[go: up one dir, main page]

CN101091183A - Method and apparatus for digital content management - Google Patents

Method and apparatus for digital content management Download PDF

Info

Publication number
CN101091183A
CN101091183A CN 200580044995 CN200580044995A CN101091183A CN 101091183 A CN101091183 A CN 101091183A CN 200580044995 CN200580044995 CN 200580044995 CN 200580044995 A CN200580044995 A CN 200580044995A CN 101091183 A CN101091183 A CN 101091183A
Authority
CN
China
Prior art keywords
digital content
processing
user side
request
content
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN 200580044995
Other languages
Chinese (zh)
Inventor
屈劲
马缚龙
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Koninklijke Philips NV
Original Assignee
Koninklijke Philips Electronics NV
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninklijke Philips Electronics NV filed Critical Koninklijke Philips Electronics NV
Priority to CN 200580044995 priority Critical patent/CN101091183A/en
Publication of CN101091183A publication Critical patent/CN101091183A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present invention discloses a method for using digital content. According to this method, a user terminal acquires an authorization file at least including a predetermined processing right from the authorization terminal, the predetermined processing right allowing the user terminal to process the digital content in the predetermined manner, e.g. edit the digital content. When the processing right requested by the user is included in the authorization file that the user terminal acquires, the user can perform the predetermined processing on the digital content. This invention also discloses apparatus for using the digital content. The method and apparatus of the present invention can bring better convenience to the user and protect profits of the content provider as well.

Description

一种数字内容管理的方法和装置Method and device for digital content management

技术领域technical field

本发明一般地涉及数字权利管理DRM(Digital RightManagement),尤其涉及一种使用数字内容的方法和装置。The present invention generally relates to DRM (Digital Right Management), and in particular to a method and device for using digital content.

背景技术Background technique

伴随着网络技术和数字技术的快速发展,对源数字内容的使用变得越来越容易。从内容提供者的角度来看,因为他们希望保护自己的内容版权,所以如果允许对源数字内容不受限制地使用,将会对内容提供者的利益造成很大损害。另一方面,从内容消费者的角度来看,他们总是希望不受限制的使用任何内容。With the rapid development of network technology and digital technology, the use of source digital content has become easier and easier. From the perspective of content providers, because they want to protect their own content copyright, if the source digital content is allowed to be used without restriction, it will cause great damage to the interests of content providers. On the other hand, from the perspective of content consumers, they always want to use any content without restriction.

为了兼顾内容提供者以及内容消费者双方的利益,提出了授权域AD(Authorized Domain)的概念,以确保只有在内容提供者授权的情况下才可以使用内容。授权域的基本思路是:提供一个受控制的网络环境,其中只要没有超出授权域的边界,就可以相对自由地使用内容。通常,AD由一组相互连接的设备和用户组成,这些设备和用户属于一个家庭。在授权域中,用户通常是通过与用户相关联的设备(即用户设备)来体现的。在授权域中,内容可以在各个用户设备之间自由地移动和/或复制,但是内容被限制而不能移动到AD的外部。通常,可以使用标准的发布信道(例如,视频广播、局域网、英特网、电话线路以及卫星下载等等)将内容从内容提供者传送到授权域中。另外,也可以通过传统的邮件形式将内容输入到授权域中。In order to take into account the interests of both the content provider and the content consumer, the concept of Authorized Domain AD (Authorized Domain) is proposed to ensure that the content can only be used under the authorization of the content provider. The basic idea of Authorized Domains is to provide a controlled network environment in which content can be used relatively freely as long as the boundaries of Authorized Domains are not exceeded. Typically, AD consists of a group of interconnected devices and users that belong to a family. In an authorized domain, a user is usually represented by a device associated with the user (ie, a user device). In an Authorized Domain, content can be freely moved and/or copied between individual user devices, but content is restricted from being moved outside of the AD. Typically, standard distribution channels (eg, video broadcast, local area network, Internet, telephone line, and satellite download, etc.) can be used to deliver content from the content provider into the Authorized Domain. Alternatively, content can be entered into authorized domains via traditional mail forms.

目前,存在多种实现授权域系统的技术,例如,与本申请相同的申请人于2003年11月27日提交国际专利申请WO03/098931公开了一种构造授权域的方法和系统,在此,引入该专利申请文件的全部内容作为参考文件。At present, there are many technologies for realizing the authorized domain system. For example, the same applicant as the present application filed the international patent application WO03/098931 on November 27, 2003, disclosing a method and system for constructing an authorized domain. Here, The entire content of this patent application document is incorporated as a reference document.

在现有技术中,内容提供者禁止内容消费者对内容进行任何形式改变。用户仅仅可以根据内容提供者的规则,播放、复制以及传送数字内容。但是,对于内容消费者来说,为了获得同一内容而用于不同的用户设备(例如个人计算机和移动电话),他可能需要分别从内容提供者处获取不同版本/格式的数字内容。这导致内容消费者极大的不便性。In the prior art, the content provider forbids the content consumer to change the content in any form. Users can only play, copy and transmit digital content according to the content provider's rules. However, for a content consumer, in order to obtain the same content for different user devices (such as a personal computer and a mobile phone), he may need to obtain digital content in different versions/formats from a content provider. This causes great inconvenience to the content consumer.

发明内容Contents of the invention

本发明的目的之一是提供一种使用数字内容的方法和装置,它允许用户端在得到内容提供者授权的情况下可以对数字内容进行所需的处理,同时还可以跟踪做出相应处理的用户端。One of the objects of the present invention is to provide a method and device for using digital content, which allows the user terminal to perform the required processing on the digital content under the authorization of the content provider, and at the same time track the corresponding processing. user terminal.

根据本发明的一个实施例,提供一种授权使用一个数字内容的方法。首先,接收一个来自于一个用户端的请求,该请求要求授权该用户端一个处理权利,该处理权利使得该用户端能够以一个预定的方式处理该数字内容。然后,根据该请求,生成一个包含该处理权利的授权文件,以传送给该用户端,使该用户端能够以该预定的方式处理该数字内容。According to an embodiment of the present invention, a method for authorizing the use of a digital content is provided. Firstly, a request is received from a user terminal, the request requires authorization of the user terminal with a processing right enabling the user terminal to process the digital content in a predetermined manner. Then, according to the request, an authorization file containing the processing right is generated and sent to the user terminal, so that the user terminal can process the digital content in the predetermined manner.

优选地,在生成授权文件之前,验证所述的请求是否来自于一个合法的用户端。当确定所述的请求是来自一个合法的用户端的情况下,生成所述的授权文件。Preferably, before generating the authorization file, it is verified whether the request comes from a legal client. When it is determined that the request is from a legal client, the authorization file is generated.

优选地,在生成授权文件之后,发送所述的授权文件到所述的用户端。Preferably, after the authorization file is generated, the authorization file is sent to the client.

更优选地,在生成授权文件之后,发送所述的授权文件和数字内容到所述的用户端。More preferably, after the authorization file is generated, the authorization file and digital content are sent to the client.

优选地,所述请求还包含一个用户端的标识信息。所述的用户端的标识信息包含下列标识信息中的一种:用户标识信息、设备标识信息、和授权域标识信息。Preferably, the request further includes identification information of a client. The identification information of the client includes one of the following identification information: user identification information, device identification information, and authorized domain identification information.

优选地,所述的预定的方式包含至少下列处理方式中的一种:对该数字内容进行转码;对该数字内容进行编辑;和从该数字内容中提取一部分内容。Preferably, the predetermined manner includes at least one of the following processing manners: transcoding the digital content; editing the digital content; and extracting a part of the digital content.

根据本发明的另一个实施例,提供一种要求授权一个用户端使用一个数字内容的方法。首先,发出一个请求,该请求要求授权该用户端一个处理权利,该处理权利使得该用户端能够以一个预定的方式处理该数字内容的权利。然后,接收一个来自于授权端的包含该处理权利的授权文件,使得该用户端能够以该预定的方式处理该数字内容。According to another embodiment of the present invention, there is provided a method for requiring authorization of a client to use a digital content. First, a request is issued, which requests authorization of the client with a processing right enabling the client to process the digital content in a predetermined manner. Then, receiving an authorization file containing the processing right from the authorizing end, so that the user end can process the digital content in the predetermined manner.

根据本发明的另一个实施例,提供一种在一个用户端处理一个数字内容的方法,包括步骤:(a)接收一个请求,该请求要求以一个预定的方式处理该数字内容;(b)验证该用户端是否被授权以该预定的方式处理该数字内容;以及(c)当该用户端被授权以该预定的方式处理该数字内容时,按该预定的方式处理该数字内容,以得到一个处理后的数字内容。According to another embodiment of the present invention, there is provided a method for processing a digital content at a client end, comprising the steps of: (a) receiving a request for processing the digital content in a predetermined manner; (b) verifying whether the client is authorized to process the digital content in the predetermined manner; and (c) when the client is authorized to process the digital content in the predetermined manner, process the digital content in the predetermined manner to obtain a Processed digital content.

优选地,上述步骤(b)包括:(i)获得该数字内容所对应的一个授权文件;以及(ii)检查该授权文件中是否包含一个处理权利,该处理权利授权用户端以该预定的方式处理该数字内容。Preferably, the above step (b) includes: (i) obtaining an authorization file corresponding to the digital content; and (ii) checking whether the authorization file contains a processing right that authorizes the user terminal to process the digital content.

优选地,该方法还包括步骤:将相关的处理信息与所述的处理后的数字内容进行关联。上述处理信息包含至少下列信息中的一种:所述授权文件信息、处理方式、处理时间、处理前该数字内容的状况、和用户端标识信息。Preferably, the method further includes the step of associating relevant processing information with said processed digital content. The processing information includes at least one of the following information: the authorization file information, processing mode, processing time, status of the digital content before processing, and user terminal identification information.

根据本发明的另一个实施例,提供一种在一个用户端操作一个处理后的数字内容的方法。首先,接收一个请求,该请求要求操作该处理后的数字内容。然后,验证该处理后的数字内容是否以一个授权的方式处理而获得;以及最后,当该处理后的数字内容是以该授权的方式处理而获得时,获得该处理后的数字内容以供用户端操作。According to another embodiment of the present invention, a method for operating a processed digital content at a client is provided. First, a request is received for manipulating the processed digital content. Then, verifying whether the processed digital content was obtained by processing in an authorized manner; and finally, obtaining the processed digital content for the user when the processed digital content was obtained by processing in an authorized manner terminal operation.

根据本发明的另一个实施例,提供一种授权使用一个数字内容的装置,包括:一个授权请求接收装置,用于接收一个来自于一个用户端的请求,该请求要求授权该用户端一个处理权利,该处理权利使得该用户端能够以一个预定的方式处理该数字内容的权利;和一个生成装置,用于根据该请求,生成一个包含该处理权利的授权文件,以传送给该用户端,使该用户端能够以该预定的方式处理该数字内容。According to another embodiment of the present invention, a device for authorizing the use of a digital content is provided, including: an authorization request receiving device, configured to receive a request from a user terminal, the request requires authorization of a processing right of the user terminal, the processing right enabling the client to process the digital content in a predetermined manner; and generating means for, upon the request, generating an authorization document containing the processing right to transmit to the client, enabling the The UE can process the digital content in the predetermined manner.

优选地,该装置还包括一个发送装置,用于发送所述的授权文件到所述的用户端。所述的发送装置还用于发送所述的数字内容到所述的用户端。Preferably, the device also includes a sending device, configured to send the authorization file to the user terminal. The sending device is also used to send the digital content to the client.

该装置还包括一个合法性验证装置,用于验证所述的请求是否来自于一个合法的用户端。The device also includes a legitimacy verification device for verifying whether the request comes from a legal client.

根据本发明的另一个实施例,提供一种要求授权一个用户端使用一个数字内容的装置,包括:一个发出装置,发出一个请求,该请求要求授权该用户端一个处理权利,该处理权利使得该用户端能够以一个预定的方式处理该数字内容的权利;和一个授权接收装置,接收一个来自于授权端的包含该处理权利的授权文件,使得该用户端能够以该预定的方式处理该数字化内容。According to another embodiment of the present invention, there is provided an apparatus for requesting authorization of a user terminal to use a digital content, comprising: an issuing means for issuing a request, the request requires authorization of the user end with a processing right, the processing right makes the The user terminal can process the digital content in a predetermined way; and an authorization receiving device receives an authorization document containing the processing right from the authorizing terminal, so that the user terminal can process the digital content in the predetermined way.

根据本发明的另一个实施例,提供一种在一个用户端处理一个数字内容的装置,包括:一个处理请求接收装置,用于接收一个请求,该请求要求以一个预定的方式处理该数字内容;一个授权验证装置,用于验证该用户端是否被授权以该预定的方式处理该数字内容;和一个处理装置,用于当该用户端被授权以该预定的方式处理该数字内容时,按该预定的方式处理该数字内容,以得到一个处理后的数字内容。According to another embodiment of the present invention, there is provided a device for processing a digital content at a client end, comprising: a processing request receiving device for receiving a request, the request requires processing the digital content in a predetermined manner; an authorization verification device for verifying whether the client is authorized to process the digital content in the predetermined manner; and a processing device for, when the client is authorized to process the digital content in the predetermined manner, according to the The digital content is processed in a predetermined manner to obtain a processed digital content.

优选地,所述授权验证装置包括:一个获得装置,用于获得该数字内容所对应的一个授权文件;一个检查装置,用于检查该授权文件中是否包含一个处理权利,该处理权利授权该用户端以该预定的方式处理该数字内容。Preferably, the authorization verification means includes: an obtaining means for obtaining an authorization file corresponding to the digital content; a checking means for checking whether the authorization file contains a processing right, and the processing right authorizes the user The terminal processes the digital content in the predetermined manner.

优选地,该装置还包括一个关联装置,用于将相关的处理信息与所述的处理后的数字内容进行关联。Preferably, the device further includes an associating means for associating the relevant processing information with the processed digital content.

根据本发明的另一个实施例,提供一种在一个用户端操作一个处理后的数字内容的装置,包括:一个操作请求接收装置,用于接收一个请求,该请求要求操作该数字内容;一个处理验证装置,用于验证该处理后的数字内容是否以一个授权的方式处理而获得;和一个操作装置,当该处理后的数字内容是以该授权的方式处理而获得时,获得该处理后的数字内容以供该用户端操作。According to another embodiment of the present invention, there is provided a device for operating a processed digital content at a user end, including: an operation request receiving device for receiving a request for operating the digital content; a processing verification means for verifying whether the processed digital content is obtained by processing in an authorized manner; and an operating device for obtaining the processed digital content when the processed digital content is obtained by processing in an authorized manner digital content for the client to operate on.

采用本发明,内容消费者不仅可以复制从内容提供者那里获得的数字内容,而且他也可以对获取的内容直接进行更多形式的处理,以适于不同的实际需要。例如,对数据内容进行转码,以适用于移动设备;从源数字内容中提取所需的一部分内容;以及对数字内容进行编辑等等。由此,提供用户更大的便利性。By adopting the present invention, the content consumer can not only copy the digital content obtained from the content provider, but also directly perform more forms of processing on the obtained content to suit different actual needs. For example, transcoding data content to be suitable for mobile devices; extracting required part of content from source digital content; and editing digital content, etc. Thereby, greater convenience for the user is provided.

另外,在本发明中,对数字内容的处理应当得到内容提供者的授权,并且从处理后的数字内容中可以知道是谁对源数字内容进行了相应处理,即可以对进行处理的用户进行跟踪。这样,可以有效地保护内容提供者的利益。In addition, in the present invention, the processing of the digital content should be authorized by the content provider, and it can be known from the processed digital content who has processed the source digital content accordingly, that is, the user who processed the content can be tracked . In this way, the interests of content providers can be effectively protected.

通过下文中参照附图对本发明所作的描述和权利要求,本发明的上述和其它目的、特征和优点更变得更加清晰,并可对本发明有全面的理解。The above and other objects, features and advantages of the present invention will become clearer and a comprehensive understanding of the present invention will be obtained through the following description and claims of the present invention with reference to the accompanying drawings.

附图说明Description of drawings

下面结合附图对本发明作进一步说明,其中:The present invention will be further described below in conjunction with accompanying drawing, wherein:

图1是显示根据本发明用于数字内容管理的系统的简化示意图;Figure 1 is a simplified schematic diagram showing a system for digital content management according to the present invention;

图2是显示根据本发明优选实施例的用于数字内容管理的系统之详细结构的方框图;2 is a block diagram showing a detailed structure of a system for digital content management according to a preferred embodiment of the present invention;

图3是显示根据本发明优选实施例的授权验证装置之结构的方框图;Fig. 3 is a block diagram showing the structure of an authorization verification device according to a preferred embodiment of the present invention;

图4是描述根据本发明优选实施例的在内容提供服务器中执行的处理的流程图;FIG. 4 is a flowchart describing processing performed in a content providing server according to a preferred embodiment of the present invention;

图5是描述根据本发明优选实施例的在一个用户设备的获取授权文件装置中执行的处理的流程图;FIG. 5 is a flow chart describing the processing performed in an apparatus for obtaining an authorization file of a user equipment according to a preferred embodiment of the present invention;

图6是描述根据本发明优选实施例的在该用户设备的内容处理装置中执行的处理的流程图;以及6 is a flow chart describing the processing performed in the content processing device of the user equipment according to a preferred embodiment of the present invention; and

图7是描述根据本发明优选实施例在另一用户设备中执行的操作处理的流程图。FIG. 7 is a flowchart describing operation processing performed in another user equipment according to a preferred embodiment of the present invention.

具体实施方式Detailed ways

现在,参考图1,将说明根据本发明实施例的用于数字内容管理系统的基本配置。Now, referring to FIG. 1, a basic configuration for a digital content management system according to an embodiment of the present invention will be explained.

图1显示了根据本发明实施例的用于数字内容管理的基本配置的简化示意图。在图1中,授权域10至少包括用户设备11和用户设备12。在本实施例中,用户设备11是一个台式计算机,以及用户设备12是一个移动电话。授权域10中的用户设备11经由局域网、英特网、电话线路、移动通信、或卫星下载线路等通信方式连接到内容提供服务器13,并从内容提供服务器13处获取所需的数字内容。同时,用户设备12可以根据具体设备类型通过相应的通信方式与用户设备11连接,用于从用户设备11中获取所需的经用户设备11处理之后的数字内容。本领域所属技术人员都应该理解,本发明并不局限于此,例如,用户设备11和12还可以是笔记本计算机、个人数字助理(PDA)、MP3播放机等电子设备。另外,用户设备11也可以通过邮件、预存储介质等等传统传送方式从内容提供服务器13处获得所需数字内容。通常,数字内容包括音乐、歌曲、电影、电视节目、图画、文字、交互式业务等等。Fig. 1 shows a simplified schematic diagram of a basic configuration for digital content management according to an embodiment of the present invention. In FIG. 1 , an authorized domain 10 includes at least a user equipment 11 and a user equipment 12 . In this embodiment, the user equipment 11 is a desktop computer, and the user equipment 12 is a mobile phone. The user equipment 11 in the authorized domain 10 is connected to the content providing server 13 via LAN, Internet, telephone line, mobile communication, or satellite download line, and obtains the required digital content from the content providing server 13 . At the same time, the user equipment 12 can be connected with the user equipment 11 through a corresponding communication method according to the specific equipment type, so as to obtain the desired digital content processed by the user equipment 11 from the user equipment 11 . Those skilled in the art should understand that the present invention is not limited thereto. For example, user equipment 11 and 12 may also be electronic equipment such as notebook computers, personal digital assistants (PDAs), and MP3 players. In addition, the user equipment 11 can also obtain the required digital content from the content providing server 13 through traditional transmission methods such as mail and pre-stored media. Typically, digital content includes music, songs, movies, television programs, pictures, text, interactive services, and the like.

在授权域10中,数字内容可以在用户设备11和12之间根据设定规则自由地流动,但是内容被限制不能流出授权域10。通常,授权域的上述功能是通过所谓的AD-DRM(授权域-数字权利管理)系统来控制的。AD-DRM系统被用来实现内容提供者和授权域之间的内容传递。In the authorized domain 10 , digital content can freely flow between the user equipment 11 and 12 according to set rules, but the content is restricted and cannot flow out of the authorized domain 10 . Usually, the above-mentioned functions of Authorized Domains are controlled by a so-called AD-DRM (Authorized Domain-Digital Rights Management) system. The AD-DRM system is used to realize content delivery between content providers and Authorized Domains.

AD-DRM系统的具体结构为本领域所属技术员所熟知,因此在此对其不作过多描述。。在本发明中,授权域10中的用户设备11可以根据需要从内容提供服务器13中获取一个预定的处理权利,从而使得用户端可以对数字内容进行所需的预定处理。该预定处理是指对该数字内容的完整性的一种改变,例如,对该数字内容进行转码,对该数字内容内容进行编辑等等。该预定的处理权利是用户被授权的使用权利的一种。另一种用户被授权的使用权利是操作权利。该操作权利是指在保持该数字内容完整性的前提下,对该数字内容的使用,例如,播放,复制等等。对于AD|-DRM系统的具体说明,可参考FrankKamperman,Paul Koster,Geert-Jan,Schrijen,Bas van den Heuvel,用于连接星际和连接家庭的数字权利管理。另外,也请参考与本申请相同的申请人于2003年11月27日提交的国际申请WO03098931。The specific structure of the AD-DRM system is well known to those skilled in the art, so it will not be described too much here. . In the present invention, the user equipment 11 in the authorized domain 10 can obtain a predetermined processing right from the content providing server 13 as required, so that the user terminal can perform the required predetermined processing on the digital content. The predetermined processing refers to a change in the integrity of the digital content, for example, transcoding the digital content, editing the digital content, and so on. This predetermined processing right is one of the usage rights to which the user is authorized. Another kind of use right that users are authorized to use is the right to operate. The operation right refers to the use of the digital content, such as playing, copying, etc., under the premise of maintaining the integrity of the digital content. For a detailed description of the AD|-DRM system, see Frank Kamperman, Paul Koster, Geert-Jan, Schrijen, Bas van den Heuvel, Digital Rights Management for Connected Stars and Connected Home. In addition, please also refer to the international application WO03098931 filed on November 27, 2003 by the same applicant as the present application.

以下对授权域中与本发明相关的几个术语作以解释。Several terms related to the present invention in the authorized domain are explained below.

1、内容封装1. Content packaging

为了防止在存储和传送期间,对内容的非授权访问,内容被封装在安全内容外壳(container)中。如表1所示,内容外壳包括内容的标识信息(Content ID)和内容。内容外壳的目的在于通过对内容进行加密来提供机密性。同时,内容的标识信息将内容与内容权利、用户权利等关联起来。To prevent unauthorized access to the content during storage and transmission, the content is encapsulated in a secure content container. As shown in Table 1, the content shell includes content identification information (Content ID) and content. The purpose of the content shell is to provide confidentiality by encrypting the content. At the same time, the identification information of the content associates the content with content rights, user rights, and the like.

表1Table 1

内容外壳content shell

    内容的标识信息 Identification information of the content     内容 content

2、内容权利2. Content Rights

如表2所表,内容权利(Content Right)通常包括有内容的标识信息、用户端的标识信息、内容提供者的标识信息、内容密钥,用户权利信息和数字签名等。As shown in Table 2, content rights (Content Right) usually include content identification information, user terminal identification information, content provider identification information, content keys, user rights information, and digital signatures.

内容的标识信息一般指数字化内容的识别信息(Content ID)等,可以用来确定使用的特定的数字化内容。用户端的标识信息一般指有权并且已发出许可请求的用户端的识别信息,可以用来确定特定的用户端。它可以包括用户标识信息、设备标识信息、或者授权域标识信息。内容密钥指对被加密的数字化内容解密的密钥(Contentkeys)。在通常的DRM系统中,在对发行和销售的数字化内容的加密过程中将会产生一个相应的解密该文件的密钥。用户权利信息(UserRight Authority)是根据用户端和内容提供者之间的协议或合同等确定的使用权利等。在本发明中,上述使用权利包括操作权利和处理权利。The content identification information generally refers to the identification information (Content ID) of the digital content, etc., which can be used to determine the specific digital content used. The identification information of the user end generally refers to the identification information of the user end that has the right and has issued a permission request, and can be used to determine a specific user end. It may include user identification information, device identification information, or authorized domain identification information. The content key refers to the key (ContentKeys) for decrypting the encrypted digital content. In a common DRM system, a corresponding key for decrypting the file will be generated during the encryption process of the distributed and sold digital content. User rights information (UserRight Authority) is the use rights determined according to the agreement or contract between the user terminal and the content provider. In the present invention, the above usage rights include operation rights and processing rights.

表2Table 2

内容权利content rights

内容的标识信息 Identification information for the content 用户端的标识信息 Identification information of the client 内容提供者的标识信息 Content provider identification information 内容密钥 content key 用户权利信息 User Rights Information 签名算法 signature algorithm

签名值 signature value

3、用户权利3. User rights

用户权利包括用户端的标识信息、内容的标识信息(Content ID),内容提供端的标识信息(ContentProvider ID)、权利描述信息(rightexpression)和数字签名(signature)。用户权利是表示用户是否被允许使用内容权利访问内容的凭证。利用内容的标识信息将用户权利、内容、和内容权利关联起来。User rights include user identification information, content identification information (Content ID), content provider identification information (ContentProvider ID), rights description information (rightexpression) and digital signature (signature). A user right is a credential indicating whether a user is allowed to access content using content rights. The user right, the content, and the content right are associated by using the identification information of the content.

表3table 3

用户权利user rights

内容的标识信息 Identification information for the content 用户端的标识信息 Identification information of the client 内容提供端的标识信息 Identification information of the content provider 权利描述信息 Rights description information 签名算法 signature algorithm 签名值 signature value

现在,参考图2,详细描述根据本发明的数字内容管理的系统。图2表示了根据本发明优选实施例的数字内容管理之系统的详细结构的方框图。Now, referring to FIG. 2, the system of digital content management according to the present invention will be described in detail. FIG. 2 is a block diagram showing a detailed structure of a digital content management system according to a preferred embodiment of the present invention.

参考图2,内容提供服务器13(内容提供端,即授权端)包括授权请求接收装置101和生成装置103。Referring to FIG. 2 , the content providing server 13 (the content providing end, that is, the authorizing end) includes an authorization request receiving device 101 and a generating device 103 .

授权请求接收装置101接收来自用户设备11(用户端)的一个请求信息。该请求信息至少包括用户端的标识信息、内容的标识信息以及用户端所请求的一个预定处理权利。该请求信息可以通过常用的通信方式经由英特网、局域网、电话线路、移动通信网等从用户设备11传送到内容提供服务器13的授权请求接收装置101。Authorization request receiving means 101 receives a request message from user equipment 11 (client). The request information includes at least identification information of the user terminal, identification information of the content, and a predetermined processing right requested by the user terminal. The request information can be transmitted from the user equipment 11 to the authorization request receiving device 101 of the content providing server 13 via the Internet, a local area network, a telephone line, a mobile communication network, etc. through common communication methods.

如果数字内容已经存储在用户设备11中,用户仅仅想获取对该数字内容的一个预定处理权利,则用户设备11可以只请求内容提供服务器13授给其该预定处理权利,以便相应地处理存储在用户设备11的数字内容。If the digital content has been stored in the user equipment 11, and the user only wants to obtain a predetermined processing right to the digital content, the user equipment 11 can only request the content providing server 13 to grant it the predetermined processing right, so as to process the content stored in the digital content accordingly. The digital content of the user equipment 11.

可替换地,如果用户希望获得数字内容的同时获取对该数字内容的一个预定处理权利,则用户设备11可以请求内容提供服务器13提供数字内容的同时授给其对数字内容进行所需预定处理的预定处理权利。Alternatively, if the user wishes to obtain a predetermined processing right for the digital content while obtaining the digital content, the user device 11 may request the content providing server 13 to provide the digital content and at the same time authorize it to perform the required predetermined processing right on the digital content. Booking processing rights.

该请求可以是请求对数字内容进行转码,例如,将一个高清格式的数字内容转换成一个低清格式的数字内容,以适用于作为移动电话的用户设备12的需要。该请求还可以是从源数字内容中提取一部分数字内容,例如,从一音乐中提取一个片段作为手机铃声。该请求还可以是对源数字内容进行编辑,例如根据源数字内容来编辑个人内容。应当理解,该请求并不限于上述处理,可以是任何用户所需的处理。The request may be a request to transcode the digital content, for example, convert a high-definition format digital content into a low-definition format digital content, so as to be suitable for the needs of the user equipment 12 as a mobile phone. The request may also be to extract a part of the digital content from the source digital content, for example, to extract a segment from a piece of music as a mobile phone ringtone. The request may also be to edit the source digital content, for example to edit personal content based on the source digital content. It should be understood that the request is not limited to the above processing, and may be any processing required by the user.

生成装置103根据授权接收装置103接收的请求信息,生成一个包含预定处理权利的授权文件,以传送给该用户设备11。该预定处理权利可以使得用户设备11对数字内容进行预定处理。在本实施例中,授权文件可以,如表3所示,包括内容的标识信息、用户端的标识信息、内容提供者的标识信息、处理权利等等。在本实施例中,生成装置103采用本领域所属技术人员所熟知的生成方法生成授权文件。同时,在本发明中,用户端的标识信息可以是用户标识信息、设备标识信息或者授权域标识信息。The generating unit 103 generates an authorization file containing predetermined processing rights according to the request information received by the authorization receiving unit 103 , and sends it to the user equipment 11 . The predetermined processing right may enable the user equipment 11 to perform predetermined processing on the digital content. In this embodiment, the authorization file may, as shown in Table 3, include identification information of the content, identification information of the client, identification information of the content provider, processing rights, and the like. In this embodiment, the generating means 103 generates an authorization file using a generating method known to those skilled in the art. Meanwhile, in the present invention, the identification information of the user end may be user identification information, device identification information or authorized domain identification information.

生成的授权文件通过常用的加密工具加密并签名之后,存储在内容提供服务器13的存储装置(未示出)中,以待发送。After the generated authorization file is encrypted and signed by a commonly used encryption tool, it is stored in a storage device (not shown) of the content providing server 13 and is ready to be sent.

另外,优选地,根据本实施例的内容提供服务器13还可以包括一个合法性验证装置102。在授权请求接收装置101接收到来自用户设备11的处理请求信息之后,合法性验证装置102验证用户端的标识信息的有效性,即验证用户端是不是合法的用户端。在确认用户端的标识信息是有效的之后,生成装置103才根据授权请求接收装置101接收的请求信息,生成授权文件。这可以防止非法用户的访问。In addition, preferably, the content providing server 13 according to this embodiment may further include a legality verification device 102 . After the authorization request receiving means 101 receives the processing request information from the user equipment 11, the legitimacy verification means 102 verifies the validity of the identification information of the user end, that is, verifies whether the user end is a legitimate user end. After confirming that the identification information of the user terminal is valid, the generating means 103 generates an authorization file according to the request information received by the authorization request receiving means 101 . This prevents access by unauthorized users.

优选地,根据本实施例的内容提供服务器13还可以包括一个发送装置104。优选地,在对生成的授权文件采用常用加密方式加密并签名之后,发送装置104将加密的生成的授权文件发送到用户设备11,其中授权文件至少包括内容的标识信息、用户端的标识信息、授权端的标识信息以及预定的处理权利等等。在本发明中,发送装置104可以采用本领域技术人员熟知的通信方式将生成的授权文件发送到用户设备11。Preferably, the content providing server 13 according to this embodiment may further include a sending device 104 . Preferably, after encrypting and signing the generated authorization file using a common encryption method, the sending means 104 sends the encrypted generated authorization file to the user equipment 11, wherein the authorization file includes at least identification information of the content, identification information of the user terminal, authorization terminal identification information and predetermined processing rights, etc. In the present invention, the sending means 104 can send the generated authorization file to the user equipment 11 by means of communication well known to those skilled in the art.

在用户端请求发送所需数字内容并同时请求授予其一个预定处理权利要求的情况下,发送装置104将数字内容以及包括相应预定处理权利的授权文件一起发送给用户设备11。In the case that the user terminal requests to send the required digital content and at the same time requests to be granted a predetermined processing right, the sending means 104 sends the digital content and the authorization file including the corresponding predetermined processing right to the user equipment 11 together.

根据本实施例的用户端的用户设备11可以是一台个人计算机。它包括获取授权文件装置110和内容处理装置111,用于从内容提供服务器13处获取包括预定处理权利的授权文件,并根据获取的处理权利对来自内容提供服务器的或者已存储在用户设备11中的数字内容进行相应的预定处理。The user equipment 11 of the user terminal according to this embodiment may be a personal computer. It includes obtaining an authorization file device 110 and a content processing device 111, which are used to obtain an authorization file including a predetermined processing right from the content providing server 13, and process information from the content providing server or stored in the user equipment 11 according to the obtained processing right. The corresponding predetermined processing of the digital content.

根据本实施例,获取授权文件装置110包括发送装置1101和授权文件接收装置1102。According to this embodiment, the device 110 for obtaining an authorization file includes a sending device 1101 and an authorization file receiving device 1102 .

根据用户设备的需要,发送装置1101向内容提供服务器13发送一个请求获取处理权利的请求信息,用以获取一个预定处理权利,以便对已存储在用户设备11中的数字内容进行相应的预定处理。According to the needs of the user equipment, the sending means 1101 sends a request message requesting to obtain a processing right to the content providing server 13, so as to obtain a predetermined processing right so as to perform corresponding predetermined processing on the digital content stored in the user equipment 11.

可替换地,发送装置1101可以请求内容提供服务器13发送要求获取所需数字内容同时可对该数字内容进行相应预定处理的请求信息。Alternatively, the sending means 1101 may request the content providing server 13 to send request information requesting to obtain the required digital content and to perform corresponding predetermined processing on the digital content.

授权文件接收装置1102接收来自内容提供服务器13产生的一个授权文件。该授权文件包括一个预定处理权利,该预定处理权利可以使得用户设备11对相应的数字内容进行预定处理。接收的授权文件可以存储在用户设备11的存储装置中(未示出)。The authorization file receiving means 1102 receives an authorization file generated by the content providing server 13 . The authorization file includes a predetermined processing right, which enables the user equipment 11 to perform predetermined processing on the corresponding digital content. The received authorization file may be stored in a storage device of the user equipment 11 (not shown).

根据本实施例,用户设备11的内容处理装置111包括处理请求接收装置1110、授权验证装置1111、以及处理装置1112。According to this embodiment, the content processing unit 111 of the user equipment 11 includes a processing request receiving unit 1110 , an authorization verification unit 1111 , and a processing unit 1112 .

处理请求接收装置1110接收来自用户的处理请求,例如请求对数字内容进行编辑、从数字内容中提取一部分数字内容等等。该请求可以来自于另一个用户设备,例如用户设备12。该请求也可以直接来源于一个用户的输入。授权验证装置111根据授权文件接收装置1102接收的授权文件,验证用户设备11是否被授权对该数字内容进行用户所请求的处理。该授权文件可以是授权文件接收装置1102事先获得并存储在用户设备11之存储装置中的授权文件。当然,该授权文件也可以是获取授权文件装置110根据该用户请求实时获得的。在授权文件中包含用户请求的处理权利的情况下,处理装置1112首先使用内容权利中的内容密钥对数字内容进行解密,然后再对该解密数字内容进行相应的处理,以得到一个处理后的数字内容。处理后的数字内容被加密并签名之后可以被存储在用户设备11的存储装置(未示出)中。The processing request receiving means 1110 receives a processing request from a user, such as a request to edit digital content, extract a part of digital content from digital content, and so on. The request may come from another user device, such as user device 12 . The request may also originate directly from a user input. The authorization verification unit 111 verifies whether the user equipment 11 is authorized to process the digital content requested by the user according to the authorization file received by the authorization file receiving unit 1102 . The authorization file may be an authorization file obtained by the authorization file receiving module 1102 and stored in the storage device of the user equipment 11 in advance. Of course, the authorization file may also be obtained in real time by the authorization file obtaining device 110 according to the user's request. If the authorization file contains the processing right requested by the user, the processing device 1112 first uses the content key in the content right to decrypt the digital content, and then performs corresponding processing on the decrypted digital content to obtain a processed digital content. The processed digital content may be stored in a storage device (not shown) of the user equipment 11 after being encrypted and signed.

在本实施例中,优选地,内容处理装置111还可以包括一个关联装置1113。关联装置1113将相关的处理信息附着到处理后的数字内容上。相关的处理信息包含处理前的授权文件信息、处理方式、处理时间、处理前数字内容的状况、和用户端的标识信息等等。上述处理前的授权文件信息例如为授权文件的内容/格式等等。关联的文件被存储在用户设备11存储装置中(未示出),并可随着处理后的数字内容一道被发送到其它用户设备。In this embodiment, preferably, the content processing device 111 may further include an associating device 1113 . The associating means 1113 attaches relevant processing information to the processed digital content. Relevant processing information includes authorization file information before processing, processing method, processing time, status of digital content before processing, identification information of the user terminal, and the like. The authorization file information before processing is, for example, the content/format of the authorization file and the like. The associated files are stored in a storage device (not shown) of the user device 11 and can be sent to other user devices along with the processed digital content.

可替换地,用户设备11中的获取授权文件装置110和内容处理装置111也可以作为一个单独的设备来实现。Alternatively, the means for obtaining an authorization file 110 and the means for processing content 111 in the user equipment 11 may also be implemented as a single device.

在本实施例中,用户设备12可以包括操作请求装置121、处理验证装置122以及操作装置123。操作请求接收装置121接收来自用户的一个操作请求,该操作请求要求操作在用户设备11中的处理后的数字内容。处理验证装置122根据来自关联装置1113的关联信息,验证处理后的数字内容是否以内容提供服务器13授权的方式处理而获得。当然,处理验证装置122也可以直接与内容提供服务器13进行联系,以验证处理后的数字内容是否以内容提供服务器13授权的方式处理而获得。当该处理后的数字内容是以内容提供服务器13授权的方式处理获得时,操作装置123从用户设备11中获得处理后的数字内容,并对该处理后的内容进行解码,以供用户端操作。In this embodiment, the user equipment 12 may include an operation requesting means 121 , a processing verification means 122 and an operating means 123 . The operation request receiving means 121 receives an operation request from the user, and the operation request requires to operate the processed digital content in the user equipment 11 . The processing verifying means 122 verifies whether the processed digital content is obtained through processing in a manner authorized by the content providing server 13 according to the associated information from the associating means 1113 . Of course, the processing verification device 122 may also directly contact the content providing server 13 to verify whether the processed digital content is obtained through processing in a manner authorized by the content providing server 13 . When the processed digital content is obtained in a manner authorized by the content providing server 13, the operating device 123 obtains the processed digital content from the user equipment 11, and decodes the processed content for the user terminal to operate .

现在,参考图3,说明根据本发明优选实施例的授权验证装置1111的结构。图3是显示根据本发明优选实施例的授权验证装置1111之结构的方框图。在本实施例中,授权验证装置1111优选地包括获取装置1114和检查装置1115。获取装置1114从接收装置1102中获得对应与数字内容的一个授权文件。检查装置1115检查授权文件中是否包含用户请求的相应处理权利。在检测装置1115确认授权文件中包括用户请求的相应处理权利时,处理装置1112再对数字内容进行相应处理。Now, referring to FIG. 3, the structure of the authorization verification device 1111 according to the preferred embodiment of the present invention will be described. FIG. 3 is a block diagram showing the structure of an authorization verification device 1111 according to a preferred embodiment of the present invention. In this embodiment, the authorization verification device 1111 preferably includes an obtaining device 1114 and a checking device 1115 . Obtaining means 1114 obtains an authorization file corresponding to the digital content from the receiving means 1102 . Checking means 1115 checks whether the corresponding processing rights requested by the user are included in the authorization file. When the detecting means 1115 confirms that the authorization file includes the corresponding processing right requested by the user, the processing means 1112 then processes the digital content accordingly.

下面结合图4至8说明本发明数字内容管理的方法。The digital content management method of the present invention will be described below with reference to FIGS. 4 to 8 .

图4描述了在内容提供服务器10中执行的处理的流程图。首先,接收来自用户设备11的请求信息,该请求信息至少包括用户端的标识信息、内容的标识信息以及所请求的处理权利(步骤S410)。在本发明中,用户端的标识信息可以是用户标识、设备标识或者授权域的标识。处理权利可以使得用户设备11以一个预定的方式处理数字内容。例如,请求对存储在用户设备11中的数字内容进行转码,以用于适用于作为移动电话的用户设备12的需要。然后,在接收到来自用户设备11的处理请求信息之后,验证用户端ID的有效性(步骤S420)。如果在步骤S420确认用户端ID是非法用户时,则结束处理。FIG. 4 depicts a flowchart of processing performed in the content providing server 10. As shown in FIG. Firstly, the request information from the user equipment 11 is received, the request information at least includes identification information of the user terminal, identification information of the content and requested processing rights (step S410). In the present invention, the identification information of the user end may be a user identification, a device identification or an authorization domain identification. Processing rights may cause user equipment 11 to process digital content in a predetermined manner. For example, a request is made to transcode digital content stored in the user equipment 11 for the needs of the user equipment 12 being a mobile phone. Then, after receiving the processing request information from the user equipment 11, the validity of the client ID is verified (step S420). If it is determined in step S420 that the client ID is an illegal user, then the process ends.

当确认用户端ID是有效的时,处理前进到步骤S430。当然,在不需要对用户端ID验证的情况下,也可以省略步骤S420。然后,在步骤S430,生成装置103根据授权接收装置101接收的请求信息,采用已知的生成方法,生成一个授权文件。在本实施例中,授权文件包括:内容的标识信息、用户端的标识信息、授权端的标识信息、处理权利、内容密钥等等。生成的授权文件可以存储在内容提供服务器13的存储装置中。最后,在步骤S440,发送装置104将成生的授权文件发送到用户设备11,并结束处理。When it is confirmed that the client ID is valid, the process proceeds to step S430. Certainly, step S420 may also be omitted in the case where the verification of the client ID is not required. Then, in step S430, the generating means 103 generates an authorization file by using a known generating method according to the request information received by the authorization receiving means 101. In this embodiment, the authorization file includes: identification information of the content, identification information of the user terminal, identification information of the authorizing terminal, processing right, content key and so on. The generated authorization file can be stored in the storage device of the content providing server 13 . Finally, in step S440, the sending means 104 sends the generated authorization file to the user equipment 11, and ends the process.

下面结合图5说明用户设备11中的用于获取授权文件的处理。The processing for obtaining the authorization file in the user equipment 11 will be described below with reference to FIG. 5 .

参考图5,图5是用户设备11中的用于获取授权文件的处理的流程图。首先,根据用户设备11的需要,发送装置1101向内容提供服务器13发送一个请求发送包括所需预定处理权利的请求信息,用于对已保存在用户设备11中的数字内容进行相应处理;或者发送要求获取所需数字内容并且可对该数字内容进行预定处理的请求信息(步骤S510)。在内容提供服务器13中,根据图4描述的处理,生成一个包括处理权利要求的授权文件。然后,授权文件接收装置1102接收来自内容服务器13的产生的一个包含预定处理权利的授权文件(步骤S520)。接收的授权文件被存储在用户设备11的存储装置中(未示出)。Referring to FIG. 5 , FIG. 5 is a flowchart of a process in the user equipment 11 for obtaining an authorization file. First, according to the needs of the user equipment 11, the sending means 1101 sends a request to the content providing server 13 to send request information including the required predetermined processing rights, which are used to process the digital content already stored in the user equipment 11; or send The request information is required to obtain the desired digital content and to perform predetermined processing on the digital content (step S510). In the content providing server 13, according to the processing described in FIG. 4, an authorization document including processing claims is generated. Then, the authorization file receiving means 1102 receives an authorization file containing predetermined processing rights generated from the content server 13 (step S520). The received authorization file is stored in a storage device of the user equipment 11 (not shown).

下面结合图6说明用户设备11中的用于处理数字内容的处理。The processing for processing digital content in the user equipment 11 will be described below with reference to FIG. 6 .

参考图6,图6是用户设备11中的用于处理数字内容的流程图。首先,接收来自用户的处理请求,例如请求对数字内容进行编辑、从数字内容中提取新的数字内容等等(步骤S610)。然后,从授权文件接收装置1102中获取数字内容所对应的一个授权文件(步骤S620)。当然,该授权文件也可以是事先获得并存储下来的授收文件。接下来,检查该授权文件中是否包含用户所需的处理权利(步骤S630)。在授权文件中没有包含用户所请求的处理权利的情况下,处理结束。在授权文件中包含用户所请求的处理权利时,处理装置1112首先使用内容权利中的内容密钥加密数字内容,然后再对加密的数字内容进行用户所请求的处理,以得到一个处理后的数字内容(步骤S640)。处理后的数字内容可以被加密并签名之后存储在用户设备11的存储设备中。进一步,在步骤S650,将相关的处理信息与所述的处理后的数字内容进行关联。关联后的文件被存储在用户设备11存储装置中(未示出)。当然,在不需要对用户处理进行跟踪的情况下,也可以省略步骤S650。Referring to FIG. 6 , FIG. 6 is a flowchart for processing digital content in the user equipment 11 . First, a processing request from a user is received, such as a request to edit digital content, extract new digital content from digital content, etc. (step S610). Then, obtain an authorization file corresponding to the digital content from the authorization file receiving device 1102 (step S620). Certainly, the authorization document may also be an acceptance document obtained and stored in advance. Next, check whether the authorization file contains the processing rights required by the user (step S630). In the event that the authorization file does not contain the processing rights requested by the user, the processing is terminated. When the authorization file contains the processing right requested by the user, the processing device 1112 first encrypts the digital content using the content key in the content right, and then performs the processing requested by the user on the encrypted digital content to obtain a processed digital content. content (step S640). The processed digital content may be stored in the storage device of the user equipment 11 after being encrypted and signed. Further, in step S650, associate the relevant processing information with the processed digital content. The associated files are stored in the storage device of the user equipment 11 (not shown). Of course, step S650 may also be omitted in the case where tracking of user processing is not required.

下面结合图7说明用户设备12中的用于操作数字内容的处理。The processing for manipulating digital content in the user device 12 will be described below with reference to FIG. 7 .

参考图7,图7是用户设备12中的用于处理数字内容的流程图。首先,接收来自用户的一个操作请求,该操作请求要求操作处理后的数字内容(步骤S710)。然后,根据来自于用户设备11中的关联信息,验证处理后的数字内容是否以内容提供服务器13授权的方式处理获得(步骤S720),即用户设备11中对数字内容的处理是否得到授权端的授权。该关联信息可以是随着该数字内容一道被发送到用户设备12,也可以是在需要验证时从用户设备11中索取。当然,该步骤还可以是直接与内容提供服务器13联系来进行。Referring to FIG. 7 , FIG. 7 is a flowchart for processing digital content in user equipment 12 . First, an operation request from a user is received, and the operation request requires to operate the processed digital content (step S710). Then, according to the associated information from the user equipment 11, it is verified whether the processed digital content is obtained in a manner authorized by the content providing server 13 (step S720), that is, whether the processing of the digital content in the user equipment 11 is authorized by the authorization end . The associated information may be sent to the user equipment 12 along with the digital content, or may be requested from the user equipment 11 when verification is required. Of course, this step can also be performed by directly contacting the content providing server 13 .

当该处理后的数字内容是以授权的方式处理时,从用户设备11中,获取处理后的数字内容(步骤S730)。然后,对处理后的数字内容进行解密,以供用户对处理后的数字内容进行所需操作(步骤S740)。该操作是指在不影响该数字内容之完整性的前提下的使用,例如,播放、复制等等。When the processed digital content is processed in an authorized manner, the processed digital content is acquired from the user device 11 (step S730). Then, the processed digital content is decrypted for the user to perform required operations on the processed digital content (step S740). The operation refers to the use without affecting the integrity of the digital content, such as playing, copying, etc.

以上结合授权域对本发明的优选实施例进行了说明。但是,应该理解,本发明并不局限于使用在授权域中。本发明可以应用在通过从授权端获取一个处理权利,而使用户端能够以一个预定的方式处理数字内容的任何应用中。The preferred embodiments of the present invention have been described above in conjunction with the Authorized Domain. However, it should be understood that the invention is not limited to use in authorized domains. The present invention can be applied in any application that enables the user end to process digital content in a predetermined manner by acquiring a processing right from the authorizing end.

上述用于阐述方法的流程图中所述及的装置均为示例性的,具有类似功能和/或结构的装置均可在相应的流程中应用。The devices mentioned in the above flow charts for explaining the method are exemplary, and devices with similar functions and/or structures can be applied in corresponding processes.

以上虽然结合实施例描述了本发明,很明显对于本领域的技术人员根据前面所描述的内容作出多种替代、修改、和变化是显而易见的,因此,所有这样的替代、修改和变化都应该落入本发明的权利要求的精神和范围之中。Although the present invention has been described above in conjunction with the embodiments, it is obvious for those skilled in the art to make various substitutions, modifications and changes based on the foregoing description, therefore, all such substitutions, modifications and changes should fall within into the spirit and scope of the claims of the present invention.

Claims (26)

1, a kind of method of licensing a digital content comprises step:
(a) receive a request that comes from a user side, this request requires to authorize one of this user side to handle right, and this processing right makes this user side to handle this digital content in a predetermined mode; With
(b) according to this request, generate an authority that comprises this processing right,, make this user side handle this digital content in this predetermined mode to send this user side to.
2, the method for claim 1 also comprises step: send described authority to described user side.
3, method as claimed in claim 1 or 2 also comprises step: send described digital content to described user side.
4, method as claimed in claim 1 or 2 also comprises step: verify whether described request comes from a legal users end.
5, the method for claim 1, wherein described request also comprises the identification information of a user side.
6, method as claimed in claim 5, wherein, the identification information of described user side comprises a kind of in the following identification information: user totem information, equipment identification information and authorized domain identification information.
7, the method for claim 1, wherein described predetermined mode comprises a kind of in the following at least processing mode: this digital content is carried out transcoding; This digital content is edited; With a part of content of extraction from this digital content.
8, a kind of method that requires to authorize a digital content of a user side use comprises step:
(a) send a request, this request requires to authorize one of this user side to handle right, and this processing right makes this user side can handle the right of this digital content in a predetermined mode; With
(b) receive an authority that comprises this processing right that comes from authorization location, make this user side to handle this digital content in this predetermined mode.
9, method as claimed in claim 8, wherein, described request also comprises the identification information of a user side.
10, method as claimed in claim 9, wherein, the identification information of described user side comprises a kind of in the following at least identification information: user totem information, equipment identification information and authorized domain identification information.
11, method as claimed in claim 8, wherein, described predetermined mode comprises a kind of in the following processing mode: this digital content is carried out transcoding; This digital content is edited; With a part of content of extraction from this digital content.
12, a kind of method in a digital content of a user side processing comprises step:
(a) receive a request, this request requires to handle this digital content in a predetermined mode;
(b) verify whether this user side is authorized to handle this digital content in this predetermined mode; With
(c) when this user side is authorized to handle this digital content in this predetermined mode, handle this digital content by this predetermined mode, to obtain a digital content after the processing.
13, method as claimed in claim 12, wherein, step (b) comprising:
(i) obtain the pairing authority of this digital content;
Check that (ii) whether comprising one in this authority handles right, this this user side of processing right mandate is handled this digital content in this predetermined mode.
14, method as claimed in claim 13, wherein, described predetermined mode comprises a kind of in the following processing mode: this digital content is carried out transcoding; This digital content is edited; With a part of content of extraction from this digital content.
15, method as claimed in claim 13 also comprises step: carry out the digital content after relevant process information and the described processing related.
16, method as claimed in claim 15, wherein, described process information comprises a kind of in the following message at least: the situation and the user side identification information of this digital content before described authority information, processing mode, processing time, the processing.
17, a kind of method of the digital content after processing of a user side operation comprises step:
(a) receive a request, this request requires the digital content after this processing of operation;
(b) verify that whether digital content after this processing handle in the mode of a mandate and obtain; With
(c) when the digital content after this processing be to handle and when obtaining in the mode of this mandate, obtain digital content after this processing for this user side operation.
18, a kind of device of licensing a digital content comprises:
An authorization requests receiving trap is used to receive a request that comes from a user side, and this request requires to authorize one of this user side to handle right, and this processing right makes this user side to handle this digital content in a predetermined mode; With
A generating apparatus is used for according to this request, generates an authority that comprises this processing right, to send this user side to, makes this user side handle this digital content in this predetermined mode.
19, device as claimed in claim 18 also comprises a dispensing device, is used to send described authority to described user side.
20, device as claimed in claim 19, wherein, described dispensing device also is used to send described digital content to described user side.
21, as claim 18 or 19 described devices, also comprise a legitimate verification device, be used to verify whether described request comes from a legal users end.
22, a kind of device that requires to authorize a digital content of a user side use comprises:
A dispensing device is used to send a request, and this request requires to authorize one of this user side to handle right, and this processing right makes this user side can handle the right of this digital content in a predetermined mode; With
A mandate receiving trap is used to receive an authority that comprises this processing right that comes from authorization location, makes this user side to handle this digitized content in this predetermined mode.
23, a kind of device in a digital content of a user side processing comprises:
Handle the request receiving trap for one, be used to receive a request, this request requires to handle this digital content in a predetermined mode;
An authority checking device is used to verify whether this user side is authorized to handle this digital content in this predetermined mode; With
A treating apparatus is used for handling this digital content by this predetermined mode, to obtain a digital content after the processing when this user side is authorized to handle this digital content in this predetermined mode.
24, device as claimed in claim 23, wherein, described authority checking device comprises:
A deriving means is used to obtain the pairing authority of this digital content;
A testing fixture is used for checking whether this authority comprises one and handle right, and this this user side of processing right mandate is handled this digital content in this predetermined mode.
25, device as claimed in claim 23 also comprises an associated apparatus, be used for will be relevant process information and described processing after digital content carry out related.
26, a kind of device of the digital content after processing of a user side operation comprises:
An operation requests receiving trap is used to receive a request, and this request requires this digital content of operation;
Handle demo plant for one, be used to verify that whether digital content after this processing handle in the mode of a mandate and obtain; With
An operating means when the digital content after this processing is to handle and when obtaining in the mode of this mandate, obtains digital content after this processing for this user side operation.
CN 200580044995 2004-12-28 2005-12-23 Method and apparatus for digital content management Pending CN101091183A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200580044995 CN101091183A (en) 2004-12-28 2005-12-23 Method and apparatus for digital content management

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
CN200410104502 2004-12-28
CN200410104502.5 2004-12-28
CN 200580044995 CN101091183A (en) 2004-12-28 2005-12-23 Method and apparatus for digital content management

Publications (1)

Publication Number Publication Date
CN101091183A true CN101091183A (en) 2007-12-19

Family

ID=38943782

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200580044995 Pending CN101091183A (en) 2004-12-28 2005-12-23 Method and apparatus for digital content management

Country Status (1)

Country Link
CN (1) CN101091183A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103080946A (en) * 2010-09-16 2013-05-01 国际商业机器公司 Method, secure device, system and computer program product for securely managing files

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103080946A (en) * 2010-09-16 2013-05-01 国际商业机器公司 Method, secure device, system and computer program product for securely managing files
CN103080946B (en) * 2010-09-16 2016-10-12 国际商业机器公司 For managing the method for file, safety equipment, system and computer program safely
US9811646B2 (en) 2010-09-16 2017-11-07 International Business Machines Corporation Method, secure device, system and computer program product for securely managing files

Similar Documents

Publication Publication Date Title
CN100576148C (en) Systems and methods for providing secure server key operations
KR100605071B1 (en) Safe and convenient management system and method of digital electronic content
US7224805B2 (en) Consumption of content
US8078725B2 (en) Method and system for secure distribution and utilization of data over a network
US7975312B2 (en) Token passing technique for media playback devices
CA2457291C (en) Issuing a publisher use license off-line in a digital rights management (drm) system
CA2457938C (en) Enrolling/sub-enrolling a digital rights management(drm) server into a drm architecture
CN100403209C (en) Method and apparatus for authorizing content operations
CN101682501B (en) For performing method and the portable memory apparatus of authentication protocol
US20040139312A1 (en) Categorization of host security levels based on functionality implemented inside secure hardware
JP2005526320A (en) Secure content sharing in digital rights management
CN1592876A (en) Method and system for digital rights management in content distribution applications
JP2005506743A (en) Material maintenance providing method, apparatus and system for material licensee
CN101903889A (en) Device and method for digital rights management
US20090183000A1 (en) Method And System For Dynamically Granting A DRM License Using A URL
US8417937B2 (en) System and method for securely transfering content from set-top box to personal media player
CN101189633B (en) Method and equipment for carrying out authorizing rights issuers in content delivering system
JP2004318448A (en) Terminal device with content protection function
Kravitz et al. Achieving media portability through local content translation and end-to-end rights management
US20100077486A1 (en) Method and apparatus for digital content management
KR100982059B1 (en) A system and method for converting contents of affiliated DM to contents of compatible DM, and a recording medium having recorded thereon a computer program of the function
JP2004312717A (en) Data protection management device and data protection management method
KR20050104182A (en) Method of authenticating user of drm contents service
CN101091183A (en) Method and apparatus for digital content management
WO2006135078A1 (en) Method for limiting content user terminal, storage device, and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication

Open date: 20071219