CN111818000A - Block chain-based distributed Digital Rights Management (DRM) system - Google Patents
Block chain-based distributed Digital Rights Management (DRM) system Download PDFInfo
- Publication number
- CN111818000A CN111818000A CN201910291962.XA CN201910291962A CN111818000A CN 111818000 A CN111818000 A CN 111818000A CN 201910291962 A CN201910291962 A CN 201910291962A CN 111818000 A CN111818000 A CN 111818000A
- Authority
- CN
- China
- Prior art keywords
- content
- drm
- block chain
- license
- authorization
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/105—Arrangements for software license management or administration, e.g. for managing licenses at corporate level
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/60—Network streaming of media packets
- H04L65/61—Network streaming of media packets for supporting one-way streaming services, e.g. Internet radio
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/062—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying encryption of the keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/081—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying self-generating credentials, e.g. instead of receiving credentials from an authority or from another peer, the credentials are generated at the entity itself
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/101—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/103—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measure for protecting copyright
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Multimedia (AREA)
- General Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- Technology Law (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The present invention relates to a block chain based distributed Digital Rights Management (DRM) system. Belongs to the technical field of digital copyright protection and the technical field of block chains. The system comprises a block chain network supporting the intelligent contract, a distributed public ledger, content publisher accounts, content consumer accounts, a DRM content encryption module, a DRM content authorization module, a DRM agent module, a DRM content authorization intelligent contract, DRM content playing equipment, a content distribution platform and the like. The block chain distributed public account records content copyright information and content license of the encrypted digital content besides account state, transfer transaction, intelligent contract code and the like, and both the content copyright information and the content license comprise protected content encryption keys. The method realizes the safe management of the content encryption key of the digital content and the content license authorized by the content publisher to the consumer on the block chain, has transparent content copyright management, and can directly carry out DRM content authorization point to point between any content publisher and the consumer on the Internet through the system.
Description
Technical Field
The present invention relates to a Digital Rights Management (DRM) system, and more particularly, to a block chain based distributed Digital Rights Management (DRM) system. Belongs to the technical field of digital copyright protection and the technical field of block chains.
Background
DRM, English is known as the Dight Rights Management, and Chinese is known as digital Rights Management. DRM is a technique in which a content publisher protects (or restricts) the usage rights of digitized content by using encryption techniques. The digitized content includes documents, pictures, software, music, movies, and various videos, and the like. With the advent of the 5G network and the 4K ultra-high definition era, digital content is more and more convenient to distribute, the quality and the value of the digital content are higher and higher, and the technical requirement on the encryption protection of the digital content is higher and higher. The traditional DRM system adopts a centralized closed system architecture, is not public and transparent, a Content publisher can only send digital Content to a Content operator for encrypted publishing, and the Content operator adopts a DRM system to manage a Content Encryption Key (CEK) of the digital Content, so that the Content publisher cannot really know who the Content is authorized by the Content publisher, and how many users are authorized, and cannot know whether the Content operator leaks the digital Content. The best mode is that the content publisher encrypts the digital content of the content publisher, and then the digital content is delivered to a specified content operator or a public content distribution platform for distribution and sale, and the content publisher directly authorizes the DRM content to the final consumer. But none of the existing DRM systems can do this.
The blockchain technology originated from a foundational paper "bitcoin" published by a scholars named "Zhongben Smart" in 2008, 11.1: a peer-to-peer electronic cash system. From 1/3 of 2009 until now, blockchain technology has been operating steadily for 10 years, time has proven the safety and availability of blockchain technology. The core of the blockchain technology is a P2P network protocol, a distributed public ledger and an intelligent contract virtual machine, and each Transaction (Transaction) on the blockchain ledger is provided with a timestamp and a digital signature of an initiator, so that the public is transparent, and thus, the existence evidence of information or value which is not falsified and repudiated is provided.
The technical characteristics of the blockchain can support the safe recording of the protected Content Encryption Key (ECEK) of the digital Content and the Content license authorized to the consumer on the distributed public ledger of the blockchain, thereby realizing a distributed Digital Rights Management (DRM) system based on the blockchain, wherein the Content copyright management is public and transparent, and the direct point-to-point DRM Content authorization between any Content publisher and the consumer on the Internet is supported.
Disclosure of Invention
The invention provides a distributed Digital Rights Management (DRM) system based on a block chain, which can realize the safe management of a content encryption key of digital content and a content license authorized to a consumer on the block chain, the content copyright management is public and transparent, and the DRM content authorization can be directly carried out between any content publisher and the consumer on the Internet in a point-to-point manner.
The technical means of the present invention will be described in detail below.
The system at least comprises a block chain network supporting the intelligent contract, a distributed public ledger, content publisher accounts, content consumer accounts, a DRM content encryption module, a DRM content authorization module, a DRM agent module, a DRM content authorization intelligent contract, a DRM content playing device (based on software and hardware) and a content distribution platform.
In the system of the invention, a content publisher unlocks the wallet firstly and provides a private key and a public key of an account for the DRM content encryption module. The content publisher calls a DRM content encryption module to encrypt unencrypted digital content, a content encryption key CEK is randomly generated in the DRM content encryption module, the DRM content encryption module encrypts and protects the content encryption key CEK by using a public key of an account after encryption is completed, a publishing Transaction (Transaction) which at least protects content identification, content description information and DRM content copyright information of a protected content encryption key ECEK is constructed, the content publisher is digitally signed and then broadcasts to a block link network through block link points, and the content publisher is recorded in a block link distributed public account book after confirmation. The encrypted digital content is inserted with at least content identification, content description information and content publisher digital signature. The content publisher may locally store the encrypted digital content, or may choose to immediately upload the encrypted digital content to a designated content distribution platform.
In the system, a content consumer unlocks the wallet and provides a private key and a public key of an account for the DRM agent module, and the DRM agent also obtains an equipment public key from the DRM content playing equipment. The DRM content playback device may be a Trusted Execution Environment (TEE) based on a software security level or a Trusted Execution Environment (TEE) based on a hardware security level. The DRM agent module obtains the encrypted digital content from the content distribution platform or the content publisher, retrieves DRM content copyright information corresponding to the encrypted digital content from the block chain, and requests DRM content authorization to the content publisher directly or through an intelligent contract of the content publisher.
In the system of the invention, the content publisher unlocks the wallet and provides the private key and the public key of the account for the DRM content authorization module. After receiving the DRM content authorization request, the content publisher retrieves DRM content copyright information corresponding to the encrypted digital content from the block chain, and decrypts the protected content encryption key ECEK in the DRM content copyright information by using a private key to obtain a content encryption key CEK. The DRM content authorization module generates a content license according to the content playing device identification, namely the device public key, in the DRM content authorization request, and the requirements such as playing time and the like. The content license at least comprises a content identification, a content playing device identification, namely a device public key, a content usage right description, a content encryption key ECEK protected by the encryption of the content playing device public key and a content issuer digital signature. The description of the content usage rights in the content license may be selected to comply with the DRM standard of OMA, the ODRL standard of W3C, the XrML standard of ContentGuard, and the china DRM standard. The DRM content authorization module constructs a release Transaction (Transaction) of the content license with a destination address being a consumer account address requesting authorization after generating the content license, broadcasts the content release private key to the block link network through the block link points after being digitally signed, and records the content in the block link distributed account book after being confirmed. The content publisher notifies the requesting authorized consumer, either directly or through a smart contract, that the content license has been sent.
In the system, after a content consumer obtains a DRM content authorization response, a DRM agent module extracts a content license corresponding to the requested authorized content from the block chain and submits the encrypted digital content and the content license to DRM content playing equipment. The DRM content playback device uses the device private key to decrypt the protected content encryption key ECEK in the content license within the Trusted Execution Environment (TEE), then uses the content encryption key CEK to decrypt the encrypted digital content, and controls the playback of the content in accordance with the content usage rights description in the content license.
The content consumer in the system of the invention does not need to store the content license locally, as long as the content license on the distributed public account of the block chain is valid, the content consumer can call the DRM agent module at any time to extract the content license from the DRM block chain and drive the DRM content playing equipment to decrypt and play the appointed digital content.
The system of the invention has the following beneficial effects:
(1) the distributed Digital Rights Management (DRM) system based on the blockchain is realized, and the encryption key of the digital content and the content license authorized to a consumer can be safely managed on the blockchain;
(2) content copyright management is publicly transparent;
(3) the direct point-to-point DRM content authorization can be realized between any content publisher and any content consumer on the Internet through the system of the invention;
(4) the content publisher can realize the automatic authorization and selling of the encrypted digital content by deploying a DRM content authorization intelligent contract;
(5) the system can construct a Digital Rights Management (DRM) public service platform facing the whole Internet.
Drawings
FIG. 1 is a general system diagram of the system of the present invention.
FIG. 2 is a schematic diagram of the DRM encryption and release process of the file contents in the system of the present invention.
Fig. 3 is a schematic diagram of the DRM decryption process of the file content in the system of the present invention.
Fig. 4 is a schematic diagram of DRM authorization flow in the system of the present invention.
The present invention will be described in further detail with reference to the accompanying drawings and examples. It should be noted that the specific embodiments described herein are only for explaining the present invention and are not used to limit the present invention.
Detailed Description
As shown in fig. 1, the distributed Digital Rights Management (DRM) system based on a block chain according to the present invention includes a block chain network supporting an intelligent contract, a distributed public ledger, content publisher and content consumer accounts, a DRM content encryption module, a DRM content authorization module, a DRM agent module, a DRM content authorization intelligent contract, a DRM content playing device (including both software and hardware), a content distribution platform, and the like.
Blockchain network supporting intelligent contracts: the P2P network is composed of multiple nodes, each node has a copy of distributed public ledger, the nodes communicate with each other to synchronize ledgers, and follow the same consensus mechanism (including but not limited to PoW workload proving mechanism, PoS equity proving mechanism, DPoS delegation equity proving mechanism and SPoS super node equity proving mechanism). Each node is provided with a virtual machine running an intelligent contract, including but not limited to an ethernet blockchain EVM virtual machine, an EOS blockchain webassemb virtual machine, and a super-ledger blockchain Docker virtual machine.
Distributed public account book: all nodes of the blockchain network are independently maintained and synchronized, and each node has a copy of a distributed public ledger. The account book records DRM content copyright information and content licenses besides account states, transfer transactions and intelligent contract codes.
Content publisher account: the method has a private key and a public key generated by an ECC elliptic curve asymmetric encryption algorithm, the generated curve conforms to the secp256k1 standard, and data and signature transactions can be encrypted and decrypted after the account is unlocked.
Content consumer account: the method has a private key and a public key generated by an ECC elliptic curve asymmetric encryption algorithm, the generated curve conforms to the secp256k1 standard, and data and signature transactions can be encrypted and decrypted after the account is unlocked.
DRM content encryption module: and encrypting the unencrypted digital content, generating encrypted digital content and DRM content copyright information after encryption, and issuing the DRM content copyright information to the block chain.
DRM content authorization module: and processing the DRM content authorization request, acquiring DRM content copyright information corresponding to the encrypted digital content from the block chain, generating a content license, and issuing the content license to the block chain.
The DRM agent module: and sending a DRM content authorization request, extracting a content license corresponding to the requested authorized content from the blockchain, and submitting the encrypted digital content and the content license to the DRM content playing device.
DRM content authorization smart contracts: the content is issued by the content issuer, the DRM content authorization request of the content consumer is forwarded to the content issuer, and the DRM content authorization response of the content issuer is forwarded to the content consumer.
DRM content playback device: the DRM content playback device uses a device private key within a software-based or hardware-based Trusted Execution Environment (TEE) to decrypt a protected content encryption key ECEK in the content license, then uses a content encryption key CEK to decrypt the encrypted digital content, and controls the playback of the content in accordance with the content usage rights description in the content license.
The content distribution platform: any service platform on the internet that can store and distribute digital content.
As shown in fig. 2, the specific working steps of DRM encryption and distribution of file contents in the system of the present invention are as follows.
The first step is as follows: the DRM content encryption module unlocks the content publisher account, loading the account's ECC key pair and account address.
The second step is that: the DRM content encryption module loads unencrypted digital content.
The third step: DRM content copyright information such as a content name, a content classification, a content issuer, etc. is input.
The fourth step: the DRM content encryption module calculates the hash value Ht of the unencrypted digital content using the SHA256 algorithm.
The fifth step: the DRM content encryption module uses the PRNG pseudo-random number generator to generate a 128-bit content encryption key CEK.
And a sixth step: the DRM content encryption module encrypts the digital content using the AES128 algorithm and the content encryption key CEK.
The seventh step: the DRM content encryption module calculates a hash value He of the encrypted digital content using the SHA256 algorithm.
Eighth step: the DRM content encryption module takes the hash value He as the content identification ContentID.
The ninth step: the DRM content encryption module generates a DRM file header and performs ECDSA signing with the content issuer ECC private key.
The tenth step: the DRM content encryption module locally saves the encrypted digital content or optionally uploads to a designated content distribution platform.
The eleventh step: the DRM content encryption module inserts a content identification ContentID, a hash value Ht, and a hash value He in the DRM content copyright information. A preferred content distribution URL of the encrypted digital content may be optionally inserted in the DRM content rights information.
The twelfth step: the DRM content encryption module generates a pair of new ECC keys using a PRNG pseudo-random number generator, generates a symmetric encryption key PK for encrypting a protected content encryption key CEK based on an ECDH algorithm, encrypts the key CEK with an AES128 algorithm and an x-coordinate value of the key PK, and generates an encryption protected content encryption key ECEK.
The thirteenth step: the DRM content encryption module inserts the protected content encryption key ECEK and the new ECC public key in the DRM content rights information.
The fourteenth step is that: the DRM content encryption module constructs a release transaction of DRM content copyright information, and broadcasts the release transaction to the blockchain network through the blockchain node after digital signature.
As shown in fig. 3, the specific working steps of DRM decryption of file contents in the system of the present invention are as follows.
The first step is as follows: the DRM agent module unlocks the content consumer account and loads the ECC key pair and account address, as well as the ECC public key of the content playback device.
The second step is that: the DRM agent module loads the encrypted digital contents.
The third step: the DRM agent module verifies the DRM file header signature.
The fourth step: the DRM agent module calculates a HASH value of the encrypted digital content using the SHA256 algorithm and checks the HASH value He of the encrypted digital content.
The fifth step: the DRM proxy module queries whether a content license for the content already exists on the blockchain. If not, content authorization is requested from the content publisher directly or through an associated DRM content authorization intelligent contract.
And a sixth step: the DRM agent module verifies the content license, and submits the encrypted digital content and the DRM content license to the DRM content playing device after the content license is legal.
The seventh step: the DRM content playback device generates a decryption key PK decrypting the content encryption key ECEK based on the ECDH algorithm within the TEE trusted execution environment.
Eighth step: the DRM content playback device decrypts the protected content encryption key ECEK with the AES128 algorithm and the x-coordinate of the key PK within the TEE trusted execution environment to obtain the content encryption key CEK.
The ninth step: the DRM content playback device decrypts the encrypted digital content using the AES128 algorithm and the content encryption key CEK within the TEE trusted execution environment.
The tenth step: the DRM content playback device plays the content within the TEE trusted execution environment as described by the content usage rights in the content license.
As shown in fig. 4, the specific working steps of DRM authorization in the system of the present invention are as follows.
The first step is as follows: the content publisher designs a DRM content authorization intelligence contract.
The second step is that: the content publisher issues the DRM content authorization intelligent contract to the block chain to obtain the DRM content authorization intelligent contract address.
The third step: the content publisher deploys the DRM content authorization module and unlocks the content publisher account to load the ECC key pair and account address. The DRM content authorization module monitors DRM content authorization smart contract events.
The fourth step: the content consumer requests DRM content authorization directly from the content publisher or sends a DRM content authorization request to a DRM content authorization smart contract.
The fifth step: if the content consumer sends the DRM content authorization request to the DRM content authorization intelligent contract, the DRM content authorization intelligent contract triggers the authorization request event, and the DRM content authorization module obtains the authorization request event through monitoring. If the content consumer does not directly request the authorization of the DRM content through the intelligent contract, the content consumer can directly call the DRM content authorization module to complete the sixth step and the seventh step, and does not execute the eighth step to directly inform the consumer requesting the authorization that the content license is sent.
And a sixth step: and after receiving the DRM content authorization request, the DRM content authorization module retrieves DRM content copyright information corresponding to the encrypted digital content from the DRM block chain, and decrypts the protected content encryption key ECEK in the DRM content copyright information by using a private key to obtain a content encryption key CEK. The DRM content authorization module generates a content license according to the content playing device identification, namely the device public key, in the DRM content authorization request, and the requirements such as playing time and the like. The content license at least comprises a content identification, a content playing device identification, namely a device public key, a content usage right description, a content encryption key ECEK protected by the encryption of the content playing device public key and a content issuer digital signature.
The seventh step: the DRM content authorization module constructs a release Transaction of a content license with a destination address being a consumer account address requesting authorization after generating a content license, broadcasts the content license to the blockchain network through blockchain nodes after digital signature, and records the content license in the blockchain distributed account book after confirmation.
Eighth step: the DRM content authorization module invokes the smart contract to send a DRM content authorization response informing the consumer requesting authorization that the content license has been sent.
In summary, the distributed Digital Rights Management (DRM) system based on the blockchain according to the present invention realizes secure management of the content encryption key of the digital content and the content license authorized to the consumer on the blockchain, and the content rights management is publicly transparent, and DRM content authorization can be directly performed point-to-point between any content issuer and the consumer on the internet through the system of the present invention.
Claims (9)
1. A distributed Digital Rights Management (DRM) system based on a blockchain is characterized in that a blockchain network supporting an intelligent contract, a distributed public ledger, accounts of content publishers and content consumers, a DRM content encryption module, a DRM content authorization module, a DRM agent module, a DRM content authorization intelligent contract, a DRM content playing device and a content distribution platform are arranged in the system; the system safely manages the content encryption key of the digital content and the content license authorized to the consumer on the block chain, the content copyright management is public and transparent, and the DRM content authorization can be directly carried out point to point between any content publisher and the consumer on the system Internet.
2. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: the system records the content copyright information transaction and the content license transaction of the encrypted digital content on the block chain distributed public account besides the account state, the transfer transaction, the intelligent contract code and the like, and the content copyright information and the content license both contain the protected content key ECEK.
3. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: the DRM content encryption module encrypts unencrypted digital content by using a content key CEK, encrypts and protects the content key CEK by using a content publisher public key, constructs a publishing transaction at least containing content identification, content description information and content copyright information of a protected content encryption key ECEK, broadcasts the content publisher private key to a blockchain network through blockchain nodes after being digitally signed, and records the content in a blockchain distributed public account book after being confirmed.
4. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: and after receiving the content authorization request, the DRM content authorization module retrieves content copyright information corresponding to the encrypted digital content from the block chain distributed public account book, and decrypts the protected content encryption key ECEK in the content copyright information by using a content publisher private key to obtain a content encryption key CEK. The DRM content authorization module generates a content license according to the DRM content playing equipment identifier in the content authorization request, namely the equipment public key, the playing time and other requirements. The content license includes at least a content identifier, a content playback device identifier, i.e., a device public key, a content usage rights description, a DRM content playback device public key encryption protected content encryption key (ECEK), and a content issuer digital signature.
5. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: the DRM content authorization module constructs a release transaction of the content license with a destination address of the consumer account address requesting authorization after generating the content license, the content release private key is digitally signed and then broadcast to the blockchain network through the blockchain link points, and the content release private key is recorded in the blockchain distributed public account book after being confirmed.
6. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: the content consumer does not need to locally store the content license, and as long as the content license on the blockchain distributed public account book is valid, the content consumer can call the DRM agent module to extract the content license from the blockchain and drive the DRM content playing device to decrypt and play the digital content at any time.
7. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: all nodes in the block chain follow the same consensus mechanism, including but not limited to a PoW workload certification mechanism, a PoS equity certification mechanism, a DPoS delegation equity certification mechanism, and an SPoS supernode equity certification mechanism.
8. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: all nodes in the block chain are provided with virtual machines for running intelligent contracts, including but not limited to an Ethernet block chain EVM virtual machine, an EOS block chain WebAssembly virtual machine and a super-account block chain Docker virtual machine.
9. A block chain based distributed Digital Rights Management (DRM) system according to claim 1, wherein: the DRM content playing device can decrypt and play the specified digital content in a Trusted Execution Environment (TEE) based on a software security level and can also decrypt and play the specified digital content in a Trusted Execution Environment (TEE) based on a hardware security level.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910291962.XA CN111818000B (en) | 2019-04-11 | 2019-04-11 | Block chain-based distributed Digital Rights Management (DRM) system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910291962.XA CN111818000B (en) | 2019-04-11 | 2019-04-11 | Block chain-based distributed Digital Rights Management (DRM) system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111818000A true CN111818000A (en) | 2020-10-23 |
| CN111818000B CN111818000B (en) | 2021-08-03 |
Family
ID=72843636
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910291962.XA Active CN111818000B (en) | 2019-04-11 | 2019-04-11 | Block chain-based distributed Digital Rights Management (DRM) system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111818000B (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112364305A (en) * | 2020-11-11 | 2021-02-12 | 北京大学 | Digital content copyright protection method and device based on block chain platform |
| CN112528308A (en) * | 2020-12-18 | 2021-03-19 | 临沂呆马区块链网络科技有限公司 | Artificial intelligence big data sharing system and method based on block chain |
| CN114117357A (en) * | 2021-11-16 | 2022-03-01 | 支付宝(杭州)信息技术有限公司 | Content authorization distribution method and device based on block chain and electronic equipment |
| CN115659287A (en) * | 2022-11-01 | 2023-01-31 | 寰宇信任(北京)技术有限公司 | Network copyright consumption management system |
| CN117744038A (en) * | 2023-12-24 | 2024-03-22 | 中信出版集团股份有限公司 | Copyright protection system and method for digital content |
| CN118337429A (en) * | 2024-04-09 | 2024-07-12 | 寰宇信任(北京)技术有限公司 | Trusted reconciliation method for network video content propagation data |
| EP4530895A1 (en) * | 2023-09-26 | 2025-04-02 | INTEL Corporation | Apparatuses, devices, methods, and non-transitory machine-readable storage media for presenting content and for a node of a blockchain network |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR101628005B1 (en) * | 2015-02-05 | 2016-06-13 | 주식회사 코인플러그 | Copyright detection system that is based on the block chain |
| US20170116693A1 (en) * | 2015-10-27 | 2017-04-27 | Verimatrix, Inc. | Systems and Methods for Decentralizing Commerce and Rights Management for Digital Assets Using a Blockchain Rights Ledger |
| US20170221029A1 (en) * | 2015-11-06 | 2017-08-03 | Cable Television Laboratories, Inc | Blockchaining systems and methods for frictionless media |
| CN107171785A (en) * | 2017-05-18 | 2017-09-15 | 电子科技大学 | A kind of digital copyright management method based on block chain technology |
| CN107679369A (en) * | 2016-08-02 | 2018-02-09 | 华为技术有限公司 | A kind of method, apparatus and system of the licensing of shared digital content |
| US20180068091A1 (en) * | 2016-09-06 | 2018-03-08 | Intel Corporation | Blockchain-Based Shadow Images to Facilitate Copyright Protection of Digital Content |
| CN108389059A (en) * | 2018-02-26 | 2018-08-10 | 成都大学 | Digital copyrighted work protection, transaction and distributing method based on ownership and system |
| EP3399458A1 (en) * | 2017-05-03 | 2018-11-07 | Cisco Technology, Inc. | Method and system for content and service sharing |
| CN108846776A (en) * | 2018-04-19 | 2018-11-20 | 中山大学 | A kind of digital literary property protection method based on block chain technology |
-
2019
- 2019-04-11 CN CN201910291962.XA patent/CN111818000B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR101628005B1 (en) * | 2015-02-05 | 2016-06-13 | 주식회사 코인플러그 | Copyright detection system that is based on the block chain |
| US20170116693A1 (en) * | 2015-10-27 | 2017-04-27 | Verimatrix, Inc. | Systems and Methods for Decentralizing Commerce and Rights Management for Digital Assets Using a Blockchain Rights Ledger |
| US20170221029A1 (en) * | 2015-11-06 | 2017-08-03 | Cable Television Laboratories, Inc | Blockchaining systems and methods for frictionless media |
| CN107679369A (en) * | 2016-08-02 | 2018-02-09 | 华为技术有限公司 | A kind of method, apparatus and system of the licensing of shared digital content |
| US20180068091A1 (en) * | 2016-09-06 | 2018-03-08 | Intel Corporation | Blockchain-Based Shadow Images to Facilitate Copyright Protection of Digital Content |
| EP3399458A1 (en) * | 2017-05-03 | 2018-11-07 | Cisco Technology, Inc. | Method and system for content and service sharing |
| CN108804879A (en) * | 2017-05-03 | 2018-11-13 | 思科技术公司 | The method and system shared for content and service |
| CN107171785A (en) * | 2017-05-18 | 2017-09-15 | 电子科技大学 | A kind of digital copyright management method based on block chain technology |
| CN108389059A (en) * | 2018-02-26 | 2018-08-10 | 成都大学 | Digital copyrighted work protection, transaction and distributing method based on ownership and system |
| CN108846776A (en) * | 2018-04-19 | 2018-11-20 | 中山大学 | A kind of digital literary property protection method based on block chain technology |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112364305A (en) * | 2020-11-11 | 2021-02-12 | 北京大学 | Digital content copyright protection method and device based on block chain platform |
| CN112364305B (en) * | 2020-11-11 | 2024-03-15 | 北京大学 | Digital content copyright protection method and device based on blockchain platform |
| CN112528308A (en) * | 2020-12-18 | 2021-03-19 | 临沂呆马区块链网络科技有限公司 | Artificial intelligence big data sharing system and method based on block chain |
| CN114117357A (en) * | 2021-11-16 | 2022-03-01 | 支付宝(杭州)信息技术有限公司 | Content authorization distribution method and device based on block chain and electronic equipment |
| CN114117357B (en) * | 2021-11-16 | 2025-11-11 | 蚂蚁区块链科技(上海)有限公司 | Content authorization distribution method and device based on blockchain and electronic equipment |
| CN115659287A (en) * | 2022-11-01 | 2023-01-31 | 寰宇信任(北京)技术有限公司 | Network copyright consumption management system |
| CN115659287B (en) * | 2022-11-01 | 2023-11-10 | 寰宇信任(北京)技术有限公司 | Network copyright consumption management system |
| EP4530895A1 (en) * | 2023-09-26 | 2025-04-02 | INTEL Corporation | Apparatuses, devices, methods, and non-transitory machine-readable storage media for presenting content and for a node of a blockchain network |
| CN117744038A (en) * | 2023-12-24 | 2024-03-22 | 中信出版集团股份有限公司 | Copyright protection system and method for digital content |
| CN117744038B (en) * | 2023-12-24 | 2024-06-11 | 中信出版集团股份有限公司 | Copyright protection system and method for digital content |
| CN118337429A (en) * | 2024-04-09 | 2024-07-12 | 寰宇信任(北京)技术有限公司 | Trusted reconciliation method for network video content propagation data |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111818000B (en) | 2021-08-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111818000B (en) | Block chain-based distributed Digital Rights Management (DRM) system | |
| CN100576148C (en) | Systems and methods for providing secure server key operations | |
| CN101883100B (en) | Digital content distributed authorization method | |
| EP1852799B1 (en) | Device-independent management of cryptographic information | |
| EP3770778A1 (en) | Use of media storage structure with multiple pieces of content in a content-distribution system | |
| CN102685111B (en) | Cryptographic sanction server and methods for use therewith | |
| US8347098B2 (en) | Media storage structures for storing content, devices for using such structures, systems for distributing such structures | |
| US10574458B2 (en) | Media storage structures for storing content, devices for using such structures, systems for distributing such structures | |
| CN102316378A (en) | Digital copyright protection method based on set-top box and system | |
| CN102143232A (en) | Peer-to-peer network based digital copyright protection method | |
| CN101833623B (en) | Digital rights management method and system | |
| CN104966000A (en) | Multimedia copyright protection method based on security engine | |
| KR20090002392A (en) | Method and system for sharing content using external memory | |
| KR102394608B1 (en) | Digital Rights Management System using Attribute-based Encryption | |
| Lee et al. | A secure and mutual-profitable DRM interoperability scheme | |
| CN100507798C (en) | Copyright information treating method and system | |
| Zhaofeng et al. | Secure and flexible digital rights management in a pervasive usage mode | |
| KR100814064B1 (en) | DRM Contents Packaging Method and System | |
| Barhoush et al. | Requirements for enforcing digital rights management in multicast content distribution | |
| KR100831726B1 (en) | Security method and system in the DRM system | |
| JP2005149002A (en) | Content distribution management method and apparatus | |
| KR20070076108A (en) | Streaming Content Packager | |
| Li et al. | A Study on Distributed License Authorization System Based on Threshold Secret Sharing | |
| WO2007113728A2 (en) | Method for enabling the transfer of a digital work | |
| HK1110670B (en) | Device-independent management of cryptographic information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |