阅读说明：本技术 一种iptv监管方法 (IPTV supervision method ) 是由 吴彦泽 唐锋 王波 于 2020-12-28 设计创作，主要内容包括：本发明公开了一种IPTV监管方法,涉及信息传播技术领域,包括运营商通过向IPTV监管中心申请得到对应的CA数字证书,运营商首先对原创初始内容文件的做SHA1散列算法,来得到原创初始内容文件的数据摘要,通过数字签名文件来对数据摘要做数字签名,通过签名后会产生标准的输出数据R,S,将签名后的标准输出拼接在原创初始内容文件之后,组成原创初始内容文件的最终字符串,本发明公与改变内容数据的数字水印等技术相比,原始的内容数据可以在传输过程中的任何位置抽出,方便地实现对IPTV内容的监管；并且,不改变原始的内容数据可以避免产生知识产权等问题。(The invention discloses an IPTV supervision method, which relates to the technical field of information transmission and comprises the following steps that an operator applies for an IPTV supervision center to obtain a corresponding CA digital certificate, the operator firstly performs SHA1 hash algorithm on an original initial content file to obtain a data abstract of the original initial content file, the data abstract is digitally signed by a digital signature file, standard output data R and S can be generated after signing, and the signed standard output is spliced after the original initial content file to form a final character string of the original initial content file; moreover, the problems of intellectual property and the like can be avoided without changing the original content data.)

1. An IPTV supervision method is characterized by comprising the following steps:

s1, the operator applies for the IPTV supervision center to obtain a corresponding CA digital certificate;

s2, the operator firstly carries out SHA1 hash algorithm on the original initial content file to obtain the data digest of the original initial content file;

s3, signing the data abstract by adopting a digital signature file;

s4, generating standard output data R, S after signature;

s5, splicing the signed standard output after the original initial content file to form a final character string of the original initial content file;

s6, uploading the original initial content file and the CA digital signature file to IPTV by the operator;

s7, the original initial content file and the CA digital signature file enter an IP network;

s8, the IPTV supervision center positions through the output data R and S, and then extracts CMI information of the original initial content file and the CA digital signature file entering the IP network, and extracts key features from the data;

s9, comparing the key features extracted from the data with the same pre-stored features of the final character string forming the original initial content file, if the key features are the same, playing can be carried out, and if the key features are not illegal, playing cannot be carried out, and if the key features are not the same, playing is illegal;

s10, uploading the illegal original content file and the CA digital signature file to an IPTV supervision center database, taking out the operator information in the received content supervision mark, and alarming;

s11, the IPTV supervision center revokes the operator to obtain the corresponding CA digital certificate.

2. The IPTV supervision method according to claim 1, wherein in the step S4, the digital signature is decrypted to obtain a private key, the data digest is signed by the private key, and standard output data R, S is generated after the signature.

3. The IPTV supervision method according to claim 1, wherein in the step S6, the operator uploads an original initial content file, a CA digital signature file and output data R, S to an IPTV, and the IPTV can be a self-built server or an IPTV server built by a third party.

4. The IPTV supervision method as claimed in claim 1, wherein in the step S8, the operator uploads the original initial content file, the CA digital signature file and the output data R, S to the IPTV, because the CA digital signature file information is signed by applying for a corresponding CA digital certificate from the IPTV supervision center, only the IPTV supervision center can correctly open and supervise and analyze the content file.

5. The IPTV monitoring method of claim 1, wherein in step S8, the method for extracting key features samples an initial content file data address in the IPTV to obtain a sample address set, and the content of the sample address set is hashed by a content hash method to obtain a hash value, so as to obtain the pre-stored features.

6. The IPTV supervision method according to claim 1, wherein in the step S8, the signed content supervision flag is embedded in the IPTV content to be supervised, and the IPTV content with the content supervision flag is sent to the receiving party through the network, the receiving party receives the IPTV content with the content supervision flag, takes out the content according to the content supervision key sequence number in the content supervision flag, obtains the corresponding public key from the content supervision key list of the terminal, and judges whether the digital signature is legal, if so, please execute the following steps, otherwise, send out the IPTV content security warning.

7. The IPTV monitoring method of claim 1, wherein in step S8, the received IPTV content data address is sampled to obtain a sampled address set, and the sampled local address set is collected and hashed by using a content hashing method to obtain a hash value, and the hash value is compared with a pre-stored feature, that is, the key feature is extracted and compared with the pre-stored feature, if the key feature and the pre-stored feature are the same, the IPTV monitoring method can be used for playing without violation, and if the key feature and the pre-stored feature are not the same, the IPTV monitoring method cannot be used for playing without violation.

Technical Field

The invention relates to the technical field of information transmission, in particular to an IPTV supervision method.

Background

With the development of broadband networks, streaming media, codecs, information encryption and storage technologies since the 21 st century, video services based on transmission control protocol/internet protocol (TCP/IP) networks, i.e., IPTV, have begun to step into the business operations. The characteristics of openness and interactivity of IPTV technology enable IPTV to provide new applications that cannot be provided by traditional analog tv and digital tv, but new, more serious and complex security problems are generated: on one hand, due to the characteristics of openness, interactivity and the like of the IPTV technology, an attacker can transmit harmful contents without attacking professional attacking means such as satellite channels, inter cut on cable television lines and the like, and the attacking means is more concealed and lower in cost; on the other hand, the IPTV technology is less costly to provide television services and more difficult to manage the content of the provided television services than the conventional analog television and digital television.

The current streaming media security technology mainly has two technologies, namely conditional access technology and digital rights management technology. The former focuses on conditional acceptance in the field of digital television, and the latter focuses on copyright protection of digital content, and does not consider the content supervision requirement of the IPTV, and therefore, the former cannot be applied to content supervision of the IPTV.

Disclosure of Invention

The invention aims to solve the defects in the prior art and provides an IPTV supervision method.

In order to achieve the purpose, the invention adopts the following technical scheme:

an IPTV supervision method comprises the following steps:

s1, the operator applies for the IPTV supervision center to obtain a corresponding CA digital certificate;

s2, the operator firstly carries out SHA1 hash algorithm on the original initial content file to obtain the data digest of the original initial content file;

s3, signing the data abstract by adopting a digital signature file;

s4, generating standard output data R, S after signature;

s5, splicing the signed standard output after the original initial content file to form a final character string of the original initial content file;

s6, uploading the original initial content file and the CA digital signature file to IPTV by the operator;

s7, the original initial content file and the CA digital signature file enter an IP network;

s8, the IPTV supervision center positions through the output data R and S, and then extracts CMI information of the original initial content file and the CA digital signature file entering the IP network, and extracts key features from the data;

s9, comparing the key features extracted from the data with the same pre-stored features of the final character string forming the original initial content file, if the key features are the same, playing can be carried out, and if the key features are not illegal, playing cannot be carried out, and if the key features are not the same, playing is illegal;

s10, uploading the illegal original content file and the CA digital signature file to an IPTV supervision center database, taking out the operator information in the received content supervision mark, and alarming;

s11, the IPTV supervision center revokes the operator to obtain the corresponding CA digital certificate.

Preferably, in step S4, the digital signature is decrypted to obtain a private key, the data digest is signed by the private key, and the signed data digest generates standard output data R and S.

Preferably, in step S6, the operator uploads the original content file, the CA digital signature file, and the output data R and S to an IPTV, which may be a self-established server or an IPTV server that has been established by a third party.

Preferably, in the step S8, the operator uploads the original initial content file, the CA digital signature file, and the output data R, S to the IPTV, because the CA digital signature file information is signed by applying for a corresponding CA digital certificate by the IPTV monitoring center, only the IPTV monitoring center can correctly open and monitor and analyze the content file.

Preferably, in step S8, the method for extracting the key feature samples an initial content file data address in the IPTV to obtain a sample address set, and the content of the sample address set is hashed by a content hash method to obtain a hash value, so as to obtain the pre-stored feature.

Preferably, in step S8, the signed content monitoring flag with the output data R, S is embedded into the IPTV content to be monitored, and the IPTV content with the content monitoring flag is sent to the receiving party through the network, the receiving party receives the IPTV content with the content monitoring flag, takes out the content according to the content monitoring key sequence number in the content monitoring flag, obtains the corresponding public key from the content monitoring key list of the terminal, and determines whether the digital signature is legal, if so, please execute the following steps, otherwise, send out an IPTV content security warning.

Preferably, in step S8, the IPTV content data address is sampled to obtain a sampled address set, the sample local address set is collected and hashed by using a content hashing method to obtain a hash value, and the hash value is compared with the pre-stored feature, that is, the key feature is extracted and compared with the pre-stored feature, and if the two are the same, the IPTV content data address can be played without violation, and if the two are not the same, the IPTV content data address cannot be played without violation.

The invention has the beneficial effects that:

1. the IPTV content safety supervision method provided by the method of the invention does not change the original content data, and realizes the supervision of the IPTV content only by embedding a simple content supervision label at a proper position in the IPTV content stream, such as an extension head of a Real-time Transport Protocol (RTP) data packet. Compared with the technologies of changing the digital watermark of the content data and the like, the original content data can be extracted at any position in the transmission process, and the supervision of the IPTV content is conveniently realized; moreover, the problems of intellectual property and the like can be avoided without changing the original content data.

2. The IPTV content monitoring method provided by the invention has small data redundancy, and compared with huge IPTV content data volume, the content monitoring label only accounts for a small proportion in the IPTV content stream, so that the large data redundancy is not caused.

3. The IPTV content supervision method provided by the invention is simple to implement and low in cost, and the content supervision tag is relatively independent of the content, so that the method is strong in expandability and applicable to various application modes.

4. The IPTV content monitoring method provided by the invention adopts an address sampling method to reduce the operation overhead, and can control the operation overhead by adjusting the sampling proportion, so that the operation overhead can be controlled within an acceptable range.

Drawings

Fig. 1 is a flowchart illustrating an IPTV monitoring method according to an embodiment of the present invention.

Fig. 2 is a schematic flow chart of an IPTV monitoring center monitoring embodiment of the IPTV monitoring method of the present invention.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments.

Referring to fig. 1-2, an IPTV supervision method includes the following steps:

s1, the operator applies for the IPTV supervision center to obtain a corresponding CA digital certificate;

s2, the operator firstly carries out SHA1 hash algorithm on the original initial content file to obtain the data digest of the original initial content file;

s3, signing the data abstract by adopting a digital signature file;

s4, generating standard output data R, S after signature;

s5, splicing the signed standard output after the original initial content file to form a final character string of the original initial content file;

s6, uploading the original initial content file and the CA digital signature file to IPTV by the operator;

s7, the original initial content file and the CA digital signature file enter an IP network;

s8, the IPTV supervision center positions through the output data R and S, and then extracts CMI information of the original initial content file and the CA digital signature file entering the IP network, and extracts key features from the data;

s9, comparing the key features extracted from the data with the same pre-stored features of the final character string forming the original initial content file, if the key features are the same, playing can be carried out, and if the key features are not illegal, playing cannot be carried out, and if the key features are not the same, playing is illegal;

s10, uploading the illegal original content file and the CA digital signature file to an IPTV supervision center database, taking out the operator information in the received content supervision mark, and alarming;

s11, the IPTV supervision center revokes the operator to obtain the corresponding CA digital certificate.

Wherein:

a. in step S4, the digital signature is decrypted to obtain a private key, the data digest is signed by the private key, and standard output data R and S are generated after the signature.

b. In step S6, the operator uploads the original content file, the CA digital signature file, and the output data R, S to the IPTV, which may be a server built by the operator or an IPTV server already built by a third party.

c. In step S8, the operator uploads the original content file, the CA digital signature file, and the output data R, S to the IPTV, because the CA digital signature file information is signed by applying for a corresponding CA digital certificate by the IPTV monitoring center, only the IPTV monitoring center can correctly open and monitor and analyze the content file.

Wherein:

d. in step S8, the method for extracting key features samples the data address of the initial content file in the IPTV to obtain a sampling address set, and the content of the sampling address set is hashed by a content hash method to obtain a hash value, so as to obtain a pre-stored feature.

e. In step S8, the signed content supervision flag is embedded into the IPTV content to be supervised, and the IPTV content with the content supervision flag is sent to the receiving party via the network, the receiving party receives the IPTV content with the content supervision flag, takes out the content according to the content supervision key sequence number in the content supervision flag, obtains the corresponding public key from the content supervision key list of the terminal, and determines whether the digital signature is legal, if so, please execute the following steps, otherwise, send out the IPTV content security warning.

f. In step S8, the received IPTV content data address is sampled to obtain a sampled address set, the sample local address set is collected and hashed by using a content hashing method to obtain a hash value, the hash value is combined with the pre-stored feature for comparison, that is, the key feature is extracted for comparison with the pre-stored feature, and if the two are the same, the IPTV content data address can be played without violation, and if the two are not the same, the IPTV content data address cannot be played without violation.

The working principle is as follows:

an operator applies for an IPTV supervision center to obtain a corresponding CA digital certificate, the operator firstly performs SHA1 hash algorithm on an original initial content file to obtain a data abstract of the original initial content file, performs digital signature on the data abstract through a digital signature file, generates standard output data R and S after signature, splices the standard output after signature on the original initial content file to form a final character string of the original initial content file, uploads the original initial content file and the CA digital signature file to the IPTV by the operator, the original initial content file and the CA digital signature file enter an IP network, the IPTV supervision center positions through the output data R and S, performs CMI information extraction on the original initial content file and the CA digital signature file entering the IP network, and extracts key features from the data, and comparing key features extracted from the data with the same pre-stored features of the final character string forming the original initial content file, if the key features are the same as the pre-stored features, playing the key features without violation, and if the key features are different from the pre-stored features, playing the key features, if the key features are not the same as the pre-stored features, playing the key features without violation, and if the key features are not the same as the pre-stored features, uploading the illegal original initial content file and the illegal CA digital signature file to an IPTV monitoring center database, taking out the operator information in the received content monitoring mark, giving an alarm, and withdrawing the operator.

In the description of the present invention, it is to be understood that the terms "center", "longitudinal", "lateral", "length", "width", "thickness", "upper", "lower", "front", "rear", "left", "right", "vertical", "horizontal", "top", "bottom", "inner", "outer", "clockwise", "counterclockwise", and the like, indicate orientations and positional relationships based on those shown in the drawings, and are used only for convenience of description and simplicity of description, and do not indicate or imply that the equipment or element being referred to must have a particular orientation, be constructed and operated in a particular orientation, and thus, should not be considered as limiting the present invention.

Furthermore, the terms "first", "second" and "first" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include one or more of that feature. In the description of the present invention, "a plurality" means two or more unless specifically defined otherwise.

The above description is only for the preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art should be considered to be within the technical scope of the present invention, and the technical solutions and the inventive concepts thereof according to the present invention should be equivalent or changed within the scope of the present invention.