WO2017081177A1 - Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network - Google Patents

Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network Download PDF

Info

Publication number
WO2017081177A1
WO2017081177A1 PCT/EP2016/077306 EP2016077306W WO2017081177A1 WO 2017081177 A1 WO2017081177 A1 WO 2017081177A1 EP 2016077306 W EP2016077306 W EP 2016077306W WO 2017081177 A1 WO2017081177 A1 WO 2017081177A1
Authority
WO
WIPO (PCT)
Prior art keywords
content
watermarked
watermark
method
unique identifier
Prior art date
Application number
PCT/EP2016/077306
Other languages
French (fr)
Inventor
Jean-Bernard Fischer
Brecht Wyseur
Original Assignee
Nagravision S.A.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to EP15194311 priority Critical
Priority to EP15194311.5 priority
Application filed by Nagravision S.A. filed Critical Nagravision S.A.
Publication of WO2017081177A1 publication Critical patent/WO2017081177A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network, synchronizing decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
    • H04N21/4405Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/835Generation of protective data, e.g. certificates
    • H04N21/8355Generation of protective data, e.g. certificates involving usage data, e.g. number of copies or viewings allowed
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/835Generation of protective data, e.g. certificates
    • H04N21/8358Generation of protective data, e.g. certificates involving watermark

Abstract

A method for watermarking an encrypted digital content stored in a content distribution network is described. The method comprises the steps of: - receiving in the content distribution network, a non watermarked encrypted content and marking metadata, said non watermarked encrypted content being the result of an encryption of a non watermarked clear content by a stream cipher process, said marking metadata indicating locations in the content suitable for a modification of said content; - using a watermark formed of watermark values and corresponding to a unique identifier; and - producing a watermarked encrypted content by combining in the content distribution network, with a combination function, the values forming the watermark with the non watermarked encrypted content in locations indicated by the marking metadata. The description further concerns a method for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the above mentioned method. The description further concerns a content distribution network used for implementing the watermarking method described above. According to another aspect, the description further concerns a device for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the above mentioned method for watermarking a content.

Description

METHOD FOR WATERMARKING ENCRYPTED DIGITAL CONTENT, METHOD AND DEVICE FOR RETRIEVING A UNIQUE IDENTIFIER FROM WATERMARKED CONTENT AND CONTENT DISTRIBUTION NETWORK

TECHNICAL FIELD

According to an embodiment, it is proposed a method for watermarking an encrypted digital content, said encrypted content being stored in a content distribution network which has limited processing capacities. In such a Content Distribution Network, due to the low processing capacities, it is not possible or not desirable to encrypt a content within the content distribution network.

According to another embodiment, it is proposed a method for retrieving a unique identifier from a watermarked clear content said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the above mentioned method for watermarking an encrypted digital content. According to still another embodiment, it is proposed a content distribution network adapted to produce a watermarked encrypted content. A further embodiment proposes a device for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the above mentioned method for watermarking an encrypted digital content.

BACKGROUND ART

In the context of content distribution, for example of content distribution of conditional access content, a content distribution network (CDN) is often used. Such a content distribution network is a repository for the content files. The content files are generally encrypted, each with one or several keys, but the keys used do not depend on the receiver or on a user. In other words, for a given content, each receiver receives the same encrypted file. Accordingly, there is no way to trace the files once they are sent to numerous receivers. From a file downloaded from the internet, it is not possible to find the original receivers to which it was sent by the Content Distribution Network. A solution allowing for a content file to be traced could be provided by encrypting the files with keys pertaining to the receiver or to the user to which the file is sent. This would imply that the content distribution network should contain the keys pertaining to the receivers and/or to the users. As a content distribution network is not considered as a secure environment, it is not acceptable to make such keys available.

Moreover, usually, a content distribution network has a limited amount of processing capability and computer power shall be limited anyway. Thus, a conventional CDN would not be able to encrypt content on the fly. Providing additional processing capacities to a CDN in order to enable on the fly encryption would be prohibitively expensive and not optimal from a security point of view.

For these reasons, it is not possible to insert in a clear content, a specific mark which is unique to each receiver, in order to trace the content and to further encrypt the marked content. Therefore, there is a need for a solution allowing for content distributed by a content distribution network to be watermarked, while taking into account the constraints of these CDN, i.e. the limited processing capabilities and the lack of security.

SUMMARY

It is hereby proposed to solve the drawbacks of the prior art by proposing a method allowing for an encrypted content, distributed to receivers by a content distribution network (CDN), to be watermarked. It is also proposes a method for retrieving a user identifier from clear content which has been watermarked according to the above mentioned method.

It is further proposed a content distribution network adapted to produce a watermarked encrypted content as well as a device capable of retrieving a unique identifier from a watermarked clear content.

An object is achieved by a method for watermarking an encrypted digital content as defined in the preamble and comprising the steps of:

- receiving, in the content distribution network, a non watermarked encrypted content and marking metadata, said non watermarked encrypted content being the result of an encryption of a non watermarked clear content by a stream cipher process, said marking metadata indicating locations in the content suitable for a modification of said content;

- using a watermark formed of watermark values and corresponding to a unique identifier;

- producing a watermarked encrypted content by combining, in the content distribution network, with a combination function, the values forming the watermark with the non watermarked encrypted content in locations indicated by the marking metadata. Another object is achieved by a method for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the above mentioned method for watermarking an encrypted content, said method for retrieving the unique identifier comprising the steps of :

- combining the watermarked clear content with the non watermarked clear content in the locations indicated by the marking metadata, in order to obtain the watermark;

- applying an operation on the watermark to obtain the unique identifier, said operation being a reverse of the operation allowing for the watermark to be obtained from the unique identifier.

A further object is achieved by a content distribution network adapted to :

- receive a non watermarked encrypted content and marking metadata, said non watermarked encrypted content being the result of an encryption of a non watermarked clear content by a stream cipher process, said marking metadata indicating locations in the content suitable for a modification of said content;

- use a watermark formed of watermark values and corresponding to a unique identifier;

- produce a watermarked encrypted content by combining, with a combination function, the values forming the watermark with the non watermarked encrypted content in locations indicated by the marking metadata.

Still a further object is achieved by a device for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the above mentioned method for watermarking an encrypted content, said retrieving device being adapted to :

- receive a watermarked clear content;

- receive a corresponding non watermarked clear content;

- receive marking metadata corresponding to said watermarked clear content;

- combine the watermarked clear content with the non watermarked clear content in locations indicated by the marking metadata, in order to obtain the watermark;

- apply an operation on the watermark to obtain the unique identifier, said operation being a reverse of the operation allowing for the watermark to be obtained from the unique identifier.

A Content Distribution Network (CDN) to which limited additional processing capacities may be added can be used in order to enable marking a content in such a way that it is possible to retrieve a unique identifier from a content. The CDN however is able to distribute content that can be made specific to the receiver to which these contents are provided.

According to an embodiment of the methods described, the CDN receives conventional encrypted files intended for distribution to users. These files are encrypted by keys that are independent from the final users. The CDN also receives data that is specific to the users. This user specific data is used to personalize the content files. The personalization is done by the CDN. However, it does not require extensive encryption or processing capacities. Therefore, a CDN with limited additional processing capacities can be used.

As the CDN receives encrypted content files and as the keys used to encrypt or decrypt these files are not known to the CDN, there is no risk of disclosure of secret keys associated with the protection of the files.

BRIEF DESCRIPTION OF DRAWINGS

Different embodiments and their advantages will be better understood with reference to the enclosed drawings and to the detailed description, in which:

- Fig. 1 schematically discloses a method for marking an encrypted content; - Fig. 2 discloses a method for retrieving a unique identifier;

- Fig. 3 schematically discloses a preparation step of a watermarking method;

- Fig. 4 illustrates data used in the watermarking method;

- Fig. 5 illustrates data used in a method for retrieving a watermark; and - Fig. 6 illustrates the retrieval of a unique identifier from a watermark.

DETAILED DESCRIPTION

Figure 1 illustrates the method for watermarking an encrypted content. Fig. 2 illustrates the method for retrieving a unique identifier from a content marked according to the method illustrated by Fig. 1 . In the embodiment illustrated, the content is watermarked with a mark depend ing on a user identifier, said user identifier being in principle unique and different for different user devices. The watermark described in the present description could also be dependent on the content itself and/or on the content distribution network. In all the cases, it is referred to herein as "unique identifier". A user identifier could be the same for several receivers belonging to a same user, or on the contrary, each receiver could have a different user ID. It is also possible that some receivers of a user have the same user ID and that some receivers belonging to the same user have different user IDs.

Prior to transmitting content to the Content Distribution Network (CDN), a certain amount of processing is performed by a management center. The corresponding steps are referred to as "pre-processing". During this pre-processing, clear content is encrypted by a content encryption key. The encryption uses a stream cipher encryption mode such as for example AES-CTR (Advanced Encryption Standard block cipher in CounTeR mode). The reason why such a stream cipher mode is used will be explained below. It should be noted that virtually any stream cipher process could be used herein.

The clear content is also analyzed to identify regions in the content where the modification of a value of the content will not have an important effect during the rendering of the content. The expression "does not have an important effect" can be understood herein as meaning that the content can be visualized by a user without this user being disturbed by the effect. The effect can be invisible or hardly visible for example, or it can affect the rendering in a place where the user is not disturbed. Such analyses methods are known from the man skilled in the art and are therefore not further disclosed in detail in the present description. These methods are essentially used in the field of watermarking.

This content analysis, referred to as "Metadata processing" in Fig. 1 , results in marking metadata. This marking metadata can take the form of a bitmap indicating locations in the content, wherein a change of a value of the corresponding bit has little impact.

Such a bitmap is illustrated in Fig. 4 and 5. A value "0" in the bitmap indicates that the corresponding location of the content is not suitable for a modification and a value "1 " in the bitmap indicates that the corresponding location in the content is suitable for a modification.

The bitmap and/or the content comprise means for synchronizing or aligning the marking metadata and the encrypted content.

When this pre-processing is complete, the encrypted content and the marking metadata may be sent to the CDN. When a user unit requests a content, a processing of the user identifier is performed. A request is sent by the user unit to a management center or to a content provider, said request containing at least the user identifier and an identifier of the requested content. The processing of the user identifier is usually not performed in the CDN, but rather in a management center which can be the same as the management center processing the content, or another management center. During this user I D processing, a user identifier is processed to obtain a watermark. Usually, each bit of the user ID is converted to a sequence of bits. The sequence can depend on a table and several different sequences can correspond to a same value of one digit of the user ID. In Fig. 3, an example of a conversion of a user ID in a watermark is illustrated. In this example, the user ID is 405. The first digit of the user ID is converted according to a table. Here, the first digit "4" is converted in 1 10 according to the table. The second digit of the user ID, "0", is converted in 101 . The third digit of the user ID, "5" is converted into 000. Thus, the user ID "405" is converted in 1 10101000. It is clear that the number of digits of a user ID is usually greater than three. In this example, one digit of the user ID is converted into three bits. Usually, one digit is converted into more than three bits. The user ID can be formed of values such as for example numbers from 0 to 9 or even other characters such as letters or signs. Other methods could be used to convert a user I D in a watermark, such as for example encryption. One constraint is that it should be possible to determine which user ID corresponds to which watermark.

As mentioned above, the conversion of the unique identifier in a watermark is usually not performed by the CDN. However, according to another embodiment, the conversion could be done in a CDN, as it does not requ ire great processing capacities. Thus, obtaining a watermark by a content distribution network could mean either that the CDN receives the watermark and the unique identifier from an external provider or that the CDN receives the unique identifier and calculates the watermark.

The watermark can be stored with the unique identifier in a memory of the ma nag ement center or of the CD N or it can be cal cu lated on the fly by the management center or the CDN.

When a specific content has to be sent to a specific user unit or receiver, having a specific user ID, the CDN chooses the corresponding encrypted specific content and the corresponding marking metadata. The CDN also retrieves or calculates the corresponding watermark depending on the user ID of the user requesting the content. The watermark is then introduced by the CDN, in the encrypted content, in the locations indicated by the marking metadata. As mentioned above, the clear non watermarked content is encrypted by a stream ci pher process . The marki ng metadata indicates locations where a watermark can be introduced or more generally, where a modification of a value of the corresponding bit does not affect the rendering of the content. A way to introduce the watermark is to combine this watermark with the encrypted content, in the locations indicated by the marking metadata. As a stream cipher process is used, it is possible to use a quite simple combination function for combining the encrypted content with the watermark. A suitable combination is a XOR function. An example of this combination is illustrated by Fig. 4. In this figure, the marking metadata MM indicates, by a value of "1 ", that the corresponding bit of the content can be changed or is suitable for a modification, and by a value of "0" that the corresponding bit of the content should not be changed or is not suitable for a modification. The line WM illustrates the values of the watermark obtained by processing the user ID, each bit of the watermark being aligned with a bit having a value of "1 " in the marking metadata MM.

The third line of Fig. 4 illustrates the encrypted unmarked content EUC, as received by the CDN after the preprocessing of the content. The last line of Fig. 4 illustrates the encrypted watermarked content EWC. This watermarked content is obtained by a combination of the encrypted unmarked content EUC with the line noted WC. For example, the first bit of the watermark, "1 " is combined with the corresponding bit "1 " of the encrypted unmarked content EUC, to obtain the value "0". Here, the combination is a XOR function. In the locations where the marking metadata contains the value 0, the encrypted content is not modified.

This results in an encrypted content, watermarked according to a user's specific identifier.

When a user receives such an encrypted watermarked content, he/she can decrypt it if he/she has the required elements. These elements are in particular the decryption key(s) and the rights to decrypt the content.

As explained above, a content is first encrypted and then modified by adding a watermark. In order to enable a user to use the content, the user has to decrypt the watermarked content. The encryption method must be chosen in such a way that the decryption of an encrypted watermarked content results in a usable clear watermarked content i.e. the encryption and watermarking operations must be chosen such that the decryption operation maintains the watermark. The stream cipher encryption methods fulfill this requirement. More specifically, if a content is encrypted with a stream cipher method and then watermarked, the decryption of this content with the corresponding keys will result in a watermarked clear content.

Once decrypted, the result of the decryption can be used, and in particular, if the content is an audio video file, it can be visualized on a suitable rendering device.

If a user decrypts a content and makes this contain available, for example on a file exchange platform, the method described enables retrieving the watermark and consequently the user identifier. This can be done by a management center or a center in charge of security, which has the non-watermarked clear content or in other words, the original content. This security center also has to know the marking metadata. It should be noted that this marking metadata is usually unique and different for each content, but is independent from the receivers.

In order to determine the watermark, the security center has to combine the clear watermarked content CWC, i.e. the content distributed on the file exchange platform, and the non watermarked clear content or unmarked clear content UCC in the locations indicated by the marking metadata MM. This combination is the reverse operation of the combination used in the CDN. If a XOR function is used in the CDN, a XOR function will also be used in the security center.

This operation is illustrated by Fig. 5. The first line of Fig. 5 illustrates the marking metadata MM. This marking metadata depends on the content and is known to the security center. The second line of Fig. 5 illustrates the clear unmarked content CUC. This content is also known to the security center. The third line of Fig. 5 corresponds to the clear watermarked content EWC. This content is the one obtained from the file exchange platform.

Once both watermarked and non watermarked clear content are available, both contents are combined, in the locations indicated by the marking metadata, i.e. in the locations where the marking metadata contains a value of "1 ". The combination is the operation reverse to the operation having been used during the watermarking step. In the example described, the combination is a XOR function. The result of this combination is the watermark. In the example, the value of the watermark obtained by this combination is 1 10101000. The watermark is converted in a user ID according to the table illustrated by Fig. 6. The three third bits of the watermark "1 10" are converted by the table in one digit "4". The next three bits are converted in a "0" by the table and the three last bits are converted in a "5". The ID corresponding to the watermark is thus 405.

In the example illustrated and described, the conversion of the user ID in a watermark is a reversible operation. This means that the watermark can be calculated from the user I D and that the user I D can be calculated from the watermark. The watermark could also be calculated with an irreversible operation such as for example a hash function. The user ID can be hashed to obtain the watermark. When a watermark is retrieved from a content file distributed on a file exchange platform, as the hash function is irreversible, it is not possible to calculate the user ID. However, it is possible to compare the watermark with the hash of all of the registered user IDs.

The watermark can be redundant in the content. Thus, if the watermark is corrupt, it can still be detected and used to retrieve the corresponding user ID. An error correction code can also be contained in the watermark. According to this method, the user ID of a user having made a content available on a file exchange platform can be detected. This could be used for example for implementing countermeasures.

In the description, the unique identifier is mainly described as a user unit identifier. However, such a unique identifier could be linked to a content or a content distribution network.

Although embodiments of the present disclosure have been described with reference to specific example embodiments, it will be evident that various modifications and changes may be made to these embodiments without departing from the broader scope of these embodiments. Accordingly, the specification and drawings are to be regarded in an illustrative rather than a restrictive sense. The accompanying drawings that form a part hereof, show by way of illustration, and not of limitation, specific embodiments in which the subject matter may be practiced. The embodiments illustrated are described in sufficient detail to enable those skilled in the art to practice the teachings disclosed herein. Other embodiments may be utilized and derived there from, such that structural and logical substitutions and changes may be made without departing from the scope of this disclosure. This Detailed Description, therefore, is not to be taken in a limiting sense, and the scope of various embodiments is defined only by the appended claims, along with the full range of equivalents to which such claims are entitled.

Such embod iments of the inventive subject matter may be referred to herein , individually and/or collectively, by the term "invention" merely for convenience and without intending to voluntarily limit the scope of this application to any single inventive concept if more than one is in fact disclosed. Thus, although specific embodiments have been illustrated and described herein, it should be appreciated that any arrangement calculated to achieve the same purpose may be substituted for the specific embodiments shown. This disclosure is intended to cover any and all adaptations or variations of various embodiments. Combinations of the above embodiments, and other embodiments not specifically described herein, will be apparent to those of skill in the art upon reviewing the above description.

Claims

Claims
1 . Method for watermarking an encrypted digital content by a content distribution network, said method comprising the steps of :
- receiving in the content distribution network, a non watermarked encrypted content and marking metadata, said encrypted content being the result of an encryption of a non watermarked clear content by a stream cipher process, said marking metadata indicating locations in the content suitable for a modification of said content;
- using a watermark formed of watermark values and corresponding to a unique identifier;
- producing a watermarked encrypted content by combining in the content distribution network, with a combination function, the values forming the watermark with the non watermarked encrypted content in locations indicated by the marking metadata.
2. Method for watermarking an encrypted content according to claim 1 , characterized in that the non watermarked clear content corresponding to said non watermarked encrypted content is encrypted by a process known under the name AES-CTR.
3. Method for watermarking an encrypted content according to claim 1 , characterized in that the combination between the values forming the watermark and the non watermarked encrypted content uses a logical function XOR.
4. Method for watermarking an encrypted content according to claim 1 , characterized in that said marking metadata indicates locations in the non watermarked encrypted content, in which a watermark can be introduced, the locations indicated by the marking metadata being locations in which the modification of a value of the encrypted content does not produce a visible effect during the rendering of the clear corresponding content.
5. Method for watermarking an encrypted content according to claim 1 , characterized in that the watermark contains error correction code.
6. Method for watermarking an encrypted content according to claim 1 , characterized in that the unique identifier is redundant in the watermark.
7. Method for watermarking an encrypted content according to claim 1 , characterized in that the unique identifier is a unique identifier of a user unit requesting said encrypted digital content.
8. Method for watermarking an encrypted content according to claim 1 , characterized in that the unique identifier is a unique identifier of a content.
9. Method for watermarking an encrypted content according to claim 1 , characterized in that the unique identifier is a unique identifier of a content distribution network.
10. Method for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the method of claim 1 , said method for retrieving the unique identifier comprising the steps of :
- combining the watermarked clear content with the non watermarked clear content in the locations ind icated by the marking metadata, in order to obtain the watermark;
- applying an operation on the watermark to obtain the unique identifier, said operation being a reverse of the operation allowing for the watermark to be obtained from the unique identifier.
1 1 . Method according to claim 10, characterized in that the combination of the watermarked clear content with the non watermarked clear content uses a logical function XOR.
12. Method according to claim 10, characterized in that, prior to performing the step of applying an operation on the watermark to obtain the unique identifier, an error correction code is performed.
13. Content distribution network adapted to :
- receive a non watermarked encrypted content and marking metadata, said non watermarked encrypted content being the result of an encryption of a non watermarked clear content by a stream cipher process, said marking metadata indicating locations in the content suitable for a modification of said content;
- use a watermark formed of watermark values and corresponding to a unique identifier;
- produce a watermarked encrypted content by combining, with a combination function, the values forming the watermark with the non watermarked encrypted content in locations indicated by the marking metadata.
14. Content distribution network according to claim 13, characterized in that the combination of the values forming the watermark with the encrypted content in locations indicated by the marking metadata uses a logical function XOR
15. Device for retrieving a unique identifier from a watermarked clear content, said watermarked clear content being the result of a decryption of an encrypted content watermarked according to the method of claim 1 , said retrieving device being adapted to :
- receive a watermarked clear content;
- receive a corresponding non watermarked clear content;
- receive marking metadata corresponding to said watermarked clear content;
- combine the watermarked clear content with the non watermarked clear content in the locations ind icated by the marking metadata, in order to obtain the watermark;
- apply an operation on the watermark to obtain the unique identifier, said operation being the reverse of the operation allowing for the watermark to be obtained from the unique identifier.
PCT/EP2016/077306 2015-11-12 2016-11-10 Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network WO2017081177A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP15194311 2015-11-12
EP15194311.5 2015-11-12

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
EP16794336.4A EP3375199A1 (en) 2015-11-12 2016-11-10 Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network
MX2018005924A MX2018005924A (en) 2015-11-12 2016-11-10 Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network.
KR1020187013500A KR20180082450A (en) 2015-11-12 2016-11-10 Method and apparatus for watermarking encrypted digital content, method and apparatus for retrieving a unique identifier from watermarked content,
BR112018009757A BR112018009757A2 (en) 2015-11-12 2016-11-10 method for inserting watermark? water encrypted digital content, method and apparatus for recovering a unique content identifier with watermark? and water content distribution network
SG11201803647UA SG11201803647UA (en) 2015-11-12 2016-11-10 Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network
US15/774,671 US20180332323A1 (en) 2015-11-12 2016-11-10 Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network

Publications (1)

Publication Number Publication Date
WO2017081177A1 true WO2017081177A1 (en) 2017-05-18

Family

ID=54608294

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2016/077306 WO2017081177A1 (en) 2015-11-12 2016-11-10 Method for watermarking encrypted digital content, method and device for retrieving a unique identifier from watermarked content and content distribution network

Country Status (7)

Country Link
US (1) US20180332323A1 (en)
EP (1) EP3375199A1 (en)
KR (1) KR20180082450A (en)
BR (1) BR112018009757A2 (en)
MX (1) MX2018005924A (en)
SG (1) SG11201803647UA (en)
WO (1) WO2017081177A1 (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001098903A1 (en) * 2000-06-16 2001-12-27 Entriq Limited BVI Abbot Building Methods and systems to distribute content via a network utilizing distributed conditional access agents and secure agents, and to perform digital rights management (drm)
US20070110237A1 (en) * 2005-07-07 2007-05-17 Verance Corporation Watermarking in an encrypted domain
EP2605536A1 (en) * 2011-12-13 2013-06-19 Thomson Licensing Device for generating watermark metadata, associated device for embedding watermark
EP2797335A1 (en) * 2013-04-26 2014-10-29 Nagravision S.A. Method to watermark a compressed content encrypted by at least one content key
EP2797333A1 (en) * 2013-04-26 2014-10-29 Nagravision S.A. Method for watermarking media content and system for implementing this method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001098903A1 (en) * 2000-06-16 2001-12-27 Entriq Limited BVI Abbot Building Methods and systems to distribute content via a network utilizing distributed conditional access agents and secure agents, and to perform digital rights management (drm)
US20070110237A1 (en) * 2005-07-07 2007-05-17 Verance Corporation Watermarking in an encrypted domain
EP2605536A1 (en) * 2011-12-13 2013-06-19 Thomson Licensing Device for generating watermark metadata, associated device for embedding watermark
EP2797335A1 (en) * 2013-04-26 2014-10-29 Nagravision S.A. Method to watermark a compressed content encrypted by at least one content key
EP2797333A1 (en) * 2013-04-26 2014-10-29 Nagravision S.A. Method for watermarking media content and system for implementing this method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
None

Also Published As

Publication number Publication date
SG11201803647UA (en) 2018-05-30
BR112018009757A2 (en) 2018-11-06
EP3375199A1 (en) 2018-09-19
US20180332323A1 (en) 2018-11-15
KR20180082450A (en) 2018-07-18
MX2018005924A (en) 2018-08-24

Similar Documents

Publication Publication Date Title
US7940928B2 (en) Systems and methods for protecting data secrecy and integrity
KR100843346B1 (en) Integrity protection of streamed content
US5995623A (en) Information processing apparatus with a software protecting function
Schaad et al. Advanced Encryption Standard (AES) key wrap algorithm
JP5646612B2 (en) White box cryptography system using configurable key using an intermediate data changes
US8806193B2 (en) Methods and apparatus for integrating digital rights management (DRM) systems with native HTTP live streaming
US6490353B1 (en) Data encrypting and decrypting apparatus and method
US7055039B2 (en) Protection of digital content using block cipher crytography
US8694467B2 (en) Random number based data integrity verification method and system for distributed cloud storage
US20030084308A1 (en) Memory encryption
US20130188823A1 (en) Utilizing data reduction in steganographic and cryptographic systems
US7555656B2 (en) Exclusive encryption
CA2767368C (en) Method and system for unified mobile content protection
US20020150239A1 (en) Method for personalized encryption in an un-trusted environment
Marwaha et al. Visual cryptographic steganography in images
CN101243431B (en) Protecting digital media of various content types
US8130963B2 (en) Method and apparatus for secure key delivery for decrypting bulk digital content files at an unsecure site
US20100205446A1 (en) Multi-level file digests
US7493499B1 (en) Method and apparatus for secure delivery and rights management of digital content
US9313248B2 (en) Method and apparatus for delivering encoded content
US20030056118A1 (en) Method for encryption in an un-trusted environment
Song et al. The aes-cmac algorithm
JP2001242786A (en) Device and method for distribution, and recording medium
CA2699042C (en) Cryptographic processing of content
US7730320B2 (en) Method for generating data for detection of tampering, and method and apparatus for detection of tampering

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16794336

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 11201803647U

Country of ref document: SG

WWE Wipo information: entry into national phase

Ref document number: 15774671

Country of ref document: US

ENP Entry into the national phase in:

Ref document number: 20187013500

Country of ref document: KR

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: MX/A/2018/005924

Country of ref document: MX

NENP Non-entry into the national phase in:

Ref country code: DE

REG Reference to national code

Ref country code: BR

Ref legal event code: B01A

Ref document number: 112018009757

Country of ref document: BR

WWE Wipo information: entry into national phase

Ref document number: 2016794336

Country of ref document: EP

ENP Entry into the national phase in:

Ref document number: 112018009757

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20180514