Method for offline DRM authentication and a system thereof
First Claim
1. A method for offline DRM authentication, wherein the method comprises:
- encrypting, by a content provider, a data file with a DRM encryption standard, wherein the data file is delivered to a local computer;
storing, by the content provider, internal information into a third party authentication device in the form of hardware before distributing the third party authentication device to a user, wherein the internal information includes a seed ID, a key, a public key, a key ID, a public key ID, developer information and/or a certificate name;
distributing the third party authentication device to the user;
connecting the third party authentication device to the local computer;
performing offline DRM authentication between the local computer and the third party authentication device after the third party authentication device is delivered to the user, wherein the third party authentication device enables the user to use the data file encrypted with the DRM encryption standard and stored on the local computer without a network connection, wherein performing offline DRM authentication includes;
1) determining, by the local computer connected with the third party authentication device, whether a copyright license for reading the data file is requested by a software program operating on the local computer and includes a seed ID, a public key ID, a contents ID, a properties and/or address, and if so, sending a license request to the third party authentication device, wherein the license request is generated from the data file, and the license request comprises the seed ID, the public key ID, the contents ID, the properties and/or the address;
2) offline verifying, by the third party authentication device, a legitimacy of the license request by decrypting the license request using a pre-stored decryption algorithm inside the third party authentication device, and by comparing information from the decrypted license request with the internal information stored in the third party authentication device after the third party authentication device receives the license request sent from the software program; and
returning a license information to the local computer by the third party authentication device; and
3) analyzing the license information received from the third party authentication device by the local computer and generating a corresponding copyright license based on the license information by the local computer, decrypting the data file which is encrypted with the DRM encryption standard by using a key of the copyright license, opening the data file and responding to an operation of a user by the software program;
wherein the third party authentication device is external to the local computer and the content provider.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for offline DRM authentication and a system thereof relates to the information security field. In order to solve the problem that a license must be requested from the server in the process of DRM authentication, the invention provides a method for offline DRM authentication, in which, the method comprises: a content provider encrypts the data file with DRM standard and stores the internal information in an authentication device, the authentication device is connected to the local computer, the software program on the local computer opens and reads the data file. A system for offline DRM authentication, in which, the system comprises an authentication device, a client PC and content provider side, the authentication device comprises the DRM service module and authentication communication module. Compared with the prior art, the present invention allows the user to use the DRM protected information without a network connection.
-
Citations
15 Claims
-
1. A method for offline DRM authentication, wherein the method comprises:
-
encrypting, by a content provider, a data file with a DRM encryption standard, wherein the data file is delivered to a local computer; storing, by the content provider, internal information into a third party authentication device in the form of hardware before distributing the third party authentication device to a user, wherein the internal information includes a seed ID, a key, a public key, a key ID, a public key ID, developer information and/or a certificate name; distributing the third party authentication device to the user; connecting the third party authentication device to the local computer; performing offline DRM authentication between the local computer and the third party authentication device after the third party authentication device is delivered to the user, wherein the third party authentication device enables the user to use the data file encrypted with the DRM encryption standard and stored on the local computer without a network connection, wherein performing offline DRM authentication includes; 1) determining, by the local computer connected with the third party authentication device, whether a copyright license for reading the data file is requested by a software program operating on the local computer and includes a seed ID, a public key ID, a contents ID, a properties and/or address, and if so, sending a license request to the third party authentication device, wherein the license request is generated from the data file, and the license request comprises the seed ID, the public key ID, the contents ID, the properties and/or the address; 2) offline verifying, by the third party authentication device, a legitimacy of the license request by decrypting the license request using a pre-stored decryption algorithm inside the third party authentication device, and by comparing information from the decrypted license request with the internal information stored in the third party authentication device after the third party authentication device receives the license request sent from the software program; and
returning a license information to the local computer by the third party authentication device; and3) analyzing the license information received from the third party authentication device by the local computer and generating a corresponding copyright license based on the license information by the local computer, decrypting the data file which is encrypted with the DRM encryption standard by using a key of the copyright license, opening the data file and responding to an operation of a user by the software program; wherein the third party authentication device is external to the local computer and the content provider. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for offline DRM authentication, wherein the system comprises:
-
a third party authentication device in the form of hardware that is distributed to a user, a content provider computing device and a client PC with a preinstalled software program, wherein the third party authentication device is connectable to the client PC and enables a user to use DRM protected content without a network connection, the third party authentication device is external to the local computer and the content provider; the content provider computing device is adapted to encrypt a data file with a DRM encryption standard and store internal information into the third party authentication device before distributing the third party authentication device to the user, wherein the data file is delivered to the client PC, the client PC with the preinstalled software program opens and reads the data file which is encrypted with the DRM encryption standard and provided by the content provider computing device after the third party authentication device is connected to the client PC and verifies that an offline license request from a software program on the client PC is legitimate according to the internal information pre-stored in the third party authentication device, wherein the internal information includes a seed ID, a key, a public key, a key ID, a public key ID, developer information and/or a certificate name wherein, the client PC comprises; a determination module adapted to determine whether a copyright license for the data file is requested, the copyright license including a seed ID, a public key ID, a contents ID, a properties and/or address, wherein the software program sends the license request to the third party authentication device, wherein the license request is generated from the data file, and the license request comprises the seed ID, the public key ID, the contents ID, the properties and/or the address; a communication module, which is adapted to receive an encrypted data file sent from an encryption module and license information sent from the third party authentication device; and an analysis module adapted to analyze the license information received by the communication module and generate the corresponding copyright license based on the license information, decrypt the data file encrypted with the DRM encryption standard by using the copyright license and open the data file, and respond to an operation of a user as well; the third party authentication device comprises; a DRM service module adapted to offline verify legitimacy of the license request, after the license request is received by the third party authentication device, by decrypting the license request using a pre-stored decryption algorithm inside the third party authentication device, and by comparing information from the decrypted license request with the internal information pre-stored in the third party authentication device, wherein the DRM service module returns the license information to the client PC for a legitimate license request; and an authentication communication module adapted to connect the client PC to the third party authentication device and receive the license request sent from the determination module; and the content provider computing device comprises; an encryption module adapted to encrypt the data file with the DRM encryption standard and send the encrypted data file to the client PC; and a storage module adapted to store the internal information into the third party authentication device. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
Specification