KR20110016038A - Method and apparatus for generating contents by using index - Google Patents
Method and apparatus for generating contents by using index Download PDFInfo
- Publication number
- KR20110016038A KR20110016038A KR1020090073528A KR20090073528A KR20110016038A KR 20110016038 A KR20110016038 A KR 20110016038A KR 1020090073528 A KR1020090073528 A KR 1020090073528A KR 20090073528 A KR20090073528 A KR 20090073528A KR 20110016038 A KR20110016038 A KR 20110016038A
- Authority
- KR
- South Korea
- Prior art keywords
- content
- encryption keys
- encrypted
- different encryption
- index
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims abstract description 35
- 230000005540 biological transmission Effects 0.000 description 4
- 239000000284 extract Substances 0.000 description 4
- 238000007726 management method Methods 0.000 description 4
- 230000001419 dependent effect Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000013500 data storage Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012797 qualification Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6209—Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/434—Disassembling of a multiplex stream, e.g. demultiplexing audio and video streams, extraction of additional data from a video stream; Remultiplexing of multiplex streams; Extraction or processing of SI; Disassembling of packetised elementary stream
- H04N21/4341—Demultiplexing of audio and video streams
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Tourism & Hospitality (AREA)
- Physics & Mathematics (AREA)
- Signal Processing (AREA)
- General Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Hardware Design (AREA)
- Multimedia (AREA)
- Bioethics (AREA)
- Software Systems (AREA)
- Economics (AREA)
- Human Resources & Organizations (AREA)
- Marketing (AREA)
- Primary Health Care (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
Disclosed are a method and apparatus for generating content by multiplexing a plurality of content units encrypted using a plurality of different encryption keys and an index added according to a sequence of the plurality of content units.
Description
The present invention relates to a method and apparatus for generating content, and more particularly, to a method and apparatus for generating content including a plurality of content units encrypted using a plurality of different encryption keys.
The transmission and reception of content over a wired or wireless network is exposed to security risks because it is performed between a remote server and a client. There is always a risk of security by devices that are not authorized to send or receive content, such as hacking or eavesdropping. Since the content transmitted and received via wired and wireless networks is easy to copy as digital content, this security risk is more critical to the copyright management of the content.
Content security systems used to address these security risks include a CA (Conditional Access) system and a Digital Right Management (DRM) system. These content security systems are systems that grant or restrict the use of content, and can only decrypt content transmitted by the content server using an encryption key if the client has the right to use the content. The content can be used only when the client is authorized to use the content through payment of the content usage fee, and the like, thereby preventing indiscriminate copying of the digital content.
In broadcasting standards such as digital video broadcasting (DVB), the encryption key is changed at predetermined intervals, the broadcast content is encrypted and transmitted, and information about the changed encryption key is included in an Entitlement Control Message (ECM). Insert periodically in the middle of content. The client receiving the broadcast content interprets the entitlement control message according to the CA (Control Access) system or the Digital Right Management (DRM) system provided in the client, extracts the encryption key that is periodically changed, and broadcasts using the extracted encryption key. Decode and play the content.
SUMMARY OF THE INVENTION The present invention has been made in an effort to provide a method and apparatus for generating content that is not dependent on a specific content security system, and to provide a computer readable recording medium having recorded thereon a program for executing the method.
According to an aspect of the present invention, there is provided a method of generating content including a plurality of content units that are encrypted using a plurality of different encryption keys. Generating different encryption keys; Storing the generated plurality of different encryption keys in a predetermined storage device; Generating a plurality of encrypted content units by encrypting the plurality of content units using the stored plurality of different encryption keys; And generating content by multiplexing the plurality of encrypted content units, wherein the information on the plurality of different encryption keys is processed according to a content security system provided in a client using the content, thereby generating the content. Characterized in that provided.
According to a more preferred embodiment of the present invention, the generating of the plurality of different encryption keys includes an index added according to the order of the plurality of content units and a plurality of different encryption keys corresponding to the indexes. Generating a content; and generating the content by multiplexing the index and the plurality of encrypted content units in the order.
According to another embodiment of the present invention, the content security system is characterized in that it is a Conditional Access (CA) system or a Digital Right Management (DRM) system.
According to another embodiment of the present invention, generating the information on the index and a plurality of different encryption keys corresponding to the index is based on the information on the plurality of different encryption keys corresponding to the index Generating an Entitlement Control Message.
According to another embodiment of the present invention, the generating of the encrypted content includes generating the content by multiplexing the index, the plurality of entitlement control messages, and the plurality of encrypted content units in the order. do.
According to an aspect of the present invention, there is provided a method of decrypting a content including a plurality of content units that are encrypted using a plurality of different encryption keys. Demultiplexing the content generated by multiplexing an index added according to the order of content units according to the order; And decrypting the plurality of encrypted content units based on a plurality of different encryption keys corresponding to the index, wherein information about the plurality of different encryption keys corresponding to the index includes the content. Processed according to the content security system provided in the client, characterized in that provided to the client.
An apparatus for generating a content including a plurality of content units encrypted using a plurality of different encryption keys according to an embodiment of the present invention for solving the technical problem is an index added in the order of the plurality of content units a key generation unit generating a plurality of different encryption keys corresponding to (index); An encryption unit generating the plurality of encrypted content units by encrypting the plurality of content units using a plurality of different encryption keys corresponding to the index; And a multiplexer for multiplexing the index and the plurality of encrypted content units according to the order to generate content, wherein information about a plurality of different encryption keys corresponding to the index is provided to a client using the content. And is processed according to the secured content security system and provided to the client.
An apparatus for decrypting a content including a plurality of content units encrypted using a plurality of different encryption keys according to an embodiment of the present invention for solving the technical problem is a plurality of encrypted content units and the plurality of encrypted A demultiplexer configured to demultiplex content generated by multiplexing an index added according to an order of content units according to the order; And a decryption unit configured to decrypt the plurality of encrypted content units based on a plurality of different encryption keys corresponding to the index, wherein the information on the plurality of different encryption keys corresponding to the index includes the contents of the plurality of the contents of the plurality of encryption units. Processed according to the content security system provided in the client to use, characterized in that provided to the client.
In order to solve the above technical problem, an embodiment of the present invention provides a computer-readable recording medium having recorded thereon a program for executing the content generating method and the content decoding method.
Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.
1 illustrates an apparatus for generating content according to an embodiment of the present invention.
1, the
The
2 illustrates a plurality of content units according to an embodiment of the present invention.
As described above, a broadcast standard such as DVB changes an encryption key, that is, a control word (CW) at predetermined intervals, and encrypts content. Accordingly, one content may be divided into a plurality of units according to an encryption period (CP: Crypto Period), and the present specification defines units divided according to the encryption period as content units. The present invention will be described in detail later in the case where the content includes a plurality of content units. However, it can be easily understood by those skilled in the art that embodiments of the present invention can be applied even when a content includes a content unit of one content unit.
Referring to FIG. 2, one
The encryption
3 illustrates an index and a plurality of encryption keys corresponding to the index according to an embodiment of the present invention.
Referring to FIG. 3, the encryption
The
The
4A illustrates content in accordance with an embodiment of the present invention.
Referring to FIG. 4A, the
According to the prior art, when the broadcast content is divided into a plurality of content units, and the encrypted content is transmitted in real time, information on an encryption key generated in real time for each content unit should be inserted. This is because, in order to receive and decrypt broadcast content in real time, a client receiving the broadcast content needs to continuously receive information on an encryption key that is changed for each content unit. Information about the encryption key is encrypted according to a predetermined content security system (for example, a CA system or a DRM system) and inserted for each content unit. In the case of DVB as an example, different entitlement control messages are generated for each content unit of broadcast content and inserted for each content.
According to the related art, since the information on the encryption key is encrypted again according to a predetermined content security system and inserted into each content unit, the operator providing the broadcast content is provided with a first content security system (for example, a CA system or a DRM system). If the information security system is generated and inserted, the information security system is changed, and the information about the encryption key is generated and inserted for each content unit according to the second content security system, and the client is not included in the second content security system. Cannot watch broadcast content. This is because the information on the encryption key cannot be decrypted. Therefore, according to the related art, once the provider providing the broadcast content introduces the content security system, it cannot be changed, resulting in the broadcast content provider being dependent on the content security system.
In order to solve this problem, the
Information about the plurality of encryption keys is processed and provided to the client according to the content security system provided in the client. The metadata may be transmitted to the client in front of or behind the
In particular, when providing a limited-length content such as VoD (Video on Demand) to the client, the
The content provider provides a plurality of indexed and encrypted contents as shown in FIG. 4A when both the first client with the first content security system and the second client with the second content security system request a single content. The same multiplexed
The
4B illustrates content according to another embodiment of the present invention.
Referring to FIG. 4B, the
If the content security system provided in the client using the content requires the entitlement control message of the DVB according to the prior art, at least one entitlement control message (ECM (CW0) to ECM (CWn) in addition to the content shown in Fig. 4A). Multiplex)
In addition, the
The entitlement control
The
5 is a flowchart illustrating a method of generating content according to an embodiment of the present invention. FIG. 5 illustrates a method in which the
Referring to FIG. 5, in
In
In
In
6 is a flowchart illustrating a content generation method according to another embodiment of the present invention.
FIG. 6 illustrates a method in which the
Referring to FIG. 6, in
If the generated content is not previously generated content, the
In
If the entitlement control message is not included, the
When the entitlement control message is included, the
In
If the generated content is previously generated content, in
In
In case of additionally multiplexing the entitlement control message, the
In
7 illustrates an apparatus for decoding the content of the present invention.
Referring to FIG. 7, the
The
If a content as shown in FIG. 4A is received, a plurality of indexed and encrypted content units are extracted, and if a content as shown in FIG. 4B is received, an index, at least one entitlement control message and a plurality of encrypted content are received. Extract the unit of content. 4C and 4D, at least one entitlement control message and a plurality of encrypted content units are extracted.
The
When the content as shown in FIG. 4A is received, the information on the plurality of encryption keys corresponding to the index may be processed separately from the content and provided to the client according to a content security system provided in the client. .
When the content as shown in FIGS. 4B to 4D is received, at least one entitlement control message may include information on a plurality of encryption keys.
8 is a flowchart illustrating a method of decoding content according to an embodiment of the present invention. FIG. 8 illustrates a method of demultiplexing and decoding content as shown in FIG. 4A.
Referring to FIG. 8, in
In
9 is a flowchart illustrating a method of decoding content according to another embodiment of the present invention.
In
If it is determined in
If it is determined in
In
As described above, although the present invention has been described by way of limited embodiments and drawings, the present invention is not limited to the above-described embodiments, which can be modified by those skilled in the art to which the present invention pertains. Modifications are possible. Accordingly, the spirit of the invention should be understood only by the claims set forth below, and all equivalent or equivalent modifications will fall within the scope of the invention. In addition, the system according to the present invention may be embodied as computer readable codes on a computer readable recording medium.
For example, a content generating device and a content decoding device according to an exemplary embodiment of the present invention may include a bus coupled to respective units of the apparatus as shown in FIGS. 1 and 7, and at least one coupled to the bus. It may include a processor. It may also include a memory coupled to the bus for storing instructions, received messages or generated messages and coupled to at least one processor for performing instructions as described above.
The computer-readable recording medium also includes all kinds of recording devices in which data that can be read by a computer system is stored. Examples of the recording medium include a ROM, a RAM, a CD-ROM, a magnetic tape, a floppy disk, an optical data storage device, and the like, and also include a carrier wave (for example, transmission through the Internet). The computer readable recording medium can also be distributed over network coupled computer systems so that the computer readable code is stored and executed in a distributed fashion.
1 illustrates an apparatus for generating content according to an embodiment of the present invention.
2 illustrates a plurality of content units according to an embodiment of the present invention.
3 illustrates an index and a plurality of encryption keys corresponding to the index according to an embodiment of the present invention.
4A-4D illustrate content in accordance with one embodiment of the present invention.
5 is a flowchart illustrating a method of generating content according to an embodiment of the present invention.
6 is a flowchart illustrating a content generation method according to another embodiment of the present invention.
7 illustrates an apparatus for decoding the content of the present invention.
8 is a flowchart illustrating a method of decoding content according to an embodiment of the present invention.
9 is a flowchart illustrating a method of decoding content according to another embodiment of the present invention.
Claims (15)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020090073528A KR20110016038A (en) | 2009-08-10 | 2009-08-10 | Method and apparatus for generating contents by using index |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020090073528A KR20110016038A (en) | 2009-08-10 | 2009-08-10 | Method and apparatus for generating contents by using index |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20110016038A true KR20110016038A (en) | 2011-02-17 |
Family
ID=43774522
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020090073528A KR20110016038A (en) | 2009-08-10 | 2009-08-10 | Method and apparatus for generating contents by using index |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20110016038A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2013118968A1 (en) * | 2012-02-08 | 2013-08-15 | 주식회사 파수닷컴 | Apparatus and method for managing digital copyright for epub-based content, and apparatus and method for providing epub-based content according to user authority |
-
2009
- 2009-08-10 KR KR1020090073528A patent/KR20110016038A/en active IP Right Grant
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2013118968A1 (en) * | 2012-02-08 | 2013-08-15 | 주식회사 파수닷컴 | Apparatus and method for managing digital copyright for epub-based content, and apparatus and method for providing epub-based content according to user authority |
KR101287518B1 (en) * | 2012-02-08 | 2013-08-23 | 주식회사 파수닷컴 | Apparatus and method for digital rights management for epub-based contents, and apparatus and method for providing epub-based contents according to user authority |
US9536058B2 (en) | 2012-02-08 | 2017-01-03 | Fasoo.Com Co., Ltd | Apparatus and method for managing digital copyright on EPUB-based content, and apparatus and method for providing EPUB-based content according to user's right |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7769171B2 (en) | Method for transmitting digital data in a local network | |
CN102160325B (en) | Simulcrypt key sharing with hashed keys | |
EP1110399B1 (en) | System and method for copy protecting transmitted information | |
RU2547228C1 (en) | Method to protect recorded multimedia content | |
US7831045B2 (en) | Security module revocation method used for securing broadcasted messages | |
EP2772062B1 (en) | Constructing a transport stream | |
CN101390391A (en) | Method for the transmission of management data | |
JP2011019222A (en) | Processing recordable content in stream | |
JP2012510743A (en) | Content decryption apparatus and encryption system using additional key layer | |
CN103686333A (en) | Audio video protecting method and audio video terminal | |
CN105432092B (en) | For the method to the compressed content watermarking by least one content key encryption | |
US9544276B2 (en) | Method for transmitting and receiving a multimedia content | |
CN1890971A (en) | Conditional access video signal distribution | |
KR100977969B1 (en) | Methods for transmitting and receiving data in a network | |
US10411900B2 (en) | Control word protection method for conditional access system | |
RU2534925C2 (en) | Security method, decoding method, data medium and terminal for security method | |
KR20110016038A (en) | Method and apparatus for generating contents by using index | |
KR102202813B1 (en) | Internet protocol television(iptv) device, server, and operating method thereof | |
JP2009089243A (en) | Digital broadcast receiving device and method | |
KR102190886B1 (en) | Protection of Control Words in Conditional Access System | |
JP2001251290A (en) | Data transmission system and method for distributing and storing and reproducing contents | |
EP2458777A1 (en) | Deriving one or more cryptographic keys of a sequence of keys | |
KR101314417B1 (en) | Apparatus for providing and reproducing contents using secure chipset and the method threaof | |
JP2007324896A (en) | Receiving device and cas module | |
JP2007036380A (en) | Receiver, cas module and distribution method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E902 | Notification of reason for refusal | ||
E902 | Notification of reason for refusal | ||
E701 | Decision to grant or registration of patent right | ||
NORF | Unpaid initial registration fee |