CN101320408A - Digital contents hardware binding and emigration method with both copyright sides controllable function - Google Patents
Digital contents hardware binding and emigration method with both copyright sides controllable function Download PDFInfo
- Publication number
- CN101320408A CN101320408A CN 200810027787 CN200810027787A CN101320408A CN 101320408 A CN101320408 A CN 101320408A CN 200810027787 CN200810027787 CN 200810027787 CN 200810027787 A CN200810027787 A CN 200810027787A CN 101320408 A CN101320408 A CN 101320408A
- Authority
- CN
- China
- Prior art keywords
- licence
- main
- equipment
- digital content
- client computer
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The present invention relates to a method of binding the digital contents capable of being controlled by two copyright parties and the hardware, and transporting numbers between different types of hardware, belonging to the technological field of copyright protection of the digital contents. The method provides a right description language; the license based on the right description language has self-generating capacity. After the right parties set hardware binding and transporting rules in the license, the novel binding and transportation of the hardware of the digital contents can adopt the self-generating capacity of the license, so that the user can directly and initiatively control the hardware of the digital contents at the client terminal; no additional on-line control over the network connection and server is required. The method has the effects of balancing the requirements of the changing and transportation of hardware devices of the user and the copyright protection of the digital contents of the right party, enhancing the flexibility and convenience of the existing copyright protection system, and guarantees the rights of the user to protect the privacy and to reasonably use the digital contents.
Description
Technical field
The present invention relates to a kind of digital contents hardware binding and moving method with both copyright sides controllable function.
Background technology
Existing method does not all possess the controllability of both copyright sides, all has problems in convenience, ease for use and secret protection.
Summary of the invention
The purpose of this invention is to provide a kind of dirigibility and convenience that strengthens existing copyright protecting system, ensure user's privacy and reasonable digital contents hardware binding with both copyright sides controllable function and the moving method that uses digital content.
Purpose of the present invention is achieved through the following technical solutions.
A kind of digital contents hardware binding and moving method with both copyright sides controllable function comprises the following step:
1) digital content encapsulation: at first, content supplier is by the original license of content server generation digital content, and original license comprises unique identification, version, digital content service regeulations and the information such as main licence generation rule, issuing time and term of life of digital content; Then digital content is carried out encryption, the decruption key of digital content is inserted into original license; Digital content, original license and integrity check information after will encrypting at last is packaged into the original license bag and sends to copyright server, the digital content after encrypting and integrity check information is packaged into digital content package is published to the website and downloads or be burnt to laser disc and sell;
2) main licence application: main licence refers to the licence that the service orientation content server is directly applied for, is called from licence by the licence that main licence produced, and main licence application comprises licence application, generation and granting three phases;
1. the main licence application stage: the copyright control device that is positioned at client produces the equipment licence of client machine, the characteristic information of the attribute binding collection binding client computer related hardware equipment of equipment licence, the copyright control device is packaged into the license request bag with equipment licence, digital content sign, paying receipt encryption back and integrity check information and sends to copyright server application master licence;
2. main licence generation phase: after the integrality of copyright server checking license request bag and the correctness of paying receipt, search the original license of digital content, and according to the main licence generation rule of original license require, license issuance history (with the equipment licence contrast of providing main licence) etc. determines whether to provide main licence; Provide if agree, then at first generate applicant's main licence and in its rule set, be provided with from licence generation strategy rule according to the digital content service regeulations in the original license and main licence generation rule, concentrate in the equipment license rules then the hardware adaptive mechanism policing rule is set, last in main licence property set bound device licence and generate final main licence, and equipment licence and relevant release information are kept in the licence history library;
3. the main license issuance stage: copyright server is encrypted the back with main licence, equipment licence and is constituted the copyright control device that the licence bag sends to client with relevant integrity check information, time stamp, term of validity encapsulation back;
3) digital content is used: after promptly the user obtained digital content package and gets a license from website or other channels, the copyright control device was asked according to the user, obtained decruption key to correlated digital contents decryption and the process that provides the user to use from licence.At first, at the operation requests that the user provides, the copyright control device determines by the licence interpreter whether the rule of licence allows this operation after the integrality and validity of checking digital content and licence, if do not allow, and then shut-down operation; If license rules required at first checkout facility licence before allowing, then controller extracts the characteristic information of licence place client computer related hardware equipment, and check whether these characteristic informations meet equipment licence hardware adaptive mechanism policing rule, if do not meet, then refusal operation, otherwise allow this operation; If allow this operation, the copyright control device from licence, obtain secret key decryption correlated digital content and the user be provided this manipulate;
4) digital content devices migration: the client computer that title has had main licence is main client computer, and the client computer that digital content is desired to move to is the migration client computer, when the user need use digital content on the migration client computer, uses following migration step:
1. migration request stage: the copyright control device that is positioned at the migration client computer produces the equipment licence of migration client computer, the attribute of this equipment licence is bound the characteristic information that collects binding migration client computer related hardware equipment, be packaged into from the license request bag after the secret key encryption of the copyright control device of migration client computer with the generation of information such as this equipment licence, digital content sign, integrity check information, time stamp and term of validity use paying receipt and send or copy to main client computer; Secret key decryption that the copyright control device utilization paying receipt of main client computer produces and checking import this equipment licence after the integrality and validity of license request bag;
2. from the licence generation phase: according to main licence set from licence generation strategy rule, but the copyright control device of user's Autonomous Control master client computer generates from licence, and can import correlation parameter (as distribute access times etc. between principal and subordinate's licence under total constant situation of access times) according to generation strategy; In general, all to be defined in the current binding of main licence is at first checked in generation before from licence equipment licence from the licence generation strategy, then the copyright control device extracts the related hardware apparatus characteristic information of main client computer, and call interpreter and check whether these characteristic informations meet the equipment licence hardware adaptive mechanism policing rule of the current binding of main licence, if do not meet, then refuse generating run, otherwise allow this operation.This strategy is in order to guarantee that main licence is on the machine of binding, prevents from that the user from copying main licence to re-use generation strategy on the other machines and generate from licence.The copyright control device of main client computer is provided with the hardware adaptive mechanism policing rule of equipment licence of migration client computer according to generation strategy then, at last at the equipment licence of binding migration client computer from the licence property set;
3. from the license issuance stage: the copyright control device of main client computer will be packaged into migration licence bag after the equipment licence of licence, migration client computer and the secret key encryption that relevant integrity check information, time stamp, the term of validity use the paying receipt to generate and send or copy to client computer migration client computer.
Described licence be a kind of tlv triple of forming by the U-Datalog logical program D, IDB, BV}, wherein D is the unique identifier of the digital content protected of licence, IDB is the intension rule set, BV is the attribute binding form that is expressed as name ≡ value form.Licence is expressed as lic (D, Δ), and wherein, D is the unique identifier of the digital content protected of licence, and Δ is the identifier of licence program P=IDB ∪ BV.
Described at the digital content encapsulated phase, the original occupancy permit of generation digital content, original license can comprise the information such as unique identification, version, main licence create-rule, issuing time and term of life of digital content; Then digital content is carried out encryption, the decruption key of digital content is inserted into original license; Digital content after will encrypting at last, original license etc. are packaged into the original license bag and send to copyright server, and the digital content after encrypting etc. is packaged into digital content package to be provided and download or sell.
Described at the digital content encapsulated phase, can encrypt respectively different parts by the structure of digital content, the form of the decrypted digital content key being formed key tree is encapsulated in the licence, when using digital content, only decipher the key that obtains the partial content that can satisfy use in the licence and get final product.
Described in the main licence application stage, produce the equipment licence of client machine, the characteristic information of the attribute binding collection binding client computer related hardware equipment of equipment licence is packaged into the license request bag with equipment licence, paying receipt etc. then and sends to copyright server application master licence.
Described in main licence generation and granting stage, main licence create-rule according to original license generates applicant's main licence and concentrates setting from licence generation strategy rule in main license rules, at the concentrated hardware adaptive mechanism policing rule that is provided with of equipment license rules, last in main licence property set bound device licence and generate final main licence, then main licence, equipment licence etc. is packaged into the licence bag and sends to client copyright control device.
Described in the digital content operational phase, at using operation requests, the copyright control device determines by the licence interpreter whether the rule of licence allows this operation, if do not allow, and then shut-down operation.If license rules required at first checkout facility licence before allowing, then controller extracts the characteristic information of licence place client computer related hardware equipment, and check whether these characteristic informations meet equipment licence hardware adaptive mechanism policing rule, if do not meet, then refusal operation, otherwise allow this operation.
The described migration request stage in the digital content devices migration, produce the equipment licence of migration client computer, the characteristic information of the attribute binding collection binding migration client computer related hardware equipment of equipment licence, send or copy to the main client computer that has licence with being packaged into from the license request bag after the relevant informations such as secret key encryption equipment licence of using the paying receipt to generate, secret key decryption that main client computer utilization paying receipt produces and checking are from the license request bag.
Described digital content devices migration from the licence generation phase, according to main licence set from licence generation strategy rule, but user's Autonomous Control generate from licence, and can import correlation parameter according to generation strategy; In general, all to be defined in the current binding of main licence is at first checked in generation before from licence equipment licence from the licence generation strategy, promptly extract the related hardware apparatus characteristic information of the current place of main licence machine, and call interpreter and check whether these characteristic informations meet the equipment licence hardware adaptive mechanism policing rule of the current binding of main licence, if do not meet, then refuse generating run, otherwise allow this operation.The hardware adaptive mechanism policing rule of migration client devices licence is set according to generation strategy then, from the licence property set, binding this equipment licence at last, and the secret key encryption that utilizes the paying receipt to generate is packaged into the bag transmission of migration licence or copies the migration client computer to after information such as licence, equipment licence.
Described in the digital content devices migration phase, main client computer also can be the client computer that has from licence, but should should have the policing rule of regeneration from licence from licence.
Described in the main licence application stage with in migration request stage of digital content devices migration, the hardware characteristics information binding of equipment licence can comprise digital certificates, Attribute certificate or other mobile hardware mark such as smart card, the hardware keys etc. of user's authentication characteristic information as the binding user, the user must transfer to this equipment with corresponding authentication characteristic information and could use when digital content is moved to other equipment.
Described in the main licence application stage with in the digital content devices migration phase; the attribute binding collection of equipment licence is in binding client computer related hardware apparatus characteristic information; can utilize the localization information (as the password of user input etc.) of client computer that the hardware device features information of extracting is encrypted or after monotonic transformation and hiding handles; be tied to the equipment licence again; can prevent copyright server identification user's hardware device content, the protection privacy.Use or migration phase when needing comparative apparatus in digital content, the binding information that the hardware device features information of current extraction is done after the same processing with the equipment licence again compares.
Described in the interpreter of licence, comprise a kind of routine call predicate, the routine call predicate causes between the licence can interoperability and call mutually.If affairs T, Δ is the identifier of licence program P=IDB ∪ BV, the routine call predicate comprises following two classes: the I type calls predicate Call (T): determine to call this predicate program and whether can satisfy T, if T is that renewal satiable and that cause is consistent, predicate returns true, otherwise returns false; The II type calls predicate Call, and (Δ, T): determine whether the program Δ can satisfy T, if can satisfy and renewal that T causes is consistent to the program Δ, predicate returns true, otherwise returns false.
The demand of effect of the present invention has been balance change migration of user's hardware device and right number formulary word content copyright protection has strengthened the dirigibility and the convenience of existing copyright protecting system, has ensured the user's privacy and the reasonable right of use digital content.
Description of drawings
Fig. 1 is an entire system structural drawing of the present invention;
Fig. 2 is licence structure of the present invention and form synoptic diagram;
Fig. 3 is a digital content encapsulation process schematic flow sheet of the present invention;
Fig. 4 is a main licence application stage schematic flow sheet of the present invention;
Fig. 5 is a digital content operational phase schematic flow sheet of the present invention;
Fig. 6 is a digital content devices migration phase schematic flow sheet of the present invention;
Fig. 7 comprises the equipment licence exemplary plot of hardware adaptive mechanism strategy for the present invention;
Fig. 8 comprises main licence exemplary plot from the licence generation strategy for the present invention;
Embodiment
Below in conjunction with accompanying drawing digital contents hardware binding and the moving method that the present invention has both copyright sides controllable function is described in further detail.
Fig. 1 is to use the system construction drawing of the method for the invention, and system comprises three class entities: content server, copyright server and copyright control device, wherein the copyright control device is deployed on the client machine, comprises the licence interpreter.
Fig. 2 is the digital content licenses example.The tlv triple that licence of the present invention is made up of the U-Datalog logical program D, and IDB, BV}, wherein D is the unique identifier of the digital content protected of licence, and IDB is the intension rule set, and BV is the attribute binding form that is expressed as name ≡ value form.
Fig. 3 is a digital content encapsulation process flow process, describes the process of content server packages digital content.Comprising that the packages digital content bag provides downloads or the imprinting laser disc is sold, and encapsulation original license bag and send to the process of copyright server.
Fig. 4 is main licence application stage flow process.Describe the application of main licence, be generated to the concrete treatment scheme of granting.
Fig. 5 is a digital content operational phase flow process.Describe the user and propose the use request to the idiographic flow that allows and provide digital content to use.
Fig. 6 is a digital content devices migration phase flow process.The user is described by the idiographic flow of Autonomous Control in equipment room migration digital content.
Fig. 7 is the equipment licence exemplary plot that comprises the hardware adaptive mechanism strategy.Four kind equipments of this licence binding client computer: hard disk sequence number, MAC Address of Network Card, mainboard sequence number and CPU sequence number.If there are two classes identical or the CPU sequence number is identical in hardware adaptive mechanism Policy description hard disk sequence number, MAC Address of Network Card and mainboard sequence number three kind equipments of this licence, then the hardware adaptive mechanism strategy is satisfied in explanation.
Fig. 8 is the main licence exemplary plot that comprises from the licence generation strategy.Total access times of this licence generation strategy explanation digital content are changeless, when producing from licence, by the access times of user's input from licence, and deduct corresponding number of times from main licence.
To shown in Figure 8, a kind of digital contents hardware binding and moving method with both copyright sides controllable function comprises the following step as Fig. 1:
1) digital content encapsulation: at first, content supplier is by the original license of content server generation digital content, and original license comprises unique identification, version, digital content service regeulations and the information such as main licence generation rule, issuing time and term of life of digital content; Then digital content is carried out encryption, the decruption key of digital content is inserted into original license; Digital content, original license and integrity check information after will encrypting at last is packaged into the original license bag and sends to copyright server, the digital content after encrypting and integrity check information is packaged into digital content package is published to the website and downloads or be burnt to laser disc and sell;
2) main licence application: main licence refers to the licence that the service orientation content server is directly applied for, is called from licence by the licence that main licence produced, and main licence application comprises licence application, generation and granting three phases;
1. the main licence application stage: the copyright control device that is positioned at client produces the equipment licence of client machine, the characteristic information of the attribute binding collection binding client computer related hardware equipment of equipment licence, the copyright control device is packaged into the license request bag with equipment licence, digital content sign, paying receipt encryption back and integrity check information and sends to copyright server application master licence;
2. main licence generation phase: after the integrality of copyright server checking license request bag and the correctness of paying receipt, search the original license of digital content, and according to the main licence generation rule of original license require, license issuance history (with the equipment licence contrast of providing main licence) etc. determines whether to provide main licence; Provide if agree, then at first generate applicant's main licence and in its rule set, be provided with from licence generation strategy rule according to the digital content service regeulations in the original license and main licence generation rule, concentrate in the equipment license rules then the hardware adaptive mechanism policing rule is set, last in main licence property set bound device licence and generate final main licence, and equipment licence and relevant release information are kept in the licence history library;
3. the main license issuance stage: copyright server is encrypted the back with main licence, equipment licence and is constituted the copyright control device that the licence bag sends to client with relevant integrity check information, time stamp, term of validity encapsulation back;
3) digital content is used: after promptly the user obtained digital content package and gets a license from website or other channels, the copyright control device was asked according to the user, obtained decruption key to correlated digital contents decryption and the process that provides the user to use from licence.At first, at the operation requests that the user provides, the copyright control device determines by the licence interpreter whether the rule of licence allows this operation after the integrality and validity of checking digital content and licence, if do not allow, and then shut-down operation; If license rules required at first checkout facility licence before allowing, then controller extracts the characteristic information of licence place client computer related hardware equipment, and check whether these characteristic informations meet equipment licence hardware adaptive mechanism policing rule, if do not meet, then refusal operation, otherwise allow this operation; If allow this operation, the copyright control device from licence, obtain secret key decryption correlated digital content and the user be provided this manipulate;
4) digital content devices migration: the client computer that title has had main licence is main client computer, and the client computer that digital content is desired to move to is the migration client computer, when the user need use digital content on the migration client computer, uses following migration step:
1. migration request stage: the copyright control device that is positioned at the migration client computer produces the equipment licence of migration client computer, the attribute of this equipment licence is bound the characteristic information that collects binding migration client computer related hardware equipment, be packaged into from the license request bag after the secret key encryption of the copyright control device of migration client computer with the generation of information such as this equipment licence, digital content sign, integrity check information, time stamp and term of validity use paying receipt and send or copy to main client computer; Secret key decryption that the copyright control device utilization paying receipt of main client computer produces and checking import this equipment licence after the integrality and validity of license request bag;
2. from the licence generation phase: according to main licence set from licence generation strategy rule, but the copyright control device of user's Autonomous Control master client computer generates from licence, and can import correlation parameter (as distribute access times etc. between principal and subordinate's licence under total constant situation of access times) according to generation strategy; In general, all to be defined in the current binding of main licence is at first checked in generation before from licence equipment licence from the licence generation strategy, then the copyright control device extracts the related hardware apparatus characteristic information of main client computer, and call interpreter and check whether these characteristic informations meet the equipment licence hardware adaptive mechanism policing rule of the current binding of main licence, if do not meet, then refuse generating run, otherwise allow this operation.This strategy is in order to guarantee that main licence is on the machine of binding, prevents from that the user from copying main licence to re-use generation strategy on the other machines and generate from licence.The copyright control device of main client computer is provided with the hardware adaptive mechanism policing rule of equipment licence of migration client computer according to generation strategy then, at last at the equipment licence of binding migration client computer from the licence property set;
3. from the license issuance stage: the copyright control device of main client computer will be packaged into migration licence bag after the equipment licence of licence, migration client computer and the secret key encryption that relevant integrity check information, time stamp, the term of validity use the paying receipt to generate and send or copy to client computer migration client computer.
Described licence be a kind of tlv triple of forming by the U-Datalog logical program D, IDB, BV}, wherein D is the unique identifier of the digital content protected of licence, IDB is the intension rule set, BV is the attribute binding form that is expressed as name ≡ value form.Licence is expressed as lic (D, Δ), and wherein, D is the unique identifier of the digital content protected of licence, and Δ is the identifier of licence program P=IDB ∪ BV.
Described at the digital content encapsulated phase, the original occupancy permit of generation digital content, original license can comprise the information such as unique identification, version, main licence create-rule, issuing time and term of life of digital content; Then digital content is carried out encryption, the decruption key of digital content is inserted into original license; Digital content after will encrypting at last, original license etc. are packaged into the original license bag and send to copyright server, and the digital content after encrypting etc. is packaged into digital content package to be provided and download or sell.
Described at the digital content encapsulated phase, can encrypt respectively different parts by the structure of digital content, the form of the decrypted digital content key being formed key tree is encapsulated in the licence, when using digital content, only decipher the key that obtains the partial content that can satisfy use in the licence and get final product.
Described in the main licence application stage, produce the equipment licence of client machine, the characteristic information of the attribute binding collection binding client computer related hardware equipment of equipment licence is packaged into the license request bag with equipment licence, paying receipt etc. then and sends to copyright server application master licence.
Described in main licence generation and granting stage, main licence create-rule according to original license generates applicant's main licence and concentrates setting from licence generation strategy rule in main license rules, at the concentrated hardware adaptive mechanism policing rule that is provided with of equipment license rules, last in main licence property set bound device licence and generate final main licence, then main licence, equipment licence etc. is packaged into the licence bag and sends to client copyright control device.
Described in the digital content operational phase, at using operation requests, the copyright control device determines by the licence interpreter whether the rule of licence allows this operation, if do not allow, and then shut-down operation.If license rules required at first checkout facility licence before allowing, then controller extracts the characteristic information of licence place client computer related hardware equipment, and check whether these characteristic informations meet equipment licence hardware adaptive mechanism policing rule, if do not meet, then refusal operation, otherwise allow this operation.
The described migration request stage in the digital content devices migration, produce the equipment licence of migration client computer, the characteristic information of the attribute binding collection binding migration client computer related hardware equipment of equipment licence, send or copy to the main client computer that has licence with being packaged into from the license request bag after the relevant informations such as secret key encryption equipment licence of using the paying receipt to generate, secret key decryption that main client computer utilization paying receipt produces and checking are from the license request bag.
Described digital content devices migration from the licence generation phase, according to main licence set from licence generation strategy rule, but user's Autonomous Control generate from licence, and can import correlation parameter according to generation strategy; In general, all to be defined in the current binding of main licence is at first checked in generation before from licence equipment licence from the licence generation strategy, promptly extract the related hardware apparatus characteristic information of the current place of main licence machine, and call interpreter and check whether these characteristic informations meet the equipment licence hardware adaptive mechanism policing rule of the current binding of main licence, if do not meet, then refuse generating run, otherwise allow this operation.The hardware adaptive mechanism policing rule of migration client devices licence is set according to generation strategy then, from the licence property set, binding this equipment licence at last, and the secret key encryption that utilizes the paying receipt to generate is packaged into the bag transmission of migration licence or copies the migration client computer to after information such as licence, equipment licence.
Described in the digital content devices migration phase, main client computer also can be the client computer that has from licence, but should should have the policing rule of regeneration from licence from licence.
Described in the main licence application stage with in migration request stage of digital content devices migration, the hardware characteristics information binding of equipment licence can comprise digital certificates, Attribute certificate or other mobile hardware mark such as smart card, the hardware keys etc. of user's authentication characteristic information as the binding user, the user must transfer to this equipment with corresponding authentication characteristic information and could use when digital content is moved to other equipment.
Described in the main licence application stage with in the digital content devices migration phase; the attribute binding collection of equipment licence is in binding client computer related hardware apparatus characteristic information; can utilize the localization information (as the password of user input etc.) of client computer that the hardware device features information of extracting is encrypted or after monotonic transformation and hiding handles; be tied to the equipment licence again; can prevent copyright server identification user's hardware device content, the protection privacy.Use or migration phase when needing comparative apparatus in digital content, the binding information that the hardware device features information of current extraction is done after the same processing with the equipment licence again compares.
Described in the interpreter of licence, comprise a kind of routine call predicate, the routine call predicate causes between the licence can interoperability and call mutually.If affairs T, Δ is the identifier of licence program P=IDB ∪ BV, the routine call predicate comprises following two classes: the I type calls predicate Call (T): determine to call this predicate program and whether can satisfy T, if T is that renewal satiable and that cause is consistent, predicate returns true, otherwise returns false; The II type calls predicate Call, and (Δ, T): determine whether the program Δ can satisfy T, if can satisfy and renewal that T causes is consistent to the program Δ, predicate returns true, otherwise returns false.
Claims (10)
1. a digital contents hardware binding and moving method with both copyright sides controllable function comprises the following step:
1) digital content encapsulation: at first, content supplier is by the original license of content server generation digital content, and original license comprises unique identification, version, digital content service regeulations and the information such as main licence generation rule, issuing time and term of life of digital content; Then digital content is carried out encryption, the decruption key of digital content is inserted into original license; Digital content, original license and integrity check information after will encrypting at last is packaged into the original license bag and sends to copyright server, the digital content after encrypting and integrity check information is packaged into digital content package is published to the website and downloads or be burnt to laser disc and sell;
2) main licence application: main licence refers to the licence that the service orientation content server is directly applied for, is called from licence by the licence that main licence produced, and main licence application comprises licence application, generation and granting three phases;
1. the main licence application stage: the copyright control device that is positioned at client produces the equipment licence of client machine, the characteristic information of the attribute binding collection binding client computer related hardware equipment of equipment licence, the copyright control device is packaged into the license request bag with equipment licence, digital content sign, paying receipt encryption back and integrity check information and sends to copyright server application master licence;
2. main licence generation phase: after the integrality of copyright server checking license request bag and the correctness of paying receipt, search the original license of digital content, and according to the main licence generation rule of original license require, license issuance history (with the equipment licence contrast of providing main licence) etc. determines whether to provide main licence; Provide if agree, then at first generate applicant's main licence and in its rule set, be provided with from licence generation strategy rule according to the digital content service regeulations in the original license and main licence generation rule, concentrate in the equipment license rules then the hardware adaptive mechanism policing rule is set, last in main licence property set bound device licence and generate final main licence, and equipment licence and relevant release information are kept in the licence history library;
3. the main license issuance stage: copyright server is encrypted the back with main licence, equipment licence and is constituted the copyright control device that the licence bag sends to client with relevant integrity check information, time stamp, term of validity encapsulation back;
3) digital content is used: after promptly the user obtained digital content package and gets a license from website or other channels, the copyright control device was asked according to the user, obtained decruption key to correlated digital contents decryption and the process that provides the user to use from licence.At first, at the operation requests that the user provides, the copyright control device determines by the licence interpreter whether the rule of licence allows this operation after the integrality and validity of checking digital content and licence, if do not allow, and then shut-down operation; If license rules required at first checkout facility licence before allowing, then controller extracts the characteristic information of licence place client computer related hardware equipment, and check whether these characteristic informations meet equipment licence hardware adaptive mechanism policing rule, if do not meet, then refusal operation, otherwise allow this operation; If allow this operation, the copyright control device from licence, obtain secret key decryption correlated digital content and the user be provided this manipulate;
4) digital content devices migration: the client computer that title has had main licence is main client computer, and the client computer that digital content is desired to move to is the migration client computer, when the user need use digital content on the migration client computer, uses following migration step:
1. migration request stage: the copyright control device that is positioned at the migration client computer produces the equipment licence of migration client computer, the attribute of this equipment licence is bound the characteristic information that collects binding migration client computer related hardware equipment, be packaged into from the license request bag after the secret key encryption of the copyright control device of migration client computer with the generation of information such as this equipment licence, digital content sign, integrity check information, time stamp and term of validity use paying receipt and send or copy to main client computer; Secret key decryption that the copyright control device utilization paying receipt of main client computer produces and checking import this equipment licence after the integrality and validity of license request bag;
2. from the licence generation phase: according to main licence set from licence generation strategy rule, but the copyright control device of user's Autonomous Control master client computer generates from licence, and can import correlation parameter (as distribute access times etc. between principal and subordinate's licence under total constant situation of access times) according to generation strategy; In general, all to be defined in the current binding of main licence is at first checked in generation before from licence equipment licence from the licence generation strategy, then the copyright control device extracts the related hardware apparatus characteristic information of main client computer, and call interpreter and check whether these characteristic informations meet the equipment licence hardware adaptive mechanism policing rule of the current binding of main licence, if do not meet, then refuse generating run, otherwise allow this operation.This strategy is in order to guarantee that main licence is on the machine of binding, prevents from that the user from copying main licence to re-use generation strategy on the other machines and generate from licence.The copyright control device of main client computer is provided with the hardware adaptive mechanism policing rule of equipment licence of migration client computer according to generation strategy then, at last at the equipment licence of binding migration client computer from the licence property set;
3. from the license issuance stage: the copyright control device of main client computer will be packaged into migration licence bag after the equipment licence of licence, migration client computer and the secret key encryption that relevant integrity check information, time stamp, the term of validity use the paying receipt to generate and send or copy to client computer migration client computer.
2. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function; it is characterized in that: described licence is a kind of tlv triple { D that is made up of the U-Datalog logical program; IDB; BV}; wherein D is the unique identifier of the digital content protected of licence; IDB is the intension rule set, and BV is the attribute binding form that is expressed as name ≡ value form.
3. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described at the digital content encapsulated phase, produce the original license of digital content, original license can comprise unique identification, version, digital content service regeulations and the information such as main licence generation rule, issuing time and term of life of digital content; Then digital content is carried out encryption, the decruption key of digital content is inserted into original license; Digital content after will encrypting at last, original license etc. are packaged into the original license bag and send to copyright server, and the digital content after encrypting etc. is packaged into digital content package to be provided and download or sell.
4. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described in the main licence application stage, produce the equipment licence of client machine, the characteristic information of the attribute binding collection binding client computer related hardware equipment of equipment licence is packaged into the license request bag with equipment licence, paying receipt etc. then and sends to copyright server application master licence.
5. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described in main licence generation and granting stage, according to the digital content service regeulations of original license with main licence generation rule generates applicant's main licence and concentrate in main license rules and to be provided with from licence generation strategy rule, at the concentrated hardware adaptive mechanism policing rule that is provided with of equipment license rules, last in main licence property set bound device licence and generate final main licence, then with main licence, equipment licence etc. is packaged into the licence bag and sends to client copyright control device.
6. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described in the digital content operational phase, at using operation requests, the copyright control device determines by the licence interpreter whether the rule of licence allows this operation, if do not allow, then shut-down operation.If license rules required at first checkout facility licence before allowing, then controller extracts the characteristic information of All Clients related hardware equipment, and check whether these characteristic informations meet equipment licence hardware adaptive mechanism policing rule, if do not meet, then refusal operation, otherwise allow this operation.
7. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: the described migration request stage in the digital content devices migration, produce the equipment licence of migration client computer, the characteristic information of the attribute binding collection binding migration client computer related hardware equipment of this equipment licence, send or copy to the main client computer that has licence with being packaged into from the license request bag after the relevant informations such as this equipment licence of secret key encryption of using the paying receipt to generate, secret key decryption that main client computer utilization paying receipt produces and checking are from the license request bag.
8. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described digital content devices migration from the licence generation phase, according to main licence set from licence generation strategy rule, but user's Autonomous Control generates from licence, and can import correlation parameter according to generation strategy; In general, all to be defined in the current binding of main licence is at first checked in generation before from licence equipment licence from the licence generation strategy, promptly extract the characteristic information of main client computer related hardware equipment, and call interpreter and check whether these characteristic informations meet the equipment licence hardware adaptive mechanism policing rule of the current binding of main licence, if do not meet, then refuse generating run, otherwise allow this operation.The hardware adaptive mechanism policing rule of migration client devices licence is set according to generation strategy then, last equipment licence in binding migration client computer from the licence property set, and the secret key encryption that utilizes the paying receipt to generate is packaged into the bag transmission of migration licence or copies the migration client computer to after information such as licence, equipment licence.
9. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described in the main licence application stage with in migration request stage of digital content devices migration, the hardware characteristics information binding of equipment licence can comprise the digital certificates of user's authentication characteristic information as the binding user, Attribute certificate or other mobile hardware mark such as smart card, hardware keys etc., the user must transfer to this equipment with corresponding authentication characteristic information and could use when digital content is moved to other equipment.
10. a kind of digital contents hardware binding and moving method according to claim 1 with both copyright sides controllable function, it is characterized in that: described in the interpreter of licence, comprise a kind of routine call predicate, the routine call predicate causes between the licence can interoperability and call mutually.If affairs T, Δ are the identifiers of licence program P=IDB ∪ BV, the routine call predicate comprises following two classes:
1) the I type calls predicate Call (T): determine to call this predicate program and whether can satisfy T, if T is that renewal satiable and that cause is consistent, predicate returns true, otherwise returns false;
2) the II type calls predicate Call (Δ, T): determine whether the program Δ can satisfy T, if can satisfy and renewal that T causes is consistent to the program Δ, predicate returns true, otherwise returns false.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200810027787 CN101320408A (en) | 2008-04-30 | 2008-04-30 | Digital contents hardware binding and emigration method with both copyright sides controllable function |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200810027787 CN101320408A (en) | 2008-04-30 | 2008-04-30 | Digital contents hardware binding and emigration method with both copyright sides controllable function |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101320408A true CN101320408A (en) | 2008-12-10 |
Family
ID=40180452
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200810027787 Pending CN101320408A (en) | 2008-04-30 | 2008-04-30 | Digital contents hardware binding and emigration method with both copyright sides controllable function |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101320408A (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101826140A (en) * | 2009-02-25 | 2010-09-08 | 富士通株式会社 | Content management device with right |
| CN101770794B (en) * | 2008-12-26 | 2011-08-03 | 同方股份有限公司 | Digital copyright protection method and management device thereof for digital video disc system |
| CN101651543B (en) * | 2009-09-04 | 2012-02-01 | 瑞达信息安全产业股份有限公司 | Creditable calculation platform key migration system and key migration method thereof |
| CN102457522A (en) * | 2010-10-29 | 2012-05-16 | 奥多比公司 | Method and system for migrating content licenses |
| CN103927497A (en) * | 2014-04-25 | 2014-07-16 | 华为技术有限公司 | NDM file protection method and device |
| CN103944856A (en) * | 2013-01-17 | 2014-07-23 | 华为终端有限公司 | Authority transfer method and device |
| CN101719910B (en) * | 2009-11-16 | 2015-02-11 | 北京数字太和科技有限责任公司 | Terminal equipment for realizing content protection and transmission method thereof |
| WO2015196642A1 (en) * | 2014-06-23 | 2015-12-30 | 中兴通讯股份有限公司 | Data encryption method, decryption method and device |
| CN106960162A (en) * | 2017-03-24 | 2017-07-18 | 北京深思数盾科技股份有限公司 | A kind of data sharing method, apparatus and system |
| CN106971094A (en) * | 2017-03-21 | 2017-07-21 | 北京深思数盾科技股份有限公司 | Software digital permits transfer method and system |
| CN110704814A (en) * | 2018-07-09 | 2020-01-17 | 中移物联网有限公司 | Anti-copy method and device, and storage medium |
| CN116319949A (en) * | 2022-12-19 | 2023-06-23 | 北京开科唯识技术股份有限公司 | Session migration method, session migration device, terminal equipment and storage medium |
-
2008
- 2008-04-30 CN CN 200810027787 patent/CN101320408A/en active Pending
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101770794B (en) * | 2008-12-26 | 2011-08-03 | 同方股份有限公司 | Digital copyright protection method and management device thereof for digital video disc system |
| CN101826140B (en) * | 2009-02-25 | 2013-10-02 | 富士通株式会社 | Content management apparatus with rights |
| CN101826140A (en) * | 2009-02-25 | 2010-09-08 | 富士通株式会社 | Content management device with right |
| CN101651543B (en) * | 2009-09-04 | 2012-02-01 | 瑞达信息安全产业股份有限公司 | Creditable calculation platform key migration system and key migration method thereof |
| CN101719910B (en) * | 2009-11-16 | 2015-02-11 | 北京数字太和科技有限责任公司 | Terminal equipment for realizing content protection and transmission method thereof |
| CN102457522A (en) * | 2010-10-29 | 2012-05-16 | 奥多比公司 | Method and system for migrating content licenses |
| CN102457522B (en) * | 2010-10-29 | 2016-03-09 | 奥多比公司 | For the method and system of transferring content license |
| CN103944856A (en) * | 2013-01-17 | 2014-07-23 | 华为终端有限公司 | Authority transfer method and device |
| US10503930B2 (en) | 2014-04-25 | 2019-12-10 | Huawei Technologies Co., Ltd. | NDM file protection method and apparatus |
| CN103927497A (en) * | 2014-04-25 | 2014-07-16 | 华为技术有限公司 | NDM file protection method and device |
| CN103927497B (en) * | 2014-04-25 | 2017-07-14 | 华为技术有限公司 | NDM document protection methods and device |
| WO2015196642A1 (en) * | 2014-06-23 | 2015-12-30 | 中兴通讯股份有限公司 | Data encryption method, decryption method and device |
| CN106971094A (en) * | 2017-03-21 | 2017-07-21 | 北京深思数盾科技股份有限公司 | Software digital permits transfer method and system |
| CN106971094B (en) * | 2017-03-21 | 2018-09-21 | 北京深思数盾科技股份有限公司 | Software digital permits transfer method and system |
| CN106960162A (en) * | 2017-03-24 | 2017-07-18 | 北京深思数盾科技股份有限公司 | A kind of data sharing method, apparatus and system |
| CN110704814A (en) * | 2018-07-09 | 2020-01-17 | 中移物联网有限公司 | Anti-copy method and device, and storage medium |
| CN110704814B (en) * | 2018-07-09 | 2022-02-01 | 中移物联网有限公司 | Anti-copy method and device, and storage medium |
| CN116319949A (en) * | 2022-12-19 | 2023-06-23 | 北京开科唯识技术股份有限公司 | Session migration method, session migration device, terminal equipment and storage medium |
| CN116319949B (en) * | 2022-12-19 | 2023-11-14 | 北京开科唯识技术股份有限公司 | Session migration method, session migration device, terminal equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101320408A (en) | Digital contents hardware binding and emigration method with both copyright sides controllable function | |
| CN109598616B (en) | Method for protecting privacy of blockchain data by introducing arbitration mechanism | |
| JP7236992B2 (en) | Methods and systems implemented by blockchain | |
| CN102333236B (en) | Video content encryption and decryption system | |
| CN101107611B (en) | Private and controlled ownership sharing method, device and system | |
| CN101573936B (en) | Digital rights management using trusted processing techniques | |
| CN103189872B (en) | Safety in networked environment and the effectively method and apparatus of Content Selection | |
| EP2420036B1 (en) | Method and apparatus for electronic ticket processing | |
| DE69230429T2 (en) | Securing / recovering the environment of a secret transmission device and duplication in a cryptosystem with public key | |
| CN109376504A (en) | A kind of picture method for secret protection based on block chain technology | |
| CN102224703B (en) | Method, device and system for issuing license | |
| KR20180114942A (en) | Method and system for protecting computer software using distributed hash tables and block chains | |
| EP1277300A1 (en) | System and method for controlling and enforcing access rights to encrypted media | |
| EP2289013B1 (en) | A method and a device for protecting private content | |
| CN103186723B (en) | The method and system of digital content security cooperation | |
| CN111818000B (en) | Block chain-based distributed Digital Rights Management (DRM) system | |
| CN110061967A (en) | Business datum providing method, device, equipment and computer readable storage medium | |
| CN103561091A (en) | Document outgoing control system and method | |
| CN114267100A (en) | Unlocking authentication method and device, security chip and electronic key management system | |
| CN114429267A (en) | Method, system and device for wind control of digital work copyright and storage medium | |
| CN104348800A (en) | Method and device for generating and using digital content certificate | |
| CN106161187B (en) | Method, equipment and system for providing public information service based on instant message | |
| CN112911018A (en) | Block chain-based network community credit investigation management method | |
| CN112488686B (en) | Secure payment method, system, electronic device and readable storage medium | |
| KR20070113510A (en) | Method and device for security on digital rights management system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20081210 |