CN109885988A - Method for broadcasting multimedia file, multimedia equipment based on credible performing environment - Google Patents
Method for broadcasting multimedia file, multimedia equipment based on credible performing environment Download PDFInfo
- Publication number
- CN109885988A CN109885988A CN201910120270.9A CN201910120270A CN109885988A CN 109885988 A CN109885988 A CN 109885988A CN 201910120270 A CN201910120270 A CN 201910120270A CN 109885988 A CN109885988 A CN 109885988A
- Authority
- CN
- China
- Prior art keywords
- multimedia file
- encryption
- unencryption
- performing environment
- multimedia
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The present embodiments relate to field of computer technology, more particularly to a kind of method for broadcasting multimedia file based on credible performing environment, multimedia equipment.Method includes: to send playing request to content server;The multimedia file for the encryption that reception content server is returned according to playing request;It triggers digital rights management module corresponding with the multimedia file of encryption and sends decoding request to authorization server, so that authorization server returns to the content key of encryption corresponding with the multimedia file of encryption according to decoding request;Under credible performing environment, the content key of starting trusted application decryption encryption reuses the multimedia file of the content key decryption encryption of unencryption, to obtain the content key of unencryption to obtain the multimedia file of unencryption.Therefore, the decryption that multimedia file can be completed under credible performing environment, to improve the safety of decrypting process, and more safely and reliably protects the digital publishing rights of multimedia file.
Description
Technical field
The present embodiments relate to field of computer technology, more particularly to a kind of multimedia based on credible performing environment
Document play-back method, multimedia equipment.
Background technique
With the development of internet technology, more and more Digitized Works are able to propagate and use in internet, however, with
And come problem be digital publishing rights protection problem.
In order to protect digital publishing rights, people have formulated Digital Rights Management Technology specification (Digital Rights
Management, DRM), preferably to manage digital publishing rights.
However, conventional digital rights management technology is also more dangerous, have not been able to manage digital copyright reliable and securely
Works.
Summary of the invention
One purpose of the embodiment of the present invention be intended to provide a kind of method for broadcasting multimedia file based on credible performing environment,
Multimedia equipment can be improved the safety of DRM management.
In order to solve the above technical problems, the embodiment of the present invention the following technical schemes are provided:
In a first aspect, the embodiment of the present invention provides a kind of method for broadcasting multimedia file based on credible performing environment,
Applied to multimedia equipment, the multimedia equipment operation has rich performing environment and credible performing environment, which comprises
Playing request is sent to content server;
Receive the multimedia file for the encryption that the content server is returned according to the playing request, wherein difference adds
Close multimedia file, which corresponds to, runs on digital rights management module different in the rich performing environment, different digital copyright
The management module authentication registration under the rich performing environment in advance;
It triggers digital rights management module corresponding with the multimedia file of the encryption and sends decryption to authorization server
Request, so that the authorization server returns to encryption corresponding with the multimedia file of the encryption according to the decoding request
Content key, wherein the multimedia file of the encryption is obtained by the multimedia file of the content key encryption unencryption of unencryption
It arrives;
Under the credible performing environment, starting trusted application decrypts the content key of the encryption, to obtain
The content key for stating unencryption reuses the multimedia file of encryption described in the content key decryption of the unencryption, to obtain
The multimedia file of the unencryption;
The multimedia file of the unencryption is stored in both the credible performing environment and the rich performing environment
In shared drive.
Optionally, the content key of the encryption is close by using the content of the public key encryption unencryption of the multimedia equipment
What key obtained, wherein the private key of the multimedia equipment is pre-stored on the credible memory under the credible performing environment.
Optionally, the starting trusted application decrypts the content key of the encryption, to obtain the unencryption
Content key, comprising:
Start trusted application, the private key of the multimedia equipment is extracted from the credible memory, and use
The private key decrypts the content key of the encryption, to obtain the content key of the unencryption.
Optionally, the content key is configured with broadcasting type of service;
The method also includes:
Under the credible performing environment, start the multimedia file that the trusted application monitors the unencryption
Whether playing condition meets the preset condition for playing type of service;
If so, allowing to play the multimedia file;
If it is not, failure state is set by the content key, so that the trusted application decrypts the encryption
Multimedia file failure.
Optionally, the type of service that plays includes limiting the broadcasting time and/or playing duration that multimedia file plays
And/or limit the type of service that multimedia file plays in fixed time limit;
Whether the playing condition for the multimedia file that the starting trusted application monitors the unencryption meets
The preset condition for playing type of service, comprising:
Start broadcasting time and/or playing duration that the trusted application monitors the multimedia file of the unencryption
It whether is more than preset threshold;
And/or
Start the trusted application and monitor the multimedia file of the unencryption and whether is played in fixed time limit.
Optionally, the method also includes:
When the multimedia file for monitoring the unencryption is in broadcast state, start the trusted application monitoring
Power supply supply status;
When the power supply supply status is abnormal power-down state, start the trusted application in the credible memory
Middle recording played abnormality;
When monitoring that the multimedia file of the unencryption replays, start the trusted application according to
Abnormality and the broadcasting type of service are played, the broadcasting of the multimedia file of the unencryption is extended.
In second aspect, the embodiment of the present invention provides a kind of multimedia file playing device based on credible performing environment,
Applied to multimedia equipment, the multimedia equipment operation has rich performing environment and credible performing environment, and described device includes:
Sending module, for sending playing request to content server;
Receiving module, for receiving the multimedia text for the encryption that the content server is returned according to the playing request
Part, wherein the multimedia file of difference encryption, which corresponds to, runs on digital copyright management mould different in the rich performing environment
Block, the different drm module authentication registration under the rich performing environment in advance;
Trigger module takes for triggering digital rights management module corresponding with the multimedia file of the encryption to authorization
Business device sends decoding request, so that the authorization server returns to the multimedia file with the encryption according to the decoding request
The content key of corresponding encryption, wherein the multimedia file of the encryption by unencryption content key encryption unencryption
What multimedia file obtained;
Starting module, under the credible performing environment, starting trusted application to decrypt the content of the encryption
Key reuses more matchmakers of encryption described in the content key decryption of the unencryption to obtain the content key of the unencryption
Body file, to obtain the multimedia file of the unencryption;
Memory module is held for the multimedia file of the unencryption to be stored in the credible performing environment with the richness
In the shared drive of both row environment.
Optionally, the content key of the encryption is close by using the content of the public key encryption unencryption of the multimedia equipment
What key obtained, wherein the private key of the multimedia equipment is pre-stored on the credible memory under the credible performing environment.
Optionally, the starting module is specifically used for: starting trusted application extracts institute from the credible memory
The private key of multimedia equipment is stated, and decrypts the content key of the encryption using the private key, to obtain the unencryption
Content key.
Optionally, the content key is configured with broadcasting type of service;
Described device further include:
Judgment module monitors the unencryption under the credible performing environment, starting the trusted application
Multimedia file playing condition whether meet it is described play type of service preset condition;If so, allowing to play described more
Media file;If it is not, failure state is set by the content key, so that the trusted application decrypts the encryption
Multimedia file failure.
Optionally, the type of service that plays includes limiting the broadcasting time and/or playing duration that multimedia file plays
And/or limit the type of service that multimedia file plays in fixed time limit;
The judgment module is specifically used for:
Start broadcasting time and/or playing duration that the trusted application monitors the multimedia file of the unencryption
It whether is more than preset threshold;
And/or
Start the trusted application and monitor the multimedia file of the unencryption and whether is played in fixed time limit.
Optionally, described device further include:
Power supply monitoring module, for starting institute when the multimedia file for monitoring the unencryption is in broadcast state
State trusted application monitoring power supply supply status;
Logging modle, for starting the trusted application when the power supply supply status is abnormal power-down state
The recording played abnormality in the credible memory;
Extend module, for when monitoring that the multimedia file of the unencryption replays, starts described credible answer
With program according to the broadcasting abnormality and the broadcasting type of service, extend broadcasting for the multimedia file of the unencryption
It puts.
In the third aspect, the embodiment of the present invention provides a kind of multimedia equipment, comprising:
At least one processor;And
The memory being connect at least one described processor communication;Wherein, the memory be stored with can by it is described extremely
The instruction that a few processor executes, described instruction are executed by least one described processor, so that at least one described processing
Device can be used in executing described in any item method for broadcasting multimedia file based on credible performing environment.
In fourth aspect, the embodiment of the present invention provides a kind of non-transient computer readable storage medium, the non-transient meter
Calculation machine readable storage medium storing program for executing is stored with computer executable instructions, and the computer executable instructions are for holding multimedia equipment
The described in any item method for broadcasting multimedia file based on credible performing environment of row.
At the 5th aspect, the embodiment of the present invention provides a kind of computer program product, and the computer program product includes
The computer program being stored on non-volatile computer readable storage medium storing program for executing, the computer program include program instruction, when
When described program instruction is executed by multimedia equipment, execute the multimedia equipment described in any item based on credible execution ring
The method for broadcasting multimedia file in border.
In the method for broadcasting multimedia file based on credible performing environment that each embodiment of the present invention provides, to content
Server sends playing request;The multimedia file for the encryption that reception content server is returned according to playing request, wherein different
The multimedia file of encryption, which corresponds to, runs on digital rights management module different in rich performing environment, different digital copyright pipe
Manage the module authentication registration under rich performing environment in advance;Trigger digital rights management module corresponding with the multimedia file of encryption
Decoding request is sent to authorization server, so that authorization server is corresponding with the multimedia file of encryption according to decoding request return
Encryption content key, wherein the multimedia file of encryption by unencryption content key encryption unencryption multimedia text
What part obtained;Under credible performing environment, the content key of starting trusted application decryption encryption, to obtain in unencryption
Hold key, the multimedia file of the content key decryption encryption of unencryption is reused, to obtain the multimedia file of unencryption;It will
The multimedia file of unencryption is stored in the shared drive of both credible performing environment and rich performing environment.It therefore, can be
The decryption of multimedia file is completed under credible performing environment, to improve the safety of decrypting process, and more safety can
The digital publishing rights of multimedia file are protected by ground.
Detailed description of the invention
One or more embodiments are illustrated by the picture in corresponding attached drawing, these exemplary theorys
The bright restriction not constituted to embodiment, the element in attached drawing with same reference numbers label are expressed as similar element, remove
Non- to have special statement, composition does not limit the figure in attached drawing.
Fig. 1 is a kind of structural schematic diagram of system for numeral copyright management provided in an embodiment of the present invention;
Fig. 2 is a kind of system environments schematic diagram of multimedia equipment provided in an embodiment of the present invention;
Fig. 3 is a kind of process of method for broadcasting multimedia file based on credible performing environment provided in an embodiment of the present invention
Schematic diagram;
Fig. 4 a is a kind of knot of multimedia file playing device based on credible performing environment provided in an embodiment of the present invention
Structure schematic diagram;
Fig. 4 b be another embodiment of the present invention provides a kind of multimedia file playing device based on credible performing environment
Structural schematic diagram;
Fig. 4 c is that a kind of multimedia file based on credible performing environment that still another embodiment of the present invention provides plays dress
The structural schematic diagram set;
Fig. 5 is a kind of structural schematic diagram of multimedia equipment provided in an embodiment of the present invention.
Specific embodiment
In order to make the objectives, technical solutions, and advantages of the present invention clearer, with reference to the accompanying drawings and embodiments, right
The present invention is further elaborated.It should be appreciated that described herein, specific examples are only used to explain the present invention, not
For limiting the present invention.
The method for broadcasting multimedia file based on credible performing environment of the embodiment of the present invention, can be in any suitable class
It is executed in type, the multimedia equipment with operational capability, such as set-top box, television set etc..
The multimedia file playing device based on credible performing environment of the embodiment of the present invention can be used as software systems, solely
It erects and sets in above-mentioned multimedia equipment, can also be used as the one of functional module of integration in the processor, execute this hair
The method for broadcasting multimedia file based on credible performing environment of bright embodiment.
The embodiment of the present invention provides a kind of system for numeral copyright management.Referring to Fig. 1, system for numeral copyright management 100 wraps
Include multimedia equipment 11, content server 12 and authorization server 13, wherein multimedia equipment 11 respectively with content server 12
It is communicated with authorization server 13.
For multimedia equipment 11 for playing multimedia file, multimedia file includes audio file or video file, more matchmakers
Body equipment can be such as set-top box, television set etc. playback equipment.
Content server 12 is for providing multimedia file, wherein and different operators run different content server 12,
In order to provide different multimedia file.
Authorization server 13 plays licensing for providing, and different multimedia file corresponds to different broadcasting licensings, wherein
Difference play licensings configure it is different play types of service, such as preview, broadcasting, storage, movement, copy etc. type,
In, each plays type of service and all corresponds to different restrictive conditions, for example, broadcasting time is broadcast no more than default broadcasting time
Duration is put no more than default playing duration, multimedia file is played in fixed time limit.
In some embodiments, herein content server 12 or authorization server 13 can be a physical server or
A logical server made of the multiple physical servers of person are virtual.Server be also possible to it is multiple can interconnected communication server
The server zone of composition, and each functional module can be respectively distributed on each server in server zone.
In the present embodiment, each multimedia equipment operation has rich performing environment (Rich Execution
Environment, REE) and credible performing environment (Trusted Execution Environment, TEE), wherein Fu Zhihang
Environment can support Android operation system etc..
Credible performing environment is isolated with rich performing environment, and credible performing environment can be trusted application (Trusted
Application, TA) secure execution environments are provided, meanwhile, confidentiality and integrality are also provided, and to trusted application
Resource and data provide access authority control.
In the present embodiment, referring to Fig. 2, the operation of each multimedia equipment has rich performing environment 21 and credible execution ring
Border 22.
The rich operation of performing environment 21 has normal client end to apply 212 with trusted client using 211, wherein normal client
End can be multiple using 212 quantity using 211 or trusted client.
Normal client end is using 211 for completing the processing of application service under rich performing environment 21.
Trusted client can be installed under rich performing environment, different types of credible client using 212 by after certification
End apply 212 achievable different types of application functions, for example, trusted client using 212 can be used for mobile payment field into
Row receives payment information, and trusted client can be used for kernel business system using 212, with realize enterprise customer secure log,
Data management etc., trusted client can be used for digital copyright management field using 212, with realize multimedia file broadcasting and
Management.
In the present embodiment, the rich operation of performing environment 21 has digital rights management module 213, digital rights management module
213 for managing digital copyrighted work, and when managing digital copyrighted work, digital rights management module 213 is asked for server
The content key of encryption, with the digital copyrighted work of decryption.
Rich performing environment 21, which is also run, generic kernel layer 214, and generic kernel layer 214 is for completing rich 21 phase of performing environment
The application function of pass is handled and logic is called, wherein generic kernel layer 214 is provided with credible and secure region (TrustZone
Software), credible and secure region provides a micro- security kernel run in secure execution environments to execute ring in richness
It the general-purpose operating system that is run under border while running, and to be provided for the communication between the general-purpose operating system and security kernel pair
The driving answered.
Rich performing environment 21, which is also run, credible client end interface (TEE API) 215, and credible client end interface 215 is bottom
Layer programming interface, by calling credible client end interface 215, the trusted client operated under rich performing environment can using 212
To access and exchange the data of the trusted application operated under credible performing environment.
The credible operation of performing environment 22 has communication agent module 221, trusted application internal interface 222 and trusted application
223。
Communication agent module 221 is used for logical using message is provided between 212 and trusted application 223 for trusted client
Letter is supported.
Trusted application internal interface 222 is that all kinds of trusted applications 223 provide all kinds of interfaces supports.
Trusted application 223 operates under credible performing environment, special to provide particular safety service.Trusted application
223 obtain the interface that respective operations system provides under executable environment by calling corresponding trusted application internal interface 222
Function, to complete corresponding security service.
In the present embodiment, each trusted application 223 all corresponds to a unique universal identification code
(Universally Unique Identifier, UUID), trusted client are opened accordingly using 212 by universal identification code
Trusted application 223, in order to provide security service.
In the present embodiment, both rich performing environment 21 and credible performing environment 22 are used in conjunction with the same shared drive
216, which prestores the Various types of data that can be run in rich performing environment 21 or credible performing environment 22 or text
Part, for example, multimedia file is pre-stored in shared drive 216, the player access operated under rich performing environment 21 is shared interior
216 are deposited, multimedia file is obtained from shared drive 216 and is played out.
Some public datas or non-private data can be stored in shared drive 216 by credible performing environment 22, also,
The types of applications operated under rich performing environment 21 can obtain data from shared drive 216.
In the present embodiment, in order to guarantee that the Information Security of credible performing environment 22, credible performing environment 22 are provided with
Credible memory 224, this is credible, and memory 224 is exclusively used in storing significant data or private data etc. under credible performing environment 22.
On the other hand as the embodiment of the present invention, the embodiment of the present invention provides a kind of multimedia based on credible performing environment
Document play-back method, is applied to multimedia equipment, and multimedia equipment operation has rich performing environment and credible performing environment.
Referring to Fig. 3, the method for broadcasting multimedia file S300 based on credible performing environment includes:
S31, playing request is sent to content server;
In the present embodiment, trusted client applies the broadcasting inputted in response to user to click, then, just to content service
Device sends playing request, wherein playing request includes the broadcast address of multimedia file, and content server is according to multimedia file
Broadcast address, obtain the multimedia file.
In some embodiments, trusted client application may also respond to the trigger action of other application, then just to
Content server sends playing request.
The multimedia file for the encryption that S32, reception content server are returned according to playing request, wherein difference encryption
Multimedia file, which corresponds to, runs on digital rights management module different in rich performing environment, different drm module
The authentication registration under rich performing environment in advance;
In the present embodiment, after content server receives playing request, content server is parsed from playing request
Broadcast address, and according to broadcast address obtain multimedia file, wherein the multimedia file be by encryption, it is non-to prevent
Method user illegally plays multimedia file.
In the present embodiment, rich performing environment can run a kind of or multiclass digital rights management module, every class digital publishing rights
Management module all corresponds to the multimedia file of a kind of encryption, to facilitate management digital copyrighted work.
In the present embodiment, playing request further includes digital publishing rights module id, and each digital publishing rights module id is all right
Answer a kind of digital rights management module.Trusted client is applied parses digital publishing rights module id from playing request, and time
Go through out digital rights management module corresponding with digital publishing rights module id.
S33, triggering digital rights management module corresponding with the multimedia file of encryption send to authorization server and decrypt
Request, so that authorization server returns to the content key of encryption corresponding with the multimedia file of encryption according to decoding request,
In, what the multimedia file of encryption was obtained by the multimedia file of the content key encryption unencryption of unencryption;
In the present embodiment, when trusted client application traverses out digital publishing rights pipe corresponding with digital publishing rights module id
After managing module, the trusted client applications trigger digital rights management module sends decoding request to authorization server, wherein solution
Close request includes the series number of the multimedia file of encryption.Authorization server traverses out and the multimedia of encryption text from database
The content key of the corresponding encryption of the series number of part.
S34, under credible performing environment, starting trusted application decryption encryption content key, to obtain unencryption
Content key, reuse unencryption content key decryption encryption multimedia file, with obtain unencryption multimedia text
Part;
In the present embodiment, after trusted client application receives the content key of encryption, trusted client application is called
Credible client end interface, then, credible client end interface jump to the credible and secure region of generic kernel layer, and trusted client is answered
With monitor command is executed, communication agent module is triggered.Wherein, communication agent module saves the mode of operation of rich performing environment, opens
Move credible performing environment.
Under credible performing environment, since trusted client application can carry the universal identification code of trusted application, lead to
Believe that proxy module passes through the universal identification code of the trusted application, corresponding trusted application internal interface is called, to start
Corresponding trusted application, so that the corresponding trusted application executes security service, security service includes the interior of encryption
Hold the decryption of the multimedia file of decryption and the encryption of key.
In some embodiments, the content key of encryption is close by using the content of the public key encryption unencryption of multimedia equipment
What key obtained, for example, device identification of the authorization server according to multimedia equipment, traverses out the equipment mark with the multimedia equipment
Know corresponding public key, secondly, authorization server reuses the content key of public key encryption unencryption, the content that can be encrypted
Key,
From the foregoing, it will be observed that in some embodiments, the public key of multimedia equipment can be pre-stored on authorization server, and multimedia is set
Standby private key can be pre-stored on the credible memory under credible performing environment, so that subsequent trusted application executes security service
When, safe private key can be used and complete decryption.
Therefore, during obtaining the content key of unencryption, trusted application extracts more from credible memory
The private key of media device, using the content key of private key decryption encryption, to obtain the content key of unencryption.
S35, the shared drive that the multimedia file of unencryption is stored in both credible performing environment and rich performing environment
In.
In the present embodiment, after the multimedia file of unencryption is stored in shared drive, trusted client application or
Other play plays out using the multimedia file that can obtain unencryption from shared drive in system.
To sum up, using method provided in this embodiment, the decryption of multimedia file can be completed under credible performing environment,
To improve the safety of decrypting process, and more safely and reliably protect the digital publishing rights of multimedia file.
In some embodiments, content key is configured with playing type of service, such as foregoing preview, plays, deposits
Storage, mobile, copy etc. type.When user charges have purchased the broadcasting type of service of some multimedia file, the user is full
Multimedia file is played out under the foot broadcasting type of service, for example, user has purchased multimedia file A on January 1st, 2019
Broadcasting type of service, the broadcasting type of service require user using the time buying as starting point, be limited in 72 hours play should
Multimedia file A plays failure if just playing multimedia file A more than 72 hours.For another example user was January 1 in 2019
Have purchased the broadcasting type of service of multimedia file B day, which limits the broadcasting that user plays multimedia file B
Number is no more than 3 times, if the secondary broadcasting multimedia file B of user the 4th, plays failure.For another example user is 2019
Had purchased the broadcasting type of service of multimedia file C year on January 1, which limits user and play multimedia file C
Playing duration be no more than 48 hours, if user was also wanting to continue more than 48 hours to play multimedia file C, play mistake
It loses.
Therefore, credible to answer under credible performing environment in order to safely and reliably meet the preset condition for playing type of service
Whether meet the preset condition for playing type of service with the playing condition of the multimedia file of sequential monitoring unencryption.Wherein, in advance
If the broadcasting type of service that condition can be bought by operator according to user and voluntarily determine, such as preset condition can be above three
The condition that example is enumerated respectively.
For another example play type of service include limit multimedia file play broadcasting time and/or playing duration and/or
Limit the type of service that multimedia file plays in fixed time limit.Start the multimedia text of trusted application monitoring unencryption
During whether the playing condition of part meets the preset condition for playing type of service, trusted application monitors the more of unencryption
Whether the broadcasting time and/or playing duration of media file are more than preset threshold;And/or the monitoring of starting trusted application is not
Whether the multimedia file of encryption plays in fixed time limit.
If the playing condition of the multimedia file of unencryption meets the preset condition for playing type of service, allow to play more
Media file.
If the playing condition of the multimedia file of unencryption does not meet the preset condition for playing type of service, by content key
It is set as failure state, so that the multimedia file failure of trusted application decryption encryption.For example, since content key is to lose
Effect state, trusted application have not been able to successfully using the multimedia file of the content key decryption of failure and unencryption encryption
To obtain the multimedia file of unencryption, therefore, multimedia equipment has not been able to successfully play multimedia file.
For example, user has purchased the broadcasting type of service of multimedia file C on January 1st, 2019, the broadcasting business
The preset condition of type is that the playing duration of limitation user's broadcasting multimedia file C is no more than 48 hours, wherein more matchmakers
Body file C is serial.User has played 48 hours altogether on January 1st, 2019 to January 15, when user January 16 again
When wanting to continue to play multimedia file C, in credible performing environment, trusted application monitors that multimedia file C is played
48 hours then just set failure state for content key, so as to want to continue playing multimedia after the 48th hour
When file C, since trusted application has not been able to successfully using more matchmakers of the content key decryption of failure and unencryption encryption
Body file, therefore, multimedia equipment have not been able to successfully play multimedia file.
In the present embodiment, since whether the playing condition of the multimedia file of monitoring unencryption meets broadcasting type of service
The behavior of preset condition be in credible performing environment, therefore, multimedia equipment relatively reliable can safely protect more matchmakers
The digital publishing rights of body file.
In some embodiments, although user charges have purchased the broadcasting type of service of some multimedia file, due to going out
Existing some force majeure cause user to play multimedia file with having not been able to high experience.For example, the broadcasting business of multimedia file
The preset condition of type is that broadcasting time is no more than 3 times.When second of broadcasting, multimedia equipment powers off suddenly, though lead to user
Do not play multimedia file completely so, but trusted application still records user and plays multimedia file second,
The only remaining primary chance for playing multimedia file.
In order to improve the experience sense of user, in some embodiments, it is in and broadcasts in the multimedia file for monitoring unencryption
When putting state, starting trusted application monitors power supply supply status.When power supply supply status is abnormal power-down state, starting
Trusted application recording played abnormality in credible memory, also, the multimedia file for monitoring unencryption again
When broadcasting, starting trusted application extends the multimedia file of unencryption according to playing abnormality and playing type of service
Broadcasting.For example, the preset condition for playing type of service is that broadcasting time is no more than 3 times, when multimedia file is played at the 2nd time
When occur play abnormality, then, trusted application increase by 1 unencryption multimedia file broadcasting time.
It should be noted that not necessarily there is centainly successive between above steps in above-mentioned each embodiment
Sequentially, those of ordinary skill in the art, according to an embodiment of the present invention to describe to be appreciated that in different embodiments, above-mentioned each step
Suddenly there can be the different sequences that executes, also i.e., it is possible to execute parallel, execution etc. can also be exchanged.
As the another aspect of the embodiment of the present invention, the embodiment of the present invention provides a kind of more matchmakers based on credible performing environment
Body file playing device, is applied to multimedia equipment, and multimedia equipment operation has rich performing environment and credible performing environment.This hair
The multimedia file playing device based on credible performing environment of bright embodiment can be used as one of SFU software functional unit, base
It include some instructions in the multimedia file playing device of credible performing environment, which is stored in memory, processing
The accessible memory of device, call instruction are executed, and are broadcast with completing the above-mentioned multimedia file based on credible performing environment
Put method.
Fig. 4 a is please referred to, the multimedia file playing device 400 based on credible performing environment includes: sending module 41, connects
Receive module 42, trigger module 43, starting module 44 and memory module 45.
Sending module 41 is used to send playing request to content server;
Receiving module 42 is used to receive the multimedia text for the encryption that the content server is returned according to the playing request
Part, wherein the multimedia file of difference encryption, which corresponds to, runs on digital copyright management mould different in the rich performing environment
Block, the different drm module authentication registration under the rich performing environment in advance;
Trigger module 43 is for triggering digital rights management module corresponding with the multimedia file of the encryption to authorization
Server sends decoding request, so that the authorization server returns and the multimedia of encryption text according to the decoding request
The content key of the corresponding encryption of part, wherein the multimedia file of the encryption by unencryption content key encryption unencryption
Multimedia file obtain;
Starting module 44 is used under the credible performing environment, and starting trusted application decrypts the content of the encryption
Key reuses more matchmakers of encryption described in the content key decryption of the unencryption to obtain the content key of the unencryption
Body file, to obtain the multimedia file of the unencryption;
Memory module 45 is used to the multimedia file of the unencryption being stored in the credible performing environment and the richness
In the shared drive of both performing environments.
To sum up, using device provided in this embodiment, the decryption of multimedia file can be completed under credible performing environment,
To improve the safety of decrypting process, and more safely and reliably protect the digital publishing rights of multimedia file.
Optionally, the content key of the encryption is close by using the content of the public key encryption unencryption of the multimedia equipment
What key obtained, wherein the private key of the multimedia equipment is pre-stored on the credible memory under the credible performing environment.
Optionally, the starting module is specifically used for: starting trusted application extracts institute from the credible memory
The private key of multimedia equipment is stated, and decrypts the content key of the encryption using the private key, to obtain the unencryption
Content key.
Optionally, the content key is configured with broadcasting type of service;
Fig. 4 b is please referred to, the multimedia file playing device 400 based on credible performing environment further include: judgment module 46,
Judgment module 46 is used under the credible performing environment, starts the multimedia that the trusted application monitors the unencryption
Whether the playing condition of file meets the preset condition for playing type of service;If so, allowing to play the multimedia file;
If it is not, failure state is set by the content key, so that the trusted application decrypts the multimedia text of the encryption
Part failure.
Optionally, the type of service that plays includes limiting the broadcasting time and/or playing duration that multimedia file plays
And/or limit the type of service that multimedia file plays in fixed time limit;
The judgment module 46 is specifically used for: starting the multimedia file that the trusted application monitors the unencryption
Broadcasting time and/or playing duration whether be more than preset threshold;And/or start described in the trusted application monitoring not
Whether the multimedia file of encryption plays in fixed time limit.
Fig. 4 c is please referred to, the multimedia file playing device 400 based on credible performing environment further include: power supply monitoring module
47, logging modle 48 and extension module 49.
Power supply monitoring module 47 is used for when the multimedia file for monitoring the unencryption is in broadcast state, starts institute
State trusted application monitoring power supply supply status;
Logging modle 48 is used to start the trusted application when the power supply supply status is abnormal power-down state
The recording played abnormality in the credible memory;
Extend module 49 to be used for when monitoring that the multimedia file of the unencryption replays, starts described credible answer
With program according to the broadcasting abnormality and the broadcasting type of service, extend broadcasting for the multimedia file of the unencryption
It puts.
It should be noted that the above-mentioned multimedia file based on credible performing environment plays executable institute of the embodiment of the present invention
The method for broadcasting multimedia file based on credible performing environment provided has the corresponding functional module of execution method and beneficial to effect
Fruit.The technical detail of detailed description not in the multimedia file playing device embodiment based on credible performing environment, reference can be made to
Method for broadcasting multimedia file based on credible performing environment provided by the embodiment of the present invention.
As the another aspect of the embodiment of the present invention, the embodiment of the present invention provides a kind of multimedia equipment.Such as Fig. 5 institute
Show, which includes: one or more processors 51 and memory 52.Wherein, with a processor in Fig. 5
For 51.
Processor 51 can be connected with memory 52 by bus or other modes, to be connected as by bus in Fig. 5
Example.
Memory 52 is used as a kind of non-volatile computer readable storage medium storing program for executing, can be used for storing non-volatile software journey
Sequence, non-volatile computer executable program and module, such as more matchmakers based on credible performing environment in the embodiment of the present invention
Corresponding program instruction/the module of body document play-back method.Processor 51 is stored in non-volatile in memory 52 by operation
Software program, instruction and module, thereby executing the various functions of the multimedia file playing device based on credible performing environment
Using and data processing, i.e., realization above method embodiment provide the multimedia file broadcasting side based on credible performing environment
The function of the modules of method and above-mentioned apparatus embodiment.
Memory 52 may include high-speed random access memory, can also include nonvolatile memory, for example, at least
One disk memory, flush memory device or other non-volatile solid state memory parts.In some embodiments, memory 52
Optional includes the memory remotely located relative to processor 51, these remote memories can pass through network connection to processor
51.The example of above-mentioned network includes but is not limited to internet, intranet, local area network, mobile radio communication and combinations thereof.
Described program instruction/module is stored in the memory 52, is held when by one or more of processors 51
When row, the method for broadcasting multimedia file based on credible performing environment in above-mentioned any means embodiment is executed.
The embodiment of the invention also provides a kind of nonvolatile computer storage media, the computer storage medium storage
There are computer executable instructions, which is executed by one or more processors, such as at one in Fig. 5
Manage device 51, may make said one or multiple processors can be performed in above-mentioned any means embodiment based on credible performing environment
Method for broadcasting multimedia file, for example, executing the multimedia based on credible performing environment in above-mentioned any means embodiment
Document play-back method.
The embodiment of the invention also provides a kind of computer program product, the computer program product is non-including being stored in
Computer program on volatile computer readable storage medium storing program for executing, the computer program include program instruction, work as described program
When instruction is executed by multimedia equipment, the multimedia equipment is made to execute described in any item more matchmakers based on credible performing environment
Body document play-back method.
Device or apparatus embodiments described above is only schematical, wherein it is described as illustrated by the separation member
Unit module may or may not be physically separated, and the component shown as modular unit can be or can also
Not to be physical unit, it can it is in one place, or may be distributed on multiple network module units.It can basis
It is actual to need that some or all of the modules therein is selected to achieve the purpose of the solution of this embodiment.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can
It is realized by the mode of software plus general hardware platform, naturally it is also possible to pass through hardware.Based on this understanding, above-mentioned technology
Scheme substantially in other words can be embodied in the form of software products the part that the relevant technologies contribute, the computer
Software product may be stored in a computer readable storage medium, such as ROM/RAM, magnetic disk, CD, including some instructions are with directly
To computer equipment (can be personal computer, server or the network equipment etc.) execute each embodiment or
Method described in certain parts of embodiment.
Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;At this
It under the thinking of invention, can also be combined between the technical characteristic in above embodiments or different embodiment, step can be with
It is realized with random order, and there are many other variations of different aspect present invention as described above, for simplicity, they do not have
Have and is provided in details;Although the present invention is described in detail referring to the foregoing embodiments, the ordinary skill people of this field
Member is it is understood that it is still possible to modify the technical solutions described in the foregoing embodiments, or to part of skill
Art feature is equivalently replaced;And these are modified or replaceed, each reality of the application that it does not separate the essence of the corresponding technical solution
Apply the range of a technical solution.
Claims (10)
1. a kind of method for broadcasting multimedia file based on credible performing environment, is applied to multimedia equipment, the multimedia is set
Received shipment row has rich performing environment and credible performing environment, which is characterized in that the described method includes:
Playing request is sent to content server;
Receive the multimedia file for the encryption that the content server is returned according to the playing request, wherein difference encryption
Multimedia file, which corresponds to, runs on digital rights management module different in the rich performing environment, different drm
The module authentication registration under the rich performing environment in advance;
It triggers digital rights management module corresponding with the multimedia file of the encryption and sends decoding request to authorization server,
So that the authorization server returns to the content of encryption corresponding with the multimedia file of the encryption according to the decoding request
Key, wherein the multimedia file of the encryption is obtained by the multimedia file of the content key encryption unencryption of unencryption;
Under the credible performing environment, starting trusted application decrypts the content key of the encryption, with obtain it is described not
The content key of encryption reuses the multimedia file of encryption described in the content key decryption of the unencryption, described to obtain
The multimedia file of unencryption;
The multimedia file of the unencryption is stored in the shared of both the credible performing environment and the rich performing environment
In memory.
2. the method according to claim 1, wherein the content key of the encryption is by using the multimedia to set
What the content key of standby public key encryption unencryption obtained, wherein the private key of the multimedia equipment is pre-stored in described credible hold
On credible memory under row environment.
3. according to the method described in claim 2, it is characterized in that, the starting trusted application decrypts the interior of the encryption
Hold key, to obtain the content key of the unencryption, comprising:
Start trusted application, is extracted described in private key and the use of the multimedia equipment from the credible memory
Private key decrypts the content key of the encryption, to obtain the content key of the unencryption.
4. method according to any one of claims 1 to 3, which is characterized in that the content key is configured with broadcasting business
Type;
The method also includes:
Under the credible performing environment, start the broadcasting that the trusted application monitors the multimedia file of the unencryption
Whether condition meets the preset condition for playing type of service;
If so, allowing to play the multimedia file;
If it is not, failure state is set by the content key, so that the trusted application decrypts more matchmakers of the encryption
The failure of body file.
5. according to the method described in claim 4, it is characterized in that, the broadcasting type of service includes limiting multimedia file to broadcast
The type of service that the broadcasting time and/or playing duration and/or restriction multimedia file put play in fixed time limit;
It is described whether the playing condition for the multimedia file that the starting trusted application monitors the unencryption meets
Play the preset condition of type of service, comprising:
Start the trusted application monitor the unencryption multimedia file broadcasting time and/or playing duration whether
More than preset threshold;
And/or
Start the trusted application and monitor the multimedia file of the unencryption and whether is played in fixed time limit.
6. according to the method described in claim 4, it is characterized in that, the method also includes:
When the multimedia file for monitoring the unencryption is in broadcast state, start the trusted application monitoring power supply
Supply status;
When the power supply supply status is abnormal power-down state, starts the trusted application and remember in the credible memory
Abnormality is put in recorded broadcast;
When monitoring that the multimedia file of the unencryption replays, start the trusted application according to the broadcasting
Abnormality and the broadcasting type of service, extend the broadcasting of the multimedia file of the unencryption.
7. a kind of multimedia file playing device based on credible performing environment, is applied to multimedia equipment, the multimedia is set
Received shipment row has rich performing environment and credible performing environment, which is characterized in that described device includes:
Sending module, for sending playing request to content server;
Receiving module, for receiving the multimedia file for the encryption that the content server is returned according to the playing request,
In, the multimedia file of difference encryption, which corresponds to, runs on digital rights management module different in the rich performing environment, no
With the digital rights management module authentication registration under the rich performing environment in advance;
Trigger module, for triggering digital rights management module corresponding with the multimedia file of the encryption to authorization server
Decoding request is sent, so that the authorization server is corresponding with the multimedia file of the encryption according to decoding request return
Encryption content key, wherein the multimedia file of the encryption by unencryption content key encryption unencryption more matchmakers
Body file obtains;
Starting module, under the credible performing environment, starting the content key that trusted application decrypts the encryption,
To obtain the content key of the unencryption, the multimedia text of encryption described in the content key decryption of the unencryption is reused
Part, to obtain the multimedia file of the unencryption;
Memory module, for the multimedia file of the unencryption to be stored in the credible performing environment and the rich execution ring
In the shared drive in both borders.
8. device according to claim 7, which is characterized in that the content key of the encryption is by using the multimedia to set
What the content key of standby public key encryption unencryption obtained, wherein the private key of the multimedia equipment is pre-stored in described credible hold
On credible memory under row environment.
9. device according to claim 8, which is characterized in that the starting module is specifically used for: starting trusted application journey
Sequence extracts the private key of the multimedia equipment from the credible memory, and decrypts the encryption using the private key
Content key, to obtain the content key of the unencryption.
10. a kind of multimedia equipment characterized by comprising
At least one processor;And
The memory being connect at least one described processor communication;Wherein, be stored with can be by described at least one for the memory
The instruction that a processor executes, described instruction is executed by least one described processor, so that at least one described processor energy
It is enough in execution such as the method for broadcasting multimedia file as claimed in any one of claims 1 to 6 based on credible performing environment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910120270.9A CN109885988A (en) | 2019-02-18 | 2019-02-18 | Method for broadcasting multimedia file, multimedia equipment based on credible performing environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910120270.9A CN109885988A (en) | 2019-02-18 | 2019-02-18 | Method for broadcasting multimedia file, multimedia equipment based on credible performing environment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109885988A true CN109885988A (en) | 2019-06-14 |
Family
ID=66928330
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910120270.9A Pending CN109885988A (en) | 2019-02-18 | 2019-02-18 | Method for broadcasting multimedia file, multimedia equipment based on credible performing environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109885988A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110392288A (en) * | 2019-07-05 | 2019-10-29 | 深圳市九洲电器有限公司 | A kind of method for broadcasting multimedia file, terminal installation and terminal device |
| CN111131898A (en) * | 2020-02-17 | 2020-05-08 | 聚好看科技股份有限公司 | Method and device for playing media resource, display equipment and storage medium |
| CN111460400A (en) * | 2020-03-31 | 2020-07-28 | 腾讯科技(深圳)有限公司 | Data processing method and device and computer readable storage medium |
| CN111757176A (en) * | 2020-06-11 | 2020-10-09 | 青岛海信传媒网络技术有限公司 | Streaming media file safe playing method and display equipment |
| CN112800436A (en) * | 2021-04-07 | 2021-05-14 | 支付宝(杭州)信息技术有限公司 | Data authorization method and device and electronic equipment |
| CN112995109A (en) * | 2019-12-17 | 2021-06-18 | 阿里巴巴集团控股有限公司 | Data encryption system and method, data processing method and device and electronic equipment |
| CN113542226A (en) * | 2021-06-18 | 2021-10-22 | 深圳数字电视国家工程实验室股份有限公司 | Multimedia data protection method, device and computer readable storage medium |
| CN117278803A (en) * | 2023-11-21 | 2023-12-22 | 深圳软牛科技有限公司 | DRM video decryption method, device, equipment and storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143232A (en) * | 2011-04-02 | 2011-08-03 | 南京邮电大学 | Peer-to-peer network based digital copyright protection method |
| CN104298896A (en) * | 2014-09-30 | 2015-01-21 | 广州星汇文化发展有限公司 | Method and system for managing and distributing digital rights |
| CN106845160A (en) * | 2015-12-03 | 2017-06-13 | 国家新闻出版广电总局广播科学研究院 | A kind of digital copyright management for intelligent operating system(DRM)Method and system |
-
2019
- 2019-02-18 CN CN201910120270.9A patent/CN109885988A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143232A (en) * | 2011-04-02 | 2011-08-03 | 南京邮电大学 | Peer-to-peer network based digital copyright protection method |
| CN104298896A (en) * | 2014-09-30 | 2015-01-21 | 广州星汇文化发展有限公司 | Method and system for managing and distributing digital rights |
| CN106845160A (en) * | 2015-12-03 | 2017-06-13 | 国家新闻出版广电总局广播科学研究院 | A kind of digital copyright management for intelligent operating system(DRM)Method and system |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110392288A (en) * | 2019-07-05 | 2019-10-29 | 深圳市九洲电器有限公司 | A kind of method for broadcasting multimedia file, terminal installation and terminal device |
| CN110392288B (en) * | 2019-07-05 | 2022-01-04 | 深圳市九洲电器有限公司 | Multimedia file playing method, terminal device and terminal equipment |
| CN112995109A (en) * | 2019-12-17 | 2021-06-18 | 阿里巴巴集团控股有限公司 | Data encryption system and method, data processing method and device and electronic equipment |
| CN112995109B (en) * | 2019-12-17 | 2023-05-26 | 阿里巴巴集团控股有限公司 | Data encryption system, data encryption method, data processing device and electronic equipment |
| CN111131898A (en) * | 2020-02-17 | 2020-05-08 | 聚好看科技股份有限公司 | Method and device for playing media resource, display equipment and storage medium |
| CN111460400A (en) * | 2020-03-31 | 2020-07-28 | 腾讯科技(深圳)有限公司 | Data processing method and device and computer readable storage medium |
| CN111757176A (en) * | 2020-06-11 | 2020-10-09 | 青岛海信传媒网络技术有限公司 | Streaming media file safe playing method and display equipment |
| CN112800436A (en) * | 2021-04-07 | 2021-05-14 | 支付宝(杭州)信息技术有限公司 | Data authorization method and device and electronic equipment |
| CN112800436B (en) * | 2021-04-07 | 2021-06-29 | 支付宝(杭州)信息技术有限公司 | Data authorization method and device and electronic equipment |
| CN113542226A (en) * | 2021-06-18 | 2021-10-22 | 深圳数字电视国家工程实验室股份有限公司 | Multimedia data protection method, device and computer readable storage medium |
| CN113542226B (en) * | 2021-06-18 | 2023-09-26 | 深圳数字电视国家工程实验室股份有限公司 | Multimedia data protection method, device and computer readable storage medium |
| CN117278803A (en) * | 2023-11-21 | 2023-12-22 | 深圳软牛科技有限公司 | DRM video decryption method, device, equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109885988A (en) | Method for broadcasting multimedia file, multimedia equipment based on credible performing environment | |
| CA2524405C (en) | Method and system for controlled media sharing in a network | |
| CN1333314C (en) | Software execution control system and software execution control program | |
| US20080295174A1 (en) | Method and System for Preventing Unauthorized Access and Distribution of Digital Data | |
| US8087091B2 (en) | Method and system for preventing unauthorized reproduction of electronic media | |
| US7487366B2 (en) | Data protection program and data protection method | |
| US7584353B2 (en) | Preventing unauthorized distribution of media content within a global network | |
| CN100480947C (en) | Conditional access to digital rights management conversion | |
| US8555395B2 (en) | Method and system for providing a media change notification on a computing system | |
| CN104904228B (en) | For handling content of multimedia to realize the equipment of multiple virtual machines | |
| JP2008186571A (en) | Content security layer providing long-term renewable security | |
| US7421412B2 (en) | Computerized method and system for monitoring use of a licensed digital good | |
| US20120042391A1 (en) | Method and system for protecting children from accessing inappropriate media available to a computer-based media access system | |
| WO2005076102A2 (en) | Method and system for preventing unauthorized recording of media content | |
| JPH0260008B2 (en) | ||
| CN109241705A (en) | A kind of software authorization method and system | |
| US8463708B2 (en) | System and method for using digital strings to provide secure distribution of digital content | |
| US20120042134A1 (en) | Method and system for circumventing usage protection applicable to electronic media | |
| US20140196155A1 (en) | Digital rights management (drm) locker | |
| US9117056B2 (en) | System and method for using digital strings to provide secure distribution of digital content | |
| JP2005122283A (en) | Method and system for license authentication, authenticating device, and program | |
| KR100779985B1 (en) | Protecting method and system of contents | |
| US9219734B2 (en) | Method and system for automatically detecting media and implementing interaction control thereon | |
| US8826445B2 (en) | Method and system of deterring unauthorized use of media content by degrading the contents waveform | |
| CN116127501A (en) | User private data protection method, system and medium based on user private container |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190614 |