CN109005427B - Encrypted video playing method, device and equipment and storage medium - Google Patents
Encrypted video playing method, device and equipment and storage medium Download PDFInfo
- Publication number
- CN109005427B CN109005427B CN201810950583.2A CN201810950583A CN109005427B CN 109005427 B CN109005427 B CN 109005427B CN 201810950583 A CN201810950583 A CN 201810950583A CN 109005427 B CN109005427 B CN 109005427B
- Authority
- CN
- China
- Prior art keywords
- video
- playing
- predetermined
- preset
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 52
- 230000005540 biological transmission Effects 0.000 claims abstract description 45
- 238000012795 verification Methods 0.000 claims description 3
- 238000010586 diagram Methods 0.000 description 6
- 230000006854 communication Effects 0.000 description 4
- 238000004891 communication Methods 0.000 description 4
- 230000000694 effects Effects 0.000 description 4
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 238000007726 management method Methods 0.000 description 3
- 238000013475 authorization Methods 0.000 description 2
- 238000005034 decoration Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000007175 bidirectional communication Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000004806 packaging method and process Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000026676 system process Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/438—Interfacing the downstream path of the transmission network originating from a server, e.g. retrieving encoded video stream packets from an IP network
- H04N21/4385—Multiplex stream processing, e.g. multiplex stream decrypting
- H04N21/43853—Multiplex stream processing, e.g. multiplex stream decrypting involving multiplex stream decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/23—Processing of content or additional data; Elementary server operations; Server middleware
- H04N21/234—Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs
- H04N21/2347—Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs involving video stream encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/23—Processing of content or additional data; Elementary server operations; Server middleware
- H04N21/238—Interfacing the downstream path of the transmission network, e.g. adapting the transmission rate of a video stream to network bandwidth; Processing of multiplex streams
- H04N21/2389—Multiplex stream processing, e.g. multiplex stream encrypting
- H04N21/23895—Multiplex stream processing, e.g. multiplex stream encrypting involving multiplex stream encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/44—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs
- H04N21/4405—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving video stream decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/60—Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client
- H04N21/63—Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
- H04N21/633—Control signals issued by server directed to the network components or client
- H04N21/6332—Control signals issued by server directed to the network components or client directed to client
- H04N21/6334—Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
- H04N21/63345—Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
Landscapes
- Engineering & Computer Science (AREA)
- Multimedia (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
The invention discloses an encrypted video playing method, an encrypted video playing device, encrypted video playing equipment, a storage medium and a processor. Wherein, the method comprises the following steps: acquiring a key transmission message of a preset video, wherein the preset video is an encrypted video to be played; decrypting the predetermined video according to the key transmission message to obtain a video stream of the predetermined video; and sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an operating system kernel, and the chip is used for carrying out hard decoding playing on the video stream. The invention solves the technical problem of intercepting the risk of illegal recording in the video playing process.
Description
Technical Field
The invention relates to the field of computers, in particular to an encrypted video playing method, an encrypted video playing device, encrypted video playing equipment, a storage medium and a processor.
Background
With The development of OTT (Over The Top, which means various services are provided to users through The internet), smart internet televisions and video on demand services, cinema movies can be distributed and played through television terminals.
At present, a scheme for playing a video through a television terminal is that the television terminal directly obtains a video stream from a network, and then performs soft decoding playing on the obtained video stream through an application program APP of the television terminal.
However, in the process of acquiring the video stream and performing soft decoding on the video stream by the television terminal, the decrypted video can be intercepted, so that the risk of skimming exists, and the copyright of the video cannot be protected.
Aiming at the problem that the video playing process has the risk of intercepting the pirated recording, an effective solution is not provided at present.
Disclosure of Invention
The embodiment of the invention provides an encrypted video playing method, an encrypted video playing device, encrypted video playing equipment, a storage medium and a processor, and at least solves the technical problem that the interception and stealing risk exists in the video playing process.
According to an aspect of the embodiments of the present invention, there is provided an encrypted video playing method, including: acquiring a key transmission message of a preset video, wherein the preset video is an encrypted video to be played; decrypting the predetermined video according to the key transmission message to obtain a video stream of the predetermined video; and sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an operating system kernel, and the chip is used for carrying out hard decoding playing on the video stream.
Further, the key delivery message includes: a list of trusted devices and a content decryption key, decrypting the predetermined video according to the key delivery message to obtain the video stream comprising: acquiring a preset digital certificate registered in advance by a preset terminal, wherein the preset terminal is used for playing the preset video; verifying whether the predetermined terminal belongs to trusted equipment or not according to the trusted equipment list, wherein at least one digital certificate corresponding to the trusted equipment is recorded in the trusted equipment list; and under the condition that the predetermined terminal belongs to the trusted device, decrypting the predetermined video according to the content decryption key to obtain the video stream.
Further, before acquiring a predetermined digital certificate pre-registered by a predetermined terminal, the method further includes: acquiring a unique identifier of the preset terminal; registering the predetermined digital certificate of the predetermined terminal according to the unique identifier; storing the predetermined digital certificate in a private folder of an operating system of the predetermined terminal.
Further, before acquiring the key transmission message of the predetermined video, the method further includes: and sending a playing request of the predetermined video, wherein the playing request is used for requesting to acquire a key transmission message of the predetermined video.
Further, before acquiring the key transmission message of the predetermined video, the method further includes: and acquiring the predetermined video provided by the third-party content distribution network.
According to another aspect of the embodiments of the present invention, there is also provided an encrypted video playing apparatus, including: the device comprises an acquisition unit, a display unit and a display unit, wherein the acquisition unit is used for acquiring a key transmission message of a preset video, and the preset video is an encrypted video to be played; the decryption unit is used for decrypting the preset video according to the key transmission message to obtain a video stream; and the sending unit is used for sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an operating system kernel, and the chip is used for carrying out hard decoding playing on the video stream.
Further, the key delivery message includes: a list of trusted devices and a content decryption key, the decryption unit comprising: the system comprises a first acquisition module, a second acquisition module and a third acquisition module, wherein the first acquisition module is used for acquiring a preset digital certificate registered in advance by a preset terminal, and the preset terminal is used for playing a preset video; the verification module is used for verifying whether the preset terminal belongs to the trusted device or not according to the trusted device list, wherein at least one digital certificate corresponding to the trusted device is recorded in the trusted device list; and the decryption module is used for decrypting the predetermined video according to the content decryption key to obtain the video stream under the condition that the predetermined terminal belongs to the trusted device.
According to another aspect of the embodiments of the present invention, there is also provided an encrypted video playback device, including: the system comprises an application program, a display manager and a video playing device, wherein the application program is used for acquiring a key transmission message of a preset video and transmitting the key transmission message to the display manager, the preset video is an encrypted video to be played, and the display manager is used for managing programs and processes of the encrypted video playing device; the display manager is used for decrypting the preset video according to the key transmission message to obtain a video stream of the preset video and sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an inner core of an operating system; and the chip is used for carrying out hard decoding playing on the video stream.
According to another aspect of the embodiments of the present invention, there is also provided a storage medium including a stored program, wherein the program is configured to cause a computer to execute any one of the above-described encrypted video playback methods when the computer runs.
According to another aspect of the embodiments of the present invention, there is also provided an encrypted video playback device including: a memory; a processor: one or more programs stored in the memory and configured to be executed by the processor to perform any of the encrypted video playback methods described above.
In the embodiment of the invention, under the condition that the encrypted preset video needs to be played, the key transmission message of the preset video can be obtained, the preset video is decrypted according to the key transmission message to obtain the video stream of the preset video, then the decrypted video stream is sent to the chip through the safety playing interface provided by the kernel of the operating system, the video stream is subjected to hard decoding playing through the chip to complete the playing of the preset video, and the decrypted video stream is directly transmitted to the chip through the safety interface, so that the video stream can be effectively prevented from being intercepted, the technical effect of reducing the video stealing and recording risks is realized, and the technical problem of intercepting the stealing and recording risks in the video playing process is solved.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
fig. 1 is a flow chart of an encrypted video playback method according to an embodiment of the present invention;
fig. 2 is a schematic diagram of authorized playing of an encrypted movie by an intelligent television terminal according to an embodiment of the present invention;
fig. 3 is a schematic diagram of an encrypted video playback device according to an embodiment of the present invention;
fig. 4 is a schematic diagram of an encrypted video playback device according to an embodiment of the present invention.
Detailed Description
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used is interchangeable under appropriate circumstances such that the embodiments of the invention described herein are capable of operation in sequences other than those illustrated or described herein. Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed, but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
In accordance with an embodiment of the present invention, there is provided an encrypted video playback method embodiment, it should be noted that the steps illustrated in the flowchart of the figure may be performed in a computer system such as a set of computer-executable instructions, and that while a logical order is illustrated in the flowchart, in some cases the steps illustrated or described may be performed in an order different than here.
Fig. 1 is a flowchart of an encrypted video playing method according to an embodiment of the present invention, as shown in fig. 1, the method includes the following steps:
step S102, obtaining a key transmission message of a preset video;
step S104, decrypting the predetermined video according to the key transmission message to obtain a video stream of the predetermined video;
and step S106, sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an operating system kernel, and the chip is used for carrying out hard decoding playing on the video stream.
Through the steps, under the condition that the encrypted preset video needs to be played, the key transmission message of the preset video can be obtained, the preset video is decrypted according to the key transmission message, the video stream of the preset video is obtained, the decrypted video stream is sent to the chip through the safe playing interface provided by the kernel of the operating system, the video stream is subjected to hard decoding playing through the chip, the preset video is played, the decrypted video stream is directly transmitted to the chip through the safe interface, the video stream can be effectively prevented from being intercepted, the technical effect of reducing the video stealing and recording risks is achieved, and the technical problem that the video stealing and recording risks are intercepted in the video playing process is solved.
In step S102, the key delivery message, i.e. keydelaverymessage, is responsible for delivering the key file, and mainly includes: a content decryption key, key parameters, which mainly include a key time window (validity period), i.e. the show period of the movie, and a Trusted Device List (TDL), i.e. List information of authorized legitimate devices.
In the above step S102, the predetermined video may be a video file package packaged by the DCP format.
It should be noted that DCP is called Digital Cinema Package, i.e. Digital Cinema Package, is a Digital file set for storing and converting audio, image and data streams of Digital images.
In the step S106, the secure playing interface may be an independent interface disposed on the chip, and is only used to receive the decrypted video stream, so that the decrypted video stream is prevented from being intercepted by other programs, and the security of the video is ensured.
It should be noted that the encrypted video playing method provided by the present invention can be applied to smart terminals such as smart televisions, smart phones, and computers, and the following part of the present invention is only described by taking a smart television terminal as an example.
As an alternative embodiment, the key delivery message comprises: the trusted device list and the content decryption key, decrypting the predetermined video based on the key delivery message to obtain the video stream, comprising: acquiring a preset digital certificate registered in advance by a preset terminal, wherein the preset terminal is a terminal for playing a preset video; verifying whether a predetermined terminal belongs to trusted equipment or not according to a trusted equipment list, wherein a digital certificate corresponding to at least one trusted equipment is recorded in the trusted equipment list; and in the case that the predetermined terminal belongs to the trusted device, decrypting the predetermined video according to the content decryption key to obtain the video stream.
With the above implementation of the present invention, the terminal that reserves the video is a terminal that plays the reserved video, and the key transmission message includes: and the predetermined terminal is determined to be an authorized terminal if the predetermined terminal belongs to the trusted device, and the predetermined terminal is allowed to decrypt the predetermined video according to the content decryption key in the key transmission message to obtain the video stream of the predetermined video.
As an optional embodiment, before obtaining the predetermined digital certificate pre-registered by the predetermined terminal, the method further includes: acquiring a unique identifier of a preset terminal; registering a predetermined digital certificate of a predetermined terminal according to the unique identifier; the predetermined digital certificate is stored in a private folder of an operating system of the predetermined terminal.
In the above embodiment of the present invention, the predetermined digital certificate is stored in the private folder of the operating system, so as to ensure the security of the predetermined digital certificate and prevent other devices from stealing the predetermined digital certificate of the predetermined terminal.
As an alternative embodiment, before obtaining the key delivery message of the predetermined video, the method further comprises: and sending a playing request of the predetermined video, wherein the playing request is used for requesting to acquire a key transmission message of the predetermined video.
Alternatively, the request for playing the predetermined video may be a request for acquiring the playing right of the predetermined video, for example, a request for purchasing the playing right of the predetermined video (such as movie ticket).
As an alternative embodiment, before obtaining the key delivery message of the predetermined video, the method further comprises: predetermined videos provided by a third-party content distribution network are acquired.
According to the embodiment of the invention, the predetermined video provided by the third-party content distribution network can be distributed widely.
Alternatively, the predetermined video may be acquired first, and then the key transmission message corresponding to the predetermined video may be acquired.
The invention also provides a preferred embodiment, which provides an authorized playing method of the encrypted film of the intelligent television terminal.
According to the scheme, a chip manufacturer is directly connected with an intelligent television terminal chip, a safe and reliable audio and video playing interface is provided at the bottom layer of a system by the chip manufacturer, a unique identification character string of the intelligent television terminal is used as an identity identification code, a key transfer message (KDM) authentication and decryption module is used as a system startup starting process, and private data is stored in a system safe storage area, so that other application programs cannot be read; the upper application APK carries out communication of a private protocol with the upper application APK through a socket link, so that the communication safety is ensured.
Note that socket, also called "socket", usually sends a request to the network or responds to the network request through the "socket". Two programs on the network exchange data via a bidirectional communication link, one end of which is called a "socket".
The Android intelligent television terminal plays the video, generally depends on a media player (MediaPlayer) framework of a system, does not depend on a terminal chip manufacturer, and cannot perform authentication and authorization control on the terminal.
Fig. 2 is a schematic diagram of authorized playing of an encrypted movie at a smart tv terminal according to an embodiment of the present invention, as shown in fig. 2, when the smart tv terminal needs to play the movie, an application APP installed on the smart tv terminal may obtain a unique identifier of the smart tv terminal, transmit the unique identifier to a display manager (kdmServer), apply a digital certificate to a server by the display manager (kdmServer), and store the digital certificate generated by the server in a certificate management folder of the display manager (kdmServer).
Alternatively, the server may encrypt the TS bare stream of the movie into a video file packet in DCP format, and then send the encrypted video file packet to the smart television terminal through a third-party CDN (i.e., a third-party content distribution server).
Optionally, in a case that the smart television terminal needs to play a movie, the smart television terminal may communicate with the server through the APP, pay an order of the movie, generate a decryption Key (i.e., a Key transmission message) of the movie by the server, receive the decryption Key by the APP, send the decryption Key to a display manager (kdmServer), decrypt, by the display manager (kdmServer), the obtained video file packet in the DCP format according to the decryption Key, obtain a decrypted TS bare stream, send the TS bare stream to the chip, and hard decode and play the TS bare stream by the chip.
Optionally, the playing interface is a secure playing interface provided by a chip manufacturer based on a system kernel, and the partial interfaces directly perform hardware decoding and display playing after receiving the TS bare stream, so that the security of the TS bare stream data is protected, and the high-resolution and high-code-rate audio/video decoding efficiency is ensured.
It should be noted that the TS is called Transport Stream, and a TS bare Stream is a Stream file that can be hard decoded.
Optionally, the APP obtains the unique identifier of the smart tv terminal and transmits the unique identifier to the display manager (kdmServer) as a basis, so that the display manager (kdmServer) can apply for a unique terminal certificate (i.e. a predetermined digital certificate) from the server and store the unique terminal certificate in a private file directory of the system.
Alternatively, the smart tv terminal may obtain a unique order number by paying an order of a certain movie, where the unique order number is used to indicate that the smart tv terminal is allowed to play the movie, and then the smart tv terminal transmits the unique order number of the movie to the server, applies the server for a movie ticket for playing the movie (i.e., the right to play the movie) to obtain a key delivery message of the movie, and transmits the message to a display manager (kdmServer) for related effective play management.
Optionally, in this application, the movie played by the smart television terminal adopts a dcp (digital content networking package) packaging format and a key transmission message kdm (key delivery message) digital certificate management and key making technical standard, and the movie source medium is encrypted and encapsulated to meet the international movie security protection standard.
Optionally, the third-party content delivery server CDN is used to deliver the produced and manufactured movie package in the DCP format over a network in a cooperative manner, so as to improve content delivery efficiency and quality.
According to the technical scheme provided by the invention, the channel of the film playing terminal can be controlled by carrying out authentication and authorization control on the intelligent television terminal used for playing the film; and the authorized playing control of the film can be realized, so that the film can not be played normally by an unauthenticated terminal.
According to the technical scheme provided by the invention, the player of the intelligent television terminal is directly butted with the private playing interface at the system bottom level with a chip manufacturer, and the video decryption program is started as a system process along with starting up, so that the decrypted video bare stream is ensured not to be intercepted, and the film copyright is protected.
According to still another embodiment of the present invention, there is also provided a storage medium including a stored program, wherein the program causes a computer to execute any one of the above-described encrypted video playback methods when executed.
According to still another embodiment of the present invention, there is also provided an encrypted video playback apparatus including: a memory; a processor: one or more programs stored in the memory and configured to be executed by the processor to perform the encrypted video playback method described above.
According to an embodiment of the present invention, an embodiment of an encrypted video playing apparatus is further provided, and it should be noted that the encrypted video playing apparatus may be configured to execute an encrypted video playing method in the embodiment of the present invention, and the encrypted video playing method in the embodiment of the present invention may be executed in the encrypted video playing apparatus.
Fig. 3 is a schematic diagram of an encrypted video playback apparatus according to an embodiment of the present invention, and as shown in fig. 3, the apparatus may include: an acquisition unit 31, a decryption unit 35 and a transmission unit 37.
The acquiring unit 31 is configured to acquire a key transmission message of a predetermined video, where the predetermined video is an encrypted video to be played; a decryption unit 35, configured to decrypt the predetermined video according to the key transmission message to obtain a video stream; and a sending unit 37, configured to send the video stream to a chip through a secure playing interface, where the secure playing interface is an interface provided by an operating system kernel, and the chip is configured to perform hard decoding playing on the video stream.
It should be noted that the obtaining unit 31 in this embodiment may be configured to execute step S102 in this embodiment, the decrypting unit 35 in this embodiment may be configured to execute step S104 in this embodiment, and the sending unit 37 in this embodiment may be configured to execute step S106 in this embodiment. The modules are the same as the corresponding steps in the realized examples and application scenarios, but are not limited to the disclosure of the above embodiments.
In the embodiment of the invention, under the condition that the encrypted preset video needs to be played, the key transmission message of the preset video can be obtained, the preset video is decrypted according to the key transmission message to obtain the video stream of the preset video, then the decrypted video stream is sent to the chip through the safety playing interface provided by the kernel of the operating system, the video stream is subjected to hard decoding playing through the chip to complete the playing of the preset video, and the decrypted video stream is directly transmitted to the chip through the safety interface, so that the video stream can be effectively prevented from being intercepted, the technical effect of reducing the video stealing and recording risks is realized, and the technical problem of intercepting the stealing and recording risks in the video playing process is solved.
As an alternative embodiment, the key delivery message comprises: a list of trusted devices and a content decryption key, the decryption unit comprising: the system comprises a first acquisition module, a second acquisition module and a third acquisition module, wherein the first acquisition module is used for acquiring a preset digital certificate registered in advance by a preset terminal, and the preset terminal is used for playing a preset video; the verification module is used for verifying whether the preset terminal belongs to the trusted equipment or not according to the trusted equipment list, wherein the trusted equipment list records a digital certificate corresponding to at least one trusted equipment; and the decryption module is used for decrypting the predetermined video according to the content decryption key to obtain the video stream under the condition that the predetermined terminal belongs to the trusted device.
As an alternative embodiment, the apparatus further comprises: the second acquisition module is used for acquiring the unique identifier of the preset terminal before acquiring the preset digital certificate registered in advance by the preset terminal; the registration module is used for registering a preset digital certificate of a preset terminal according to the unique identifier; the storage module is used for storing the predetermined digital certificate in a private folder of an operating system of the predetermined terminal.
As an alternative embodiment, the apparatus further comprises: the sending module is used for sending a playing request of the predetermined video before the key transmission message of the predetermined video is acquired, wherein the playing request is used for requesting to acquire the key transmission message of the predetermined video.
As an alternative embodiment, the apparatus further comprises: and the third acquisition module is used for acquiring the predetermined video provided by the third-party content distribution network before acquiring the key transmission message of the predetermined video.
Fig. 4 is a schematic diagram of an encrypted video playback device according to an embodiment of the present invention, and as shown in fig. 4, the apparatus may include: an application program 41, configured to obtain a key transmission message of a predetermined video, and transmit the key transmission message to a display manager, where the predetermined video is an encrypted video to be played, and the display manager is configured to manage a program and a process of an encrypted video playing device; the display manager 43 is configured to decrypt the predetermined video according to the key transmission message to obtain a video stream of the predetermined video, and send the video stream to the chip through the secure playing interface, where the secure playing interface is an interface provided by the kernel of the operating system; and the chip 45 is used for carrying out hard decoding playing on the video stream.
In the embodiment of the invention, under the condition that an encrypted preset video needs to be played by an application program, a key transmission message of the preset video can be obtained and transmitted to a display manager, the preset video is decrypted by the display manager according to the key transmission message to obtain a video stream of the preset video, then the decrypted video stream is sent to a chip through a secure playing interface provided by an operating system kernel, the video stream is subjected to hard decoding playing through the chip to complete the playing of the preset video, and the decrypted video stream is directly transmitted to the chip through the secure interface, so that the video stream can be effectively prevented from being intercepted, the technical effect of reducing the risk of video illegal recording is realized, and the technical problem of intercepting and illegal recording risks in the video playing process is solved.
The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.
In the above embodiments of the present invention, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
In the embodiments provided in the present application, it should be understood that the disclosed technology can be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units may be a logical division, and in actual implementation, there may be another division, for example, multiple units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, units or modules, and may be in an electrical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic or optical disk, and other various media capable of storing program codes.
The foregoing is only a preferred embodiment of the present invention, and it should be noted that, for those skilled in the art, various modifications and decorations can be made without departing from the principle of the present invention, and these modifications and decorations should also be regarded as the protection scope of the present invention.
Claims (10)
1. An encrypted video playing method, comprising:
acquiring a key transmission message of a preset video, wherein the preset video is an encrypted video to be played;
decrypting the predetermined video according to the key transmission message to obtain a video stream of the predetermined video;
and sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an operating system kernel, and the chip is used for carrying out hard decoding playing on the video stream.
2. The method of claim 1, wherein the key delivery message comprises: a list of trusted devices and a content decryption key, decrypting the predetermined video according to the key delivery message to obtain the video stream comprising:
acquiring a preset digital certificate registered in advance by a preset terminal, wherein the preset terminal is used for playing the preset video;
verifying whether the predetermined terminal belongs to trusted equipment or not according to the trusted equipment list, wherein at least one digital certificate corresponding to the trusted equipment is recorded in the trusted equipment list;
and under the condition that the predetermined terminal belongs to the trusted device, decrypting the predetermined video according to the content decryption key to obtain the video stream.
3. The method according to claim 2, wherein before acquiring the predetermined digital certificate pre-registered by the predetermined terminal, the method further comprises:
acquiring a unique identifier of the preset terminal;
registering the predetermined digital certificate of the predetermined terminal according to the unique identifier;
storing the predetermined digital certificate in a private folder of an operating system of the predetermined terminal.
4. The method of claim 1, wherein prior to obtaining the key delivery message for the predetermined video, the method further comprises:
and sending a playing request of the predetermined video, wherein the playing request is used for requesting to acquire a key transmission message of the predetermined video.
5. The method of claim 1, wherein prior to obtaining the key delivery message for the predetermined video, the method further comprises:
and acquiring the predetermined video provided by the third-party content distribution network.
6. An encrypted video playback apparatus, comprising:
the device comprises an acquisition unit, a display unit and a display unit, wherein the acquisition unit is used for acquiring a key transmission message of a preset video, and the preset video is an encrypted video to be played;
the decryption unit is used for decrypting the preset video according to the key transmission message to obtain a video stream;
and the sending unit is used for sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an operating system kernel, and the chip is used for carrying out hard decoding playing on the video stream.
7. The apparatus of claim 6, wherein the key delivery message comprises: a list of trusted devices and a content decryption key, the decryption unit comprising:
the system comprises a first acquisition module, a second acquisition module and a third acquisition module, wherein the first acquisition module is used for acquiring a preset digital certificate registered in advance by a preset terminal, and the terminal for presetting videos is a terminal for playing the preset videos;
the verification module is used for verifying whether the preset terminal belongs to the trusted device or not according to the trusted device list, wherein at least one digital certificate corresponding to the trusted device is recorded in the trusted device list;
and the decryption module is used for decrypting the predetermined video according to the content decryption key to obtain the video stream under the condition that the predetermined terminal belongs to the trusted device.
8. An encrypted video playback device, comprising:
the system comprises an application program, a display manager and a video playing device, wherein the application program is used for acquiring a key transmission message of a preset video and transmitting the key transmission message to the display manager, the preset video is an encrypted video to be played, and the display manager is used for managing programs and processes of the encrypted video playing device;
the display manager is used for decrypting the preset video according to the key transmission message to obtain a video stream of the preset video and sending the video stream to a chip through a secure playing interface, wherein the secure playing interface is an interface provided by an inner core of an operating system;
and the chip is used for carrying out hard decoding playing on the video stream.
9. A storage medium characterized by comprising a stored program, wherein the program causes a computer to execute the encrypted video playback method according to any one of claims 1 to 5.
10. An encrypted video playback apparatus, comprising: a memory; a processor: one or more programs stored in the memory and configured to, when executed by the processor, perform the encrypted video playback method of any of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810950583.2A CN109005427B (en) | 2018-08-20 | 2018-08-20 | Encrypted video playing method, device and equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810950583.2A CN109005427B (en) | 2018-08-20 | 2018-08-20 | Encrypted video playing method, device and equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109005427A CN109005427A (en) | 2018-12-14 |
| CN109005427B true CN109005427B (en) | 2021-06-08 |
Family
ID=64592716
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810950583.2A Expired - Fee Related CN109005427B (en) | 2018-08-20 | 2018-08-20 | Encrypted video playing method, device and equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109005427B (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1764267A (en) * | 2005-09-29 | 2006-04-26 | 上海交通大学 | Digital movie broadcasting system based on web remote control |
| WO2010111182A2 (en) * | 2009-03-25 | 2010-09-30 | Sony Corporation | Method to upgrade content encryption |
| CN103997681A (en) * | 2014-06-02 | 2014-08-20 | 合一网络技术(北京)有限公司 | Method for conducting link theft protection processing on live video and system thereof |
| CN107087213A (en) * | 2017-05-12 | 2017-08-22 | 广东工业大学 | A kind of system and method for video chaotic secret communication |
| CN107318045A (en) * | 2016-04-27 | 2017-11-03 | 阿里巴巴集团控股有限公司 | The method and device of playing video data stream |
| CN107318043A (en) * | 2017-05-16 | 2017-11-03 | 北京奇艺世纪科技有限公司 | A kind of method for processing video frequency and device |
-
2018
- 2018-08-20 CN CN201810950583.2A patent/CN109005427B/en not_active Expired - Fee Related
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1764267A (en) * | 2005-09-29 | 2006-04-26 | 上海交通大学 | Digital movie broadcasting system based on web remote control |
| WO2010111182A2 (en) * | 2009-03-25 | 2010-09-30 | Sony Corporation | Method to upgrade content encryption |
| CN103997681A (en) * | 2014-06-02 | 2014-08-20 | 合一网络技术(北京)有限公司 | Method for conducting link theft protection processing on live video and system thereof |
| CN107318045A (en) * | 2016-04-27 | 2017-11-03 | 阿里巴巴集团控股有限公司 | The method and device of playing video data stream |
| CN107087213A (en) * | 2017-05-12 | 2017-08-22 | 广东工业大学 | A kind of system and method for video chaotic secret communication |
| CN107318043A (en) * | 2017-05-16 | 2017-11-03 | 北京奇艺世纪科技有限公司 | A kind of method for processing video frequency and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109005427A (en) | 2018-12-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10754930B2 (en) | Remotely managed trusted execution environment for digital rights management in a distributed network with thin clients | |
| US10848806B2 (en) | Technique for securely communicating programming content | |
| EP1867158B1 (en) | Tool pack structure and contents execution device | |
| US7383438B2 (en) | System and method for secure conditional access download and reconfiguration | |
| KR100936885B1 (en) | Method and apparatus for mutual authentification in downloadable conditional access system | |
| US8151342B2 (en) | Contents execution device equipped with independent authentication means and contents re-distribution method | |
| CA2977967C (en) | Pc secure video path | |
| US20050210500A1 (en) | Method and apparatus for providing conditional access to recorded data within a broadband communication system | |
| US20040250077A1 (en) | Method of establishing home domain through device authentication using smart card, and smart card for the same | |
| CN101945248A (en) | But handle the recorded content in the stream | |
| US8978057B2 (en) | Interoperability of set top box through smart card | |
| CN101945249A (en) | But handle the recorded content in the stream | |
| KR100978162B1 (en) | Method for verifying validity of domestic digital network key | |
| CN101895393A (en) | IPTV (Internet Protocol Television) user security terminal | |
| CN111601117B (en) | Digital copyright management method and system | |
| CN109005427B (en) | Encrypted video playing method, device and equipment and storage medium | |
| EP3317796A1 (en) | Remotely managed trusted execution environment for digital-rights management in a distributed network with thin clients | |
| CN110139136A (en) | A kind of method and device that the Web TV based on DRM technology plays | |
| KR100718982B1 (en) | System and Method for Relay of Certificate Between User Terminals | |
| US20160165279A1 (en) | Method of transmitting messages between distributed authorization server and conditional access module authentication sub-system in renewable conditional access system, and renewable conditional access system headend | |
| CN102857821A (en) | IPTV (internet protocol television) security terminal | |
| Cho et al. | Secure D-CAS system for digital contents downloading services | |
| CN100468436C (en) | Method and system of content protection | |
| WO2015189833A1 (en) | Streaming of secure content in a home network | |
| CN118102003A (en) | Terminal safety access and viewing control system for realizing DTMB ultra-high definition signal end-to-end wired transmission |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20210608 |