CN101727547A - Device and method used for protecting DRM license file - Google Patents
Device and method used for protecting DRM license file Download PDFInfo
- Publication number
- CN101727547A CN101727547A CN200810175162A CN200810175162A CN101727547A CN 101727547 A CN101727547 A CN 101727547A CN 200810175162 A CN200810175162 A CN 200810175162A CN 200810175162 A CN200810175162 A CN 200810175162A CN 101727547 A CN101727547 A CN 101727547A
- Authority
- CN
- China
- Prior art keywords
- drm
- license file
- drm license
- mobile device
- file
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention relates to a device and a method used for protecting a DRM license file. Mobile equipment comprises an IMEI number memory, a read-only memory, a DRM agent, a DRM license file memory, a key forming unit and an encryption/decryption unit, wherein the IMEI number memory is used for storing an IMET number of the mobile equipment; the read-only memory is used for storing a solidified special number when the mobile equipment leaves a factory; the DRM agent is used for managing the DRM license file; the DRM license file memory is used for storing the DRM license file; the key forming unit is used for extracting the IMET number and the special number from the IMEI number memory and the read-only memory to form a key; and the encryption/decryption unit is used for encrypting the appointed DRM license file by using the formed key when the DRM agent stores the appointed DRM license file into the DRM license file memory, and storing the encrypted DRM license file into the DRM license file memory. By using the device and the method, the DRM license file cannot be used in other equipment expect the mobile equipment which is permitted to use the DRM license file.
Description
Technical field
The present invention relates to a kind of DRM (digital copyright management: the apparatus and method of license file Digital RightManagement) that is used to protect.
Background technology
(digital copyright management: be a kind of method of digital copyright management Digital Right Management), it controls the use of user to content by licence to DRM.
The DRM file comprises two files: content file and DRM license file.Content file comprises the content of having encrypted that can use for the user and can duplicate arbitrarily and propagate.The key that the DRM license file comprises DRM licence (DRM License) and is used for the included content of having encrypted of content file is decrypted.
The DRM licence is used for controlling the use of user to the included content of content file.The DRM licence comprises three types: based on the DRM licence of access times, time-based DRM licence and based on during the DRM licence.
Comprise the access times that permission number of times that the user of content supplier's definition can use content file and user have used to content file based on the DRM licence of access times, and when user's access times surpassed the permission number of times, the user just can not re-use content file.For example, for the DRM file that its content file is the MP3 music data, if the included permission number of times of the DRM licence of the DRM license file of this DRM file is 10 times, then the user can only play this content file at most 10 times.
Time-based DRM licence comprises that the user of content supplier's definition can use the permitted hours of content file.For example, for its content file DRM file that is the MP3 music data, if the included permitted hours of DRM licence of the DRM license file of this DRM file is to assign to 10: 40 on the 20th July in 2008 from 1 day 10: 30 July in 2008, then the user can only play this content file in this permitted hours.
Based on during the DRM licence comprise that the user of content supplier definition can use between the license terms of content file, the zero-time between this license terms is the time that the user uses content file for the first time.For example, for its content file DRM file that is the MP3 music data, if between the included license terms of the DRM licence of the DRM license file of this DRM file be 30 days and user to play this content file for the first time be 11: 30 on the 1st July in 2008, then the user just can not play this content file after 11: 30 on the 30th July in 2008.
At present, when the DRM file is downloaded on the mobile device from the outside, DRM in mobile device agency stores the content file that comprises the content of having encrypted in this DRM file on the RAM (random access memory) card (internal storage) or external memory card (external memory storage) of this mobile device into, and the DRM license file in this DRM file is deposited with form expressly in the collapse directories on the RAM (random access memory) card of this mobile device.
On mobile device, when the user wants to use content file in (for example playing) DRM file by application program, DRM agency in the mobile device reads the DRM license file of this DRM file from the collapse directories of RAM (random access memory) card, judge according to the DRM licence in this DRM license file whether the user can use this content file, when judged result when being, utilize key in this DRM license file to decipher the content of having encrypted in this content file, and the content of being deciphered is sent to this application program use for the user.
Because the DRM license file is stored in the collapse directories on the RAM (random access memory) card of mobile device, so domestic consumer cannot see the DRM license file, thereby domestic consumer does not have method to duplicate and transmits it.Simultaneously, the application program in the mobile device as multimedia message and bluetooth etc., can judge earlier all before the file that will outwards send whether the file that is sent is the DRM license file, and if judged result for being then to forbid outwards sending this document.
Yet, now a lot of computer hackers can log on mobile device and can find the DRM license file from the collapse directories of the RAM (random access memory) card of mobile device in the mode of telnet by some method, thereby computer hacker can be duplicated the DRM license file and be forwarded on computing machine, other mobile devices or the internet from mobile device.Because the DRM license file is preserved with the plaintext form, so after the DRM license file is replicated and is forwarded on computing machine, other mobile devices or the internet, the content file that any domestic consumer can use original permission specific user to use by this DRM license file that duplicates and transmit out, perhaps the user can reach unlimited time or unlimited use content file by the DRM licence of distorting in the DRM license file, thereby DRM mechanism has just lost meaning.
Summary of the invention
Consider the problems referred to above of prior art; the object of the present invention is to provide a kind of apparatus and method that are used to protect the DRM license file; utilize this apparatus and method, can not use this DRM license file in the miscellaneous equipment outside the mobile device of licensed use DRM license file.
In order to realize purpose of the present invention,, comprising according to a kind of device that is used at mobile device protection DRM license file of the present invention:
Key forms the unit, is used for extracting the particular number that is solidificated in when the IMEI of described mobile device and described mobile device dispatch from the factory the described mobile device from described mobile device, to form a key; And
Encryption/decryption element is used for utilize the key of described formation to encrypt described DRM license file, and the DRM license file after will encrypting being stored in the described mobile device when DRM license file of described mobile device indication storage.
In order to realize purpose of the present invention,, comprising according to a kind of mobile device of the present invention:
The IMEI storer is used to store the IMEI of described mobile device;
ROM (read-only memory), the particular number that solidifies when being used to store described mobile device and dispatching from the factory;
The DRM agency is used for the managing drm license file;
The DRM license file memory is used to store the DRM license file;
Key forms the unit, is used for extracting described IMEI and described particular number from described IMEI storer with from described ROM (read-only memory), to form a key; And
Encryption/decryption element, the DRM license file that is used for acting on behalf of an appointment of desire storage as described DRM is when described DRM license file memory, utilize the key of described formation to encrypt the DRM license file of described appointment, and the DRM license file after will encrypting is stored in the described DRM license file memory.
In order to realize purpose of the present invention,, comprise step according to a kind of method that is used to protect the DRM license file of the present invention:
When DRM license file of mobile device desire storage, be solidificated in the particular number in the described mobile device when IMEI of the described mobile device of extraction and described mobile device dispatch from the factory from described mobile device, to form a key;
Utilize the key of described formation to encrypt described DRM license file; And
DRM license file after this encryption is stored in the described mobile device.
Description of drawings
Fig. 1 shows the structural representation according to the mobile device of one embodiment of the invention.
Fig. 2 shows the method flow diagram according to the reception of one embodiment of the invention and storage DRM file.
Fig. 3 shows the method flow diagram according to the use DRM file of one embodiment of the invention.
Embodiment
Below, will describe each embodiment of the present invention in conjunction with the accompanying drawings in detail.
According to one embodiment of the present of invention, after receiving the DRM file, earlier this DRM license file is encrypted before the DRM license file of mobile device in the DRM file of this reception of storage from the outside.Here, difficult point is how to produce and store the key that is used to encrypt the DRM license file.
The key that is used to encrypt the DRM license file need satisfy following two conditions: first, after DRM license file after using this secret key encryption was replicated and is transmitted to miscellaneous equipment, the key that is produced according to the present embodiment disclosed method can not be used for deciphering the DRM license file after this encryption; The second, the key that is used to encrypt the DRM license file can not be obtained by the user, otherwise the user can obtain this key and the DRM license file after this encryptions of deciphering on the miscellaneous equipment, propagates this DRM license file in the mode of plaintext then.
In order to satisfy first condition, present embodiment uses the IMEI of unique identification mobile device to be used as being used to encrypting the part of the key of DRM license file.Because the user can obtain the IMEI of this mobile device by input " * #06# " in mobile device, so in order to satisfy second condition, IMEI can only be as the part of the key that is used to encrypt the DRM license file, also needs the another one particular number to be used as being used to encrypting another part of the key of DRM license file.In order to narrate conveniently, below this particular number is called number A.
In addition, in order to satisfy second condition, number A can not be stored in the file system of mobile device, otherwise computer hacker and user are easy to obtain number A.In the present embodiment, number A is stored among the E2PROM (ROM (read-only memory)) of mobile device, and number A is solidificated in when mobile device dispatches from the factory among this E2PROM.Generally, the number A that mobile device solidified of same model is identical, so in order to satisfy first condition, number A is also only with a part that acts on the key of encrypting the DRM license file.
From the above; the IMEI of mobile device and be solidificated in the key that is used to encrypt the DRM license file that number A among the E2PROM of mobile device has formed each mobile device; it is unique with respect to other mobile device that thereby being used to of each mobile device encrypted the key of DRM license file; and; owing to number A computer hacker and domestic consumer among the E2PROM that is solidificated in mobile device can not obtain from mobile device; so it is unknowable outside each mobile device that being used to of each mobile device encrypted the key of DRM license file; even thereby use the DRM license file that is used to encrypt after the secret key encryption of DRM license file of this mobile device to be replicated and to be forwarded to after the miscellaneous equipment in each mobile device; the DRM license file of this encryption can not be deciphered by computer hacker and domestic consumer, thereby has reached the purpose of protection DRM license file.
Fig. 1 shows the structural representation according to the mobile device of one embodiment of the invention.As shown in Figure 1, mobile device 100 comprises DRM agency 110, content file storer 120, DRM license file memory 130, IMEI storer 140, E2PROM (ROM (read-only memory)) 150 and DRM license file protective device 160.
Wherein, DRM agency 110 is used for the managing drm file, i.e. content file in the managing drm file and DRM license file.
Content file storer 120 is used for storing the content file of each DRM file.
DRM license file memory 130 is used for storing the DRM license file of each DRM file, and the DRM license file of this storage is through encrypting.
IMEI storer 140 is used to store the IMEI of mobile device 100.
E2PROM 150 is used to store the number A as the part of the key that is used to encrypt the DRM license file.
DRM license file protective device 160 comprises that further key forms unit 164 and encryption/decryption element 168.Wherein, key forms IMEI and the number A that unit 164 is used for extracting respectively from IMEI storer 140 and E2PROM 150 mobile device 100, to be formed for encrypting the key M of DRM license file.Encryption/decryption element 168 is used for when DRM acts on behalf of 110 desires and stores a DRM license file into DRM license file memory 130, utilizing key to form unit 164 formed key M encrypts this DRM license file and it is stored in the DRM license file memory 130, and when DRM acts on behalf of 110 desires extract a DRM license file of having encrypted from DRM license file memory 130, utilize key to form unit 164 formed key M and decipher this DRM license file of having encrypted and send it to DRM agency 110.
Fig. 2 shows the method flow diagram according to the reception of one embodiment of the invention and storage DRM file.As shown in Figure 2, when the DRM of mobile device 100 agency 110 when outside (for example browser) receives a DRM file T1, DRM agency 110 stores the content file among the DRM file T1 in the content file storer 120 (step S200).
Then, DRM agency 110 DRM license file and indication (step S210) that this DRM license file is stored in expression in DRM license file protective device 160 transmission DRM file T1.
After DRM license file protective device 160 receives DRM license file and indication from DRM agency 110; key in the DRM license file protective device 160 forms unit 164 extracts mobile device 100 from IMEI storer 140 and E2PROM 150 IMEI and number A, to form key M (step S220).
Then, the encryption/decryption element 168 in the DRM license file protective device 160 utilizes formed key M to encrypt the DRM license file (step S230) of this reception.
At last, the DRM license file after the encryption/decryption element 168 in the DRM license file protective device 160 will be encrypted stores (step S240) in the DRM license file memory 130 into.
Fig. 3 shows the method flow diagram according to the use DRM file of one embodiment of the invention.As shown in Figure 3; when DRM agency 110 receives the expression desire when using the request of a DRM file D1 from an application program P, DRM agency 110 sends the indication (step S300) that the DRM license file of DRM file D1 is extracted in an expression to DRM license file protective device 160.
After receiving this indication from DRM agency 110, the key in the DRM license file protective device 160 forms unit 164 extracts mobile device 100 from IMEI storer 140 and E2PROM 150 IMEI and number A, to form key M (step S310).
Then; encryption/decryption element 168 in the DRM license file protective device 160 extracts the DRM license file of DRM file D1 from DRM license file memory 130, and utilizes formed key M to decipher the DRM license file (step S320) of the DRM file D1 of this extraction.
The DRM license file of the DRM file D1 of encryption/decryption element 168 in the DRM license file protective device 160 after this deciphering sends to DRM agency 110 (step S330).
Then, behind the DRM license file of DRM file D1 after receiving this deciphering from encryption/decryption element 168, DRM agency 110 judges according to the DRM licence in the DRM license file of DRM file D1 whether application program P can use DRM file D1 (promptly using the content file of DRM file D1) (step S340).
Particularly, when the DRM licence in the DRM license file of DRM file D1 is based on the DRM licence of access times, whether the access times in DRM agency 110 definite these DRM licences are more than or equal to the permission number of times in the DRM licence, if determine that the result is for being, then DRM agency 110 judges that application program P can not re-use DRM file D1, otherwise DRM agency 110 judges that application program P can also re-use DRM file D1.
When the DRM licence in the DRM license file of DRM file D1 is based on the DRM licence of time, DRM agency 110 determines that the current time are whether in the permitted hours in this DRM licence, if determine that the result is for being, then DRM agency 110 judges that application program P can also use DRM file D1, otherwise DRM agency 110 judges that application program P can not re-use DRM file D1.
During DRM licence during the DRM licence in the DRM license file of DRM file D1 is based on, DRM agency 110 determines whether to have had in these DRM licences the zero-time between license terms in this DRM licence.If determine the result for negative, then DRM agency 110 judges that application program P can also use DRM file D1.If determine that the result is for affirming, then DRM agency 110 determines that further the current time are whether between the zero-time in this DRM licence and license terms in the defined time range, if determine that further the result is for affirming, then DRM agency 110 judges that application program P can also use DRM file D1, otherwise DRM agency 110 judges that application program P can not use DRM file D1.
If in step S340, after DRM agency 110 judged that application program P can not use DRM file D1, then DRM agency 110 sent the message (step S350) that an expression can not be used DRM file D1 to application program P.Then, flow process finishes.
If in step S340, after DRM agency 110 judged that application program P can use DRM file D1, then DRM agency 110 read the content file (step S360) of DRM file D1 from content file storer 120.
Then, DRM agency 110 utilize the key in the DRM license file of DRM file D1 decipher this read the content file of DRM file D1, and the content file after this deciphering sent to application program P (step S370).
If it is for the first time that DRM licence during the DRM licence in the DRM license file of DRM file D1 is based on and current application program P use DRM file D1, then increase the current time in the DRM licence of DRM agency 110 in the DRM license file of DRM file D1, to upgrade the DRM license file of DRM file D1, if perhaps the DRM licence in the DRM license file of DRM file D1 is based on the DRM licence of access times, then DRM agency 110 adds 1 to the access times in the DRM licence in the DRM license file of DRM file D1, with the DRM license file (step S380) of renewal DRM file D1.
DRM license file after the DRM license file of the DRM file D1 of DRM agency 110 after DRM license file protective device 160 sends this renewal and expression will be upgraded stores the indication (step S390) in the DRM license file memory 130 into.
After DRM license file protective device 160 receives DRM license file and indication from DRM agency 110; key in the DRM license file protective device 160 forms unit 164 extracts mobile device 100 from IMEI storer 140 and E2PROM 150 IMEI and number A, to form key M (step S400).
Then, the encryption/decryption element 168 in the DRM license file protective device 160 utilizes formed key M to encrypt the DRM license file (step S410) of this reception.
At last, the DRM license file after the encryption/decryption element 168 in the DRM license file protective device 160 will be encrypted stores (step S420) in the DRM license file memory 130 into.
It will be appreciated by those skilled in the art that the above embodiment of the present invention the methods and apparatus disclosed, can under the situation that does not depart from invention essence, make various modifications and distortion.Therefore, protection scope of the present invention is limited by appending claims.
Claims (6)
1. device that is used at mobile device protection DRM license file comprises:
Key forms the unit, is used for extracting the particular number that is solidificated in when the IMEI of described mobile device and described mobile device dispatch from the factory the described mobile device from described mobile device, to form a key; And
Encryption/decryption element is used for utilize the key of described formation to encrypt described DRM license file, and the DRM license file after will encrypting being stored in the described mobile device when DRM license file of described mobile device indication storage.
2. device as claimed in claim 1, wherein
Described encryption/decryption element is further used for when a DRM license file of having encrypted is extracted in described mobile device indication, utilize the key of described formation to decipher the described DRM license file of having encrypted, and the DRM license file that will decipher send to described mobile device.
3. mobile device comprises:
The IMEI storer is used to store the IMEI of described mobile device;
ROM (read-only memory), the particular number that solidifies when being used to store described mobile device and dispatching from the factory;
The DRM agency is used for the managing drm license file;
The DRM license file memory is used to store the DRM license file;
Key forms the unit, is used for extracting described IMEI and described particular number from described IMEI storer with from described ROM (read-only memory), to form a key; And
Encryption/decryption element, the DRM license file that is used for acting on behalf of an appointment of desire storage as described DRM is when described DRM license file memory, utilize the key of described formation to encrypt the DRM license file of described appointment, and the DRM license file after will encrypting is stored in the described DRM license file memory.
4. mobile device as claimed in claim 3, wherein
Described encryption/decryption element is further used for extracting when being stored in one in the described DRM license file memory DRM license file of having encrypted when described DRM acts on behalf of desire, utilize the key of described formation to decipher the described DRM license file of having encrypted, and the DRM license file after will deciphering send to described DRM agency.
5. method that is used to protect the DRM license file comprises step:
When DRM license file of mobile device desire storage, be solidificated in the particular number in the described mobile device when IMEI of the described mobile device of extraction and described mobile device dispatch from the factory from described mobile device, to form a key;
Utilize the key of described formation to encrypt described DRM license file; And
DRM license file after this encryption is stored in the described mobile device.
6. method as claimed in claim 5 wherein, also comprises step:
When described mobile device desire is extracted a DRM license file of having encrypted, utilize the key of described formation to decipher the described DRM license file of having encrypted; And
DRM license file after this deciphering is sent to described mobile device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810175162A CN101727547A (en) | 2008-10-30 | 2008-10-30 | Device and method used for protecting DRM license file |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810175162A CN101727547A (en) | 2008-10-30 | 2008-10-30 | Device and method used for protecting DRM license file |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101727547A true CN101727547A (en) | 2010-06-09 |
Family
ID=42448427
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200810175162A Pending CN101727547A (en) | 2008-10-30 | 2008-10-30 | Device and method used for protecting DRM license file |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101727547A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102368850A (en) * | 2011-10-13 | 2012-03-07 | 福州博远无线网络科技有限公司 | Method for carrying out encryption and decryption on video file on mobile phone |
| WO2013182103A2 (en) * | 2013-05-08 | 2013-12-12 | 中兴通讯股份有限公司 | Encryption and decryption terminal and encryption and decryption method applied to same |
| CN104113540A (en) * | 2014-07-14 | 2014-10-22 | 合肥工业大学 | Digital music copy-proof system for android platform |
| CN108243158A (en) * | 2016-12-26 | 2018-07-03 | 中移(苏州)软件技术有限公司 | A kind of method and apparatus of safety certification |
-
2008
- 2008-10-30 CN CN200810175162A patent/CN101727547A/en active Pending
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102368850A (en) * | 2011-10-13 | 2012-03-07 | 福州博远无线网络科技有限公司 | Method for carrying out encryption and decryption on video file on mobile phone |
| WO2013182103A2 (en) * | 2013-05-08 | 2013-12-12 | 中兴通讯股份有限公司 | Encryption and decryption terminal and encryption and decryption method applied to same |
| WO2013182103A3 (en) * | 2013-05-08 | 2014-03-20 | 中兴通讯股份有限公司 | Encryption and decryption terminal and encryption and decryption method applied to same |
| CN104144411A (en) * | 2013-05-08 | 2014-11-12 | 中兴通讯股份有限公司 | Encryption and decryption terminal and encryption and decryption method applied to encryption terminal and decryption terminal |
| CN104144411B (en) * | 2013-05-08 | 2019-09-24 | 南京中兴新软件有限责任公司 | Encryption, decryption terminal and the encryption and decryption approaches applied to terminal |
| CN104113540A (en) * | 2014-07-14 | 2014-10-22 | 合肥工业大学 | Digital music copy-proof system for android platform |
| CN104113540B (en) * | 2014-07-14 | 2018-03-13 | 合肥工业大学 | Towards the anti-COPY systems of digital music of Android platform |
| CN108243158A (en) * | 2016-12-26 | 2018-07-03 | 中移(苏州)软件技术有限公司 | A kind of method and apparatus of safety certification |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP1985057B1 (en) | Method of transferring digital rights | |
| CN102024128B (en) | For equipment and the method for digital copyright management | |
| CN101271501B (en) | Encryption and decryption method and device of digital media file | |
| TWI420339B (en) | Software authorization system and method | |
| CN100472550C (en) | Method for generating licence and method and apparatus for providing contents using the same | |
| CN101496327B (en) | Rights management system for streamed multimedia content | |
| CN101268651B (en) | Rights management system for streamed multimedia content | |
| US20120170740A1 (en) | Content protection apparatus and content encryption and decryption apparatus using white-box encryption table | |
| CN103078858A (en) | Web service and signature certificate-based software trial authorization method | |
| CN101395843A (en) | Digital rights management using trusted time | |
| CN102073826A (en) | System and method for digital copyright management using lightweight digital watermark adding component | |
| CN101262599A (en) | Method and system for data processing | |
| CN103942470A (en) | Electronic audio-visual product copyright management method with source tracing function | |
| CN101140610B (en) | Contents decryption method using DRM card | |
| SE1150755A1 (en) | Device-independent processing of encrypted information | |
| CN101425112B (en) | Digital exequatur sending system and digital work decipher operation method | |
| CN101547101B (en) | Method and device for generating, transmitting, and receiving right object | |
| CN102819704A (en) | Document copyright protection method for intelligent terminal | |
| CN107306254B (en) | Digital copyright protection method and system based on double-layer encryption | |
| CN101501724A (en) | Rights management system for streamed multimedia content | |
| CN101727547A (en) | Device and method used for protecting DRM license file | |
| KR100725918B1 (en) | System and method of issuing licenses to protect the multi-level distributed digital content | |
| CN103577726A (en) | Digital right management method based on equipment and re-transaction method | |
| CN101827108B (en) | Method for describing and acquiring right object of digital work in digital right management | |
| JP2007193477A (en) | Content protection device and program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20100609 |