CN102609641A - DRM (digital rights management) system based on distributed keys - Google Patents
DRM (digital rights management) system based on distributed keys Download PDFInfo
- Publication number
- CN102609641A CN102609641A CN2011104630069A CN201110463006A CN102609641A CN 102609641 A CN102609641 A CN 102609641A CN 2011104630069 A CN2011104630069 A CN 2011104630069A CN 201110463006 A CN201110463006 A CN 201110463006A CN 102609641 A CN102609641 A CN 102609641A
- Authority
- CN
- China
- Prior art keywords
- card
- drm
- client
- safety equipment
- portable terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a DRM controller, which comprises a client which communicates with a server and is installed on a mobile terminal, and a security device capable of communicating with the client. The DRM controller is characterized in that the client is connected to the security device via interfaces, and the security device is a key type device provided with a function of an IC (integrated circuit) card. By the method, resource requirement of hardware is lowered, performance bottleneck is eliminated, and convenience is brought to software update and maintenance. Meanwhile, by integrally combining a mobile payment card with a CMMB (China mobile multimedia broadcasting) card, existing infrastructure is fully utilized, seamless integration with mobile payment is realized, and accordingly, the DRM system based on the distributed key is convenient in implementation and use. Moreover, the security device can support online DRM system by the aid of low-cost communicator, so that uniformity of mobile network and Internet is realized, implementation and management cost is lowered greatly, and evident quality and price advantages are achieved.
Description
Technical field
The present invention relates to a kind of DRM system, especially relate to a kind of DRM system based on distributed cipher key.
Background technology
Along with the fast development of mobile Internet, vast digital content provider is also endured the invasion of problem of piracy to the fullest extent when benefiting from the internet high speed development.Because digital content is duplicated easily, to be convenient to propagate, digital content is pirate rampant on the mobile Internet, and legal digital content can not get effective copyright protection, and traditional digital publishing rights system is difficult to carry out.
Copyrighted digital content encipherment protection DRM (Digital Rights Management) is technology and the correlation technique that is used for strengthening protection digitized content (like audio/video program, Word, PDF document etc.).The principle of work of DRM technology is at first to set up the digital program authorization center.Digital program content after the encoding compression can utilize key (Key) to carry out encipherment protection (lock), and the digital program head of encryption is being deposited the URL of KeyID and program authorization center.The user according to the KeyID and the URL information of program head, just can see relevant secret key decryption (unlock) off after the checking mandate through the digital program authorization center in a sowing time, and program can be play.
The final goal of DRM is to use family payment copyright fee, and is along with the fast development of mobile payment technology, that DRM and the combination of mobile payment solution is imperative.On April 19th, 2007, disclosed No. 200710096485.9 Chinese invention patents disclosed the contents decryption method that uses the DRM card; To from the DRM card of storage DRM software, the method for the contents decryption that the host apparatus of connection receives comprises: receive the content information of encrypting and permit the contents decryption request from host apparatus; Carry out and the corresponding DRM software of said content information, and decipher the content that is received; Send the content deciphered to host apparatus, thereby use various contents and no matter the DRM system that is provided with in the content, and the DRM software that is easy to upgrade prevents hacker attacks.In addition, host apparatus does not need DRM software, and this makes it possible to produce in batches and reduce manufacturing cost.This scheme is placed on DRM software in all relatively limited DRM card of resource and computing power; Certainly will cause performance bottleneck; Become stronger day by day in the intelligent terminal computing power; Under the background that resource is enriched constantly, especially mobile payment development of technology, how adapting to the mobile Internet new trend becomes the problem that present needs solve.
Summary of the invention
Technical matters to be solved by this invention provides a kind of simple to operation, can make things convenient for the DRM control device and the safety method of content supplier greatly.
The present invention solves the problems of the technologies described above the technical scheme that is adopted:
1, the control device of a kind of DRM; Comprise be installed on the portable terminal with the client of server communication with can with the safety equipment of client communication; It is characterized in that described client is connected with safety equipment through interface, described safety equipment are the key formula equipment with IC-card function.
2, the control device of a kind of DRM as claimed in claim 1 is characterized in that described interface is at least a of data line, contactless IC card, IrDA, Bluetooth, RFID, NFC, SDIO, storage card, USB device control interface.
3, the control device of a kind of DRM as claimed in claim 1; Wherein said safety equipment are a kind of safety equipment based on hardware encipher or living things feature recognition, can with SIM, Micro SD card, TF card, USB device, earphone, portable terminal plug-in unit, portable terminal suspension member, IC-card I.D., CMMB card, mobile payment card at least aly combine in twos.
4, the control device of a kind of DRM as claimed in claim 1 is characterized in that described portable terminal is a mobile phone.
5, a kind of safety equipment that are used for the DRM system; Comprise single-chip microcomputer that is installed in the housing and the security module that links to each other with single-chip microcomputer respectively, low pressure detection module, memory module, interface module, antenna; It is characterized in that described security module is a kind of security module based on hardware encipher or living things feature recognition; Can with SIM, Micro SD card, TF card, USB device, earphone, portable terminal plug-in unit, portable terminal suspension member, IC-card I.D., CMMB card, mobile payment card at least aly combine in twos; Accomplish authentication and authentication functions; Described interface module comprises at least a of data line, contactless IC card, IrDA, Bluetooth, RFID, NFC, SDIO, storage card, USB device control interface; Described memory module storage DRM licence, paying parameter, blacklist and client, DRM licence, paying parameter and blacklist have the safe key protection, and client need not protection.
6, a kind of safety method that uses the DRM control device is characterized in that may further comprise the steps:
1. the user holds my relevant certificate and safety equipment are filled in CAMEL-Subscription-Information in relevant departments, and described CAMEL-Subscription-Information comprises but is not limited to be used for class of business, paying parameter, the accrediting amount and the risk class of ID card No., bank's card number, IMSI, IMEI, IP address, user name, password, biometric feature, digital certificate, key and application of identifying user;
2. relevant departments are according to the close AES of doing appointment of the merchant of country; The security information that relates in the user signing contract information of encrypting, the e-commerce security basic platform returned write described safety equipment, it is at least a that the user can select that recharge amount is write corresponding IC-card application file, described server;
3. the client software on the described safety equipment of user installation or download and install client software to described portable terminal through OTA (Over The Air) mode; Described client connects described safety equipment and described server through interface, obtains user's licence, paying parameter and blacklist behind the authentication, and can carry out software upgrading, has only the user can playing digital content in blacklist;
4. described client and said server, said safety equipment, said portable terminal carry out at least a authentication in twos and verification in twos according to CAMEL-Subscription-Information; If CAMEL-Subscription-Information is inconsistent, a kind of in not passing through of authentication error, verification; Then authentication is unsuccessful; Allow user's retry, retry failure back winding-up flow process; To the user of repeatedly frequent retry in the short time, described safety equipment, described server automatically lock this user's licence, have only through relevant departments and come release; Authentication success, described client will be downloaded licence, paying parameter and blacklist to safety equipment;
5. said client is according to play content, duration, number of times, class of business and paying parameter; For the user who recharge amount is write corresponding IC-card application file; Deduct the remaining sum of corresponding IC-card application file in the said safety equipment, can revise remaining sum by announcement server; User for recharge amount being write said server deducts the remaining sum in the said server; For recharge amount being write the corresponding IC-card application file and the user of said server, deduct the remaining sum of corresponding IC-card application file in the said safety equipment and the remaining sum of server is carried out modify, keep both consistance;
6. when user's remaining sum was lower than a certain limit, said client was supplemented prompting with money to the user, allowed overdraw according to the risk control strategy during paying, and supplement the back with money the overdraw amount of money is carried out corresponding write-downs, and according to this user's of results modification credit grade;
7. after the user carries out two-way authentication and authentication success through said safety equipment to paying server; Can deposit the IC-card application file or the said server of correspondence through the fund circle that the OTA mode will be no more than certain limit, also can directly or through the third party pay content supplier;
8. described safety equipment can link to each other with computing machine through breakout box, support the DRM system on the internet, realize the unification of mobile network and internet DRM safety method.
Compared with prior art, the invention has the advantages that DRM software separated to be installed on the portable terminal, reduced the resource requirement of DRM card, eliminated performance bottleneck, be convenient to software upgrading and maintenance.Simultaneously, safety equipment and mobile payment card, CMMB card are integrated into one, have made full use of existing infrastructure, not only greatly reduce cost, approach zero cost, and realized seamless integrated with mobile payment, be convenient to implement convenient the use.Simultaneously; Safety equipment can be through the DRM system on the internet of breakout box (below 1.8 yuan) support cheaply; Realized the unification of mobile network and internet DRM system; Greatly reduce and implement and operation cost, more existing DRM system has tangible quality and price advantage.
Description of drawings
Fig. 1 is a structural representation of the present invention;
Fig. 2 is the safety equipment structure principle chart of embodiments of the invention one;
Fig. 3 is the safety equipment structure principle chart of embodiments of the invention two.
Embodiment
Embodiment describes in further detail the present invention below in conjunction with accompanying drawing.
In actual use, portable terminal also can be selected mobile phone, panel computer or PDA, and safety equipment can be mobile payment card or CMMB card of having DRM application of IC cards file and corresponding secret key etc.
Embodiment one: the control device of a kind of DRM; As shown in Figure 1; Comprise be installed on the portable terminal 6 with the client 2 of server 1 communication be arranged on the safety equipment 3 that have IC-card function and TF card in the portable terminal 6; It also comprises the portable terminal 6 that carries out communication with client 2, and portable terminal 6 is provided with the TF card 4 that is connected with safety equipment 3, with mobile network's interface 5 of server 1 communication.The intelligent TF card of safety equipment 3 employing Shenzhen Jiang Bolong Electronics Co., Ltd.s is supported mobile payment function; Client 2 switches to the hardware protection state when connecting safety equipment 3 with the input password, monopolizes resources such as SDIO, keyboard, mouse, touch-screen and input pen, prevents that virus from stealing security information through control operation system application DLL.
Embodiment two: the control device of a kind of DRM; As shown in Figure 1; Comprise be installed on the portable terminal 6 with the client 2 of server 1 communication be arranged on the safety equipment 3 that have IC-card function and SDIO interface in the portable terminal 6; It also comprises the portable terminal 6 that carries out communication with client 2, and portable terminal 6 is provided with the SDIO interface 4 that is connected with safety equipment 3, with mobile network's interface 5 of server 1 communication; The general day graduate intelligent SD card in safety equipment 3 employing Shanghai supported mobile payment function; Client 2 switches to the hardware protection state when connecting safety equipment 3 with the input password, monopolizes resources such as SDIO, keyboard, mouse, touch-screen and input pen, prevents that virus from stealing security information through control operation system application DLL.
Embodiment three: a kind of safety equipment that are used for the DRM system; As shown in Figure 2, chip ATmega 16L is the control chip of system, and security module is used 32 safety encipher chips of Z32U-Flash series of emerging IC design company limited in the Shenzhen; Meet ISO1786 1-3 agreement; WV 5V provides clock by the active crystal oscillator of 3.579545MHz, by resetting and the I/O mouth of ATmega 16L control card.SDIO Combo chip is as bridging chip; Cooperate the communication of accomplishing between Z32UF and the smart mobile phone; The CG100 that adopts is the low-power consumption TF card data communication transceiving chip of the support SDIO 1.0 of C-Guys company production, utilizes the serial communication of its High Speed UART (HS-UART) interface and ATmega 16L.Client sends to Z32U-Flash with information through SDIO Combo and accomplishes the adding of data, deciphering and digital signature and safety storing.NAND Flash access client is installed file and non-encrypted information.
Embodiment four: a kind of safety equipment that are used for the DRM system; As shown in Figure 3, chip STM32F103VBT6 is the control chip of system, and security module is used 32 safety encipher chips of Z32U-Flash series of emerging IC design company limited in the Shenzhen; Meet ISO1786 1-3 agreement; WV 5V provides clock by the active crystal oscillator of 3.579545MHz, by resetting and the I/O mouth of STM32F103VBT6 control card.SDIO Combo chip cooperates the communication of accomplishing between Z32UF and the smart mobile phone as bridging chip.Client sends to Z32U-Flash with information through SDIO Combo and accomplishes the adding of data, deciphering and digital signature and safety storing, and sends to server 1 through mobile network's interface 5, and NAND Flash access client is installed file and non-encrypted information.
In the foregoing description, the IC-card that has TF card, SDIO interface in the portable terminal 6 can substitute with the financial smart card of the bluetooth earphone of being with the IC-card function, band SIM interface or TF card.
Claims (5)
1. the control device of a DRM; Comprise be installed on the portable terminal with the client of server communication with can with the safety equipment of client communication; It is characterized in that described client connects the safety equipment with IC-card function through interface, described safety equipment can be supported mobile payment function.
2. the control device of a kind of DRM as claimed in claim 1 is characterized in that described interface is at least a of data line, contactless IC card, IrDA, Bluetooth, RFID, NFC, SDIO, storage card, USB device control interface.
3. the control device of a kind of DRM as claimed in claim 1; Wherein said safety equipment are a kind of safety equipment based on hardware encipher or living things feature recognition, can with SIM, Micro SD card, TF card, USB device, earphone, portable terminal plug-in unit, portable terminal suspension member, IC-card I.D., CMMB card, mobile payment card at least aly combine in twos.
4. the control device of a kind of DRM as claimed in claim 1; It is characterized in that described portable terminal is a mobile phone; Described client uses described safety equipment, input to switch to the hardware protection state during security information, prevents that illegal software from stealing security information through the operating system API.
5. safety equipment that are used for the DRM system; Comprise single-chip microcomputer that is installed in the housing and the security module that links to each other with single-chip microcomputer respectively, low pressure detection module, memory module, interface module, antenna; It is characterized in that described security module is a kind of security module based on hardware encipher or living things feature recognition; Can with SIM, Micro SD card, TF card, USB device, earphone, portable terminal plug-in unit, portable terminal suspension member, IC-card I.D., CMMB card, mobile payment card at least aly combine in twos; Accomplish authentication and authentication functions; Described interface module comprises at least a of data line, contactless IC card, IrDA, Bluetooth, RFID, NFC, SDIO, storage card, USB device control interface; Described memory module storage DRM licence, paying parameter, blacklist and client, DRM licence, paying parameter and blacklist have the safe key protection, and client need not protection.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011104630069A CN102609641A (en) | 2011-12-28 | 2011-12-28 | DRM (digital rights management) system based on distributed keys |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011104630069A CN102609641A (en) | 2011-12-28 | 2011-12-28 | DRM (digital rights management) system based on distributed keys |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102609641A true CN102609641A (en) | 2012-07-25 |
Family
ID=46527002
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011104630069A Pending CN102609641A (en) | 2011-12-28 | 2011-12-28 | DRM (digital rights management) system based on distributed keys |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102609641A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102932333A (en) * | 2012-10-07 | 2013-02-13 | 潘铁军 | Safety equipment with mobile payment function, system and method |
| CN103716778A (en) * | 2013-09-25 | 2014-04-09 | 北京握奇数据系统有限公司 | Method and system for combining mobile terminal client and smart card to realize remote service |
| CN103974242A (en) * | 2014-05-16 | 2014-08-06 | 天地融科技股份有限公司 | Data processing method of voice communication |
| CN103973696A (en) * | 2014-05-16 | 2014-08-06 | 天地融科技股份有限公司 | Data processing method of voice communication |
| CN103974243A (en) * | 2014-05-16 | 2014-08-06 | 天地融科技股份有限公司 | Data processing system of voice communication |
| CN103986579A (en) * | 2014-05-16 | 2014-08-13 | 天地融科技股份有限公司 | Data processing system for voice communication |
| CN103987036A (en) * | 2014-05-16 | 2014-08-13 | 天地融科技股份有限公司 | Data processing system for voice communication |
| CN103985042A (en) * | 2014-06-04 | 2014-08-13 | 孙国华 | Digital information encryption and decryption method based on NFC mobile phone and IC card |
| CN103997732A (en) * | 2014-05-16 | 2014-08-20 | 天地融科技股份有限公司 | Data processing system in voice communication |
| WO2020192698A1 (en) * | 2019-03-27 | 2020-10-01 | 华为技术有限公司 | Data secure backup and secure recovery methods, and electronic device |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040243496A1 (en) * | 2001-04-25 | 2004-12-02 | Kim Chul Ki | Financial information input method using symmetrical key security algorithm and commercial transaction system for mobile communications |
| CN1731460A (en) * | 2005-07-01 | 2006-02-08 | 潘铁军 | A mobile payment system based on distributed cipher key and encryption method |
| CN1877593A (en) * | 2006-07-12 | 2006-12-13 | 大唐微电子技术有限公司 | Digital copyright management method |
| CN201069581Y (en) * | 2007-08-17 | 2008-06-04 | 潘铁军 | A mobile payment system based on distributed secrete key |
| CN101436280A (en) * | 2008-12-15 | 2009-05-20 | 北京华大智宝电子系统有限公司 | Method and system for implementing electronic payment of mobile terminal |
| CN101465028A (en) * | 2009-01-06 | 2009-06-24 | 潘铁军 | Tax control device and method for mobile tax control machine |
-
2011
- 2011-12-28 CN CN2011104630069A patent/CN102609641A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040243496A1 (en) * | 2001-04-25 | 2004-12-02 | Kim Chul Ki | Financial information input method using symmetrical key security algorithm and commercial transaction system for mobile communications |
| CN1731460A (en) * | 2005-07-01 | 2006-02-08 | 潘铁军 | A mobile payment system based on distributed cipher key and encryption method |
| CN1877593A (en) * | 2006-07-12 | 2006-12-13 | 大唐微电子技术有限公司 | Digital copyright management method |
| CN201069581Y (en) * | 2007-08-17 | 2008-06-04 | 潘铁军 | A mobile payment system based on distributed secrete key |
| CN101436280A (en) * | 2008-12-15 | 2009-05-20 | 北京华大智宝电子系统有限公司 | Method and system for implementing electronic payment of mobile terminal |
| CN101465028A (en) * | 2009-01-06 | 2009-06-24 | 潘铁军 | Tax control device and method for mobile tax control machine |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102932333A (en) * | 2012-10-07 | 2013-02-13 | 潘铁军 | Safety equipment with mobile payment function, system and method |
| CN103716778A (en) * | 2013-09-25 | 2014-04-09 | 北京握奇数据系统有限公司 | Method and system for combining mobile terminal client and smart card to realize remote service |
| CN103997732A (en) * | 2014-05-16 | 2014-08-20 | 天地融科技股份有限公司 | Data processing system in voice communication |
| CN103986579B (en) * | 2014-05-16 | 2017-07-21 | 天地融科技股份有限公司 | A kind of data handling system of voice call |
| CN103974243A (en) * | 2014-05-16 | 2014-08-06 | 天地融科技股份有限公司 | Data processing system of voice communication |
| CN103986579A (en) * | 2014-05-16 | 2014-08-13 | 天地融科技股份有限公司 | Data processing system for voice communication |
| CN103987036A (en) * | 2014-05-16 | 2014-08-13 | 天地融科技股份有限公司 | Data processing system for voice communication |
| CN103974243B (en) * | 2014-05-16 | 2017-11-10 | 天地融科技股份有限公司 | A kind of data handling system of voice call |
| CN103974242A (en) * | 2014-05-16 | 2014-08-06 | 天地融科技股份有限公司 | Data processing method of voice communication |
| CN103973696A (en) * | 2014-05-16 | 2014-08-06 | 天地融科技股份有限公司 | Data processing method of voice communication |
| CN103987036B (en) * | 2014-05-16 | 2017-07-25 | 天地融科技股份有限公司 | A kind of data handling system of voice call |
| CN103973696B (en) * | 2014-05-16 | 2017-09-19 | 天地融科技股份有限公司 | A kind of data processing method of voice call |
| CN103997732B (en) * | 2014-05-16 | 2017-09-19 | 天地融科技股份有限公司 | A kind of data handling system of voice call |
| CN103974242B (en) * | 2014-05-16 | 2017-11-10 | 天地融科技股份有限公司 | A kind of data processing method of voice call |
| CN103985042A (en) * | 2014-06-04 | 2014-08-13 | 孙国华 | Digital information encryption and decryption method based on NFC mobile phone and IC card |
| WO2020192698A1 (en) * | 2019-03-27 | 2020-10-01 | 华为技术有限公司 | Data secure backup and secure recovery methods, and electronic device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102609641A (en) | DRM (digital rights management) system based on distributed keys | |
| CN102592091A (en) | Digital rights management system and security method based on distributed key | |
| CN100485726C (en) | A mobile payment system based on distributed cipher key | |
| CN102103778B (en) | Mobile payment system, mobile terminal and method for realizing mobile payment service | |
| US20130054473A1 (en) | Secure Payment Method, Mobile Device and Secure Payment System | |
| CN105046486A (en) | NFC-based mobile payment method and device | |
| CN105391840A (en) | automatic purposed-application creation | |
| CN101211451B (en) | Circle deposit system based on digital signature and method | |
| KR20180017222A (en) | Online payments using a secure element of an electronic device | |
| CN113344570A (en) | Method for transmitting and processing transaction message and data processing device | |
| CN103269326A (en) | Safety equipment, multi-application system and safety method for ubiquitous networks | |
| CN103942678A (en) | Mobile payment system and method based on trusted execution environment | |
| EP2420036A2 (en) | Method and apparatus for electronic ticket processing | |
| CN102298683A (en) | Authentication device, system and method for short-distance radio-frequency communication authentication | |
| CN104050567A (en) | Data interaction method under off-line mode, terminal and server | |
| CN101741565A (en) | Method and system for transmitting IC (integrated circuit)-card application data | |
| CN104850990A (en) | Payment method and system thereof, key terminal and key support system | |
| CN102238193A (en) | Data authentication method and system using same | |
| CN101826219A (en) | Rail transportation ticket-card processing intelligent system and data encryption auditing method | |
| CN104504563A (en) | Mobile information safety equipment and working method thereof | |
| CN201936334U (en) | Mobile payment data secure digital card | |
| CN104574652A (en) | Method for increasing and deducting pollution discharge data of IC card and IC card | |
| CN101141250A (en) | Instrument equipment, data safety access method, device and system | |
| CN106980977A (en) | Payment system and its Payment Card based on Internet of Things | |
| CN104102934B (en) | A kind of portable IC card read-write equipment, system and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| DD01 | Delivery of document by public notice |
Addressee: Pan Tiejun Document name: the First Notification of an Office Action |
|
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120725 |
|
| WD01 | Invention patent application deemed withdrawn after publication |