CN101739518B - Method and system for locally starting digital rights management engine - Google Patents
Method and system for locally starting digital rights management engine Download PDFInfo
- Publication number
- CN101739518B CN101739518B CN2008101786355A CN200810178635A CN101739518B CN 101739518 B CN101739518 B CN 101739518B CN 2008101786355 A CN2008101786355 A CN 2008101786355A CN 200810178635 A CN200810178635 A CN 200810178635A CN 101739518 B CN101739518 B CN 101739518B
- Authority
- CN
- China
- Prior art keywords
- digital content
- file
- content file
- rights management
- digital
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a method for locally starting a digital rights management engine, which comprises the following steps: connecting a rights object to a digital content file in a first file format and converting the file into a digital content file in a second file format; encrypting the digital content file in the second file format and generating corresponding decryption keys; arranging an application program in a storage device and arranging the storage device in an electronic device; and performing verification on the application program according to an authentication code of the digital content file, decrypting the encrypted digital content file through the application program and by using the decryption keys, and starting the digital rights management engine of the electronic device. An internal code of the electronic device is connected with the digital content file and the rights object through the digital rights management engine, so that the digital content file can be only accessed and used by the electronic device.
Description
Technical field
The invention relates to data encryption and deciphering, and be particularly to a kind of locally starting digital rights management (Digital Rights Management, DRM) method and system of engine.
Background technology
Digital content can be transmitted or off-line (Off-Line) transmission via online (On-Line).Online transmission is via like the Internet digital content; The off-line transmission be via the specific storage medium (for example, CD, digital video video disc (Digital Video Disk, DVD) or portable electronic devices (for example; Mobile phone) flash memory device of building in (for example; Secure digital (Secure Digital, SD) storage card or universal serial bus (Universal Serial Bus, the USB)) disk) digital content of pre-recording.
Off-line transmits content intercepting system (the Content Scramble System of DVD capable of using; CSS) but and the content protecting of recording medium (Content Protection for Recordable Media; CPRM) or the content protecting of the medium of pre-recording of SD storage card and DVD-RW (Content Protection for Pre-Recorded Media CPPM) protects.
The use of general digital content need be passed through the processing of digital right management system, can guarantee that just the digital content of this loading can be by illegal use or piracy.
Fig. 1 is the method step process flow diagram that shows that the conventional digital rights management engine is handled.
Be stored in (step S11) on the file server on the network through pretreated digital content file.After the consumer obtains mandate, be downloaded and be stored in (for example, personal computer or mobile phone) (step S12) in the electronic installation through pretreated digital content file, and start the digital rights management engine (step S13) on this electronic installation simultaneously.ISN (the International Mobile Electron Identification that this pretreated digital content file and this electronic installation are held; IMEI) and right object combine (step S14), convert this pretreated digital content file to can only on this electronic installation, use file (step S15) to utilize digital rights management engine.
Said method comprises that (Open Mobile Alliance, DRM OMA) handles Open Mobile Alliance, the Windows Media DRM 10 (WMDRM-ND) of network equipment handles and the FairPlay of Apple System
TMHandle.Be treated to example with OMA DRM, the file layout of original digital content file is the audio/video file of .3gp .mp3 and so on.OMA DRM can carry out pre-service earlier, waits for downloads the .3gp file conversion become .dm (DRM Material) file, then the .dm file to be stored on the file server.When the consumer surf the Net buy this digital content file and obtain right object (Rights Object) (i.e. this digital content file) after, the .dm file on this server can be downloaded on consumer's the electronic installation.The digital rights management engine of this electronic installation can be connected (Bind) with right object and ISN thereof with digital content, and the .dm file conversion is become .dcf (DRM Content Format) file.After this handled, the digital content file of .dcf file can only use in the mode that this specific electronic devices is given according to right object.
Yet the defective of said method is only to be applicable to online transmission, and its digital rights management mode possibly violate the consumer for the traditional use-pattern of content and right (Traditional Rights and Usage, TRU).
Fig. 2 is the method step process flow diagram that shows that another conventional digital rights management engine is handled.
Be stored in the built-in storage (Embedded Memory) of electronic installation, through pretreated digital content file to encrypt pretreated digital content file (step S21).The right object of digital content file can be downloaded (step S22) via network (for example, the Internet), and is stored in (step S23) in this electronic installation, starts the digital rights management engine (step S24) of this electronic installation simultaneously.This digital rights management engine is earlier to pretreated digital content file deciphering (step S25), the ISN and the right object of electronic installation is connected to digital content file (step S26), and converts digital content file into new file layout (step S27).
Therefore, this digital content file can only use at this specific electronic installation.For instance, the file layout of the Windows Media DRM (WMDRM-PD) of portable apparatus is .asf (Advanced System Format).Said method is applicable to portable electronic devices, and right object needs to transmit separately, though security improves a little, does not still still break away from the dependence to network.
Fig. 3 is the method step process flow diagram that shows that another conventional digital rights management engine is handled.
The unfavorable digital rights management engine of supporting with electronic installation, and the own digital rights management mechanism (step S31) of otherwise designed.Digital content file is carried out pre-treatment and converts into can be by the digital rights management engine of design voluntarily or the file layout (step S32) of system handles.Therefore, this digital content file only can the involved digital rights management engine that this designs voluntarily or the electronic installation access (step S33) of system.Said method faces following several problem: 1) this program is write gigantic project; 2) this program possibly take huge storage space; 3) digital rights management mechanism bottom common and operating system platform is closely bound up, has compatible problem easily; And 4) owing to be to write voluntarily, relatively lack the industry use experience, difficult acquisition content dealer trusts.
Summary of the invention
The object of the present invention is to provide a kind of method and system of locally starting digital rights management engine.
Based on above-mentioned purpose; The embodiment of the invention has disclosed a kind of method of locally starting digital rights management engine; It is applied to electronic installation, comprises the following steps: to carry out the pre-treatment operation, and its digital content file with the right object and first file layout links together; The digital content file of this first file layout is converted into only can be by the digital content file of second file layout of a digital rights management engine identification of this electronic installation; The digital content file of encrypting this second file layout converts the digital content file of the 3rd file layout into the digital content file with this second file layout, produces homographic solution key spoon simultaneously; This encrypted digital content file and this deciphering key are stored in the storage area separately of storage arrangement; Be designed for the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control; This application program is installed in this storage arrangement; This storage arrangement is installed to this electronic installation; Authentication code according to this digital content file is verified this application program; After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the digital content file of this second file layout from the digital content file of the 3rd file layout; Digital rights management engine through this this electronic installation of application program locally starting; And the digital content file that through this digital rights management engine this digital content file of this second file layout is converted into the 4th file layout; ISN with this electronic installation is connected with this digital content file of the 4th file layout then, makes this digital content file of the 4th file layout only can be used by this electronic installation access.
The embodiment of the invention has also disclosed a kind of system of locally starting digital rights management engine, comprising: carry out the pre-treatment operation, the device that it links together the digital content file of the right object and first file layout; The digital content file of this first file layout is converted into only can be by the device of the digital content file of second file layout of a digital rights management engine identification of this electronic installation; The digital content file of encrypting this second file layout converts the digital content file of the 3rd file layout into the digital content file with this second file layout, produces the device of homographic solution key spoon simultaneously; This encrypted digital content file and this deciphering key are stored in the device in the storage area separately of storage arrangement; Be designed for the device of the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control; This application program is installed in the device of this storage arrangement; Device in this storage arrangement to this electronic installation is installed; The device of this application program being verified according to the authentication code of this digital content file; After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the device of the digital content file of this second file layout from the digital content file of the 3rd file layout; The device of the digital rights management engine through this this electronic installation of application program locally starting; And the digital content file that through this digital rights management engine this digital content file of this second file layout is converted into the 4th file layout; ISN with this electronic installation is connected with this digital content file of the 4th file layout then, makes that this digital content file of the 4th file layout only can be by the device of this electronic installation access use.
The embodiment of the invention has also disclosed a kind of method of locally starting digital rights management engine; It is applied to electronic installation; Comprise the following steps: to carry out the pre-treatment operation; The digital content file of first file layout is converted into only can be by the digital content file of second file layout of a digital rights management engine identification of this electronic installation, and wherein the digital content file of the right object and first file layout is a separate storage; Encrypt the digital content file of this second file layout, convert the digital content file of the 3rd file layout into, produce homographic solution key spoon simultaneously with digital content file with this second file layout; This encrypted digital content file and this deciphering key are stored in the storage area separately of storage arrangement; Be designed for the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control; This application program is installed in this storage arrangement; This storage arrangement is installed to this electronic installation; Authentication code according to this digital content file is verified this application program; After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the digital content file of this second file layout from the digital content file of the 3rd file layout; Digital rights management engine through this this electronic installation of application program locally starting; And be connected with the right object of this digital content and the ISN of this electronic installation through the digital content file of this digital rights management engine with this second file layout, make this digital content file only can be used by this electronic installation access.
The embodiment of the invention has also disclosed a kind of system of locally starting digital rights management engine; Comprise: carry out the pre-treatment operation; The digital content file of first file layout is converted into only can be by the device of the digital content file of second file layout of a digital rights management engine identification of this electronic installation, and wherein the digital content file of the right object and first file layout is a separate storage; Encrypt the digital content file of this second file layout, convert the digital content file of the 3rd file layout into, produce the device of homographic solution key spoon simultaneously with digital content file with this second file layout; This encrypted digital content file and this deciphering key are stored in the device in the storage area separately of storage arrangement; Be designed for the device of the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control; This application program is installed in the device of this storage arrangement; Device in this storage arrangement to this electronic installation is installed; The device of this application program being verified according to the authentication code of this digital content file; After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the device of the digital content file of this second file layout from the digital content file of the 3rd file layout; The device of the digital rights management engine through this this electronic installation of application program locally starting; And be connected with the right object of this digital content and the ISN of this electronic installation through the digital content file of this digital rights management engine with this second file layout, make the device that this digital content file only can be used by this electronic installation access.
Description of drawings
Fig. 1 is the method step process flow diagram that shows that the conventional digital rights management engine is handled.
Fig. 2 is the method step process flow diagram that shows that another conventional digital rights management engine is handled.
Fig. 3 is the method step process flow diagram that shows that another conventional digital rights management engine is handled.
Fig. 4 is the method step process flow diagram that shows the locally starting digital rights management engine of the embodiment of the invention.
Fig. 5 is the system architecture synoptic diagram that shows the locally starting digital rights management engine of the embodiment of the invention.
Fig. 6 is the method step process flow diagram that shows the locally starting digital rights management engine of another embodiment of the present invention.
Fig. 7 is the system architecture synoptic diagram that shows the locally starting digital rights management engine of another embodiment of the present invention.
[main element label declaration]
500,700~storage arrangement
550,750~memory location
551,751~digital content file
552,752~authentication code
553,753~deciphering key
555,755~application program
757~right object
600,800~electronic installation
610,810~digital rights management engine
S11..S 15~process step
S21..S27~process step
S31..S 33~process step
S401..S413~process step
S601..S611~process step
Embodiment
For let the object of the invention, characteristic, and advantage can be more obviously understandable, hereinafter is special lifts preferred embodiment, and cooperates appended graphic Fig. 4 to Fig. 7, does detailed explanation.Instructions of the present invention provides various embodiment that the technical characterictic of the different embodiments of the present invention is described.Wherein, the configuration of each element among the embodiment is the usefulness for explanation, is not in order to restriction the present invention.And the part of reference numerals repeats among the embodiment, is for the purpose of simplifying the description, is not the relevance that means between the different embodiment.
The embodiment of the invention has disclosed a kind of method and system of locally starting digital rights management engine.
The method and system of the locally starting digital rights management engine of the embodiment of the invention (for example is applicable to the Portable flash memory device; Secure digital (Secure Digital; SD) storage card, universal serial bus (Universal Serial Bus; USB)) embedded flash memory device disk) or in the electronic installation is different from the digital rights management mechanism of network system in order to generation.This digital rights management mechanism utilizes the digital rights management engine of electronic installation to overcome the compatibility issue between the operating system of digital rights management engine and this electronic installation.
Fig. 4 is the method step process flow diagram that shows the locally starting digital rights management engine of the embodiment of the invention.
Execution pre-treatment operation wherein links together right object and digital content file (step S401), and this digital content file also has exclusive authentication code for checking.With first file layout (for example; The .3gp file of OMA) digital content file (for example converts second file layout into; The .dm file of OMA DRM 1.0) digital content file (step S402), it only can be by the digital rights management engine identification of specific electronic devices.For instance, the content parcel program (the for example DRM Packager of SONY-Ericsson) with OMA 1.0 becomes the .dm file with the original digital content file conversion earlier, and this moment, right object was wrapped in together with content.Because the digital rights management engine of OMA need just can be activated through the program that network transmits, this .dm file can not be used by general electronic installation.
Yet for known this technological process person, this .dm file can be copied into file server, and then after network download, can be used, so the protection of another layer must be arranged.Therefore; If download from file server, then encrypt the digital content file of this second file layout, it utilizes encryption mechanism (for example; Advanced encryption system (Advanced Encryption System; AES), 3 data encryption systems (3Data Encryption System, 3DES), Pisces (Twofish) ... or the like) encrypt the digital content file of this second file layout, the digital content file that wherein converts the digital content file of this second file layout into the 3rd file layout is (for example; .aes file), produce homographic solution key spoon (step S403) simultaneously.
This encrypted digital content file and this deciphering key are stored in respectively in the memory location separately (for example digital content file is stored in open district, will deciphers key and be stored in the hidden area) of storage arrangement (for example, the SD storage card) (step S404).This deciphering key also can disperse to be stored in this storage arrangement or be compiled in the application program of machine language and can't be by identification to strengthen protection.(for example, C++) design application is operated (step S405) to carry out checking, file decryption, digital rights management engine startup and security control etc., and this application program is installed on (step S406) on this storage arrangement to utilize program language.When this storage arrangement is mounted in this electronic installation (step S407), this application program is verified (step S408) according to the authentication code of this digital content file.Authentication code can be the exclusive sequence number of this digital content file or the unique serial number of this storage arrangement.
After successfully verifying; This application program utilization should be deciphered this encrypted digital content file by the deciphering key; Wherein be reduced to the digital content file (step S409) of this second file layout (.dm) from the digital content file of the 3rd file layout (.aes), and the digital rights management engine of this electronic installation of locally starting (step S410).This digital rights management engine converts the digital content file of second file layout (.dm) into the digital content file (step S411) of the 4th file layout (.dcf); And the ISN (IMEI) of this electronic installation is connected (right object and digital content file program in front link together) (step S412) in advance with this digital content file, makes this digital content file only can be used (step S413) by this electronic installation access.
Note, when storage arrangement removes, perhaps before the digital rights management engine of this electronic installation starts, close this electronic installation in electronic installation, this application program is carried out security control with deletion encrypted digital content file.
Fig. 5 is the system architecture synoptic diagram that shows the locally starting digital rights management engine of the embodiment of the invention.
This system comprises storage arrangement 500 and electronic installation 600.Electronic installation one digital rights management engine 630.Storage arrangement 500 (for example provides memory location 550; Hidden area and open district) with authentication code 552, the deciphering key 553 and application program 555 of store digital content file 551, digital content file 551, wherein the sharp 551 usefulness encryption methods of digital content file are encrypted with deciphering key 553.If utilize AES to come digital for processing digital content file 551, then the form of digital content file 551 is .aes.
Utilize program language (for example, C++) design application 555 with carry out checking, file decryption, digital rights management engine starts and operations such as security control.When storage arrangement 500 was mounted to electronic installation 600, application program 555 was authorized according to the authentication code 552 of digital content file 551.Authentication code 552 can be the exclusive sequence number of digital content file 551 or the unique serial number of this storage arrangement.
After successfully verifying; Application program 555 is utilized deciphering key 553 these encrypted digital content files 551 of deciphering; Wherein be reduced to the digital content file 551 of this second file layout (.dm) from the digital content file 551 of the 3rd file layout (.aes), and the digital rights management engine 610 of locally starting electronic installation 600.Digital rights management engine 610 converts the digital content file 551 of second file layout (.dm) into the digital content file 551 of this first file layout (.dcf); And the ISN (IMEI) of electronic installation is connected (right object and digital content file 551 program in front link together) in advance with this digital content file 551, makes this digital content file 551 only can be used by electronic installation 600 accesses.
Second embodiment of the invention has disclosed a kind of other example of method and system of locally starting digital rights management engine.
The method and system of the locally starting digital rights management engine of the embodiment of the invention (for example is applicable to the Portable flash memory device; Secure digital (Secure Digital; SD) storage card, universal serial bus (Universal Serial Bus; USB)) embedded flash memory device disk) or in the electronic installation is different from the digital rights management mechanism of network system in order to generation.This digital rights management mechanism utilizes the digital rights management engine of electronic installation to overcome the compatibility issue between the operating system of digital rights management engine and this electronic installation.
Fig. 6 is the method step process flow diagram that shows the locally starting digital rights management engine of another embodiment of the present invention.
Execution pre-treatment operation; With first file layout (for example; The .3gp file of OMA) digital content file (for example converts second file layout into; The .dcf of OMA DRM 1.0) digital content file (step 601), it only can be by the digital rights management engine identification of specific electronic devices, and needs to combine its corresponding right object just can be used.For instance; Content parcel program (the for example DRM Packager of SONY-Ericsson) with OMA 1.0 becomes .dcf with the original digital content file conversion earlier; This moment, its corresponding right object also produced in addition simultaneously, but not therewith the digital content file of second file layout be connected.
Note that the .dcf file in the present embodiment is different with the .dcf file among Fig. 4, it does not use right object when encrypting.
This file is own through encryption, the misgivings of illegally not licensed basically.But for strengthening its protection mechanism; In this enforcement; Utilize encryption mechanism (for example, advanced encryption system (Advanced Encryption System, AES), 3 data encryption systems (3Data Encryption System; 3DES), Twofish (Pisces) ... or the like) encrypt the digital content file of this second file layout; Wherein the digital content file of this second file layout is converted into the digital content file (for example, the .aes file) of the 3rd file layout, produce homographic solution key spoon (step 602) simultaneously.
This encrypted digital content file and this deciphering key are stored in the memory location separately (for example digital content file is stored in open district, will deciphers key and be stored in the hidden area) of storage arrangement (for example, the SD storage card) (step 603).This deciphering key also can disperse to be stored in this storage arrangement or be compiled in the application program of machine language and can't be by identification to strengthen protection.(for example, C++) design application is operated (step 604) to carry out checking, file decryption, digital rights management engine startup and security control etc., and this application program is installed on this storage arrangement (step 605) to utilize program language.When this storage arrangement is mounted in this electronic installation (step 606), this application program is verified (step 607) according to the authentication code of this digital content file.Authentication code can be the exclusive sequence number of this digital content file or the unique serial number of this storage arrangement.
After successfully verifying; This application program utilization should be deciphered this encrypted digital content file by the deciphering key; Wherein be reduced to the digital content file (step S608) of this second file layout (.dcf) from the digital content file of the 3rd file layout (.aes), and the digital rights management engine of this electronic installation of locally starting (step S609).This digital rights management engine combines the digital content file of second file layout (.dcf) with the ISN (IMEI) of right object and this electronic installation; Become the digital content file (step 610) of the 4th file layout (.dcf) of the same name, make this digital content file only can be used (step 611) by this electronic installation access.
Note, when storage arrangement removes, perhaps before the digital rights management engine of this electronic installation starts, close this electronic installation in electronic installation, this application program is carried out security control with deletion encrypted digital content file.
Fig. 7 is the system architecture synoptic diagram that shows the locally starting digital rights management engine of another embodiment of the present invention.
This system comprises storage arrangement 700 and electronic installation 800.Electronic installation 800 provides digital rights management engine 810.Storage arrangement 700 (for example provides memory location 750; Hidden area and open district) with authentication code 752, deciphering key 753, application program 755, the right object 757 of store digital content file 751, digital content file 751, wherein digital content file 751 utilizes encryption method and deciphering key 753 to encrypt.If utilize AES to come digital for processing digital content file 751, then the form of digital content file 751 is .aes.
Utilize program language (for example, C++) design application 755 with carry out checking, file decryption, digital rights management engine starts and operations such as security control.When storage arrangement 700 was mounted to electronic installation 800, application program 755 was verified according to the authentication code 752 of digital content file 751.Authentication code 752 can be the exclusive sequence number of digital content file 751 or the unique serial number of storage arrangement 700.
After successfully verifying; Application program 755 is utilized and should be deciphered this encrypted digital content file 751 by the deciphering key; Wherein be reduced to the digital content file 751 of this second file layout (.dcf) from the digital content file 751 of the 3rd file layout (.aes), and the digital rights management engine 810 of locally starting electronic installation 800.Digital rights management engine 810 combines the digital content file 751 of second file layout (.dcf) with the ISN (IMEI) of right object 757 and electronic installation 800; Become the digital content file 751 of the 4th file layout (.dcf) of the same name, make this digital content file 751 only can be used by electronic installation 800 accesses.
The method and system of the locally starting digital rights management engine of the embodiment of the invention is applicable to the off-line transmission of portable electronic devices or Portable flash memory devices, and it sets up an off-line transmission that can be independent of digital content file and corresponding digital rights management outside the network system.In addition, the present invention also provides the application program of design voluntarily, to start the digital rights management engine of specific electronic devices, can overcome the operating system of specific electronic devices and the compatibility issue between digital rights management engine.
Method of the present invention, or specific kenel or its part can exist with the kenel of procedure code.Procedure code can be contained in tangible media; Like floppy disk, discs, hard disk or any other machine-readable (like embodied on computer readable) Storage Media, wherein, when procedure code by machine; During like computer loads and execution, this machine becomes in order to participate in device of the present invention.Procedure code also can pass through some transfer mediums, transmit like electric wire or cable, optical fiber or any transmission kenel, wherein, when procedure code by machine, when receiving, loading and carrying out like computing machine, this machine becomes in order to participate in device of the present invention.When the general service processing unit is done in fact, procedure code combines processing unit to provide a class of operation to be similar to the unique apparatus of using particular logic circuit.
Though the present invention discloses as above with preferred embodiment; Right its is not in order to limit the present invention; Any those skilled in the art; Do not breaking away from the spirit and scope of the present invention, when can doing various changes and retouching, so protection scope of the present invention is as the criterion when looking appended the claim scope person of defining.
Claims (8)
1. the method for a locally starting digital rights management engine, it is applied to electronic installation, comprises the following steps:
Execution pre-treatment operation, its digital content file with the right object and first file layout links together;
The digital content file of this first file layout is converted into only can be by the digital content file of second file layout of a digital rights management engine identification of this electronic installation;
The digital content file of encrypting this second file layout converts the digital content file of the 3rd file layout into the digital content file with this second file layout, produces homographic solution key spoon simultaneously;
This encrypted digital content file and this deciphering key are stored in the storage area separately of storage arrangement;
Be designed for the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control;
This application program is installed in this storage arrangement;
This storage arrangement is installed to this electronic installation;
Authentication code according to this digital content file is verified this application program;
After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the digital content file of this second file layout from the digital content file of the 3rd file layout;
Digital rights management engine through this this electronic installation of application program locally starting; And
This digital content file of this second file layout is converted into the digital content file of the 4th file layout through this digital rights management engine; ISN with this electronic installation is connected with this digital content file of the 4th file layout then, makes this digital content file of the 4th file layout only can be used by this electronic installation access.
2. the method for locally starting digital rights management engine according to claim 1, wherein, the step of encrypting this digital content file also comprises the digital content file that the digital content file of this second file layout is converted into the 3rd file layout.
3. the method for locally starting digital rights management engine according to claim 1 wherein, substitutes above-mentioned will decipher in the storage area separately that key is stored in storage arrangement and should decipher the key dispersion and be stored in this storage arrangement.
4. the method for locally starting digital rights management engine according to claim 1, wherein, this authentication code can be the exclusive sequence number of this digital content file or the unique serial number of this storage arrangement.
5. the system of a locally starting digital rights management engine comprises:
Execution pre-treatment operation, the device that it links together the digital content file of the right object and first file layout;
The digital content file of this first file layout is converted into only can be by the device of the digital content file of second file layout of a digital rights management engine identification of this electronic installation;
The digital content file of encrypting this second file layout converts the digital content file of the 3rd file layout into the digital content file with this second file layout, produces the device of homographic solution key spoon simultaneously;
This encrypted digital content file and this deciphering key are stored in the device in the storage area separately of storage arrangement;
Be designed for the device of the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control;
This application program is installed in the device of this storage arrangement;
Device in this storage arrangement to this electronic installation is installed;
The device of this application program being verified according to the authentication code of this digital content file;
After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the device of the digital content file of this second file layout from the digital content file of the 3rd file layout;
The device of the digital rights management engine through this this electronic installation of application program locally starting; And
This digital content file of this second file layout is converted into the digital content file of the 4th file layout through this digital rights management engine; ISN with this electronic installation is connected with this digital content file of the 4th file layout then, makes that this digital content file of the 4th file layout only can be by the device of this electronic installation access use.
6. the system of locally starting digital rights management engine according to claim 5, wherein, this deciphering key is to disperse to be stored in this storage arrangement.
7. the method for a locally starting digital rights management engine, it is applied to electronic installation, comprises the following steps:
Execution pre-treatment operation; The digital content file of first file layout is converted into only can be by the digital content file of second file layout of a digital rights management engine identification of this electronic installation, and wherein the digital content file of the right object and first file layout is a separate storage;
Encrypt the digital content file of this second file layout, convert the digital content file of the 3rd file layout into, produce homographic solution key spoon simultaneously with digital content file with this second file layout;
This encrypted digital content file and this deciphering key are stored in the storage area separately of storage arrangement;
Be designed for the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control;
This application program is installed in this storage arrangement;
This storage arrangement is installed to this electronic installation;
Authentication code according to this digital content file is verified this application program;
After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the digital content file of this second file layout from the digital content file of the 3rd file layout;
Digital rights management engine through this this electronic installation of application program locally starting; And
Be connected with the right object of this digital content and the ISN of this electronic installation through the digital content file of this digital rights management engine, make this digital content file only can be used by this electronic installation access with this second file layout.
8. the system of a locally starting digital rights management engine comprises:
Execution pre-treatment operation; The digital content file of first file layout is converted into only can be by the device of the digital content file of second file layout of a digital rights management engine identification of this electronic installation, and wherein the digital content file of the right object and first file layout is a separate storage;
Encrypt the digital content file of this second file layout, convert the digital content file of the 3rd file layout into, produce the device of homographic solution key spoon simultaneously with digital content file with this second file layout;
This encrypted digital content file and this deciphering key are stored in the device in the storage area separately of storage arrangement;
Be designed for the device of the application program operating of carrying out checking, file decryption, digital rights management engine startup and security control;
This application program is installed in the device of this storage arrangement;
Device in this storage arrangement to this electronic installation is installed;
The device of this application program being verified according to the authentication code of this digital content file;
After successfully verifying, this application program utilization should be deciphered this encrypted digital content file by the deciphering key, wherein was reduced to the device of the digital content file of this second file layout from the digital content file of the 3rd file layout;
The device of the digital rights management engine through this this electronic installation of application program locally starting; And
Be connected with the right object of this digital content and the ISN of this electronic installation through the digital content file of this digital rights management engine, make that this digital content file only can be by the device of this electronic installation access use this second file layout.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101786355A CN101739518B (en) | 2008-11-21 | 2008-11-21 | Method and system for locally starting digital rights management engine |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101786355A CN101739518B (en) | 2008-11-21 | 2008-11-21 | Method and system for locally starting digital rights management engine |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101739518A CN101739518A (en) | 2010-06-16 |
| CN101739518B true CN101739518B (en) | 2012-07-18 |
Family
ID=42462994
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008101786355A Expired - Fee Related CN101739518B (en) | 2008-11-21 | 2008-11-21 | Method and system for locally starting digital rights management engine |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101739518B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109960947B (en) * | 2019-03-29 | 2020-11-20 | 北京本源数创咨询有限公司 | Revit project file protection method |
| CN118318212A (en) * | 2022-02-14 | 2024-07-09 | 三菱电机株式会社 | Data providing system and data providing method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050228995A1 (en) * | 2004-04-07 | 2005-10-13 | Samsung Electronics Co., Ltd. | Source device and method for controlling output to sink device according to each content |
| JP2005535958A (en) * | 2002-08-08 | 2005-11-24 | エム−システムズ フラッシュ ディスク パイオニアーズ リミテッド | Integrated circuits for digital rights management |
| CN1777851A (en) * | 2002-08-23 | 2006-05-24 | 桑迪士克防护内容解决公司 | Apparatus, system and method for securing digital documents in a digital appliance |
-
2008
- 2008-11-21 CN CN2008101786355A patent/CN101739518B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2005535958A (en) * | 2002-08-08 | 2005-11-24 | エム−システムズ フラッシュ ディスク パイオニアーズ リミテッド | Integrated circuits for digital rights management |
| CN1777851A (en) * | 2002-08-23 | 2006-05-24 | 桑迪士克防护内容解决公司 | Apparatus, system and method for securing digital documents in a digital appliance |
| US20050228995A1 (en) * | 2004-04-07 | 2005-10-13 | Samsung Electronics Co., Ltd. | Source device and method for controlling output to sink device according to each content |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101739518A (en) | 2010-06-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103635911B (en) | For the protection of the memory device of content and main process equipment and method thereof | |
| US20080005033A1 (en) | Secure device licensing | |
| US8112809B2 (en) | Method and system for locally activating a DRM engine | |
| KR101881303B1 (en) | Apparatas and method of protecting for application data in a portable terminal | |
| US10592641B2 (en) | Encryption method for digital data memory card and assembly for performing the same | |
| CN101765845A (en) | System and method for digital content distribution | |
| CN1863038B (en) | Method of implementing control and management of applied program in terminal apparatus | |
| WO2006003778A1 (en) | Content management method, content management program, and electronic device | |
| CN102163153A (en) | User terminal, server and controlling method thereof | |
| US8009831B2 (en) | Method and system for hiding the decryption key in a dispersive way | |
| US20070260551A1 (en) | Media Burning Terminal and System for Providing Digital Content | |
| KR101447194B1 (en) | Apparatus and method for Sharing DRM Agents | |
| CN102819704A (en) | Document copyright protection method for intelligent terminal | |
| Cilardo et al. | Secure distribution infrastructure for hardware digital contents | |
| CN101140610A (en) | Contents decryption method using DRM card | |
| CN103888475A (en) | Method and device for protecting multimedia data | |
| US20110023083A1 (en) | Method and apparatus for digital rights management for use in mobile communication terminal | |
| CN101739518B (en) | Method and system for locally starting digital rights management engine | |
| CN104462872A (en) | Terminal, server and authorization method of digital contents | |
| CN102855419A (en) | Copyright protection method for data files of intelligent terminals | |
| CN1898625A (en) | License information management apparatus and license information management method | |
| TWI375160B (en) | Method and system for locally activating a drm engine | |
| KR100784285B1 (en) | Method of operating digital rights offer management system and digiral rights offer management system of enabling the method | |
| JP2007193477A (en) | Content protection device and program | |
| CN101112040A (en) | Method for protection of a digital rights file |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20120718 Termination date: 20141121 |
|
| EXPY | Termination of patent right or utility model |