CN103037246B - A kind of encrypted content distribution method, conditional access apparatus and system - Google Patents
A kind of encrypted content distribution method, conditional access apparatus and system Download PDFInfo
- Publication number
- CN103037246B CN103037246B CN201110304931.7A CN201110304931A CN103037246B CN 103037246 B CN103037246 B CN 103037246B CN 201110304931 A CN201110304931 A CN 201110304931A CN 103037246 B CN103037246 B CN 103037246B
- Authority
- CN
- China
- Prior art keywords
- content
- contents file
- encrypted contents
- encrypted
- file
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
Embodiments provide a kind of encrypted content distribution method, conditional access apparatus and system, wherein said content distribution method comprises: obtain encrypted contents file, and described encrypted contents file comprises first content mark (Identity, ID); Described encrypted contents file key is obtained according to described first content ID; Obtain the second content ID that described encrypted contents file is corresponding; Described first content ID is replaced with described second content ID; By described second content ID and described cipher key associated.The method of the encrypted content distribution that the embodiment of the present invention provides, because directly replace raw content mark by fresh content mark, and new content identification is associated with key, thus avoid IPTV system to the encrypted contents file issued by content source system repeat deciphering and encryption flow, improve the efficiency of encrypted content distribution, decrease the time of encrypted content distribution.
Description
Technical field
The present invention relates to IPTV (InternetProtocolTelevision, IPTV), particularly relate to the method for a kind of encrypted content distribution, conditional access apparatus and system.
Background technology
Along with development and the user's request that day by day increases of ICT (information and communication technology), IPTV (InternetProtocolTelevision, IPTV) obtains tremendous expansion.At present, each large manufacturer terminal and the operation commercial city development carrying forward vigorously IPTV of doing one's utmost.In general, IPTV system is the framework of multistage distribution, such as, is deployed as two level frameworks, and central IPTV system and province's IPTV system, be deployed as three-level structure, central IPTV system, province's IPTV system and city's IPTV system.The framework of multistage like this distribution, on-demand content is generally be issued to subordinate's IPTV system from higher level's IPTV system, and terminal obtains on-demand content and plays from subordinate's IPTV system.Like this, from the angle IPTV system of terminal, directly for the IPTV system of Terminal Service calls IPTV system, the system issuing on-demand content for IPTV system is called content source system.Will cause having multiple content source system to provide on-demand content for IPTV system like this.Because the reason of copyright protection, on-demand content, and all needs to adopt the mode of encryption to transmit in IPTV system to the transmission of terminal room to the transmission in IPTV system in content source system.But because there is multiple content source system to provide content for IPTV system, like this, content, because being provided by different content source system, may cause different contents to have identical content identification.At present in order to solve content identification conflict, the program request flow process of employing, after IPTV system is decrypted the encryption on-demand content issued, introduces new content identification, then re-encrypted, new content identification associated with key.But such flow process result in and repeats deciphering and encryption, waste resource, and can cause on-demand content transmission lag.
Summary of the invention
In view of this, be necessary in fact to provide one can avoid repeating encryption and decryption to encryption program request content file, and ensure that, in multistage IPTV system, terminal can obtain correct key, the method for encrypted content distribution encrypted contents file being decrypted and playing.
Meanwhile, a kind of conditional access apparatus is provided.
Meanwhile, a kind of encrypted content dissemination system is provided.
One embodiment of the invention provides a kind of encrypted content distribution method, comprising: obtain encrypted contents file, and described encrypted contents file comprises first content mark (Identity, ID); Described encrypted contents file key is obtained according to described first content ID; Obtain the second content ID that described encrypted contents file is corresponding; Described first content ID is replaced with described second content ID; By described second content ID and described cipher key associated, when described encrypted contents file is deciphered, obtain corresponding key according to described second content ID.
Another embodiment of the present invention provides a kind of conditional access (ConditionalAccess, CA) device, comprising: acquiring unit, and for obtaining encrypted contents file, described encrypted contents file comprises first content ID; Described acquiring unit is also for obtaining described encrypted contents file key according to described first content ID; Described acquiring unit is also for obtaining the second content ID corresponding to described encrypted contents file; Replacement unit, for replacing described first content ID with described second content ID; Associative cell, for by described second content ID and described cipher key associated, obtains corresponding key according to described second content ID when content is deciphered, obtains corresponding key when described encrypted contents file is deciphered according to described second content ID.
Further embodiment of this invention provides a kind of encrypted content dissemination system, comprise: content source subsystem, for issuing encrypted contents file to content disposal subsystem (ContentManagementSubsystem, CMS), described encrypted contents file comprises first content ID; CMS, for obtaining encrypted contents file from content source subsystem and issuing encrypted contents file to CA; Also for generating the second content ID according to described encrypted contents file; Conditional access apparatus (ConditionalAccess, CA), for obtaining encrypted contents file from described CMS; Also for obtaining encrypted contents file key according to described first content ID from described content source subsystem; Also for replacing described first content ID with described second content ID; By the second content ID and described cipher key associated, when described encrypted contents file is deciphered, obtain corresponding key according to described second content ID.
The method by encrypting program request contents distribution of the embodiment of the present invention, because directly replace raw content mark by fresh content mark, and new content identification is associated with key, thus avoid IPTV system to the encrypted contents file issued by content source system repeat deciphering and encryption flow, improve the efficiency of encrypted content distribution, decrease the time of encrypted content distribution.
Accompanying drawing explanation
Fig. 1 is the encrypted content distribution method flow chart of one embodiment of the invention;
Fig. 2 is the conditional access apparatus structured flowchart of one embodiment of the invention;
Fig. 3 is the conditional access apparatus structured flowchart of another embodiment of the present invention;
Fig. 4 is the structured flowchart of the encrypted content dissemination system of one embodiment of the invention;
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
In general, play to content file and encrypt relevant parts in IPTV system and mainly contain content disposal subsystem (ContentManagementSubsystem, CMS), conditional access apparatus (ConditionalAccess, CA), media provide network (MediaDeliveryNetwork, MDN).CMS primary responsibility Content Management, the encryption of CA primary responsibility and key management, MDN mainly provides streaming media service.In the prior art, the program request flow process of general ip TV is as follows: first, encrypted contents file is issued to CMS by content source system, undertaken preserving and unified management by CMS, then encrypted contents file is issued to MDN by CMS, terminal obtains encrypted contents file from MDN, and terminal obtains encrypted contents file key according to the content identification in encrypted contents file from CA, and then terminal is decrypted according to the content file key pair encryption content file obtained and plays.
Fig. 1 is the encrypted content distribution method flow chart of one embodiment of the invention;
Comprise: 101, obtain encrypted contents file, described encrypted contents file comprises first content ID;
Specifically, CA obtains encrypted contents file from CMS, and encrypted contents file adopts TS stream format, as shown in the figure:
General audio frequency and video are made up of frame, also carry out frame by frame the encryption of content file.And a packet length of TS stream is 188Bytes, therefore a frame needs to be divided in different multiple TS bags.Not only comprise the TS bag of the payload (Payload) containing actual content files in TS bag, also comprise and wrapping containing program characteristics information (ProgramSpecificInformation, PSI) TS.PSI is the information that decoder decomposes and decoding needs use.In an embodiment of the present invention, only need to be encrypted the TS bag of the payload (Payload) containing actual content files, in addition, in TS stream, the TS of each frame also comprises an empty bag before wrapping, for depositing the relevant data of encryption, comprising content identification, i.e. first content ID.
102, described encrypted contents file key is obtained according to described first content ID;
Concrete, after CA obtains encrypted contents file, according to the first content ID carried in encrypted contents file, to encrypted contents file key described in content source system acquisition request, content source system is determined and the key that described first content ID associates from local search according to described first content ID.
103, the second content ID corresponding with described encrypted contents file is obtained;
Concrete, after encrypted contents file is handed down to CMS by content source system, CMS clashes in order to avoid the encrypted contents file ID of separate sources, generates the new content ID of distribution one, i.e. the second content ID can again to each encrypted contents file.After CA obtains encrypted contents file from CMS, or after CA obtains encrypted contents file key from content source system, the second content ID message that described in acquisition request, encrypted contents file is corresponding is initiated to CMS, CMS to search from this locality according to the first content ID of described encrypted contents file and determines the second content ID, and returns to CA.
104, the first content ID in described encrypted contents file is replaced with described second content ID;
Concrete, the second content ID, after getting encrypted contents file second content ID, is written to the position of encrypted contents file first content ID in the empty bag of TS stream, is covered by original first content ID by CA.
105, by encrypted contents file second content ID and described cipher key associated.
Concrete, the encrypted contents file key obtained from content source system carries out associating with encrypted contents file second content ID and mates by CA, be convenient to user after acquisition encrypted contents file, the key of coupling can be obtained according to the second content ID from CA, thus broadcasting is decrypted to encrypted contents file.
In addition, in another execution mode of the present invention, the encrypted contents file replacing to the second content ID uploads in CMS by CA, and described encrypted contents file is preserved by CMS, and replaces the encrypted contents file originally comprising first content ID.In addition, in embodiments of the present invention, encrypted contents file is issued to CMS from content source system and adopts the agreements such as FTP or HTTP, and encrypted contents file adopts RTP/RTCP or the HTTPLiveStreaming agreement etc. based on http protocol from being issued to terminal from CMS.The encrypted content distribution method of the embodiment of the present invention, due in CA, old encrypted contents file content ID is replaced with new encrypted contents file content ID, then by new content ID and cipher key associated, thus avoid in the past CA by first deciphering, generate new key, new key is identified with new content file the complexity associated.Avoid and repeat deciphering and encryption, thus save the contents distribution time, improve content file transfers efficiency, make Consumer's Experience better.In addition, no matter content file is from content source system to IPTV system, or from IPTV system to user terminal, all have employed encrypted form, makes content file copyright obtain sufficient protection.
Fig. 2 is the conditional access apparatus CA structured flowchart of one embodiment of the invention;
Comprise: acquiring unit 201, wherein acquiring unit 201 comprises further: first content acquiring unit 2012, and for obtaining encrypted contents file from CMS, described encrypted contents file comprises first content ID; Second contents acquiring unit 2014, for obtaining encrypted contents file key according to described first content ID; 3rd acquiring unit 2016, for obtaining the second content ID corresponding with encrypted contents file according to first content ID from CMS; Replacement unit 202, for with the first content ID comprised in described second content ID Substitution encryption content file, associative cell 203, for being associated with the key obtained from CMS by the second content ID, when described encrypted contents file is deciphered, obtain corresponding key according to described second content ID.
In an alternative embodiment of the invention, as shown in Figure 3, also uploading unit 204 is comprised further, for the encrypted contents file replacing to the second content ID is uploaded to CMS.
The conditional access apparatus CA of the embodiment of the present invention, owing to replacing old encrypted contents file content ID with new encrypted contents file content ID, then by new content ID and cipher key associated, thus avoid in the past conditional access apparatus by first deciphering, generate new key, new key is identified with new content file the complexity associated.Avoid and repeat deciphering and encryption, thus save the contents distribution time, improve content file transfers efficiency, make Consumer's Experience better.
Fig. 4 is the structured flowchart of the encrypted content dissemination system of one embodiment of the invention; Comprise:
Content source subsystem 401, for issuing encrypted contents file to CMS, described encrypted contents file comprises first content ID; Content disposal subsystem 402, for obtaining encrypted contents file from content source subsystem 401 and issuing encrypted contents file to CA; Also for giving birth to the second content ID according to described encrypted contents file; Conditional access apparatus (CA) 403, for obtaining encrypted contents file from CMS402; Also for obtaining encrypted contents file key according to encrypted contents file first content ID from described content source subsystem 401; Also for replacing described encrypted contents file first content ID with described second content ID; And by the second content ID and described cipher key associated, when described encrypted contents file is deciphered, obtain corresponding key according to described second content ID.In addition, CA403 is also for uploading the encrypted contents file replacing to fresh content ID to CMS402, the described encrypted contents file replacing to the second content ID is preserved by CMS402.
In addition, encrypted contents file is issued to CMS from content source subsystem and adopts FTP or http protocol, makes content file transfers more reliable.
In reality operation, IPTV networking structure also comprises MDN and user terminal, file in encryption is issued to CMS by content source subsystem, CMS is that encrypted contents file generates a new content ID, and by newly sign and encrypted contents file are issued to CA, CA obtains encrypted contents file key according to the content ID of encrypted contents file from content source subsystem, and the old sign in encrypted contents file is replaced to new sign, and associate newly indicating with described key, then the encrypted contents file replacing to new ID is uploaded to CMS, be in charge of by CMS and preserve, after user terminal requests program request or live encrypted contents file, encrypted contents file is issued to MDN by CMS, user terminal is issued to by MDN, user terminal obtains key according to the new sign in encrypted contents file from CA, be decrypted broadcasting.Encrypted contents file is issued to user terminal from MDN and generally adopts RTP/RTCP or FTP/HTTP agreement, also can adopt P2P or other agreements.Embodiment provided by the invention adopts agreement and does not limit.
The encrypted content dissemination system of the embodiment of the present invention, owing to replacing old encrypted contents file content ID with new encrypted contents file content ID, then by new content identification and cipher key associated, thus avoid in the past conditional access apparatus by first deciphering, generate new key, new key is identified with new content file the complexity associated.Avoid and repeat deciphering and encryption, thus save the contents distribution time, improve content file transfers efficiency, make Consumer's Experience better.
One of ordinary skill in the art will appreciate that all or part of flow process realized in above-described embodiment method, that the hardware that can carry out instruction relevant by computer program has come, above-mentioned program can be stored in a computer read/write memory medium, this program, when performing, can comprise the flow process of the embodiment as above-mentioned each side method.Wherein, above-mentioned storage medium can be magnetic disc, CD, read-only store-memory body (ROM:Read-OnlyMemory) or random store-memory body (RAM:RandomAccessMemory) etc.
In sum, these are only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.Within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (13)
1. an encrypted content distribution method, is characterized in that, comprising:
Obtain encrypted contents file, described encrypted contents file comprises first content mark (Identity, ID);
Described encrypted contents file key is obtained according to described first content ID;
Obtain the second content ID that described encrypted contents file is corresponding, described second content ID is that content disposal subsystem generates the new content ID distributed to described encrypted contents file;
The first content ID comprised in described encrypted contents file is replaced with described second content ID;
By described second content ID and described cipher key associated, when described encrypted contents file is deciphered, obtain corresponding key according to described second content ID.
2. encrypted content distribution method as claimed in claim 1, is characterized in that, also comprise: the encrypted contents file replacing to the second content ID is uploaded to content disposal subsystem.
3. encrypted content distribution method as claimed in claim 1, it is characterized in that, described encrypted contents file is program request encrypted contents file or live encrypted contents file.
4. encrypted content distribution method as claimed in claim 1, is characterized in that, described encrypted contents file adopts the transmission of transport stream (TransportSteam, TS) form.
5. encrypted content distribution method as claimed in claim 4, it is characterized in that, described TS stream comprises at least one TS and wraps, and described encrypted contents file comprises multiple frame, and each frame is divided in multiple TS bag.
6. encrypted content distribution method as claimed in claim 5, is characterized in that, is provided with an empty bag before multiple TS bags of described each frame of packing.
7. encrypted content distribution method as claimed in claim 6, is characterized in that, described sky bag carries encrypted contents file first content ID.
8. encrypted content distribution method as claimed in claim 5, it is characterized in that, described TS handbag draws together the payload bag for carrying actual content data and the information load bag for carrying Program Specific Information.
9. conditional access (ConditionalAccess, a CA) device, is characterized in that, comprising:
Acquiring unit, for obtaining encrypted contents file, described encrypted contents file comprises first content ID; Described acquiring unit is also for obtaining described encrypted contents file key according to described first content ID; Described acquiring unit is also for obtaining the second content ID corresponding to described encrypted contents file, and described second content ID is that content disposal subsystem generates the new content ID distributed to described encrypted contents file;
Replacement unit, for replacing the first content ID comprised in described encrypted contents file with described second content ID;
Associative cell, for by described second content ID and described cipher key associated, obtains corresponding key according to described second content ID when content is deciphered, obtains corresponding key when described encrypted contents file is deciphered according to described second content ID.
10. CA device as claimed in claim 9, is characterized in that, also comprise:
Uploading unit, for being uploaded to content disposal subsystem by the encrypted contents file replacing to the second content ID.
11. 1 kinds of encrypted content dissemination systems, is characterized in that, comprising:
Content source subsystem, for issuing encrypted contents file to content disposal subsystem (ContentManagementSubsystem, CMS), described encrypted contents file comprises first content ID;
CMS, for obtaining encrypted contents file from content source subsystem and issuing encrypted contents file to CA; Also for generating the second content ID according to described encrypted contents file, described second content ID is that described content disposal subsystem generates the new content ID distributed to described encrypted contents file;
Conditional access apparatus (ConditionalAccess, CA), for obtaining encrypted contents file from described CMS; Also for obtaining encrypted contents file key according to described first content ID from described content source subsystem; Also for replacing the first content ID comprised in described encrypted contents file with described second content ID; By the second content ID and described cipher key associated, when described encrypted contents file is deciphered, obtain corresponding key according to described second content ID.
12. encrypted content dissemination systems as claimed in claim 11, is characterized in that, described CA is also for uploading the encrypted contents file replacing to the second content ID to CMS, the described encrypted contents file replacing to the second content ID is preserved by described CMS.
13. encrypted content dissemination systems as claimed in claim 11, is characterized in that, described encrypted contents file is issued to CMS from content source subsystem and adopts FTP or http protocol.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110304931.7A CN103037246B (en) | 2011-10-10 | 2011-10-10 | A kind of encrypted content distribution method, conditional access apparatus and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110304931.7A CN103037246B (en) | 2011-10-10 | 2011-10-10 | A kind of encrypted content distribution method, conditional access apparatus and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103037246A CN103037246A (en) | 2013-04-10 |
| CN103037246B true CN103037246B (en) | 2015-11-25 |
Family
ID=48023661
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110304931.7A Active CN103037246B (en) | 2011-10-10 | 2011-10-10 | A kind of encrypted content distribution method, conditional access apparatus and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103037246B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108768962A (en) * | 2018-05-11 | 2018-11-06 | 北京海泰方圆科技股份有限公司 | Data processing method and device and system |
| CN113518244B (en) * | 2021-09-15 | 2021-11-12 | 深圳佳力拓科技有限公司 | Digital television signal data transmission method and device based on substitute text combination |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101331768A (en) * | 2005-12-15 | 2008-12-24 | 纳格拉法国两合公司 | Method for transmitting conditional access content |
| CN101331769A (en) * | 2005-12-15 | 2008-12-24 | 纳格拉法国两合公司 | Method for encrypting and decrypting a conditional access content |
| CN101888600A (en) * | 2009-05-14 | 2010-11-17 | 华为技术有限公司 | Method and device for concealing subscriber number |
| CN101895605A (en) * | 2010-06-11 | 2010-11-24 | 中兴通讯股份有限公司 | Method and device for communication based on pseudo-contact information |
-
2011
- 2011-10-10 CN CN201110304931.7A patent/CN103037246B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101331768A (en) * | 2005-12-15 | 2008-12-24 | 纳格拉法国两合公司 | Method for transmitting conditional access content |
| CN101331769A (en) * | 2005-12-15 | 2008-12-24 | 纳格拉法国两合公司 | Method for encrypting and decrypting a conditional access content |
| CN101888600A (en) * | 2009-05-14 | 2010-11-17 | 华为技术有限公司 | Method and device for concealing subscriber number |
| CN101895605A (en) * | 2010-06-11 | 2010-11-24 | 中兴通讯股份有限公司 | Method and device for communication based on pseudo-contact information |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103037246A (en) | 2013-04-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108702527A (en) | System and method for using the media of general interlayer distribution formats to transmit | |
| CN105190660B (en) | The safety and key management of digital content | |
| EP2897369B1 (en) | Content supply device, content supply method, program, and content supply system | |
| JP2020099087A (en) | Method and apparatus for transmitting/receiving content | |
| CN105830459A (en) | Broadcasting signal transmission apparatus, broadcasting signal reception apparatus, broadcasting signal transmission method, and broadcasting signal reception method | |
| CN104380753A (en) | System and method for signaling segment encryption and key derivation for adaptive streaming | |
| CN101842786A (en) | Fast and editing-friendly sample association method for multimedia file formats | |
| US20200336526A1 (en) | Reception device, reception method, transmission device, and transmission method for distributing signaling information | |
| CN104737512B (en) | Device and method for being transmitted in hybrid network and receiving multi-medium data | |
| CN101675435A (en) | Media stream recording into a reception hint track of a multimedia container file | |
| JP2014135749A (en) | File transmission method and device in server, and file reproduction method and device in terminal | |
| CN101258750A (en) | Method and apparatus for encrypting/decrypting multimedia content to allow random access | |
| CN103957469A (en) | Internet video on demand method and system based on real-time packaging switching | |
| CN105814822A (en) | Apparatus for transmitting broadcast signal, apparatus for receiving broadcast signal, method for transmitting broadcast signal and method for receiving broadcast signal | |
| CN104168516A (en) | System and method for achieving program replay on stream media live broadcast platform | |
| EP3855771A1 (en) | Reception apparatus and reception method using a undirectional transport protocol | |
| CN105934953A (en) | Broadcast signal tranmission device, broadcast signal reception device, broadcast signal tranmission method, and broadcast signal reception method | |
| JP5558481B2 (en) | Technology for handling media content that can be accessed via multiple media tracks | |
| JP2008301372A (en) | Content distribution server, and content distribution system | |
| CN102595252A (en) | Method and system for realizing streaming media forward error correction | |
| CN102984557A (en) | DRM-based streaming media playing system | |
| JP2019110541A (en) | Information processing apparatus and information processing method | |
| US20150095483A1 (en) | Communications terminal, transfer terminal, and content publication method | |
| CN103037246B (en) | A kind of encrypted content distribution method, conditional access apparatus and system | |
| US10623463B2 (en) | Content supplying apparatus, content supplying method, program, terminal device, and content supplying system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |