WO2018024061A1

WO2018024061A1 - Method, device and system for licensing shared digital content

Info

Publication number: WO2018024061A1
Application number: PCT/CN2017/091220
Authority: WO
Inventors: 陈懿新; 文均荣; 张蒲; 刘德钱
Original assignee: 华为技术有限公司
Priority date: 2016-08-02
Filing date: 2017-06-30
Publication date: 2018-02-08
Also published as: CN107679369A

Abstract

The present invention relates to the technical field of digital copyright management. A method, device and system for licensing shared digital content is disclosed for resolving a lack of security and auditability in the process of sharing a license in existing terminal equipment. The method comprises: a domain gateway copyright management device receiving a digital content license request sent by terminal equipment (201), the license request comprising an identification (ID) of the digital content; the domain gateway copyright management device acquiring a domain permission according to the ID of the digital content (202), the domain permission comprising a decryption key for digital content encrypted using a public key of the domain gateway copyright management device; the domain gateway copyright management device generating a license for the terminal equipment according to the domain permission (203); sending the license to the terminal equipment (204); and the domain gateway copyright management device sending a license issuing transaction request to a block chain device (205), the license issuing transaction request comprising a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, an address of the terminal equipment and permission information.

Description

Method, device and system for sharing license of digital content

This application claims priority to Chinese Patent Application No. 201610624448.X, filed on August 2, 2016, entitled "A Method, Apparatus, and System for Sharing Licenses for Digital Content", The entire contents are incorporated herein by reference.

Technical field

The present invention relates to the field of digital rights management technologies, and in particular, to a method, device and system for sharing a license for digital content.

Background technique

The sharing of the digital content permission means that the license of one digital content purchased is shared among the plurality of terminal devices, and the plurality of terminal devices share the digital content to improve the utilization efficiency of the digital content.

At present, two common methods for realizing the sharing of digital content permission rights include: (1) adding a concept of a domain in a centralized copyright management system, a terminal device joining a domain, interacting with a centralized copyright management system, and terminal devices in the domain (2) The local domain management server is placed on the terminal side, responsible for the creation of the local domain, the joining of the terminal device to the domain, and the issuance of licenses, thereby realizing license sharing between terminal devices in the domain. In the above method, although the process of sharing the license by the terminal device is recorded, since the record is only stored one copy, it is easily falsified, and thus is not completely trusted, so that the process of sharing the license by the terminal device is lacking. Security and cannot be audited.

Summary of the invention

Embodiments of the present invention provide a method, apparatus, and system for sharing a license for digital content to solve the problem that the existing terminal device sharing license lacks security and cannot be audited.

In order to achieve the above object, embodiments of the present invention adopt the following technical solutions:

A first aspect provides a method for sharing a license for digital content, comprising: a domain gateway copyright management device receiving a license request for digital content transmitted by a terminal device, the license request including an identification ID of the digital content; and a domain gateway copyright The management device acquires the domain license according to the ID of the digital content, the domain license includes a decryption key of the digital content encrypted by the public key of the domain gateway copyright management device; the domain gateway copyright management device generates a license of the terminal device according to the domain license, and sends the license To the terminal device; the domain gateway copyright management device transmits a license distribution transaction request to the blockchain device, the license distribution transaction request including the domain license transaction ID, the signature of the private key of the domain gateway copyright management device, the address of the terminal device, and the license Information, so that the blockchain device checks whether the domain license transaction ID exists, whether the signature of the private key of the domain gateway copyright management device is correct, and after the verification is successful, constructs a license distribution transaction and stores the license distribution transaction at In the blockchain, the input to the license distribution transaction includes the domain license transaction ID And the signature of the private key of the domain gateway copyright management device, the output content including the address and license information of the terminal device.

The first aspect provides a method in which a terminal device stores a license distribution transaction in a blockchain during a process of sharing a license for digital content in a domain, and the node distribution device stores the license distribution transaction at each node in the blockchain device. Transaction, if one of the nodes needs to tamper with the data, it needs to get the consent of most nodes in the blockchain device. Therefore, in general, once the transaction is added to the blockchain, it cannot be changed, and, because each node There are blockchains stored on the top, one node瘫痪, will not lead to the loss of blockchain data, so blockchain data has a strong security, ensuring high security of digital content license sharing process data, and each license sharing process can be audit.

With reference to the first aspect, in a first possible implementation manner, the license request further includes an address of the terminal device, and before the domain gateway copyright management device acquires the domain license according to the ID of the digital content, the method further includes: domain gateway copyright management The device determines, according to the address of the terminal device, the device in the domain created by the terminal device as the domain gateway copyright management device.

With reference to the first possible implementation manner of the first aspect, in a second possible implementation manner, after the domain gateway copyright management device determines, according to the address of the terminal device, the device in the domain created by the domain gateway copyright management device The method further includes: the domain gateway copyright management device determining whether the domain has purchased the digital content; if so, the domain gateway copyright management device acquires the local domain license based on the ID of the digital content; if not, the domain gateway copyright management device transmits the digital content providing device to the digital content providing device a domain license issuance request, the domain license issuance request includes an ID of the digital content, an address of the domain gateway copyright management device, a domain identifier, and license information to cause the digital content providing device to check whether the ID of the digital content exists in the database, After the verification succeeds, the account corresponding to the address of the domain gateway copyright management device is determined and the account is deducted, the domain license transaction is constructed, and the domain license transaction is sent to the blockchain device, so that the blockchain device will The domain license transaction is stored in the blockchain, and the digital content providing device generates the domain license And transmitting to the domain gateway copyright management device, the input content of the domain license transaction includes a license transaction ID of the digital content providing device, an index of the license of the digital content in the license transaction of the digital content providing device, and the digital content providing device The signature of the private key, the output of the domain license transaction includes the address and license information of the domain gateway copyright management device.

With reference to the second possible implementation manner of the first aspect, in a third possible implementation manner, before the domain gateway copyright management device generates the license of the terminal device according to the domain license, the method further includes: the domain gateway copyright management device determining The number of licenses for used digital content does not exceed the number of licenses restricted in the license information in the domain license.

With reference to the first aspect, the first possible implementation of the first aspect to any one of the third possible implementation manners, in the fourth possible implementation manner, the domain gateway copyright management apparatus generates the terminal according to the domain license The license of the device includes: the domain gateway copyright management device decrypts the decryption key of the encrypted digital content included in the domain license by using the private key of the domain gateway copyright management device, and obtains the decryption key of the digital content; the domain gateway copyright The management device encrypts the decryption key of the digital content by using the public key of the terminal device; the domain gateway copyright management device decrypts the digital content based on the public key of the terminal device, the address of the terminal device, the ID of the digital content, and The license information generates a license for the terminal device.

With reference to the first aspect, the first possible implementation manner of the first aspect to any one of the fourth possible implementation manners, in the fifth possible implementation manner, the domain gateway copyright management apparatus generates the domain license according to the domain license After the license of the terminal device is sent to the terminal device, the method further includes: the domain gateway copyright management device receiving the request for sending the encrypted digital content sent by the terminal device, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the The digital content; if the domain purchases the digital content, the domain gateway copyright management device sends the locally stored encrypted digital content to the terminal device according to the request for sending the encrypted digital content; if the domain has not purchased the digital content, the domain gateway copyright management device issues the digital content The request for encrypting the digital content requests the digital content providing device to deliver the encrypted digital content; the domain gateway copyright management device saves the encrypted digital content delivered by the digital content providing device locally and transmits it to the terminal device.

With reference to the first aspect, the first possible implementation manner of the first aspect to any one of the fifth possible implementation manners, in the sixth possible implementation manner, the domain gateway copyright management device receives the terminal device to send Before the license request of the digital content, the method further comprises: the domain gateway copyright management device receiving the join domain request sent by the terminal device and sending the join domain request to the blockchain device, the join domain request including the address of the terminal device, the domain gateway copyright management Signing of the device's private key Name, domain identifier, address of the domain gateway copyright management device, and creation of the domain transaction ID, so that the blockchain device verifies whether the transaction ID of the domain transaction is created, whether the signature of the private key of the domain gateway copyright management device is correct, and the domain is created. Whether the domain identifier in the output content of the transaction is the same as the domain identifier in the join domain request and whether the address of the terminal device conforms to the generation specification. After the verification succeeds, constructing the join domain transaction and storing the join domain transaction in the blockchain, The input to the domain transaction is the signature of the domain transaction ID and the private key of the domain gateway copyright management device. The output is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

In this possible implementation, the joining domain transaction of the terminal device joining the domain is stored in the blockchain, which ensures high security and auditability of the process data of the terminal device joining the domain.

With reference to the sixth possible implementation manner of the first aspect, in a seventh possible implementation manner, before the domain gateway copyright management device receives the join domain request sent by the terminal device and sends the join domain request to the blockchain device, the method The method further includes: the domain gateway copyright management device transmitting a create domain request to the blockchain device, the create domain request including the address of the domain gateway copyright management device and the signature of the private key of the domain gateway copyright management device, so that the blockchain device is in the check After the address of the domain gateway copyright management device conforms to the generation specification and the signature of the private key of the domain gateway copyright management device is correct, the domain transaction is created and the domain transaction is created in the blockchain, and the input content of the created domain transaction is empty, and the output is empty. The content is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device, and the domain identifier.

In this possible implementation, the domain creation transaction of the domain gateway copyright management device creation domain is stored in the blockchain, which ensures the high security and auditability of the process data of the domain gateway copyright management device creation domain.

With reference to the first aspect, the first possible implementation manner of the first aspect to any one of the seventh possible implementation manners, in the eighth possible implementation manner, the method further includes: a domain gateway copyright management device Receiving an exit domain request and sending an exit domain request to the blockchain device, the exit domain request including the terminal device joining the domain transaction ID and the signature of the private key of the domain gateway copyright management device, so that the blockchain device verifies the transaction joining the domain transaction Whether the ID exists and the signature of the private key of the domain gateway copyright management device is correct. After the verification succeeds, the exit domain transaction is constructed and the exit domain transaction is stored in the blockchain. The input content of the exit domain transaction includes the terminal device joining the domain. The transaction ID and the signature of the private key of the domain gateway copyright management device, the output content is empty.

In this possible implementation, the exit domain transaction of the terminal device exiting the domain is stored in the blockchain, which ensures high security and auditability of the process data of the terminal device exiting the domain.

In a second aspect, a method for sharing a license for digital content is provided, comprising: receiving, by a terminal device, a request for online use of digital content input by a consumer; and authenticating the content to the domain gateway according to a request by the consumer for online use of the digital content The management device sends a license request, so that the domain gateway copyright management device acquires the domain license, generates a license of the terminal device according to the domain license, and transmits the license to the terminal device; the terminal device receives the license of the terminal device sent by the domain gateway copyright management device, And obtain digital content according to the license of the terminal device.

In a third aspect, a method for sharing a license for digital content is provided, comprising: a blockchain device receiving a license distribution transaction request sent by a domain gateway copyright management device, the license distribution transaction request including a domain license transaction ID, a domain The signature of the private key of the gateway copyright management device, the address of the terminal device and the license information; whether the blockchain device checks whether the domain license transaction ID exists, and whether the signature of the private key of the domain gateway copyright management device is correct, after the verification is successful Constructing a license distribution transaction and storing the license distribution transaction in the blockchain, the input of the license distribution transaction includes the domain license transaction ID and the signature of the private key of the domain gateway copyright management device, and the output includes the terminal device Address and license information.

A fourth aspect provides a method for sharing a license for digital content, comprising: a terminal device transmitting a license request for digital content to a digital content providing device, wherein the license request for the digital content includes an ID of the digital content, and the terminal device The address and the domain identifier of the domain to which the terminal device belongs, so that the digital content providing device verifies that the domain to which the terminal device belongs, the terminal device is the device in the domain, and the address of the terminal device conforms to the generation specification, and after the verification succeeds, the domain is identified. The chain device transmits a license distribution transaction such that the blockchain device stores the license distribution transaction in the blockchain, the digital content providing device generates and distributes the license of the digital content to the terminal device; the terminal device receives the digital content providing device for distribution The license includes a digital content decryption key encrypted by the terminal device public key.

The method provided by the fourth aspect, after the terminal device is a device in the domain but leaves the domain, can still share the license of the digital content, meets the requirement of the terminal device to share the license offline, and is in the license for sharing the digital content. During the process, the license distribution transaction is stored in the blockchain, and the transaction is stored on each node in the blockchain device. If one of the nodes needs to tamper with the data, the blockchain device needs to be obtained. Most nodes agree, so in general, once a transaction is added to the blockchain, it cannot be changed, and since each node has a blockchain stored, one node does not cause a blockchain. The loss of data makes the blockchain data highly secure, ensuring high security of the digital content license sharing process data, and the process of sharing each license can be audited.

With reference to the fourth aspect, in a first possible implementation, after the terminal device receives the license distributed by the digital content providing apparatus, the method further includes: the terminal device requests the digital content providing apparatus to send the encrypted digit according to the ID of the digital content. Content, the encrypted digital content can be decrypted by using a digital content decryption key to obtain digital content; the terminal device receives the encrypted digital content delivered by the digital content providing device; and the terminal device uses the private key of the terminal device to the digital content included in the license The decryption key is decrypted to obtain a decryption key for the digital content, and the encrypted digital content is decrypted using the decryption key of the digital content to obtain digital content.

A fifth aspect provides a method for sharing a license for digital content, comprising: a digital content providing device receiving a license request for digital content transmitted by a terminal device, the license request of the digital content including an ID of the digital content, and a terminal device The address and the domain identifier of the domain to which the terminal device belongs; the digital content providing device verifies that the domain to which the terminal device belongs, the terminal device is the device in the domain, and the address of the terminal device conforms to the generation specification; the digital content providing device to the blockchain device Transmitting a license distribution transaction such that the blockchain device stores the license distribution transaction in the blockchain; the digital content providing device generates and distributes the license of the digital content to the terminal device according to the ID of the digital content; the license includes the terminal The digital content decryption key after the device public key is encrypted.

With reference to the fifth aspect, in a first possible implementation, the digital content providing apparatus generates and distributes the license of the digital content according to the ID of the digital content, including: the digital content providing apparatus acquires the digital content according to the ID of the digital content. a decryption key; the digital content providing device encrypts the decryption key of the digital content by using the public key of the terminal device; the digital content providing device is based on the decrypted key of the encrypted digital content, the address of the terminal device, the ID of the digital content, and The license information generates a license.

With the fifth aspect or the first possible implementation manner of the fifth aspect, after the digital content providing apparatus generates and distributes the license of the digital content to the terminal device, the method further includes: the digital content providing apparatus receives the sending by the terminal apparatus The request for encrypting the digital content, the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content; the digital content providing device sends the encrypted digital content to the terminal device according to the request for sending the encrypted digital content, so that the terminal device obtains Digital content.

The sixth aspect provides a domain gateway copyright management apparatus, including: a receiving unit, configured to receive a license request for digital content sent by a terminal device, where the license request includes an identifier ID of the digital content; and an acquiring unit, configured to The ID of the digital content acquires a domain license, the domain license includes a decryption key of the digital content encrypted by the public key of the domain gateway copyright management device; a generating unit for generating a license of the terminal device according to the domain license; and a transmitting unit for Transmitting a license of the terminal device to the terminal device; the sending unit is further configured to send a license distribution transaction request to the blockchain device, where the license distribution transaction request includes a domain license transaction ID, and a private key of the domain gateway copyright management device The signature, the address of the terminal device, and the license information, so that the blockchain device checks whether the domain license transaction ID exists, whether the signature of the private key of the domain gateway copyright management device is correct, and after the verification succeeds, constructs a license distribution transaction. And store the license distribution transaction in the blockchain. The input of the license distribution transaction includes the domain license. Private key signature card transaction ID and Domain Rights-managed gateway device, the output includes the address of the terminal equipment and licensing information.

The various units in the device are used to implement the above method. Therefore, the beneficial effects of the device can be seen in the beneficial effects of the above method, and details are not described herein again.

With reference to the sixth aspect, in a first possible implementation, the license request further includes an address of the terminal device, the device further includes: a determining unit, configured to determine, according to the address of the terminal device, the terminal device as a domain gateway copyright management device The device in the created domain.

In conjunction with the first possible implementation of the sixth aspect, in a second possible implementation, the determining unit is further configured to determine whether the domain has purchased digital content; if yes, the acquiring unit is specifically configured to The ID of the digital content acquires a local domain license; if not, the sending unit is further configured to send a domain license issuance request to the digital content providing device, where the domain license issuance request includes the ID of the digital content, and the domain gateway copyright management device The address, the domain identifier, and the license information, so that the digital content providing device checks whether the ID of the digital content exists in the database. After the verification succeeds, the account corresponding to the address of the domain gateway copyright management device is determined and the account is charged. Processing, constructing a domain license transaction and transmitting the domain license transaction to the blockchain device such that the blockchain device stores the domain license transaction in the blockchain, the digital content providing device generates the domain license and applies the domain license to the domain gateway The management device sends, the input of the domain license transaction includes the license transaction ID of the digital content providing device, and the digital content. License Services license providing device in the digital content indexing and digital signature private key content providing device, output content domain license transaction information, including addresses and domain gateway license Rights-managed device.

In conjunction with the second possible implementation of the sixth aspect, in a third possible implementation, the apparatus further includes: a determining unit, configured to determine that the number of licenses of the used digital content does not exceed the license in the domain license The number of licenses restricted in the message.

With reference to the sixth aspect, the first possible implementation manner of the sixth aspect to any one of the third possible implementation manners, in the fourth possible implementation manner, the generating unit is specifically configured to: adopt the domain gateway copyright The private key of the management device decrypts the decryption key of the encrypted digital content contained in the domain license to obtain a decryption key of the digital content; and encrypts the decryption key of the digital content by using the public key of the terminal device; The decryption key of the digital content encrypted by the public key of the device, the address of the terminal device, the ID of the digital content, and the license information generate a license of the terminal device.

With reference to the sixth aspect, the first possible implementation manner of the sixth aspect, the fourth possible implementation manner, in the fifth possible implementation manner, the receiving unit is further configured to send, by the receiving terminal device The request for encrypting the digital content is performed, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content; if the domain purchases the digital content, the sending unit is further configured to send the encrypted digital content to the terminal device according to the request Send locally saved plus The digital content; if the domain has not purchased the digital content, the device further includes a requesting unit, configured to request the digital content providing device to deliver the encrypted digital content according to the request for sending the encrypted digital content; the device further includes a storage unit, configured to: The encrypted digital content delivered by the digital content providing device is saved locally, and the sending unit is further configured to send the encrypted digital content to the terminal device.

With reference to the sixth aspect, the first possible implementation manner of the sixth aspect to any one of the fifth possible implementation manners, in the sixth possible implementation manner, the sending unit is further configured to receive the received The joining domain request sent by the terminal device is sent to the blockchain device, and the joining domain request includes the address of the terminal device, the signature of the private key of the domain gateway copyright management device, the domain identifier, the address of the domain gateway copyright management device, and the creation of the domain transaction ID. In order for the blockchain device to verify whether the transaction ID of the domain transaction is created, whether the signature of the private key of the domain gateway copyright management device is correct, whether the domain identifier in the output content of the created domain transaction, and the domain identifier in the join domain request are the same. And whether the address of the terminal device conforms to the generation specification. After the verification succeeds, constructing the join domain transaction and storing the join domain transaction in the blockchain, and inputting the domain transaction input content is creating the domain transaction ID and the domain gateway copyright management device. The signature of the private key, the output content is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

With reference to the sixth possible implementation manner of the sixth aspect, in a seventh possible implementation, the sending unit is further configured to send a create domain request to the blockchain device, where the domain request includes the address of the domain gateway copyright management device And the signature of the private key of the domain gateway copyright management device, so that the blockchain device constructs the domain transaction after the address of the verification domain gateway copyright management device conforms to the generation specification and the signature of the private key of the domain gateway copyright management device is correct. The created domain transaction is stored in the blockchain, and the input of the created domain transaction is empty, and the output content is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device, and the domain identifier.

With reference to the sixth aspect, the first possible implementation manner of the sixth aspect, the seventh possible implementation manner, in the eighth possible implementation manner, the receiving unit is further configured to receive the exit domain request The sending unit is further configured to send an exit domain request to the blockchain device, where the exit domain request includes the terminal device joining the domain transaction ID and the signature of the private key of the domain gateway copyright management device, so that the blockchain device checks the join domain transaction. Whether the transaction ID exists and the signature of the private key of the domain gateway copyright management device is correct. After the verification is successful, the exit domain transaction is constructed and the exit domain transaction is stored in the blockchain, and the input content of the exit domain transaction includes the terminal device. The domain transaction ID and the signature of the private key of the domain gateway copyright management device are added, and the output content is empty.

A seventh aspect provides a terminal device, comprising: a receiving unit, configured to receive a request for online use of digital content input by a consumer; and a sending unit, configured to apply to the domain gateway according to a request of the online input of the digital content input by the consumer The management device sends a license request, so that the domain gateway copyright management device acquires the domain license, generates a license of the terminal device according to the domain license, and sends the license to the terminal device; and the receiving unit is further configured to receive the terminal device sent by the domain gateway copyright management device. License; an acquisition unit for obtaining digital content based on a license of the terminal device.

In an eighth aspect, a blockchain device is provided, comprising: a receiving unit, configured to receive a license distribution transaction request sent by a domain gateway copyright management device, the license distribution transaction request includes a domain license transaction ID, and a domain gateway copyright management The signature of the private key of the device, the address of the terminal device and the license information; a verification unit for verifying whether the domain license transaction ID exists, whether the signature of the private key of the domain gateway copyright management device is correct; constructing a storage unit for After the verification is successful, the license distribution transaction is constructed and the license distribution transaction is stored in the blockchain, and the input of the license distribution transaction includes the domain license transaction ID and the signature of the private key of the domain gateway copyright management device, and the output The content includes the address and license information of the terminal device.

A ninth aspect provides a terminal device, comprising: a transmitting unit, configured to send a license request for digital content to a digital content providing apparatus, wherein the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a terminal The domain identifier of the domain to which the device belongs, so that the digital content providing device verifies that the domain to which the terminal device belongs, the terminal device is the device in the domain, and the address of the terminal device conforms to the generation specification, and sends the packet to the blockchain device after the verification succeeds. The license distributes the transaction such that the blockchain device stores the license distribution transaction in the blockchain, the digital content providing device generates and distributes the license for the digital content to the terminal device, and the receiving unit is configured to receive the digital content providing device for distribution The license includes a digital content decryption key encrypted by the terminal device public key.

The terminal device is used to perform the foregoing method. Therefore, the beneficial effects of the terminal device can be referred to the beneficial effects of the method part, and details are not described herein again.

In conjunction with the ninth aspect, in a first possible implementation, the apparatus further includes: a requesting unit, configured to request, according to the ID of the digital content, the digital content providing device to deliver the encrypted digital content, and the encrypted digital content can be decrypted by using the digital content Decrypting the key to obtain the digital content; the receiving unit is further configured to receive the encrypted digital content delivered by the digital content providing device; and the acquiring unit is configured to use the private key of the terminal device to the digital content included in the license The decryption key is decrypted to obtain a decryption key of the digital content, and the encrypted digital content is decrypted by using the decryption key of the digital content to obtain digital content.

According to a tenth aspect, a digital content providing apparatus includes: a receiving unit, configured to receive a license request for digital content transmitted by the terminal device, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a terminal The domain identifier of the domain to which the device belongs; the verification unit is configured to verify that the domain to which the terminal device belongs, the terminal device is the device in the domain, and the address of the terminal device conforms to the generation specification; the sending unit is configured to the blockchain device Transmitting a license distribution transaction such that the blockchain device stores the license distribution transaction in the blockchain; an execution unit for generating and distributing a license for the digital content according to the ID of the digital content; the license includes The digital content decryption key after the terminal device public key is encrypted.

With reference to the tenth aspect, in a first possible implementation, the executing unit is specifically configured to acquire a decryption key of the digital content according to the ID of the digital content; and encrypt the decryption key of the digital content by using the public key of the terminal device; A license is generated based on the decrypted key of the encrypted digital content, the address of the terminal device, the ID of the digital content, and the license information.

With reference to the tenth aspect or the first possible implementation manner of the tenth aspect, in a second possible implementation, the receiving unit is further configured to receive a request for sending the encrypted digital content sent by the terminal device, and encrypt the digital The content can be decrypted by using a digital content decryption key to obtain digital content. The sending unit is further configured to send the encrypted digital content to the terminal device according to the request for sending the encrypted digital content, so that the terminal device acquires the digital content.

An eleventh aspect provides a domain gateway copyright management apparatus, including: a receiver, a memory, a processor, and a transmitter, and a receiver, configured to receive a license request for digital content sent by the terminal device, where the license request includes Digital content The identifier ID; the memory is used to store a set of codes, the processor performs a corresponding action according to the code, and the processor is configured to obtain the domain license according to the ID of the digital content, and the domain license includes encrypting the public key by using the domain gateway copyright management device a decryption key of the digital content; generating a license of the terminal device according to the domain license; a sender for transmitting the license of the terminal device to the terminal device; transmitting a license distribution transaction request to the blockchain device, the license distribution transaction The request includes a domain license transaction ID, a signature of the private key of the domain gateway copyright management device, an address of the terminal device, and license information, so that the blockchain device checks whether the domain license transaction ID exists, and the private authority of the domain gateway copyright management device Whether the signature of the key is correct. After the verification is successful, the license distribution transaction is constructed and the license distribution transaction is stored in the blockchain. The input of the license distribution transaction includes the domain license transaction ID and the domain gateway copyright management device. The signature of the private key, the output includes the address and license information of the terminal device.

Each device in the device is used to implement the above method. Therefore, the beneficial effects of the device can be seen in the beneficial effects of the above method, and details are not described herein again.

With reference to the eleventh aspect, in a first possible implementation, the license request further includes an address of the terminal device, and the processor is further configured to determine, according to the address of the terminal device, the domain created by the terminal device as the domain gateway copyright management device. In the device.

In conjunction with the first possible implementation of the eleventh aspect, in a second possible implementation, the processor is further configured to determine whether the domain has purchased the digital content; if yes, the processor is specifically configured to be based on the digital content The ID obtains the local domain license; if not, the sender is further configured to send a domain license issuance request to the digital content providing device, where the domain license issuance request includes the ID of the digital content, the address of the domain gateway copyright management device, the domain identifier, and The license information is such that the digital content providing device checks whether the ID of the digital content exists in the database. After the verification succeeds, the account corresponding to the address of the domain gateway copyright management device is determined and the account is deducted, and the domain license is constructed. And the domain license transaction is sent to the blockchain device, so that the blockchain device stores the domain license transaction in the blockchain, and the digital content providing device generates the domain license and sends the domain license to the domain gateway copyright management device. The input of the license transaction includes the license transaction ID of the digital content providing device, and the license of the digital content is within the number License Rights to provide the device in the index, and digital signatures provide content private means, an output content domain license transaction information, including addresses and domain gateway license Rights-managed device.

In conjunction with the second possible implementation of the eleventh aspect, in a third possible implementation, the processor is further configured to determine that the number of licenses of the used digital content does not exceed the limit in the license information in the domain license. The number of licenses.

With reference to the eleventh aspect, the first possible implementation manner of the eleventh aspect to any one of the third possible implementation manners, in the fourth possible implementation manner, the processor is specifically configured to: adopt a domain The private key of the gateway copyright management device decrypts the decryption key of the encrypted digital content contained in the domain license to obtain a decryption key of the digital content; and encrypts the decryption key of the digital content by using the public key of the terminal device; The license of the terminal device is generated using the decryption key of the digital content encrypted by the public key of the terminal device, the address of the terminal device, the ID of the digital content, and the license information.

With reference to the eleventh aspect, the first possible implementation manner of the eleventh aspect to any one of the fourth possible implementation manners, in a fifth possible implementation manner, the receiver is further configured to receive the terminal The device sends a request for transmitting the encrypted digital content, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content; if the domain purchases the digital content, the sender is further used to send the encrypted digital content according to the request The terminal device sends the locally stored encrypted digital content; if the domain has not purchased the digital content, the processor is also used to send the digital image according to the request for the encrypted digital content. The content providing device requests to send the encrypted digital content; the encrypted digital content delivered by the digital content providing device is locally saved, and the transmitter is further configured to send the encrypted digital content to the terminal device.

With reference to the eleventh aspect, the first possible implementation manner of the eleventh aspect to any one of the fifth possible implementation manners, in the sixth possible implementation manner, the transmitter is further configured to receive The joining domain request sent by the terminal device is sent to the blockchain device, and the domain request includes the address of the terminal device, the signature of the private key of the domain gateway copyright management device, the domain identifier, the address of the domain gateway copyright management device, and the creation of the domain transaction. ID, such that the blockchain device verifies whether the transaction ID of the created domain transaction exists, whether the signature of the private key of the domain gateway copyright management device is correct, the domain identifier in the output content of the created domain transaction, and the domain identifier in the join domain request Whether the same and the address of the terminal device meet the generation specification. After the verification succeeds, construct the join domain transaction and store the join domain transaction in the blockchain. The input of the join domain transaction is to create the domain transaction ID and the domain gateway copyright management. The signature of the private key of the device, and the output content is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

With reference to the sixth possible implementation manner of the eleventh aspect, in a seventh possible implementation, the transmitter is further configured to send a create domain request to the blockchain device, where the domain request includes a domain gateway copyright management device The address and the signature of the private key of the domain gateway copyright management device, so that the blockchain device constructs the domain transaction after the address of the verification domain gateway copyright management device conforms to the generation specification and the signature of the private key of the domain gateway copyright management device is correct. The created domain transaction is stored in the blockchain, and the input of the created domain transaction is empty, and the output content is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device, and the domain identifier.

With reference to the eleventh aspect, the first possible implementation manner of the eleventh aspect, the seventh possible implementation manner, in the eighth possible implementation manner, the receiver is further configured to receive the exit The domain request; the sender is further configured to send an exit domain request to the blockchain device, where the exit domain request includes the terminal device joining the domain transaction ID and the signature of the private key of the domain gateway copyright management device, so that the blockchain device checks to join Whether the transaction ID of the domain transaction exists and the signature of the private key of the domain gateway copyright management device is correct. After the verification succeeds, the exit domain transaction is constructed and the exit domain transaction is stored in the blockchain, and the input of the exit domain transaction includes The terminal device joins the domain transaction ID and the signature of the private key of the domain gateway copyright management device, and the output content is empty.

According to a twelfth aspect, a terminal device includes: a receiver, a transmitter, a memory, and a processor, a receiver for receiving a request for online use of digital content input by a consumer, and a transmitter for The input request for using the digital content online sends a license request to the domain gateway copyright management device, so that the domain gateway copyright management device acquires the domain license, generates a license of the terminal device according to the domain license, and transmits the license to the terminal device; And a memory for storing a license of the terminal device sent by the domain gateway copyright management device; the memory is configured to store a set of codes, and the processor performs the following actions according to the code: acquiring the digital content according to the license of the terminal device.

A thirteenth aspect, a blockchain device comprising: a receiver, a memory and a processor, and a receiver for Receiving a license distribution transaction request sent by the domain gateway copyright management device, the license distribution transaction request includes a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, an address of the terminal device, and license information; and the memory is used to store one The group code according to which the processor performs the following actions: verifying whether the domain license transaction ID exists, whether the signature of the private key of the domain gateway copyright management device is correct; after the verification is successful, constructing a license distribution transaction and the license The distribution transaction is stored in the blockchain, and the input of the license distribution transaction includes the domain license transaction ID and the signature of the private key of the domain gateway copyright management device, and the output includes the address of the terminal device and the license information.

According to a fourteenth aspect, a terminal device includes: a transmitter and a receiver, a transmitter, a license request for transmitting digital content to a digital content providing device, and a license request for the digital content includes an ID of the digital content The address of the terminal device and the domain identifier of the domain to which the terminal device belongs, so that the digital content providing device verifies that the domain to which the terminal device belongs, the terminal device is the device in the domain, and the address of the terminal device conforms to the generation specification, and the verification succeeds. The backward blockchain device transmits a license distribution transaction such that the blockchain device stores the license distribution transaction in the blockchain, and the digital content providing device generates and distributes the license for the digital content to the terminal device; the receiver uses Receiving a license distributed by the digital content providing device, the license includes a digital content decryption key encrypted by the terminal device public key.

In conjunction with the fourteenth aspect, in a first possible implementation, the apparatus further includes: a memory and a processor, the memory is configured to store a set of codes, and the processor performs the following actions according to the code: the digital number according to the ID of the digital content The content providing device requests to deliver the encrypted digital content, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content; the receiver is further configured to receive the encrypted digital content delivered by the digital content providing device; the processor further The decryption key of the digital content included in the license is decrypted by using the private key of the terminal device to obtain a decryption key of the digital content, and the encrypted digital content is decrypted by using the decryption key of the digital content to obtain digital content.

According to a fifteenth aspect, a digital content providing apparatus includes: a receiver, a memory, a processor, and a transmitter, a receiver, a license request for receiving digital content sent by the terminal device, and a license request for the digital content. The ID of the digital content, the address of the terminal device, and the domain identifier of the domain to which the terminal device belongs; the memory is configured to store a set of codes, and the processor performs the following actions according to the code: verifying that the domain to which the terminal device belongs, and the terminal device is the The device in the domain and the address of the terminal device conform to the generation specification; the sender is configured to send a license distribution transaction to the blockchain device, so that the blockchain device stores the license distribution transaction in the blockchain; the processor, A license for generating and distributing digital content to the terminal device based on the ID of the digital content; the license includes a digital content decryption key encrypted by the terminal device public key.

With reference to the fifteenth aspect, in a first possible implementation, the processor is specifically configured to acquire a decryption key of the digital content according to the ID of the digital content; and encrypt the decryption key of the digital content by using the public key of the terminal device The license is generated based on the decrypted key of the encrypted digital content, the address of the terminal device, the ID of the digital content, and the license information.

With reference to the fifteenth aspect or the first possible implementation manner of the fifteenth aspect, in a second possible implementation, the receiver is further configured to receive a request for sending the encrypted digital content sent by the terminal device, The encrypted digital content can be decrypted by using a digital content decryption key to obtain digital content. The transmitter is further configured to send the encrypted digital content to the terminal device according to the request for sending the encrypted digital content, so that the terminal device acquires the digital content. .

A sixteenth aspect, a system for sharing a license for digital content, comprising: a domain gateway copyright management device and a blockchain device, wherein the domain gateway copyright management device is configured to perform any of the methods provided by the first aspect The blockchain device is configured to: verify whether the domain license transaction ID in the license distribution transaction request exists, and the private key of the domain gateway copyright management device The signature is correct. After the verification is successful, the license distribution transaction is constructed and the license distribution transaction is stored in the blockchain. The input of the license distribution transaction includes the domain license transaction ID and the private content of the domain gateway copyright management device. The signature of the key, the output content including the address and license information of the terminal device.

The device in the system is used to implement the above method. Therefore, the beneficial effects of the system can be seen in the beneficial effects of the above method, and details are not described herein again.

With reference to the sixteenth aspect, in a first possible implementation, the blockchain device is further configured to: receive a join domain request sent by the domain gateway copyright management device, where the join domain request includes the address of the terminal device, and the domain gateway copyright management device The signature of the private key, the domain identifier, the address of the domain gateway copyright management device, and the creation of the domain transaction ID; verify whether the transaction ID of the domain transaction is created, whether the signature of the private key of the domain gateway copyright management device is correct, and the creation of the domain transaction Whether the domain identifier in the output content and the domain identifier in the join domain request are the same and whether the address of the terminal device conforms to the generation specification. After the verification succeeds, constructing the join domain transaction and storing the join domain transaction in the blockchain, joining the domain The input of the transaction is the signature of the domain transaction ID and the private key of the domain gateway copyright management device, and the output content is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

In conjunction with the sixteenth aspect or the first possible implementation manner of the sixteenth aspect, in a second possible implementation, the blockchain device is further configured to: receive a create domain request sent by the domain gateway copyright management device, and create The domain request includes the address of the domain gateway copyright management device and the signature of the private key of the domain gateway copyright management device; whether the address of the domain gateway copyright management device conforms to the generation specification and the signature of the private key of the domain gateway copyright management device is correct, After the verification is successful, the domain transaction is created and the domain transaction is stored in the blockchain. The input of the domain transaction is empty, and the output is the signature of the private key of the domain gateway copyright management device, and the domain gateway copyright management device Address and domain ID.

In conjunction with the sixteenth aspect, the first possible implementation manner of the sixteenth aspect, or the second possible implementation manner, in a third possible implementation manner, the blockchain apparatus is further configured to: receive domain gateway copyright management The exit domain request sent by the device, the exit domain request includes the signature of the terminal device joining the domain transaction ID and the private key of the domain gateway copyright management device; verifying whether the transaction ID of the domain transaction is present and the signature of the private key of the domain gateway copyright management device Is it correct, after the verification is successful, construct the exit domain transaction and store the exit domain transaction in the blockchain, the input content of the exit domain transaction includes the signature of the terminal device joining the domain transaction ID and the private key of the domain gateway copyright management device, The output is empty.

DRAWINGS

In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the embodiments or the description of the prior art will be briefly described below. Obviously, the drawings in the following description are only It is a certain embodiment of the present invention, and other drawings can be obtained from those skilled in the art without any creative work.

FIG. 1 is a schematic structural diagram of a system architecture according to an embodiment of the present invention;

2 is an interaction flowchart of a method for sharing a license for digital content according to an embodiment of the present invention;

3 is an interaction flowchart of still another method for sharing a license for digital content according to an embodiment of the present invention;

4 is an interaction flowchart of still another method for sharing a license for digital content according to an embodiment of the present invention;

5 is an interaction flowchart of still another method for sharing a license for digital content according to an embodiment of the present invention;

FIG. 6 is an interaction flowchart of a method for creating a domain by a domain gateway copyright management apparatus according to an embodiment of the present invention;

FIG. 7 is an interaction flowchart of a method for a terminal device to join a domain according to an embodiment of the present disclosure;

FIG. 8 is an interaction flowchart of a method for a terminal device to exit a domain according to an embodiment of the present disclosure;

FIG. 9 is a schematic structural diagram of a domain gateway copyright management apparatus according to an embodiment of the present invention;

FIG. 10 is a schematic structural diagram of another domain gateway copyright management apparatus according to an embodiment of the present disclosure;

FIG. 11 is a schematic structural diagram of another domain gateway copyright management apparatus according to an embodiment of the present disclosure;

FIG. 12 is a schematic structural diagram of a blockchain device according to an embodiment of the present invention;

FIG. 13 is a schematic structural diagram of still another blockchain device according to an embodiment of the present invention;

FIG. 14 is a schematic structural diagram of a terminal device according to an embodiment of the present disclosure;

FIG. 15 is a schematic structural diagram of still another terminal device according to an embodiment of the present disclosure;

FIG. 16 is a schematic structural diagram of still another terminal device according to an embodiment of the present disclosure;

FIG. 17 is a schematic structural diagram of a digital content providing apparatus according to an embodiment of the present invention;

FIG. 18 is a schematic structural diagram of still another digital content providing apparatus according to an embodiment of the present invention;

FIG. 19 is a schematic structural diagram of a system for sharing a license for digital content according to an embodiment of the present invention.

detailed description

The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, but not all embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.

The method provided by the embodiment of the present invention is mainly used to implement sharing of digital content licenses between terminal devices in a local area network. As shown in FIG. 1 , a system architecture diagram for implementing the method provided by the embodiment of the present invention includes: a terminal device, a domain gateway management client, a domain gateway, a blockchain device, and a digital device. a content providing device, wherein the terminal device, the domain gateway management client and the domain gateway are placed in the local area network, the blockchain device and the digital content providing device are placed in the external network, and the digital content providing device can be provided by the content distributor, the digital content Provided by the creator or copyright owner, the content distributor is an organization that provides digital content services to consumers (ie, users of terminal devices) that can distribute digital content to the final consumer. Typically, content distributors are operating figures. Content of the business organization. For example: video communication agencies, literary communication agencies or music communication agencies. The digital content providing device is for providing digital content.

Specifically, the copyright management client may be installed on the terminal device, and the terminal device may specifically be a smart TV, a smart phone, a tablet computer, a set top box, and other smart terminals, and the ID (Identity) of the digital content may be stored in the copyright management client. The ID of the digital content is a hash value obtained by hashing the address of the digital content and the copyright holder (the copyright owner is a natural person, a legal person or a social institution having the copyright of the digital content) according to a hash algorithm. The ID of the digital content is used to identify the uniqueness of the digital content.

Domain gateways enable networking between multiple smart devices in a home, office or school, as well as from homes and offices. Or devices that are networked internally to the school. The domain gateway includes a copyright blockchain processing security chip and a data storage service module. The copyright blockchain processing security chip specifically includes a domain-based license management control and a blockchain basic capability module, and the domain-based license management control is used for responsible domain creation, terminal device joining domain and exit domain processing, and domain policy. The control, domain license management control, blockchain basic capability module can communicate with the blockchain device. The data storage service module comprises: a digital content download client and a digital content storage module, the digital content download client is responsible for downloading the digital content from the digital content providing device, and the digital content storage module is responsible for storing the downloaded digital content. In the embodiment provided by the present invention, the copyright blockchain processing security chip and the data storage service module are collectively referred to as a domain gateway copyright management device.

The blockchain device includes a plurality of nodes, each of which stores a blockchain (Block Chain), and the blockchain includes a plurality of blocks, each of which contains a link in the blockchain data. A block identifier, a block time and a transaction are generated, and each block is used to store a plurality of transactions. In the embodiment of the present invention, the transaction includes a domain gateway copyright management device to create a domain transaction, the terminal device joins the domain transaction, and the terminal device Exit domain transactions, domain license transactions, and license distribution transactions (or transactions that can also be referred to as end device licenses).

Transactions include version number, transaction type, input content, and output content. The version number indicates the version of the data structure carrying the transaction, the input content includes the source of the asset input represented by the transaction, the output content includes the output object address and the asset data, and the transaction ID may be based on a hash algorithm in the transaction. The hash value obtained by all the data hashes can be various, such as the Secure Hash Algorithm (SHA1) and the Message-Digest Algorithm 5 (MD5).

Specifically, in the embodiment of the present invention, the blockchain device may include a blockchain domain management device and a blockchain processing device, wherein the blockchain domain management device is used for a device certificate of a transaction or domain gateway copyright management device. And the security chip serial number in the device certificate is verified, and the blockchain processing device is used to store the transaction. Specifically, the blockchain domain management device and the blockchain processing device may be placed in the same physical node.

An embodiment of the present invention provides a method for sharing a license for digital content, as shown in FIG. 2, including:

201. After receiving the request for online use of the digital content input by the consumer, the terminal device sends a license request for the digital content to the domain gateway copyright management device.

Wherein, when the consumer needs to use the digital content online, the terminal device inputs a request to use the digital content online.

A license request for digital content is used to request a license for digital content from a domain gateway copyright management device. The digital content may include literary works, text, video, audio, animation, pictures or flash, etc. Here, only a few types of common digital content works are listed, and the digital content in the present invention is not limited to these types of works.

The license request of the digital content may include the ID of the digital content, and the ID of the digital content may be the ID of the digital content in the copyright registration process, or may be the ID of the digital content after the copyright transfer.

In the embodiment depicted in Figure 2, the terminal device is a device in the domain created by the domain gateway rights management device.

202. The domain gateway copyright management device receives the license request of the digital content sent by the terminal device, and acquires the domain license according to the ID of the digital content.

The domain license includes a decryption key of the digital content encrypted by the public key of the domain gateway copyright management device.

203. The domain gateway copyright management device generates a license of the terminal device according to the domain license.

The license of the terminal device includes an ID of the digital content, an address of the terminal device, a decryption key of the digital content encrypted by the public key of the terminal device, license information, and the like, and specifically, the license information may include an operation permitted by the license. , licenses for operational constraints and license distribution constraints. The license information may specifically include the following contents: A. Types of operations that are allowed to be performed on the digital content, such as playing, displaying, running, printing, or exporting. B. Constraints on digital content operations, such as the number of times a digital content is allowed to be manipulated, the time at which digital content is allowed to be manipulated, or the geographic location at which digital content is allowed to operate. C. License Distribution Constraints, which stipulate whether this license is allowed to be distributed to others (consumer/other content distributors), and may include distribution restrictions such as the number of distributions, the end of distribution start time, or the length of distribution. The licenses distributed to the terminal device are generally set to be non-distributable (for example, setting the number of distributions to 0).

The step 203 may include: the domain gateway copyright management device decrypts the decryption key of the encrypted digital content included in the domain license by using the private key of the domain gateway copyright management device to obtain a decryption key of the digital content; The decryption key of the digital content is encrypted by using the public key of the terminal device; the decryption key of the digital content encrypted by the domain gateway copyright management device according to the public key of the terminal device, the address of the terminal device, the ID of the digital content, and the license information Generate a license for the terminal device.

204. The domain gateway copyright management device sends a license of the terminal device to the terminal device.

205. The domain gateway copyright management device sends a license distribution transaction request to the blockchain device.

The license distribution transaction request includes a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, an address of the terminal device, and license information.

The domain license transaction ID specifically refers to the transaction ID of the domain license transaction. For the content of the domain license transaction, refer to the related description below.

In an embodiment of the invention, the signature is the result of encrypting an arbitrary number (eg, number, digital content ID, license, etc.) with a private key. The signature can be verified by the public key. If the verification is passed, the signed digital content is issued and trusted by the public key owner; otherwise, the signed data is forged and untrusted. The signature of the private key of the domain gateway copyright management device refers to the result of encrypting the ID of the digital content by using the private key of the domain gateway copyright management device.

206. The blockchain device receives a license distribution transaction request sent by the domain gateway copyright management device, and checks the information in the request.

Specifically, the blockchain device performs verification on the information in the license distribution transaction request, specifically: whether the verification domain license transaction ID exists, and whether the signature of the private key of the domain gateway copyright management device is correct.

The specific verification method is as follows: 1) Query whether the transaction ID of the domain license transaction exists in the blockchain device.

2) according to the transaction ID of the domain license transaction to query the output content of the transaction in the blockchain device, decrypt the signature of the private key of the domain gateway copyright management device by using the public key of the domain gateway copyright management device, and if the decryption is successful, And the decryption result is consistent with the address of the domain gateway copyright management device included in the output content, and the signature of the private key of the domain gateway copyright management device is correct; otherwise, the signature of the private key of the domain gateway copyright management device is incorrect.

207. After the verification is successful, construct a license distribution transaction and store the license distribution transaction in the blockchain.

The input content of the license distribution transaction includes a domain license transaction ID and a signature of a private key of the domain gateway copyright management device, and the output content includes an address of the terminal device and license information. In addition, the license distribution transaction also includes the version number and The transaction type, the version number indicates the version of the data structure hosting the transaction.

When the foregoing method is specifically implemented, the domain gateway copyright management apparatus may send a license distribution transaction request to the blockchain domain management apparatus in the blockchain apparatus, and the blockchain domain management apparatus checks the information in the request, and After the verification is successful, a license distribution transaction is constructed and sent to the blockchain processing device, and the blockchain processing device stores the transaction in the blockchain.

According to the method provided by the embodiment of the present invention, in the process of sharing the license of the digital content in the domain, the terminal device stores the license distribution transaction in the blockchain, and each node in the blockchain device stores The transaction, if one of the nodes needs to tamper with the data, needs to get the consent of most nodes in the blockchain device, so in general, once the transaction is added to the blockchain, it cannot be changed, and, because each The block chain is stored on the node, and one node does not cause the loss of the blockchain data, so the blockchain data has strong security, which ensures the high security of the digital content license sharing process data. And each license sharing process can be audited.

The embodiment shown in FIG. 3 and FIG. 4 is a more specific exemplary description of the embodiment described in FIG. 2, wherein the above method specifically includes:

301. After receiving the request for online use of digital content input by the consumer, the terminal device sends a license request for the digital content to the domain gateway copyright management device.

Wherein, the license request of the digital content may include an ID of the digital content and an address of the terminal device.

302. The domain gateway copyright management device receives the license request of the digital content sent by the terminal device, and determines, according to the address of the terminal device, whether the terminal device is a device in a domain created by the domain gateway copyright management device.

The domain gateway copyright management device may determine, according to the locally stored transaction or the transaction in the blockchain, whether the terminal device is a device in a domain created by the domain gateway copyright management device, and specifically, if the terminal device joins the domain transaction and does not exist The terminal device exits the domain transaction, indicating that the terminal device is a device in the domain created by the domain gateway copyright management device, and may be determined by the input content and/or the output content of the transaction. If the output content of the transaction is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier, it indicates that the terminal device joins the domain identifier created by the domain gateway copyright management device as the domain identifier included in the output content. . If the input content of the transaction is the signature of the terminal device joining the domain transaction ID and the private key of the domain gateway copyright management device, if the output content is empty, it indicates that the terminal device has exited the domain.

It should be noted that, in the embodiment of the present invention, the blockchain device constructs a transaction and stores the transaction in the process of the blockchain, generally after constructing multiple transactions, constructing multiple transactions into one block, when one The transaction is a transaction related to the domain gateway copyright management device (or digital content providing device), and the node of the building block in the blockchain device will be the other in the blockchain device after constructing the block containing the transaction. The node and domain gateway copyright management device (or digital content providing device) broadcasts the block, and the domain gateway copyright management device (or digital content providing device) extracts and stores the transaction related to itself in the block, and therefore, A transaction related to itself is stored in the domain gateway copyright management device (or digital content providing device).

If not, return a message that the processing failed directly to the terminal device. If yes, continue with the following steps.

303. The domain gateway copyright management device determines whether the domain has purchased the digital content.

Specifically, the domain gateway copyright management device may determine whether the domain has purchased the digital content according to the locally stored transaction or the transaction in the blockchain. If there is a transaction in the domain to purchase the digital content, the domain purchases the digital content, specifically The input and/or output of the transaction is determined. If the output of the transaction includes the address of the domain gateway copyright management device and the ID of the digital content, it indicates that the domain has purchased the digital content.

If so, as shown in FIG. 3, steps 304a-313a are performed, and if not, as shown in FIG. 4, steps 304b-320b are performed.

304a. The domain gateway copyright management device acquires the local domain license according to the ID of the digital content.

305a. The domain gateway copyright management device determines whether the number of licenses of the used digital content does not exceed the number of licenses restricted in the license information in the domain license.

Specifically, the domain gateway copyright management apparatus may determine, according to the license information in the domain license and the number of distributed licenses recorded in the self-distribution process, whether the number of licenses of the used digital content does not exceed the limit in the license information in the domain license. The number of licenses.

If yes, perform the following steps. If no, return the message that the processing failed directly to the terminal device.

306a. The domain gateway copyright management device generates a license of the terminal device according to the domain license.

For the specific implementation of step 306a, reference may be made to the above, and details are not described herein again.

307a. The domain gateway copyright management device sends a license of the terminal device to the terminal device.

308a. The domain gateway copyright management device sends a license distribution transaction request to the blockchain device.

309a. The blockchain device receives the license distribution transaction request sent by the domain gateway copyright management device, and checks the information in the request.

310a. After the verification is successful, the blockchain device constructs a license distribution transaction and stores the license distribution transaction in the blockchain.

The input content of the license distribution transaction includes a domain license transaction ID and a signature of a private key of the domain gateway copyright management device, and the output content includes an address of the terminal device and license information. In addition, the license distribution transaction also includes a version number and a transaction type, and the version number indicates the version of the data structure that hosts the transaction.

311a. The terminal device receives the license sent by the domain gateway copyright management device, and requests the domain gateway copyright management device to deliver the encrypted digital content.

Wherein, the encrypted digital content can be decrypted by using a digital content decryption key to obtain digital content.

312a. The domain gateway copyright management device sends the locally stored encrypted digital content to the terminal device.

313a. The terminal device receives the encrypted digital content sent by the domain gateway copyright management device, and acquires the digital content according to the private key of the terminal device and the license.

Specifically, the terminal device decrypts the decryption key of the digital content included in the license by using the private key of the terminal device to obtain a decryption key of the digital content, and then decrypts the encrypted digital content by using a decryption key of the digital content to obtain a decryption key. Digital content.

The embodiment illustrated in Figure 3 describes the sharing process of licenses for digital content in the context of a domain purchased digital content.

304b. The domain gateway copyright management device sends a domain license issuance request to the digital content providing device.

The domain license issuance request includes an ID of the digital content, an address of the domain gateway copyright management device, a domain identifier, and license information.

305b. The digital content providing apparatus receives the domain license issuance request sent by the domain gateway copyright management apparatus, and determines whether the ID of the digital content exists in the database.

If yes, continue with the following steps, and if not, return a message indicating that the processing failed to the domain gateway copyright management device.

306b. The digital content providing device determines an account corresponding to the address of the domain gateway copyright management device, and performs deduction processing on the account.

307b. The digital content providing device constructs a domain license transaction and transmits the domain license transaction to the blockchain device.

The input content of the domain license transaction includes a license transaction ID of the digital content providing device, an index of the license of the digital content in a license transaction of the digital content providing device, and a private content of the digital content providing device The signature of the key, the output content of the domain license transaction includes the address and license information of the domain gateway copyright management device. Domain license transactions also include version numbers and transaction types.

The license transaction ID of the digital content providing device refers to the transaction ID of the transaction in which the digital content providing device acquires the license of the digital content.

308b. The blockchain device receives the domain license transaction sent by the digital content providing device and stores the transaction in the blockchain.

309b. The digital content providing device generates a domain license and sends the domain license to the domain gateway copyright management device.

The process of generating the domain license of the domain gateway copyright management apparatus by the digital content providing apparatus includes: the digital content providing apparatus determines the decryption key of the digital content according to the ID of the digital content, and decrypts the digital content by using the public key of the domain gateway copyright management apparatus The key is encrypted, and a domain license is generated based on the decrypted key of the encrypted digital content, the domain identifier, and the license information. The ID of the digital content has a correspondence relationship with the decryption key of the digital content.

310b. The domain gateway copyright management device generates a license of the terminal device according to the domain license.

For the specific implementation of step 310b, reference may be made to the above, and details are not described herein again.

311b. The domain gateway copyright management device sends a license of the terminal device to the terminal device.

312b. The domain gateway copyright management device sends a license distribution transaction request to the blockchain device.

313b. The blockchain device receives the license distribution transaction request sent by the domain gateway copyright management device, and checks the information in the request.

314b. After the verification is successful, the blockchain device constructs a license distribution transaction and stores the license distribution transaction in the block. In the chain.

315b. The terminal device receives the license sent by the domain gateway copyright management device, and requests the domain gateway copyright management device to deliver the encrypted digital content.

316b. The domain gateway copyright management device requests the digital content providing device to deliver the encrypted digital content.

317b. The digital content providing device sends the encrypted digital content to the domain gateway copyright management device.

318b. The domain gateway copyright management device receives the encrypted digital content delivered by the digital content providing device, and saves it locally.

319b. The domain gateway copyright management device sends the encrypted digital content to the terminal device.

320b. The terminal device receives the encrypted digital content sent by the domain gateway copyright management device, and acquires the digital content according to the private key of the terminal device and the license.

The embodiment illustrated in Figure 4 describes the sharing process of licenses for digital content in the context of a domain having not purchased digital content.

In the above method, the domain gateway copyright management apparatus controls the use of the license of the digital content in accordance with the license information contained in the domain license. When the terminal device applies for a license for digital content, it is judged whether the number of distributed licenses has exceeded the limit, and when the number of distributed licenses has exceeded the limit, the local domain license becomes invalid. Specifically, the control method may be: issuing only one single-use license for each terminal device, and each time the terminal device accesses the digital content, it is required to apply for a license to the domain gateway copyright management device again, so that the domain gateway copyright management device can Know the total number of licenses used.

The scenario described in the foregoing embodiment is applicable to the following steps: the terminal device is a device in the domain and is located in the local area network. In another scenario, the terminal device is a device in the domain but leaves the local area network. In this case, As shown in FIG. 5, the method for sharing a license for digital content specifically includes:

501. After receiving the request for online use of the digital content input by the consumer, the terminal device sends a license request for the digital content to the digital content providing device.

The license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain identifier of a domain to which the terminal device belongs.

502. After receiving the license request for the digital content sent by the terminal device, the digital content providing device checks the information included in the license request.

The verification of the information included in the license request of the digital content includes verifying whether the domain to which the terminal device belongs, whether the terminal device is a device in the domain, and whether the address of the terminal device meets the generation specification, if both are , The verification is successful.

503. If the verification is successful, the digital content providing device sends a license distribution transaction to the blockchain device.

504. The blockchain device receives a license distribution transaction sent by the digital content providing device, and stores the license distribution transaction in a blockchain.

After the blockchain device stores the license distribution transaction in the blockchain, it can return a successful response to the digital content providing device.

505. The digital content providing device generates and distributes a license of the digital content to the terminal device according to the ID of the digital content.

The license includes a digital content decryption key encrypted by the terminal device public key, license information, and the like.

The step 505 includes: the digital content providing device acquires a decryption key of the digital content according to the ID of the digital content; and encrypts the decryption key of the digital content by using the public key of the terminal device; according to the encrypted digital content The decryption key, the address of the terminal device, the ID of the digital content, and the license information generate a license.

506. The terminal device receives the license distributed by the digital content providing device, and requests the digital content providing device to deliver the encrypted digital content according to the ID of the digital content.

507. The digital content providing apparatus receives a request for sending the encrypted digital content by the terminal device, and sends the encrypted digital content to the terminal device.

508. The terminal device acquires digital content according to the private key of the terminal device and the license.

Specifically, the terminal device may decrypt the decryption key of the digital content included in the license by using the private key of the terminal device to obtain a decryption key of the digital content, and then decrypt the encrypted digital content by using the decryption key of the digital content. Get digital content.

The method supports sharing of licenses for digital content when the terminal device is offline. In the embodiment described based on FIG. 5, the digital content providing apparatus may record the distributed license on the blockchain, and the domain gateway copyright management apparatus periodically synchronizes the related records from the blockchain, and when the number of used licenses is found to exceed the limit , submit the domain license obsolete transaction to the blockchain device.

The method provided by the embodiment of the present invention can still share the license of the digital content after the terminal device is the device in the domain but leaves the domain, satisfies the requirement for the terminal device to share the license offline, and the license for sharing the digital content. During the process, the license distribution transaction is stored in the blockchain, and the transaction is stored on each node in the blockchain device. If one of the nodes needs to tamper with the data, the blockchain device needs to be obtained. Most nodes in the agreement agree, so in general, once the transaction is added to the blockchain, it cannot be changed, and since each node has a blockchain stored, one node will not cause the block. The loss of chain data makes the blockchain data highly secure, ensuring high security of digital content license sharing process data, and the process of sharing each license can be audited.

Before the method of the foregoing embodiment is executed, the domain gateway copyright management device first needs to create a domain, so that the terminal device joins the domain. Specifically, as shown in FIG. 6, the process of the domain gateway copyright management device creating the domain specifically includes:

601. The domain gateway copyright management device receives the create domain request sent by the domain gateway management client.

602. The domain gateway copyright management device queries the local record to determine whether the domain has been created.

Specifically, the consumer can create a domain creation interface through the domain gateway management client application, input a domain account and password in the interface, request to create a domain, and the domain gateway copyright management device can determine according to the record of the locally stored domain account and password. Whether the domain's domain account and password are the same as the domain account and password entered in the interface.

Specifically, the domain account and the password may be set by the consumer. The device in the domain may be determined in advance, or may be determined after the domain is created. The domain account and password may be used when the terminal device joins the domain.

If yes, directly return to create a successful response, the response contains the domain identifier, and if not, perform the following steps.

603. The domain gateway copyright management device records the domain account and password, and sends a create domain request to the blockchain device.

The create domain request includes the address of the domain gateway rights management device and the signature of the private key of the domain gateway rights management device.

Specifically, in the embodiment of the present invention, the public-private key pair of each device may be generated when the device is started, or may be generated under a certain triggering condition, which is not specifically limited in the embodiment of the present invention.

604. The blockchain device determines, according to information in the create domain request, whether the domain has been created.

The create domain request includes an address of the domain gateway copyright management device and a signature of the private key of the domain gateway copyright management device.

Specifically, the blockchain device may determine whether the domain has been created by querying a transaction in the blockchain. Specifically, if the output content of the transaction is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device A transaction with a domain ID indicates that the domain has been created.

If yes, a successful creation response is returned to the domain gateway copyright management device, and the response includes the domain identifier. If no, perform the following steps.

605. The blockchain device verifies the information in the create domain request.

The verification of the information in the creation of the domain request includes: checking whether the address of the domain gateway copyright management device conforms to the generation specification and whether the signature of the private key of the domain gateway copyright management device is correct, and if yes, the verification is successful.

The specific verification method is: 1) judging whether the address of the domain gateway copyright management device conforms to the generation specification.

2) decrypting the signature of the private key of the domain gateway copyright management device by using the public key of the domain gateway copyright management device. If the decryption is successful and the decryption result is consistent with the address of the domain gateway copyright management device, the private key of the domain gateway copyright management device The signature of the key is correct. Otherwise, the signature of the private key of the domain gateway copyright management device is incorrect.

606. After the verification succeeds, the blockchain device construct creates a domain transaction and stores the created domain transaction in the blockchain.

The input content of the creation domain transaction is empty, and the output content is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device, and the domain identifier.

607. The blockchain device returns a create domain response to the domain gateway copyright management device, where the domain response includes a domain identifier.

608. The domain gateway copyright management device returns a create domain response to the domain gateway management client.

The domain gateway management client receives the Create Domain Response and determines that the domain ID is successfully created for the domain ID in the domain response.

When the foregoing method is specifically implemented, the domain gateway copyright management apparatus may send a create domain request to the blockchain domain management apparatus in the blockchain apparatus, and the blockchain domain management apparatus completes verification of the information in the create domain request. The constructed create domain transaction is sent to the blockchain processing device, and the transaction is stored in the blockchain by the blockchain processing device.

Through the above process, the domain creation transaction of the domain gateway copyright management device creation domain is stored in the blockchain, which ensures the high security and auditability of the process data of the domain gateway copyright management device creation domain.

As shown in Figure 7, the process of joining a terminal device to a domain specifically includes:

701. The terminal device requests the domain gateway copyright management device to obtain the domain identifier, where the request message carries the domain account and the password.

The domain account and password are the domain account and password entered in the domain joining interface after the consumer starts the copyright management client.

702. Whether the domain account and password included in the domain gateway copyright management device verification request message match the domain account and password of the domain that has been created.

If yes, the next step is performed, and if not, the return fails.

703. The domain gateway copyright management device returns a domain identifier to the terminal device.

704. After receiving the domain identifier, the terminal device sends a join domain request to the domain gateway copyright management device.

The join domain request includes an address of the terminal device, a signature of the private key of the domain gateway copyright management device, a domain identifier, an address of the domain gateway copyright management device, and a domain transaction ID.

705. The domain gateway copyright management device verifies whether the address of the terminal device conforms to the generation specification, and whether the signature of the private key of the domain gateway copyright management device is correct.

If yes, perform the next step, if not, return a message that the processing failed.

706. The domain gateway copyright management device sends a join domain request to the blockchain device.

It should be noted that, if the local area network is disconnected from the external network at this time, if the domain gateway copyright management device successfully verifies the signature of the address of the terminal device and the private key of the domain gateway copyright management device, the joining domain of the terminal device is approved first. And the local domain cache device joins the domain request, and after the network connection is restored, it is automatically submitted to the blockchain device.

707. The blockchain device receives the join domain request sent by the domain gateway copyright management device, and checks the information in the request.

The verification of the information in the request specifically includes: verifying whether the transaction ID of the domain creation transaction exists, whether the signature of the private key of the domain gateway copyright management device is correct, the domain identifier in the output content of the creation domain transaction, and the joining domain request Whether the domain identifiers in the domain are the same and whether the address of the terminal device meets the generation specifications. If yes, the verification succeeds.

The specific verification method is as follows: 1) Query whether the transaction ID of the domain transaction is present in the blockchain device.

2) according to the transaction ID of the creation domain transaction to the block chain processing device to query the output content of the transaction, and use the public key of the domain gateway copyright management device to decrypt the signature of the private key of the domain gateway copyright management device, if the decryption is successful, And the decryption result is consistent with the address of the domain gateway copyright management device included in the output content, and the signature of the private key of the domain gateway copyright management device is correct; otherwise, the signature of the private key of the domain gateway copyright management device is incorrect.

3) The domain identifier in the output content of the created domain transaction is the same as the domain identifier in the join domain request.

4) Determine whether the address of the terminal device conforms to the generation specification.

It should be noted that, in step 705, the domain gateway copyright management device may not verify the address of the terminal device and the signature of the private key of the domain gateway copyright management device. In this case, the domain gateway copyright management device may directly connect the terminal device. The sent join domain request is forwarded to the blockchain device.

708. The blockchain device construct joins the domain transaction and stores the joined domain transaction in the blockchain.

The input to the domain transaction is the signature of the domain transaction ID and the private key of the domain gateway copyright management device. The output is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

709. The blockchain device returns a join domain response to the domain gateway copyright management device.

710. The domain gateway copyright management device returns a join domain response to the terminal device.

Specifically, the terminal device determines that it has joined the domain after receiving the join domain response.

When the foregoing method is specifically implemented, the domain gateway copyright management apparatus may send a create domain request to the blockchain domain management apparatus in the blockchain apparatus, and the blockchain domain management apparatus completes verification of the information in the create domain request. The constructed join domain transaction is sent to the blockchain processing device, and the transaction is stored in the blockchain by the blockchain processing device.

Through the above process, the join domain transaction of the terminal device joining the domain is stored in the blockchain, which ensures the high security and auditability of the process data of the terminal device joining the domain.

In addition, in some scenarios, the terminal device in the domain needs to log out of the domain. For example, when the temporary guest joins the domain during the guest, when the user needs to leave, the terminal device used by the guest needs to exit the domain; or, after the terminal device is broken, the domain gateway manages The client needs to let the terminal device exit the domain. As shown in Figure 8, the process of the terminal device exiting the domain may be as follows:

801. The domain gateway copyright management device receives the exit domain request and sends an exit domain request to the blockchain device.

The exit domain request can be sent for the terminal device (or the domain gateway management client).

The exit domain request includes a signature of the terminal device joining the domain transaction ID and the private key of the domain gateway copyright management device.

802. The blockchain device receives an exit domain request sent by the domain gateway copyright management device, and checks the information in the request.

The verification of the information in the request specifically includes whether the transaction ID of the domain transaction is present and the signature of the private key of the domain gateway copyright management device is correct. If yes, the verification is successful.

The specific verification method is as follows: 1) Query whether the transaction ID of the terminal device joining the domain transaction exists in the blockchain device.

2) according to the transaction ID of the terminal device joining the domain transaction to the block chain device to query the output content of the transaction, and using the public key of the domain gateway copyright management device to decrypt the signature of the private key of the domain gateway copyright management device, if the decryption is successful And the decryption result is consistent with the address of the domain gateway copyright management device included in the output content, and the signature of the private key of the domain gateway copyright management device is correct; otherwise, the signature of the private key of the domain gateway copyright management device is incorrect.

803. After the verification succeeds, the blockchain device constructs the exit domain transaction and stores the exit domain transaction in the blockchain.

The input content of the exit domain transaction includes the signature of the terminal device joining the domain transaction ID and the private key of the domain gateway copyright management device, and the output content is empty.

804. The blockchain device returns an exit domain response to the domain gateway copyright management device.

After step 804, the domain gateway rights management device may also return an exit domain response to the terminal device (or domain gateway management client).

When the foregoing method is specifically implemented, the domain gateway copyright management apparatus may send an exit domain request to the blockchain domain management apparatus in the blockchain apparatus, and the blockchain domain management apparatus completes verification of the information in the exit domain request. The constructed exit domain transaction is sent to the blockchain processing device, and the transaction is stored in the blockchain by the blockchain processing device.

Through the above process, the exit domain transaction of the terminal device exiting the domain is stored in the blockchain, which ensures high security and auditability of the process data of the terminal device exiting the domain.

The embodiment of the present invention further provides a domain gateway copyright management device 90, as shown in FIG. 9, comprising:

The receiving unit 901 is configured to receive a license request for the digital content sent by the terminal device, where the license request includes an identifier ID of the digital content;

An obtaining unit 902, configured to acquire a domain license according to an ID of the digital content, where the domain license includes a decryption key of the digital content encrypted by using a public key of the domain gateway copyright management device;

a generating unit 903, configured to generate a license of the terminal device according to the domain license;

a sending unit 904, configured to send a license of the terminal device to the terminal device;

The sending unit 904 is further configured to send a license distribution transaction request to the blockchain device, where the license distribution transaction request includes a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, an address of the terminal device, and license information, In order for the blockchain device to verify the domain license transaction ID, whether the signature of the private key of the domain gateway copyright management device is correct, after the verification is successful, construct a license distribution transaction and store the license distribution transaction in the block. In the chain, the input of the license distribution transaction includes the domain license transaction ID and the signature of the private key of the domain gateway copyright management device, and the output includes the address of the terminal device and the license information.

Optionally, the license request further includes an address of the terminal device. As shown in FIG. 10, the apparatus 90 further includes: a determining unit 905, configured to determine, according to an address of the terminal device, a domain created by the terminal device as a domain gateway copyright management device. In the device.

Optionally, the determining unit 905 is further configured to determine whether the domain has purchased digital content;

If yes, the obtaining unit 902 is specifically configured to acquire a local domain license according to the ID of the digital content;

If not, the sending unit 904 is further configured to send a domain license issuance request to the digital content providing apparatus, where the domain license issuance request includes an ID of the digital content, an address of the domain gateway copyright management device, a domain identifier, and license information, to And causing the digital content providing device to check whether the ID of the digital content exists in the database, after the verification succeeds, determining an account corresponding to the address of the domain gateway copyright management device, and deducting the account for the account, constructing a domain license transaction and The domain license transaction is sent to the blockchain device such that the blockchain device stores the domain license transaction in the blockchain, and the digital content providing device generates the domain license and sends it to the domain gateway copyright management device, the domain license transaction The input content includes a license transaction ID of the digital content providing device, an index of the license of the digital content in the license transaction of the digital content providing device, and a signature of the private key of the digital content providing device, and the output content of the domain license transaction includes the domain The address and license information of the gateway copyright management device.

Optionally, as shown in FIG. 10, the apparatus 90 further includes: a determining unit 906, configured to determine that the number of licenses of the used digital content does not exceed the number of licenses restricted in the license information in the domain license.

Optionally, the generating unit 903 is specifically configured to: decrypt the decryption key of the encrypted digital content included in the domain license by using a private key of the domain gateway copyright management device, to obtain a decryption key of the digital content; and adopt a terminal device The public key encrypts the decryption key of the digital content; the license of the terminal device is generated according to the decryption key of the digital content encrypted with the public key of the terminal device, the address of the terminal device, the ID of the digital content, and the license information.

Optionally, the receiving unit 901 is further configured to receive a request for sending the encrypted digital content sent by the terminal device, where the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

If the domain has purchased the digital content, the sending unit 904 is further configured to send the locally saved encrypted digital content to the terminal device according to the request for sending the encrypted digital content;

If the domain has not purchased the digital content, as shown in FIG. 10, the device 90 further includes a requesting unit 907 for requesting the digital content providing device to deliver the encrypted digital content according to the request for sending the encrypted digital content; the device 90 further includes The storage unit 908 is configured to save the encrypted digital content delivered by the digital content providing device locally, and the sending unit 904 is further configured to send the encrypted digital content to the terminal device.

Optionally, the sending unit 904 is further configured to send the join domain request sent by the received terminal device to the blockchain device, where the domain request includes the address of the terminal device, the signature of the private key of the domain gateway copyright management device, and the domain. Identifying, the address of the domain gateway copyright management device, and creating a domain transaction ID to cause the blockchain device to verify whether the transaction ID of the created domain transaction exists, whether the signature of the private key of the domain gateway copyright management device is correct, and the output of the domain transaction is created. Whether the domain identifier in the content and the domain identifier in the join domain request are the same and the address of the terminal device conforms to the generation specification. After the verification succeeds, construct the join domain transaction and store the join domain transaction in the blockchain, and join the domain transaction. The input content is the signature of the domain transaction ID and the private key of the domain gateway copyright management device, and the output content is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

Optionally, the sending unit 904 is further configured to send a create domain request to the blockchain device, where the domain request includes the address of the domain gateway copyright management device and the signature of the private key of the domain gateway copyright management device, so that the blockchain device After the address of the verification domain gateway copyright management device conforms to the generation specification and the signature of the private key of the domain gateway copyright management device is correct, the domain transaction is created and the domain transaction is created in the blockchain, and the input of the domain transaction is created. Empty, the output content is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device, and the domain identifier.

Optionally, the receiving unit 901 is further configured to receive an exit domain request.

The sending unit 904 is further configured to send an exit domain request to the blockchain device, where the exit domain request includes the terminal device joining the domain transaction ID and the signature of the private key of the domain gateway copyright management device, so that the blockchain device checks the join domain transaction. Whether the transaction ID exists and the signature of the private key of the domain gateway copyright management device is correct. After the verification is successful, the exit domain transaction is constructed and the exit domain transaction is stored in the blockchain, and the input content of the exit domain transaction includes the terminal device. The domain transaction ID and the signature of the private key of the domain gateway copyright management device are added, and the output content is empty.

The various units included in the device 90 provided by the embodiment of the present invention are used to perform the foregoing method. Therefore, the beneficial effects of the device 90 can be referred to the foregoing method, and details are not described herein again.

The embodiment of the present invention further provides a domain gateway copyright management apparatus 110, as shown in FIG. 11, comprising: a receiver 1101, a memory 1102, a processor 1103, and a transmitter 1104.

The receiver 1101, the memory 1102, the processor 1103, and the transmitter 1104 are coupled together by a bus system 1105. The memory 1102 may include a random access memory, and may also include a non-volatile memory, such as at least A disk storage. The bus system 1105 may be an Industry Standard Architecture (ISA) bus, a Peripheral Component (PCI) bus, or an Extended Industry Standard Architecture (EISA) bus. The bus system 1105 can be divided into an address bus, a data bus, a control bus, and the like. For ease of representation, only one thick line is shown in Figure 11, but it does not mean that there is only one bus or one type of bus.

It should be noted that the receiver 1101, the memory 1102, the processor 1103, and the transmitter 1104 specifically perform the foregoing methods, and the specific process can be referred to above.

The receiving unit 901 in FIG. 9 and FIG. 10 may be the receiver 1101, the sending unit 904 may be the transmitter 1104, and the remaining units may be the processor 1103. The remaining units may be embedded in hardware or independent of the device 110. The processor 1103 can also be stored in the memory 1102 of the device 110 in the form of software, so that the processor 1103 can call the operation corresponding to each unit, and the processor can be a central processing unit (CPU). An Application Specific Integrated Circuit (ASIC) is one or more integrated circuits configured to implement the embodiments of the present invention.

The various devices included in the device 110 provided by the embodiment of the present invention are used to perform the foregoing method. Therefore, the beneficial effects of the device 110 can be referred to the foregoing method, and details are not described herein again.

The embodiment of the present invention further provides a blockchain device 120, as shown in FIG. 12, comprising:

The receiving unit 1201 is configured to receive a license distribution transaction request sent by the domain gateway copyright management device, where the license distribution transaction request includes a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, an address of the terminal device, and a license information. ;

The verification unit 1202 is configured to check whether the domain license transaction ID exists, and whether the signature of the private key of the domain gateway copyright management device is correct;

The storage unit 1203 is configured to construct a license distribution transaction and store the license distribution transaction in the blockchain after the verification succeeds, and the input content of the license distribution transaction includes the domain license transaction ID and the domain gateway copyright management device. The signature of the private key, the output includes the address and license information of the terminal device.

The appliance stores license distribution transactions in a blockchain, ensuring high security and auditability of process data for license distribution transactions.

The embodiment of the present invention further provides a blockchain device 130, as shown in FIG. 13, comprising: a receiver 1301, a memory 1302, and a processor 1303.

The receiver 1301, the memory 1302 and the processor 1303 are coupled together by a bus system 1304, wherein the memory 1302 may include a random access memory, and may also include a non-volatile memory, such as at least one disk storage. Bus system 1304 can be an ISA, PCI or EISA bus or the like. The bus system 1304 can be divided into an address bus, a data bus, a control bus, and the like. For ease of representation, only one thick line is shown in Figure 13, but it is not Show only one bus or one type of bus.

It should be noted that the receiver 1301, the memory 1302, and the processor 1303 specifically perform the foregoing methods, and the specific process can be referred to above.

The receiving unit 1201 in FIG. 12 may be the receiver 1301, and the remaining units may be the processor 1303. The remaining units may be embedded in or independent of the processor 1303 of the device 130 in hardware, or may be stored in software. In processor 1303 of device 130, in order for processor 1303 to invoke operations corresponding to the various units above, the processor may be a CPU, an ASIC, or one or more integrated circuits configured to implement embodiments of the present invention.

The device 130 provided by the embodiment of the present invention is a device corresponding to the device 120. Therefore, the beneficial effects of the device 130 can be seen in the beneficial effects of the device 120, and details are not described herein again.

The embodiment of the present invention further provides a terminal device 140, as shown in FIG. 14, comprising:

The sending unit 1401 is configured to send a license request for the digital content to the digital content providing apparatus, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain identifier of a domain to which the terminal device belongs, so that the digital content Providing the device to verify that the domain to which the terminal device belongs, the terminal device being the device in the domain, and the address of the terminal device comply with the generation specification, and after the verification succeeds, sending a license distribution transaction to the blockchain device, so that the blockchain device will The license distribution transaction is stored in the blockchain, and the digital content providing device generates and distributes a license for the digital content to the terminal device;

The receiving unit 1402 is configured to receive a license distributed by the digital content providing device, where the license includes a digital content decryption key encrypted by the terminal device public key.

Optionally, as shown in FIG. 15, the device 140 further includes:

The requesting unit 1403 is configured to request the digital content providing device to deliver the encrypted digital content according to the ID of the digital content, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

The receiving unit 1402 is further configured to receive the encrypted digital content delivered by the digital content providing device;

The obtaining unit 1404 is configured to decrypt the decryption key of the digital content included in the license by using the private key of the terminal device, obtain a decryption key of the digital content, and decrypt the encrypted digital content by using the decryption key of the digital content. Get digital content.

The various units included in the terminal device 140 provided by the embodiment of the present invention are used to perform the foregoing method. Therefore, the beneficial effects of the terminal device 140 can be referred to the foregoing method, and details are not described herein again.

The embodiment of the present invention further provides a terminal device 160, as shown in FIG. 16, comprising: a transmitter 1601 and a receiver 1602. The transmitter 1601 is configured to perform an action of the sending unit 1401, and the receiver 1602 is configured to perform an action of the receiving unit 1402.

Each device included in the terminal device 160 provided by the embodiment of the present invention is used to perform the foregoing method. Therefore, the beneficial effects of the terminal device 160 can be referred to the foregoing method, and details are not described herein again.

The embodiment of the present invention further provides a digital content providing apparatus 170, as shown in FIG. 17, comprising:

The receiving unit 1701 is configured to receive a license request for the digital content sent by the terminal device, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain identifier of a domain to which the terminal device belongs;

a verification unit 1702, configured to verify that a domain to which the terminal device belongs, the terminal device is a device in the domain, and an address of the terminal device conforms to a generation specification;

a sending unit 1703, configured to send a license distribution transaction to the blockchain device, so that the blockchain device stores the license distribution transaction in the blockchain;

The executing unit 1704 is configured to generate and distribute a license of the digital content according to the ID of the digital content; the license includes a digital content decryption key encrypted by the terminal device public key.

Optionally, the executing unit 1704 is configured to acquire a decryption key of the digital content according to the ID of the digital content; encrypt the decryption key of the digital content by using the public key of the terminal device; and decrypt the key according to the encrypted digital content. A license is generated by the address of the terminal device, the ID of the digital content, and the license information.

Optionally, the receiving unit 1701 is further configured to receive a request for sending the encrypted digital content sent by the terminal device, where the encrypted digital content can be decrypted by using a digital content decryption key to obtain digital content;

1703. The method is further configured to send the encrypted digital content to the terminal device according to the request for sending the encrypted digital content, so that the terminal device acquires the digital content.

The various units included in the apparatus 170 provided by the embodiment of the present invention are used to perform the foregoing method. Therefore, the beneficial effects of the apparatus 170 can be referred to the foregoing method, and details are not described herein again.

The embodiment of the present invention further provides a digital content providing apparatus 180, as shown in FIG. 18, comprising: a receiver 1801, a memory 1802, a processor 1803, and a transmitter 1804.

The receiver 1801, the memory 1802, the processor 1803, and the transmitter 1804 are coupled together by a bus system 1805. The memory 1802 may include a random access memory, and may also include a non-volatile memory, such as at least A disk storage. The bus system 1805 can be an ISA, PCI or EISA bus or the like. The bus system 1805 can be divided into an address bus, a data bus, a control bus, and the like. For ease of representation, only one thick line is shown in Figure 18, but it does not mean that there is only one bus or one type of bus.

It should be noted that the receiver 1801, the memory 1802, the processor 1803, and the transmitter 1804 specifically perform the foregoing methods, and the specific process can be referred to above.

The receiving unit 1701 in FIG. 17 may be the receiver 1801, the sending unit may be the transmitter 1804, and the remaining units may be the processor 1803. The remaining units may be embedded in the hardware or in the processor 1803 of the device 180. It may also be stored in the form of software in the processor 1803 of the device 180, so that the processor 1803 calls for performing operations corresponding to the above respective units, and the processor may be a CPU, an ASIC or a one configured to implement an embodiment of the present invention. Or multiple integrated circuits.

The various devices included in the device 180 provided by the embodiment of the present invention are used to perform the foregoing method. Therefore, the beneficial effects of the device 180 can be referred to the foregoing method, and details are not described herein again.

The embodiment of the present invention further provides a system 190 for sharing licenses for digital content. As shown in FIG. 19, the system includes: a domain gateway copyright management device 1901 and a blockchain device 1902, wherein the domain gateway copyright management device 1901 is used. Executing the above method, the blockchain device 1902 is configured to: verify whether the domain license transaction ID in the license distribution transaction request exists, whether the signature of the private key of the domain gateway copyright management device is correct, and after the verification succeeds, construct the license The license distribution transaction stores the license distribution transaction in the blockchain, and the input of the license distribution transaction includes the domain license transaction ID and the signature of the private key of the domain gateway copyright management device, and the output includes the address and license of the terminal device. information.

Optionally, the blockchain device 1902 is further configured to: receive a join domain request sent by the domain gateway copyright management device, where the join domain request includes an address of the terminal device, a signature of the private key of the domain gateway copyright management device, a domain identifier, and a domain gateway. The address of the copyright management device and the creation of the domain transaction ID; verifying whether the transaction ID of the creation domain transaction exists, whether the signature of the private key of the domain gateway copyright management device is correct, the domain identification in the output content of the creation domain transaction, and the joining domain request Whether the domain identifier is the same and whether the address of the terminal device conforms to the generation specification. After the verification succeeds, construct the join domain transaction and store the join domain transaction in the blockchain. The input content of the join domain transaction is to create the domain transaction ID and domain. The signature of the private key of the gateway copyright management device, and the output content is the address of the domain gateway copyright management device, the address of the terminal device, and the domain identifier.

Optionally, the blockchain device 1902 is further configured to: receive a create domain request sent by the domain gateway copyright management device, where the domain request includes the address of the domain gateway copyright management device and the signature of the private key of the domain gateway copyright management device; Whether the address of the domain gateway copyright management device conforms to the generation specification and the signature of the private key of the domain gateway copyright management device is correct. After the verification succeeds, construct the domain transaction and store the created domain transaction in the blockchain to create a domain transaction. The input content is empty, and the output content is the signature of the private key of the domain gateway copyright management device, the address of the domain gateway copyright management device, and the domain identifier.

Optionally, the blockchain device 1902 is further configured to: receive an exit domain request sent by the domain gateway copyright management device, and the exit domain request includes a signature of the terminal device joining the domain transaction ID and the private key of the domain gateway copyright management device; Whether the transaction ID of the domain transaction exists and the signature of the private key of the domain gateway copyright management device is correct. After the verification succeeds, the exit domain transaction is constructed and the exit domain transaction is stored in the blockchain, and the input of the exit domain transaction includes The terminal device joins the domain transaction ID and the signature of the private key of the domain gateway copyright management device, and the output content is empty.

In the several embodiments provided by the present application, it should be understood that the disclosed apparatus and method may be implemented in other manners. For example, the device embodiments described above are merely illustrative. For example, the division of the modules is only a logical function division. In actual implementation, there may be another division manner, for example, multiple modules or components may be combined or Can be integrated into another system, or some features can be ignored or not executed.

The modules described as separate components may or may not be physically separated. The components displayed as modules may or may not be physical modules, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.

In addition, each functional module in each embodiment of the present invention may be integrated into one processing module, or two or more modules may be integrated into one module. The above integrated modules can be implemented in the form of hardware or in the form of hardware plus software function modules.

The above integrated module implemented in the form of a software function module can be stored in a computer readable storage medium in. The software functional modules described above are stored in a storage medium and include instructions for causing a computer device (which may be a personal computer, server, or network device, etc.) to perform some of the steps of the methods described in various embodiments of the present invention. The foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like, and the program code can be stored. Medium.

Claims

A method of sharing a license for digital content, comprising:

The domain gateway copyright management device receives a license request for the digital content sent by the terminal device, where the license request includes an identifier ID of the digital content;

The domain gateway copyright management apparatus acquires a domain license according to an ID of the digital content, the domain license including a decryption key of the digital content encrypted by using a public key of the domain gateway copyright management apparatus;

The domain gateway copyright management device generates a license of the terminal device according to the domain license, and sends the license to the terminal device;

The domain gateway copyright management device transmits a license distribution transaction request to the blockchain device, the license distribution transaction request including a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, the terminal device Address and license information.
The method according to claim 1, wherein the license request further includes an address of the terminal device, before the domain gateway copyright management device acquires a domain license according to an ID of the digital content, The method also includes:

The domain gateway copyright management device determines, according to the address of the terminal device, the device in the domain created by the terminal device for the domain gateway copyright management device.
The method according to claim 2, wherein after the domain gateway copyright management device determines, according to the address of the terminal device, the device in the domain created by the terminal device for the domain gateway copyright management device, The method also includes:

The domain gateway copyright management device determines whether the domain has purchased the digital content;

If yes, the domain gateway copyright management device acquires a local domain license according to the ID of the digital content;

If not, the domain gateway copyright management device sends a domain license issuance request to the digital content providing device, the domain license issuance request including an ID of the digital content, an address of the domain gateway copyright management device, a domain identifier, and License information.
The method according to claim 3, wherein before the domain gateway copyright management device generates the license of the terminal device according to the domain license, the method further includes:

The domain gateway copyright management apparatus judges that the number of licenses of the digital content that has been used does not exceed the number of licenses restricted in the license information in the domain license.
The method according to any one of claims 1-4, wherein the domain gateway copyright management device generates a license of the terminal device according to the domain license, including:

The domain gateway copyright management device decrypts the decryption key of the encrypted digital content included in the domain license by using the private key of the domain gateway copyright management device to obtain a decryption key of the digital content;

The domain gateway copyright management device encrypts a decryption key of the digital content by using a public key of the terminal device;

The domain gateway copyright management apparatus generates a license of the terminal device according to a decryption key of the digital content encrypted by the public key of the terminal device, an address of the terminal device, an ID of the digital content, and license information. .
The method according to any one of claims 1 to 5, wherein after the domain gateway copyright management apparatus generates a license of the terminal device according to the domain license and transmits the license to the terminal device, The method also includes:

Receiving, by the terminal device, a request for sending encrypted digital content sent by the terminal device, the encryption The digital content can be decrypted using the digital content decryption key to obtain the digital content;

And if the domain purchases the digital content, the domain gateway copyright management device sends the locally stored encrypted digital content to the terminal device according to the request for sending the encrypted digital content;

If the domain has not purchased the digital content, the domain gateway copyright management device requests the digital content providing device to deliver the encrypted digital content according to the request for sending the encrypted digital content; the domain gateway copyright management device The encrypted digital content delivered by the digital content providing device is locally saved and transmitted to the terminal device.
The method according to any one of claims 1-6, wherein before the domain gateway copyright management device receives the license request for the digital content sent by the terminal device, the method further includes:

Receiving, by the domain gateway copyright management device, a join domain request sent by the terminal device, and sending a join domain request to the blockchain device, where the join domain request includes an address of the terminal device, and the domain gateway copyright management device The signature of the private key, the domain identifier, the address of the domain gateway rights management device, and the creation of the domain transaction ID.
The method according to claim 7, wherein before the domain gateway copyright management device receives the join domain request sent by the terminal device and sends a join domain request to the blockchain device, the method further includes :

The domain gateway copyright management device transmits a create domain request to the blockchain device, the create domain request including an address of the domain gateway copyright management device and a signature of a private key of the domain gateway copyright management device.
The method of any of claims 1-8, wherein the method further comprises:

Receiving, by the domain gateway copyright management device, an exit domain request and sending the exit domain request to the blockchain device, the exit domain request including the terminal device joining a domain transaction ID and a private of the domain gateway copyright management device The signature of the key.
A method of sharing a license for digital content, comprising:

The terminal device sends a license request for the digital content to the digital content providing device, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain identifier of a domain to which the terminal device belongs;

The terminal device receives a license distributed by the digital content providing device, the license including a digital content decryption key encrypted by the terminal device public key.
The method according to claim 10, wherein after the terminal device receives the license distributed by the digital content providing device, the method further comprises:

The terminal device requests the digital content providing device to deliver the encrypted digital content according to the ID of the digital content, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

Receiving, by the terminal device, the encrypted digital content delivered by the digital content providing device;

Decrypting the decryption key of the digital content included in the license by using a private key of the terminal device to obtain a decryption key of the digital content, and then using the decryption key of the digital content The key decrypts the encrypted digital content to obtain the digital content.
A method of sharing a license for digital content, comprising:

The digital content providing apparatus receives a license request of the digital content sent by the terminal device, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain identifier of a domain to which the terminal device belongs;

The digital content providing apparatus verifies that the domain to which the terminal device belongs, the terminal device is a device in the domain, and an address of the terminal device conforms to a generation specification;

The digital content providing device transmits a license distribution transaction to the blockchain device;

The digital content providing device generates and distributes a license of the digital content to the terminal device according to an ID of the digital content; the license includes a digital content decryption key encrypted by the terminal device public key.
The method according to claim 12, wherein said digital content providing means is based on said number The ID of the content generates and distributes the license of the digital content to the terminal device, including:

The digital content providing device acquires a decryption key of the digital content according to an ID of the digital content;

The digital content providing device encrypts a decryption key of the digital content by using a public key of the terminal device;

The digital content providing device generates the license based on a decryption key of the encrypted digital content, an address of the terminal device, an ID of the digital content, and license information.
The method according to claim 12 or 13, wherein after the digital content providing device generates and distributes a license for the digital content to the terminal device, the method further comprises:

The digital content providing device receives a request for sending the encrypted digital content sent by the terminal device, and the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

The digital content providing device delivers the encrypted digital content to the terminal device according to the request for sending the encrypted digital content.
A domain gateway copyright management device, comprising:

a receiving unit, configured to receive a license request for the digital content sent by the terminal device, where the license request includes an identifier ID of the digital content;

An obtaining unit, configured to acquire a domain license according to an ID of the digital content, where the domain license includes a decryption key of the digital content encrypted by using a public key of the domain gateway copyright management device;

a generating unit, configured to generate a license of the terminal device according to the domain license;

a sending unit, configured to send a license of the terminal device to the terminal device;

The sending unit is further configured to send a license distribution transaction request to the blockchain device, where the license distribution transaction request includes a domain license transaction ID, a signature of a private key of the domain gateway copyright management device, and the terminal The address of the device and the license information.
The device according to claim 15, wherein the license request further includes an address of the terminal device, and the device further includes:

a determining unit, configured to determine, according to an address of the terminal device, a device in a domain that the terminal device creates for the domain gateway copyright management device.
The device of claim 16 wherein:

The determining unit is further configured to determine whether the domain has purchased the digital content;

If yes, the obtaining unit is specifically configured to obtain a local domain license according to the ID of the digital content;

If not, the sending unit is further configured to send a domain license issuance request to the digital content providing apparatus, where the domain license issuance request includes an ID of the digital content, an address of the domain gateway copyright management device, and a domain identifier. And licensing information.
The device according to claim 17, wherein the device further comprises:

The judging unit is configured to judge that the number of licenses of the digital content that has been used does not exceed the number of licenses restricted in the license information in the domain license.
The device according to any one of claims 15 to 18, wherein the generating unit is specifically configured to:

Decrypting the decryption key of the encrypted digital content included in the domain license by using a private key of the domain gateway copyright management device to obtain a decryption key of the digital content;

Encrypting the decryption key of the digital content by using a public key of the terminal device;

The license of the terminal device is generated according to a decryption key of the digital content encrypted by the public key of the terminal device, an address of the terminal device, an ID of the digital content, and license information.
Apparatus according to any of claims 15-19, wherein

The receiving unit is further configured to receive a request for sending the encrypted digital content sent by the terminal device, where the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

If the domain purchases the digital content, the sending unit is further configured to send the locally stored encrypted digital content to the terminal device according to the request for sending the encrypted digital content;

If the domain has not purchased the digital content, the device further includes a requesting unit, configured to request the digital content providing device to deliver the encrypted digital content according to the request for sending the encrypted digital content; the device further The storage unit is configured to save the encrypted digital content delivered by the digital content providing device locally, and the sending unit is further configured to send the encrypted digital content to the terminal device.
The device according to any one of claims 15 to 20, wherein the sending unit is further configured to:

And sending the received domain request sent by the terminal device to the blockchain device, where the join domain request includes an address of the terminal device, a signature of a private key of the domain gateway copyright management device, and a domain identifier. The address of the domain gateway copyright management device and the creation of a domain transaction ID.
The device according to claim 21, wherein the sending unit is further configured to:

A create domain request is sent to the blockchain device, the create domain request including an address of the domain gateway rights management device and a signature of a private key of the domain gateway rights management device.
Apparatus according to any of claims 15-22, wherein

The receiving unit is further configured to receive an exit domain request;

The sending unit is further configured to send the exit domain request to the blockchain device, where the exit domain request includes a signature of the terminal device joining a domain transaction ID and a private key of the domain gateway copyright management device.
A terminal device, comprising:

a sending unit, configured to send a license request for the digital content to the digital content providing device, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain to which the terminal device belongs Domain identifier

And a receiving unit, configured to receive a license distributed by the digital content providing apparatus, where the license includes a digital content decryption key encrypted by the terminal device public key.
The terminal device according to claim 24, wherein the device further comprises:

a requesting unit, configured to request, according to the ID of the digital content, the encrypted digital content to be sent to the digital content providing device, where the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

The receiving unit is further configured to receive the encrypted digital content delivered by the digital content providing device;

An obtaining unit, configured to decrypt, by using a private key of the terminal device, a decryption key of the digital content included in the license, to obtain a decryption key of the digital content, and then use the decryption of the digital content The key decrypts the encrypted digital content to obtain the digital content.
A digital content providing apparatus, comprising:

a receiving unit, configured to receive a license request of the digital content sent by the terminal device, where the license request of the digital content includes an ID of the digital content, an address of the terminal device, and a domain identifier of a domain to which the terminal device belongs ;

a verification unit, configured to verify that a domain to which the terminal device belongs, the terminal device being a device in the domain, and an address of the terminal device comply with a generation specification;

a sending unit, configured to send, by the digital content providing device, a license distribution transaction to the blockchain device;

And an execution unit, configured to generate and distribute the license of the digital content according to the ID of the digital content to the terminal device; the license includes a digital content decryption key encrypted by the terminal device public key.
The device according to claim 26, wherein the execution unit is specifically configured to:

Obtaining a decryption key of the digital content according to the ID of the digital content;

Encrypting the decryption key of the digital content by using a public key of the terminal device;

The license is generated based on the decrypted key of the encrypted digital content, the address of the terminal device, the ID of the digital content, and the license information.
Device according to claim 26 or 27, characterized in that

The receiving unit is further configured to receive a request for sending the encrypted digital content sent by the terminal device, where the encrypted digital content can be decrypted by using the digital content decryption key to obtain the digital content;

The sending unit is further configured to send the encrypted digital content to the terminal device according to the request for sending the encrypted digital content.
A system for sharing a license for digital content, comprising: a domain gateway copyright management device and a blockchain device, wherein the domain gateway copyright management device is configured to perform any one of claims 1-9 The method of the blockchain device is configured to: verify whether a domain license transaction ID in the license distribution transaction request exists, and whether the signature of the private key of the domain gateway copyright management device is correct, after the verification succeeds, Constructing a license distribution transaction and storing the license distribution transaction in a blockchain, the input content of the license distribution transaction including the domain license transaction ID and a signature of a private key of the domain gateway copyright management device The output content includes an address and license information of the terminal device.