CN101158998A - Management method and device of DRM licenses - Google Patents
Management method and device of DRM licenses Download PDFInfo
- Publication number
- CN101158998A CN101158998A CNA2007101775089A CN200710177508A CN101158998A CN 101158998 A CN101158998 A CN 101158998A CN A2007101775089 A CNA2007101775089 A CN A2007101775089A CN 200710177508 A CN200710177508 A CN 200710177508A CN 101158998 A CN101158998 A CN 101158998A
- Authority
- CN
- China
- Prior art keywords
- drm licence
- drm
- safe handling
- licence
- user side
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a management method and a device of DRM license, pertaining to the digital copyright protection field, and aiming to resolve the problem in the prior art that the security is poor and the application is inconvenient when DRM license is stored. The management method of the DRM license includes the steps that: generating a key of a user terminal; applying a DRM license; de-securing the secured DRM license; saving the de-secured DRM license. The DRM license management device provided by the invention comprises a key module for generating the key of the user terminal, an applying module for applying the DRM license, a de-securing processing module for de-securing the secured DRM license, a storing module for saving the de-secured DRM license. The invention can be applied to mobile memory equipment such as cell phones, mobile hard disks, flash memories, MP3 and so on, and manage the DRM license.
Description
Technical field
The present invention relates to the digital copyright protecting field, particularly a kind of management method of DRM licence and device.
Background technology
DRM (Digital Rights Management, digital copyright management) is based on the comprehensive solution of information security technology, can stop effectively illegally the using and copying of digital media file, and reaches the purpose of the digital intellecture property of protection.Along with the arrival of digital times, it is more and more important that DRM becomes, and DRM has become the basis of digitized content development and guaranteed.
The principle of work of DRM system is: at first set up the information authorization center.Described information authorization center is created PKI (Pubkey) and private key (Privkey), and uses encryption main key (MK), license key seed (Seek) and key identification (KeyID) to generate an encryption key (Key).This encryption key is to be used for the content of encipherment protection digital media file itself.The station address URL of key identification (KeyID), Certificate Authority (Uniform Resource Locator, URL(uniform resource locator)), information such as version number is deposited in the head of digital media file, and is utilized the head of private key (Privkey) signature digital media file; Use the content of encryption key (Key) enciphered digital media file then, and pack with the head of digital media file.
When the user carries out information operating on the internet, according to the key identification and the URL feature of digital media file head, the secret key decryption digital media file that obtains being correlated with after just can checking mandate by the information authorization center, thus use this digital media file.Because the digital media file that needs protection is encrypted, even thereby digital media file downloaded preservation by the disabled user, under the situation of the checking mandate that does not obtain the information authorization center, this user also can't use digital media file.
The DRM system adopt the formal description digital media file of licence to use the authorizing of right, demand condition usually and fulfil obligations etc. between relation, therefore, issuing and managing of DRM licence is the core of DRM system.
At present, the DRM licence is all stored on computers, and binds mutually with computing machine.Validated user can only use this DRM licence on the computing machine that stores the DRM licence, can't use on other computing machine.For example, the user has downloaded a film through encrypting on the A computing machine, when watching, and at first need be at described A downloaded and the corresponding DRM licence of this film, with after this DRM licence deciphering, could on described A computing machine, watch this film then.If the user wants to watch same film on the B computing machine, just must on the B computing machine, download and the corresponding DRM licence of this film again.If the user needs often to change computing machine, so every replacing once just must be downloaded one time the DRM licence again on employed computing machine, and this has increased a lot of troubles to the user.And, DRM licence of every download, the user just need pay the expense of single purchase DRM licence, has caused financial burden to the user.
In addition, on described A computing machine, to above-mentioned encrypted the deciphering of the corresponding DRM licence of film after, because the DRM licence after this deciphering will be stored on the A computing machine, thereby when other users use the A computing machine, be easy to the DRM licence on the described A of the being stored in computing machine is cracked or duplicates, and then obtain the authority watch this film, the rights and interests of validated user are caused damage.
Summary of the invention
The technical problem to be solved in the present invention provides a kind of management method of DRM licence, uses this method user can use the DRM licence easily and safely.
A kind of management method of DRM licence, described DRM licence is stored in the movable storage device; Described method comprises the steps:
Movable storage device generates the PKI and the private key of a pair of user side;
Movable storage device sends application DRM license request to DRM licence provider;
Receive that DRM licence provider sends over through after the DRM licence of safe handling, the DRM licence of movable storage device after to described safe handling carries out the safe handling of separating with described safe handling process contrary;
The DRM licence after the safe handling is separated in preservation.
Described method also comprises the steps:
When using digital media file, in the DRM licence of preserving, search DRM licence to be used.
Wherein, the private key of described user side is stored in the inside chip of described movable storage device.
Wherein, in described application DRM license request, include the PKI of user side.
Further, the safe handling of described DRM licence provider specifically comprises the steps:
Utilize the PKI of user side, treat the DRM licence of application and encrypt;
Or utilize the PKI of user side, treat the DRM licence of application and encrypt, and utilize the private key of DRM licence provider that data encrypted is signed;
Or the DRM licence that the private key that utilizes DRM licence provider is treated application signs, and utilizes the PKI of user side, and the data behind the signature are encrypted.
The safe handling correspondence of separating of described movable storage device comprises the steps:
Utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted;
Or utilize the PKI of DRM licence provider, and the DRM licence after the safe handling of receiving is carried out signature verification, and utilize the private key of user side, the data after the signature verification are decrypted;
Or utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted, and the data of the PKI that utilizes DRM licence provider after to deciphering are carried out signature verification.
It is wherein, described that to separate safe handling be to finish in the inside chip of described movable storage device.
Compared with prior art, described deciphering in the management method of DRM licence of the present invention, the process of signature authentication just can be finished in movable storage device, and movable storage device has the safety assurance on the hardware, as: the chip in the movable storage device can guarantee that the public and private key of user side and encryption key can only be written into, and can not be read out; And the content that is packaged in the DRM licence all can not be read out after encryption and decryption, thereby has guaranteed the security of public and private key, encryption key and the DRM licence of user side, has protected the rights and interests of validated user.
In addition, utilize method of the present invention, the user only need couple together movable storage device and computing machine, just can use the DRM licence on computers, and do not need computing machine of every replacing, just download the DRM licence one time again, reduced the trouble that repeated downloads DRM licence brings, saved the expense that repeated downloads DRM licence needs.
Corresponding with the management method of above-mentioned DRM licence, the present invention also provides a kind of management devices of DRM licence.
The management devices of DRM licence of the present invention is by the following technical solutions:
A kind of management devices of DRM licence, the management devices of described DRM licence is arranged in movable storage device, comprising:
Key module is used to generate the PKI and the private key of a pair of user side;
The application module is used for sending application DRM license request to DRM licence provider;
Separate the safe handling module, be used for to DRM licence provider send over through the DRM licence of safe handling, carry out the safe handling of separating with described safe handling process contrary;
Memory module is used to preserve the DRM licence of separating after the safe handling.
The management devices of described DRM licence also comprises:
Enquiry module is used for searching DRM licence to be used in described memory module when using digital media file.
Wherein, described key module is arranged in the inside chip of described movable storage device.
Wherein, in described application DRM license request, include the PKI of user side.
Further, the process of the safe handling of described DRM licence provider is specially:
Utilize the PKI of user side, treat the DRM licence of application and encrypt;
Or utilize the PKI of user side, treat the DRM licence of application and encrypt, and utilize the private key of DRM licence provider that data encrypted is signed;
Or the DRM licence that the private key that utilizes DRM licence provider is treated application signs, and utilizes the PKI of user side, and the data behind the signature are encrypted.
The described process of separating safe handling of separating the safe handling module is specially:
Utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted;
Or utilize the PKI of DRM licence provider, and the DRM licence after the safe handling of receiving is carried out signature verification, and utilize the private key of user side, the data after the signature verification are decrypted;
Or utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted, and the data of the PKI that utilizes DRM licence provider after to deciphering are carried out signature verification.
Wherein, describedly separate the inside chip that the safe handling module is arranged in described movable storage device.
The management devices of DRM licence provided by the present invention is arranged in movable storage device, and the user downloads to the DRM licence in the movable storage device by the management devices of this DRM licence.Thereby compared with prior art, the management devices that is arranged in the DRM licence of movable storage device has the safety assurance on the hardware, as: the chip in the movable storage device can guarantee that the public and private key of user side and encryption key can only be written into, and can not be read out; And the content that is packaged in the DRM licence all can not be read out after encryption and decryption, thereby has guaranteed the security of public and private key, encryption key and the DRM licence of user side, has protected the rights and interests of validated user.
In addition, the user only need couple together movable storage device and computing machine, just can use the DRM licence on computers by the management devices of this DRM licence, and do not need computing machine of every replacing, just download one time the DRM licence again, reduce the trouble that repeated downloads DRM licence brings, saved the expense that repeated downloads DRM licence needs.
Description of drawings
Fig. 1 is the management method process flow diagram of DRM licence provided by the invention;
Fig. 2 is the management devices structural drawing of DRM licence provided by the invention.
Embodiment
The present invention is described in further detail below in conjunction with accompanying drawing.
Safer for the storage that makes the DRM licence, the user is more convenient when using the DRM licence, the invention provides a kind of management method and device of DRM licence, and described DRM licence is stored in the movable storage device.
As shown in Figure 1, the process of the management method of described DRM licence is as follows:
101 when using digital media file, searches DRM licence to be used.
The user in visit through before the digital media file of safe handling, at first need to search user side whether have corresponding with this digital media file, through separating the DRM licence after the safe handling.If user side has described DRM licence, then the user can directly obtain this DRM licence, and utilizes described DRM licence to visit this digital media file; If user side does not have described DRM licence, then the user need apply for this DRM licence.
102 movable storage devices generate the PKI and the private key of a pair of user side.
In movable storage device, increase the inside chip that to support RSA generation and enciphering and deciphering algorithm, the compositing chip hardware system.The process that generates the user side public private key pair is finished in described chip hardware system, and the public and private key of described user side is as the mutual key of user side and DRM licence provider.The PKI of described user side and private key be two different fully but be the pair of secret keys of mating fully.Wherein, PKI is the key that can offer a lot of people, is disclosed; On the contrary, private key is exclusive by user side, maintains secrecy.Because the confidentiality that openly can't have influence on communication of PKI, the PKI of the user side that generates can be offered the information authorization center, obtain during for DRM licence provider or the use of other equipment.
Wherein, the private key of described user side is stored in the inside chip of movable storage device, can not be used by other users.This has just been avoided private key to be stolen by the disabled user, thereby has prevented that effectively the disabled user to the cracking and duplicating of DRM licence, having guaranteed the security of DRM licence.
103 movable storage devices send application DRM license request to DRM licence provider.
Because the digital media file of user's download through encrypting, therefore, at first needs to file an application to DRM licence provider, obtains and the corresponding DRM licence of this digital media file.The user can send application to DRM licence provider by Internet or cell phone network, comprises PKI, user name and some other information of user side in this application.
After described application DRM license request is received by DRM licence provider, in its database, find described and the corresponding DRM licence of this digital media file, and obtain the PKI of user side.Then this DRM licence is carried out safe handling.
Described safe handling specifically is divided into three kinds of situations:
Situation 1: utilize the PKI of user side, treat the DRM licence of application and encrypt;
Situation 2: utilize the PKI of user side, treat the DRM licence of application and encrypt, and utilize the private key of DRM licence provider that data encrypted is signed;
Situation 3: the DRM licence that utilizes the private key of DRM licence provider to treat application is signed, and utilizes the PKI of user side, and the data behind the signature are encrypted.
At last, DRM licence provider sends to movable storage device with described DRM licence through safe handling.
In the encryption and signature process of above-mentioned DRM licence provider,, can only use the private key with this public key match to be decrypted for the ciphered data that uses public-key; For using private key to do the data of signature, can only use the PKI that mates with this private key to authenticate.Therefore, even the disabled user has obtained the PKI of user side,, maintain secrecy because the private key of user side is stored in the inside chip of movable storage device.Do not have private key, just can't be decrypted, thereby prevented that effectively the disabled user to the cracking or duplicating of DRM licence, having protected the rights and interests of validated user the DRM licence.
104 receive that DRM licence provider sends over through after the DRM licence of safe handling, the DRM licence of movable storage device after to described safe handling carries out the safe handling of separating with described safe handling process contrary.
Movable storage device is received after the DRM licence after the safe handling that DRM licence provider sends, in the inside chip of self described DRM licence is separated safe handling.Described safe handling process and the described safe handling process contrary separated.
When the safe handling process was situation 1, the corresponding safe handling process of separating was: utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted;
When the safe handling process is situation 2, the corresponding safe handling process of separating is: the PKI that utilizes DRM licence provider, DRM licence after the safe handling of receiving is carried out signature verification, and utilize the private key of user side, the data after the signature verification are decrypted;
When the safe handling process was situation 3, the corresponding safe handling process of separating was: utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted, and utilize the PKI of DRM licence provider that the data after deciphering are carried out signature verification.
The described safe handling process of separating is to finish in the inside chip of movable storage device, and not needing to carry out the network connection can finish, thereby has protected the security of user side private key effectively, has prevented that the DRM licence from being cracked or duplicating by the disabled user.
The DRM licence after the safe handling is separated in 105 preservations.
After the DRM licence of having applied for separated safe handling, the DRM licence after the user can use this to separate safe handling, visit and the corresponding digital media file of described DRM licence.Use later on described DRM licence for the ease of the user, simultaneously the DRM licence is more safely preserved, will be stored in the movable storage device through the DRM licence of separating after the safe handling.When the user need use the DRM licence, can directly from movable storage device, call.
In addition, also can make amendment or operation such as deletion to the described DRM licence of having preserved.
For the details to user capture DRM licence carries out record, can make amendment to the described DRM licence of having preserved.Behind DRM licence of user's successful access, the DRM licence is stored again, at this moment, some information to the DRM licence are made amendment, for example: remain effective access times, last access time etc., like this, the user when conducting interviews next time, just can recognize former Visitor Logs, simultaneously, also avoid disabled user's invasion.
The user in order to guarantee the safety of this DRM licence, is not duplicated or cracks by the disabled user after using the DRM licence, need deal carefully with this DRM licence.Therefore, the user is not needed to use the licence of DRM delete.Prevented that so not only the disabled user from stealing this DRM licence, and can save storage space.
In the present invention, the DRM licence is stored in the movable storage device, and movable storage device has the safety assurance on the hardware, as: the chip in the movable storage device can guarantee that public and private key and encryption key can only write and use it to do computings such as encryption, deciphering, signature authentication, and can not be read out; And the content that is packaged in the DRM licence all can not be read out after encryption and decryption, thereby has guaranteed the security of public and private key, encryption key and DRM licence, has protected the rights and interests of validated user.
In addition, because the DRM licence is stored in the movable storage device, when the user need play or read digital media file operation time at computing machine, only movable storage device and computing machine need be coupled together and just can use the DRM licence of having bought easily.The user is as long as download and buy one time the DRM licence at movable storage device, just can on a plurality of terminals, use the DRM licence of having bought, DRM license management device in the movable storage device is the managing drm licence effectively, the external world can't obtain, duplicate, revise this DRM licence, thereby realizes that the DRM licence of buying can more convenient, more safely use.
Corresponding with the management method of DRM licence of the present invention, the present invention also provides a kind of management devices of DRM licence.
The management devices of described DRM licence is arranged in movable storage device, and the license management program by inside manages the DRM licence.
As shown in Figure 2, the management devices of this DRM licence comprises: key module is used to generate the PKI and the private key of a pair of user side.The application module is used for sending application DRM license request to DRM licence provider; Be connected with the application module: separate safe handling module and memory module.
Wherein, separate the safe handling module, be used for to DRM licence provider send over through the DRM licence of safe handling, carry out the safe handling of separating with described safe handling process contrary;
Memory module is used to preserve the DRM licence of separating after the safe handling.
Wherein, described key module, separate the inside chip that the safe handling module is arranged in movable storage device.
The management devices of described DRM licence also comprises:
Enquiry module is used for searching DRM licence to be used in described memory module when using digital media file.
The user in visit through before the digital media file of safe handling, at first by enquiry module in described memory module, search whether have corresponding with this digital media file, through the DRM licence after separating safe handling.If described DRM licence is arranged, then the user can directly obtain this DRM licence, and utilizes described DRM licence to visit this digital media file; If user side does not have described DRM licence, then the user need be by this DRM licence of application module application.
Before the application module application DRM licence, key module at first generates the PKI and the private key of a pair of user side, as the mutual key of user side and DRM licence provider.The PKI of described user side and private key be two different fully but be the pair of secret keys of mating fully.Wherein, PKI is the key that can offer a lot of people, is disclosed; On the contrary, private key is exclusive by user side, maintains secrecy.Because the confidentiality that openly can't have influence on communication of PKI, the PKI of the user side that generates can be offered the information authorization center, obtain during for DRM licence provider or the use of other equipment
Then, the application module sends application DRM license request to DRM licence provider.In described application DRM license request, include the information such as PKI of user side.
After the application module application DRM license request of sending is received by DRM licence provider, in its database, find described and the corresponding DRM licence of this digital media file, and obtain the PKI of user side.Then this DRM licence is carried out safe handling.
Described safe handling specifically is divided into three kinds of situations:
Situation 1: utilize the PKI of user side, treat the DRM licence of application and encrypt;
Situation 2: utilize the PKI of user side, treat the DRM licence of application and encrypt, and utilize the private key of DRM licence provider that data encrypted is signed;
Situation 3: the DRM licence that utilizes the private key of DRM licence provider to treat application is signed, and utilizes the PKI of user side, and the data behind the signature are encrypted.
DRM licence provider for the ciphered data that uses public-key, can only use the private key with this public key match to be decrypted in above-mentioned encryption and signature process; For using private key to do the data of signature, can only use the PKI that mates with this private key to authenticate.Therefore, even the disabled user has obtained the PKI of user side,, maintain secrecy because the private key of user side is stored in the inside chip of movable storage device.Do not have private key, just can't be decrypted, thereby prevented that effectively the disabled user to the cracking or duplicating of DRM licence, having protected the rights and interests of validated user the DRM licence.
Afterwards, DRM licence provider sends to described DRM licence through safe handling and separates the safe handling module.
Separate after the DRM licence after the safe handling that the safe handling module receives that DRM licence provider sends, described DRM licence is separated safe handling.Described safe handling process and the described safe handling process contrary separated.
When the safe handling process was situation 1, the corresponding safe handling process of separating was: utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted;
When the safe handling process is situation 2, the corresponding safe handling process of separating is: the PKI that utilizes DRM licence provider, DRM licence after the safe handling of receiving is carried out signature verification, and utilize the private key of user side, the data after the signature verification are decrypted;
When the safe handling process was situation 3, the corresponding safe handling process of separating was: utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted, and utilize the PKI of DRM licence provider that the data after deciphering are carried out signature verification.
Describedly separate the inside chip that the safe handling module is arranged in movable storage device; therefore; do not need to carry out network and connect to finish and separate the safe handling process, thereby protected the security of user side private key effectively, prevented that the DRM licence from being cracked or duplicating by the disabled user.
The private key that key module generates is exclusive by user side, can not be used by other users, thereby this has prevented disabled user's cracking and duplicating the DRM licence effectively.The management devices of described DRM licence is arranged in movable storage device, and described key module, to separate security module all be the inside chip that is arranged in movable storage device, thereby the process of separating safe handling just can be finished in movable storage device.And movable storage device has the safety assurance on the hardware, as: the chip in the movable storage device can guarantee that the public and private key of user side and encryption key can only write, and can not be read out; The content that is packaged in the DRM licence all can not be read out etc. after encryption and decryption.So just guarantee the security of public and private key, encryption key and the DRM licence of user side, protected the rights and interests of validated user.
In addition, for the DRM licence of having preserved is dealt carefully with, the also operation that can make amendment or delete the DRM licence of having preserved in the described memory module.After the user uses the DRM licence, will make amendment, for example: remain effective access times, last access time etc. to some information of DRM licence.Like this, the user just can recognize former Visitor Logs next time when conducting interviews, and simultaneously, has also avoided disabled user's invasion.
The user in order to guarantee the safety of this DRM licence, deletes the unwanted DRM licence of user after using described DRM licence from memory module.Like this, on the one hand, prevented that the disabled user from stealing this DRM licence, on the other hand, also saved storage space for described memory module.
The management devices of described DRM licence can be preset in the movable storage device in advance, and the user just can directly use after buying movable storage device; Perhaps download in the movable storage device by Internet or the cell phone network supervisory routine with licence, like this, just formed the management devices of DRM licence in movable storage device, movable storage device has the management function of DRM licence.
The applied movable storage device of the management devices of DRM licence of the present invention can be mobile phone, portable hard drive, flash memory, PDA or MP3 etc., but is not limited thereto.
The above; only be a kind of embodiment of the present invention, but protection scope of the present invention is not limited thereto, anyly is familiar with those skilled in the art in the technical scope that the present invention discloses; the variation that can expect easily or replacement all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection domain that claim was defined.
Claims (14)
1. the management method of a DRM licence is characterized in that, described DRM licence is stored in the movable storage device; Described method comprises the steps:
Movable storage device generates the PKI and the private key of a pair of user side;
Movable storage device sends application DRM license request to DRM licence provider;
Receive that DRM licence provider sends over through after the DRM licence of safe handling, the DRM licence of movable storage device after to described safe handling carries out the safe handling of separating with described safe handling process contrary;
The DRM licence after the safe handling is separated in preservation.
2. the management method of DRM licence according to claim 1 is characterized in that, also comprises the steps:
When using digital media file, in the DRM licence of preserving, search DRM licence to be used.
3. the management method of DRM licence according to claim 1 is characterized in that, the private key of described user side is stored in the inside chip of described movable storage device.
4. the management method of DRM licence according to claim 1 is characterized in that, includes the PKI of user side in described application DRM license request.
5. the management method of DRM licence according to claim 1 is characterized in that, the safe handling of described DRM licence provider specifically comprises the steps:
Utilize the PKI of user side, treat the DRM licence of application and encrypt;
Or utilize the PKI of user side, treat the DRM licence of application and encrypt, and utilize the private key of DRM licence provider that data encrypted is signed;
Or the DRM licence that the private key that utilizes DRM licence provider is treated application signs, and utilizes the PKI of user side, and the data behind the signature are encrypted.
6. the management method of DRM licence according to claim 1 is characterized in that, the safe handling of separating of described movable storage device comprises the steps:
Utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted;
Or utilize the PKI of DRM licence provider, and the DRM licence after the safe handling of receiving is carried out signature verification, and utilize the private key of user side, the data after the signature verification are decrypted;
Or utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted, and the data of the PKI that utilizes DRM licence provider after to deciphering are carried out signature verification.
7. according to the management method of claim 1 or 6 described DRM licences, it is characterized in that described to separate safe handling be to finish in the inside chip of described movable storage device.
8. the management devices of a DRM licence is characterized in that, the management devices of described DRM licence is arranged in movable storage device, comprising:
Key module is used to generate the PKI and the private key of a pair of user side;
The application module is used for sending application DRM license request to DRM licence provider;
Separate the safe handling module, be used for to DRM licence provider send over through the DRM licence of safe handling, carry out the safe handling of separating with described safe handling process contrary;
Memory module is used to preserve the DRM licence of separating after the safe handling.
9. the management devices of DRM licence according to claim 8 is characterized in that, also comprises:
Enquiry module is used for searching DRM licence to be used in described memory module when using digital media file.
10. the management devices of DRM licence according to claim 8 is characterized in that, described key module is arranged in the inside chip of described movable storage device.
11. the management devices of DRM licence according to claim 8 is characterized in that, includes the PKI of user side in described application DRM license request.
12. the management devices of DRM licence according to claim 8 is characterized in that, the process of the safe handling of described DRM licence provider is specially:
Utilize the PKI of user side, treat the DRM licence of application and encrypt;
Or utilize the PKI of user side, treat the DRM licence of application and encrypt, and utilize the private key of DRM licence provider that data encrypted is signed;
Or the DRM licence that the private key that utilizes DRM licence provider is treated application signs, and utilizes the PKI of user side, and the data behind the signature are encrypted.
13. the management devices of DRM licence according to claim 12 is characterized in that, the described process of separating safe handling of separating the safe handling module is specially:
Utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted;
Or utilize the PKI of DRM licence provider, and the DRM licence after the safe handling of receiving is carried out signature verification, and utilize the private key of user side, the data after the signature verification are decrypted;
Or utilize the private key of user side, the DRM licence after the safe handling of receiving is decrypted, and the data of the PKI that utilizes DRM licence provider after to deciphering are carried out signature verification.
14. according to Claim 8 or the management devices of 13 described DRM licences, it is characterized in that, describedly separate the inside chip that the safe handling module is arranged in described movable storage device.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNA2007101775089A CN101158998A (en) | 2007-11-16 | 2007-11-16 | Management method and device of DRM licenses |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNA2007101775089A CN101158998A (en) | 2007-11-16 | 2007-11-16 | Management method and device of DRM licenses |
Publications (1)
Publication Number | Publication Date |
---|---|
CN101158998A true CN101158998A (en) | 2008-04-09 |
Family
ID=39307098
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNA2007101775089A Pending CN101158998A (en) | 2007-11-16 | 2007-11-16 | Management method and device of DRM licenses |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN101158998A (en) |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101833623A (en) * | 2010-05-07 | 2010-09-15 | 华为终端有限公司 | Digital rights management method and system |
CN102855446A (en) * | 2011-06-27 | 2013-01-02 | Nxp股份有限公司 | Resource management system and corresponding method |
CN103186722A (en) * | 2011-12-29 | 2013-07-03 | 国民技术股份有限公司 | System and method for copyright protection of digital files |
CN102216998B (en) * | 2008-12-16 | 2014-04-09 | 桑迪士克公司 | Controlled data access to non-volatile memory |
CN103916358A (en) * | 2012-12-30 | 2014-07-09 | 航天信息股份有限公司 | Key spread and verification method and system |
CN104239755A (en) * | 2014-10-11 | 2014-12-24 | 浪潮电子信息产业股份有限公司 | DRM signature verification method |
CN106100833A (en) * | 2016-06-17 | 2016-11-09 | 深圳市元征科技股份有限公司 | The method and system of soft ware authorization, server and licence generating means |
CN107423584A (en) * | 2017-07-27 | 2017-12-01 | 北京深思数盾科技股份有限公司 | Operation method, device, terminal and the computer-readable recording medium of application software |
CN108418692A (en) * | 2018-03-28 | 2018-08-17 | 湖南东方华龙信息科技有限公司 | The online wiring method of certification certificate |
-
2007
- 2007-11-16 CN CNA2007101775089A patent/CN101158998A/en active Pending
Cited By (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102216998B (en) * | 2008-12-16 | 2014-04-09 | 桑迪士克公司 | Controlled data access to non-volatile memory |
CN101833623B (en) * | 2010-05-07 | 2013-02-13 | 华为终端有限公司 | Digital rights management method and system |
CN101833623A (en) * | 2010-05-07 | 2010-09-15 | 华为终端有限公司 | Digital rights management method and system |
CN102855446B (en) * | 2011-06-27 | 2015-06-10 | Nxp股份有限公司 | Resource management system and corresponding method |
CN102855446A (en) * | 2011-06-27 | 2013-01-02 | Nxp股份有限公司 | Resource management system and corresponding method |
CN103186722B (en) * | 2011-12-29 | 2017-02-08 | 国民技术股份有限公司 | System and method for copyright protection of digital files |
CN103186722A (en) * | 2011-12-29 | 2013-07-03 | 国民技术股份有限公司 | System and method for copyright protection of digital files |
CN103916358A (en) * | 2012-12-30 | 2014-07-09 | 航天信息股份有限公司 | Key spread and verification method and system |
CN104239755A (en) * | 2014-10-11 | 2014-12-24 | 浪潮电子信息产业股份有限公司 | DRM signature verification method |
CN106100833A (en) * | 2016-06-17 | 2016-11-09 | 深圳市元征科技股份有限公司 | The method and system of soft ware authorization, server and licence generating means |
CN107423584A (en) * | 2017-07-27 | 2017-12-01 | 北京深思数盾科技股份有限公司 | Operation method, device, terminal and the computer-readable recording medium of application software |
CN108418692A (en) * | 2018-03-28 | 2018-08-17 | 湖南东方华龙信息科技有限公司 | The online wiring method of certification certificate |
CN108418692B (en) * | 2018-03-28 | 2021-05-25 | 湖南东方华龙信息科技有限公司 | On-line writing method of authentication certificate |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9075957B2 (en) | Backing up digital content that is stored in a secured storage device | |
CN101158998A (en) | Management method and device of DRM licenses | |
CN100508448C (en) | Content processing apparatus and content protection program | |
US8966580B2 (en) | System and method for copying protected data from one secured storage device to another via a third party | |
US7103782B1 (en) | Secure memory and processing system having laser-scribed encryption key | |
US20030208686A1 (en) | Method of data protection | |
CN100464549C (en) | Method for realizing data safety storing business | |
US20060149683A1 (en) | User terminal for receiving license | |
US20060282901A1 (en) | System and method for protected data transfer | |
US20090276474A1 (en) | Method for copying protected data from one secured storage device to another via a third party | |
WO2008085917A2 (en) | Token passing technique for media playback devices | |
JP2013502817A (en) | Secure USB storage medium generation and decoding method, and medium on which a program for generating a secure USB storage medium is recorded | |
CN101122942A (en) | Data safe reading method and its safe storage device | |
US20120096280A1 (en) | Secured storage device with two-stage symmetric-key algorithm | |
CN101951315A (en) | Key processing method and device | |
CN101118634B (en) | Process for generating licenses and system thereof | |
CN104156672A (en) | Data encryption protection method and system based on LINUX | |
JPH07123086A (en) | Literary work communication control system using ic card | |
CN112507296A (en) | User login verification method and system based on block chain | |
EP2119102A1 (en) | Method and apparatus for digital rights management for use in mobile communication terminal | |
CN1266617C (en) | Computer data protective method | |
CN112866216B (en) | Method and system for encrypting file | |
CN103379133A (en) | Safe and reliable cloud storage system | |
KR100750697B1 (en) | Digital document preservation system having a share memory for user access function and document transaction method used the system | |
US8755521B2 (en) | Security method and system for media playback devices |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C12 | Rejection of a patent application after its publication | ||
RJ01 | Rejection of invention patent application after publication |
Open date: 20080409 |