EP2104991A1 - Verfahren zum senden gesicherter inhalte über das internet - Google Patents

Verfahren zum senden gesicherter inhalte über das internet

Info

Publication number
EP2104991A1
EP2104991A1 EP05758140A EP05758140A EP2104991A1 EP 2104991 A1 EP2104991 A1 EP 2104991A1 EP 05758140 A EP05758140 A EP 05758140A EP 05758140 A EP05758140 A EP 05758140A EP 2104991 A1 EP2104991 A1 EP 2104991A1
Authority
EP
European Patent Office
Prior art keywords
content
applet
user
web page
license
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP05758140A
Other languages
English (en)
French (fr)
Inventor
Marius Pindra
Stéphane Prevost
Thierry Piolatto
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Global Interface
Original Assignee
Global Interface
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Global Interface filed Critical Global Interface
Publication of EP2104991A1 publication Critical patent/EP2104991A1/de
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Definitions

  • the present invention relates to a method for broadcasting at least one content in a secure manner via an Internet type communication network. It finds a particularly interesting application in the field of syndication of electronic content.
  • the content can be "News", articles, ...
  • Content syndication consists of distributing publication data stored in a database of a publication server, a sort of content wholesaler. The distribution is carried out from a server either by ftp or by email (attachment).
  • the client receives syndicated content in text, HTML or xml format.
  • the customer offers this content to individuals via the Internet.
  • the invention is of a broader scope, since it can be applied to any system for distributing content via the Internet.
  • the present invention aims to a new method for limiting the dissemination of content on a web page to predefined users.
  • the invention aims to secure the content available on the Internet.
  • the goal sought is achieved with a method for broadcasting at least one content in a secure manner via an Internet-type communication network.
  • the following steps are carried out: opening, by means of the browser of a user's computer, of a Web page containing at least encrypted content, this content can be encrypted in a standard manner such as for example symmetric encryption; - activation of an application, called an applet, embedded with said web page, this applet requiring identification of the user; registration of a user identifier; in particular the user enters his login and password in an input window created by the applet, but we can also provide that the applet automatically retrieves the user-identifier stored in
  • the license includes parameters for the use of content, constraint parameters and a decryption key.
  • the usage parameters can be usage rights allowing to define the possibility or not to view, copy, print or redistribute the content.
  • the constraint parameters can be usage constraints such that the content is valid for one week, only once, ...
  • the encryption key is only stored in the computer's RAM.
  • the entire license remains in RAM so that no confidential information remains indefinitely on the user's computer.
  • the applet transmits at the same time as the user identifier, the identifier of each content present in said web page.
  • the applet stores a set of consultation information. This information is for example the number of times the user has printed the content.
  • the applet when the viewing window is closed, the applet returns, to the approval server, the license updated from said set of consultation information.
  • FIG. 1 is a general schematic view of a system implementing the method according to the invention
  • - Figure 2 is a diagram illustrating the architecture of the database shown in Figure 1
  • - Figure 3 is a flowchart illustrating different steps of the method according to the invention
  • Figure 4 is a schematic view of a web page and an identifier input window 1 according to the invention
  • Figure 5 is a schematic view of a viewing window and a web page according to the invention.
  • Figure 1 we see a platform 1 accessible Internet life and offering a set of services.
  • It includes a content server 3 capable of encrypting content 4 coming from an external environment and transmitting it to a Web server 5 for consultation via the Internet.
  • This web server 5 is capable of broadcasting all kinds of content, encrypted or not.
  • the encrypted content can be mixed with unencrypted content and broadcast over the Internet through a web page 6 to a user's computer 7.
  • the user To decrypt encrypted content, the user must contact platform 1 to recover decryption rights.
  • the user will have taken care to register beforehand with the platform 1.
  • the database 2 is connected to a plurality of web service servers: the offer server 8 a the function of presenting the user with different subscription possibilities, that is to say different levels of licenses; it therefore allows the user to subscribe; the authentication server 9 has the function of managing user registration and authentication, - the approval server 10 has the function of managing licenses, the environment server 11 has the function of updating the licenses on reception of the information transmitted by the applet module when the session is closed.
  • the offer server 8 a the function of presenting the user with different subscription possibilities, that is to say different levels of licenses; it therefore allows the user to subscribe
  • the authentication server 9 has the function of managing user registration and authentication
  • - the approval server 10 has the function of managing licenses
  • the environment server 11 has the function of updating the licenses on reception of the information transmitted by the applet module when the session is closed.
  • t_user is a table containing the registered users
  • - t_session a session is opened each time a user identifies himself
  • t_contenu is a table which references the contents
  • t_asset an asset corresponds to a given type of content such as front page articles of the week or all sports news, etc.
  • t_ hockey an offer is a set of permissions associated with an asset
  • t_agrement an approval is a license and corresponds to a user's subscription to an offer.
  • the different tables are chained in series so as to form a solid base.
  • offers and approvals are expressed in ODRL language for "Open Description Right Language" in English.
  • the web server 5 took care to store c2-encrypted content downloaded from the content server 3 of the platform 1.
  • the user 7 downloads in step 12 a web page 6 containing two contents non-encrypted cl, c2, encrypted content c2-encrypted as well as each title associated with each content, titrel, titre2 and titre3.
  • the cl and c2 content can be represented on the web page in the form of readable texts while the c2-encrypted content is a incomprehensible encrypted text.
  • Web 6 includes an embedded application such as a java module (applet) which, as soon as this page is displayed
  • Web 6 activates in step 13 the offer server 8 which transmits a request to the client 7 in step 14.
  • This request corresponds to an identification request.
  • the user identifies himself in step 15 by entering, for example, a login and a password.
  • FIG. 4 we see the web page 6 as well as a popup window 24 developed by the java module so as to transmit to the platform 1 the identifier of the user as well as the identifier of the content c2 -crypt.
  • the response of the user 7 is directly transmitted to the authentication server 9 during step 16.
  • the latter opens a session in step 17 so that the offer server 8 recovers, during steps 18 and 19, from the approval server 10, a license associated with this user. This license is specific to c2-encrypted content.
  • This license describes a right of use which may be the right to view without the possibility of copying, printing or redistributing.
  • the license also describes a usage constraint which is, for example, possible viewing for a week from the first viewing. It also includes a c2-encrypted content decryption key.
  • the offer server 8 transmits to the java module embedded in the web page 6 the license found.
  • This license remains stored in the random access memory of the user's computer 7.
  • the on-board module then develops a display window 25 as seen in FIG. 5. This window 25 lists all of the titles whose contents are present in the web page 6, therefore on the user's computer 7.
  • the java module retrieves in step 22 the c2-encrypted content within the web page 6, transforms it into c2-encrypted content using the decryption key present in the license, and displays this content c2- decrypted on the viewing window 25 during step 23.
  • the actions that the user can perform on the viewing window are managed by the java module according to the usage rights associated with the license.
  • the java module updates the license according to the actions of the user, and transmits said license to the approval server. Otherwise, the java module can directly transmit the license and actions to platform 1, the environment server will be responsible for updating the license.
  • each server (content, offers, authentication, approvals and environment) is a Web service which can be activated either by the applet or by a user action.
  • the invention is' not limited to the examples just described and numerous adjustments can be made to these examples without exceeding the scope of the invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Information Transfer Between Computers (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
EP05758140A 2004-04-19 2005-04-19 Verfahren zum senden gesicherter inhalte über das internet Withdrawn EP2104991A1 (de)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR0404123A FR2869131B1 (fr) 2004-04-19 2004-04-19 Procede pour diffuser des contenus securises via internet
PCT/FR2005/000959 WO2005109751A1 (fr) 2004-04-19 2005-04-19 Procede pour diffuser des contenus securises via internet

Publications (1)

Publication Number Publication Date
EP2104991A1 true EP2104991A1 (de) 2009-09-30

Family

ID=34945545

Family Applications (1)

Application Number Title Priority Date Filing Date
EP05758140A Withdrawn EP2104991A1 (de) 2004-04-19 2005-04-19 Verfahren zum senden gesicherter inhalte über das internet

Country Status (8)

Country Link
US (1) US20070214498A1 (de)
EP (1) EP2104991A1 (de)
JP (1) JP2007537509A (de)
CN (1) CN1943166A (de)
CA (1) CA2563586A1 (de)
FR (1) FR2869131B1 (de)
RU (1) RU2006140781A (de)
WO (1) WO2005109751A1 (de)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110780884A (zh) * 2019-09-05 2020-02-11 腾讯科技(深圳)有限公司 一种信息处理方法、装置及设备

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8285082B2 (en) * 2006-09-01 2012-10-09 Getty Images, Inc. Automatic identification of digital content related to a block of text, such as a blog entry
US8539559B2 (en) * 2006-11-27 2013-09-17 Futurewei Technologies, Inc. System for using an authorization token to separate authentication and authorization services
US8099597B2 (en) 2007-01-09 2012-01-17 Futurewei Technologies, Inc. Service authorization for distributed authentication and authorization servers
KR20080084481A (ko) * 2007-03-16 2008-09-19 삼성전자주식회사 디바이스간의 콘텐츠 전송 방법 및 그 시스템
US8285990B2 (en) 2007-05-14 2012-10-09 Future Wei Technologies, Inc. Method and system for authentication confirmation using extensible authentication protocol
US20080288983A1 (en) 2007-05-18 2008-11-20 Johnson Bradley G System and Method for Providing Sequential Video and Interactive Content
US7890854B2 (en) * 2007-05-31 2011-02-15 Realnetworks, Inc. Web media asset identification system and method
US8386387B2 (en) * 2007-12-21 2013-02-26 Utrom Processing Co. L.L.C. System and method for tracking syndication of internet content
US20090199242A1 (en) * 2008-02-05 2009-08-06 Johnson Bradley G System and Method for Distributing Video Content via a Packet Based Network
US8265990B2 (en) 2008-05-15 2012-09-11 Utrom Processing Co. L.L.C. Method and system for selecting and delivering media content via the internet
CN101635622B (zh) * 2008-07-24 2013-06-12 阿里巴巴集团控股有限公司 一种网页加密和解密的方法、系统及设备
CN101415004B (zh) * 2008-11-25 2013-05-08 江岳 嵌入式网页应用的认证方法
US20100293103A1 (en) * 2009-05-12 2010-11-18 Microsoft Corporation Interaction model to migrate states and data
US20130074191A1 (en) * 2011-09-20 2013-03-21 Ehud Ben-Reuven Method for controlling content uploaded to a public content site
US9830435B2 (en) * 2011-10-04 2017-11-28 Salesforce.Com, Inc. Method and system for providing login as a service
CN102957699B (zh) * 2012-10-26 2017-07-21 北京奇安信科技有限公司 一种企业内网访问控制方法和系统
CN103853944A (zh) * 2012-11-30 2014-06-11 英业达科技有限公司 利用客户端执行追踪程序以传送客户端信息的系统及其方法
JP2015075902A (ja) * 2013-10-08 2015-04-20 キヤノン株式会社 画像形成装置、その制御方法とプログラム

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8225414B2 (en) * 2000-08-28 2012-07-17 Contentguard Holdings, Inc. Method and apparatus for identifying installed software and regulating access to content
US7743259B2 (en) * 2000-08-28 2010-06-22 Contentguard Holdings, Inc. System and method for digital rights management using a standard rendering engine
US7395245B2 (en) * 2001-06-07 2008-07-01 Matsushita Electric Industrial Co., Ltd. Content usage management system and server used in the system
US7239708B2 (en) * 2001-06-27 2007-07-03 Microsoft Corporation Protecting decrypted compressed content and decrypted decompressed content at a digital rights management client
US20030002676A1 (en) * 2001-06-29 2003-01-02 Stachura Thomas L. Method and apparatus to secure network communications
US20030118188A1 (en) * 2001-12-26 2003-06-26 Collier David C. Apparatus and method for accessing material using an entity locked secure registry
US6865555B2 (en) * 2001-11-21 2005-03-08 Digeo, Inc. System and method for providing conditional access to digital content
US7526452B2 (en) * 2002-12-16 2009-04-28 International Business Machines Corporation Apparatus, methods and computer programs for metering and accounting for services accessed over a network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO2005109751A1 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110780884A (zh) * 2019-09-05 2020-02-11 腾讯科技(深圳)有限公司 一种信息处理方法、装置及设备

Also Published As

Publication number Publication date
US20070214498A1 (en) 2007-09-13
WO2005109751A1 (fr) 2005-11-17
RU2006140781A (ru) 2008-05-27
CA2563586A1 (fr) 2005-11-17
FR2869131A1 (fr) 2005-10-21
FR2869131B1 (fr) 2008-03-28
CN1943166A (zh) 2007-04-04
JP2007537509A (ja) 2007-12-20

Similar Documents

Publication Publication Date Title
EP2104991A1 (de) Verfahren zum senden gesicherter inhalte über das internet
Resnick Filtering information on the Internet
US20040205333A1 (en) Method and system for digital rights management
CN101783807B (zh) 使用标准演示引擎作数字权限管理的系统及方法
EP2105002A2 (de) System und verfahren zum verfolgen von elektronischen syndikatierten inhalten über ein internet-kommunikationsnetz
US20040024727A1 (en) Method and system of re-sharing files with modifications
EP1940116A2 (de) Verfahren und System zum Ausführen von Transaktionen mit tragbaren elektronischen Geräten, die an ein Kommunikationsnetz angeschlossen werden können und entsprechendes tragbares elektronisches Gerät
US20050044397A1 (en) Method and system for secure time management in digital rights management
EP2630609A1 (de) Verfahren zur verteilung digitaler dokumente mit angehängten benutzerrechten zur unterstützung von mehrfachkopieren, austausch und mehreren plattformen
CA2653106A1 (fr) Diffusion de documents electroniques preservant les droits d'auteur et autorisant la copie privee
Grimm et al. Peer-to-peer music-sharing with profit but without copy protection
US20100217993A1 (en) Display window control system and method
FR2929024A1 (fr) Procede de publication de documents securises en ligne et plateforme de publication.
US20060294026A1 (en) Digital rights conversion system
Santos et al. Proposal of a framework for Internet based licensing of learning objects
Abie Frontiers of DRM knowledge and technology
Metwally Ali Copyright protection for digital content
Hidalgo et al. Design and development challenges for an E2E DRM content business integration platform
Delgado Mercè et al. A mobile Scenario for Electronic Publishing based on the MIPAMS Architecture
Hill Reduce, Reuse and Deny: How Sustainability is Judged by Consumers
Chiariglione Putting Digital Rights Management In Context
Lonneborg Extending an MPEG-21 viewer to manage access rights
Knud Böhle INDICARE Monitor
Bong et al. Building knowledge resource of current state of the digital rights management implementation in ePublication
Einhorn Digital Rights Management, Licensing, and Privacy

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20070214

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LI LT LU MC NL PL PT RO SE SI SK TR

AX Request for extension of the european patent

Extension state: AL BA HR LV MK YU

17Q First examination report despatched

Effective date: 20091201

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20091103

R18D Application deemed to be withdrawn (corrected)

Effective date: 20091031