CN101667999B - Method and system for transmitting peer-to-peer broadcast stream, data signature device and client - Google Patents
Method and system for transmitting peer-to-peer broadcast stream, data signature device and client Download PDFInfo
- Publication number
- CN101667999B CN101667999B CN 200810146670 CN200810146670A CN101667999B CN 101667999 B CN101667999 B CN 101667999B CN 200810146670 CN200810146670 CN 200810146670 CN 200810146670 A CN200810146670 A CN 200810146670A CN 101667999 B CN101667999 B CN 101667999B
- Authority
- CN
- China
- Prior art keywords
- point
- stream
- live
- signature
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/104—Peer-to-peer [P2P] networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/60—Network streaming of media packets
Landscapes
- Engineering & Computer Science (AREA)
- Multimedia (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The embodiment of the invention discloses a method and a system for transmitting a P2P broadcast stream, a digital signature device and a P2P client, relates to the technical field of communication, can prevent the P2P broadcast stream from being maliciously distorted in the transmitting process, and simultaneously avoids causing large impact on the performance of a P2P system. The method provided by the embodiment of the invention comprises the following steps: generating a public key and private key digital signature algorithm key pair; performing signature on a source broadcast stream according to a private key, fragmenting the signed source broadcast stream, and transmitting the fragmented source broadcast stream to the P2P client; and sending a public key to the P2P client, performing signature verification on the received P2P broadcast stream according to the public key with the P2P client. The method and the system are suitable for centralized P2P networking and CDN structure-based distributed P2P networking.
Description
Technical field
The present invention relates to communication technique field, particularly relate to method, system, digital signature device and P2P client that a kind of point-to-point (P2P, Peer to Peer) live TV stream transmits.
Background technology
Data encryption technology is different by effect, can be divided into the discriminating and the key management technology of transfer of data, storage, data integrity.In network application, generally take two kinds of AESs: symmetric key algorithm and asymmetric key algorithm.
So-called symmetric key algorithm is meant that the encryption key of an AES is identical with decruption key, though perhaps inequality, can derive another at an easy rate by wherein any one, promptly key is a shared by both parties.So-called asymmetric key algorithm is meant that the encryption key of an AES and decruption key are different, can not go out another key by one of them key derivation in other words, and one of them is called PKI these two keys; Be used for deciphering; Be disclosed, another is called private key, is used for encrypting; Maintain secrecy, it is infeasible on calculating to calculate private key by PKI.
Md5-challenge (MD5, message-digest algorithm5) is meant a segment information (message) produced informative abstract (message-digest), distorted preventing.MD5 is used as whole file as a big text message, through its irreversible character string mapping algorithm, produces unique MD5 informative abstract.MD5 belongs to a kind of symmetric key algorithm.
In Internet, using more is asymmetric key algorithm; Asymmetric key algorithm commonly used is a RSA Algorithm; Its Cipher Strength is very high, and and do not require that communicating pair will set up certain trusting relationship in advance or share certain secret, therefore very be fit to Internet and use on the net.
Digital signature (Digital Signature) technology is the typical application of asymmetric key algorithm.So-called digital signature (Digital Signature) is attached to some data on the data cell exactly, or the cryptographic transformation that the data unit is done.These data or conversion allow the recipient of data cell in order to the source of affirmation data cell and the integrality and the protected data of data cell, prevent to be forged by people (for example recipient).It is a kind of method that the message of electronic form is signed, and a signature information can be transmitted in a communication network.The main function of digital signature is: the integrality of guarantee information transmission, sender's authentication, the denial in preventing to conclude the business take place.
Digital signature (for example RSA Algorithm) application process based on the MD5 algorithm is, summary info is used sender's encrypted private key, sends the recipient to original text.The recipient has only the summary info that uses the PKI ability decrypt encrypted of sending, and with the HASH function original text of receiving is produced a summary info, with the summary info contrast of deciphering.If identical, then the information received of explanation is complete, in transmission course, be not modified, otherwise descriptive information was modified, therefore based on the digital signature of MD5 algorithm can authorization information integrality.
The characteristic feature of P2P is a content sharing between user node (Peer), and the content-data of child node is provided by father node, live for some low code checks especially, and a node possibly only obtained content from a father node.In the prior art; The method that a kind of P2P of preventing live TV stream is distorted is to adopt md5-challenge MD5, and the P2P that exists for file format downloads content, and user's download is preceding through obtaining the MD5 check code earlier; In downloading process, carry out verification then; Can prevent effectively that content is maliciously tampered in the P2P downloading process, and, can carry out verification separately each section based on the microtomy of P2P; Can just find in time in downloading process whether content is maliciously tampered like this, and carry out the MD5 verification again after need complete content not being downloaded completion.
In realizing process of the present invention, the inventor finds to exist at least in the prior art such problem:
Because the P2P live TV stream is a real time business, the check code that the P2P server needs to generate the section of P2P live TV stream in real time offers the user, if the mode that adopts all users all to get check code to server in real time will cause bigger impact to systematic function; If adopt node to transmit the mode of check code, because MD5 adopts symmetric key, father node can regenerate check code after to live TV stream section content tampering, thereby for child node provides different contents, does not so then reach the purpose of content interpolation-preventing.
Summary of the invention
Method, system and digital signature device and P2P client that the embodiment of the invention provides a kind of P2P live TV stream to transmit can prevent that the P2P live TV stream is maliciously tampered in transmittance process, avoid simultaneously the P2P systematic function is caused bigger impact.
For realizing above-mentioned purpose, the embodiment of the invention realizes through following technical scheme:
The method that a kind of point-to-point live TV stream transmits comprises:
Digital signature device generation PKI and private key Digital Signature Algorithm key are right, and private key is issued to content distribution server, and PKI is issued to resource management server;
Content distribution server is signed to the source live TV stream according to said private key, the source live TV stream behind the signature is cut into slices, and the live TV stream after will cutting into slices is issued to point-to-point client;
Resource management server sends said PKI to point-to-point client, so that this point-to-point client is carried out signature verification according to this PKI to the point-to-point live TV stream that receives.
A kind of digital signature device comprises:
The signature key generation unit is used to generate PKI and private key Digital Signature Algorithm key is right;
Signature key issues the unit, is used for said private key is issued to content distribution server, uses said private key that the source live TV stream is signed by content distribution server, and the source live TV stream behind the signature is cut into slices; Also be used for said PKI is issued to resource management server, so that point-to-point client is obtained said PKI and used this PKI that the point-to-point live TV stream that receives is carried out signature verification to resource management server.
The system that a kind of point-to-point live TV stream transmits comprises:
Digital signature device is used to generate PKI and private key Digital Signature Algorithm key is right, and this private key is issued to content distribution server, and this PKI is issued to resource management server;
Content distribution server is used to use private key that the source live TV stream is signed, and the source live TV stream behind the signature is cut into slices; Resource management server is used for the maintenance of point-to-point client-side key and issues, so that point-to-point client is obtained PKI and used said PKI that the point-to-point live TV stream that receives is carried out signature verification to resource management server.
A kind of point-to-point client comprises: the signature key acquiring unit is used for obtaining the Digital Signature Algorithm PKI to resource management server; Signature verification unit is used to use the Digital Signature Algorithm PKI that obtains that the point-to-point live TV stream that receives is carried out signature verification.
Can know by above technical scheme; Through in the P2P framework, introducing digital signature technology; It is right to generate the Digital Signature Algorithm key by digital signature device, and private key is issued to content distribution server, and PKI is issued to resource management server; Content distribution server uses private key that the source live TV stream is signed; And the source live TV stream behind the signature cut into slices, the P2P client is obtained PKI and is used the PKI obtain that the P2P live TV stream of reception is carried out signature verification to resource management server, reaches the purpose that prevents that the P2P live TV stream from being distorted; The embodiment of the invention adopts asymmetric key algorithm; Can guarantee that the P2P live broadcast service carries out process P2P live TV stream content and can in transmittance process, not be maliciously tampered; Because the P2P client need not to obtain check code to content distribution server in real time, can avoid the P2P systematic function is caused bigger impact simultaneously.
Description of drawings
The flow chart of the method that a kind of P2P live TV stream that Fig. 1 provides for the embodiment of the invention transmits;
The flow chart of the method that the another kind of P2P live TV stream that Fig. 2 provides for the embodiment of the invention transmits;
The structure chart of a kind of digital signature device that Fig. 3 provides for the embodiment of the invention;
The structure chart of the system that a kind of P2P live TV stream that Fig. 4 provides for the embodiment of the invention transmits;
The structure chart of a kind of P2P client that Fig. 5 provides for the embodiment of the invention.
Embodiment
Below in conjunction with accompanying drawing the technical scheme that the embodiment of the invention provides is described in further detail.
Referring to Fig. 1, the flow chart of the method that a kind of P2P live TV stream that Fig. 1 provides for the embodiment of the invention transmits comprises:
Step 101, it is right to generate PKI and private key Digital Signature Algorithm key.
Before carrying out the direct broadcast band distribution operation, system can flexible configuration digital signature type and signature mode, and wherein, the type of digital signature comprises: all messages signatures, key frame signature, frame head signature or key frame frame head signature; The mode of digital signature comprises: Digital Signature Algorithm, based on the Digital Signature Algorithm of md5-challenge.
If the digital signature type of configuration is the Digital Signature Algorithm based on md5-challenge, system also generates the md5-challenge key.
Step 102 is signed to the source live TV stream according to said private key, the source live TV stream behind the signature is cut into slices, and the live TV stream after will cutting into slices is issued to point-to-point client.
System signs to the source live TV stream according to the digital signature type and the signature mode of configuration.It is as shown in table 1 to make up the signature kind that can carry out according to signature type and signature mode:
System cuts into slices to the source live TV stream after signing, and the live TV stream after will cutting into slices is issued to point-to-point client.
Table 1 signature type and signature mode combination table
Step 103 is sent said PKI to point-to-point client, so that this point-to-point client is carried out signature verification according to this PKI to the point-to-point live TV stream that receives.
The method that the P2P live TV stream that the embodiment of the invention provides transmits is accomplished the digital signature to the P2P live TV stream through generation and distribution, signature generation and the signature verification of digital signature keys, reaches the purpose that prevents that the P2P live TV stream from being distorted in transmittance process.Owing to adopted the digital signature technology of asymmetric key algorithm; It is hereby ensured that the P2P live broadcast service carries out process P2P live TV stream content and can in transport process, not be maliciously tampered; Because the P2P client need not in system, to obtain check code in real time, can avoid the P2P systematic function is caused bigger impact simultaneously.
Referring to Fig. 2, the method that the embodiment of the invention provides another kind of point-to-point live TV stream to transmit comprises:
Before carrying out the direct broadcast band distribution operation, digital signature device can flexible configuration digital signature type and signature mode, and wherein, the type of digital signature comprises: all messages signatures, key frame signature, frame head signature or key frame frame head signature; The mode of digital signature comprises: Digital Signature Algorithm, based on the Digital Signature Algorithm of md5-challenge.For example digital signature type and the signature mode of configuration can for:
The digital signature type: 0x00-does not sign; All message signatures of 0x01-; 0x02-is the key frame signature only; 0x03-is the frame head signature only; 0x04-is key frame frame head signature only.
Signature mode: 0x01-RSA; 0x02-RSA over MD5.
According to the digital signature type and the signature mode of configuration, operate accordingly:
Sign if desired, it is right then to generate the Digital Signature Algorithm key, and for example RSA key is right, and private key is issued to content distribution server, and PKI is issued to resource management server.
If the signature mode of configuration is the Digital Signature Algorithm based on md5-challenge, also generate the md5-challenge key, MD5 key for example, this md5-challenge key is issued to content distribution server and resource management server simultaneously.
In embodiments of the present invention; Content distribution server can be P2P center media server CS-P, is responsible for the digital signature and the section of live TV stream, if under the distributed P 2 P group-network construction; Content distribution server also comprises P2P edge content server ES-P; Source live TV stream section after CS-P will sign and cut into slices is distributed to P2P edge content server ES-P, and ES-P is as the super node of P2P networking, for the P2P client provides service guarantee.
Resource management server is responsible for the maintenance of information of whole net node Peer and the scheduling of P2P client resource as P2P client service management component.
Content distribution server obtains the source live TV stream from live source, according to the digital signature type and the signature mode of configuration, the source live TV stream is signed.Make up the signature kind that to carry out as above shown in the table table 1 according to signature type and signature mode.Step 203, the P2P client is obtained PKI to resource management server, and uses the PKI that obtains that the P2P live TV stream that receives is carried out signature verification.
When the P2P client is initiated live request to P2P portal website, the P2P client is to P2P resource management server request P2P the Resources list, and resource management server carries PKI according to the signature type and the signature mode of configuration in response message.If the signature mode is during based on the Digital Signature Algorithm of md5-challenge, for example RSA over MD5 signature mode also will be carried the md5-challenge key, for example the MD5 key in response message.
The P2P client receives the P2P live TV stream according to P2P the Resources list information of returning from P2P edge content server ES-P or other P2P client.The P2P client is used the PKI that obtains, and for example the RSA PKI carries out signature verification to the P2P live TV stream that receives.
The method that the P2P live TV stream that the embodiment of the invention provides transmits is accomplished the digital signature to the P2P live TV stream through generation and distribution, signature generation and the signature verification of digital signature keys, reaches the purpose that prevents that the P2P live TV stream from being distorted in transmittance process.Owing to adopted the digital signature technology of asymmetric key algorithm; It is hereby ensured that the P2P live broadcast service carries out process P2P live TV stream content and can in transport process, not be maliciously tampered; Because the P2P client need not to obtain check code to content distribution server in real time, can avoid the P2P systematic function is caused bigger impact simultaneously.
Further, the embodiment of the invention is through adopting the digital signature mode based on md5-challenge, can be earlier to wanting the encrypted content signature way again of making a summary, reduce the performance loss that the introducing signature algorithm causes system.And; The P2P client is according to the result of signature verification; Can be to P2P live TV stream record his father nodal information of signature verification failure, and be reported to Content Management System to alarm, and if the signature verification failure; Can receive the P2P live TV stream again from other father node automatically, to ensure user's service and to experience.
The method of the embodiment of the invention both had been applicable to centralized P2P networking, also was applicable to the distributed P2P networking of content-based delivery network (CDN, Content Delivery Network) framework.
The embodiment of the invention also provides a kind of digital signature device, referring to Fig. 3, comprising:
Signature key generation unit 301 is used to generate PKI and private key Digital Signature Algorithm key is right;
Signature key issues unit 302, is used for said private key is issued to content distribution server, uses said private key that the source live TV stream is signed by content distribution server, and the source live TV stream behind the signature is cut into slices; Also be used for said PKI is issued to resource management server,, use this PKI that the point-to-point live TV stream that receives is carried out signature verification by client so that client is obtained said PKI to resource management server.
If based on the Digital Signature Algorithm of md5-challenge:
Said signature key generation unit 301 also is used to generate the md5-challenge key, for example the MD5 key.
Said signature key issues unit 302, also is used for said md5-challenge delivering key to content distribution server, uses this md5-challenge key and said private key that the source live TV stream is signed by content distribution server; Also be used for said md5-challenge key is issued to resource management server simultaneously; So that client is obtained said md5-challenge key to resource management server, and use this md5-challenge key and said PKI that the point-to-point live TV stream that receives is carried out signature verification by client.
Said digital signature device also comprises:
Signature type dispensing unit 303 is used for configurable number word signature type.
Described digital signature type comprises: all message signatures, key frame signature, frame head signature or key frame frame head signature.
Making up the signature kind that can carry out according to signature type and signature mode can be referring to shown in the last table table 1.
This digital signature device both can be arranged on the Content Management System CMS in the P2P construction, also can independently be provided with.
On the basis of above embodiment of the invention method and apparatus, the system that the embodiment of the invention provides a kind of P2P live TV stream to transmit referring to Fig. 4, comprising:
If based on the Digital Signature Algorithm of md5-challenge:
Said digital signature device 401 also is used to generate the md5-challenge key, and this md5-challenge key is issued to content distribution server and resource management server simultaneously;
Said content distribution server 402 also is used to use said md5-challenge key and said private key that the source live TV stream is signed;
Said resource management server 403 also is used for client and to resource management server, obtains said md5-challenge key, and uses this md5-challenge key and said PKI that the point-to-point live TV stream that receives is carried out signature verification by client.
This digital signature device 401 also is used for configurable number word signature type; Described digital signature type comprises: all message signatures, key frame signature, frame head signature or key frame frame head signature;
Said content distribution server 402 also is used for according to the digital signature type of configuration the source live TV stream being signed.
The embodiment of the invention also provides a kind of P2P client, referring to Fig. 5, comprising:
Signature key acquiring unit 501 is used for obtaining the Digital Signature Algorithm PKI to the P2P resource management server;
The said method of obtaining PKI can for: the P2P client is tabulated to resource management server request P2P resource information; The request response of the P2P resource information tabulation that the reception resource management server returns is carried PKI in the described request response message.
If based on the Digital Signature Algorithm of md5-challenge, for example based on the RSA Digital Signature Algorithm of MD5:
Said signature key acquiring unit 501 also is used for obtaining the md5-challenge key to resource management server;
Said signature verification unit 502 also is used to use the md5-challenge key and the said Digital Signature Algorithm PKI that obtain that the point-to-point live TV stream that receives is carried out signature verification.
The P2P client of the embodiment of the invention also comprises:
And live TV stream is receiving element 504 again, receives the P2P live TV stream again from other father node when being used for the signature verification failure.
The embodiment of the invention is in the P2P framework, to introduce digital signature technology, is maliciously tampered to prevent the P2P live TV stream, strengthens the live fail safe of P2P.It is right to generate digital signature keys through digital signature device; Private key is issued to content distribution server; PKI is issued to resource management server; By content distribution server the source live TV stream is carried out digital signature and section, obtain public signature key to the resource management server by the P2P client P2P live TV stream that receives is carried out signature verification, can reach the purpose that prevents that the P2P live TV stream from being distorted.Owing to adopted the digital signature technology of asymmetric key algorithm; It is hereby ensured that P2P live TV stream P2P live TV stream content in transmittance process can not be maliciously tampered; And the P2P client need not to content distribution server, to obtain check code in real time, can avoid the P2P systematic function is caused bigger impact.
Further, the embodiment of the invention generates the md5-challenge key through digital signature device, can be earlier to wanting the encrypted content signature way again of making a summary, reduce the performance loss that the introducing signature algorithm causes system.And; The P2P client can write down his father's nodal information to the P2P live TV stream of signature verification failure, and be reported to Content Management System to alarm according to the result of signature verification; And can receive the P2P live TV stream again from other father node automatically, to ensure user's service and to experience.
Description through above embodiment; Those skilled in the art can be well understood to and need to prove; The embodiment of the invention need not introduced independently functional part; Can realize by the mode that software adds essential general hardware platform, therefore can not cause the influence on the framework existing P2P system architecture.Based on such understanding; The part that the technical scheme of the embodiment of the invention contributes to prior art in essence in other words can be come out with the embodied of software product; This computer software product is stored in the storage medium, comprises that some instructions usefulness are so that prevent system or the described method of each embodiment of P2P client executing the present invention that the P2P live TV stream is distorted.Here alleged storage medium, as: ROM/RAM, disk, CD etc.
More than method, system, digital signature device and the P2P client of the P2P live TV stream transmission that the embodiment of the invention provided have been carried out detailed introduction, the explanation of embodiment just is used for help understanding method of the present invention and thought thereof; Any technical staff who is familiar with the present technique field can expect changing or replacement in the technical scope that the present invention discloses easily, all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion by said protection range with claim.
Claims (15)
1. the method that point-to-point live TV stream transmits is characterized in that, comprising:
Digital signature device generation PKI and private key Digital Signature Algorithm key are right, and private key is issued to content distribution server, and PKI is issued to resource management server;
Content distribution server is signed to the source live TV stream according to said private key, the source live TV stream behind the signature is cut into slices, and the live TV stream after will cutting into slices is issued to point-to-point client;
Resource management server sends said PKI to point-to-point client, so that this point-to-point client is carried out signature verification according to this PKI to the point-to-point live TV stream that receives.
2. method according to claim 1 is characterized in that, said method also comprises:
Digital signature device generates the md5-challenge key, and said md5-challenge key is issued to content distribution server and resource management server respectively;
Content distribution server is signed to the source live TV stream according to said md5-challenge key and said private key, the source live TV stream behind the signature is cut into slices, and the live TV stream after will cutting into slices is issued to point-to-point client;
Resource management server sends said md5-challenge key to point-to-point client, so that this point-to-point client uses this md5-challenge key and said PKI that the point-to-point live TV stream that receives is carried out signature verification.
3. method according to claim 1 and 2 is characterized in that, said method also comprises:
Digital signature device configurable number word signature type;
And according to the configuration the data signature type source live TV stream is signed.
4. method according to claim 3 is characterized in that, said digital signature type comprises: all message signatures, key frame signature, frame head signature or key frame frame head signature.
5. method according to claim 1 and 2 is characterized in that, said method also comprises:
If the signature verification failure, the father node information of the point-to-point live TV stream of point-to-point client records, and be reported to Content Management System to alarm.
6. method according to claim 5 is characterized in that, said method also comprises:
If the signature verification failure, point-to-point client receives point-to-point live TV stream again from other father node.
7. a digital signature device is characterized in that, comprising:
The signature key generation unit is used to generate PKI and private key Digital Signature Algorithm key is right;
Signature key issues the unit, is used for said private key is issued to content distribution server, uses said private key that the source live TV stream is signed by content distribution server, and the source live TV stream behind the signature is cut into slices; Also be used for said PKI is issued to resource management server, so that point-to-point client is obtained said PKI and used this PKI that the point-to-point live TV stream that receives is carried out signature verification to resource management server.
8. device according to claim 7 is characterized in that,
Said signature key generation unit also is used to generate the md5-challenge key;
Said signature key issues the unit, also is used for said md5-challenge delivering key to content distribution server, uses this md5-challenge key and said private key that the source live TV stream is signed by content distribution server; Also be used for said md5-challenge key is issued to resource management server simultaneously; So that point-to-point client is obtained said md5-challenge key to resource management server, so that point-to-point client uses this md5-challenge key and said PKI that the point-to-point live TV stream that receives is carried out signature verification.
9. according to claim 7 or 8 described devices, it is characterized in that said device also comprises:
The signature type dispensing unit is used for configurable number word signature type.
10. the system that point-to-point live TV stream transmits is characterized in that, comprising:
Digital signature device is used to generate PKI and private key Digital Signature Algorithm key is right, and this private key is issued to content distribution server, and this PKI is issued to resource management server;
Content distribution server is used to use private key that the source live TV stream is signed, and the source live TV stream behind the signature is cut into slices;
Resource management server is used for the maintenance of point-to-point client-side key and issues, so that point-to-point client is obtained PKI and used said PKI that the point-to-point live TV stream that receives is carried out signature verification to resource management server.
11. system according to claim 10 is characterized in that,
Said digital signature device also is used to generate the md5-challenge key, and this md5-challenge key is issued to content distribution server and resource management server simultaneously;
Said content distribution server also is used to use said md5-challenge key and said private key that the source live TV stream is signed;
Said resource management server; Also be used for point-to-point client and to resource management server, obtain said md5-challenge key, and use this md5-challenge key and said PKI that the point-to-point live TV stream that receives is carried out signature verification by point-to-point client.
12. according to claim 10 or 11 described systems, it is characterized in that,
Said digital signature device also is used for configurable number word signature type;
Said content distribution server also is used for according to the digital signature type of configuration the source live TV stream being signed.
13. a point-to-point client is characterized in that, comprising:
The signature key acquiring unit is used for obtaining the Digital Signature Algorithm PKI to resource management server, and wherein, said PKI generates and be handed down to said resource management server by digital signature device;
Signature verification unit; Be used to use the Digital Signature Algorithm PKI that obtains that the point-to-point live TV stream that receives is carried out signature verification; Said point-to-point live TV stream is the source live TV stream to be signed according to private key by content distribution server; To the live TV stream that the source live TV stream behind the signature is cut into slices and obtained, said private key generates and is handed down to said content distribution server by said digital signature device.
14. client according to claim 13 is characterized in that,
Said signature key acquiring unit also is used for obtaining the md5-challenge key to resource management server;
Said signature verification unit also is used for according to md5-challenge key that obtains and said Digital Signature Algorithm PKI the point-to-point live TV stream that receives being carried out signature verification.
15., it is characterized in that said client also comprises according to claim 13 or 14 described clients:
The record Alarm Unit writes down the father node information of point-to-point live TV stream when being used for the signature verification failure, and is reported to Content Management System to alarm;
Live TV stream is receiving element again, receives point-to-point live TV stream again from other father node when being used for the signature verification failure.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200810146670 CN101667999B (en) | 2008-09-04 | 2008-09-04 | Method and system for transmitting peer-to-peer broadcast stream, data signature device and client |
| PCT/CN2009/072786 WO2010025638A1 (en) | 2008-09-04 | 2009-07-16 | Method, equipment and system of peer to peer live broadcast stream transfer |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200810146670 CN101667999B (en) | 2008-09-04 | 2008-09-04 | Method and system for transmitting peer-to-peer broadcast stream, data signature device and client |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101667999A CN101667999A (en) | 2010-03-10 |
| CN101667999B true CN101667999B (en) | 2012-09-05 |
Family
ID=41796733
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200810146670 Active CN101667999B (en) | 2008-09-04 | 2008-09-04 | Method and system for transmitting peer-to-peer broadcast stream, data signature device and client |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101667999B (en) |
| WO (1) | WO2010025638A1 (en) |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101980500B (en) * | 2010-11-08 | 2013-11-13 | 中国电信股份有限公司 | Digital signature-based point-to-point flow control method and system |
| CN102868912A (en) * | 2012-08-16 | 2013-01-09 | 北京视博数字电视科技有限公司 | Method and system for media content transmission based on CDN (Content Distribution Network) and P2P (Peer to Peer) converged infrastructure |
| CN105429960A (en) * | 2015-10-29 | 2016-03-23 | 东莞酷派软件技术有限公司 | Method and device for intelligent household terminal authentication |
| CN107370712A (en) * | 2016-05-11 | 2017-11-21 | 中兴通讯股份有限公司 | A kind of code stream distorts monitoring method, device and communication system |
| CN108600776B (en) * | 2017-09-15 | 2021-09-03 | 杭州趣看科技有限公司 | System and method for safe broadcast control |
| CN110427781A (en) * | 2019-07-16 | 2019-11-08 | 浙江大华技术股份有限公司 | Tamper resistant method, terminal device and the storage medium of media data |
| CN112672192A (en) * | 2020-12-28 | 2021-04-16 | 上海成思信息科技有限公司 | IPTV supervision method |
| CN113453038B (en) * | 2021-06-25 | 2022-03-29 | 桂林电子科技大学 | Effectiveness optimal collaborative cache management method under CDN-P2P hybrid architecture |
| CN114584798A (en) * | 2022-03-02 | 2022-06-03 | 深圳禾苗通信科技有限公司 | Private customized live broadcast method and device, computer equipment and storage medium |
| EP4387166A1 (en) * | 2022-12-14 | 2024-06-19 | Streamroot | Method of checking segments in a peer-to-peer network |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1109351A3 (en) * | 1999-12-17 | 2002-06-19 | International Computers Ltd. | Cryptographic key management |
| CN1791215A (en) * | 2005-12-29 | 2006-06-21 | 清华大学 | Network television content safety monitoring and managing method |
| CN101018129A (en) * | 2006-12-31 | 2007-08-15 | 华东师范大学 | Public security broadcast control media management and authentication method for recognizing non tampering integrity |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1633068B (en) * | 2004-12-31 | 2010-10-06 | 北京中星微电子有限公司 | A method of media stream transmission in point-to-point communication |
| CN101247409A (en) * | 2008-03-21 | 2008-08-20 | 中国科学院电工研究所 | Live broadcast stream media authentication method based on P2P network |
-
2008
- 2008-09-04 CN CN 200810146670 patent/CN101667999B/en active Active
-
2009
- 2009-07-16 WO PCT/CN2009/072786 patent/WO2010025638A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1109351A3 (en) * | 1999-12-17 | 2002-06-19 | International Computers Ltd. | Cryptographic key management |
| CN1791215A (en) * | 2005-12-29 | 2006-06-21 | 清华大学 | Network television content safety monitoring and managing method |
| CN101018129A (en) * | 2006-12-31 | 2007-08-15 | 华东师范大学 | Public security broadcast control media management and authentication method for recognizing non tampering integrity |
Non-Patent Citations (1)
| Title |
|---|
| JP特开2005-311545A 2005.11.04 |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2010025638A1 (en) | 2010-03-11 |
| CN101667999A (en) | 2010-03-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101667999B (en) | Method and system for transmitting peer-to-peer broadcast stream, data signature device and client | |
| US8447970B2 (en) | Securing out-of-band messages | |
| US9485096B2 (en) | Encryption / decryption of data with non-persistent, non-shared passkey | |
| US20130326213A1 (en) | Method and system for automatic generation of context-aware cover message | |
| CN104506483A (en) | Method for encrypting and decrypting information and managing secret key as well as terminal and network server | |
| AU2014257953A1 (en) | Method performed by at least one server for processing a data packet from a first computing device to a second computing device to permit end-to-end encryption communication | |
| WO2013006296A1 (en) | Methods and apparatus for secure data sharing | |
| CN105376261B (en) | Encryption method and system for instant messaging message | |
| US20100266127A1 (en) | Systems and methods for one-to-many secure video encryption | |
| SE539602C2 (en) | Generating a symmetric encryption key | |
| CN111082929A (en) | Method for realizing encrypted instant communication | |
| CN201919030U (en) | System for storing and managing network files | |
| CN104200154A (en) | Identity based installation package signing method and identity based installation package signing device | |
| EP3282670B1 (en) | Maintaining data security in a network device | |
| CN111049738B (en) | E-mail data security protection method based on hybrid encryption | |
| CN102088352A (en) | Data encryption transmission method and system for message-oriented middleware | |
| CN112637230A (en) | Instant messaging method and system | |
| EP2448172B1 (en) | Method and system for delaying transmission of media information in internet protocol (ip) multimedia subsystem | |
| CN102045343A (en) | DC (Digital Certificate) based communication encrypting safety method, server and system | |
| CN112800462A (en) | Method for storing confidential information in cloud computing environment | |
| CN111800784A (en) | Block chain cloud service system based on cloud computing | |
| CN104618355B (en) | A kind of safety storage and the method for transmission data | |
| CN109194650B (en) | Encryption transmission method based on file remote encryption transmission system | |
| CN115001871A (en) | File encryption sharing method and system based on block chain technology | |
| CN101052001B (en) | System and method for P2P network information safety sharing |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |