CN104837035A - Video playing method and terminal - Google Patents

Video playing method and terminal Download PDF

Info

Publication number
CN104837035A
CN104837035A CN 201510218522 CN201510218522A CN104837035A CN 104837035 A CN104837035 A CN 104837035A CN 201510218522 CN201510218522 CN 201510218522 CN 201510218522 A CN201510218522 A CN 201510218522A CN 104837035 A CN104837035 A CN 104837035A
Authority
CN
Grant status
Application
Patent type
Prior art keywords
encrypted
terminal
video
authentication
encryption
Prior art date
Application number
CN 201510218522
Other languages
Chinese (zh)
Other versions
CN104837035B (en )
Inventor
刘昆
Original Assignee
华为软件技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television, VOD [Video On Demand]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • H04N21/2541Rights Management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television, VOD [Video On Demand]
    • H04N21/60Selective content distribution, e.g. interactive television, VOD [Video On Demand] using Network structure or processes specifically adapted for video distribution between server and client or between remote clients; Control signaling specific to video distribution between clients, server and network components, e.g. to video encoder or decoder; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • H04N21/63345Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television, VOD [Video On Demand]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/845Structuring of content, e.g. decomposing content into time segments
    • H04N21/8456Structuring of content, e.g. decomposing content into time segments by decomposing the content in the time domain, e.g. in time segments

Abstract

The invention discloses a video playing method and a terminal, and belongs to the communication field. The method comprises following steps: receiving video playing requests including identification of a video to be played; downloading encryption fragments of the video to be played from a streaming media server, and sending authentication requests to an authentication server; decoding the downloaded encryption fragments through encryption keys when receiving first information carrying the encryption keys of the encryption fragments; sending the first information by the authentication server after the first information passes the authentication at the terminal; and playing the decoded encryption fragments. The terminal comprises a receiving module, a downloading module, a decoding module and a playing module. According to the invention, the fragments of the video can be buffered without waiting authentication results, so that the buffering time of the fragments is shortened. The buffering time of the fragments is shortened, so that partial delay from the moment when users trigger playing requests to the moment when the video is actually played is reduced, and the watching experience of the users can be improved.

Description

一种视频播放方法及终端 A video playback method and terminal

技术领域 FIELD

[0001] 本发明涉及通讯领域,特别涉及一种视频播放方法及终端。 [0001] The present invention relates to the field of communications, and particularly relates to a video playback method and a terminal.

背景技术 Background technique

[0002] 在通讯领域,在网络上层(英文:Over The Top,简称:0TT)指的是借助运营商的网络服务,提供包括短信、语音和视频等类型的服务。 [0002] In the field of communications, the network top (English: Over The Top, abbreviation: 0TT) refers to the aid of the operator's network, and provide services including text messaging, voice and video types.

[0003] OTT视频一般采用与超文本传输协议(英文:Hypertext Transfer Protocol,简称HTTP)关联的动态码率协议播放,其播放流程包括,首先,在用户触发播放请求后,终端通知鉴权服务器鉴权,以确定终端具有播放权限;其次,在鉴权通过后,终端获得鉴权服务器下发的视频内容的密钥;在获得密钥后,终端再开始下载视频内容,并采用密钥解密和播放视频。 [0003] OTT video generally use the Hypertext Transfer Protocol: Protocol VBR player association (English Hypertext Transfer Protocol, referred to as HTTP), which includes a play process, first, the user triggers playback request, the authentication server notifies the terminal discriminator the right to determine the terminal has play rights; secondly, after the authentication succeeds, the terminal obtains the video content key sent by the authentication server; after obtaining the key, then the terminal begins downloading the video content, and using the key to decrypt and play video.

[0004] 在实现本发明的过程中,发明人发现现有技术至少存在以下问题:从用户触发播放请求到视频实际播放,终端需要顺序完成鉴权、获取密钥、以及下载视频内容,这一系列操作将耗费不少时间,致使从用户触发播放请求到视频实际播放出来的时延较长,影响用户的观看体验。 [0004] During the implementation of the present invention, the inventors found that the prior art at least has the following problems: play request from a user to trigger the actual video player, the terminal needs to complete the authentication sequence, obtain the key, and to download the video content, the series operation will cost a lot of time, causing the user to trigger a request to play a longer delay actual video play out, and affect the user's viewing experience.

发明内容 SUMMARY

[0005] 为了减少从用户触发播放请求到视频实际播放出来的时延,本发明实施例提供了一种视频播放方法及终端。 [0005] In order to reduce play request from the user to trigger the actual video play out delay, embodiments provide a video playback method and a terminal according to the present invention. 所述技术方案如下: The technical solutions are as follows:

[0006] 第一方面,本发明提供了一种视频播放方法,所述方法包括: [0006] In a first aspect, the present invention provides a video player, the method comprising:

[0007] 终端接收视频播放请求,所述视频播放请求包括待播放的视频的标识; [0007] The terminal receives a video playback request, the video playback request comprises an identification of a video to be played;

[0008] 从所述流媒体服务器下载所述待播放的视频的加密分片,并向鉴权服务器发送鉴权请求; [0008] downloaded to be played from the server the encrypted streaming video slice, and sends an authentication request to the authentication server;

[0009] 当接收到携带加密分片的加密密钥的第一信息时,采用所述加密密钥解密已下载的加密分片;其中,所述第一信息由所述鉴权服务器在所述终端通过鉴权后发送; [0009] Upon receiving the first message carrying the encrypted encryption key slice, using said encryption key for decrypting the downloaded encrypted fragments; wherein the first information by the authentication server in the sent by the terminal after the authentication;

[0010] 播放解密后的加密分片。 [0010] After playing the encrypted decryption fragment.

[0011] 结合第一方面,在第一方面的第一实施方式中,所述方法还包括: [0011] with the first aspect, a first embodiment of the first aspect, the method further comprising:

[0012] 当接收到第二信息时,停止下载加密分片并删除已下载的加密分片,其中,所述第二信息由所述鉴权服务器在所述终端未通过鉴权后发送。 [0012] When receiving the second message, stop the download and delete the encrypted encryption slice slices downloaded, wherein the second information by the authentication server by the terminal is not transmitted after the authentication.

[0013] 结合第一方面,在第一方面的第二实施方式中,从所述流媒体服务器下载加密分片,包括: [0013] with the first aspect, the second embodiment of the first aspect, the encryption download fragments from the streaming media server, comprising:

[0014] 从所述流媒体服务器下载索引文件;其中,所述索引文件指明各个所述加密分片的播放顺序、以及各个所述加密分片在所述流媒体服务器上的存储地址; [0014] from the streaming server to download the index file; wherein each of the index file indicating the encrypted playback sequence fragment, and a storage address on each of the encrypted media server in the fragmented stream;

[0015] 按照各个所述加密分片的播放顺序,从各个所述加密分片在所述流媒体服务器上的存储地址下载加密分片。 [0015] each played in the order of the encrypted fragments, each fragment from the encrypted memory address on the stream media server to download the encrypted fragments.

[0016] 结合第一方面及第一方面的第二实施方式,在第一方面的第三实施方式中,按照各个所述加密分片的播放顺序,从各个所述加密分片在所述流媒体服务器上的存储地址下载加密分片,包括: [0016] with the first aspect and the second aspect of the second embodiment, the third embodiment of the first aspect, the respective play order according to the encrypted fragment, from each of said slices in said stream encryption storage address on the media server to download encrypted fragment, comprising:

[0017] 按照各个所述加密分片的编号顺序,下载第一码率的加密分片,直到下载的所述第一码率的加密分片的数量达到第一预定数量;其中,所述加密分片的编号顺序与所述加密分片的播放顺序相同,同一个编号的加密分片包括第一码率的加密分片和第二码率的加密分片,同一个编号的第一码率的加密分片与第二码率的加密分片的视频内容相同,所述第一码率小于所述第二码率; [0017] According to various fragments of the encrypted sequence numbers, encryption downloaded first slice rate, until the number of the downloaded encrypted first bitrate reaches a first predetermined number; wherein said encryption fragment sequence number encrypted with the same fragment of the play order, the same number of slices comprises a first encrypted encryption code rate and the second coding rate slice encryption slice, a number of the first code rate the same encrypting the same encrypted piece and the second sub-bitrate video content, the second rate less than the first rate;

[0018] 按照排列在已下载的第一码率的加密分片的编号之后的编号顺序,下载所述第二码率的加密分片。 [0018] After the sequential order number are arranged in a first encryption code rate slice downloaded, downloading said encrypted second slice rate.

[0019] 结合第一方面及第一方面的第一至第三实施方式,在第一方面的第四实施方式中,所述鉴权请求包括终端标识和所述待播放的视频的标识; [0019] First to third embodiments in connection with the first aspect and the second aspect, a fourth embodiment of the first aspect, the authentication request includes the terminal identifier and the identifier of the video to be played;

[0020] 在所述接收视频播放请求之前,所述方法还包括: [0020] Before receiving the video playback request, the method further comprising:

[0021] 向所述鉴权服务器发送设备注册请求,所述设备注册请求包括所述终端标识和用户标识; [0021] The transmitting device registration request to the authentication server, the device registration request includes the terminal identifier and the user identifier;

[0022] 所述加密分片的加密密钥采用所述终端的设备证书加密,所述设备证书是所述鉴权服务器收到所述设备注册请求且完成设备注册后分配给所述终端的。 [0022] The encryption key encrypted using slice encrypted certificate of the terminal device, the device certificate is the authentication server receives the registration request and after completion of the apparatus registration device assigned to the terminal.

[0023] 第二方面,本发明提供了一种终端,所述终端包括: [0023] In a second aspect, the present invention provides a terminal, said terminal comprising:

[0024] 接收模块,用于接收视频播放请求,所述视频播放请求包括待播放的视频的标识; [0024] a receiving module for receiving a video playback request, the video playback request comprises an identification of a video to be played;

[0025] 下载模块,用于从所述流媒体服务器下载所述待播放的视频的加密分片,并向鉴权服务器发送鉴权请求; [0025] The download module for downloading the encryption to be played from the media server streaming video fragment, and sends an authentication request to the authentication server;

[0026] 解密模块,用于当接收到携带加密分片的加密密钥的第一信息时,采用所述加密密钥解密已下载的加密分片;其中,所述第一信息由所述鉴权服务器在所述终端通过鉴权后发送; [0026] a decryption module configured to, when receiving the first message carrying the encrypted encryption key slice, using said encryption key for decrypting the downloaded encrypted fragments; wherein the first information by the discriminator send to the server via the terminal after the authentication;

[0027] 播放模块,用于播放解密后的加密分片。 [0027] a playing module, for playing the decryption of the encrypted fragments.

[0028] 结合第二方面,在第二方面的第一实施方式中,所述终端还包括删除模块, [0028] conjunction with the second aspect, the first embodiment of the second aspect, the terminal further comprises a deleting module,

[0029] 所述删除模块用于,当接收到第二信息时,停止下载加密分片并删除已下载的加密分片,其中,所述第二信息由所述鉴权服务器在所述终端未通过鉴权后发送。 [0029] The deleting module for, when receiving the second message, stop the download and delete the encrypted encryption slice slices downloaded, wherein the second information is not used by the terminal to the authentication server after transmission through the authentication.

[0030] 结合第二方面,在第二方面的第二实施方式中,所述下载模块包括: [0030] combination with the second aspect, a second embodiment of the second aspect, the download module comprises:

[0031] 鉴权单元,用于向所述鉴权服务器发送所述鉴权请求; [0031] an authenticating unit, configured to send the authentication request to the authentication server;

[0032] 第一下载单元,用于从所述流媒体服务器下载索引文件;其中,所述索引文件指明各个所述加密分片的播放顺序、以及各个所述加密分片在所述流媒体服务器上的存储地址; [0032] First download unit configured to download the index file from the media server of the stream; wherein the index file indicating the respective encrypted fragment playback order, and each of the slices in the encrypted streaming media server the storage address;

[0033] 第二下载单元,用于按照各个所述加密分片的播放顺序,从各个所述加密分片在所述流媒体服务器上的存储地址下载加密分片。 [0033] The second download unit, for each of the encrypted fragments according to the playback order, from the respective encrypted fragment storage address on the streaming media server downloads the encrypted fragments.

[0034] 结合第二方面及第二方面的第二实施方式,在第二方面的第三实施方式中,所述第二下载单元用于, [0034] and the binding of the second aspect of the second embodiment of the second aspect, a third embodiment of the second aspect of the embodiment, the second means for downloading,

[0035] 按照各个所述加密分片的编号顺序,下载第一码率的加密分片,直到下载的所述第一码率的加密分片的数量达到第一预定数量;其中,所述加密分片的编号顺序与所述加密分片的播放顺序相同,同一个编号的加密分片包括第一码率的加密分片和第二码率的加密分片,同一个编号的第一码率的加密分片与第二码率的加密分片的视频内容相同,所述第一码率小于所述第二码率; [0035] According to various fragments of the encrypted sequence numbers, encryption downloaded first slice rate, until the number of the downloaded encrypted first bitrate reaches a first predetermined number; wherein said encryption fragment sequence number encrypted with the same fragment of the play order, the same number of slices comprises a first encrypted encryption code rate and the second coding rate slice encryption slice, a number of the first code rate the same encrypting the same encrypted piece and the second sub-bitrate video content, the second rate less than the first rate;

[0036] 按照排列在已下载的第一码率的加密分片的编号之后的编号顺序,下载所述第二码率的加密分片。 [0036] After the sequential order number are arranged in a first encryption code rate slice downloaded, downloading said encrypted second slice rate.

[0037] 结合第二方面及第二方面的第一至第三实施方式,在第二方面的第四实施方式中,所述下载模块向鉴权服务器发送的鉴权请求包括终端标识和所述待播放的视频的标识; [0037] conjunction with the second aspect and the first to third embodiments of the second aspect, a fourth embodiment of the second aspect, downloading the authentication module transmits a request to the authentication server includes a terminal identifier and the to identify the video to be played;

[0038] 所述终端还包括发送模块,所述发送模块用于,向所述鉴权服务器发送设备注册请求,所述设备注册请求包括所述终端标识和用户标识; [0038] The terminal further comprises a transmitting module, a transmitting module for transmitting the device registration request to the authentication server, the device registration request includes the terminal identifier and the user identifier;

[0039] 所述解密模块接收的加密分片的加密密钥采用所述终端的设备证书加密,所述设备证书是所述鉴权服务器收到所述设备注册请求且完成设备注册后分配给所述终端的。 [0039] The encryption key encrypted decryption module receiving fragmented using encrypted certificate of the terminal device, the device certificate is the authentication server receives the registration request and the device assigned to the registration completion equipment said terminal.

[0040] 本发明实施例提供的技术方案带来的有益效果是: [0040] Embodiments of the invention provide a technical solution is beneficial effects:

[0041] 通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0041] Upon receiving a video playback request, the streaming media downloaded from the server by the terminal fragment encrypted video to be played, and sends an authentication request to the authentication server, the authentication result may not wait for buffering video slices shortens the time slice buffer; when receiving via the first encryption key information is carried in the slice, slice encrypted encryption key for decrypting the downloaded, the first information by the authentication server by the terminal after transmitting the authentication; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the time delay from the user to trigger the video portion of the actual playback request to play out, to improve the user's viewing experience.

附图说明 BRIEF DESCRIPTION

[0042] 为了更清楚地说明本发明实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。 [0042] In order to more clearly illustrate the technical solutions in the embodiments of the present invention, as briefly described in the introduction to the accompanying drawings required for use in describing the embodiments. Apparently, the drawings in the following description are only some of the present invention. embodiments, those of ordinary skill in the art is concerned, without creative efforts, can derive from these drawings other drawings.

[0043] 图1是本发明实施例提供的OTT视频播放的硬件架构框图; [0043] FIG. 1 is a block diagram showing a hardware architecture of OTT video player according to an embodiment of the present invention;

[0044] 图2是本发明实施例提供的一种视频播放方法的流程图; [0044] FIG 2 is a flowchart of a video playback method according to an embodiment of the present invention;

[0045] 图3和图4是本发明实施例提供的又一种视频播放方法的流程图; [0045] FIG. 3 and FIG. 4 is another flowchart of a video playback method according to an embodiment of the present invention;

[0046] 图5和图6是本发明实施例提供的一种终端的结构示意图; [0046] FIG. 5 and FIG. 6 is a structural diagram of a terminal according to an embodiment of the present invention;

[0047] 图7是本发明实施例提供的一种终端的硬件结构框图。 [0047] FIG. 7 is a block diagram showing a hardware configuration of a terminal according to an embodiment of the present invention.

具体实施方式 detailed description

[0048] 为使本发明的目的、技术方案和优点更加清楚,下面将结合附图对本发明实施方式作进一步地详细描述。 [0048] To make the objectives, technical solutions, and advantages of the present invention will become apparent in conjunction with the accompanying drawings of the following embodiments of the present invention will be described in further detail.

[0049] 为便于理解本发明实施例提供的技术方案,首先介绍一下在网络上层(英文:Over The Top,简称:0TT)视频播放的硬件架构。 [0049] To facilitate understanding of the technical solutions provided by embodiments of the present invention, first introduce the upper layer network architectures for video playback (English: 0TT: Over The Top, referred to). 参见图1,该硬件架构主要包括流媒体服务器10、鉴权服务器20和终端30。 Referring to Figure 1, the architecture includes streaming media server 10, authentication server 20 and the terminal 30. 流媒体服务器10用于存储大量OTT视频资源。 10 streaming media server for storing large amounts OTT video resources. 鉴权服务器20用于确定终端30是否具备播放流媒体服务器10上存储的指定OTT视频的权限。 Authentication server 20 for determining whether the terminal 30 is provided on the specified permission OTT video player 10 stores the streaming media server. 该硬件架构中,鉴权服务器20实现的是业务逻辑(包括授权和计费),需要满足在任何时间均可以动态调整的要求,而流媒体服务器10实现的是数据访问,相对于业务逻辑,其动态调整的要求不是很高。 The hardware architecture, the authentication server 20 is implemented business logic (including authorization and accounting), needs to meet at any time can be dynamically adjusted to achieve the streaming media server 10 is a data access, with respect to the service logic, It requires dynamic adjustment is not very high.

[0050] 在播放OTT视频时,终端30需要分别与流媒体服务器10和鉴权服务器20通信。 [0050] When playing video OTT, each terminal 30 requires streaming server 10 and the authentication server 20 communication. 终端30与流媒体服务器10之间的通信遵循与超文本传输协议(英文:Hypertext TransferProtocol,简称HTTP)关联的动态码率协议(英文:Adaptive Bitrate Streaming),包括HTTP动态流(英文:HTTP Live Streaming,简称HLS)协议、HTTP平整流(英文:HTTPSmooth Streaming,简称HSS)协议、以及基于HTTP的动态自适应流(英文:DynamicAdaptive Streaming over HTTP,简称DASH)协议。 Terminal 30 and the communication between the streaming server 10 follows a Hypertext Transfer Protocol (English: Hypertext TransferProtocol, referred to as HTTP) protocol associated VBR (English: Adaptive Bitrate Streaming), including HTTP Dynamic stream (in English: HTTP Live Streaming , referred to as HLS) protocol, HTTP smooth flow (English: HTTPSmooth streaming, referred to as HSS) protocol, and the dynamic adaptive streams based on HTTP (English: DynamicAdaptive streaming over HTTP, referred DASH) protocol. 按照前述动态码率协议规定,OTT视频被分割成若干流媒体分片存储在流媒体服务器10上。 According to the predetermined protocol VBR, OTT streaming video divided into several fragments stored on the streaming media server 10. 各个OTT视频对应一个索引文件,该索引文件指明了各个流媒体分片在流媒体服务器10上的存储地址。 OTT video corresponding to a respective index file, the index file indicating the respective streaming media fragment is stored in the address of the streaming server 10. 终端30需先下载索引文件,再下载流媒体分片。 Terminal 30 must first download the index file, and then download streaming media segment.

[0051] 在本发明实施例中,终端可以指计算机、电视机、机顶盒或移动终端等具备视频播放功能的设备。 [0051] In an embodiment of the present invention, the terminal equipment may refer to video-enabled computer, a television, a set top box or a mobile terminal or the like. 移动终端包括但不限于智能手机和平板电脑。 The mobile terminal including but not limited to smart phones and tablets.

[0052] 实施例一 [0052] Example a

[0053] 本发明实施例提供了一种视频播放方法,适用于图1示出的硬件架构。 [0053] Embodiments of the present invention there is provided a video playback method for a hardware architecture illustrated in FIG. 参见图2,该方法流程包括: Referring to Figure 2, which process comprises:

[0054] 步骤11、终端接收视频播放请求。 [0054] Step 11, the terminal receives a video playback request.

[0055] 其中,该视频播放请求包括待播放的视频的标识,用于指示用户请求播放的视频。 [0055] wherein the request identifies a video player comprising a video to be played, indicating that the user request for video playback.

[0056] 其中,待播放的视频包括至少一个加密分片,该加密分片是待播放的视频的分片文件经过加密后得到的。 [0056] wherein video to be played includes at least one encrypted slice, the slice is encrypted segment file to be played after the encrypted video obtained.

[0057] 步骤102、终端从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求。 [0057] Step 102, the terminal to be downloaded from the streaming media server played encrypted video slice, and sends an authentication request to the authentication server.

[0058] 其中,流媒体服务器上存储有待播放的视频的至少一个加密分片。 [0058] wherein the storage to be played on a video streaming server encrypting the at least one slice. 进一步地,待播放的视频还包括索引文件,该索引文件指明了各个加密分片的播放顺序、以及各个加密分片的存储地址。 Further, the video to be played further comprises an index file, the index file storage address indicates the playback sequence of each encrypted fragment, and the respective encrypted fragment. 流媒体服务器上存储有待播放视频的索引文件。 Play video files to be stored in the index on the streaming server. 终端可以先下载索引文件,获得各个加密分片的存储地址,再下载加密分片。 The terminal can download the index file, obtain the storage address of each encrypted fragment, and then downloads the encrypted fragments.

[0059] 在具体实现时,终端可以在收到视频播放请求时,立即开始从流媒体服务器下载加密分片,同时向鉴权服务器发送鉴权请求;或者,也可以在收到视频播放请求时,向鉴权服务器发送鉴权请求,然后立即开始从流媒体服务器下载加密分片;或者,还可以下载索引文件,在索引文件下载完毕后,再向鉴权服务器发送鉴权请求。 Or, may be a video playback request is received; [0059] In specific implementation, the terminal may receive during a video playback request, immediately begins to download fragments from the encrypted streaming media server, and send an authentication request to the authentication server sending an authentication request to the authentication server, then immediately begin downloading fragments from the encrypted streaming media server; or can also download the index file, the index file after the download is complete, the authentication server sends an authentication request again. 也就是说,终端不必等待鉴权结果,即可以从流媒体服务器下载加密分片。 That is, the terminal authentication result without waiting, i.e., to download fragments from the encrypted streaming media server.

[0060] 其中,鉴权服务器接收鉴权请求。 [0060] wherein, the authentication server receives the authentication request.

[0061] 步骤103、鉴权服务器确定终端是否具有播放该视频的权限。 [0061] Step 103, the authentication server determines whether the terminal has the rights to play the video.

[0062]当终端具有播放该视频的权限时,执行步骤104 ;当终端不具备播放该视频的权限时,执行步骤106。 [0062] When a terminal having a permission to play the video, step 104 is performed; when the terminal does not have permission to play the video, step 106 is performed.

[0063] 步骤104、鉴权服务器发送第一信息。 [0063] Step 104, the authentication server transmits a first message.

[0064] 其中,第一信息携带加密分片的加密密钥。 [0064] wherein the first encrypted encryption information carried slice key.

[0065] 其中,鉴权服务器中预先存储了视频的加密分片与加密密钥的对应关系。 [0065] wherein, the authentication server stores in advance a correspondence relationship with the slice of video encryption encryption key.

[0066] 其中,终端接收第一信息。 [0066] The terminal receives the first information.

[0067] 在步骤104之后执行步骤105。 [0067] In step 105 after step 104.

[0068] 步骤105、终端采用加密密钥解密已下载的加密分片,播放解密后的加密分片。 [0068] Step 105, the terminal uses the encryption key to decrypt the encrypted fragments downloaded, after playing the encrypted decryption slice.

[0069] 步骤106、鉴权服务器发送第二信息。 [0069] Step 106, the authentication server transmits a second message.

[0070] 其中,第二信息表明鉴权未通过。 [0070] wherein the second information indicates that the authentication failed.

[0071] 其中,终端接收第二信息。 [0071] wherein the terminal receives the second information.

[0072] 在步骤106之后执行步骤107。 [0072] In step 107 after step 106.

[0073] 步骤107、终端停止下载加密分片并删除已下载的加密分片。 [0073] Step 107, the terminal stops download and delete the encrypted encryption slice slices downloaded.

[0074] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0074] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0075] 实施例二 [0075] Second Embodiment

[0076] 本发明实施例提供了一种视频播放方法,适用于图1示出的硬件架构。 Example [0076] The present invention provides a video playback method for a hardware architecture illustrated in FIG. 在本发明实施例中,将对鉴权服务器的鉴权方式进行详细描述。 In an embodiment of the present invention, the authentication server the authentication mode will be described in detail. 参见图3,该方法流程包括: Referring to Figure 3, which process comprises:

[0077] 步骤201、终端向鉴权服务器发送设备注册请求。 [0077] Step 201, the terminal device transmits a registration request to the authentication server.

[0078] 其中,该设备注册请求包括终端标识和用户标识。 [0078] wherein the apparatus registration request includes the terminal identification and user identification.

[0079] 具体地,终端上可以安装用于视频播放的应用的客户端。 [0079] In particular, you can install the client application for video playback on the terminal. 终端可以在用户首次登陆客户端时展示设备注册页面,以引导用户注册设备。 Display equipment registration page when the client terminal may debut the user to guide the user registration equipment. 在用户通过设备注册页面表达同意设备注册的意见后,终端向鉴权服务器发送设备注册请求。 After concurring opinions expressed by registered user equipment device registration page, the terminal device sends a registration request to the authentication server.

[0080] 其中,鉴权服务器接收设备注册请求。 [0080] wherein device authentication server receives a registration request.

[0081] 步骤202、鉴权服务器确定用户是否为指定用户,在用户为指定用户时,建立终端标识和用户标识的对应关系。 [0081] Step 202, the authentication server determines that the user is the specified user, when the user specifies a user identifier and a correspondence relationship between a user terminal identifier.

[0082] 在用户不为指定用户时,鉴权服务器可以拒绝设备注册请求。 [0082] when the user does not specify the user device authentication server the registration request may be denied.

[0083] 通过建立终端标识和用户标识的对应关系,能够将用户与终端绑定在一起。 [0083] By establishing corresponding relationship between the user identifier and the identifier of the terminal, the terminal user can be bound.

[0084] 在实际应用时,鉴权服务器可以限定每个用户注册的设备数量。 [0084] In practice, the authentication server may limit the number of devices registered for each user. 当与用户标识对应的终端标识超过一定数量时,鉴权服务器也可以拒绝设备注册请求。 When the identification corresponding to the user terminal identifier exceeds a certain number, the authentication device registration server can refuse the request. 进一步地,鉴权服务器还可以允许指定终端注册,而不允许非指定终端注册。 Further, the authentication server may also allow a specified terminal registration, without allowing non-designated terminal registration. 这样,只有指定终端才能使用视频播放应用,保证视频播放应用商的利益。 In this way, only the specified terminal application to use the video player, video player application to ensure the interests of business.

[0085] 在步骤202中,在用户为指定用户时,鉴权服务器还可以为终端分配一个设备证书并发送给终端。 [0085] In step 202, when the user specifies a user, an authentication server may also be assigned a terminal device sends the terminal certificate.

[0086] 其中,终端接收鉴权服务器发送的设备证书。 [0086] wherein the terminal receives the authentication device certificate sent by the server.

[0087] 步骤203、终端接收视频播放请求。 [0087] Step 203, the terminal receives a video playback request.

[0088] 其中,该视频播放请求包括待播放的视频的标识。 [0088] wherein the request comprises a video playback of a video to be played identification.

[0089] 该视频播放请求可以由用户触发。 [0089] The video player may be triggered by a user request. 比如,用户先启动并登陆前述安装在终端上的客户端,然后在客户端呈现的网页界面的引导下,采用触屏方式点击网页界面上某个视频图标,即触发该视频图标对应的视频的播放请求。 For example, users first start and log the previous client is installed on the terminal, and then under the guidance rendered on the client web interface, the use of touch-screen mode click on a video icon on the web interface that trigger the video icon corresponding video play request.

[0090] 步骤204、终端从流媒体服务器下载待播放的视频的加密分片。 [0090] Step 204, the terminal downloads the encryption to be played from the media server streaming video fragment.

[0091] 流媒体服务器上存储有待播放的视频的至少一个加密分片。 [0091] storing the video to be played on at least one streaming server encrypted fragment. 本步骤204包括如下步骤2041-步骤2042。 Step 204 This step comprises the following steps 2041- 2042.

[0092] 步骤2041、终端从流媒体服务器下载索引文件。 [0092] Step 2041, the index file from the terminal downloads streaming media server.

[0093] 其中,该索引文件指明各个加密分片的播放顺序、以及各个加密分片在流媒体服务器上的存储地址。 [0093] wherein the index file playback order specified in the respective encrypted fragment, and the respective encrypted fragment storage address on the streaming media server.

[0094] 其中,终端接收视频播放请求后,可以从互联网(web)服务器获得待播放的视频的索引文件在流媒体服务器上的存储地址。 [0094] wherein, after the terminal receives a video playback request, the playback can be obtained from the Internet (Web) server address of the video index file stored on the streaming media server. web服务器用于存储网页内容,比如客户端呈现的网页。 web server for storing web content, such as client-side rendering of the page. web服务器上还存储了视频标识与索引文件的统一资源定位符(英文=UniformResource Locator,简称URL)的对应关系。 On the web server also stores the Uniform Resource Locator identifies the video index file (English = UniformResource Locator, referred to as the URL) correspondence. 在用户触发视频播放请求后,web服务器可以将与待播放的视频的标识对应的索引文件的URL发送给终端。 After the user triggers a video playback request, web server may be played with the video URL of the index file corresponding to the identifier to the terminal.

[0095] 在完成索引文件的下载后,终端可以读取索引文件中指明的各个加密分片的排列顺序及URLo The order [0095] After the download is complete, the index file, the index file can be read in the terminal specified for each encrypted fragment and URLo

[0096] 步骤2042、终端按照各个加密分片的播放顺序,从各个加密分片在流媒体服务器上的存储地址下载加密分片。 [0096] Step 2042, the terminal according to the playing order each encrypted fragment, fragment downloaded from the respective encrypted storage address in a streaming server encryption slice.

[0097] 其中,各个加密分片可以具有不同的编号,编号的顺序与播放顺序相同。 [0097] wherein each encrypted fragment may have different numbers, the sequence number is the same as the playback order. 不同编号的加密分片的视频内容不同,但不同编号的加密分片的码率可以相同。 Number of different encryption different slices of the video, the encrypted code rate different numbers of fragments can be the same. 终端可以按照编号顺序,依次下载各个加密分片。 The terminal may sequential order, each successively downloaded encrypted fragments.

[0098] 步骤205、终端向鉴权服务器发送鉴权请求。 [0098] Step 205, the terminal sends an authentication request to the authentication server.

[0099] 其中,该鉴权请求包括终端标识和待播放的视频的标识。 [0099] wherein the authentication request includes a terminal identifier and the identifier of the video to be played.

[0100] 其中,步骤204与步骤205同时执行。 [0100] wherein, step 204 and step 205 simultaneously.

[0101] 其中,鉴权服务器接收鉴权请求。 [0101] wherein, the authentication server receives the authentication request.

[0102] 步骤206、鉴权服务器在建立的终端标识与用户标识的对应关系中,确定该终端标识对应的用户标识。 [0102] Step 206, the authentication server terminal identifier in the correspondence with the user identification established, it is determined that the user terminal identifier corresponding to the identifier.

[0103] 假若在建立的终端标识与用户标识的对应关系中,鉴权服务器未查询到该终端标识对应的用户标识,则鉴权服务器判定该终端为未注册终端。 [0103] If the terminal identifier in the correspondence with the user identification established, the authentication server is not queried to the user terminal identifier corresponding to the identifier, the authentication server determines that the terminal is a terminal not registered. 这时,鉴权服务器将通知终端先进行注册,在注册完成之后再进行鉴权。 In this case, the authentication server notifies the terminal to be registered, and then authenticate after registration is complete.

[0104] 步骤207、鉴权服务器获得与确定出的用户标识对应的业务范围,判断待播放的视频是否在对应的业务范围内。 [0104] Step 207, the authentication server obtains the user ID corresponding to the determined service range, it is determined whether the video to be played in the corresponding business.

[0105] 当待播放的视频在对应的业务范围内时,确定该终端具有播放该视频的权限,执行步骤208 ;当待播放的视频不在对应的业务范围内时,确定该终端不具有播放该视频的权限,执行步骤210。 [0105] When to be playing a video when the corresponding service range, determines that the terminal has permission to play the video, step 208 is performed; when be-played video is not corresponding service range, it is determined that the terminal does not have to play the permissions video, step 210.

[0106] 其中,鉴权服务器中预置了用户标识与业务范围的对应关系。 [0106] wherein the authentication server is preset corresponding relationship between the user identifier and service range.

[0107] 通过步骤206和步骤207实现了,鉴权服务器确定终端是否具有播放该视频的权限。 [0107] 207 and 206 to achieve a step by step, the authentication server determines whether the terminal has the rights to play the video.

[0108] 步骤208、鉴权服务器发送第一信息。 [0108] Step 208, the authentication server transmits a first message.

[0109] 其中,第一信息携带加密分片的加密密钥。 [0109] wherein the first encrypted encryption information carried slice key. 鉴权服务器可以根据待播放的视频标识和预置的视频的加密分片与加密密钥的对应关系,确定待播放的视频的加密分片的加密密钥。 Authentication server can be divided sheet and the corresponding relationship according to the encryption key encrypted video to be played and a preset video identification, encryption key determination video slice to be played.

[0110] 其中,加密分片的加密密钥可以采用终端的设备证书加密。 [0110] wherein the encryption key fragment may be encrypted device certificate using the terminal.

[0111] 需要说明的是,各个加密分片的加密密钥可以相同,也可以不同,甚至N个加密分片可以共用同一个密钥,N小于待播放的视频的所有分片数。 [0111] Incidentally, the encryption key for each encrypted fragment may be the same or different, even the N slices can share the encryption key is the same, less than all N number of fragments of video to be played. 各个加密分片具有不同的编号,第一信息中会指明加密分片编号与加密密钥的对应关系。 Encrypting each slice having a different number, the first information indicating a correspondence relationship will slice number and the encrypted encryption key.

[0112] 其中,终端接收第一信息。 [0112] The terminal receives the first information.

[0113] 其中,整个鉴权过程由鉴权服务器上的业务系统和内容数字版权加密保护技术(英文:Digital Rights Management,简称DRM)系统共同完成。 [0113] wherein the entire authentication process by the business systems and content encrypted digital copyright protection technology on the authentication server (in English: Management Digital Rights, referred to as DRM) systems work together. 业务系统主要完成用户鉴权,在用户鉴权通过后,通知DRM系统下发切片的加密密钥。 The system allows user authentication service, after the user authentication is passed, the notification sent in the slice DRM key encryption system.

[0114] 在步骤208之后执行步骤209。 [0114] In step 209 after step 208.

[0115] 步骤209、终端采用加密密钥解密已下载的加密分片,播放解密后的加密分片。 [0115] Step 209, the terminal uses the encryption key to decrypt the encrypted fragments downloaded, after playing the encrypted decryption slice.

[0116] 在接收第一信息后,终端可以先采用设备证书将加密密钥解密出来。 [0116] After receiving the first message, the terminal may use the first key to decrypt the encrypted device certificate out. 然后确定是否已下载第一预定数量的加密分片。 Then determines whether a first predetermined number of downloaded encrypted fragments. 当下载的加密分片数量小于第一预定数量时,继续下载加密分片。 When the number of downloads of encryption than the first predetermined number of fragments, fragments continue to download encrypted. 当已下载第一预定数量的加密分片时,一边采用加密密钥解密已下载的加密分片并播放解密后的分片,一边继续下载剩余的加密分片。 When the predetermined number has been downloaded a first time slice encrypted while using the encryption key for decrypting the encrypted slice downloaded and play the decrypted fragment, while continuing to download the remaining encrypted fragments.

[0117] 其中,第一预定数量可以通过用户的下载带宽、分片长度、以及网络抖动等动态计算出来。 [0117] wherein a first predetermined number may be computed dynamically by user download bandwidth, slice length, and network jitter. 确定已下载第一预定数量的加密分片后开始播放,主要是为了保证缓冲的数据时长足够长,播放可以足够平滑,而不过于卡顿。 After determining the first predetermined number of downloaded encrypted slice start playing, mainly to ensure a sufficiently long length of the buffer data, playback can be smooth enough, but not too Caton.

[0118] 步骤210、鉴权服务器发送第二信息。 [0118] Step 210, the authentication server transmits a second message.

[0119] 其中,第二信息表明鉴权未通过。 [0119] wherein the second information indicates that the authentication failed.

[0120] 其中,终端接收第二信息。 [0120] wherein the terminal receives the second information.

[0121] 在步骤210之后执行步骤211。 [0121] step 211 is performed after step 210.

[0122] 步骤211、终端停止下载加密分片并删除已下载的加密分片。 [0122] Step 211, the terminal stops download and delete the encrypted encryption slice slices downloaded.

[0123] 在步骤211中,终端可以显示“鉴权失败,无法播放”的提示信息,以提示用户。 [0123] In step 211, the terminal may display the "authentication failure, can not play" message to prompt the user.

[0124] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0124] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0125] 实施例三 [0125] Example three

[0126] 本发明实施例提供了一种视频播放方法,适用于图1示出的硬件架构。 Example [0126] The present invention provides a video playback method for a hardware architecture illustrated in FIG. 在本发明实施例中,将对终端下载加密分片的方式进行详细描述。 In an embodiment of the present invention, the terminal will download encryption fragments be described in detail. 此外,本发明实施例中鉴权服务器的鉴权方式与实施例二提供的鉴权方式不同。 Further, the authentication server the authentication mode embodiment of the present invention and the embodiment of an authentication according to a second embodiment different from the embodiment. 参见图4,该方法流程包括: Referring to Figure 4, which process comprises:

[0127] 步骤301、终端接收视频播放请求。 [0127] Step 301, the terminal receives a video playback request.

[0128] 其中,本步骤301同本发明实施例二中步骤203,在此不再赘述。 [0128] wherein, according to the second step 301 of the present embodiment in step 203 with the present invention, it is not repeated here.

[0129] 步骤302、终端从流媒体服务器下载待播放的视频的加密分片。 [0129] Step 302, the terminal downloads the encryption to be played from the media server streaming video fragment.

[0130] 本步骤302包括如下步骤3021-步骤3022。 [0130] This step 302 includes a step 3022 follows step 3021.

[0131] 步骤3021、终端从流媒体服务器下载索引文件。 [0131] Step 3021, the index file from the terminal downloads streaming media server.

[0132] 其中,本步骤3021同本发明实施例二中步骤2041,在此不再赘述。 [0132] wherein, in step 3021 cases of the present embodiment in step 2041 with two of the present invention, are not repeated here.

[0133] 步骤3022、终端按照各个加密分片的播放顺序,从各个加密分片在流媒体上的存储地址下载分片。 [0133] Step 3022, the terminal according to the playing order each encrypted fragment, from each slice is stored encrypted on the address downloaded streaming media fragments.

[0134] 本步骤3022包括如下步骤A和B。 [0134] This step 3022 includes the following steps A and B.

[0135] 步骤A、终端按照各个加密分片的编号顺序,下载第一码率的加密分片,直到下载的第一码率的加密分片的数量达到第一预定数量。 [0135] Step A, the respective numerical order terminal fragment encryption, encryption downloaded first bitrate, until the number of downloaded encrypted first bitrate reaches a first predetermined number.

[0136] 其中,加密分片的编号顺序与加密分片的播放顺序相同,同一个编号的加密分片包括第一码率的加密分片和第二码率的加密分片,同一个编号的第一码率的加密分片与第二码率的加密分片的视频内容相同,第一码率小于第二码率。 [0136] wherein the encryption sequence with the fragment number encrypted playback order of the same slice, with a number of encrypting comprises encrypting the first slice rate of fragmentation and the second fragmentation encryption code rate, a number of the same encrypting the second encryption fragmentation rate of the first coding rate of the same slice of video content, the first rate is less than the second rate.

[0137] 索引文件中指明了加密分片的编号。 [0137] index file indicates the number of encrypted fragment.

[0138] 其中,当下载的第一码率的加密分片的数量达到第一预定数量时,就可以开始播放视频。 [0138] wherein, when the number of downloads of a first encryption code rate reaches a first predetermined slice number, you can start playing the video. 第一预定数量的计算方式参见本发明实施例二中步骤209。 In a first step according to a second predetermined number of calculated see embodiment 209 of the present invention.

[0139] 步骤A的实现方式包括两种。 Implementations [0139] Step A comprises two. 第一种,终端可以按照编号顺序,以同一带宽依次下载各个加密分片。 First, the terminal may sequential order, to download the same bandwidth sequentially encrypt each slice. 第二种,终端可以将当前需下载的第一码率的加密分片分割为第二预定数量的子分片;然后同时下载各个子分片。 Second, the terminal may first need to download the current rate of encryption is divided into slices of a second predetermined number of sub-slices; then downloaded each sub-slice. 第二预定数量可以是指定数量。 The second predetermined number may be the number specified. 第二种方式相比于第一种方式,可以提高下载速度,但要求用户的带宽大于下载带宽。 A second embodiment compared to the first embodiment can improve the speed, but requires the user's bandwidth is greater than download bandwidth.

[0140] 步骤B、按照排列在已下载的第一码率的加密分片的编号之后的编号顺序,下载第二码率的加密分片。 [0140] Procedure B, sequential order number arranged after the first coding rate in the encrypted slice downloaded, and downloads the encrypted second bitrate.

[0141] 通过先下载小码率的分片,在满足播放顺畅的要求后,再下载大码率的分片,能够缩短下载分片带来的等待时间,减小延时,提高用户观看体验。 [0141] by first download a small patch rate, the smoother playback after meeting the requirements, and then download large bitrate, can shorten the waiting time to download fragments brought, reduce latency and improve user viewing experience .

[0142] 步骤303、终端向鉴权服务器发送鉴权请求。 [0142] Step 303, the terminal sends an authentication request to the authentication server.

[0143] 其中,该鉴权请求包括用户标识和待播放的视频的标识。 [0143] wherein the authentication request comprises a user identifier ID and the video to be played.

[0144] 在步骤303中,该鉴权请求还包括设备证书或终端标识。 [0144] In step 303, the certificate authentication request further includes a device or a terminal identification. 该设备证书可以在终端出厂前由生产商预置在终端中。 The device certificate may be preset in the factory by the manufacturer prior to the terminal in the terminal.

[0145] 其中,步骤302与步骤303同时执行。 [0145] wherein, step 302 and step 303 simultaneously.

[0146] 其中,鉴权服务器接收鉴权请求。 [0146] wherein, the authentication server receives the authentication request.

[0147] 步骤304、鉴权服务器获得与用户标识对应的业务范围,判断待播放的视频是否在对应的业务范围内。 [0147] Step 304, the authentication server obtains the user ID corresponding service range, it is determined whether the video to be played in the corresponding business.

[0148] 当待播放的视频在对应的业务范围内时,确定该终端具有播放该视频的权限,执行步骤305 ;当待播放的视频不在对应的业务范围内时,确定该终端不具有播放该视频的权限,执行步骤307。 [0148] When to be playing a video when the corresponding service range, determines that the terminal has permission to play the video, step 305 is performed; when be-played video is not corresponding service range, it is determined that the terminal does not have to play the permissions video, step 307.

[0149] 鉴权服务器中预置了用户标识与业务范围的对应关系。 [0149] In the authentication server the preset corresponding relationship between the user identifier and service range.

[0150] 或者,当待播放的视频不在对应的业务范围内时,确定该终端不具有播放该视频的权限,执行步骤307。 [0150] Alternatively, when the video to be played is not within the corresponding service range, it is determined that the terminal does not have permission to play the video, step 307 is performed. 当待播放的视频在对应的业务范围内时,检测该终端的设备证书是否合法(可以由DRM系统完成,可以是检测设备证书的父证书是否合法)。 When the video to be played within a range corresponding service, the terminal device detects whether the certificate method (can be done by the DRM system, can be a parent certificate detecting device certificate is legitimate). 当设备证书合法时,确定该终端具有播放该视频的权限,执行步骤305 ;当设备证书不合法时,确定该终端不具有播放该视频的权限,执行步骤307。 When the device certificate valid, determines that the terminal has the rights to play the video, step 305 is performed; when the device certificate is not valid, it is determined that the terminal does not have permission to play the video, step 307 is performed.

[0151] 需要说明的是,鉴权服务器中可以存储终端标识与设备证书的对应关系。 [0151] Note that the authentication server may store a correspondence relationship between the terminal identifier and device certificate. 鉴权服务器可以根据终端标识获得该终端对应的设备证书。 Device authentication server certificate can be obtained according to the terminal corresponding to the terminal identifier.

[0152] 步骤305、鉴权服务器发送第一信息。 [0152] Step 305, the authentication server transmits a first message.

[0153] 其中,第一信息携带加密分片的加密密钥。 [0153] wherein the first encrypted encryption information carried slice key.

[0154] 其中,加密分片的加密密钥可以采用设备证书加密。 [0154] wherein the encryption key fragment may be encrypted using a device certificate. 鉴权服务器获得设备证书的方式包括两种,第一种是终端通过鉴权请求将设备证书发送给鉴权服务器;第二种是该设备证书与终端标识关联,鉴权服务器中预置了终端标识与设备证书的关联信息。 Way certificate authentication server obtains the device comprises two, first the terminal sends a request to the authentication device certificate by the authentication server; the second is the device certificate associated with the terminal identification, the authentication server terminal preset identification information associated with the device certificate.

[0155] 其中,终端接收第一信息。 [0155] The terminal receives the first information.

[0156] 在步骤305之后执行步骤306。 [0156] In step 306 after step 305.

[0157] 步骤306、终端采用加密密钥解密已下载的加密分片,播放解密后的加密分片。 [0157] Step 306, the terminal uses the encryption key to decrypt the encrypted fragments downloaded, after playing the encrypted decryption slice.

[0158] 本步骤306同本发明实施例二中步骤209,在此不再赘述。 Step 209 Example II [0158] Step 306 with the present embodiment of the present invention, not described herein again.

[0159] 步骤307、鉴权服务器发送第二信息。 [0159] Step 307, the authentication server transmits a second message.

[0160] 其中,第二信息表明鉴权未通过。 [0160] wherein the second information indicates that the authentication failed.

[0161] 其中,终端接收第二信息。 [0161] wherein the terminal receives the second information.

[0162] 在步骤307之后执行步骤308。 [0162] In step 308 after step 307.

[0163] 步骤308、终端停止下载加密分片并删除已下载的加密分片。 [0163] Step 308, the terminal stops download and delete the encrypted encryption slice slices downloaded.

[0164] 其中,本步骤308同本发明实施例二中步骤211,在此不再赘述。 [0164] wherein, the step 308 of the present embodiment of the present invention with two in Step 211, not described herein again.

[0165] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0165] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0166] 实施例四 [0166] Fourth Embodiment

[0167] 本发明实施例提供一种终端,该终端可以是图1示出的硬件架构中的终端,适用于本发明实施例一、二或三提供的视频播放方法。 Embodiment [0167] The present invention provides a terminal, which may be a hardware architecture shown in Figure 1 a terminal for providing a video playback method, two or three embodiments of the present invention. 参见图5,终端包括接收模块401、下载模块402、解密模块403和播放模块404。 Referring to Figure 5, the terminal includes a receiving module 401, download module 402, the decryption module 403 and the playback module 404.

[0168] 接收模块401,用于接收视频播放请求;其中,该视频播放请求包括待播放的视频的标识。 [0168] The receiving module 401 for receiving a video playback request; wherein the identifier comprises a video playback request the video to be played.

[0169] 下载模块402,用于从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求。 [0169] The download module 402, encryption is used to be downloaded from the streaming media server played video fragment, and sends an authentication request to the authentication server.

[0170] 解密模块403,用于当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,其中,第一信息由鉴权服务器在终端通过鉴权后发送。 [0170] the decryption module 403, when receiving the first information carrying encrypted encryption key slice, slice encrypted encryption key for decrypting the downloaded, wherein the first information terminal by the authentication server after sending authentication.

[0171] 播放模块404,用于播放解密后的加密分片。 [0171] a playing module 404, used to play the encrypted decryption slice.

[0172] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0172] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0173] 实施例五 [0173] Embodiment V

[0174] 本发明实施例提供一种终端,该终端可以是图1示出的硬件架构中的终端,适用于本发明实施例一或二提供的视频播放方法。 [0174] The present invention provides a terminal, which may be a hardware architecture shown in Figure 1 a terminal for use in a method of providing video playback or di embodiment of the present invention. 参见图6,该终端包括接收模块501、下载模块502、解密模块503和播放模块504。 Referring to Figure 6, the terminal includes a receiving module 501, download module 502, the decryption module 503 and the playback module 504. 其中,接收模块501、解密模块503和播放模块504与本发明实施例四提供的接收模块401、解密模块403和播放模块404的结构相同,不同之处如下。 Wherein, the receiving module 501, a decryption module 503 and the playback module 504 of the present invention according to a fourth embodiment of a receiving module 401, the decryption module 403 and the playback module 404 of the same structure, except for the following.

[0175] 其中,该下载模块502向鉴权服务器发送的鉴权请求包括终端标识和待播放的视频的标识,该终端还包括发送模块505。 [0175] wherein the download module 502 transmits the authentication to the authentication server includes a request identifier and terminal identifier of the video to be played, the terminal further comprises a transmitting module 505. 该发送模块505用于,向鉴权服务器发送设备注册请求,该设备注册请求包括终端标识和用户标识。 The transmitting module 505 for transmitting the device registration request to the authentication server, the apparatus registration request includes the terminal identification and user identification.

[0176] 其中,加密分片的加密密钥采用终端的设备证书加密,该设备证书是鉴权服务器收到设备注册请求且完成设备注册后分配给终端的。 [0176] wherein the fragment encryption key encrypted using the certificate of the terminal device, the device certificate is assigned to the terminal device after the authentication server receives the registration request and complete the registration device.

[0177] 其中,该终端还包括删除模块506,该删除模块506用于,当接收到第二信息时,停止下载加密分片并删除已下载的加密分片,其中,第二信息由鉴权服务器在终端未通过鉴权后发送。 [0177] wherein, the terminal further includes a deleting module 506, the deleting module 506 is used, when receiving the second message, stop downloading encrypted fragments and removes the downloaded encrypted fragments, wherein the second information by the authentication after the server sends the terminal authentication failed.

[0178] 其中,下载模块502包括鉴权单元5021、第一下载单元5022和第二下载单元5023。 [0178] wherein the download module 502 includes an authentication unit 5021, a first 5022 and a second download unit downloads unit 5023.

[0179] 鉴权单元5021,用于向鉴权服务器发送鉴权请求。 [0179] an authenticating unit 5021, configured to send authentication request to the authentication server.

[0180] 第一下载单元5022,用于从流媒体服务器下载索引文件;其中,该索引文件指明各个加密分片的播放顺序、以及各个加密分片在流媒体服务器上的存储地址。 [0180] The first download unit 5022, a file downloaded from a server for streaming media index; wherein the index file playback order specified in the respective encrypted fragment, and the respective encrypted fragment storage address on the streaming media server.

[0181] 第二下载单元5023,用于按照各个加密分片的播放顺序,从各个加密分片在流媒体服务器上的存储地址下载加密分片。 [0181] The second download unit 5023, in accordance with the playback order for each encrypted fragment, fragment downloaded from the respective encrypted storage address in a streaming server encryption slice.

[0182] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0182] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0183] 实施例六 [0183] Sixth Embodiment

[0184] 本发明实施例提供一种终端,该终端可以是图1示出的硬件架构中的终端,适用于本发明实施例一或三提供的视频播放方法。 [0184] Example embodiments of the present invention provides a terminal, the terminal may be hardware architecture shown in FIG. 1 is a terminal for a video player or a method according to the present invention provided in the third embodiment. 该终端包括接收模块、下载模块、解密模块和播放模块。 The terminal includes a receiving module, a download module, a decryption module and a playback module. 其中,该终端的结构与本发明实施例四提供的终端的结构相同,不同之处如下。 Wherein the terminal structure embodiment of the present invention is the same as the configuration according to a fourth terminal, except for the following.

[0185] 其中,下载模块包括鉴权单元、第一下载单元和第二下载单元。 [0185] wherein the authentication module comprises a downloading unit, the first unit and the second download unit downloads.

[0186] 鉴权单元,用于向鉴权服务器发送鉴权请求。 [0186] an authenticating unit configured to send authentication request to the authentication server.

[0187] 第一下载单元,用于从流媒体服务器下载索引文件;其中,该索引文件指明各个加密分片的播放顺序、以及各个加密分片在流媒体服务器上的存储地址。 [0187] First download unit configured to download the index file from the streaming server; wherein the encryption index file playback order specified in the respective slices, and each slice is stored encrypted on the address of the streaming server.

[0188] 第二下载单元,用于按照各个加密分片的播放顺序,从各个加密分片在流媒体服务器上的存储地址下载加密分片。 [0188] The second download unit configured to encrypt each played in the order of slices, each encrypted fragment downloaded from the memory address on the streaming media server encryption slice.

[0189] 其中,第二下载单元用于,按照各个加密分片的编号顺序,下载第一码率的加密分片,直到下载的第一码率的加密分片的数量达到第一预定数量;其中,加密分片的编号顺序与加密分片的播放顺序相同,同一个编号的加密分片包括第一码率的加密分片和第二码率的加密分片,同一个编号的第一码率的加密分片与第二码率的加密分片的视频内容相同,第一码率小于第二码率;按照排列在已下载的第一码率的加密分片的编号之后的编号顺序,下载第二码率的加密分片。 [0189] wherein, the second download unit for sequential order of each encrypted fragment, downloaded first encrypted fragment coding rate, number of a first rate until the download encrypted slices reaches a first predetermined number; wherein the encryption sequence with the fragment number encrypted playback order of the same slice, the same number of slices comprises a first encrypted encryption code rate and the second coding rate slice encryption slice, with a number of first code encrypting the second encryption rate of fragmentation of the same slice of video content, the first rate is less than a second rate; numbering sequence numbers in the arrangement after a first encryption code rate downloaded slice, downloads the encrypted second bitrate.

[0190] 其中,下载模块向鉴权服务器发送的鉴权请求包括用户标识、待播放的视频的标识、以及终端的设备证书。 [0190] wherein the authentication module sends the download request to the authentication server includes a user identifier, identifier of the video to be played, and the certificate of the terminal device.

[0191] 其中,加密分片的加密密钥采用终端的设备证书加密,该设备证书是终端发送给鉴权服务器的。 [0191] wherein the fragment encryption key encrypted using the certificate of the terminal device, the terminal device sending the certificate to the authentication server.

[0192] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0192] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0193] 实施例七 [0193] Seventh Embodiment

[0194] 本发明实施例提供一种视频播放系统,适用于本发明实施例一、二或三提供的视频播放方法。 Embodiment [0194] The present invention provides a video playback system adapted to provide a video playback method, two or three embodiments of the present invention. 该系统包括终端、流媒体服务器和鉴权服务器。 The system includes a terminal, the streaming server and authentication server.

[0195] 该终端可以是本发明实施例四、五或六提供的终端。 [0195] The terminal may be a terminal according to a fourth, fifth, or sixth embodiment of the present invention.

[0196] 鉴权服务器用于,接收终端发送的鉴权请求,确定终端是否具有播放视频的权限;当终端具有播放视频的权限时,发送第一信息给终端;当终端不具有播放视频的权限时,发送第二信息给终端。 [0196] authentication server configured to receive the authentication request sent by a terminal, determining whether the terminal has the rights to play the video; when the terminal has rights to play the video, and transmits the first information to the terminal; when the terminal does not have permission to play video when sending information to the second terminal.

[0197] 流媒体服务器用于,存储视频资源,视频资源中每个视频包括至少一个加密分片。 [0197] streaming server for storing video resource, a video resource in each video slice includes at least one encryption.

[0198] 本发明实施例通过终端在接收视频播放请求后,从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求,可以不等待鉴权结果就进行视频的分片的缓冲,缩短了分片的缓冲时间;通过当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,该第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的分片;由于缩短了分片的缓冲时间,从而减少从用户触发播放请求到视频实际播放出来的部分时延,提高用户的观看体验。 [0198] Example embodiments of the present invention, after receiving a video playback request, to be played from the downloaded streaming media server encrypted video slice through the terminal, and sends an authentication request to the authentication server, the authentication result may not wait for the video buffer slice shorten the time slice buffer; when receiving via the first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted fragments, the first information by the authentication after the server sends the authentication by the terminal; after playing the decrypted fragments; buffer by shortening the time slice, thereby reducing the play request from the user to trigger the video play out the actual delay section, improving the user's viewing experience.

[0199] 图7示出了一种终端设备的硬件结构,该终端设备可以是前述实施例四、五或六中的终端。 [0199] FIG. 7 shows a hardware structure of a terminal device, the terminal device may be the aforementioned embodiment four, five or six of the terminal embodiment. 该终端设备一般包括至少一个处理器12 (例如CPU)、用户接口14、至少一个网络接口15或者其他通信接口、存储器16、和至少一个通信总线13。 The terminal apparatus 12 generally includes at least one processor (e.g. the CPU), user interface 14, the at least one network interface 15 or other communication interface, a memory 16, and at least one communication bus 13. 本领域技术人员可以理解,图7中示出的结构并不构成对终端设备的限定,其可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件布置。 Those skilled in the art will be appreciated, the structure shown in FIG. 7 do not limit the terminal device, which may include more or fewer components than shown, or a combination of some of the components, or a different arrangement of components.

[0200] 下面结合图7对该终端设备的各个构成部件进行具体的介绍: [0200] below with reference to FIG. 7 of the various components of the terminal apparatus will be specifically described:

[0201] 通信总线13用于实现处理器12、存储器16及通信接口之间的连接通信。 [0201] connected to a communication bus 13 for realizing communication between the processor 12, a memory 16 and a communication interface.

[0202] 至少一个网络接口15 (可以是有线或者无线)实现该终端设备与至少一个服务器之间的通信连接,可以使用互联网,广域网,本地网,城域网等。 [0202] least one network interface 15 (which may be wired or wireless) a communication connection between the terminal device and at least one server, can use the Internet, a wide area network, local area network, metropolitan area network.

[0203] 存储器16可用于存储软件程序以及应用模块,处理器12通过运行存储在存储器16的软件程序以及应用模块,从而执行终端设备的各种功能应用以及数据处理。 [0203] The memory 16 may be used to store software modules and the application program, the processor 12 by running software stored in the memory module 16 and the application program, thereby performing the various functions of the terminal device and data processing applications. 存储器16可主要包括存储程序区和存储数据区,其中,存储程序区可存储操作系统、至少一个功能所需的应用程序(比如网页展示功能等)等;存储数据区可存储根据终端设备的使用所创建的数据(比如设备证书)等。 The memory 16 may include a program storage area and a data storage area, wherein the program storage area may store an operating system, at least one function of the desired application (such as web page display function and the like) and the like; may be stored in the data storage area using the terminal device data (such as device certificate), etc. created 此外,存储器16可以包括高速RAM (Random Access Memory,随机存取存储器),还可以包括非易失性存储器(non-volatile memory),例如至少一个磁盘存储器件、闪存器件、或其他易失性固态存储器件。 Further, memory 16 may include a high-speed RAM (Random Access Memory, Random Access Memory), may also include non-volatile memory (non-volatile memory), for example at least one magnetic disk storage devices, flash memory devices, or other volatile solid-state memory device.

[0204] 用户接口14,包括但不限于显示器和输入设备。 [0204] The user interface 14, including but not limited to a display and an input device. 其中,输入设备通常包括键盘和点击设备(例如,鼠标,轨迹球(trackball),触感板或者触感显示屏)。 Wherein the input device typically includes a keyboard and a pointing device (e.g., a mouse, a trackball (Trackball), touch panel, or display). 其中,显示器可用于显示由用户输入的信息或提供给用户的信息以及终端设备的各种菜单、以及图片或视频中的图像等;键盘和点击设备可用于接收输入的数字或字符信息,以及产生与终端设备的用户设置以及功能控制有关的信号输入,比如接收用户触发的视频播放请求等。 Wherein the display is used to display information input by the user or provided to the user of the terminal device information of various menus, pictures and video images, or the like; a keyboard and a pointing device may be used to input numeric or character information is received, and generating the user is provided with the terminal device and a function related to a control signal input, such as receiving a video playback request triggered by the user and the like.

[0205] 处理器12是终端设备的控制中心,利用各种接口和线路连接整个终端设备的各个部分,通过运行或执行存储在存储器16内的软件程序和/或应用模块,以及调用存储在存储器16内的数据,执行终端设备的各种功能和处理数据,从而对终端设备进行整体监控。 [0205] The processor 12 is a control center terminal device, using various interfaces and circuits connected across respective portions of the terminal device, by running or executing software programs stored in the memory 16 and / or the application module, and a call stored in the memory 16 in the data, the terminal device performs various functions and data processing, whereby overall control of the terminal device.

[0206] 具体地,通过运行或执行存储在存储器16内的软件程序和/或应用模块,以及调用存储在存储器16内的数据,处理器12可以实现,接收视频播放请求;其中,视频播放请求包括待播放的视频的标识;从流媒体服务器下载待播放的视频的加密分片,并向鉴权服务器发送鉴权请求;当接收到携带加密分片的加密密钥的第一信息时,采用加密密钥解密已下载的加密分片,第一信息由鉴权服务器在终端通过鉴权后发送;播放解密后的加密分片。 [0206] In particular, and / or application modules, and data by running or executing software programs stored in the memory 16 of the call stored in the memory 16, the processor 12 may be implemented to receive video playback request; wherein the video playback request It includes an identifier of the video to be played; downloaded streaming media to be played from the server the encrypted video slice, and sends an authentication request to the authentication server; when receiving a first encryption key information carried slice, using encryption key for decrypting the downloaded encrypted slice, a first information transmitted by the authentication server after authentication by the terminal; decrypting the encrypted playback slices.

[0207] 需要说明的是:上述实施例提供的终端在播放视频时,仅以上述各功能模块的划分进行举例说明,实际应用中,可以根据需要而将上述功能分配由不同的功能模块完成,BP将终端的内部结构划分成不同的功能模块,以完成以上描述的全部或者部分功能。 [0207] Note that: the above-described embodiments provide a terminal when playing a video, the division of each of the functional modules illustrated practical application, the above functions may be performed by different functional modules as needed, BP internal structure of the terminal is divided into different functional modules to complete all or part of the functions described above. 另外,上述实施例提供的终端与视频播放的方法实施例属于同一构思,其具体实现过程详见方法实施例,这里不再赘述。 Further, the procedure of the terminal and the video playback to the above embodiment examples same concept, embodiments of the method specific implementation process thereof will not be repeated here.

[0208] 上述本发明实施例序号仅仅为了描述,不代表实施例的优劣。 Embodiment [0208] The present invention No. merely for description, the embodiments do not represent the merits embodiment.

[0209] 本领域普通技术人员可以理解实现上述实施例的全部或部分步骤可以通过硬件来完成,也可以通过程序来指令相关的硬件完成,所述的程序可以存储于一种计算机可读存储介质中,上述提到的存储介质可以是只读存储器,磁盘或光盘等。 [0209] Those of ordinary skill in the art may understand that the above embodiments all or part of the steps may be implemented by hardware, by a program instruction may be relevant hardware, the program may be stored in a computer-readable storage medium in the above-mentioned storage medium may be a read-only memory, magnetic or optical disk.

[0210] 以上所述仅为本发明的较佳实施例,并不用以限制本发明,凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。 [0210] The foregoing is only preferred embodiments of the present invention, not intended to limit the present invention within the spirit and principle of the present invention, any modification, equivalent replacement, or improvement, it should be included in the present within the scope of the invention.

Claims (10)

  1. 1.一种视频播放方法,其特征在于,所述方法包括: 终端接收视频播放请求,所述视频播放请求包括待播放的视频的标识; 从所述流媒体服务器下载所述待播放的视频的加密分片,并向鉴权服务器发送鉴权请求; 当接收到携带加密分片的加密密钥的第一信息时,采用所述加密密钥解密已下载的加密分片;其中,所述第一信息由所述鉴权服务器在所述终端通过鉴权后发送; 播放解密后的加密分片。 1. A video playback method, wherein the method comprises: a terminal receiving a video playback request, the video playback request identification includes a video to be played; downloading of the video to be played from the streaming media server fragment encryption, and sends an authentication request to the authentication server; when receiving a first message carrying the encrypted encryption key slice, using said encryption key for decrypting the downloaded encrypted fragments; wherein, said first a message sent by the authentication server after authentication by the terminal; decrypting the encrypted playback slices.
  2. 2.根据权利要求1所述的方法,其特征在于,所述方法还包括: 当接收到第二信息时,停止下载加密分片并删除已下载的加密分片,其中,所述第二信息由所述鉴权服务器在所述终端未通过鉴权后发送。 2. The method according to claim 1, characterized in that, said method further comprising: when receiving the second message, stop the download and delete the encrypted encryption slice slices downloaded, wherein the second information by the authentication server by the terminal is not transmitted after the authentication.
  3. 3.根据权利要求1所述的方法,其特征在于,从所述流媒体服务器下载加密分片,包括: 从所述流媒体服务器下载索引文件;其中,所述索引文件指明各个所述加密分片的播放顺序、以及各个所述加密分片在所述流媒体服务器上的存储地址; 按照各个所述加密分片的播放顺序,从各个所述加密分片在所述流媒体服务器上的存储地址下载加密分片。 3. The method according to claim 1, characterized in that the fragments from the download encrypted streaming media server, comprising: a streaming media server to download a file from the index; wherein each of the index file indicating the encrypted points playback order sheet, and each of the encrypted part storage address on the streaming media server; played in the order of the respective encrypted fragment, from each of said slices stored encrypted on the media server in the stream address to download encrypted fragments.
  4. 4.根据权利要求3所述的方法,其特征在于,按照各个所述加密分片的播放顺序,从各个所述加密分片在所述流媒体服务器上的存储地址下载加密分片,包括: 按照各个所述加密分片的编号顺序,下载第一码率的加密分片,直到下载的所述第一码率的加密分片的数量达到第一预定数量;其中,所述加密分片的编号顺序与所述加密分片的播放顺序相同,同一个编号的加密分片包括第一码率的加密分片和第二码率的加密分片,同一个编号的第一码率的加密分片与第二码率的加密分片的视频内容相同,所述第一码率小于所述第二码率; 按照排列在已下载的第一码率的加密分片的编号之后的编号顺序,下载所述第二码率的加密分片。 4. The method according to claim 3, wherein each of the encrypted played in the order of slices, each of downloading encrypted fragments from the fragment memory address encryption on the streaming media server, comprising: in sequential order of each of the encrypted fragments, downloading encrypted first slice rate, until the number of the first coding rate of downloading the encrypted slice reaches a first predetermined number; wherein said encrypted fragment sequence number encrypted with the same fragment of the play order, the same number of slices comprises a first encrypted encryption code rate and the second coding rate slice slice encryption, encrypting the first code rate the same number of points encrypted piece and the second coding rate of the same slice of video content, the first coding rate is smaller than the second coding rate; numbering sequence numbers in the arrangement after a first encryption code rate downloaded slice, downloading the encrypted second bitrate.
  5. 5.根据权利要求1-4任一项所述的方法,其特征在于,所述鉴权请求包括终端标识和所述待播放的视频的标识; 在所述接收视频播放请求之前,所述方法还包括: 向所述鉴权服务器发送设备注册请求,所述设备注册请求包括所述终端标识和用户标识; 所述加密分片的加密密钥采用所述终端的设备证书加密,所述设备证书是所述鉴权服务器收到所述设备注册请求且完成设备注册后分配给所述终端的。 The method according to any one of claims 1 to 4, wherein said authentication request includes a terminal identifier and the video to be played; before the receiving video playback request, the method further comprising: sending a registration request to the device authentication server, the device registration request includes the terminal identifier and user identifier; encryption key using the encrypted fragment encrypted certificate of the terminal device, said device certificate after the authentication server receives the registration request and the device to complete the registration device assigned to the terminal.
  6. 6.一种终端,其特征在于,所述终端包括: 接收模块,用于接收视频播放请求,所述视频播放请求包括待播放的视频的标识; 下载模块,用于从所述流媒体服务器下载所述待播放的视频的加密分片,并向鉴权服务器发送鉴权请求; 解密模块,用于当接收到携带加密分片的加密密钥的第一信息时,采用所述加密密钥解密已下载的加密分片;其中,所述第一信息由所述鉴权服务器在所述终端通过鉴权后发送; 播放模块,用于播放解密后的加密分片。 A terminal, characterized in that, said terminal comprising: a receiving module for receiving a video playback request, the video playback request includes an identifier of the video to be played; downloading module, for downloading streaming media from the server the fragment to be played video encryption, authentication server and sends an authentication request; decryption module for, when receiving the first encrypted encryption information carried slice key, decrypting the encrypted key using downloaded encrypted fragments; wherein the first information is sent through the post-authentication by the authentication server in the terminal; playing module for playing the decryption of the encrypted fragments.
  7. 7.根据权利要求6所述的终端,其特征在于,所述终端还包括删除模块, 所述删除模块用于,当接收到第二信息时,停止下载加密分片并删除已下载的加密分片,其中,所述第二信息由所述鉴权服务器在所述终端未通过鉴权后发送。 The terminal according to claim 6, characterized in that the terminal further comprises a deleting module, the deletion means for, when receiving the second message, stop downloading encrypted fragments and removes the downloaded encrypted sub sheet, wherein said second information is not transmitted by the authentication server by the terminal after the authentication.
  8. 8.根据权利要求6所述的终端,其特征在于,所述下载模块包括: 鉴权单元,用于向所述鉴权服务器发送所述鉴权请求; 第一下载单元,用于从所述流媒体服务器下载索引文件;其中,所述索引文件指明各个所述加密分片的播放顺序、以及各个所述加密分片在所述流媒体服务器上的存储地址; 第二下载单元,用于按照各个所述加密分片的播放顺序,从各个所述加密分片在所述流媒体服务器上的存储地址下载加密分片。 8. The terminal according to claim 6, wherein the downloading module comprises: an authentication unit, configured to send the authentication request to the authentication server; a first download unit, from said index file downloading streaming media server; wherein the index file playback order specified in the respective encrypted fragment, and each of the encrypted part storage address on the streaming media server; a second download unit, according to each said encrypted playback sequence fragments from each of the slices of the encrypted streaming media server storing the address to download the encrypted fragments.
  9. 9.根据权利要求8所述的终端,其特征在于,所述第二下载单元用于, 按照各个所述加密分片的编号顺序,下载第一码率的加密分片,直到下载的所述第一码率的加密分片的数量达到第一预定数量;其中,所述加密分片的编号顺序与所述加密分片的播放顺序相同,同一个编号的加密分片包括第一码率的加密分片和第二码率的加密分片,同一个编号的第一码率的加密分片与第二码率的加密分片的视频内容相同,所述第一码率小于所述第二码率; 按照排列在已下载的第一码率的加密分片的编号之后的编号顺序,下载所述第二码率的加密分片。 9. The terminal according to claim 8, wherein said second means for downloading, in accordance with the order of the number of the encrypted fragment, downloaded first encrypted fragment coding rate until the download encrypting the first number bitrate reaches a first predetermined number; wherein said encryption number sequence fragment with the encrypted fragment play the same order, the same encrypted number comprises a first slice rate of fragmentation and encryption encryption second slice rate, the same encryption with a number of the first coding rate of fragmentation and the second encryption bitrate video content, the first coding rate is smaller than the second code rate; sequential order number arranged after the first coding rate in the encrypted slice downloaded, downloading said encrypted second slice rate.
  10. 10.根据权利要求6-8任一项所述的终端,其特征在于,所述下载模块向鉴权服务器发送的鉴权请求包括终端标识和所述待播放的视频的标识; 所述终端还包括发送模块,所述发送模块用于,向所述鉴权服务器发送设备注册请求,所述设备注册请求包括所述终端标识和用户标识; 所述解密模块接收的加密分片的加密密钥采用所述终端的设备证书加密,所述设备证书是所述鉴权服务器收到所述设备注册请求且完成设备注册后分配给所述终端的。 10. A terminal according to any one of claims 6-8, characterized in that said authentication module download identifier to the authentication server sending the request includes a terminal identifier and the video to be played; the terminal further transmitting module comprises a transmitting module for transmitting the device registration request to the authentication server, the device registration request includes the terminal identifier and user identifier; encryption key of the encrypted decryption module receiving fragmented using encrypting the certificate of the terminal apparatus, the server apparatus receives the authentication certificate is assigned to the terminal device after the completion of the registration request and registration equipment.
CN 201510218522 2015-04-30 2015-04-30 Kinds of video playback method and terminal CN104837035B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 201510218522 CN104837035B (en) 2015-04-30 2015-04-30 Kinds of video playback method and terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 201510218522 CN104837035B (en) 2015-04-30 2015-04-30 Kinds of video playback method and terminal

Publications (2)

Publication Number Publication Date
CN104837035A true true CN104837035A (en) 2015-08-12
CN104837035B CN104837035B (en) 2018-07-13

Family

ID=53814632

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 201510218522 CN104837035B (en) 2015-04-30 2015-04-30 Kinds of video playback method and terminal

Country Status (1)

Country Link
CN (1) CN104837035B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105704139A (en) * 2016-03-16 2016-06-22 杭州狮说教育科技有限公司 RTMP protocol-based streaming media service user authentication method
CN105898416A (en) * 2015-12-04 2016-08-24 乐视网信息技术(北京)股份有限公司 Multimedia resource identification and playback method, device, server and system
CN105939488A (en) * 2016-06-14 2016-09-14 天脉聚源(北京)传媒科技有限公司 Method and system for obtaining product
CN106101745A (en) * 2016-06-14 2016-11-09 天脉聚源(北京)传媒科技有限公司 Video playing method and system

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7305472B2 (en) * 1996-06-03 2007-12-04 Microsoft Corporation Method for downloading a web page to a client for efficient display on a television screen
CN102316378A (en) * 2011-09-23 2012-01-11 清华大学深圳研究生院 Digital copyright protection method based on set-top box and system
CN103379365A (en) * 2012-04-27 2013-10-30 日立(中国)研究开发有限公司 Content acquiring device and method and content and multimedia issuing systems
CN103620609A (en) * 2011-05-02 2014-03-05 英赛瑟库尔公司 Method for playing digital contents protected with a DRM (digital right management) scheme and corresponding system
CN103873243A (en) * 2012-12-12 2014-06-18 腾讯科技(北京)有限公司 Method for realizing data security transmission, system, server and terminal
CN104253794A (en) * 2013-06-27 2014-12-31 华为软件技术有限公司 Method and device for controlling the range of content use

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7305472B2 (en) * 1996-06-03 2007-12-04 Microsoft Corporation Method for downloading a web page to a client for efficient display on a television screen
CN103620609A (en) * 2011-05-02 2014-03-05 英赛瑟库尔公司 Method for playing digital contents protected with a DRM (digital right management) scheme and corresponding system
CN102316378A (en) * 2011-09-23 2012-01-11 清华大学深圳研究生院 Digital copyright protection method based on set-top box and system
CN103379365A (en) * 2012-04-27 2013-10-30 日立(中国)研究开发有限公司 Content acquiring device and method and content and multimedia issuing systems
CN103873243A (en) * 2012-12-12 2014-06-18 腾讯科技(北京)有限公司 Method for realizing data security transmission, system, server and terminal
CN104253794A (en) * 2013-06-27 2014-12-31 华为软件技术有限公司 Method and device for controlling the range of content use

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105898416A (en) * 2015-12-04 2016-08-24 乐视网信息技术(北京)股份有限公司 Multimedia resource identification and playback method, device, server and system
CN105704139A (en) * 2016-03-16 2016-06-22 杭州狮说教育科技有限公司 RTMP protocol-based streaming media service user authentication method
CN105704139B (en) * 2016-03-16 2018-05-11 杭州开课啦教育科技有限公司 Based streaming service user authentication method rtmp agreement
CN105939488A (en) * 2016-06-14 2016-09-14 天脉聚源(北京)传媒科技有限公司 Method and system for obtaining product
CN106101745A (en) * 2016-06-14 2016-11-09 天脉聚源(北京)传媒科技有限公司 Video playing method and system

Also Published As

Publication number Publication date Type
CN104837035B (en) 2018-07-13 grant

Similar Documents

Publication Publication Date Title
US20090235347A1 (en) Method and system for securely streaming content
US20090228569A1 (en) Pause and replay of media content through bookmarks on a server device
US20110231660A1 (en) Systems and methods for securely streaming media content
US7328345B2 (en) Method and system for end to end securing of content for video on demand
US20110246616A1 (en) Dynamic Virtual Chunking of Streaming Media Content
US20050262529A1 (en) Method, apparatus and system for remote real-time access of multimedia content
US20130174271A1 (en) Device authentication for secure key retrieval for streaming media players
US20060206708A1 (en) Method for managing digital rights in broadcast/multicast service
US20050005114A1 (en) Ticket-based secure time delivery in digital networks
US8732475B2 (en) Authentication and binding of multiple devices
US20120275597A1 (en) Extending data confidentiality into a player application
US20070172065A1 (en) Apparatus and method for moving rights object from one device to another device via server
US20050187879A1 (en) Persistent license for stored content
US20100250704A1 (en) Peer-to-peer content distribution with digital rights management
US20140101722A1 (en) Secure Content Access Authorization
US20120284802A1 (en) Method for playing digital contents protected with a drm (digital right management) scheme and corresponding system
US20040199771A1 (en) Method for tracing a security breach in highly distributed content
US20120284804A1 (en) System and method for protecting digital contents with digital rights management (drm)
US20070168293A1 (en) Method and apparatus for authorizing rights issuers in a content distribution system
US20090003600A1 (en) Progressive download or streaming of digital media securely through a localized container and communication protocol proxy
CN101355569A (en) Control method, apparatus and system for downloading digital content
US20120170741A1 (en) Secure live television streaming
US20140020111A1 (en) Signaling and Handling Content Encryption and Rights Management in Content Transport and Delivery
US20120090036A1 (en) Method and apparatus for providing drm service
US20120124612A1 (en) Video streaming entitlement determined based on the location of the viewer

Legal Events

Date Code Title Description
C06 Publication
EXSB Decision made by sipo to initiate substantive examination
GR01