CN110912941A - Transmission processing method and device for multicast data - Google Patents

Transmission processing method and device for multicast data Download PDF

Info

Publication number
CN110912941A
CN110912941A CN201911374395.0A CN201911374395A CN110912941A CN 110912941 A CN110912941 A CN 110912941A CN 201911374395 A CN201911374395 A CN 201911374395A CN 110912941 A CN110912941 A CN 110912941A
Authority
CN
China
Prior art keywords
data
field
key
multicast data
decryption
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201911374395.0A
Other languages
Chinese (zh)
Inventor
郭乙标
徐建
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Startimes Communication Network Technology Co ltd
Original Assignee
Startimes Communication Network Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Startimes Communication Network Technology Co ltd filed Critical Startimes Communication Network Technology Co ltd
Priority to CN201911374395.0A priority Critical patent/CN110912941A/en
Publication of CN110912941A publication Critical patent/CN110912941A/en
Withdrawn legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/065Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L1/00Arrangements for detecting or preventing errors in the information received
    • H04L1/004Arrangements for detecting or preventing errors in the information received by using forward error control
    • H04L1/0056Systems characterized by the type of code used
    • H04L1/0061Error detection codes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/101Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a transmission processing method and a device of multicast data, wherein the method comprises the following steps: acquiring multicast data generated by encrypting and packaging playing data, wherein the multicast data comprises: the encrypted playing data, the data verification field, the secret key ID field and the encryption scheme field; verifying the multicast data according to the data check field; after the verification is passed, determining a decryption scheme according to the encryption scheme field, and determining a decryption key according to the key ID field; and decrypting the encrypted playing data according to the decryption scheme and the decryption secret key to obtain the playing data. The invention improves the safety of playing data transmission.

Description

Transmission processing method and device for multicast data
Technical Field
The present invention relates to the field of multicast technologies, and in particular, to a method and an apparatus for processing multicast data transmission.
Background
The satellite receiving-to-IP part of the common hotel digital television front-end system adopts special equipment in the form of a satellite receiver or a multimedia server, and the price is high. In order to effectively reduce the cost and introduce a multicast technology to meet the requirement well, the DTH live broadcast program is IP-encoded and transmitted to each guest room of a hotel, and the processing of multicast data is particularly important at this time.
The existing multicast data transmission adopts the original udp protocol to transmit and receive data, and no transmission control is attached to the upper edge of the udp. During multicast data transmission, a multicast group is created by a server side of multicast, then bare data is sent, a client side joins in the multicast group, corresponding service processing is carried out on received data (in the case of playing and processing TS (transport stream) and the bare data is directly injected into a player to be played), the whole process is simpler to process, and the security is lower.
Disclosure of Invention
In order to solve at least one of the above technical problems in the background art, the present invention provides a method and an apparatus for processing multicast data transmission.
In order to achieve the above object, according to an aspect of the present invention, there is provided a transmission processing method of multicast data, the method including:
acquiring multicast data generated by encrypting and packaging playing data, wherein the multicast data comprises: the encrypted playing data, the data verification field, the secret key ID field and the encryption scheme field;
verifying the multicast data according to the data check field;
after the verification is passed, determining a decryption scheme according to the encryption scheme field, and determining a decryption key according to the key ID field;
and decrypting the encrypted playing data according to the decryption scheme and the decryption secret key to obtain the playing data.
Optionally, the method further includes:
and sending the playing data to a local virtual network card so that the player acquires the playing data from the local virtual network card and plays the playing data.
Optionally, the multicast data further includes: a key change field;
before the determining a decryption key according to the key ID field, further comprising:
judging whether the decryption key is changed or not according to the key change field;
if yes, the decryption key corresponding to each changed key ID is obtained.
Optionally, the multicast data further includes: a key change field and a data length field; the data length field records the length of the encrypted playing data;
the verifying the multicast data according to the data check field specifically includes:
calculating a check code according to the encrypted playing data, the secret key ID field, the encryption scheme field, the secret key change field and the data length field;
and comparing the calculated check code with the check code in the data check field to verify the multicast data.
Optionally, the data check field is a crc check field, and a crc check code is recorded in the crc check field.
In order to achieve the above object, according to another aspect of the present invention, there is provided a transmission processing apparatus of multicast data, the apparatus including:
a multicast data receiving unit, configured to acquire multicast data generated by encrypting and packetizing broadcast data, where the multicast data includes: the encrypted playing data, the data verification field, the secret key ID field and the encryption scheme field;
the multicast data verification unit is used for verifying the multicast data according to the data verification field;
the decryption scheme and key determining unit is used for determining a decryption scheme according to the encryption scheme field and determining a decryption key according to the key ID field after the verification is passed;
and the decryption unit is used for decrypting the encrypted playing data according to the decryption scheme and the decryption key to obtain the playing data.
Optionally, the apparatus further comprises:
and the virtual playing proxy unit is used for sending the playing data to a local virtual network card so that the player acquires the playing data from the local virtual network card and plays the playing data.
Optionally, the multicast data further includes: a key change field;
the device for processing multicast data transmission further comprises:
and the key updating unit is used for judging whether the decryption key is changed according to the key change field and acquiring the decryption key corresponding to each changed key ID when the decryption key is changed.
Optionally, the multicast data further includes: a key change field and a data length field; the data length field records the length of the encrypted playing data;
the multicast data verification unit includes:
the check code calculation module is used for calculating a check code according to the encrypted playing data, the secret key ID field, the encryption scheme field, the secret key change field and the data length field;
and the check code verification module is used for comparing the calculated check code with the check code in the data check field so as to verify the multicast data.
Optionally, the data check field is a crc check field, and a crc check code is recorded in the crc check field.
In order to achieve the above object, according to another aspect of the present invention, there is also provided a computer device, including a memory, a processor, and a computer program stored on the memory and executable on the processor, wherein the processor implements the steps in the transmission processing method of multicast data when executing the computer program.
In order to achieve the above object, according to another aspect of the present invention, there is also provided a computer-readable storage medium storing a computer program which, when executed in a computer processor, implements the steps in the above-described multicast data transmission processing method.
The invention has the beneficial effects that: the embodiment of the invention can ensure the correctness of the data received at the udp transmission layer as much as possible by setting the data check field in the multicast data. In addition, the invention encrypts the playing data by setting the secret key ID field and the encryption scheme field in the multicast data, thereby preventing data piracy, and the setting of the encryption scheme field also ensures that the multicast data of the invention is compatible with different encryption and decryption schemes, thereby having better applicability.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts. In the drawings:
fig. 1 is a flowchart of a transmission processing method of multicast data according to an embodiment of the present invention;
FIG. 2 is a flow chart of updating a key according to an embodiment of the present invention;
FIG. 3 is a flow chart of verifying multicast data according to an embodiment of the present invention;
fig. 4 is a block diagram of a transmission processing apparatus for multicast data according to an embodiment of the present invention;
fig. 5 is a block diagram of a structure of a multicast data check unit according to an embodiment of the present invention;
fig. 6 is a schematic diagram of multicast data according to an alternative embodiment of the present invention;
fig. 7 is a schematic diagram of multicast data transmission according to an alternative embodiment of the present invention;
FIG. 8 is a schematic diagram of a computer apparatus according to an embodiment of the present invention.
Detailed Description
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
It should be noted that the terms "comprises" and "comprising," and any variations thereof, in the description and claims of the present invention and the above-described drawings, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed, but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
It should be noted that the embodiments and features of the embodiments may be combined with each other without conflict. The present invention will be described in detail below with reference to the embodiments with reference to the attached drawings.
The transmission processing method of multicast data of the present invention involves interaction among a server, a client and a player, as shown in fig. 7. The server is used for encrypting and packaging the playing data (i.e. the clear stream in fig. 7), and then multicasting the ciphertext data (i.e. the multicast data) from the eth0 network card through the multicast private protocol. The client receives the multicast data through the eth0 network card, then unpacks the multicast data, decrypts the multicast data after taking the secret key, further forwards the decrypted play data to a local loopback lo (namely, a local virtual network card), and the player takes the data from the lo to play.
The following embodiments of the present invention will explain how the transmission processing method of multicast data of the present invention is implemented in the view of a client.
Fig. 1 is a flowchart of a multicast data transmission processing method according to an alternative embodiment of the present invention, and as shown in fig. 1, the multicast data transmission processing method according to this embodiment includes steps S101 to S105.
Step S101, acquiring multicast data generated by encrypting and packaging the playing data, wherein the multicast data comprises: the encrypted playing data, the data check field, the key ID field and the encryption scheme field.
In the embodiment of the present invention, the server is configured to encrypt and encapsulate the broadcast data (streaming data), then multicast the multicast data from the eth0 network card through the multicast private protocol, and the client receives the multicast data through the eth0 network card. In the embodiment of the present invention, the present invention expands the existing udp protocol, and establishes a proprietary protocol based on the existing udp protocol, and the format of the proprietary protocol of the present invention may be as shown in fig. 6. After encrypting the broadcast data, the server may perform a packet generation according to a proprietary protocol format as shown in fig. 6 to generate multicast data.
In the embodiment of the present invention, the multicast data includes: the encrypted playing data, the data check field, the key ID field and the encryption scheme field. In the embodiment of the present invention, the data check field is used to check the correctness of all the data in the field, and optionally, the data check field may adopt a crc check or a hash check, etc. In this embodiment of the present invention, the key ID field is used to identify a key for decrypting encrypted playback data, each key ID corresponds to a unique key, and after determining the key ID, the corresponding decryption key may be determined. In the embodiment of the invention, the encryption scheme field is used for identifying the encryption and decryption schemes, and as various encryption and decryption schemes exist in the prior art, the encryption and decryption schemes adopted by each company are different, which encryption scheme is adopted by the encrypted playing data can be determined through the encryption scheme field, and then the corresponding decryption scheme can be obtained.
And step S102, verifying the multicast data according to the data check field.
In the embodiment of the present invention, after receiving the multicast data, the client needs to then unpack and decrypt the multicast data to obtain the play data. When the client performs unpacking and decryption, the client needs to check the data correctness of the multicast data according to the data check field. In an optional embodiment of the present invention, in this step, a check code may be calculated by using a method in the prior art according to all data in the multicast data after the data check field (crc field), and the calculated check code is compared with the check code recorded in the data check field, so as to verify the correctness of the multicast data.
Step S103, after the verification is passed, determining a decryption scheme according to the encryption scheme field, and determining a decryption key according to the key ID field.
Step S104, decrypting the encrypted playing data according to the decryption scheme and the decryption key to obtain playing data.
Step S105, sending the playing data to a local virtual network card, so that the player obtains the playing data from the local virtual network card and plays the playing data.
As shown in fig. 7, in this step, the client forwards the decrypted playing data to the local loopback lo (i.e. the local virtual network card), and the player can take the playing data from lo to play. The invention realizes the multicast proxy scheme by decrypting the multicast data by the client and forwarding the decrypted play data to the local loop lo, namely, the player does not need to be developed to have decryption capability, and can directly acquire the play data from the local loop lo, thereby avoiding high cost generated by developing the player.
In an alternative embodiment of the invention, the address of the local loopback lo (i.e. the local virtual network card) is 127.0.0.1. The player can realize playing only by inputting udp:// @127.0.0.1, and the player can acquire playing data from the address to play. It can be seen from fig. 7 that the present invention forwards the playing data released by the client to the local loopback lo, if the data is not forwarded, the player needs to input udp:// @ multicast address, at this time, the data taken by the player is ciphertext data (encrypted playing data), and if the data cannot be played without decrypting, a part of development work needs to be performed on the player. The multicast proxy scheme of the invention does not need to modify the player source code by self, and can realize playing only by changing the address transmitted into the player into udp:// @ 127.0.0.1.
It can be seen from this embodiment that, the present invention can ensure the correctness of the data received at the udp transport layer as much as possible by setting the data check field in the multicast data. In addition, the invention encrypts the playing data by setting the secret key ID field and the encryption scheme field in the multicast data, thereby preventing data piracy, and the setting of the encryption scheme field also ensures that the multicast data of the invention is compatible with different encryption and decryption schemes, thereby having better applicability.
In another embodiment of the present invention, the multicasting data further includes, based on the above embodiment: a key change field. The key change field is used to identify whether the decrypted key has changed. In an optional embodiment of the present invention, the key change field occupies 1 byte, the value range is 0 and 1, the initial value is 0, and when the key changes once, the field correspondingly changes to 1 or 0, so as to identify whether the key changes. In the embodiment of the present invention, when the key is changed, the decryption key corresponding to each changed key ID needs to be obtained first.
Fig. 2 is a flowchart of updating a key according to an embodiment of the present invention, in which the key needs to be updated before determining a decryption key according to the key ID field in step S103, and the process of updating the key includes step S201 and step S202.
Step S201, determining whether the decryption key is changed according to the key change field.
In step S202, if the key ID is changed, the decryption key corresponding to each changed key ID is obtained.
In an alternative embodiment of the present invention, the decryption keys corresponding to each key ID may be in the form of a list, i.e., a key list. When the key change field changes, the key list is updated, and at this time, the latest key list needs to be acquired, and then the corresponding key is determined from the key list according to the key ID field in the current multicast data.
As shown in fig. 6, in another alternative embodiment of the present invention, the multicast data of the present invention specifically includes: UDP header, Data check field (crc32), Key change field (Key-change), Key ID field (Key-ID), encryption scheme field (System-ID), Data length field (Data-length), and encrypted playback Data (Data). The data length field describes the data length of the encrypted playback data.
crc32 (data check field): the field takes 4 bytes and is used to check all data in the future.
Key-change (Key change field): the field occupies 1 byte, and is used to mark whether the secret key of the currently sent multicast data is changed, the value range is 0 and 1, the initial value is 0, and the field is changed to 1 or 0 correspondingly when the secret key is changed once.
Key-ID (Key ID field): this field takes 16 bytes for decryption use, and the corresponding key can be found by this key-id to do decryption.
System-id (encryption scheme field): the encryption scheme identification value, which takes 16 bytes, refers to which encryption and decryption scheme is used, for example, an encryption and decryption scheme commonly used in the prior art may be used, and the id value of the encryption and decryption scheme is defined as 0x7374617274696D6573656E 6372797074. The invention can also adopt different encryption and decryption schemes and can flexibly replace the encryption and decryption schemes.
Data-length (Data length field): the length field of the encrypted playing data occupies 2 bytes, and is used for indicating the data length of the subsequent encrypted playing data.
Data (encrypted playback Data) in which the encrypted playback Data is described, and TS stream Data can be used in the present invention. The length of the encrypted playing Data is Data-length.
Fig. 3 is a flowchart of verifying multicast data according to an embodiment of the present invention, and as shown in fig. 3, in an alternative embodiment of the present invention, the verifying step S102 specifically includes step S301 and step S302.
Step S301, calculating a check code according to the encrypted playing data, the key ID field, the encryption scheme field, the key change field, and the data length field.
Step S302, comparing the calculated check code with the check code in the data check field, so as to verify the multicast data.
In an optional embodiment of the present invention, the data check field is a crc check field, and a crc check code is recorded in the crc check field. When performing the crc check, the step S301 specifically includes: and calculating a crc (crc) check code according to the data length of the encrypted playing data recorded in the data length field, the length of the key ID field, the length of the encryption scheme field, the length of the key change field and the length of the data length field, comparing the calculated crc check code with the crc check code in the crc check field, and verifying that the data are correct if the comparison is consistent.
As can be seen from the above description, the method for processing multicast data transmission according to the present invention has at least the following advantages:
1. the invention expands own private head on the udp protocol, adds crc check, can ensure the correctness of the data received at the udp transmission layer as much as possible, and the existence of system-id can make the protocol compatible with different encryption and decryption schemes.
2. The invention adds data encryption in the whole transmission process to prevent piracy.
3. The client can directly play the encrypted data stream without modifying the native player only by integrating the multicast agent library provided by the client, so that the workload is low, and the later maintenance is convenient.
It should be noted that the steps illustrated in the flowcharts of the figures may be performed in a computer system such as a set of computer-executable instructions and that, although a logical order is illustrated in the flowcharts, in some cases, the steps illustrated or described may be performed in an order different than presented herein.
Based on the same inventive concept, an embodiment of the present invention further provides a device for processing multicast data transmission, which can be used to implement the method for processing multicast data transmission described in the foregoing embodiment, as described in the following embodiment. Because the principle of solving the problem of the transmission processing device for multicast data is similar to that of the transmission processing method for multicast data, the embodiment of the transmission processing device for multicast data can refer to the embodiment of the transmission processing method for multicast data, and repeated parts are not described again. As used hereinafter, the term "unit" or "module" may be a combination of software and/or hardware that implements a predetermined function. Although the means described in the embodiments below are preferably implemented in software, an implementation in hardware, or a combination of software and hardware is also possible and contemplated.
Fig. 4 is a block diagram of a multicast data transmission processing apparatus according to an embodiment of the present invention, and as shown in fig. 4, the multicast data transmission processing apparatus according to the embodiment of the present invention includes: the system comprises a multicast data receiving unit 1, a multicast data verifying unit 2, a decryption scheme and key determining unit 3, a decryption unit 4 and a virtual play agent unit 5.
A multicast data receiving unit 1, configured to acquire multicast data generated by encrypting and packetizing broadcast data, where the multicast data includes: the encrypted playing data, the data check field, the key ID field and the encryption scheme field.
And the multicast data checking unit 2 is used for verifying the multicast data according to the data checking field.
And the decryption scheme and key determining unit 3 is configured to determine, after the authentication passes, a decryption scheme according to the encryption scheme field, and determine a decryption key according to the key ID field.
And the decryption unit 4 is configured to decrypt the encrypted playback data according to the decryption scheme and the decryption key to obtain the playback data.
And the virtual playing proxy unit 5 is configured to send the playing data to a local virtual network card, so that the player acquires the playing data from the local virtual network card and plays the playing data.
In this embodiment of the present invention, the multicast data further includes: a key change field. The device for processing multicast data transmission further comprises: and the key updating unit is used for judging whether the decryption key is changed according to the key change field and acquiring the decryption key corresponding to each changed key ID when the decryption key is changed.
In an optional embodiment of the present invention, the multicast data further includes: a data length field that describes the length of the encrypted playback data. Fig. 5 is a block diagram of a structure of a multicast data check unit according to an embodiment of the present invention, and as shown in fig. 5, in an alternative embodiment of the present invention, a multicast data check unit 2 includes: a check code calculation module 201 and a check code verification module 202.
And a check code calculation module 201, configured to calculate a check code according to the encrypted playback data, the key ID field, the encryption scheme field, the key change field, and the data length field.
A check code verification module 202, configured to compare the calculated check code with the check code in the data check field, so as to verify the multicast data.
In an optional embodiment of the present invention, the data check field is a crc check field, and a crc check code is recorded in the crc check field.
To achieve the above object, according to another aspect of the present application, there is also provided a computer apparatus. As shown in fig. 8, the computer device comprises a memory, a processor, a communication interface and a communication bus, wherein a computer program that can be run on the processor is stored in the memory, and the steps of the method of the above embodiment are realized when the processor executes the computer program.
The processor may be a Central Processing Unit (CPU). The Processor may also be other general purpose processors, Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete Gate or transistor logic devices, discrete hardware components, or a combination thereof.
The memory, which is a non-transitory computer readable storage medium, may be used to store non-transitory software programs, non-transitory computer executable programs, and units, such as the corresponding program units in the above-described method embodiments of the present invention. The processor executes various functional applications of the processor and the processing of the work data by executing the non-transitory software programs, instructions and modules stored in the memory, that is, the method in the above method embodiment is realized.
The memory may include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required for at least one function; the storage data area may store data created by the processor, and the like. Further, the memory may include high speed random access memory, and may also include non-transitory memory, such as at least one disk storage device, flash memory device, or other non-transitory solid state storage device. In some embodiments, the memory optionally includes memory located remotely from the processor, and such remote memory may be coupled to the processor via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The one or more units are stored in the memory and when executed by the processor perform the method of the above embodiments.
The specific details of the computer device may be understood by referring to the corresponding related descriptions and effects in the above embodiments, and are not described herein again.
In order to achieve the above object, according to another aspect of the present application, there is also provided a computer-readable storage medium storing a computer program which, when executed in a computer processor, implements the steps in the above-described multicast data transmission processing method. It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a Flash Memory (Flash Memory), a Hard disk (Hard disk Drive, abbreviated as HDD) or a Solid State Drive (SSD), etc.; the storage medium may also comprise a combination of memories of the kind described above.
It will be apparent to those skilled in the art that the modules or steps of the present invention described above may be implemented by a general purpose computing device, they may be centralized on a single computing device or distributed across a network of multiple computing devices, and they may alternatively be implemented by program code executable by a computing device, such that they may be stored in a storage device and executed by a computing device, or fabricated separately as individual integrated circuit modules, or fabricated as a single integrated circuit module from multiple modules or steps. Thus, the present invention is not limited to any specific combination of hardware and software.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.

Claims (12)

1. A method for processing multicast data transmission, comprising:
acquiring multicast data generated by encrypting and packaging playing data, wherein the multicast data comprises: the encrypted playing data, the data verification field, the secret key ID field and the encryption scheme field;
verifying the multicast data according to the data check field;
after the verification is passed, determining a decryption scheme according to the encryption scheme field, and determining a decryption key according to the key ID field;
and decrypting the encrypted playing data according to the decryption scheme and the decryption secret key to obtain the playing data.
2. The method according to claim 1, further comprising:
and sending the playing data to a local virtual network card so that the player acquires the playing data from the local virtual network card and plays the playing data.
3. The method according to claim 1, wherein the multicast data further includes: a key change field;
before the determining a decryption key according to the key ID field, further comprising:
judging whether the decryption key is changed or not according to the key change field;
if yes, the decryption key corresponding to each changed key ID is obtained.
4. The method according to claim 1, wherein the multicast data further includes: a key change field and a data length field; the data length field records the length of the encrypted playing data;
the verifying the multicast data according to the data check field specifically includes:
calculating a check code according to the encrypted playing data, the secret key ID field, the encryption scheme field, the secret key change field and the data length field;
and comparing the calculated check code with the check code in the data check field to verify the multicast data.
5. The method according to claim 1 or 4, wherein the data check field is a crc check field, and a crc check code is recorded in the crc check field.
6. A transmission processing apparatus for multicast data, comprising:
a multicast data receiving unit, configured to acquire multicast data generated by encrypting and packetizing broadcast data, where the multicast data includes: the encrypted playing data, the data verification field, the secret key ID field and the encryption scheme field;
the multicast data verification unit is used for verifying the multicast data according to the data verification field;
the decryption scheme and key determining unit is used for determining a decryption scheme according to the encryption scheme field and determining a decryption key according to the key ID field after the verification is passed;
and the decryption unit is used for decrypting the encrypted playing data according to the decryption scheme and the decryption key to obtain the playing data.
7. The apparatus for processing multicast data transmission according to claim 6, further comprising:
and the virtual playing proxy unit is used for sending the playing data to a local virtual network card so that the player acquires the playing data from the local virtual network card and plays the playing data.
8. The apparatus for processing multicast data transmission according to claim 6, wherein the multicast data further includes: a key change field;
the device for processing multicast data transmission further comprises:
and the key updating unit is used for judging whether the decryption key is changed according to the key change field and acquiring the decryption key corresponding to each changed key ID when the decryption key is changed.
9. The apparatus for processing multicast data transmission according to claim 6, wherein the multicast data further includes: a key change field and a data length field; the data length field records the length of the encrypted playing data;
the multicast data verification unit includes:
the check code calculation module is used for calculating a check code according to the encrypted playing data, the secret key ID field, the encryption scheme field, the secret key change field and the data length field;
and the check code verification module is used for comparing the calculated check code with the check code in the data check field so as to verify the multicast data.
10. The apparatus according to claim 6 or 9, wherein the data check field is a crc check field, and a crc check code is described in the crc check field.
11. A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, characterized in that the steps of the method of any of claims 1 to 5 are implemented when the computer program is executed by the processor.
12. A computer-readable storage medium, in which a computer program is stored which, when being executed in a computer processor, carries out the steps of the method according to any one of claims 1 to 5.
CN201911374395.0A 2019-12-27 2019-12-27 Transmission processing method and device for multicast data Withdrawn CN110912941A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911374395.0A CN110912941A (en) 2019-12-27 2019-12-27 Transmission processing method and device for multicast data

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911374395.0A CN110912941A (en) 2019-12-27 2019-12-27 Transmission processing method and device for multicast data

Publications (1)

Publication Number Publication Date
CN110912941A true CN110912941A (en) 2020-03-24

Family

ID=69827949

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911374395.0A Withdrawn CN110912941A (en) 2019-12-27 2019-12-27 Transmission processing method and device for multicast data

Country Status (1)

Country Link
CN (1) CN110912941A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111935546A (en) * 2020-07-23 2020-11-13 深圳市鼎盛光电有限公司 Program importing method and device, video playing equipment and storage medium
WO2021253852A1 (en) * 2020-06-14 2021-12-23 苏州浪潮智能科技有限公司 Data center 5g network encryption multicast-based authority authentication method and system

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272239A (en) * 2007-03-19 2008-09-24 许丰 Digital content safety control method, software and hardware device
CN102065135A (en) * 2010-12-15 2011-05-18 中国联合网络通信集团有限公司 Peer to peer data acquisition method, system and server
US20180063094A1 (en) * 2016-08-25 2018-03-01 Orion Labs End-to-end encryption for personal communication nodes
CN108965302A (en) * 2018-07-24 2018-12-07 苏州科达科技股份有限公司 Media data transmission system, method, apparatus and storage medium
CN109391607A (en) * 2017-08-14 2019-02-26 北京京东尚科信息技术有限公司 Data encryption/decryption method and device, system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272239A (en) * 2007-03-19 2008-09-24 许丰 Digital content safety control method, software and hardware device
CN102065135A (en) * 2010-12-15 2011-05-18 中国联合网络通信集团有限公司 Peer to peer data acquisition method, system and server
US20180063094A1 (en) * 2016-08-25 2018-03-01 Orion Labs End-to-end encryption for personal communication nodes
CN109391607A (en) * 2017-08-14 2019-02-26 北京京东尚科信息技术有限公司 Data encryption/decryption method and device, system
CN108965302A (en) * 2018-07-24 2018-12-07 苏州科达科技股份有限公司 Media data transmission system, method, apparatus and storage medium

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2021253852A1 (en) * 2020-06-14 2021-12-23 苏州浪潮智能科技有限公司 Data center 5g network encryption multicast-based authority authentication method and system
US11659384B2 (en) 2020-06-14 2023-05-23 Inspur Suzhou Intelligent Technology Co., Ltd. Data center 5G network encrypted multicast-based authority authentication method and system
CN111935546A (en) * 2020-07-23 2020-11-13 深圳市鼎盛光电有限公司 Program importing method and device, video playing equipment and storage medium

Similar Documents

Publication Publication Date Title
CN105939484B (en) A kind of the encryption playback method and its system of audio-video
CN106331751B (en) A kind of online encrypted slice video broadcasting method based on iOS operating system
CN101719910B (en) Terminal equipment for realizing content protection and transmission method thereof
CN106571951B (en) Audit log obtaining method, system and device
WO2021120831A1 (en) Streaming media data encryption method and apparatus, streaming media data decryption method and apparatus, electronic device and storage medium
US20120246462A1 (en) System and methods for providing live streaming content using digital rights management-based key management
US20080063195A1 (en) Method and system for encrypting or decrypting wmv streaming media
US11432039B2 (en) Systems and methods for data processing, storage, and retrieval from a server
JP2004048676A (en) Method, system and program for attaching title key to encrypted content for synchronized transmission to recipient
US8856515B2 (en) Implementation of robust and secure content protection in a system-on-a-chip apparatus
US20170171166A1 (en) Anti-hotlinking method and electronic device
US20110113443A1 (en) IP TV With DRM
CN107787493B (en) Method and apparatus for enabling content protection over a broadcast channel
US11698987B2 (en) Storage drive protection using file system level encryption
CN105721903A (en) Method and system for playing online videos
CN108848413B (en) System, method and device for preventing video from replay attack and storage medium
CN108769743B (en) Video playing control method, system, node and computer storage medium
CN107040501B (en) Authentication method and device based on platform as a service
US7886160B2 (en) Information processing apparatus and method, and computer program
CN110912941A (en) Transmission processing method and device for multicast data
CN108989886A (en) A kind of method and system playing encrypted video
CN110868641A (en) Method and system for detecting validity of live broadcast source
US11546151B2 (en) System for securing deployed security cameras
KR101701625B1 (en) Method and system for reproducing contents by secure acquiring decryption key for encrypted contents
CN111431846A (en) Data transmission method, device and system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication

Application publication date: 20200324

WW01 Invention patent application withdrawn after publication