[go: up one dir, main page]

CN101196971A - A method and system for implementing authorization management on digital content - Google Patents

A method and system for implementing authorization management on digital content Download PDF

Info

Publication number
CN101196971A
CN101196971A CNA2007101797872A CN200710179787A CN101196971A CN 101196971 A CN101196971 A CN 101196971A CN A2007101797872 A CNA2007101797872 A CN A2007101797872A CN 200710179787 A CN200710179787 A CN 200710179787A CN 101196971 A CN101196971 A CN 101196971A
Authority
CN
China
Prior art keywords
section
digital content
digital
file
ticket
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2007101797872A
Other languages
Chinese (zh)
Other versions
CN101196971B (en
Inventor
汤帜
高飞
洪献文
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New Founder Holdings Development Co ltd
Peking University
Founder Apabi Technology Ltd
Original Assignee
Peking University
Peking University Founder Group Co Ltd
Beijing Founder Apabi Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Peking University, Peking University Founder Group Co Ltd, Beijing Founder Apabi Technology Co Ltd filed Critical Peking University
Priority to CN2007101797872A priority Critical patent/CN101196971B/en
Publication of CN101196971A publication Critical patent/CN101196971A/en
Application granted granted Critical
Publication of CN101196971B publication Critical patent/CN101196971B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

本发明公开了一种对数字内容进行授权管理的实现方法及系统,应用于数字权限管理技术领域,该方法包括:根据文件的不同格式,利用相应的制作工具,对文件进行分段处理,添加段的索引标识。在授权许可证文件中,根据业务需求,针对段进行授权控制。用户在使用阅读/视频软件进行操作时,软件先根据要获取的操作对象的段号,在授权许可证文件中查看用户是否具备相应的权限,若具有相应的权限,允许用户继续完成该操作,使用该段数字内容;若不具有相应的权限,则停止对该段操作并提示用户。

Figure 200710179787

The invention discloses a method and system for realizing authorization management of digital content, which is applied in the technical field of digital rights management. The index ID of the segment. In the authorization license file, the authorization control is carried out for segments according to business requirements. When the user uses the reading/video software to operate, the software first checks whether the user has the corresponding authority in the authorization license file according to the segment number of the operation object to be obtained. If the user has the corresponding authority, the user is allowed to continue to complete the operation. Use this piece of digital content; if you do not have the corresponding permission, stop the operation on this piece and prompt the user.

Figure 200710179787

Description

一种对数字内容进行授权管理的实现方法及系统 A method and system for implementing authorization management on digital content

技术领域technical field

本发明涉及数字权限管理技术(digital right management,DRM)领域,尤指一种对数字内容进行授权管理的实现方法及系统。The invention relates to the field of digital rights management technology (digital rights management, DRM), in particular to a method and system for implementing authorization management of digital content.

背景技术Background technique

在数字内容中,随着应用的进一步丰富和发展,越来越多的要求对数字内容不同部分进行不同的授权管理策略,比如电子书的前20页内容可进行免费翻阅,或者对无打印权限图书中的某张图片附加打印权限,或者对音视频文件中的某个段进行控制等等,这些新的业务需求都要求我们要对授权策略有更精确的控制。而目前对于数字内容中的流媒体来说,采取的策略则是直接在权利描述中控制播放时间范围,对于平面媒体所采用的策略则是:将需要特殊控制的部分内容摘录成一个单独的文件,以进行相应的授权控制,即控制的粒度都是在整个文件的基础上。而摘录则意味着再加工制作文件,并且一旦业务变化则需要重新制作文件,灵活性较低,这在效率上影响业务发展,同时多个文件的拆分组合会对用户造成一定的使用障碍。In digital content, with the further enrichment and development of applications, there are more and more requirements for different authorization management strategies for different parts of digital content. Adding printing permissions to a certain picture in a book, or controlling a certain segment in an audio and video file, etc. These new business requirements require us to have more precise control over the authorization strategy. At present, for streaming media in digital content, the strategy adopted is to directly control the playback time range in the rights description, and the strategy adopted for print media is to extract some content that requires special control into a separate file , to carry out corresponding authorization control, that is, the granularity of control is based on the entire file. The excerpt means reprocessing and making files, and once the business changes, the files need to be remade, which is less flexible, which affects business development in terms of efficiency, and the splitting and combination of multiple files will cause certain obstacles to users.

发明内容Contents of the invention

本发明实施例提供一种对数字内容进行授权管理的实现方法及系统,使数字内容在授权过程中可以针对段进行操作,实现了对数字内容更加细粒度的控制。Embodiments of the present invention provide a method and system for implementing authorization management on digital content, so that digital content can be operated on segments during the authorization process, and more fine-grained control on digital content is realized.

一种对数字内容进行授权管理的实现方法,包括:A method for realizing authorization management of digital content, comprising:

对数字内容分段,生成数字文件;以及进行段的操作权限约束,生成对应的授权许可证文件;Segment digital content and generate digital files; and perform segment operation authority constraints to generate corresponding authorization license files;

执行所述数字文件时,根据所述授权许可证文件,对各段按其对应的操作权限约束进行操作。When executing the digital file, according to the authorization license file, each segment is operated according to its corresponding operation authority constraint.

根据本发明的上述方法,所述对数字内容分段,具体包括:According to the above method of the present invention, the segmenting of the digital content specifically includes:

在数字内容中,添加索引表,在所述索引表的每条记录中存储段标识以及指明每段所包含的数字内容。In the digital content, an index table is added, and a segment identifier is stored in each record of the index table and the digital content contained in each segment is indicated.

根据本发明的上述方法,所述指明每段所包含的数字内容,具体包括:According to the above-mentioned method of the present invention, specifying the digital content included in each paragraph specifically includes:

利用数字内容中的对象号表示段所包含的数字内容的起始位置和结束位置;或者use the object number in the digital content to indicate the beginning and end of the digital content contained in the segment; or

在索引表中列出每一段所指向的对象号;或者List the object number to which each segment points in the index table; or

用相对于文件开头位置的偏移量来指明每一段所包含的数字内容的起始位置和结束位置。Use offsets relative to the beginning of the file to indicate the starting and ending positions of the digital content contained in each segment.

根据本发明的上述方法,各段所包含的数字内容全部不同,或部分相同。According to the above method of the present invention, the digital contents contained in each segment are all different, or partly the same.

根据本发明的上述方法,所述进行段的操作权限约束,生成对应的授权许可证文件,具体为:According to the above-mentioned method of the present invention, the operation authority restriction of the performing segment is used to generate a corresponding authorization license file, specifically:

描述段被允许的操作类型,以及其对应的允许操作次数和/或允许操作的时间段,生成所述授权许可文件。Describe the type of operation allowed by the segment, and the corresponding number of allowed operations and/or the time period for which the operation is allowed, and generate the authorization file.

根据本发明的上述方法,所述生成数字文件及对应的授权许可证文件,还包括:According to the above method of the present invention, said generating digital files and corresponding authorization license files also includes:

在数字文件中添加授权许可证文件的存储位置标识。Add the storage location identification of the authorized license file in the digital file.

根据本发明的上述方法,所述生成数字文件及对应的授权许可证文件之后,还包括:According to the above method of the present invention, after generating the digital file and the corresponding authorization license file, it also includes:

发布数字文件及对应的授权许可证文件。Publish digital files and corresponding authorization license files.

根据本发明的上述方法,所述执行所述数字文件时,根据所述授权许可证文件,对各段按其对应的操作权限约束进行操作,包括:According to the above method of the present invention, when the digital file is executed, according to the authorization license file, each segment is operated according to its corresponding operation authority constraints, including:

由用户软件对所述数字文件中的段进行操作,并根据所述授权许可证文件确定当前段是否具有相应的操作权限,若是,则继续完成对该段的操作;若否,则停止对该段操作并提示用户。Operate the segment in the digital file by the user software, and determine whether the current segment has the corresponding operating authority according to the authorization license file, if so, continue to complete the operation of the segment; if not, stop the operation of the segment segment operation and prompt the user.

根据本发明的上述方法,所述由用户软件对所述数字文件中的段进行操作,具体包括:According to the above method of the present invention, the operation of the segment in the digital file by the user software specifically includes:

由用户软件从所述数字文件的第一段开始,按序对每一段进行操作;或者the user software operates on each segment in sequence beginning with the first segment of said digital file; or

由用户软件从所述数字文件中被授权的任意一段开始,对被授权的每一段进行操作。The user software operates on each authorized segment starting with any authorized segment in the digital file.

根据本发明的上述方法,所述根据授权许可证文件确定当前段是否具有相应的操作权限,包括:According to the above method of the present invention, said determining whether the current segment has corresponding operation authority according to the authorized license file includes:

确定所述授权许可证文件中是否对当前段进行了授权;以及determining whether the current segment is authorized in the authorized license file; and

确定当前段的操作是否超过了操作权限约束的允许范围,包括操作次数是否已经超过了授权的允许操作次数和/或操作时间是否已经超过了授权的允许操作时间。Determine whether the operation of the current segment exceeds the allowable range of the operation authority constraints, including whether the number of operations has exceeded the authorized number of operations and/or whether the operation time has exceeded the authorized operation time.

根据本发明的上述方法,所述由用户软件对所述数字文件中的段进行操作之前,还包括:According to the above method of the present invention, before the user software operates on the segments in the digital file, it also includes:

判断所述数字文件是否是数字权限管理技术DRM保护的文件,若是,则获取所述授权许可证文件,并根据所述授权许可证文件对各段进行操作权限确定;若否,直接对所述数字文件各段进行操作。Judging whether the digital file is a file protected by digital rights management technology DRM, if so, then obtain the authorization license file, and determine the operation authority of each section according to the authorization license file; if not, directly Digital file segments are manipulated.

根据本发明的上述方法,所述由用户软件对数字文件进行操作,包括:存储有所述用户软件的客户端登录发布所述数字文件和授权许可证文件的发布端进行在线操作;或者According to the above method of the present invention, the operation of the digital file by the user software includes: the client that stores the user software logs in to the issuer that issues the digital file and authorizes the license file to perform online operations; or

存储有所述用户软件的客户端先将所述数字文件和授权许可证文件下载到本地后再进行操作。The client end storing the user software first downloads the digital file and the authorization license file to the local area before performing operations.

根据本发明的上述方法,所述数字内容包括流媒体和平面媒体。According to the above method of the present invention, the digital content includes streaming media and plane media.

一种数字内容发布端,包括:制作模块和发布模块;A digital content publishing terminal, including: a production module and a publishing module;

所述制作模块,用于对数字内容分段,并进行段的操作权限约束,生成数字文件及对应的授权许可证文件;The production module is used to segment the digital content, restrict the operation authority of the segment, and generate a digital file and a corresponding authorization license file;

所述发布模块,用于发布所述数字文件及对应的授权许可证文件。The issuing module is used to issue the digital file and the corresponding authorized license file.

本发明的上述数字内容发布端,所述制作模块包括:In the above-mentioned digital content distribution terminal of the present invention, the production module includes:

第一制作子模块,用于生成索引表,在所述索引表的每条记录中存储段标识以及指明每段所包含的数字内容;The first production submodule is used to generate an index table, store a segment identifier in each record of the index table and indicate the digital content contained in each segment;

第二制作子模块,用于描述各段被允许的操作类型及其对应的允许操作次数;The second production sub-module is used to describe the type of operations allowed for each segment and the corresponding allowed number of operations;

第三制作子模块,用于根据待发布的数字内容以及第一制作子模块和第二制作子模块的输出,制作数字文件及对应的授权许可证文件,并在制作的数字文件中添加授权许可证文件的存储位置标识。The third production sub-module is used to produce digital files and corresponding authorization license files according to the digital content to be released and the output of the first production sub-module and the second production sub-module, and add the authorization license to the produced digital files ID of the storage location of the certificate file.

一种数字内容接收端,包括判断模块和操作模块;A digital content receiver, including a judging module and an operating module;

所述判断模块,用于根据授权许可证文件确定数字文件中的段是否具有操作权限;The judging module is used to determine whether the segment in the digital file has operation authority according to the authorized license file;

所述操作模块,用于对所述数字文件中的段按其对应的操作权限约束进行操作。The operation module is configured to operate the segments in the digital file according to their corresponding operation authority constraints.

本发明的上述数字内容接收端,所述判断模块包括第一判断子模块和第二判断子模块;In the digital content receiving end of the present invention, the judging module includes a first judging submodule and a second judging submodule;

所述第一判断子模块,用于判断当前段是否具有请求的操作类型;若是,则通知给所述第二判断子模块;否则,通知所述操作模块对当前段停止操作;The first judging submodule is used to judge whether the current segment has the requested operation type; if so, notify the second judging submodule; otherwise, notify the operating module to stop operating the current segment;

所述第二判断子模块,用于判断当前段的操作是否超过操作权限约束的允许范围,若是,则通知所述操作模块对当前段停止操作;否则,通知所述操作模块对当前段执行对应操作。The second judging submodule is used to judge whether the operation of the current segment exceeds the allowable range of operation authority constraints, and if so, notify the operation module to stop operating the current segment; otherwise, notify the operation module to perform corresponding operations on the current segment. operate.

一种授权管理系统,包括:发布端和接收端;An authorization management system, including: a publishing end and a receiving end;

所述发布端,用于对数字内容分段,并进行段的操作权限约束,生成数字文件及对应的授权许可证文件并发布;The publishing end is used for segmenting the digital content, restricting the operating authority of the segment, generating and publishing the digital file and the corresponding authorization license file;

所述接收端,用于执行所述发布端发布的所述数字文件,并根据所述授权许可证文件,对各段按其对应的操作权限约束进行操作。The receiving end is configured to execute the digital file issued by the issuing end, and operate each segment according to its corresponding operating authority constraints according to the authorization license file.

本发明实施例提供了一种对数字内容更加细粒度的进行保护的方法及系统,即对数字内容(无论是流媒体或平面媒体)进行段的划分,以段为单位进行编号、添加索引表,针对段进行相应的授权控制,有效地避免了文件的拆分与组合;并且由于段的内容可以根据业务需要进行划分,其范围也可以交叉和重复,实现了对数字内更加灵活容的控制,满足了业务上的灵活需求,提高了业务处理的效率;同时这种对数字内容分段进行授权管理的方法可以适用现有文件格式,对不同格式文件具有很好的通用性。The embodiment of the present invention provides a method and system for more fine-grained protection of digital content, that is, digital content (whether it is streaming media or print media) is divided into segments, numbered in units of segments, and an index table is added , to carry out corresponding authorization control for the segment, effectively avoiding file splitting and combination; and because the content of the segment can be divided according to business needs, and its scope can also be crossed and repeated, realizing more flexible control of the digital content , which meets the flexible requirements of the business and improves the efficiency of business processing; at the same time, this method of authorization management for digital content segments can be applied to existing file formats, and has good versatility for files of different formats.

附图说明Description of drawings

图1为本发明实施例一中数字内容分段授权管理方法的流程图;FIG. 1 is a flow chart of a digital content segmentation authorization management method in Embodiment 1 of the present invention;

图2为本发明实施例二中数字内容分段授权管理方法的流程图;FIG. 2 is a flow chart of a digital content segment authorization management method in Embodiment 2 of the present invention;

图3为本发明实施例中数字内容发布端的结构示意图;FIG. 3 is a schematic structural diagram of a digital content distribution terminal in an embodiment of the present invention;

图4为本发明实施例中数字内容接收端的结构示意图。FIG. 4 is a schematic structural diagram of a digital content receiving end in an embodiment of the present invention.

具体实施方式Detailed ways

利用相应的数字内容(包括平面媒体和流媒体)制作工具,根据文件格式的处理能力及业务需要,对数字内容以段为单位进行权限控制,用户在使用该数字内容时,根据授权许可证文件中的使用权限进行相应的操作。Utilize the corresponding digital content (including print media and streaming media) production tools, according to the processing capacity of the file format and business needs, control the authority of the digital content in units of segments, and when the user uses the digital content, according to the authorization license file Use permissions in the corresponding operation.

实施例一:Embodiment one:

本发明实施例一提供的数字内容分段授权管理方法的流程如图1所示,包括以下步骤:The flow of the digital content segmentation authorization management method provided by Embodiment 1 of the present invention is shown in Figure 1, including the following steps:

步骤S101:制作数字文件。Step S101: making a digital file.

对数字内容进行分段处理,在数字文件中添加索引表,包括段号以及每段指向的内容。Segment digital content and add an index table to the digital file, including segment numbers and what each segment points to.

对于受DRM保护的数字内容,还需要在数字文件中添加授权许可证文件的存储位置标识。For DRM-protected digital content, it is also necessary to add the storage location identifier of the authorized license file to the digital file.

对数字内容进行分段时,可以根据需要进行不同形式的划分,例如:When segmenting digital content, different forms of division can be carried out according to needs, such as:

(1)对于具有对象号的现有格式文档,如CEB文档,直接使用页码的对象号进行分段,例如,第一页的对象号为01,第二页的对象号为10,第三页的对象号为11,.......;相应的以第一页作为第一段,第二页作为第二段,第三页作为第三段,.......;则索引表如下面表1所示:(1) For existing format documents with object numbers, such as CEB documents, directly use the object number of the page number for segmentation, for example, the object number of the first page is 01, the object number of the second page is 10, and the object number of the third page The object number is 11, ......; Correspondingly, the first page is used as the first paragraph, the second page is used as the second paragraph, and the third page is used as the third paragraph, .........; then The index table is shown in Table 1 below:

        表1 Table 1

 段号paragraph number   起始位置 starting point   结束位置end position  1 1   0101   0101  2 2   1010   1010  33   1111   1111  ...........   ...........   ...........

特别的,对于上述具有对象号的现有文档可以不插入索引表,当用户软件对该现有文档进行操作时直接将页码或对象号作为段号(即段标识)。In particular, the index table may not be inserted into the above-mentioned existing document with the object number, and the page number or the object number is directly used as the segment number (that is, the segment identifier) when the user software operates on the existing document.

一般通过在用户软件中添加相应的指令代码,指示用户软件在发现文件中没有索引表时,直接将页码或对象号作为段号进行相应操作。Generally, by adding corresponding instruction codes in the user software, instruct the user software to directly use the page number or object number as the segment number to perform corresponding operations when it finds that there is no index table in the file.

(2)对于(1)中所提到的现有格式文档,每一段所包含的内容也可以如表2中所示的方法表示,其范围可以交叉或重复。(2) For the existing format document mentioned in (1), the content contained in each paragraph can also be expressed as shown in Table 2, and its scope can overlap or repeat.

       表2 Table 2

 段号paragraph number   指向的对象the object pointed to  1 1   01、1001, 10  2 2   1010  33   10、1110, 11  ...........   ...........

(3)对于没有对象号的数字内容,用相对于文件开头位置的偏移量来分段,其索引表如表3所示:(3) For digital content without an object number, use the offset relative to the beginning of the file to segment, and its index table is shown in Table 3:

                        表3 table 3

  段号paragraph number  起始位置(用相对于文件开头位置的偏移量表示)Starting position (expressed as an offset relative to the beginning of the file)  结束位置(用相对于文件开头位置的偏移量表示)End position (expressed as an offset relative to the beginning of the file)   1 1   0x00000x0000   0x10000x1000   2 2   0x10000x1000   0x20000x2000   33   0x20000x2000   0x30000x3000   ...........   ...........   ...........

(4)对于没有对象号的数字内容,每一段所包含的内容也可以交叉和重复。(4) For digital content without an object number, the content contained in each segment can also be interleaved and repeated.

步骤S102:针对段进行授权控制。具体为:对数字内容以段为单位进行授权,制作相应的授权许可证文件;根据业务需求,在授权许可证文件中,添加段的约束说明,并指明涉及段标识(即段号)、范围以及授权的次数(或时间)。Step S102: Perform authorization control for segments. Specifically: authorize digital content in units of segments, and create corresponding authorization license files; according to business needs, add segment constraint descriptions to the authorization license file, and specify the segment identification (ie, segment number) and scope involved And the number (or time) of authorization.

特别的,当一个段的内容存在多个授权时,以授权次数最少的为准。In particular, when there are multiple authorizations for the content of a segment, the one with the least number of authorizations shall prevail.

还可以包括:对每一分段的内容进行加密,从而进一步保证其分段授权的安全性。It may also include: encrypting the content of each segment, so as to further ensure the security of its segment authorization.

步骤S103:发布数字文件和及其相应的授权许可证文件。Step S103: Publish the digital file and its corresponding authorized license file.

步骤S104:用户软件对数字文件进行操作。Step S104: the user software operates on the digital file.

用户软件对数字文件进行操作时,可以在线进行阅读或播放,也可以将数字文件和授权许可证文件一起下载到本地再进行阅读或播放。When the user software operates the digital file, it can read or play online, or download the digital file and the authorized license file to the local for reading or playing.

步骤S105:用户软件识别文件格式,判断数字文件是否为受DRM保护的文件,若是,则执行步骤S107,若否,则执行步骤S106。Step S105: the user software identifies the file format, and judges whether the digital file is a file protected by DRM, if yes, execute step S107, and if not, execute step S106.

步骤S106:用户软件可以继续对数字文件进行操作。Step S106: the user software can continue to operate on the digital file.

步骤S107:用户软件根据数字文件中存储的授权许可证文件的存储位置标识到指定的位置查找授权许可证文件。Step S107: The user software searches for the authorized license file at the specified location according to the storage location identifier of the authorized license file stored in the digital file.

步骤S108:用户软件对授权许可证文件进行解析,得到被授权的段号、范围以及被授权的次数。Step S108: The user software parses the authorization license file to obtain the authorized segment number, scope and authorized times.

步骤S109:用户软件从第一段开始执行操作,判断当前段(即第一段)是否被授予了相应的使用权限,若是,则执行步骤S110,若否,则执行步骤S111。Step S109: The user software starts to perform operations from the first segment, and judges whether the current segment (namely the first segment) has been granted the corresponding usage authority, if yes, execute step S110, if not, execute step S111.

步骤S110:用户软件判断该段被使用的次数是否达到了该段允许使用的最大次数(或是否超过了该段允许使用的时间),若否,则将该段的使用次数记录加1,转至步骤S112,若是,则执行步骤S111。Step S110: the user software judges whether the number of times that this section is used has reached the maximum number of times allowed by this section (or whether it has exceeded the time allowed by this section), if not, then add 1 to the use times record of this section, and turn to Go to step S112, if yes, execute step S111.

步骤S111:用户软件停止对该段的操作并提示用户不具有该段数字内容的相应使用权限,然后执行步骤S113。Step S111: the user software stops the operation of the segment and prompts the user that he does not have the corresponding right to use the segment of digital content, and then executes step S113.

步骤S112:用户软件继续完成对该段的操作,使用该段数字内容;然后执行步骤113。Step S112: the user software continues to complete the operation on the segment and use the segment of digital content; then execute step S113.

步骤S113:用户软件继续对下一段进行操作,重复以上判断操作过程,直到文件中所有段的操作都执行完毕。Step S113: The user software continues to operate on the next segment, and repeats the above judgment operation process until all the operations of all segments in the file are completed.

下面举例说明:The following example illustrates:

例1:实现某现有格式文档中的第2~5页的查看权限。Example 1: Realize the viewing authority of pages 2 to 5 in a certain existing format document.

在利用制作工具制作数字文件时,直接将该现有格式文档(如:CEB文档)的每一页作为一段来制作数字文件,同时由于此文件受DRM保护,制作时,在文件的结尾处添加授权许可证文件的存储位置标识。When using the production tool to produce digital files, each page of the existing format document (such as: CEB document) is directly used as a paragraph to produce digital files. At the same time, because this file is protected by DRM, when making it, add at the end of the file Identifier of the storage location of the authorized license file.

由于CEB文档中有页码存在,且每一页都对应存在一个对象号,例如,第一页的对象号为01,第二页的对象号为10,第三页的对象号为11,.......;则以页为单位进行分段,例如:以第一页作为第一段,第二页作为第二段,第三页作为第三段,.......;则索引表如下面表4所示:Since there are page numbers in the CEB document, and each page corresponds to an object number, for example, the object number of the first page is 01, the object number of the second page is 10, the object number of the third page is 11, .. .....; the page is divided into sections, for example: take the first page as the first paragraph, the second page as the second paragraph, the third page as the third paragraph, ......; Then the index table is shown in Table 4 below:

                表4 Table 4

  段号paragraph number   起始位置 starting point   结束位置end position

11  0101  0101 22  1010  1010 33  1111  1111 ....... … ....... …  ...........

要实现该CEB文档第2至5页可以查看,则利用授权工具在该CEB文档的授权许可证文件中,添加如下代码:To realize that pages 2 to 5 of the CEB document can be viewed, use the authorization tool to add the following code to the authorization license file of the CEB document:

<view><view>

   <constraint><constraint>

     <segment seg=2>-1</segment><segment seg=2>-1</segment>

     <segment seg=5>0</segment><segment seg=5>0</segment>

   </constraint></constraint>

</view></view>

其中:标签view表明阅读权限、标签constraint表明约束、标签segment表明段授权,其属性seg表明了具体授权起始段号,其值表明了授权次数,0为无授权,-1为无限次授权。Among them: the label view indicates the reading authority, the label constraint indicates the constraint, and the label segment indicates the segment authorization. The attribute seg indicates the specific authorization start segment number, and its value indicates the number of authorizations. 0 means no authorization, and -1 means unlimited authorization.

授权许可证文件中的添加的上述代码表明段2以后具有无限次的翻阅权限,直到段5时终止。The above-mentioned code added in the authorized license file indicates that after paragraph 2, there is an unlimited number of reading rights until the termination of paragraph 5.

发布端将制作好的CEB文档的数字文件和它的授权许可证文件通过网络等媒介发送出去。The issuer sends out the prepared digital file of the CEB document and its authorized license file through the network and other media.

当用户使用阅读软件打开该CEB文档时,用户软件首先判断该CEB文档是否受DRM保护,若否,则可以继续操作,使用该CEB文档;若是,则用户软件查找授权许可证文件。When the user uses the reading software to open the CEB file, the user software first judges whether the CEB file is protected by DRM, if not, it can continue to operate and use the CEB file; if so, the user software searches for the authorization license file.

用户软件对授权许可证文件进行解析,确定出允许使用的段范围是2-5段,允许查阅的次数不限。The user software analyzes the authorization license file, and determines that the range of segments allowed to be used is 2-5 segments, and the number of times allowed to be consulted is not limited.

用户软件对该CEB文档的第1段(即第1页)进行操作,根据授权许可证文件的解析结果,由于第1段(即第1页)没有被授予相应的操作权限,则继续对第2段(即第2页)进行操作,由于第2段(即第2页)具有相应的使用权限,则将第2页展示给用户,然后继续对第三页进行操作,......,直到将第2~5页展示给用户后。当第5页显示完成后,继续第6段,由于第6段(即第6页)至结束都不在授权范围内,阅读软件将对用户进行相应的提示,并不再显示该CEB文档的相应内容。The user software operates the first paragraph (that is, the first page) of the CEB document. According to the analysis result of the authorized license file, since the first paragraph (that is, the first page) has not been granted the corresponding operation authority, continue to operate on the first paragraph. 2 paragraphs (that is, the second page) to operate, since the second paragraph (that is, the second page) has the corresponding use rights, then display the second page to the user, and then continue to operate on the third page, ..... ., until pages 2-5 are displayed to the user. When the fifth page is displayed, continue to the sixth paragraph. Since the sixth paragraph (that is, the sixth page) to the end is not within the scope of authorization, the reading software will prompt the user accordingly and will no longer display the corresponding CEB document. content.

例2:实现视频文件第20分钟到30分钟内容不可观看,其余部分不限。Example 2: Realize that the content of the 20th to 30th minute of the video file cannot be watched, and the rest is not limited.

利用制作工具将视频内容制作成一个视频文件,将每一分钟播放范围内的数字内容的流量作为段来制作数字文件,同时在文件的结尾处添加授权许可证文件的存储位置标识。Make the video content into a video file by using the production tool, and make the digital file by taking the traffic of the digital content within the playing range of each minute as a segment, and add the storage location identification of the authorized license file at the end of the file.

由于该视频文件没有对象号等可以利用的现成标识,则用相对于文件开头位置的偏移量来分段,例如:该视频文件每一分钟内播放的内容流量为1M,其索引表如表5所示:Since the video file has no ready-made identifiers such as the object number, the offset relative to the beginning of the file is used to segment the video file. For example, the content flow of the video file is 1M per minute, and its index table is shown in the table 5 shows:

                   表5 table 5

  段号paragraph number  起始位置(用相对于文件开头位置的偏移量表示)Starting position (expressed as an offset relative to the beginning of the file)  结束位置(用相对于文件开头位置的偏移量表示)End position (expressed as an offset relative to the beginning of the file)   1 1   0x000000000x00000000   0x100000000x10000000   2 2   0x100000000x10000000   0x200000000x20000000   33   0x200000000x20000000   0x300000000x30000000   ...........   ...........   ...........

要实现该视频内容第20分钟到30分钟范围不可观看,则利用授权工具在该视频内容的授权许可证文件中添加如下代码:To realize that the video content cannot be watched within the range of 20 minutes to 30 minutes, use the authorization tool to add the following code to the authorization license file of the video content:

<display><display>

    <constraint><constraint>

     <segment seg=0>-1</segment><segment seg=0>-1</segment>

     <segment seg=20>0</segment><segment seg=20>0</segment>

     <segment seg=30>-1</segment><segment seg=30>-1</segment>

   </constraint></constraint>

</display></display>

其中:标签display表明播放权限,其余与例1相同。Among them: the label display indicates the playback permission, and the rest are the same as Example 1.

授权许可证文件中添加的上述代码表明段0~20具有无限次播放权,段20~30无播放权限,段30以后也具有无限次播放权。The above-mentioned code added in the authorized license file indicates that segments 0-20 have unlimited playback rights, segments 20-30 have no playback rights, and segments after 30 also have unlimited playback rights.

发布端将制作好的视频文件以及相应的授权许可证文件通过网络等媒介发送出去。The publishing end sends out the produced video files and the corresponding authorization license files through the network and other media.

当用户使用播放软件播放该视频文件时,用户软件首先判断该视频文件是否受DRM保护,若否,则可以继续操作,使用该视频文件;若是,则用户软件查找授权许可证文件。When the user uses the playback software to play the video file, the user software first judges whether the video file is protected by DRM, if not, then you can continue to operate and use the video file; if so, the user software searches for the authorization license file.

用户软件对授权许可证文件进行解析,确定出视频文件中不允许使用的段范围是20-30段,其他段可以播放,且播放次数不限。The user software analyzes the authorization license file, and determines that the range of segments that are not allowed to be used in the video file is 20-30 segments, and other segments can be played, and the number of times of playback is not limited.

当用户使用播放软件播放该视频文件时,从第1分钟开始,到第19分钟(即第1段到第19段)的内容可以进行播放。当播放到第二十分钟时,由于该段无播放权限,则该段内容不能被用户使用,系统提示用户不具有使用权限,然后继续执行下一段,直到执行完第30段,执行第31段时,才可以播放。When the user uses the playback software to play the video file, the content from the 1st minute to the 19th minute (that is, paragraph 1 to paragraph 19) can be played. When playing to the 20th minute, because this section has no playback permission, the content of this section cannot be used by the user. The system prompts the user that the user does not have the permission to use, and then continues to execute the next section until the 30th section is executed, and the 31st section is executed. can only be played.

实施例二:Embodiment two:

用户软件对数字文件进行操作时,可以只对被授权的段进行操作,其流程如图2所示,具体执行步骤如下:When user software operates on digital files, it can only operate on authorized segments. The process is shown in Figure 2, and the specific execution steps are as follows:

步骤S201:制作数字文件。Step S201: making a digital file.

对数字内容进行分段处理,在数字文件中添加索引表,包括段号以及每段指向的内容。如同实施例一所述,对段落的划分可以有很多种形式,在此不再赘述。Segment digital content and add an index table to the digital file, including segment numbers and what each segment points to. As described in Embodiment 1, there may be many forms for dividing paragraphs, which will not be repeated here.

对于受DRM保护的数字内容,还需要在数字文件中添加授权许可证文件的存储位置标识。For DRM-protected digital content, it is also necessary to add the storage location identifier of the authorized license file to the digital file.

步骤S202:针对段进行授权控制。具体为:对数字内容以段为单位进行授权,制作相应的授权许可证文件;根据业务需求,在授权许可证文件中,添加段的约束说明,并指明涉及段号或涉及段的范围以及对该段授权的次数。Step S202: Perform authorization control for the segment. Specifically: authorize the digital content in units of segments, and create corresponding authorization license files; according to business needs, in the authorization license file, add segment constraint descriptions, and indicate the number of segments involved or the range of segments involved, as well as the The number of authorizations for this segment.

特别的,当一个段的内容存在多个授权时,以授权次数最少的为准。In particular, when there are multiple authorizations for the content of a segment, the one with the least number of authorizations shall prevail.

还包括对每一分段的内容进行加密,从而进一步保证其分段授权的安全性。It also includes encrypting the content of each segment, so as to further ensure the security of its segment authorization.

步骤S203:发布数字文件和及其相应的授权许可证文件。Step S203: Publish the digital file and its corresponding authorized license file.

步骤S204:用户软件对数字文件进行操作。Step S204: The user software operates on the digital file.

用户软件对数字文件进行操作时,可以在线进行阅读或播放,也可以将数字文件和授权许可证文件一起下载到本地再进行阅读或播放。When the user software operates the digital file, it can read or play online, or download the digital file and the authorized license file to the local for reading or playing.

步骤S205:用户软件识别文件格式,判断数字文件是受DRM保护的文件,若是,则执行步骤S207,若否,则执行步骤S206。Step S205: the user software recognizes the file format, and judges that the digital file is a file protected by DRM. If yes, execute step S207; if not, execute step S206.

步骤S206:用户软件可以继续对数字文件进行操作。Step S206: the user software can continue to operate on the digital file.

步骤S207:用户软件根据数字文件中存储的授权许可证文件的存储位置标识到指定的位置查找授权许可证文件。Step S207: The user software searches for the authorized license file at the specified location according to the storage location identifier of the authorized license file stored in the digital file.

步骤S208:用户软件对授权许可证文件进行解析,得到被授权的段号、范围以及被授权的次数。Step S208: The user software parses the authorization license file to obtain the authorized segment number, scope and authorized times.

步骤S209:用户软件从任意一个被授权的段开始执行操作,判断该段被使用的次数是否达到了该段允许使用的最大次数,若是,则执行步骤S210,若否,则将该段的使用次数记录加1,执行步骤S211。Step S209: The user software starts to perform operations from any authorized segment, and judges whether the number of times the segment has been used has reached the maximum number of times allowed for the segment, if yes, execute step S210, if not, use the segment Add 1 to the record of times, and execute step S211.

步骤210:用户软件停止对该段的操作并提示用户不再具有该段数字内容的使用权限,然后执行步骤212。Step 210: the user software stops operating on the segment and prompts the user that he no longer has the right to use the segment of digital content, and then executes step 212.

步骤211:用户软件继续完成对该操作,使用该段数字内容;然后执行步骤212。Step 211: the user software continues to complete the operation and use the piece of digital content; then execute step 212.

步骤S212:用户软件继续对下一个被授权的段进行操作,重复以上判断操作过程,直到对文件中所有被授权的段的操作都执行完毕。Step S212: The user software continues to operate on the next authorized segment, and repeats the above judgment operation process until all operations on all authorized segments in the file are completed.

下面举例说明:The following example illustrates:

例3:实现某电子书中的第一章免费翻阅10次Example 3: Realize the first chapter in an e-book to be read 10 times for free

利用制作工具将电子书的内容制作成一个电子书文件,以电子书的一页作为一段,添加索引表和授权许可证文件存储位置标识。The content of the e-book is made into an e-book file by using a production tool, and one page of the e-book is taken as a paragraph, and an index table and an identification of the storage location of the authorized license file are added.

要实现该电子书第一章免费翻阅10次,且已知该电子书第一章包含5~20段,利用授权工具在该电子书的授权许可证文件中,添加如下代码:To read the first chapter of the e-book 10 times for free, and it is known that the first chapter of the e-book contains 5 to 20 paragraphs, use the authorization tool to add the following code to the authorization license file of the e-book:

<view><view>

    <constraint><constraint>

     <segment seg=5>10</segment><segment seg=5>10</segment>

     <segment seg=20>0</segment><segment seg=20>0</segment>

    </constraint></constraint>

</view></view>

授权许可证文件中的添加的上述代码表明段5开始,直到段20终止的部分可以翻阅10次。The added above code in the authorization license file indicates that the section starting from section 5 and ending at section 20 can be read 10 times.

发布端将制作好的电子书文件以及相应的授权许可证文件通过网络等媒介发送出去。The publishing end sends out the prepared e-book file and the corresponding authorization license file through media such as the network.

当用户使用阅读软件打开此电子书文件时,用户软件首先判断该电子书是否受DRM保护,若否,则可以继续操作,使用该电子书文件;若是,则用户软件查找授权许可证文件。When the user uses reading software to open the e-book file, the user software first judges whether the e-book is protected by DRM, if not, it can continue to operate and use the e-book file; if so, the user software searches for the authorization license file.

用户软件对授权许可证文件进行解析,确定出电子书文件中允许使用的段范围是第5-20段,允许翻阅的次数为10次。The user software analyzes the authorization license file, and determines that the range of paragraphs allowed to be used in the e-book file is paragraph 5-20, and the number of times allowed to be read is 10 times.

则用户软件直接对该电子书的第5段进行操作,判断该段被翻阅的次数是否大于允许翻阅的次数10,若是,则授权许可证不允许用户软件对该电子书继续进行操作,同时提醒用户不再具有该电子书的使用权;若否,则将该段的内容展现给用户。然后用户软件继续对第6段进行操作,以此类推,直至执行到第20段时停止。并提示用户不再具有其他部分的使用权限。Then the user software directly operates the fifth paragraph of the e-book, and judges whether the number of times this paragraph has been read is greater than the allowed number of times 10, if so, the authorization license does not allow the user software to continue to operate the e-book, and reminds The user no longer has the right to use the e-book; if not, the content of this section is displayed to the user. Then the user software continues to operate on the 6th paragraph, and so on, until it stops when it reaches the 20th paragraph. And prompt the user no longer has permission to use other parts.

例4:实现某电子报中图片可导出。Example 4: Realize that the pictures in an e-newsletter can be exported.

利用制作工具将电子报的内容制作为一个电子报文件。对电子报进行分段处理,其中对于图片可以采用图片的对象号作为分段的标识,添加索引表和授权许可证文件存储位置标识。Use the production tool to make the content of the electronic newsletter into an electronic newsletter file. Segmentation processing is performed on the e-newsletter. For pictures, the object number of the picture can be used as the identification of the segmentation, and an index table and an identification of the storage location of the authorized license file are added.

要实现该电子报中的图片(如图片1)可以被导出,且已知图片1为第3段,则利用授权工具在该电子报的授权许可证文件中,添加如下代码:To realize that the pictures in the e-newsletter (such as picture 1) can be exported, and it is known that picture 1 is the third paragraph, then use the authorization tool to add the following code in the authorization license file of the e-newsletter:

<export><export>

    <constraint><constraint>

     <segment seg=3>-1</segment><segment seg=3>-1</segment>

     <segment seg=4>0</segment><segment seg=4>0</segment>

    </constraint></constraint>

</export></export>

注:标签export表明导出权限,其余同例1之说明。Note: The label export indicates the export permission, and the rest are the same as the description in Example 1.

授权许可证文件中的添加的上述代码表明段3(即图片1)可以无限次导出。The added above code in the authorization license file indicates that segment 3 (ie picture 1) can be exported unlimited times.

发布端将制作好的电子报文件和它的授权许可证文件通过网络等媒介发送出去。The publishing end sends out the prepared e-newsletter file and its authorized license file through media such as the network.

当用户使用阅读软件打开此电子报文件,看到图片1,想进行导出操作时,用户软件首先判断该电子报是否受DRM保护,若否,则可以继续操作,使用该电子报文件;若是,则用户软件查找授权许可证文件。When the user opens the e-newsletter file with reading software, sees picture 1, and wants to export, the user software first judges whether the e-newsletter is protected by DRM, if not, it can continue to operate and use the e-newsletter file; if so, The user software then looks for the authorization license file.

用户软件对授权许可证文件进行解析,发现授权许可证文件中允许该图片所在的段3进行导出操作,且允许导出的次数不限。The user software analyzes the authorization license file and finds that the segment 3 where the picture is located in the authorization license file is allowed to be exported, and the number of times allowed for export is unlimited.

则用户可以继续这一操作,对段3的图片进行导出。Then the user can continue this operation to export the picture in section 3.

根据本发明的上述数字内容分段授权管理方法,可以构建一种数字内容分段授权管理系统,该系统包括发布端30和接收端40。According to the above digital content segment authorization management method of the present invention, a digital content segment authorization management system can be constructed, and the system includes a publishing terminal 30 and a receiving terminal 40 .

其中,发布端30用于对数字内容分段,并进行段的操作权限约束,生成数字文件及对应的授权许可证文件并发布;其结构如图3所示,包括:制作模块301和发布模块302。Among them, the issuing end 30 is used to segment the digital content, and carry out segment operation authority constraints, generate digital files and corresponding authorization license files and issue them; its structure is shown in Figure 3, including: a production module 301 and a publishing module 302.

制作模块301用于将数字内容(包括流媒体和平面媒体)制作成数字文件。具体包括对数字文件进行分段,添加索引表,指明段的范围;在授权许可证文件中进行段的操作权限约束;并在制作成的数字文件中添加授权许可证文件的存储位置标识。The making module 301 is used for making digital content (including streaming media and print media) into digital files. Specifically, it includes segmenting the digital file, adding an index table, and specifying the scope of the segment; restricting the operation authority of the segment in the authorized license file; and adding the storage location identification of the authorized license file in the produced digital file.

发布模块302,用于发布制作模块301制作好的数字文件及对应的授权许可证文件。The publishing module 302 is used to publish the digital files produced by the production module 301 and the corresponding authorized license files.

较佳的,所述制作模块301还可以进一步划分为:第一制作子模块3011、第二制作子模块3012和第三制作子模块3013。Preferably, the production module 301 can be further divided into: a first production sub-module 3011 , a second production sub-module 3012 and a third production sub-module 3013 .

第一制作子模块3011,用于生成索引表,在所述索引表的每条记录中存储段标识以及指明每段所包含的数字内容。The first production sub-module 3011 is used to generate an index table, store segment identifiers in each record of the index table and specify the digital content contained in each segment.

第二制作子模块3012,用于描述各段被允许的操作类型及其对应的允许操作次数。The second production sub-module 3012 is used to describe the types of operations allowed for each segment and the corresponding allowed number of operations.

第三制作子模块3013,用于根据待发布的数字内容以及第一制作子模块3011和第二制作子模块3012的输出,制作数字文件及对应的授权许可证文件,并在制作的数字文件中添加授权许可证文件的存储位置标识。The third production submodule 3013 is used to produce digital files and corresponding authorization license files according to the digital content to be released and the output of the first production submodule 3011 and the second production submodule 3012, and include them in the produced digital files Add the ID of the storage location of the authorized license file.

其中,接收端40用于执行所述发布端发布的所述数字文件,并根据所述授权许可证文件,对各段按其对应的操作权限约束进行操作;其结构如图4所示,包括:判断模块401和操作模块402。Wherein, the receiving end 40 is used to execute the digital file issued by the issuing end, and according to the authorization license file, operate each segment according to its corresponding operation authority constraints; its structure is as shown in Figure 4, including : a judging module 401 and an operating module 402.

判断模块401,用于判断数字内容是否受DRM保护,若是,寻找相应的授权许可证文件,根据授权许可证文件确定数字文件中的段是否具有操作权限。若是,则通知操作模块402继续完成该操作;若否,通知所述操作模块401继续下一段数字内容处理。The judging module 401 is used to judge whether the digital content is protected by DRM, if so, find the corresponding authorized license file, and determine whether the segment in the digital file has operation authority according to the authorized license file. If yes, notify the operation module 402 to continue to complete the operation; if not, notify the operation module 401 to continue processing the next segment of digital content.

操作模块402,用于对发布端发布的数字文件中的段按其对应的操作权限约束进行操作,包括阅读电子文件、图片导出和播放视频文件等。The operation module 402 is used to operate the segments in the digital files issued by the publisher according to their corresponding operation authority constraints, including reading electronic files, exporting pictures and playing video files, etc.

较佳的,判断模块401还可以进一步划分为:第一判断子模块4011和第二判断子模块4012;Preferably, the judging module 401 can be further divided into: a first judging submodule 4011 and a second judging submodule 4012;

第一判断子模块4011,用于判断当前段是否具有请求的操作类型;若是,则通知给第二判断子模块4012;否则,通知操作模块402对当前段停止操作;The first judging submodule 4011 is used to judge whether the current segment has the requested operation type; if so, notify the second judging submodule 4012; otherwise, notify the operating module 402 to stop operating the current segment;

第二判断子模块4012,用于判断当前段的操作是否超过了操作权限约束允许的范围,若是,则通知操作模块402对当前段停止操作;否则,通知操作模块402对当前段执行对应操作。The second judging sub-module 4012 is used to judge whether the operation of the current segment exceeds the scope allowed by the operation authority constraint, and if so, notify the operation module 402 to stop operating on the current segment; otherwise, notify the operation module 402 to perform corresponding operations on the current segment.

综上所述,本发明实施例提供的数字内容分段授权管理的方法及系统在对数字内容进行授权管理时,通过对数字内容进行分段,再针对段进行相应的授权控制,实现了数字内容授权管理的灵活控制;有效避免了现有技术中对数字内容进行授权管理时需要进行拆分与组合的麻烦。并且由于段所包含的范围可以交叉和重复,从而使得对数字内容的控制更加灵活。同时可以依据现有文件格式中存在的对象号来进行段的划分,使得授权管理简单、段位置的查找方便,对不同格式文件有很好的通用性。To sum up, the method and system for authorization management of digital content segments provided by the embodiments of the present invention realize digital Flexible control of content authorization management; effectively avoiding the trouble of splitting and assembling when digital content authorization management is performed in the prior art. And because the ranges contained in the segments can be crossed and repeated, the control of the digital content is more flexible. At the same time, segments can be divided according to the object numbers existing in the existing file format, which makes authorization management simple, segment location search convenient, and has good versatility for files of different formats.

以上所述,仅为本发明较佳的具体实施方式,但本发明的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本发明揭露的技术范围内,可轻易想到的变化、替换或应用到其他类似的系统,都应涵盖在本发明的保护范围之内。因此,本发明的保护范围应该以权利要求书的保护范围为准。The above is only a preferred embodiment of the present invention, but the scope of protection of the present invention is not limited thereto. Any skilled person in the technical field can easily think of changes, Replacement or application to other similar systems shall fall within the protection scope of the present invention. Therefore, the protection scope of the present invention should be determined by the protection scope of the claims.

Claims (19)

1. one kind is carried out the implementation method of empowerment management to digital content, it is characterized in that, comprising:
To the digital content segmentation, generate digital document; And the constraint of the operating right of the section of carrying out, generate corresponding ticket for authorization file;
When carrying out described digital document,, each section operated by its corresponding operating right constraint according to described ticket for authorization file.
2. method according to claim 1 is characterized in that, and is described to the digital content segmentation, specifically comprises:
In digital content, add concordance list, memory paragraph identifies and indicates every section digital content that is comprised in every record of described concordance list.
3. method as claimed in claim 2 is characterized in that, describedly indicates every section digital content that is comprised, and specifically comprises:
Utilize the reference position and the end position of the digital content that the object number section of expression in the digital content comprised; Perhaps
In concordance list, list each section object number pointed; Perhaps
Use side-play amount with respect to file beginning position to indicate the reference position and the end position of the digital content that each section comprise.
4. method as claimed in claim 2 is characterized in that, the digital content that each section comprised is all different, or part is identical.
5. the method for claim 1 is characterized in that, the operating right constraint of the described section of carrying out generates corresponding ticket for authorization file, is specially:
The action type that section is allowed to is described, with and corresponding permission number of operations and/or allow time period of operation, generate described authorization file.
6. the method for claim 1 is characterized in that, described generation digital document and corresponding ticket for authorization file also comprise:
In digital document, add the memory location sign of ticket for authorization file.
7. method according to claim 1 is characterized in that, after described generation digital document and the corresponding ticket for authorization file, also comprises:
Issue digital document and corresponding ticket for authorization file.
8. the method for claim 1 is characterized in that, during the described digital document of described execution, according to described ticket for authorization file, each section is operated by its corresponding operating right constraint, comprising:
By user software the section in the described digital document is operated, and determine according to described ticket for authorization file whether present segment has corresponding operating right, if then continue to finish operation this section; If not, then stop this section operation and prompting user.
9. the method for claim 1 is characterized in that, described user software is operated the section in the described digital document, comprising:
According to concordance list section is operated, memory paragraph identifies and indicates every section digital content that is comprised in every record of described concordance list; Perhaps
Directly with the page number that comprises in the digital content or object number as segment identification, the page number or object number digital content pointed are operated as section.
10. method as claimed in claim 9 is characterized in that, described by user software in the described digital document the section operate, specifically comprise:
By user software first section, operate by each section of ordered pair from described digital document; Perhaps
By any one section beginning that user software is authorized to from described digital document, each section that is authorized to is operated.
11. method as claimed in claim 8 is characterized in that, describedly determines that according to the ticket for authorization file whether present segment has corresponding operating right, comprising:
Determine whether present segment is authorized in the described ticket for authorization file; And
Whether the operation of determining present segment has surpassed the allowed band of operating right constraint, comprises whether number of operations has surpassed the permission number of operations and/or the running time of authorizing and whether surpassed the permission running time of authorizing.
12. method as claimed in claim 8 is characterized in that, described by user software in the described digital document the section operate before, also comprise:
Judge whether described digital document is the file of Digital Right Management technical protection, if then obtain described ticket for authorization file, and according to described ticket for authorization file each section carried out operating right and determine; If not, directly described each section of digital document operated.
13. method as claimed in claim 8 is characterized in that, describedly by user software digital document is operated, and comprising: store the client login described digital document of issue of described user software and the issue end of ticket for authorization file and carry out on-line operation; Perhaps
The client that stores described user software is operated after earlier described digital document and ticket for authorization file being downloaded to this locality again.
14., it is characterized in that described digital content comprises Streaming Media and print media as the arbitrary described method of claim 1-13.
15. a digital content issue end is characterized in that, comprising: make module and release module;
Described making module is used for the digital content segmentation, and the constraint of the operating right of the section of carrying out, and generates digital document and corresponding ticket for authorization file;
Described release module is used to issue described digital document and corresponding ticket for authorization file.
16. digital content issue end as claimed in claim 15 is characterized in that described making module comprises:
First makes submodule, is used to generate concordance list, and memory paragraph identifies and indicate every section digital content that is comprised in every record of described concordance list;
Second makes submodule, is used to describe action type and the corresponding permission operational constraints thereof that each section is allowed to;
The 3rd makes submodule, be used for making the output that submodule and second is made submodule according to digital content to be released and first, make digital document and corresponding ticket for authorization file, and in the digital document of making, add the memory location sign of ticket for authorization file.
17. a digital content receiving end is characterized in that, comprises judge module and operational module;
Described judge module is used for determining according to the ticket for authorization file whether the section of digital document has operating right;
Described operational module is used for the section of described digital document is operated by its corresponding operating right constraint.
18. digital content receiving end as claimed in claim 17 is characterized in that, described judge module comprises that first judges that giving module and second judges submodule;
Described first judges submodule, is used to judge whether present segment has the requested operation type; If then be notified to described second and judge submodule; Otherwise, notify described operational module to the present segment shut-down operation;
Described second judges submodule, is used to judge whether the operation of present segment has surpassed the allowed band of operating right constraint, if then notify described operational module to the present segment shut-down operation; Otherwise, notify described operational module that present segment is carried out respective operations.
19. an authentication management system is characterized in that, comprising: issue end and receiving end;
Described issue end is used for the digital content segmentation, and the constraint of the operating right of the section of carrying out, and generates digital document and corresponding ticket for authorization file cocurrent cloth;
Described receiving end is used to carry out the described digital document of described issue end issue, and according to described ticket for authorization file, each section is operated by its corresponding operating right constraint.
CN2007101797872A 2007-12-18 2007-12-18 Method and system for implementing authorization management of digital contents Expired - Fee Related CN101196971B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2007101797872A CN101196971B (en) 2007-12-18 2007-12-18 Method and system for implementing authorization management of digital contents

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2007101797872A CN101196971B (en) 2007-12-18 2007-12-18 Method and system for implementing authorization management of digital contents

Publications (2)

Publication Number Publication Date
CN101196971A true CN101196971A (en) 2008-06-11
CN101196971B CN101196971B (en) 2011-01-05

Family

ID=39547368

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2007101797872A Expired - Fee Related CN101196971B (en) 2007-12-18 2007-12-18 Method and system for implementing authorization management of digital contents

Country Status (1)

Country Link
CN (1) CN101196971B (en)

Cited By (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102073805A (en) * 2009-11-25 2011-05-25 株式会社日立制作所 Computer system and content management method
WO2011072607A1 (en) * 2009-12-18 2011-06-23 华为终端有限公司 File segmented protection method, apparatus and system
CN102236750A (en) * 2010-04-29 2011-11-09 国际商业机器公司 Right control method and device for cloud computing system
CN102314567A (en) * 2010-07-09 2012-01-11 中国移动通信有限公司 Digital content use and control method and client-side equipment
CN102682236A (en) * 2011-02-10 2012-09-19 汤姆森特许公司 Method and device for excerpt licensing
CN102780556A (en) * 2011-05-09 2012-11-14 北大方正集团有限公司 Method and device for encrypting and decrypting digital content section by section
CN102819704A (en) * 2012-07-20 2012-12-12 北京亿赛通科技发展有限责任公司 Document copyright protection method for intelligent terminal
CN102930183A (en) * 2011-08-08 2013-02-13 财团法人工业技术研究院 digital rights management device and digital rights management method
CN103093126A (en) * 2013-01-18 2013-05-08 上海大唐移动通信设备有限公司 Software licensing method and software licensing system
CN103248474A (en) * 2012-02-01 2013-08-14 华为技术有限公司 Encryption and decryption method and device for streaming media
CN103294935A (en) * 2012-02-29 2013-09-11 北大方正集团有限公司 Method, device and system for controlling digital content read right
CN103377173A (en) * 2012-04-27 2013-10-30 工业和信息化部电信传输研究所 Method and system for multiparty cooperation checking of controllable document
CN103544168A (en) * 2012-07-12 2014-01-29 北京颐达合创科技有限公司 Device and method for controlling file downloading
CN103577723A (en) * 2012-08-09 2014-02-12 福州福昕软件开发有限公司北京分公司 Control method for online page preview of electronic book
CN104182659A (en) * 2013-05-21 2014-12-03 北大方正集团有限公司 Server, system and digital right combining method
WO2016058522A1 (en) * 2014-10-13 2016-04-21 Alibaba Group Holding Limited Method and apparatus for controlling data permissions
CN105657470A (en) * 2015-12-31 2016-06-08 深圳市海云天科技股份有限公司 Bitmap type video browsing recording method and system
CN106485156A (en) * 2016-09-22 2017-03-08 中广核工程有限公司 A kind of apparatus and method for files in batch mandate
EP2645663B1 (en) 2011-03-22 2017-05-31 Huawei Technologies Co., Ltd. Media data processing method and device thereof
CN106960162A (en) * 2017-03-24 2017-07-18 北京深思数盾科技股份有限公司 A kind of data sharing method, apparatus and system
CN107430648A (en) * 2014-11-03 2017-12-01 意锐泽私人有限公司 A system for monitoring copyrighted material

Cited By (38)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102073805A (en) * 2009-11-25 2011-05-25 株式会社日立制作所 Computer system and content management method
WO2011072607A1 (en) * 2009-12-18 2011-06-23 华为终端有限公司 File segmented protection method, apparatus and system
US9507539B2 (en) 2010-04-29 2016-11-29 International Business Machines Corporation Performing authorization control in a cloud storage system
US9134912B2 (en) 2010-04-29 2015-09-15 International Business Machines Corporation Performing authorization control in a cloud storage system
US9158465B2 (en) 2010-04-29 2015-10-13 International Business Machines Corporation Performing authorization control in a cloud storage system
CN102236750A (en) * 2010-04-29 2011-11-09 国际商业机器公司 Right control method and device for cloud computing system
CN102236750B (en) * 2010-04-29 2016-03-30 国际商业机器公司 The method and apparatus of control of authority is carried out in cloud storage system
CN102314567A (en) * 2010-07-09 2012-01-11 中国移动通信有限公司 Digital content use and control method and client-side equipment
CN102682236A (en) * 2011-02-10 2012-09-19 汤姆森特许公司 Method and device for excerpt licensing
EP2645663B1 (en) 2011-03-22 2017-05-31 Huawei Technologies Co., Ltd. Media data processing method and device thereof
CN102780556A (en) * 2011-05-09 2012-11-14 北大方正集团有限公司 Method and device for encrypting and decrypting digital content section by section
CN102780556B (en) * 2011-05-09 2015-03-18 北大方正集团有限公司 Method and device for encrypting and decrypting digital content section by section
CN102930183B (en) * 2011-08-08 2015-11-18 财团法人工业技术研究院 digital rights management device and digital rights management method
CN102930183A (en) * 2011-08-08 2013-02-13 财团法人工业技术研究院 digital rights management device and digital rights management method
US9135411B2 (en) 2011-08-08 2015-09-15 Industrial Technology Research Institute Digital rights management apparatus and method
CN103248474B (en) * 2012-02-01 2016-08-10 华为技术有限公司 A kind of encryption and decryption method and device of Streaming Media
CN103248474A (en) * 2012-02-01 2013-08-14 华为技术有限公司 Encryption and decryption method and device for streaming media
CN103294935B (en) * 2012-02-29 2016-03-09 北大方正集团有限公司 A kind of control method of digital content read right, Apparatus and system
CN103294935A (en) * 2012-02-29 2013-09-11 北大方正集团有限公司 Method, device and system for controlling digital content read right
CN103377173A (en) * 2012-04-27 2013-10-30 工业和信息化部电信传输研究所 Method and system for multiparty cooperation checking of controllable document
CN103377173B (en) * 2012-04-27 2017-03-15 工业和信息化部电信传输研究所 The method and system that a kind of multiparty collaboration to controllable document is audited
CN103544168A (en) * 2012-07-12 2014-01-29 北京颐达合创科技有限公司 Device and method for controlling file downloading
CN102819704A (en) * 2012-07-20 2012-12-12 北京亿赛通科技发展有限责任公司 Document copyright protection method for intelligent terminal
CN102819704B (en) * 2012-07-20 2015-09-09 北京亿赛通科技发展有限责任公司 The document copyright protection method of intelligent terminal
CN103577723B (en) * 2012-08-09 2016-12-21 福建福昕软件开发股份有限公司 The control method of online page preview of electronic book
WO2014023077A1 (en) * 2012-08-09 2014-02-13 福州福昕软件开发有限公司北京分公司 Method for controlling online previewing of e-book page
CN103577723A (en) * 2012-08-09 2014-02-12 福州福昕软件开发有限公司北京分公司 Control method for online page preview of electronic book
CN103093126A (en) * 2013-01-18 2013-05-08 上海大唐移动通信设备有限公司 Software licensing method and software licensing system
CN104182659A (en) * 2013-05-21 2014-12-03 北大方正集团有限公司 Server, system and digital right combining method
CN104182659B (en) * 2013-05-21 2018-01-26 北大方正集团有限公司 Server, system and digital rights merger method
WO2016058522A1 (en) * 2014-10-13 2016-04-21 Alibaba Group Holding Limited Method and apparatus for controlling data permissions
US9866565B2 (en) 2014-10-13 2018-01-09 Alibaba Group Holding Limited Method and apparatus for controlling data permissions
CN107430648A (en) * 2014-11-03 2017-12-01 意锐泽私人有限公司 A system for monitoring copyrighted material
CN107430648B (en) * 2014-11-03 2021-01-08 意锐泽私人有限公司 System for monitoring copyrighted material
CN105657470A (en) * 2015-12-31 2016-06-08 深圳市海云天科技股份有限公司 Bitmap type video browsing recording method and system
CN105657470B (en) * 2015-12-31 2018-09-28 深圳市海云天科技股份有限公司 A kind of recording method of bit map type video tour and system
CN106485156A (en) * 2016-09-22 2017-03-08 中广核工程有限公司 A kind of apparatus and method for files in batch mandate
CN106960162A (en) * 2017-03-24 2017-07-18 北京深思数盾科技股份有限公司 A kind of data sharing method, apparatus and system

Also Published As

Publication number Publication date
CN101196971B (en) 2011-01-05

Similar Documents

Publication Publication Date Title
CN101196971B (en) Method and system for implementing authorization management of digital contents
US11902601B2 (en) System and techniques for digital data lineage verification
JP5615716B2 (en) Apparatus and method for digital rights management
JP5923625B2 (en) Digital copyright management apparatus and method for EPUB-based content, and EPUB-based content providing apparatus and method with user authority
JP5853507B2 (en) Information processing apparatus, information processing system, information processing method, and program
CN100524283C (en) Method and apparatus for consuming rights object having genetic structure
KR100888594B1 (en) License generation method, content providing method using same, and apparatus therefor
CN101669124A (en) Method for storing and accessing header data from memory
CN104471581B (en) Protect Media Items with Media Security Controller
JP2010517138A5 (en)
CN101443754A (en) Method and apparatus for efficiently providing location of contents encryption key
JP2007207087A (en) Electronic ticket issue management system, issuer system, program, and electronic ticket issue management method
US9684772B2 (en) Information processing apparatus, information processing method and program
KR20070012491A (en) Rights processing in the DDR system
EP2722782A2 (en) Method for providing license corresponding to encrypted contents to client apparatus and digital rights management conversion system using the method
JP2005284525A (en) Content distribution system, encryption unit, content provision unit, content playback unit, license information provision unit, encryption method, content provision method, content playback method, license information provision method, information processing program, and storage medium
CN101031923A (en) Method, device and computer program product for activating the right of use of at least one secured content item
US8365279B2 (en) Storage device and method for dynamic content tracing
US9053739B2 (en) Information processing apparatus, information processing method and program
CN104426898A (en) Server, terminal, digital rights management system and digital rights management method
US8862903B2 (en) Information processing apparatus, information processing method and program
KR100506530B1 (en) Method for DRM license supporting plural devices
JP2010020676A (en) Data management method, data management system, and data storage system
CN101223532A (en) Method for exporting usage rights to electronic data objects
US10229276B2 (en) Method and apparatus for document author control of digital rights management

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20220623

Address after: 100871 No. 5, the Summer Palace Road, Beijing, Haidian District

Patentee after: Peking University

Patentee after: New founder holdings development Co.,Ltd.

Patentee after: FOUNDER APABI TECHNOLOGY Ltd.

Address before: 100871 No. 5, the Summer Palace Road, Beijing, Haidian District

Patentee before: Peking University

Patentee before: PEKING UNIVERSITY FOUNDER GROUP Co.,Ltd.

Patentee before: FOUNDER APABI TECHNOLOGY Ltd.

TR01 Transfer of patent right
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20110105

CF01 Termination of patent right due to non-payment of annual fee