CN101131724B - Method for registering rights issuer and domain authority in digital rights management and method for implementing secure content exchange functions using the same - Google Patents
Method for registering rights issuer and domain authority in digital rights management and method for implementing secure content exchange functions using the same Download PDFInfo
- Publication number
- CN101131724B CN101131724B CN2007101821763A CN200710182176A CN101131724B CN 101131724 B CN101131724 B CN 101131724B CN 2007101821763 A CN2007101821763 A CN 2007101821763A CN 200710182176 A CN200710182176 A CN 200710182176A CN 101131724 B CN101131724 B CN 101131724B
- Authority
- CN
- China
- Prior art keywords
- transmit
- user domain
- drm
- calls
- agency
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 79
- 230000006870 function Effects 0.000 title description 19
- 230000004044 response Effects 0.000 claims description 11
- 230000008569 process Effects 0.000 description 19
- 238000007726 management method Methods 0.000 description 17
- 230000007246 mechanism Effects 0.000 description 15
- 238000010586 diagram Methods 0.000 description 13
- 230000005540 biological transmission Effects 0.000 description 7
- 238000013459 approach Methods 0.000 description 5
- 238000012905 input function Methods 0.000 description 4
- 238000012795 verification Methods 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 230000013011 mating Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000010076 replication Effects 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- 238000013475 authorization Methods 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003137 locomotive effect Effects 0.000 description 1
- 238000003032 molecular docking Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Telephonic Communication Services (AREA)
Abstract
A method for registering a Domain Authority (DA) and a Rights Issuer (RI) for Digital Rights Management includes exchanging information between the DA and the RI. The DA and RI are registered by the exchanging of information before executing other protocol, and the method for registering can be incorporated into the following methods for implementing Digital Rights Management (DRM) with Secure Content Exchange features: (1) acquiring user domain Rights Objects (RO) by a DRM agent; (2) using the user domain RO by a 2.0 DRM agent; and (3) using imported user domain RO by a 2.0 DRM agent.
Description
The cross reference of related application
Right of priority and the rights and interests of the korean patent application No.10-2006-0079078 that the application requires to submit on August 21st, 2006, the korean patent application No.10-2006-00080696 that submits on August 24th, 2006, the korean patent application No.10-2006-0082392 that submits on August 29th, 2006 and the korean patent application No.10-2006-0100037 that submitted on October 13rd, 2006, therefore its whole modes are by reference merged, be used for just as whole purposes of here listing fully.
Technical field
The present invention relates to digital copyright management, relate more specifically to in the method for digital copyright management log-on field authority and rights issuer and use it to be used to realize the method for secure content function of exchange.
Background technology
Along with the increase that can send to the user equipment of content of multimedia, the user can have, operates or keep control or the responsibility on a plurality of equipment, for example networked home media center entertainment systems and have a handheld device of network connectivty change degree.Handheld device can comprise mobile phone and portable music player.Network connectivty can comprise that the wireless connectivity that for example passes through mobile phone or the cable broadband that passes through personal computer connect.The user can buy and downloading contents by network connection, for example the program that operates at an equipment of content of multimedia or be used for.
But the user also may wish content of operation or program on the miscellaneous equipment that the user has.Therefore, (mode by reference is incorporated in this with it to require (following it is called " OMA SCE requirement ") according to open type moving alliance (OMA) digital copyright management (DRM) the secure content exchange (SCE) by OMA mobile applications software standardization mechanism suggestion, and it has set up the concept of " user domain "), the user can set up user domain.That user domain can comprise is that the user has, operation, control or the miscellaneous equipment under its responsibility.The user can increase equipment to user domain, and can use equipment in user domain to obtain content available in user domain.In addition, the user can be via network connectivty or via the storer that is applicable at the equipment room transferring content, safety movable media (SRM) for example, the content between the equipment in the sharing users territory.Selectively, for example in the place that content flows out by network connection, the user can share and authorize to pour into content with miscellaneous equipment in user domain.This can pass through to share realization, for example, and the user ID that is associated with mandate.
Thereby user domain refers to the user's group that can share the DRM content.Equipment can comprise any equipment that can share the DRM content in this user domain.The user domain management can comprise such as the management role from increase equipment and removing device the user domain, and the application program of domain policy.
Thereby the content provider can allow the copying and using of content of the equipment room in user's the user domain.In addition, the content provider can limit and/or forbid the devices allocation outside the user domain and use this content.
Can create user domain by the equipment that the user has by operation in the user domain of network connectivty.For example, the user can create user domain to browse the possible domain policy of row by operating equipment.Can develop various domain policies, can be optimal to the user by one of them conduct of user selection.The SCE authorized person can only support the single domain strategy of user domain.Domain policy by the user domain of territory authority (DA) issue can comprise such constraint, as: the frequency that the time-constrain that the maximum quantity of equipment, content are used in the user domain or content are used.
DA can implement domain policy and the domain key (DK) that agency (DEA) provides selection to the territory that is stored in the subscriber equipment.This equipment can create the also user domain of leading subscriber by DEA.
Then the user can increase miscellaneous equipment in user domain.For example, the user can be connected to this equipment with mobile phone, portable music player and home media center, and increases these equipment to user domain.Domain policy by the DA issue can limit the number of devices that can be increased to user domain, and this DEA can prevent that the number of devices that is increased to user domain from exceeding this restriction.
When the user obtains the content with user domain right objects (RO), the user may wish with user domain in equipment or share content with the equipment outside the user domain.Then the user can connect devices to miscellaneous equipment in the user domain and is used for miscellaneous equipment in the user domain and transmits copy and the corresponding RO thereof of content.
The SCE authorized person can authorize rights issuer (RI), its can with content publisher exchanging contents encryption key (CEK), with specify the usage license that copyright consumes and in user domain the copyright of equipment room transmit.The usage license comprises permission broadcast in user domain, copies and/or mobile content.The SCE authorized person also can authorize RI with the usage license of the copyright of the equipment room outside the designated user territory.The usage license comprises device replication and the mobile content that allows outside the user domain.Selectively, the usage license can be forbidden device replication or the mobile content of equipment outside the user domain in the user domain.
The SCE authorized person can allow DEA to implement domain policy and carry out the user domain management according to the domain policy by the DA appointment.The user domain management can comprise the management role as from user domain increase and removing device, and the domain policy application program.
Thus, OMA SCE requires to have introduced the concept of " user domain " so that the user can directly carry out the user domain management, and does not carry out the user domain management by RI.Therefore, OMA SCE requires also to have introduced the concept of DA and DEA, so that can carry out by DA definition and the description of domain policy, and can carry out by DEA the enforcement of domain policy.DA can be the entity that separates with DEA or can be integrated into single entity.
DA can define and describe domain policy and can send this domain policy to DEA.DEA can be from DA acceptance domain strategy, and can be based on the domain policy definition and the managing user domain that receive.Namely, the user domain of DEA generation is also managed by DEA.If DA and DEA are integrated into single entity, then DA can define user domain and can carry out territory management and need not with the DEA docking that separates.
Fig. 1 shows the synoptic diagram that OMA SCE requires.
Be different from traditional OMA DRM V2.0 standard (hereinafter being called " OMA DRM V2.0 "), its mode equally by reference merges and prior to OMA SEC requirement, this OMA SCE requires to comprise:
(1) by the input function of local copyright manager (LRM);
(2) by the user domain function of DA and DEA; And
(3) locomotive function from an equipment to another equipment moving.
Hereinafter input function and user domain function will be described in further detail.
OMA SCE requires to provide can be by the input function of LRM execution.Input function refers to non-OMA DRM data is converted to OMA DRM data.
For example, the equipment of compatible OMA DRM can attempt playing non-OMA DRM data.In this case, non-OMA DRM data should be required conversion or be input as OMA DRM data according to OMA DRM by LRM.Therefore, LRM is input as non-OMA DRM data DRM content format (DCF) and is OMA DRM input RO, and it is called respectively " input DCF " and " input RO ".Support input DCF and the input RO of OMA DRM to be required in the equipment of compatible OMA DRM, to use according to OMA DRM by the DRM agency.
As mentioned above, many equipment that user domain allows to comprise in the user to user territory are carried out the user domain management, and by rights issuer (RI) every equipment are not carried out the user domain management, and this is determined in traditional OMA DRMV2.0 standard.
But the further feature of traditional OMA DRM V2.0 standard and OMA SCE require compatible.For example, OMA DRM V2.0 comprises (4-pass) log-in protocol 4 times.
4 times log-in protocols that Fig. 2 diagram is used according to equipment and the rights issuer (RI) of OMA DRM V2.0.
Because OMA DRM V2.0 uses 4 times log-in protocols, therefore use the RI device registration to obtain RO.4 times log-in protocol is used for equipment and RI and exchanges information and mutually registration between it.If the agreement success, then equipment can occupy the RI environment that comprises RI information, and RI can occupy the information of this equipment.
According to 4 times log-in protocols, equipment at first transmits the device call message that comprises facility information to RI.Device call message can comprise: the mating pin algorithm of protocol version, device id and equipment.
In subordinate phase, RI transmits the RI message related to calls that comprises RI information to equipment.The RI message related to calls comprises: transmit result, dialogue ID, protocol version, RI ID, supporting algorithm and other checking and server info.
Then in the phase III, equipment transmits login request message to use the RI device registration to RI.Login request message comprises verification msg, for example: dialogue ID, message delivery time, certificate and signature and nonce.
In the quadravalence section, the most backward equipment of RI transmits registration reply message.Registration reply message comprises verification msg, for example: facility registration result, dialogue ID, RI certificate/digital signature and online certificate status protocol (OCSP) response, it is sent to RI in response to the OCSP request message that sends to the OCSP transponder from RI under specific contingency, and this will no longer describe in further detail.
Yet OMA SCE request does not comprise the method for registration DA and RI or uses the enforcement of the SCE of this register method.
Summary of the invention
The invention provides the method for registration DA and RI.
Also the provide support method of SCE function of the method for using registration DA and RI of the present invention.
Supplementary features of the present invention will be listed in following explanation, and partly will be apparent from this explanation, perhaps can be by putting into practice acquistion of the present invention.
The invention discloses for registering for the territory authority (DA) of digital copyright management and the method for rights issuer (RI), be included in exchange message between DA and the RI.
The invention also discloses the method for secure content exchange (SCE) function that realize to be used for digital copyright management (DRM), comprising: to territory authority (DA) registration DRM act on behalf of to add user domain, to rights issuer (RI) registration DRM agency, exchange message between DA and the RI with registration DA and RI, from the right objects (RO) of RI request user domain, between RI and DA exchange message to obtain about the information of user domain and to transmit the RO of user domain to the DRM agency.
The invention also discloses the method for secure content exchange (SCE) function that realize to be used for digital copyright management (DRM), comprising: between territory authority (DA) and rights issuer (RI) exchange message with registration DA and RI, to DA registration SCE DRM act on behalf of to add user domain, from RI obtain user domain right objects (RO), transmit user domain RO and DRM content format (DCF) and act on behalf of to DA registration 2.0DRM by RI to the 2.0DRM agency.
The invention also discloses the method for secure content exchange (SCE) function that realize to be used for digital copyright management (DRM), comprising: to territory authority (DA) the local copyright manager of registration (LRM) with add user domain, create the input right objects (RO) of user domain, between DA and rights issuer (RI) exchange message with registration DA and RI, to the 2.0DRM agency transmit user domain RO and DRM content format (DCF) and by RI to DA registration 2.0DRM agency.
Should be understood that the bulking property of front is described and following detailed description all is exemplary and explanat, and aims to provide such as further explanation of the presently claimed invention.
Description of drawings
Accompanying drawing illustrates exemplary embodiment of the present invention, and is used for explaining each aspect of the present invention together with instructions, comprises the part that accompanying drawing is used to provide further understanding of the present invention and it is incorporated and consists of into this instructions.
Fig. 1 shows the synoptic diagram that OMA SCE requires.
Fig. 2 diagram is by 4 times log-in protocols using according to equipment and the rights issuer (RI) of OMA DRM V2.0.
Fig. 3 diagram is for the log-on field authority of the first exemplary embodiment and the method for rights issuer according to the present invention.
Fig. 4 diagram is used for being obtained by the SCEDRM agency who uses the register method of the first exemplary embodiment according to the present invention the method for user domain right objects.
Fig. 5 diagram is used for being acted on behalf of by the 2.0DRM that uses the register method of the second exemplary embodiment according to the present invention the method for user territory right objects.
Fig. 6 diagram is used for being used by the 2.0DRM agency who uses the register method of the 3rd exemplary embodiment according to the present invention the method for input user domain right objects.
Embodiment
Describe more fully with reference to the accompanying drawings hereinafter the present invention, wherein show exemplary embodiment of the present invention.Yet the present invention can with many multi-form enforcements, be subject to the exemplary embodiment of listing here and should not be construed as.On the contrary, provide these exemplary embodiments to those skilled in the art, the disclosure comprehensively, and will cover scope of the present invention fully.In the accompanying drawings, for the purpose of clear and definite, size and the relative size that can exaggerate floor and distinguish.Identical Reference numeral represents identical element in the accompanying drawing.
For a plurality of functions of effectively supporting to require according to OMA SCE, RI 40 should receive the information about territory authority (DA) 20, and DA 20 should receive the information about RI 40.Yet definition mechanism is not used for being based upon message exchange between DA20 and the RI40 in OMA SCE requires.
Registering functional between DA and the RI can allow DA and RI exchange to be used for realizing agreement between them or the information of function.In addition, this registering functional should be prior to any other agreement or the function between DA and the RI.
And this registering functional should allow in advance to RI notice DA information, even also can use registering functional so that RI can not access DA.
Therefore, this exemplary embodiment discloses the login mechanism that (hereinafter is also referred to as ' DA-RI ') between DA 20 and the RI 40, it can be merged into: (1) DRM agency obtains the approach of user domain RO, (2) 2.0DRM acts on behalf of the approach of user territory RO, and (3) 2.0DRM acts on behalf of the approach of the input RO in user territory.
Fig. 3 diagram is for the registration DA of the first exemplary embodiment and the method for RI according to the present invention.
In the phase one, among the operation S100, RI 40 transmits rights object acquisition protocol (ROAP) to DA20 and triggers the registration that message (described message can be called login request message) is used RI 40 triggering DA 20.Yet ROAP triggering message is not essential for the registration of DA 20.Do not trigger message even do not send ROAP, DA 20 also can transmit the DA message related to calls to RI40, to start registration process.
In subordinate phase, among the operation S102, DA 20 transmits the DA message related to calls to RI 40, is used to provide DA 20 essential informations.The DA message related to calls can comprise: protocol version, DA ID and mating pin algorithm.If the ROAP that DA 20 does not receive from RI 40 triggers message, then start the DA-RI registration process by transmitting the DA message related to calls to RI40.
In the phase III, among the operation S104, RI40 transmits the RI message related to calls to DA 20.The RI message related to calls comprises: the DA message related to calls transmits result, dialogue ID, protocol version, RI ID, supporting algorithm and other checking and server info.
In the quadravalence section, among the operation S108, DA 20 transmits login request message to RI40, so that DA20 can be to RI 40 registrations.This login request message comprises verification msg, for example: dialogue ID, message delivery time, certificate/digital signature and nonce.This login request message can be embodied as the login request message of aforesaid OMA DRMV2.0 similarly.
At five-stage, among the operation S110, RI 40 transmits to DA 20 and comprises for registering the registering result of RI 40 and the response message of information to DA 20.This registration reply message comprises authorization information, for example: DA registering result, dialogue ID, RI certificate/digital signature and OCSP response.This registration reply message can be embodied as the as mentioned above login request message of OMA DRM V2.0 similarly.
After the DA-RI registration process was finished, DA 20 occupied the RI context with RI information, and RI 40 registers DA information therein.Exactly-once DA-RI registration process in a DA-RI message exchange.Yet if contextual effective of RI expires, DA 20 can continue or repeat this registration process.
In another exemplary embodiment, RI 40 can be at first from DA 20 request registration.In other words, RI 40 can at first come 20 request registration from DA by transmitting the RI message related to calls to DA 20.Then, DA 20 can respond RI 40 by transmitting the DA message related to calls to RI 40.Next, RI 40 transmits the login request message that is used for registration to DA 20, and DA 20 transmits registration reply message to RI 40.In this case, the details of message should be revised as the context that is fit to their correspondences.Message can be substantially similar to above-mentioned two kinds of embodiment.
Although DA and RI are present in respectively individual and public network, can just carry out at first the DA-RI login mechanism to allow RI access DA.
Above-mentioned DA-RI registering functional can be supported any other DA-RI agreement/function.Therefore, can carry out the DA-RI registering functional before what its DA-RI agreement/function in office.
Fig. 4, Fig. 5 and Fig. 6 diagram use above-mentioned DA-RI register method to be used for implementing the method for SCE function.
The method of user domain right objects is obtained in Fig. 4 diagram by the SCE DRM agency who uses the register method of the first exemplary embodiment according to the present invention.
This exemplary embodiment discloses the method that is used for obtaining from RI 40 by SCE DRM agency 50 user domain RO.That is, this exemplary embodiment is described and how to be carried out the DA-RI register method and what stage to carry out the DA-RI register method in.The supposition of this exemplary embodiment is by DA 20 and DEA 30 managing user domains, and the two is combination each other.If DA 20 and DEA 30 are separated from one another, then user domain is managed by DEA 30.
In the phase one, among the operation S200, act on behalf of 50 to add user domain to DA 20 registration SCE DRM.This stage can be similar to for process from OMA DRM V2.0 to the territory that register the DRM agency according to and implement like that, and it needs the process of a plurality of message transmission and exchanges data.In case be successfully completed this stage, SCE DRM agency 50 has been exactly a member of user domain, and can user territory RO.
In subordinate phase, among the operation S201, the mechanism of the 4 times log-in protocols of the RI 40 by being similar to OMA DRM V2.0 is to RI 40 registration SCE DRM agencies 50.This stage comprises mutual checking/password exchange, and the mutual exchange of a plurality of parameters of post-registration communication/affirmation.When at first attempting obtaining the RO of RI 40, DRM agency 50 carries out a registration process.Yet, if because effective the DRM agency 50 access RI 40 that expire and no longer allow carry out this stage again.
In the phase III, among the operation S204, register DA 20 by the DA-RI login mechanism to RI 40.Before probing into user domain information from DA 20, carries out this stage RI 40, to issue user domain RO in the 6th stage to SCEDRM agency 50.Thereby, can before the 6th stage, carry out the phase III any time.
In the quadravalence section, among the operation S206, RI 40 transmits the ROAP that is used for the RO request message to SCE DRM agency 50 and triggers message.SCE DRM agency 50 carries out ROAP to transmit the RO request message by access RI 40.In this case, ROAP triggers message trigger SCE DRM agency 50 to obtain RO from RI 40.Can not require that ROAP triggers message.Trigger message even without sending ROAP, SCE DRM agency 50 also can start ROAP by transmitting the RO request message to RI 40.
At five-stage, among the operation S208, SCE DRM agency 50 transmits the RO request message to obtain user domain RO from RI 40 to RI 40.The RO request message can be similar to the RO request message according to 2 times ROAP agreements of OMA DRM V2.0.In this case, SCE DRM agency 50 transmits the information that is used for RO request message and user rs authentication to RI 40, for example: device id, territory ID, request time, RO information and certificate/digital signature.Territory ID can be the user domain ID that obtains by DA 20.
In this case, SCE DRM agency 50 has about the information of leading subscriber domain information for the DA 20 that obtains user domain RO, and to the information of RI 40 transmission about DA 20.
In the 6th stage, among operation S210 and the S212, RI 40 is used for obtaining user and information with DA 20 exchange messages.Because RI 40 is to SCE DRM agency 50 issue user domain RO, RI 40 utilizes DA 20 checking SCE DRM agencies 50 whether to belong to user domain.In addition, RI 40 receives user domain key (DK) from DA 20.In this case, when RI 40 transmitted the user domain request message to DA 20, DA 20 responded RI 40 by the user domain response message that transmission comprises appropriate information.In this stage, the out of Memory of RI 40 and DA 20 exchange DK and RI 40 is to create user domain RO.
In the 7th stage, among the operation S214, RI 40 transmits the RO response message to SCE DRM agency 50.In this stage, RI 40 transmits user domain RO to SCE DRM agency 50.The RO response message can be substantially similar to the RO response message of 2 times agreements of OMA DRMV2.0.In this case, RI 40 transmits the information that is used for RO transmission and user rs authentication to SCE DRM agency 50, for example: RO information and the certificate/digital signature of result, device id, RI ID, establishment.
In this exemplary embodiment, RI 40 obtains about the licensing process of user domain and information access process and issues user domain RO to act on behalf of 50 to SCE DRM.Thereby above-mentioned DA-RI login mechanism permission RI40 obtains the information about DA 20 in advance.
Fig. 5 diagram is used for being acted on behalf of by the 2.0DRM that uses the register method of the second exemplary embodiment according to the present invention the method for user territory right objects.
The second exemplary embodiment is described and how to be implemented the DA-RI register method and which stage to carry out this DA-RI register method in.The supposition of the second exemplary embodiment is by DA 20 and DEA 30 managing user domains, and the two is combination each other.If DA 20 and DEA 30 are separated from one another, then by DEA 30 managing user domains.
In the phase one, among the operation S300, DA 20 registers to RI 40 by the DA-RI login mechanism.Carried out this stage use the 2.0DRM agency's 60 who represent for the 7th stage DA 20 conduction user domain registrations at RI 40 before, so as 2.0DRM act on behalf of 60 can user territory RO.Phase one can carry out any time before the 7th stage.If carried out the DA-RI registration process, then no longer need the DA-RI registration process.
In subordinate phase, among the operation S302, act on behalf of 50 to add user domain to DA 20 registration SCE DRM.This stage can be similar to for the process to the DRM agency's in the territory of OMA DRM V2.0 registration and implement like that.In case be successfully completed this stage, then SCE DRM agency 50 is a member of user domain, and can user territory RO.
In the phase III, among the operation S304, SCE DRM agency 50 obtains user domain RO from RI 40.This stage follows the said method according to the first embodiment shown in Figure 4 closely.
In the quadravalence section, among the operation S306, SCE DRM agency 50 transmits user domain RO and the DRM content format (DCF) that obtains to 2.0DRM agency 60.This transfer approach can be for any method from an equipment to another equipment transmission and DRM related content.
Can and add user domain to use user domain RO to DA 20 registrations 2.0DRM act on behalf of 60.Yet 2.0DRM agency 60 cannot directly make approved applications to DA 20, and can indirectly make approved applications to DA 20 by RI 40.Behind user territory registration 2.0DRM agency 60,2.0DRM agency 60 receives DK and user territory RO.The the 5th, the 6th, the 7th and the 8th stage below will be described.
At five-stage, among the operation S308, utilize 4 times log-in protocols of OMA DRM V2.0 to RI40 registration DRM 2.0 agencies 60.If need any information to be used for user territory RO, then can use expansion or other message field further to transmit this information.
In the 6th stage, among the operation S310,2.0DRM agency 60 transmits and adds the territory request message to obtain DK and user territory RO.Because 2.0DRM agency 60 can not directly access DA 20 to obtain DK, so 2.0DRM agency 60 can obtain DK indirectly by RI 40.Thereby the adding territory request message that can be similar to DRMV2.0 writes like that and adds the territory request message.
In the 7th stage, among the operation S312, RI 40 is to the DA 20 conduction user domain registrations that represent 2.0DRM agency 60.In this case, the adding territory request message that is transmitted in the 6th stage by 2.0DRM agency 60 can comprise the label of asking clearly the user domain registration.Selectively, add the territory id field of territory request message corresponding to user domain ID zone, and if user domain ID corresponding to input, then allow access DA 20.
In the former scheme, RI 40 has a small amount of expense and goes to implement this processing, and in the scheme of back, can support 2.0DRM agency's reverse compatibility.
When the 7th stage finished, RI 40 obtained the DK that represents 2.0DRM agency 60, so that can user territory RO.
In the 8th stage, among the operation S316, will be sent at the DK that the 7th stage obtained the 2.0DRM agency.The adding domain response message that in this case, can be similar to DRM V2.0 writes like that and adds domain response message.
Therefore, in this exemplary embodiment, carry out the DA-RI login mechanism so that RI 40 obtains the information about DA 20 in advance.If carried out DA-RI registration process and an effectively not expiration in the phase III, then do not needed the DA-RI registration process.
Fig. 6 diagram is used for being used by the 2.0DRM agency who uses the register method of the 3rd exemplary embodiment according to the present invention the method for input user domain right objects.
More specifically, the 3rd exemplary embodiment discloses the method for using the user domain RO that is inputted by local copyright manager (LRM) 10 by 2.0DRM agency 60.This exemplary embodiment is described and how to be comprised the DA-RI register method and which stage to carry out the DA-RI register method in.The supposition of this exemplary embodiment is implemented agency's (DEA) 30 managing user domains by territory authority (DA) 20 and territory, and the two is combination each other.If DA 20 and DEA 30 are separated from one another, then by DEA 30 managing user domains.
In the phase one, among the operation S400, LRM 10 is to DA 20 registrations, allocation domain and receive input process, for user domain is changed OMA DRM RO with non-OMA DRM RO.This stage can comprise a plurality of processes for message transmission and exchanges data.If this stage success, then LRM 10 creates input user domain RO and input DCF, and it can be acted on behalf of 60 by 2.0DRM and use.
In the application with procurator's summary P2199US00, disclose and require to be inputted by LRM10 the distinct methods of DRM data, it is distributed to the application's same agent people.
In subordinate phase, among the operation S402, register DA 20 by the DA-RI login mechanism to RI 40.This stage carried out to user domain the 6th stage RI 40 license 2.0DRM agencies 60, so that 2.0DRM agency 60 can use input user domain RO.Thereby subordinate phase can be carried out any time before the 6th stage.If carried out subordinate phase and an effectively not expiration, then can not carry out subordinate phase.
In the phase III, among the operation S404, user domain RO and DCF are sent to the 2.0DRM agency from LRM 10.This transfer approach can be for any method from an equipment to another equipment transmission and DRM related content.
The 2.0DRM agency 60 who receives input user domain RO can not directly be conducted with DA 20 and be registered.Thereby RI 40 is to the DA 20 conduction registrations that represent 2.0DRM agency 60.After DA 20 registrations, 2.0DRM agency 60 receives DK and user territory RO.To describe hereinafter for the 4th, the 5th, the 6th and the 7th stage, it is similar to the 5th, the 6th, the 7th and the 8th stage in above-mentioned the second exemplary embodiment.
Thereby, in the present embodiment, comprise the DA-RI login mechanism so that RI 40 obtains the information about DA20 in advance.If carried out DA-RI registration process and an effectively not expiration, then can not need the DA-RI registration process.
Apparent from top description, according to an exemplary embodiment of the present, can effectively implement the SCE function by the DA-RI login mechanism, comprising: (1) is obtained the method for user domain RO by DRM agency 50; (2) acted on behalf of the method for 60 user territory RO by 2.0DRM; And (3) are used the method for input user domain RO by 2.0DRM agency 60.
In addition, because the DA-RI login mechanism is used in advance to RI notice DA information, even therefore RI does not directly access DA and can use the DA-RI login mechanism yet.
In addition, the DA-RI login mechanism can be provided for implementing the information of any New Deal/function in advance between DA and RI.Thereby the DA-RI registering functional can be prior to any New Deal/function between DA and the RI.
It will be apparent for a person skilled in the art that in the situation that does not break away from the spirit or scope of the present invention, the present invention can make various changes and modification.Therefore, the present invention is intended to cover change of the present invention and the modification in additional claim and the equivalent scope thereof.
Claims (12)
1. a registration is used for the territory authority DA of digital copyright management DRM and the method for rights issuer RI, comprising:
Transmit the RI message related to calls to this DA;
Transmit the DA message related to calls to this RI;
Create login request message based on this DA message related to calls, and transmit this login request message to this DA; And
Register this RI based on this login request message, and transmit registering result to this RI.
2. the method for claim 1 was wherein carried out to this RI before carrying out any other agreement between this DA and this RI and is transmitted registering result.
3. a realization is used for the method for the secure content exchange SCE function of digital copyright management DRM, comprising:
DRM acts on behalf of to add user domain to territory authority DA registration;
Register this DRM agency to rights issuer RI;
Transmit the RI message related to calls to this DA;
Transmit the DA message related to calls to this RI;
Create login request message based on this DA message related to calls, and transmit this login request message to this DA; And
Register this RI based on this login request message, and transmit registering result to this RI;
The right objects RO that is used for this user domain from the DRM agency to this RI request;
Transmit the user domain request from this RI to this DA, and in response to the RO of this RI with the establishment user domain; And
Transmit the RO that is used for this user domain to this DRM agency.
4. method as claimed in claim 3 was wherein carried out to this RI before carrying out any other agreement between this DA and this RI and is transmitted registering result.
5. a realization is used for the method for the secure content exchange SCE function of digital copyright management DRM, comprising:
Transmit territory authority DA message related to calls to rights issuer RI;
Transmit the RI message related to calls to this DA;
Create login request message based on this RI message related to calls, and transmit this login request message to this RI; And
Register this DA based on this login request message, and transmit registering result to this DA;
Act on behalf of to add user domain to this DA registration SCE DRM;
Obtain right objects RO for this user domain from this RI;
Transmit this RO and the DRM content format DCF that is used for this user domain to the 2.0DRM agency; And
Register this 2.0DRM agency by this RI to this DA.
6. method as claimed in claim 5 was wherein carried out to this DA before carrying out any other agreement between this DA and this RI and is transmitted registering result.
7. a realization is used for the method for the secure content exchange SCE function of digital copyright management DRM, comprising:
Transmit the RI of publisher message related to calls to territory authority DA;
Transmit the DA message related to calls to this RI;
Create login request message based on this DA message related to calls, and transmit this login request message to this DA; And
Register this RI based on this login request message, and transmit registering result to this RI;
Act on behalf of to add user domain to this DA registration SCE DRM;
Obtain right objects RO for this user domain from this RI;
Transmit this RO and the DRM content format DCF that is used for this user domain to the 2.0DRM agency; And
Register this 2.0DRM agency by this RI to this DA.
8. method as claimed in claim 7 was wherein carried out to this RI before carrying out any other agreement between this DA and this RI and is transmitted registering result.
9. a realization is used for the method for the secure content exchange SCE function of digital copyright management DRM, comprising:
Register local copyright manager LRM to add user domain to territory authority DA;
Create the input right objects RO that is used for this user domain;
Transmit the DA message related to calls to rights issuer RI;
Transmit the RI message related to calls to this DA;
Create login request message based on this RI message related to calls, and transmit this login request message to this RI; And
Register this DA based on this login request message, and transmit registering result to this DA;
Transmit this RO and the DRM content format DCF that is used for this user domain to the 2.0DRM agency; And
Register this 2.0DRM agency by this RI to this DA.
10. method as claimed in claim 9 was wherein carried out to this DA before carrying out any other agreement between this DA and this RI and is transmitted registering result.
11. a realization is used for the method for the secure content exchange SCE function of digital copyright management DRM, comprising:
Register local copyright manager LRM to add user domain to territory authority DA;
Create the input right objects RO that is used for this user domain;
Transmit the RI of publisher message related to calls to this DA;
Transmit the DA message related to calls to this RI;
Create login request message based on this DA message related to calls, and transmit this login request message to this DA; And
Register this RI based on this login request message, and transmit registering result to this RI;
Transmit this RO and the DRM content format DCF that is used for this user domain to the 2.0DRM agency; And
Register this 2.0DRM agency by this RI to this DA.
12. method as claimed in claim 11 was wherein carried out to this RI before carrying out any other agreement between this DA and this RI and is transmitted registering result.
Applications Claiming Priority (8)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| KR20060079078 | 2006-08-21 | ||
| KR79078/06 | 2006-08-21 | ||
| KR20060080696 | 2006-08-24 | ||
| KR80696/06 | 2006-08-24 | ||
| KR20060082392 | 2006-08-29 | ||
| KR82392/06 | 2006-08-29 | ||
| KR20060100037A KR101321587B1 (en) | 2006-08-21 | 2006-10-13 | Registration method between rights issuers and domain authorities for digital rights managements on wired/wireless environment and method for implementing SCE function using the registration method |
| KR100037/06 | 2006-10-13 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101131724A CN101131724A (en) | 2008-02-27 |
| CN101131724B true CN101131724B (en) | 2013-02-27 |
Family
ID=39384766
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2007101821763A Active CN101131724B (en) | 2006-08-21 | 2007-08-21 | Method for registering rights issuer and domain authority in digital rights management and method for implementing secure content exchange functions using the same |
Country Status (5)
| Country | Link |
|---|---|
| KR (1) | KR101321587B1 (en) |
| CN (1) | CN101131724B (en) |
| BR (1) | BRPI0703818A (en) |
| MX (1) | MX2007010124A (en) |
| TW (1) | TW200818788A (en) |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1714529A (en) * | 2002-11-27 | 2005-12-28 | 摩托罗拉公司(在特拉华州注册的公司) | Domain-based digital-rights management system with easy and secure device enrollment |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6895503B2 (en) * | 2001-05-31 | 2005-05-17 | Contentguard Holdings, Inc. | Method and apparatus for hierarchical assignment of rights to documents and documents having such rights |
-
2006
- 2006-10-13 KR KR20060100037A patent/KR101321587B1/en active IP Right Grant
-
2007
- 2007-08-20 TW TW96130742A patent/TW200818788A/en unknown
- 2007-08-20 MX MX2007010124A patent/MX2007010124A/en active IP Right Grant
- 2007-08-21 BR BRPI0703818-6A patent/BRPI0703818A/en not_active IP Right Cessation
- 2007-08-21 CN CN2007101821763A patent/CN101131724B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1714529A (en) * | 2002-11-27 | 2005-12-28 | 摩托罗拉公司(在特拉华州注册的公司) | Domain-based digital-rights management system with easy and secure device enrollment |
Non-Patent Citations (1)
| Title |
|---|
| 王美华等.OMA DRM技术体系结构分析.《网络安全技术与应用》.2006,76-79. * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101131724A (en) | 2008-02-27 |
| TW200818788A (en) | 2008-04-16 |
| KR20080017221A (en) | 2008-02-26 |
| BRPI0703818A (en) | 2008-09-16 |
| KR101321587B1 (en) | 2013-10-25 |
| MX2007010124A (en) | 2009-01-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109791671B (en) | Method and system for realizing block chain | |
| US7885871B2 (en) | Method and system for managing DRM agent in user domain in digital rights management | |
| EP1892640A2 (en) | Method for registering rights issuer and domain authority in digital rights management and method for implementing secure content exchange functions using the same | |
| US8443206B2 (en) | Method and apparatus for managing digital rights using portable storage device | |
| CN101278296B (en) | Improved DRM method and system | |
| US8321673B2 (en) | Method and terminal for authenticating between DRM agents for moving RO | |
| US20090217036A1 (en) | Digital rights management | |
| CN101321168B (en) | Right object acquisition method and system | |
| US9112874B2 (en) | Method for importing digital rights management data for user domain | |
| JP5248505B2 (en) | Control device, playback device, and authorization server | |
| CN111742531B (en) | Profile information sharing | |
| EP1667047A1 (en) | Method for managing digital rights using portable storage device | |
| EP1848177A1 (en) | Method for managing user domain | |
| CN101542495A (en) | Method for transferring resource and method for providing information | |
| US20080077992A1 (en) | Method, apparatus, and system for transmitting and receiving inter-device content ro | |
| KR100988374B1 (en) | Method for moving rights object and method for managing rights of issuing rights object and system thereof | |
| KR101356493B1 (en) | Method for moving digital contents and rights object thereto and device thereof | |
| CN101131724B (en) | Method for registering rights issuer and domain authority in digital rights management and method for implementing secure content exchange functions using the same | |
| KR101467833B1 (en) | Method and apparatus for managing right objects of contents | |
| CN101136751B (en) | Method for importing digital rights management data for user domain | |
| KR20080023251A (en) | Method and system for making secure a transaction in a telecommunication network | |
| Tacken et al. | Mobile DRM in pervasive networking environments | |
| KR20080026022A (en) | Method for providing information, method for authenticating client and drm interoperable system | |
| CN101939752B (en) | Method and device for managing authorization of right object in digital rights management | |
| MX2007004717A (en) | Method for managing user domain . |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20200615 Address after: Han Guoshouer Patentee after: Pan Thai Co.,Ltd. Address before: Han Guoshouer Patentee before: Pantech Co.,Ltd. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20201119 Address after: California, USA Patentee after: Hailios mobility Co.,Ltd. Address before: Han Guoshouer Patentee before: Pan Thai Co.,Ltd. |