CN104102859B - A kind of middleware authorization method and device based on JavaScript - Google Patents

A kind of middleware authorization method and device based on JavaScript Download PDF

Info

Publication number
CN104102859B
CN104102859B CN201410325822.7A CN201410325822A CN104102859B CN 104102859 B CN104102859 B CN 104102859B CN 201410325822 A CN201410325822 A CN 201410325822A CN 104102859 B CN104102859 B CN 104102859B
Authority
CN
China
Prior art keywords
hardware identifier
local terminal
middleware
license
javascript
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410325822.7A
Other languages
Chinese (zh)
Other versions
CN104102859A (en
Inventor
徐佳宏
熊文
朱吕亮
张建国
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Ipanel TV Inc
Original Assignee
Shenzhen Ipanel TV Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Ipanel TV Inc filed Critical Shenzhen Ipanel TV Inc
Priority to CN201410325822.7A priority Critical patent/CN104102859B/en
Publication of CN104102859A publication Critical patent/CN104102859A/en
Application granted granted Critical
Publication of CN104102859B publication Critical patent/CN104102859B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/443OS processes, e.g. booting an STB, implementing a Java virtual machine in an STB or power management in an STB
    • H04N21/4433Implementing client middleware, e.g. Multimedia Home Platform [MHP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Multimedia (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)

Abstract

The present invention is applied to set-top box technique field, there is provided a kind of middleware authorization method and device, methods described based on JavaScript include:Obtain the authority checking method of default JavaScript descriptions license hardware identifier;Local terminal hardware identifier is read by the api interface of graft layers;Local terminal hardware identifier described in the authority checking method validation is called whether in the range of the license hardware identifier, if, then local terminal middleware is legal middleware, the present invention, verification method and process are completely described with JavaScript mode, flexibly can set and change verification method and process.

Description

A kind of middleware authorization method and device based on JavaScript
Technical field
The invention belongs to set-top box technique field, more particularly to a kind of middleware authorization method based on JavaScript and Device.
Background technology
At present, set top box is all that hardware supplier cooperates with middleware provider, solution is provided to operator, at this Under kind pattern, middleware piracy be present, the existing technology for solving the problem is using private key encryption license hardware identifier Scope obtains encryption identification;The encryption identification and public key are implanted in middleware respectively, the public key is with the private key A pair of digital signature;During operation, the license hardware identifier scope is obtained using encryption identification described in the public key decryptions;Pass through The api interface of graft layers reads hardware identifier, judges the hardware identifier whether in the range of the license hardware identifier, if It is then to obtain authorization identifying and exist, such technology private key encryption permits hardware identifier scope, public key decryptions license hardware identifier model Enclose, the asymmetric cryptosystem in whole process causes the security of whole authorization identifying, however, this method is only capable of by authorizing mould The mode that block transmits STBID scopes is to be verified, the mode underaction of encryption and decryption.
The content of the invention
The embodiments of the invention provide a kind of middleware authorization method and device based on JavaScript, it is intended to solves existing It is to be verified to have technology to be only capable of by way of authorization module transmits STBID scopes, and the mode underaction of encryption and decryption is asked Topic.
On the one hand, there is provided a kind of middleware authorization method based on JavaScript, methods described include:
Obtain the authority checking method of default JavaScript descriptions license hardware identifier;
Local terminal hardware identifier is read by the api interface of graft layers;
Local terminal hardware identifier described in the authority checking method validation is called whether in the range of the license hardware identifier, If it is, local terminal middleware is legal middleware.
On the other hand, there is provided a kind of middleware authorization device based on JavaScript, described device include:
Method acquiring unit, for obtaining the authority checking method of default JavaScript descriptions license hardware identifier;
Mark acquiring unit, the api interface for identifying by graft layers read local terminal hardware identifier;
ID authentication unit, for call local terminal hardware identifier described in the authority checking method validation whether it is described permitted Can be in the range of hardware identifier, if it is, local terminal middleware is legal middleware.
In the embodiment of the present invention, the authority checking method that hardware identifier is permitted in default JavaScript descriptions is obtained;Pass through The api interface of graft layers reads local terminal hardware identifier;Whether call local terminal hardware identifier described in the authority checking method validation In the range of the license hardware identifier, if it is, local terminal middleware is legal middleware, the present invention, JavaScript is used Mode completely describe verification method and process, flexibly can set and change verification method and process.
Brief description of the drawings
Fig. 1 is the flow chart for the middleware authorization method based on JavaScript that the embodiment of the present invention one provides;
Fig. 2 is the structured flowchart for the middleware authorization device based on JavaScript that the embodiment of the present invention four provides.
Embodiment
In order to make the purpose , technical scheme and advantage of the present invention be clearer, it is right below in conjunction with drawings and Examples The present invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, and It is not used in the restriction present invention.
In embodiments of the present invention, the authority checking method of default JavaScript descriptions license hardware identifier is obtained;It is logical The api interface for crossing graft layers reads local terminal hardware identifier;Calling local terminal hardware identifier described in the authority checking method validation is It is no to permit described in the range of hardware identifier, if it is, local terminal middleware is legal middleware.
It is described in detail below in conjunction with realization of the specific embodiment to the present invention:
Embodiment one
Fig. 1 shows the realization stream for the middleware authorization method based on JavaScript that the embodiment of the present invention one provides Journey, details are as follows:
In step S101, the authority checking method of default JavaScript descriptions license hardware identifier is obtained.
In the present embodiment, the JavaScript is that a kind of based on object and event-driven and have relative safety Client-side scripting language.It is also a kind of script for being widely used in client Web exploitations simultaneously, is commonly used to add to html web page Add dynamic function, such as the various operations of response user.Specific verification method and process are completely described to In JavaScript code, authorization module is then all write into, such verification method and process are only relevant with authorization module, if Need to change verification method and process, need to only change authorization module, change authorization module, not interfere with the work(of middleware Energy.Make authority checking method and process more flexibly and changeable by this way, add and crack difficulty.
In step s 102, local terminal hardware identifier is read by the api interface of graft layers.
In the present embodiment, the hardware identifier is set top box ID, is unique mark.Pass through the getSTBID () of graft layers Obtain and read local terminal hardware identifier.
In step s 103, call local terminal hardware identifier described in the authority checking method validation whether hard in the license In the range of part mark, if it is, local terminal middleware is legal middleware.
In the present embodiment, call local terminal hardware identifier described in the authority checking method validation whether hard in the license In the range of part mark, if it is, local terminal middleware is legal middleware.Preferably, if the authority checking method validation The local terminal hardware identifier is not in the range of the license hardware identifier, then prompting user's local terminal middleware is pirate middleware. When local terminal hardware identifier described in the authority checking method validation not it is described license hardware identifier in the range of, by calling show () prompting user's local terminal middleware is pirate middleware, and show () is a method realized by watermark module, in TV Checking message is shown on machine, user is reminded with this, uses pirate middleware.This method can force when realizing Regulation can only be called internally, that is, can not be called in the html page of reality, can avoid by third party's error calls To this method.
It is that hardware identifier sporadically can also be read by the api interface of graft layers, again as a preferred scheme Local terminal hardware identifier described in the authority checking method validation is called whether in the range of the license hardware identifier.
The present embodiment, verification method and process are completely described with JavaScript mode, can flexibly be set With modification verification method and process.
Embodiment two
Fig. 2 shows the concrete structure for the middleware authorization device based on JavaScript that the embodiment of the present invention two provides Block diagram, for convenience of description, it illustrate only the part related to the embodiment of the present invention.In the present embodiment, this is based on JavaScript middleware authorization device includes:Method acquiring unit 21, mark acquiring unit 22, ID authentication unit 23, Pirate Tip element 24 and again authentication unit 25.
Wherein, method acquiring unit 21, for obtaining the authority checking of default JavaScript descriptions license hardware identifier Method;
Mark acquiring unit 22, the api interface for identifying by graft layers read local terminal hardware identifier;
ID authentication unit 23, for whether calling local terminal hardware identifier described in the authority checking method validation described Permit in the range of hardware identifier, if it is, local terminal middleware is legal middleware.
Further, described device also includes:
Pirate Tip element 24, if do not permitted for local terminal hardware identifier described in the authority checking method validation described It can then prompt that user's local terminal middleware is pirate middleware in the range of hardware identifier.
Further, described device also includes:
Authentication unit 25 again, hardware identifier is read for the api interface sporadically by graft layers, calls institute again Local terminal hardware identifier described in authority checking method validation is stated whether in the range of the license hardware identifier.
Further, the hardware identifier is set top box ID.
Middleware authorization device provided in an embodiment of the present invention based on JavaScript can be applied foregoing corresponding In embodiment of the method one, details will not be repeated here referring to the description of above-described embodiment one.
It is worth noting that, in said system embodiment, included unit is simply drawn according to function logic Point, but above-mentioned division is not limited to, as long as corresponding function can be realized;In addition, each functional unit is specific Title is also only to facilitate mutually distinguish, the protection domain being not intended to limit the invention.
In addition, one of ordinary skill in the art will appreciate that realize all or part of step in the various embodiments described above method It is that by program the hardware of correlation can be instructed to complete, corresponding program can be stored in a computer-readable storage and be situated between In matter, described storage medium, such as ROM/RAM, disk or CD.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all essences in the present invention All any modification, equivalent and improvement made within refreshing and principle etc., should be included in the scope of the protection.

Claims (8)

1. a kind of middleware authorization method based on JavaScript, it is characterised in that methods described includes:
Obtain the authority checking method of default JavaScript descriptions license hardware identifier;Specific verification method and process It is described in JavaScript code, then all writes into authorization module;If necessary to change verification method and process, it is only necessary to Change the authorization module;
Local terminal hardware identifier is read by the api interface of graft layers;The hardware identifier is set top box ID, passes through graft layers GetSTBID () reads local terminal hardware identifier;
Local terminal hardware identifier described in the authority checking method validation is called whether in the range of the license hardware identifier, if It is that then local terminal middleware is legal middleware;When local terminal hardware identifier described in the authority checking method validation is not permitted described Can be in the range of hardware identifier, by calling show () to prompt, user's local terminal middleware is pirate middleware, and show () is a water The method that impression block is realized, for showing checking message on a television set;Methods described, can mandatory provision when realizing It can internally call, that is, can not be called in the html page of reality.
2. the method as described in claim 1, it is characterised in that methods described also includes:
If local terminal hardware identifier described in the authority checking method validation in the range of the license hardware identifier, is not prompted User's local terminal middleware is pirate middleware.
3. the method as described in claim 1, it is characterised in that methods described also includes:
Hardware identifier is sporadically read by the api interface of graft layers, called again described in the authority checking method validation Whether local terminal hardware identifier is in the range of the license hardware identifier.
4. the method as described in claim 1,2 or 3, it is characterised in that the hardware identifier is set top box ID.
5. a kind of middleware authorization device based on JavaScript, it is characterised in that described device includes:
Method acquiring unit, for obtaining the authority checking method of default JavaScript descriptions license hardware identifier;Specific Verification method and process be described in JavaScript code, then all write into authorization module;Tested if necessary to change Demonstrate,prove method and process, it is only necessary to change the authorization module;
Mark acquiring unit, the api interface for identifying by graft layers read local terminal hardware identifier;The hardware identifier is machine Top box ID, local terminal hardware identifier is read by the getSTBID () of graft layers;
ID authentication unit, for calling local terminal hardware identifier described in the authority checking method validation whether hard in the license In the range of part mark, if it is, local terminal middleware is legal middleware;When local terminal described in the authority checking method validation is hard Part mark is among pirate by calling show () to prompt user's local terminal middleware not in the range of the license hardware identifier Part, show () is the method that a watermark module is realized, for showing checking message on a television set;Methods described is being realized When, meeting mandatory provision can only be called internally, that is, can not be called in the html page of reality.
6. device as claimed in claim 5, it is characterised in that described device also includes:
Pirate Tip element, if for local terminal hardware identifier described in the authority checking method validation not in the license hardware In the range of mark, then prompting user's local terminal middleware is pirate middleware.
7. device as claimed in claim 5, it is characterised in that described device also includes:
Authentication unit again, hardware identifier is read for the api interface sporadically by graft layers, calls the mandate again Whether verification method verifies the local terminal hardware identifier in the range of the license hardware identifier.
8. the device as described in claim 5,6 or 7, it is characterised in that the hardware identifier is set top box ID.
CN201410325822.7A 2014-07-09 2014-07-09 A kind of middleware authorization method and device based on JavaScript Active CN104102859B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410325822.7A CN104102859B (en) 2014-07-09 2014-07-09 A kind of middleware authorization method and device based on JavaScript

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410325822.7A CN104102859B (en) 2014-07-09 2014-07-09 A kind of middleware authorization method and device based on JavaScript

Publications (2)

Publication Number Publication Date
CN104102859A CN104102859A (en) 2014-10-15
CN104102859B true CN104102859B (en) 2017-12-19

Family

ID=51671003

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410325822.7A Active CN104102859B (en) 2014-07-09 2014-07-09 A kind of middleware authorization method and device based on JavaScript

Country Status (1)

Country Link
CN (1) CN104102859B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105871901B (en) * 2016-05-25 2019-09-20 深圳时瑞鸿科技有限公司 The method that dynamic Internet of Things encrypts safely
CN106385631B (en) * 2016-11-02 2019-07-05 北京数码视讯软件技术发展有限公司 A kind of middleware of set top box system authorization method, apparatus and set-top box
CN106778193B (en) * 2016-11-14 2023-02-03 北京握奇智能科技有限公司 Client and UI interaction method
CN106792186A (en) * 2016-11-29 2017-05-31 青岛海信宽带多媒体技术有限公司 The middleware access control method and device of media network terminal

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102202092A (en) * 2011-04-28 2011-09-28 李波 Television bank public service platform
CN102609647A (en) * 2011-01-25 2012-07-25 微软公司 Factoring middleware for anti-piracy
CN102867138A (en) * 2012-08-23 2013-01-09 深圳市同洲电子股份有限公司 Copyright protection method and device for STB (set top box) middleware
CN102904925A (en) * 2012-08-29 2013-01-30 四川长虹电器股份有限公司 Three-screen-interaction-based cross-platform widget middleware system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102609647A (en) * 2011-01-25 2012-07-25 微软公司 Factoring middleware for anti-piracy
CN102202092A (en) * 2011-04-28 2011-09-28 李波 Television bank public service platform
CN102867138A (en) * 2012-08-23 2013-01-09 深圳市同洲电子股份有限公司 Copyright protection method and device for STB (set top box) middleware
CN102904925A (en) * 2012-08-29 2013-01-30 四川长虹电器股份有限公司 Three-screen-interaction-based cross-platform widget middleware system

Also Published As

Publication number Publication date
CN104102859A (en) 2014-10-15

Similar Documents

Publication Publication Date Title
KR101786177B1 (en) Method and apparatus for performing secure bluetooth communication
CN108684041B (en) System and method for login authentication
KR101228852B1 (en) A method of processing drm rights, a drm system, and a computer-readable medium
CN104102859B (en) A kind of middleware authorization method and device based on JavaScript
US8850542B2 (en) Code-based authorization of mobile device
CN104113534B (en) The login system and method for application APP
CN102724204B (en) Secure and trusted capability opening platform
JP5615716B2 (en) Apparatus and method for digital rights management
US10812483B2 (en) Account login method and apparatus
CN104113552A (en) Platform authorization method, platform server side, application client side and system
CN107145769B (en) Digital Rights Management (DRM) method, equipment and system
US8856900B2 (en) Method for authorising a connection between a computer terminal and a source server
US11057375B1 (en) User authentication through registered device communications
TWI723736B (en) Block chain-based copyright protection method, device and electronic equipment
CN105075176B (en) Challenge-response method and associated client device
CN104158802A (en) Platform authorization method, platform service side, application client side and system
CN105429943B (en) Information processing method and terminal thereof
CN105721903A (en) Method and system for playing online videos
US20230132485A1 (en) System for Thin Client Devices in Hybrid Edge Cloud Systems
WO2014183704A1 (en) Software registration control method, authentication server and terminal
CN105024813B (en) A kind of exchange method of server, user equipment and user equipment and server
CN103108245B (en) A kind of intelligent television pays cipher key system and method for payment based on intelligent television
KR102160523B1 (en) Method and apparatus for encrypting and decrypting a multimedia content
CN113312664A (en) User data authorization method and user data authorization system
CN110446075A (en) Encryption method and device, decryption method and device, electronic equipment

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant