is generated by video recording control service business merchant.In present embodiment, generate the video recording control information by receiving terminal.
Figure 42 represents the overall structure example of the content stores control service system of present embodiment.The entity of the content that will provide can be provided broadcasting industry merchant 402.In addition, broadcasting industry merchant 402 can keep the playback condition of the content that is being held.Receiving terminal 402 can be connected with broadcasting industry merchant 401 by radio network or bilateral network, obtains content and playback condition from broadcasting industry merchant 401, and with its storage, playback.
Figure 43 represents the internal structure example of the receiving terminal 402 of present embodiment.Each main structural components is identical with the main structural components of Figure 39.
For above such video recording control service that constitutes, below its action of explanation.At first, the related content storage is described.The information that content choice unit 138 keeps according to the historical holding unit 132 of audiovisual is selected the content that will store, and generates the recording schedule admin table.The information that the user carries out the content of private recording schedule is obtained from user's recording schedule holding unit 143 in content choice unit 138.Content choice unit 138 judges whether comprise the content that the user carries out private recording schedule in the recording schedule admin table, and under situation about comprising, deletes from the recording schedule admin table.Content choice unit 138 is transferred to broadcast reception unit 332 with the recording schedule admin table.After this action until memory contents becomes the action identical with above-mentioned execution mode 6.
The playback of related content then, is described.The playback of content is undertaken by the method identical with the playback of content in the above-mentioned execution mode 4.
As described above, in present embodiment,, can realize further having reflected the service of user's hobby by the content of selecting by all receiving terminals to store.
(execution mode 8)
The following describes and adopted the 8th execution mode of the present invention.In above-mentioned execution mode 4, the content that receiving terminal is obtained is not encrypted.In present embodiment, the merchant encrypts content by broadcasting industry, and permission cause merchant is set simultaneously, and receiving terminal is obtained the key that is used to restore content from permission cause merchant.
Figure 44 represents the overall structure example of the content video recording control service system of present embodiment.The entity of the content that will provide can be provided in content supplier 501.In addition, the playback condition of the content that will provide can be provided in content supplier 501.Video recording control service business merchant 502 can generate, be kept for making the video recording control information of receiving terminal memory contents.Receiving terminal 503 can be connected with video recording control service business merchant 502 by radio network or bilateral network, obtains playback condition, video recording control information from video recording control service business merchant 502, and with its maintenance.In addition, receiving terminal 503 can be connected with content supplier 501 by radio network or bilateral network, obtains content from content supplier 501, and stores, resets.Permission cause merchant 504 can obtain from content supplier 501 content has been carried out encrypted secret key, and with its maintenance.In addition, permission cause merchant 504 can be connected with receiving terminal 503 by bilateral network, and receiving terminal 503 is sent the key of obtaining from the broadcasting industry merchant.
Figure 45 represents the internal structure example of the content providing device 505 that the content supplier 501 of present embodiment has.Content encryption unit 5 11 can be encrypted the content that keeps in the content management units 111.Licence transmitting element 512 will with content encryption unit 511 encrypt in employed content key and the signature unit 115 to video recording control information on services sign the corresponding certificate ID of employed privacy key group---licence is transferred to permission cause merchant 504.Other main structural components is identical with the main structural components of Figure 19.
Figure 46 represents the internal structure example of the receiving terminal 503 of present embodiment.Licence receiving element 531 can be connected with permission cause merchant 504 by bilateral network, obtains licence from permission cause merchant 504.Other main structural components is identical with the main structural components of Figure 21.
Figure 47 represents the internal structure example of the permission distribution device 506 that the permission cause merchant of present embodiment has.Licence receiving element 541 can be obtained licence from content providing device 505.The licence that licence holding unit 542 can keep licence receiving element 541 to obtain.Licence transmitting element 543 can be connected with receiving terminal 503 by bilateral network, and the licence that keeps in the licence holding unit 542 is sent to receiving terminal 503.
For above such content stores control system that constitutes, below its action of explanation.The generation of relevant personal attribute's data at first, is described.The generation of personal attribute's data generates by the method identical with the generation of personal attribute's data of above-mentioned execution mode 4.The personal attribute's data that generate remain on personal attribute's data holding unit 134.
The generation of relevant video recording control information then, is described.The generation of video recording control information generates by the method identical with the generation of video recording control information in the above-mentioned execution mode 4.The video recording control information that generates is sent to content providing device 505 from video recording control information transmitting element 126.
The generation of relevant video recording control information on services then, is described.The generation of video recording control information on services generates by the method identical with the generation of video recording control information on services in the above-mentioned execution mode 4.But all are different with above-mentioned execution mode 4, in the video recording control information on services that generates, also comprise the license ID that is used to discern permission, and permission comprises the content key that is used by content encryption unit 511.The video recording control information on services that generates is sent to receiving terminal 503 from information on services transmitting element 128 by radio network or bilateral network.Here, Figure 48 represents to be sent to the example of data format of the video recording control information on services of receiving terminal.As shown in figure 48, video recording control information on services is cut apart to each ID of content supplier, is signed by each content supplier.
Then, relevant licence is described.Licence is content key and certificate ID at least, is the data of having compiled the permission of being discerned uniquely by license ID.Permission transmitting element 512 is obtained the content key that is used for content-encrypt in content encryption unit 511, license ID and the certificate ID of the signature of the control information on services that is used in signature unit 115 to record a video.Permission transmitting element 512 as licence, is transferred to permission distribution device 506 with the group of the content key obtained and license ID and certificate ID.Permission receiving element 541 receives the licence that passes on from permission transmitting element 512, and is transferred to permission holding unit 542.Permission holding unit 542 keeps acquired licence.Licence transmitting element 543 sends to receiving terminal 503 with the licence that keeps in the permission holding unit 542 by bilateral network according to the request from the user.Here, Figure 49 represents to be sent to the example of data format of the licence of receiving terminal.As shown in figure 49, licence is cut apart to each license ID.
The storage of related content then, is described.Action till the content that will store of decision, become with above-mentioned execution mode 4 in the identical action of action till the decision content.The licence that is in the content the recording schedule admin table is obtained from licence receiving element 531 in content choice unit 138.Content choice unit 138 confirms whether the certificate ID of acquired licence is consistent with the certificate ID of video recording control information on services.Be identified under the consistent situation, content choice unit 138 is transferred to content receiving element 139 with recording schedule admin table and broadcasting industry merchant ID, simultaneously playback condition and licence is transferred to content management units 140.After this action till content stores becomes the action identical with above-mentioned execution mode 4.But different with above-mentioned execution mode 4, because content is encrypted, so content playback unit 140 obtains the license key corresponding with content from content management units 139, and the content key obtained of use is reset after to the contents decryption of encrypting.
The playback of related content then, is described.The playback of content is undertaken by the method identical with the playback of content in the above-mentioned execution mode 4.
As described above, in present embodiment, by permission cause merchant is set, except the effect of above-mentioned execution mode 4, owing to will transmit behind the content-encrypt, so can further protect the right of content.
(execution mode 9)
Below, as the 9th execution mode,, discuss its details for as utilizing ' the link information Verification System ' of link information as a routine situation of metadata.The feature of the 9th execution mode of the present invention is, at receiving terminal (content reception apparatus, below be called ' receiving system ' simply) reset when providing the content that the broadcasting industry merchant of side provides by content, the link information that shows simultaneously with the playback of content is associated, the broadcasting industry merchant who has a content only to the link information of having maked a promise to show simultaneously give digital electronic signature (below, be called signature), receiving system is for the link information that is set, the check of signing by the certificate of obtaining from the broadcasting industry merchant in advance, to show simultaneously for the content that obtains from the broadcasting industry merchant, and only will authentic link information is regarded as effectively by this check, thereby show simultaneously with the playback of content.
Below, on one side with reference to accompanying drawing, explain relevant the 9th execution mode of the present invention on one side.The structure of the link information Verification System of relevant present embodiment at first, is described.Figure 50 is the integrally-built block diagram of the link information Verification System of expression present embodiment.Link information Verification System shown in Figure 50 comprises: the broadcasting industry merchant 601 that content is provided by 606 pairs of receiving systems 603 of radio network; Be provided for ISP (the Internet Service Provider: the ISP) 102 of the link information that the playback with content shows simultaneously; The content that receives from radio network 606 is reset, show the receiving system 603 of link information simultaneously at the playback time of content simultaneously.Here, broadcasting industry merchant 601 (Internet Protocol: Internet Protocol) net 604,605 is connected, and broadcasting industry merchant 601 is connected by radio network 606 with receiving system 603 by IP respectively with receiving system 603 with ISP602, ISP602.Have, IP network 604,605 is illustrated respectively again, but also can be identical.
Have again, here, illustrated about the provider for the link information that shows with content be the situation of ISP602, but the provider of this link information is not limited to ISP602.In addition, in Figure 50, only illustrate one as the ISP602 of the provider of link information, but that ISP602 can exist also is a plurality of, each ISP602 is independent, thereby provides link information to broadcasting industry merchant 601.
In addition, broadcasting satellite) and CS (Communications Satellite: 110 ° etc. satellite broadcasting communication satellite) radio network 606 means BS (Broadcasting Satellite:, the perhaps broadcasting based on electric wave of ground wave digital broadcasting etc. has perhaps utilized the IP broadcast etc. of the multicast of IP network.As a example, can enumerate ARIB (Association of Radio Industries andBusinesses: the meeting of the electric wave industry) standard of STD-B10, B20, B21, B24, B31, B32, ARIB TR-B14, B15 etc. based on the broadcast mode of electric wave.
In addition, in present embodiment, BS, CS110 °, the situation of ground wave digital broadcasting of applying the present invention to is described, but can use broadcast mode of the present invention and be not limited to these modes, also can be applicable in the server-type broadcast mode such shown in the ARIBSTD-B38 content distribution service, based on use meet metadata format with MPEG7 regulation, with TVA (TV Anytime Forum: the content distribution service of the content method of salary distribution on the bilateral network that the metadata of regulations such as normative document SP003, the SP004 full-time forum of TV) is carried out etc.
Have, the content here means the numerical data of video and music etc. again.In addition, link information means to comprise and is used for the special services on the network is carried out the needed information of access (usually, for URL (Uniform Resource Locator: uniform resource locator)) and be used for showing needed information simultaneously with the playback of specific content.In this link information, for example, as the data example of illustrated link information among Figure 57, record the type of the link destination URL of the connection destination of the link information name that is used to discern link information, designated links information, Web service that expression connects the destination link destination type, specify the content of the content that shows link information simultaneously to specify, show video data that link information is required etc.For example, illustrated link information among Figure 57 when resetting appointed content by the content appointment, is to be used to show the link information that link destination URL is had the video data (link information button) of link.In the present embodiment of following explanation, suppose to show link information simultaneously, and explanation in specifying, content has utilized the situation of service_id and event_id with the playback of content (broadcasted content).
Below, in link information Verification System shown in Figure 50, the structure of the content providing device 700 that relevant broadcasting industry merchant 601 possesses is described.Figure 51 is the block diagram of the content providing device that possesses of the broadcasting industry merchant of link information Verification System of expression present embodiment.Content providing device 700 shown in Figure 51 is certificates that distribution is used to authenticate the legitimacy of the link information that the playback with content shows simultaneously, use this certificate to give signature to the link information that receives from ISP602, transmit the device of content simultaneously by 606 pairs of receiving systems of radio network 603, have: content management units 701, radio unit 702, certificate generation unit 703, certificate administrative unit 704, signature unit 705, communication unit 706.
Content management units 701 is carried out the management of the content (digital content) of live image content and music content etc., can comprise the memory cell that is used for memory contents, perhaps this memory cell is carried out access and is carried out reading of digital content.In addition, radio unit 702 will be sent to receiving system 603 by radio network 606 from the content of content management units 701 supplies and the certificate of supplying with from certificate administrative unit 704.
In addition, certificate generation unit 703 generates the certificate that is used to authenticate legitimacy for the link information that the playback time of the content of content management units 701 management shows simultaneously.In present embodiment, with regard to the certificate that generates by certificate generation unit 703, use by the digital electronic signature mode on standardized public-key cryptography basis, generates and also uses the public-key cryptography certificate in X.509 waiting.Have, the public-key cryptography certificate can be corresponding with content again, in addition, for example, also can be corresponding with type of a part of scene of content and broadcasting industry merchant, time on date, area, content etc.
In addition, certificate administrative unit 704 public-key cryptography certificate that certificate generation unit 703 is generated and content management units 701 content of managing is corresponding and manage.In addition, signature unit 705 is associated with the link information that receives from ISP602, obtains and the corresponding public-key cryptography certificate of this link information while content displayed from certificate administrative unit 704, and uses the disclosure key certificate to sign.In addition, communication unit 706 receives by the transmission of carrying out link information between IP network 604 and the ISP602.Have, communication unit 706 receives link information from ISP602 again, on the other hand, ISP602 is sent the link information of signature of the signature of having carried out regulation.
Then, the structure of the link information generator 800 that ISP602 possesses is described in link information Verification System shown in Figure 50.Figure 52 is the block diagram of the link information generator that possesses of the ISP of link information Verification System of expression present embodiment.Link information generator 800 shown in Figure 52 is link informations that the playback of generation and content shows simultaneously, the link information of having signed among the broadcasting industry merchant 601 (having signed link information) is sent to receiving system 603, in receiving system 603, carry out under the situation of access simultaneously according to signing link information, provide the device of Web service to the user of receiving system 603, have: link information generation unit 801, link information administrative unit 802, communication unit 803, Web service provide unit 804.
The link information that the playback of 801 generations of link information generation unit and content shows simultaneously.One example of the link information that is generated by this link information generation unit 801 is an illustrated link information among Figure 57.Wherein, as the project of content appointment, can utilize other parameter.For example, can be to have utilized the segmentation of the segment information (Segment Information) of TVA standard to specify, utilize SI (Service Information: the broadcasting industry merchant appointment of service-id information on services), the appointment of time on date, area appointment, type appointment etc. to a part of scene of content.In addition, in Figure 57, link information is represented by sheet form, but when the utilization of reality, can is the narration way of XML (Extensible Markup Language) form, CSV (Comma Separated Value) form, textual form, binary form etc.
In addition, link information administrative unit 802 is carried out the management of signing link information of having signed among link information that link information generation unit 801 generates and the broadcasting industry merchant 601.Communication unit 803 sends link information by IP network 604 to broadcasting industry merchant 601, receives from broadcasting industry merchant 601 and has signed link information, and simultaneously by IP network 605, link information has been signed in 603 transmissions to receiving system.And 603 pairs of receiving systems 603 of communication unit send the data of the Web service corresponding with access based on link information (comprise and sign link information).
In addition, Web service provides unit 804 to provide the Web service corresponding with access according to the link information that communication unit 803 receives.The data of this Web service as described above, are sent to receiving system 603 by communication unit 803.Here, Web service for example, except the portal website (portal site) that shows ISP602, also means the buying of the download of content and sale, commodity, movable registration etc. utilizes available all services in internet with lottery.
The structure of the link information authenticate device 900 that relevant receiving system 603 possesses then, is described in link information Verification System shown in Figure 50.Figure 53 is the block diagram of the link information authenticate device that possesses of the receiving system 603 of link information Verification System of expression present embodiment.Link information authenticate device 900 shown in Figure 53 is from broadcasting industry merchant 601 received contents and public-key cryptography certificate, from the link information that ISP602 receives, retrieve the link information that can show simultaneously simultaneously with the playback of content, and the situation that only signature of the link information that retrieves is disclosed the authentication of key certificate is regarded as effectively, thereby show the device of effective link information in the time of with the playback of content, it has: broadcast reception unit 901, content playback unit 902, certificate administrative unit 903, signature authentication ' unit 904, link information administrative unit 905, link information retrieval unit 906, link information display unit 907, communication unit 908, Web service display unit 909.
Broadcast reception unit 901 passes through radio network 606, received content and the information relevant with content, the public-key cryptography certificate corresponding with content from broadcasting industry merchant 601.Have, under the situation of digital broadcasting, content means broadcast program again, and the information relevant with content means SI.In addition, the public-key cryptography certificate corresponding with content is time period of being broadcasted of this content or need be received before it.
In addition, content playback unit 902 is that the content that broadcast reception unit 901 receives is reset, and by the operating unit (not shown) of regulation, accepts the unit from user's content operation simultaneously.Have again,, notify the user content sense of vision that content playback unit 902 is reset and/or audio by not shown monitor (display unit) and loud speaker etc.In addition, certificate administrative unit 903 is stored the public-key cryptography certificate that broadcast reception unit 901 receives, manage as database.In addition, signature authentication ' unit 904 obtains the corresponding public-key cryptography certificate of link information that retrieves with link information retrieval unit 906 from certificate administrative unit 903, thereby the legitimacy to the signature of giving in the link information is tested, and only makes the link information that is authenticated to be when legal effective.
Have, the signature of giving in the link information must be checked by suitable public-key cryptography certificate (with the corresponding certificate of link information) again.Figure 58 is SI, the link information of the routine content of link information Verification System of expression present embodiment and content, the figure of the testimonial relation of public-key cryptography.Shown in this Figure 58, the SI of broadcasted content, link information, public-key cryptography certificate are mutually by service_id and event_id and correspondence.Therefore, service_id and event_id as identifying information, are obtained and the corresponding suitable public-key cryptography certificate of link information, thereby can retrieve the signature of link information by the disclosure key certificate.
In addition, link information administrative unit 905 manages the link information that communication unit 908 receives as database.In addition, link information retrieval unit 906 is from service_id and the event_id corresponding link information of link information administrative unit 905 retrieval with 901 contents that receive from the broadcast reception unit, and to the authentication of the retrieved link information of signature authentication ' unit 904 requests.Then, will sign that authentic link information is transferred to link information display unit 907 in the authentication ' unit 904, and its demonstration is carried out in request.Have again, under the situation that content in broadcast reception unit 901 in tuning is changed and content switch by under the situation about changing because of channel, link information detecting unit 906 detects the variation of event_id, thereby to retrieving again with this content corresponding link information.
In addition, link information display unit 907 will carry out showing that the link information of request and the playback of content side by side are presented at the monitor (not shown) that is connected to receiving system 603 from link information retrieval unit 906.And link information display unit 907 is accepted the linked operation from the user at the operating unit (not shown) by regulation, has carried out according to link information under the situation of access request communication unit 908 being asked, to be connected to the link destination.In addition, communication unit 908 receives link information by IP network 605 from ISP602, simultaneously according to connection request from link information display unit 907 and Web service display unit 909, by ISP602 be connected the transmission reception of carrying out data between the destination.In addition, the picture of the Web service that Web service display unit 909 will receive from communication unit 908 is presented on the monitor (not shown), accepts Web operation from the user by the operating unit (not shown) of regulation simultaneously.
Then, on one side with reference to the precedence diagram shown in Figure 54, explanation on one side is in the structure shown in above-mentioned Figure 50~Figure 53, for the link information that ISP602 generates, the action till broadcasting industry merchant 601 signs.Figure 54 is the link information Verification System that is used for illustrating in present embodiment, for link information, the content providing device till the broadcasting industry merchant signs and the precedence diagram of the processing in the link information generator of ISP generation.
At first, the link information generation unit 801 of the link information generator 800 of ISP602 generates the link information that will show simultaneously with the playback of content, and is transferred to link information administrative unit 802 (step S501).The link information that generate this moment for example is an illustrated link information among above-mentioned Figure 57.Then, the link information administrative unit 802 of link information generator 800 is given signature for the link information request broadcasting industry merchant 601 who obtains among the step S501, so communication unit 803 is passed on link information, so that content providing device 700 is sent link information, ask 601 pairs of content providing devices of broadcasting industry merchant 700 to send link information (step S502) simultaneously.Then, the communication unit 803 of link information generator 800 sends to content providing device 700 (step S503) with the link information that request among the step S502 sends.
The communication unit 706 of content providing device 700 is received in the link information that sends from link information generator 800 among the step S503, and is transferred to signature unit 705 (step S504).Then, the signature unit 705 of content providing device 700 judge in step S504 the link information supplied with from communication unit 706 whether with matching that the broadcasting industry merchant makes a promise.Here, be judged as under the situation of having maked a promise this link information the 705 pairs of certificate administrative units in signature unit, the 704 requests public-key cryptography certificate (step S505) corresponding with link information.
Have again, not shown among Figure 54, but under the situation of not making a promise link information, signature is not given in expectation signature unit 705, and for link information generator 800, notice can not be maked a promise link information.In addition, for example, can adopt following various determining method: in the table that the information of the link information of having put down in writing relevant promise is had a guide look of, whether comprised the link information that receives, perhaps, in the table of having put down in writing the relevant information guide look that does not have the link information maked a promise, check the link information whether do not comprise reception, perhaps, carry out access and directly carry out the check etc. of content according to the link information that receives.
Accepting under the situation of the testimonial request of public-key cryptography corresponding from signature unit 705 with link information, the public-key cryptography certificate that certificate administrative unit 704 retrievals of content providing device 700 are asked in step S505, thereby finding under the testimonial situation of public-key cryptography, the disclosure key certificate is being turned back to signature unit 705.On the other hand, can not find under the testimonial situation of public-key cryptography in certificate administrative unit 704,703 requests generate the public-key cryptography certificate (step S506) corresponding with this link information to link information certificate generation unit.Have again, in the precedence diagram of Figure 54, illustrate about not finding the testimonial situation of public-key cryptography, but finding the public-key cryptography certificate and it is being turned back under the situation of signature unit 705, carrying out and the relevant processing of signature (step S510 described later) link information according to the disclosure key certificate.
The certificate generation unit 703 of content providing device 700, the pairing content of link information that generates has been asked in retrieval in step S506 from content management units 701, obtain the identifying information relevant, and generate the public-key cryptography certificate (certificate that comprise with this content relevant identifying information) (step S507) corresponding with this content with this content.The certificate generation unit 703 of content providing device 700 is transferred to certificate administrative unit 704 (step S508) with the public-key cryptography certificate that generates among the step S507, certificate administrative unit 704 storages of content providing device 700, the public-key cryptography certificate that management obtains in step S508 are transferred to the disclosure key certificate signature unit 705 (step S509) simultaneously.
The signature unit 705 of content providing device 700 uses the public-key cryptography certificate of obtaining in step S509, link information is given signature and generated and to have signed link information, and link information has been signed in the request transmission, sign link information to pass on, send for link information generator 800 simultaneously and signed link information (step S510) for communication unit 706.Then, the communication unit 706 of content providing device 700 will ask the link information of signature of transmission to send to link information generator 800 (step S511) in step S510.
The communication unit 803 of link information generator 800 is received in the link information of signature that sends from content providing device 700 among the step S511, and is transferred to link information administrative unit 802 (step S512).Then, the link information of the signature registration that will in step S512, supply with of the link information administrative unit 802 of link information generator 800, be stored in (step S513) in the database.
By a series of processing shown in above-mentioned Figure 54, link information for the ISP602 generation, broadcasting industry merchant 601 judges whether it matches as the link information that the playback with content shows simultaneously, only signed link information being judged as to give signature under the situation about matching and generate, to be stored in the link information generator 800.Thus, the link information that shows simultaneously with the playback of content is relevant, can make broadcasting industry merchant 601 carry out the promise of link information, by the signature of giving broadcasting industry merchant 601 in the link information of making a promise, be shown with content so can prevent the link information that the broadcasting industry merchant does not have to make a promise.
Then, on one side with reference to the precedence diagram shown in Figure 55, explanation is in the structure shown in above-mentioned Figure 50~Figure 53 on one side, link information authenticate device 900 is from broadcasting industry merchant 601 received contents and public-key cryptography certificate, the action till the link information that can show simultaneously with the playback of content from the ISP602 retrieval.Figure 55 is the link information Verification System that is used for illustrating in present embodiment, the link information authenticate device is from broadcasting industry merchant received content and public-key cryptography certificate, the precedence diagram of the processing the content providing device till the link information that the ISP retrieval can show simultaneously with the playback of content, link information generator, the link information authenticate device.
At first, the radio unit 702 of broadcasting industry merchant 601 content providing device 700 is obtained and will be obtained the public-key cryptography certificate (step S602) corresponding with the content that obtains from certificate administrative unit 704 among step S601 simultaneously to the content (step S601) of receiving system 603 broadcasting from content management units 701.Then, content and public-key cryptography certificate that the radio unit 702 of content providing device 700 will be obtained in step S601 and S602 are multiplexing, to 900 broadcasting (step S603) of link information authenticate device.Have again, use Figure 59 and as described later,, not necessarily transmit the public-key cryptography certificate, for example,, also can send the public-key cryptography certificate via IP network 604,605 etc. by radio network 606 from 700 pairs of receiving systems 603 of content providing device.In this case, same with the situation of carrying out the testimonial transmission of public-key cryptography with the state after multiplexing to content, the time period (in the identical time period) that is broadcasted according to the content of correspondence, by sending the public-key cryptography certificate from 700 pairs of receiving systems 603 of content providing device, preventing that public-key cryptography is testimonial alters and the testimonial illegal utilization of public-key cryptography, thereby can improve the reliability of content of being reset and the link information that is shown.
The broadcast reception unit 901 of link information authenticate device 900 is received in the public-key cryptography certificate that sends from content providing device 700 among the step S603, and the disclosure key certificate is transferred to certificate administrative unit 903, mandatory administration (step S604), be received in the content that sends from content providing device 700 among the step S603 simultaneously, and the identifying information (service_id and event_id) of this content is transferred to link information retrieval unit 906 (step S605).
The link information retrieval unit 906 of link information authenticate device 900 from link information administrative unit 905, retrieve with in step S605 from the broadcast reception unit the 901 corresponding link informations of supplying with of signature of identifying information (service_id and event_id), under situation about finding, obtain this and signed link information (step S606).On the other hand, can not find under the situation of having signed link information at link information retrieval unit 906, the identifying information that the link information retrieval unit 906 of link information authenticate device 900 will be obtained in step S605 (service_id and event_id) is transferred to communication unit 908,908 requests send to communication unit simultaneously, with with this identifying information (service_id and event_id) as retrieval key, obtain from link information generator 800 and to sign link information (step S607).Have, after the step S608 of the precedence diagram of Figure 55, illustrate that relevant can not finding signed link information, request obtains the processing under the situation of signing link information in step S607.
The retrieval key that the communication unit 908 of link information authenticate device 900 will be obtained in step S607 sends to the communication unit 803 (step S608) of link information generator 800.The communication unit 803 of link information generator 800 is received among the step S608 and is transferred to link information administrative unit 802 from the retrieval key of link information generator 800 transmissions and with it, obtains the signature link information (step S609) corresponding with this retrieval key from link information administrative unit 802.Then, the link information of signature that will obtain in step S609 of the communication unit 803 of link information generator 800 sends to link information authenticate device 900 (step S610).The communication unit 908 of receiving system 603 is received in the link information of signature that sends from link information generator 800 among the step S610, and is transferred to link information retrieval unit 906 (step S611).
By a series of processing shown in above-mentioned Figure 55, link information authenticate device 900 can reach the public-key cryptography certificate corresponding with this content from broadcasting industry merchant 601 received contents, and obtains the link information of signature that can show simultaneously with the playback of this content from ISP602.
Then, on one side with reference to the precedence diagram shown in Figure 56, explanation is in the structure shown in above-mentioned Figure 50~Figure 53 on one side, the signature of link information authenticate device 900 check link informations also shows the playback of authentic link information and content simultaneously, and action till the access is carried out in the link destination of link information.Figure 56 is the link information Verification System that is used for illustrating in present embodiment, the signature of link information authenticate device check link information also shows the playback of authentic link information and content simultaneously, and the link information generator till the access and the precedence diagram of the processing in the link information authenticate device are carried out in the link destination of link information.Have again, in the precedence diagram shown in this Figure 56, illustrate the action of a series of processing shown in Figure 55 that continues, promptly, link information authenticate device 900 received contents and the public-key cryptography certificate corresponding with this content, and, become the state of having obtained the link information that can show simultaneously with the playback of this content.
At first, the broadcast reception unit 901 of the link information authenticate device 900 of receiving system 603 will be transferred to content playback unit 902 from the content that content providing device 700 receives, and the playback of request content (step S701).Then, the signature authentication (step S702) of the link information that shows simultaneously of 904 requests of 906 pairs of the link information retrieval units of link information authenticate device 900 signature authentication ' unit and the content that will reset.Then, the signature authentication ' unit 904 of link information authenticate device 900 obtains and the corresponding public-key cryptography certificate of link information of having asked the signature authentication among step S702 from certificate administrative unit 903, and checks the signature (step S703) of link information by the disclosure key certificate.
The signature authentication ' unit 904 of link information authenticate device 900 can authenticate under the situation of signature in step S703, link information retrieval unit 906 notification authentication are notified, under the situation that can not authenticate signature, can not authentication notification (step S704) to link information retrieval unit 906 notices.Have again, after the step S705 of the precedence diagram of Figure 56, illustrate relevant in step S703 signature certified and link information retrieval unit 906 has been notified processing under the situation of authentication notification.In addition, under the not authentic situation of signature, link information is not supplied with link information display unit 907, does not carry out the demonstration of link information.
The link information retrieval unit 906 of link information authenticate device 900 will be transferred to link information display unit 907 by authentic link information in step S704, and request shows this link information (step S705).The link information display unit 907 of link information authenticate device 900 will carry out the link information of the request that shows in step S705 and the playback of content shows (step S706) simultaneously.
In addition, user at link information authenticate device 900 uses under (not shown) such as operating units and the situation of indication to the access of the link destination of link information of regulation, 907 pairs of communication units 908 of link information display unit are asked, so that access (step S707) is carried out in the link destination of putting down in writing in the link information.908 pairs of the communication units of link information authenticate device 900 have asked the link destination of access to carry out access (step S708) in step S707.Have again,, illustrate that relevant access destination is ISP602 here, the situation that the communication unit 803 of link information generator 800 is carried out access.
The communication unit 803 of link information generator 800 is according to the access request of accepting in step S708 to the link destination from link information authenticate device 900, the data (step S709) that provide unit 804 to obtain the Web service corresponding with linking the destination from Web service send to link information authenticate device 900 (step S710) with the data of the Web service that obtains among the step S709.
The communication unit 908 of link information authenticate device 900 is received among the step S710 data of the Web service that sends from link information generator 800, the data of this Web service are transferred to Web service display unit 909, and request shows (step S711).Then, the Web service display unit 909 of link information authenticate device 900 is according to the Web data of supplying with in step S711, and the monitor (not shown) that the picture of Web service is presented at regulation is gone up (step S712).
By a series of processing shown in above-mentioned Figure 56, receiving system 603 shows the link information that is associated with the content of resetting simultaneously, and the user can accept Web service by carrying out the access indication to this link information.In addition; at receiving system 603; owing to only show link information, so the illegal link information do not assert of display of broadcast cause merchant 601 not can protect the user not to be subjected to the infringement that illegal link information causes by the authentication of broadcasting industry merchant 601 public-key cryptography certificate.
Have again, the timing that receiving system 603 is obtained the public-key cryptography certificate and signed link information, with these public-key cryptography certificates and signed the corresponding content of link information be broadcasted preceding or broadcasting in just passable, also can obtain in advance and be stored in the receiving system 603.
In addition, the form that in above-mentioned steps S706 the playback of link information and content is side by side shown is not the special form that limits.That is, for example, be under the situation of live image or rest image etc. in content, can be on the content that is shown the video data etc. of overlapping link information, content and link information are shown simultaneously.In addition, for example, also can distinguish in advance and determine individually link information viewing area and content display region, in the link information viewing area, to show link information along with the demonstration of the content in the content display region.
In addition, the relevant display mode of the data of the Web service that obtains among the above-mentioned steps S711 also can be an arbitrary method.For example, in content is under the situation of live image or rest image etc., generate the data display area of Web service, dwindle the viewing area of content simultaneously, thereby can show the data and the content of Web service simultaneously, in addition, the data that also can be the beginning Web service show, begin the video recording of content simultaneously, and are through with moment of browsing data of Web service the user, trace back to till the zero hour that the data of Web service show the playback subsequently of the content that videoed.
In addition, for same content, also can set a plurality of link informations.In this case, it is just passable to go up the whole a plurality of link informations of demonstration with the playback of content at the monitor (not shown) of receiving system 603, in addition, in receiving system 603, the restriction of the demonstration number by being provided with link information, carry out the selection of link information according to various conditions, also can carry out the filtering of the link information that will show.
In addition, at above-mentioned execution mode, in link information, insert the content identification information that is used to carry out the content appointment, make link information corresponding with content, but, for example, also can make a part of scene (between the given zone of content), broadcasting industry merchant 601, time on date, area, content type or their combination etc. of content corresponding with link information.
For example, under the situation corresponding, the index information of representing scene is sent to receiving system 603 by broadcasting or communication, and expectation makes this index information and link information correspondence with a part of scene of content.Have again,, can utilize the program index information of ARIB B10 and the segment information of TVA etc. receiving system 603 being sent under the situation of index information by broadcasting.On the other hand, receiving system 603 being sent under the situation of index information, also can utilize the segment information of TVA by communication.
In addition, for example, be inserted into link information, also can make link information and broadcasting industry merchant 601 correspondences by cause merchant's identifying information that will be used for discerning broadcasting industry merchant 601.In this case, receiving system 603 judges whether and will reset from the content of which broadcasting industry merchant 601 broadcasting, and can show and specific broadcasting industry merchant 601 corresponding link information.
In addition, for example, be inserted in the link information by date temporal information or the regional identifying information that will represent time on date or area etc., time on date or area that link information and this link information of permission are shown are corresponding.Under situation based on the setting of time on date, the moment that receiving system 603 is represented with reference to onboard clock and by the reception of electric wave etc. measured moment etc., thereby the decision link information could.And under situation, by with reference to the regional identifying information that receives by broadcast reception unit 901, or utilize other various detection methods that the place is set based on the setting in area, can grasp the area that receiving system 603 exists.By the regional identifying information that inserts in advance in more detected area and the link information, what can determine that link information shows could, perhaps, can be based on retrieving suitable link information with the judgement of the correlation that the area and the area of link information appointment are set of receiving system 603.
In addition, for example, as conduct among Figure 57 ' link destination type ' was illustrated, the content type (kind of content) of the service content of the link destination that link information is represented and link destination etc. also was the information that can carry out the retrieval of suitable link information.In this case, by type that compares the content that receives by broadcast reception unit 901 and the service content that links the destination and the content type that links the destination, the relative program of decidable content and link information that link information is represented.
In addition, at above-mentioned execution mode, utilize SI as the identifying information that is used to discern the content corresponding with link information, but receiving system 603 is being sent under the situation of content by communication, give identification id in advance to content, link information retrieval unit 906 with this identification id as retrieval key, thereby can retrieve and this retrieval key corresponding link information.
In addition, at above-mentioned execution mode, shown in Figure 58, give service_id and event_id to the public-key cryptography certificate, and the disclosure key certificate and content sent by 606 pairs of receiving systems of radio network 603 simultaneously, but also public-key cryptography certificate and content can be sent respectively.For example, shown in Figure 59, receiving system 603 reception/storage in advance has been endowed the public-key cryptography certificate of certificate ID, and then, the corresponding informance of " the certificate ID-service_id-event_id " that puts down in writing among received content and the SI is just passable.Thus, receiving system 603 is retrieved and is obtained the broadcasting industry merchant ID that is documented among the SI and reaches and service_id, event_id corresponding link information, can retrieve and obtain the public-key cryptography certificate among the certificate ID from be documented in SI simultaneously, then, by the public-key cryptography certificate of obtaining, can carry out the signature check of link information.
In addition, at above-mentioned execution mode, the public-key cryptography certificate is sent to receiving system 603 by radio network 606, but for example also can shown in Figure 60 authentication platform 1104 be set, so that distribute the public-key cryptography certificate by 605 pairs of receiving systems of IP network 603.In this case, broadcasting industry merchant 601 is by IP network 604, to give the public-key cryptography certificate of certificate ID in advance and register/be stored in the authentication platform 1104, receiving system 603 can be obtained the public-key cryptography certificate corresponding with certificate ID from authentication platform 1104 by IP network 605.
In addition, at above-mentioned execution mode, use is used to show the video data of link information self, link information button and content are side by side shown, but for example push and make the direct button that shows in link destination etc. the user, thereby be set under the situation of link destination display mode of direct demonstration link destination, also can not show link information button self, and the Web page or leaf and the content of direct link destination are shown simultaneously.In addition, also can automatically set above-mentioned link destination display mode, the Web page or leaf and the content of link destination are shown simultaneously.
The possibility of utilizing on the industry of the present invention is, meta data access control system of the present invention, side Method and use their receiving system and dispensing device is as the broadcast system that has utilized metadata or content Distribution systems etc. are useful. In addition, also can be applicable to utilize from BML or HTML, SMIL etc. Structured document information to the broadcast system of content access or content allocation system etc.
Claims (62)
1. content reception apparatus comprises:
The metadata verification unit is obtained the metadata of having recorded and narrated at least the control information of content, and definite metadata;
Content is obtained in the content inspection unit, and definite content;
Metadata access control information verification unit is obtained the metadata access control information secretly, and definite metadata access control information, and described metadata access control information has been recorded and narrated the correspondence for the information of definite metadata of the information of determining described content;
The metadata identifying unit, according to described metadata access control information, judgement reaches the information of determining described metadata from the information of determining described content could carry out the control of metadata to content; And
Content is utilized the unit, according to could judging of described metadata identifying unit, uses described metadata, thus the content of utilization.
2. content reception apparatus as claimed in claim 1 is characterized in that, described metadata identifying unit
In the information of determining described content is provider's information of content, the information of determining described metadata access control information is provider's information of metadata access control information, provider's information by the definite content in described content inspection unit is identical with provider's information of the described metadata access control information of being determined by described metadata access control information verification unit, and
In described metadata access control information, record and narrate have determine as the information of the content of controlling object and to recorded and narrated the information determined for the described metadata of the control of described content at once,
Judgement could be carried out the control of described metadata to described content.
3. content reception apparatus as claimed in claim 1 is characterized in that, described metadata verification unit is obtained the described metadata of being transmitted by broadcast route and encrypted broadcast route.
4. content reception apparatus as claimed in claim 3 is characterized in that, described metadata verification unit carries out determining of described metadata according to the information of recording and narrating in the described metadata.
5. content reception apparatus as claimed in claim 3 is characterized in that, described metadata verification unit is by eletric watermark, carry out determining of described metadata with the synthetic information of described metadata.
6. content reception apparatus as claimed in claim 3 is characterized in that, described metadata verification unit is by carrying out determining of described metadata by the information of broadcast route attribute transmission, that recorded and narrated transmission path different with described metadata.
7. content reception apparatus as claimed in claim 1 is characterized in that, described metadata verification unit is obtained the described metadata by encrypted two-way communication transmission, determines metadata by the information of recording and narrating in the metadata.
8. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata verification unit is obtained the described metadata by encrypted two-way communication transmission, determines metadata by the information of putting down in writing in the certification of service that uses in encrypted two-way communication or the described certification of service.
9. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata verification unit is obtained encrypted metadata, and be decrypted with decruption key, determine metadata in the information of putting down in writing from the metadata of described deciphering, described decruption key is included in the License Info that can only can decipher with the intrinsic unique key of receiver.
10. content reception apparatus as claimed in claim 2 is characterized in that, described metadata verification unit is determined metadata by metadata provider information or the identifier of discerning metadata uniquely.
11. content reception apparatus as claimed in claim 1 is characterized in that, described metadata verification unit is endowed the information of recording and narrating and determines metadata by checking in the certificate of the signature of metadata and described certificate.
12. content reception apparatus as claimed in claim 11 is characterized in that, the information of recording and narrating in the described certificate is to discern testimonial identifier uniquely or discern possessory identifier uniquely or unique owner's name.
13. content reception apparatus as claimed in claim 1 is characterized in that, the content by the broadcast route transmission is obtained in described content inspection unit, and carries out determining of described content according to the information of the content of determining to be transmitted by the broadcast route different with described content.
14. content reception apparatus as claimed in claim 13 is characterized in that, the information of determining described content is to discern the identifier of content uniquely, or content supplier's information.
15. content reception apparatus as claimed in claim 1, it is characterized in that, the described content by encrypted broadcast route transmission is obtained in described content inspection unit, and by with the deciphering of the unique key of receiver, be contained in the information that contains in the License Info of the key of contents decryption, content is determined.
16. content reception apparatus as claimed in claim 15 is characterized in that, the information of determining described content is to discern the identifier of content or content supplier's information uniquely or with the content key of contents decryption.
17. content reception apparatus as claimed in claim 1 is characterized in that, described content inspection unit is determined content by the information synthetic with described content.
18. content reception apparatus as claimed in claim 17 is characterized in that, with the synthetic information of described content be by the multi-section differentiation with content the information after synthetic.
19. content reception apparatus as claimed in claim 17 is characterized in that, the information synthetic with described content is the information that has been embedded in eletric watermark.
20. content reception apparatus as claimed in claim 17 is characterized in that, the information synthetic with described content is the information of recording and narrating in the content-data head.
21. content reception apparatus as claimed in claim 17 is characterized in that, the information of determining described content is to discern identifier or content supplier's information of content uniquely.
22. content reception apparatus as claimed in claim 1, it is characterized in that, the described content by encrypted two-way communication transmission is obtained in described content inspection unit, and determines content by the information of recording and narrating in the certification of service that uses in encrypted two-way communication or the described certification of service.
23. content reception apparatus as claimed in claim 1, it is characterized in that, encrypted content is obtained in described content inspection unit, and be decrypted with decruption key, determine content in the information of putting down in writing from described License Info, described decruption key is included in the License Info that can only can decipher with the intrinsic unique key of receiver.
24. content reception apparatus as claimed in claim 23 is characterized in that, the information of determining described content is determined content by content supplier's information or identifier or the described decruption key of discerning content uniquely.
25. content reception apparatus as claimed in claim 1 is characterized in that, content is determined by checking the information of recording and narrating in the certificate that is endowed the signature in content or the described specification in described content inspection unit.
26. content reception apparatus as claimed in claim 25 is characterized in that, the information of recording and narrating in the described certificate is to discern testimonial identifier uniquely or discern possessory identifier uniquely or unique owner's name.
27. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata access control information verification unit is obtained the described metadata access control information that is transmitted by broadcast route or encrypted broadcast route, from the provider's information by definite metadata access control information the information transmitted of identical traffic path.
28. content reception apparatus as claimed in claim 27, it is characterized in that, the information of described metadata access control information verification unit by recording and narrating in the described metadata access control information is carried out the determining of provider's information of described metadata access control information.
29. content reception apparatus as claimed in claim 27, it is characterized in that the determining of the provider information of described metadata access control information verification unit by carrying out described metadata access control information by the broadcast route different information transmission, that recorded and narrated the attribute of transmission path with described metadata access control information.
30. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata access control information verification unit is obtained the described metadata access control information by encrypted broadcast route transmission, and by by the deciphering of the unique key of receiver, be contained in the information that contains in the License Info of the key of metadata access control information deciphering, determine provider's information of metadata access control information.
31. content reception apparatus as claimed in claim 1, it is characterized in that, the described content by encrypted broadcast route transmission is obtained in described content inspection unit, described metadata access control information verification unit by by the deciphering of the unique key of receiver, be contained in the information that contains in the License Info of the key of contents decryption, determine provider's information of metadata access control information.
32. content reception apparatus as claimed in claim 1 is characterized in that, the described content by encrypted broadcast route transmission is obtained in described content inspection unit,
Described metadata access control information verification unit is obtained the metadata access control information, and this metadata access control information is by the deciphering of the unique key of receiver, records and narrates in being contained in the information that contains the License Info of the key of contents decryption.
33. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata access control information verification unit is obtained described metadata access control information cause merchant that cause merchant's information of being kept by the cause merchant who trusts as receiver determines, that transmit by encrypted two-way communication
Determine provider's information of metadata access control information by described cause merchant's information.
34. content reception apparatus as claimed in claim 1 is characterized in that, encrypted content is obtained in described content inspection unit,
Described metadata access control information verification unit is obtained the metadata access control information, and the decruption key of described metadata access control information content is recorded and narrated in the information of the License Info that only can be by receiver intrinsic unique key is deciphered.
35. content reception apparatus as claimed in claim 34 is characterized in that, the correspondence of the decruption key that described metadata access control information is described content and the information of definite metadata.
36. content reception apparatus as claimed in claim 1 is characterized in that, described metadata access control information verification unit is obtained with described content the metadata access control information after synthetic.
37. content reception apparatus as claimed in claim 36 is characterized in that, with the synthetic information of described content be by the multi-section differentiation with content the information after synthetic.
38. content reception apparatus as claimed in claim 36 is characterized in that, the information synthetic with described content is the information that has been embedded in eletric watermark.
39. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata access control information verification unit makes content and metadata correspondence by obtain the metadata access control information that is transmitted by the transmission path identical with described content in the time of the described content of transmission.
40. content reception apparatus as claimed in claim 39 is characterized in that, described metadata access control information is to determine the certificate of metadata or the information of the metadata determining to record and narrate in the described certificate.
41. content reception apparatus as claimed in claim 40 is characterized in that, the information of recording and narrating in the described certificate is to discern testimonial identifier uniquely or discern possessory identifier uniquely or unique owner's name.
42. content reception apparatus as claimed in claim 1 is characterized in that, described metadata is the playback control information of content at least, and the utilization of described content is the playback according to the content of the playback control information of putting down in writing in the described metadata.
43. content reception apparatus as claimed in claim 42 is characterized in that, described playback control information is branch segment metadata and segmentation group metadata, and the utilization of described content is the playback control according to the content of described minute segment metadata and segmentation group metadata.
44. content reception apparatus as claimed in claim 1 is characterized in that, described metadata is the storage control information of content at least, and the utilization of described content is the storage according to the content of described storage control information.
45. content reception apparatus as claimed in claim 1, it is characterized in that, described metadata at least content the storage control information and to the playback control information of the content that is stored control, the utilization of described content is the playback control during according to the storage of the content of described storage control information and with described content playback.
46. content reception apparatus as claimed in claim 45 is characterized in that, described playback control information is only beyond between the specific zero hour to the finish time of every day, and the information of the playback of content is carried out in permission.
47. content reception apparatus as claimed in claim 45 is characterized in that, described playback control information is the information of only permitting the playback of forbidding skipping the CM that is contained in content in content playback.
48. content reception apparatus as claimed in claim 45 is characterized in that, described playback control information is from obtaining after the content information of the content playback of only permission during certain.
49. content reception apparatus as claimed in claim 1 is characterized in that, described metadata comprises the link information that is used for when described content playback picture being switched to other information at least,
The utilization of described content is, according to described link information, picture switched to described other information when described content playback.
50. content reception apparatus as claimed in claim 1, it is characterized in that when described metadata is included in described content playback at least picture is switched to the link information of other information, the utilization of described content is, according to described link information, when described content playback, show described link information.
51. content reception apparatus as claimed in claim 50 is characterized in that, the demonstration of described link information has comprised and has shown the data that are referenced based on the information of putting down in writing in the link information at least.
52. content reception apparatus as claimed in claim 50 is characterized in that, described link information is the information of content.
53. content reception apparatus as claimed in claim 50 is characterized in that, described link information is sent by the transmission path different with the transmission path of content.
54. content reception apparatus as claimed in claim 50 is characterized in that, described link information has Still image data or the moving image data that is utilized in the demonstration of link information.
55. a metadata access control method is characterized in that having:
To the step that metadata is tested, described metadata recorded and narrated receive at least for the control information of content;
The step that content is tested;
To the step that the metadata access control information is tested, described metadata access control information is used for specified content to be provided the relation of unit and metadata distribution unit and controls access to content from metadata; And
According to the assay of described metadata, the assay of metadata access control information, the assay of content and the content of metadata access control information, judge whether can carry out the step of metadata to the control of content.
56. metadata access control method as claimed in claim 55, it is characterized in that, the judgement that could control by metadata, the unit and the distribution unit of metadata access control information are provided is identical confirming as content, and during to the control of content, be judged to be the metadata that is provided unit to make a promise by content by metadata access control information license metadata.
57. metadata access control method as claimed in claim 55, it is characterized in that, the judgement that could control by metadata when providing first affirmation to rely in the distribution unit of metadata access control information by content, is judged to be the metadata that unit's permission is provided by content.
58. a meta data access control system is characterized in that, comprising:
The metadata dispensing device possesses: the metadata generation unit, and the generator data, described metadata has been recorded and narrated the control information for content at least; And metadata checking information extra cell, give checking information, described checking information is used for receiving system and tests to the distribution of metadata unit or to the information that is used to discern content;
Metadata access control information dispensing device, possess: metadata access control information generation unit, the control information of generator data access, described metadata access control information are used for the relation of specified content and metadata and record and narrate and could carry out the control of metadata to content; And metadata access control information checking information extra cell, checking information is given in the metadata access control information, and described checking information is used for receiving system to the identifying information of described metadata access control information metadata or issue metamessage or obtain destination information or do not altered more than one of them of metadata and test;
Content sending apparatus possesses: the content generation unit generates content; And content inspection information extra cell, give information, described information is used for receiving system and tests to the identifier information of content or more than issuing metamessage or obtaining one of them of destination information; And
Content reception apparatus possesses: the metadata verification unit is used to check described metadata; Metadata access control information verification unit is checked described metadata access control information; Described content is checked in the content inspection unit; And the metadata identifying unit, use described metadata assay, described content inspection result and described metadata access control information, can judgement utilize described metadata.
59. meta data access control system as claimed in claim 58, it is characterized in that, the metadata identifying unit of described content reception apparatus, confirming that content provides unit identical with the distribution unit of metadata access control information, and during to the access of content, be judged to be the metadata that is provided unit to make a promise by content from metadata by metadata access control information permission.
60. meta data access control system as claimed in claim 58, it is characterized in that, the metadata identifying unit of described content reception apparatus, confirming as by content in the distribution unit of metadata access control information provides unit to trust, and during to the access of content, be judged to be the metadata that unit's permission is provided by content from metadata by metadata access control information permission.
61. a meta data access control system is characterized in that comprising:
The metadata dispensing device possesses: metadata generation unit, generator data; And metadata access control information extra cell, give information, described information is used for the receiving system specified content provides unit and the first relation of metadata distribution, and could carry out metadata the metadata access control information of the control of content is tested having recorded and narrated;
Content sending apparatus possesses: the content generation unit generates content; And content inspection information extra cell, give information, described information is used for receiving system content is tested; And
Content reception apparatus possesses: metadata access control information verification unit, check described metadata access control information; The content inspection unit, inspection content; And the metadata identifying unit, use described metadata assay, described content inspection result and described metadata access control information to judge and can utilize metadata.
62. a meta data access control system is characterized in that, comprising:
The metadata dispensing device possesses: metadata generation unit, generator data; And metadata checking information extra cell, give checking information, described checking information is used for receiving system check metadata;
Content sending apparatus possesses: the content generation unit generates content; Metadata access control information generation unit, the control information of generator data access, described metadata access control information is used for the relation that specified content provides first and the metadata distribution is first and controls from the access of metadata to content; And metadata access control information checking information extra cell, described metadata access control information is synthesized in content; And
Content reception apparatus possesses: content inspection unit, inspection content; And the metadata identifying unit, use described metadata assay, described content inspection result and described metadata access control information, judgement could be carried out the control of metadata to content.
Applications Claiming Priority (4)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP351401/2003 | 2003-10-09 | ||
| JP2003351401 | 2003-10-09 | ||
| JP381831/2003 | 2003-11-11 | ||
| JP393077/2003 | 2003-11-21 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1883201A true CN1883201A (en) | 2006-12-20 |
| CN100539683C CN100539683C (en) | 2009-09-09 |
Family
ID=37520278
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2004800338046A Expired - Fee Related CN100539683C (en) | 2003-10-09 | 2004-10-12 | Meta data access control system and method thereof and receiving system, dispensing device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100539683C (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101925888B (en) * | 2008-01-25 | 2013-08-14 | 三星电子株式会社 | Method and apparatus for providing metadata of contents, and method and apparatus for limiting use-authortity of contents |
| CN106034255A (en) * | 2015-03-20 | 2016-10-19 | 冠捷投资有限公司 | Method for controlling data in same network |
| CN106845172A (en) * | 2015-12-07 | 2017-06-13 | 迪斯尼企业公司 | System and method for creating time-based dynamic watermark |
-
2004
- 2004-10-12 CN CNB2004800338046A patent/CN100539683C/en not_active Expired - Fee Related
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101925888B (en) * | 2008-01-25 | 2013-08-14 | 三星电子株式会社 | Method and apparatus for providing metadata of contents, and method and apparatus for limiting use-authortity of contents |
| CN106034255A (en) * | 2015-03-20 | 2016-10-19 | 冠捷投资有限公司 | Method for controlling data in same network |
| CN106845172A (en) * | 2015-12-07 | 2017-06-13 | 迪斯尼企业公司 | System and method for creating time-based dynamic watermark |
| CN106845172B (en) * | 2015-12-07 | 2020-07-03 | 迪斯尼企业公司 | System and method for creating time-based dynamic watermarks |
| US11172093B2 (en) | 2015-12-07 | 2021-11-09 | Disney Enterprises, Inc. | System and method for creating a temporal-based dynamic watermark |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100539683C (en) | 2009-09-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1112000C (en) | Image transmission apparatus, image transmission system, and communciation apparatus | |
| CN1217509C (en) | Content data storage | |
| CN1252581C (en) | Secreting and/or discriminating documents remote-controlling printing | |
| CN1522395A (en) | Content usage device and network system, and license information acquisition method | |
| CN1219381C (en) | Information transmission method and apparatus therefor | |
| CN1596533A (en) | Content using system | |
| CN1608263A (en) | Rights management unit | |
| CN1735939A (en) | Content distribution system, recording device and method, reproduction device and method, and program | |
| CN1659844A (en) | Content duplication management system and networked apparatus | |
| CN1682174A (en) | Group formation/management system, group management device, and member device | |
| CN1665184A (en) | Using a flexible rights template to obtain a signed rights label (SRL) for digital content | |
| CN1612526A (en) | Content distribution method, content obtaining device and method, and program | |
| CN1708971A (en) | System and method for pushing information from a service provider to a communication terminal comprising a memory card | |
| CN1396568A (en) | Digital works protection system, recording medium device, transmission device and playback device | |
| CN1930625A (en) | Content playback device | |
| CN1643922A (en) | Content playback apparatus, method, and program, and key management apparatus and system | |
| CN1754371A (en) | Content utilization result collection system | |
| CN1736082A (en) | Group entry approval system, server apparatus, and client apparatus | |
| CN1795466A (en) | Storage medium rental system | |
| CN1759559A (en) | Copyright protection system, recording apparatus, reproduction apparatus, and recording medium | |
| CN1679103A (en) | Content-duplication management system, apparatus and method, playback apparatus and method, and computer program | |
| CN1679102A (en) | Key delivery apparatus, terminal apparatus, recording medium and key delivery system | |
| CN1864383A (en) | System and method for time based digital content access | |
| CN1613257A (en) | Content using apparatus | |
| CN1517929A (en) | Contents used real result collection system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090909 Termination date: 20101012 |