阅读说明：本技术 多媒体安全播放方法和系统 (Multimedia safe playing method and system ) 是由 李鑫 魏巍 李顶占 刘涛 陶留丹 于 2020-07-09 设计创作，主要内容包括：本发明提出了一种多媒体安全播放方法和系统,在多媒体终端首次接收到的多媒体数据时,需要对多媒体数据的全部数据计算全摘要值,并将计算得到的第二全摘要值与接收到的第一全摘要值进行比对,如果一致,则说明多媒体数据未被篡改,反之,则已被篡改；在首次接收到多媒体数据之后,且每次播放之前,还需要对多媒体数据进行哈希验证,本发明在每次播放之前,只需对多媒体数据中抽取关键数据计算简摘要值,并将计算得到的第二简摘要值与接收到的第一简摘要值进行比对,如果一致,则说明多媒体数据未被篡改,反之,则已被篡改,通过简摘要值来实现每次播放前的哈希验证,可以有效节省了前期准备时间,降低了哈希验证的复杂程度。(The invention provides a multimedia safe playing method and a multimedia safe playing system.A full abstract value needs to be calculated for all data of multimedia data when the multimedia data is received by a multimedia terminal for the first time, a second full abstract value obtained by calculation is compared with a first full abstract value received, if the second full abstract value is consistent with the first full abstract value, the multimedia data is not falsified, otherwise, the multimedia data is falsified; after the multimedia data is received for the first time and before the multimedia data is played for each time, the hash verification is needed to be carried out on the multimedia data.)

1. A method for secure multimedia playback, the method comprising:

the cloud platform calculates a full abstract value of the received multimedia data to obtain a first full abstract value, extracts small segments of data from the multimedia data according to a data extraction rule for calculating a simple abstract value agreed with a multimedia terminal, combines the small segments of data to form a first data set, and calculates a simple abstract of the first data set to obtain a first simple abstract value;

the cloud platform packs the multimedia data, the first full abstract value and the first simple abstract value to form a network data packet, signs the network data packet through a private key of the cloud platform to form a network data packet signature file, and then transmits the network data packet signature file to the multimedia terminal;

after the multimedia terminal adopts the public key of the cloud platform to check the signature of the network data packet signature file, performing full abstract value calculation on the received multimedia data to obtain a second full abstract value;

Comparing whether the second full abstract value is consistent with the received first full abstract value or not, and if so, performing local association storage on the multimedia data and the first simple abstract value;

before the multimedia terminal plays the multimedia data each time, extracting small segments of data from the multimedia data according to the data extraction rule, combining to form a second data collection set, and then performing summary calculation on the second data collection set to obtain a second summary value;

and comparing the second summary value with the associated first summary value, if the second summary value is consistent with the associated first summary value, playing the multimedia data, and if the second summary value is inconsistent with the associated first summary value, prohibiting the multimedia data from being played.

2. The method for safely playing multimedia according to claim 1, wherein: calculating the current multimedia data a played by the multimedia terminal_iIs left for a time t_iWait for time t_iWhen the preset threshold value T is reached, the next multimedia data a to be played is searched according to the play list_i+1The preset threshold value T is larger than the next multimedia data a to be played_i+1The length of time for which the summary value is calculated.

3. The method for secure multimedia playback of claim 1, wherein the data extraction rule is characterized by:

Presetting byte size range [ k ] of m intervals₁,k₂][k₂,k₃][k₃,k₄]…[k_m,k_m+1]Each interval range is respectively corresponding to a segmentation rule; and when the byte size of the multimedia data falls into any interval range, segmenting according to the corresponding segmentation rule, and combining the data extracted by each segment to form a data collection set.

4. The method for safely playing multimedia according to claim 3, wherein the segmentation rule is:

presetting the size of multimedia data a as w bytes, segmenting the multimedia data a according to fixed bytes R, respectively extracting the p-th byte to the q-th byte in each segment, and combining the extracted data of each segment to form a data aggregate.

5. The method for safely playing multimedia according to claim 1, wherein:

when the multimedia terminal stores the multimedia data and the first brief summary value in a local association manner, after a preset key is adopted to encrypt the first brief summary value to obtain a first brief summary value ciphertext, the first brief summary value ciphertext and the multimedia data are stored in a local association manner;

before comparing the second summary value with the associated first summary value, searching the associated first summary value ciphertext according to the multimedia data, decrypting the first summary value ciphertext by using a preset key to obtain the first summary value, and then comparing the second summary value with the decrypted first summary value.

6. The method for safely playing multimedia according to claim 1, wherein: the cloud platform and the multimedia terminal perform key agreement to obtain a shared key;

before the cloud platform signs the network data packet, encrypting the network data packet through a shared key to obtain a network data packet ciphertext, and then signing the network data packet ciphertext by using a private key of the cloud platform to form a network data packet ciphertext signature file;

and after the multimedia terminal verifies the network data packet ciphertext signature file, decrypting the network data packet ciphertext by using the shared key to obtain the multimedia data, and then calculating the full digest value of the multimedia data.

7. A multimedia secure playback system, comprising: the system comprises a cloud platform and a multimedia terminal, wherein the cloud platform and the multimedia terminal are connected in a network communication mode and execute the multimedia safe playing method of any one of claims 1-6.

8. The system for safely playing the multimedia as claimed in claim 7, wherein the cloud platform is provided with a first security module, the first security module is used for calculating a full digest value and a simple digest value of the multimedia data, and performing a signature operation on the first full digest value and the first simple digest value together with the multimedia data;

The multimedia terminal is provided with a second security module and a storage module, wherein the second security module is used for checking the signature of the received network data packet signature file and verifying the full abstract value and the simple abstract value of the multimedia data after the signature passes; the storage module is used for storing the multimedia data and the corresponding first summary data in an associated mode.

Technical Field

The invention relates to the technical field of multimedia playing management, in particular to a multimedia safe playing method and system.

Background

At present, advertisement media systems are more and more widely used, and advertisement playing devices (such as LED screens) are more and more used in places such as buses, buildings, elevators, outdoors and the like, and the advertisement playing devices play different information every day. However, with the rapid expansion of the market, the influence of the security threat caused by the market is more and more extensive, once the played media information is maliciously interfered, tampered or even replaced, the played media information will have bad influence on the media of public audiences, and even the social stability will be influenced. Meanwhile, whether the content played by the advertisement playing equipment is legal and ordered or not is judged, and whether the content can be falsified by external illegal personnel to play illegal contents or not is judged; whether a person who is in charge of the periodical utilizes the work to play video files which violate the interests of the company and the national laws or not because the person is dissatisfied with the society and the company. These possible risks are also unbearable to the advertising media companies.

Therefore, the security of the media file is very important, and the development of the advertising media company is the first major issue, and it is necessary to develop a strict playing system to prevent the occurrence of malicious interference, tampering, replacement, and the like.

Disclosure of Invention

In view of the foregoing, there is a need to provide a method and a system for playing multimedia data safely, which can effectively prevent the multimedia data from being illegally blocked, tampered and forged in the process of issuing the multimedia data, and ensure the safety of the whole process of issuing the multimedia data.

The first aspect of the present invention provides a method for safely playing multimedia, where the method includes:

the cloud platform calculates a full abstract value of the received multimedia data to obtain a first full abstract value, extracts small segments of data from the multimedia data according to a data extraction rule for calculating a simple abstract value agreed with a multimedia terminal, combines the small segments of data to form a first data set, and calculates a simple abstract of the first data set to obtain a first simple abstract value;

the cloud platform packs the multimedia data, the first full abstract value and the first simple abstract value to form a network data packet, signs the network data packet through a private key of the cloud platform to form a network data packet signature file, and then transmits the network data packet signature file to the multimedia terminal;

after the multimedia terminal adopts the public key of the cloud platform to check the signature of the network data packet signature file, performing full abstract value calculation on the received multimedia data to obtain a second full abstract value;

Comparing whether the second full abstract value is consistent with the received first full abstract value or not, and if so, performing local association storage on the multimedia data and the first simple abstract value;

before the multimedia terminal plays the multimedia data each time, extracting small segments of data from the multimedia data according to the data extraction rule, combining to form a second data collection set, and then performing summary calculation on the second data collection set to obtain a second summary value;

and comparing the second summary value with the associated first summary value, if the second summary value is consistent with the associated first summary value, playing the multimedia data, and if the second summary value is inconsistent with the associated first summary value, prohibiting the multimedia data from being played.

Based on the above, the current multimedia data a played by the multimedia terminal is calculated_iIs left for a time t_iWait for time t_iWhen the preset threshold value T is reached, the next multimedia data a to be played is searched according to the play list_i+1。

Based on the above, the preset threshold value T is greater than the next multimedia data a to be played_i+1The length of time for which the summary value is calculated.

Based on the above, the data extraction rule is characterized by: presetting byte size range [ k ] of m intervals₁,k₂][k₂,k₃][k₃,k₄]…[k_m,k_m+1]Each interval range is respectively corresponding to a segmentation rule; and when the byte size of the multimedia data falls into any interval range, segmenting according to the corresponding segmentation rule, and combining the data extracted by each segment to form a data collection set.

Based on the above, the segmentation rule is: presetting the size of multimedia data a as w bytes, segmenting the multimedia data a according to fixed bytes R, respectively extracting the p-th byte to the q-th byte in each segment, and combining the extracted data of each segment to form a data aggregate.

Based on the above, when the multimedia terminal stores the multimedia data and the first summary value in a local association manner, after a preset key is adopted to encrypt the first summary value to obtain a first summary value ciphertext, the first summary value ciphertext and the multimedia data are stored in a local association manner; before comparing the second summary value with the associated first summary value, searching the associated first summary value ciphertext according to the multimedia data, decrypting the first summary value ciphertext by using a preset key to obtain the first summary value, and then comparing the second summary value with the decrypted first summary value.

Based on the above, the cloud platform and the multimedia terminal perform key agreement to obtain a shared key; before the cloud platform signs the network data packet, encrypting the network data packet through a shared key to obtain a network data packet ciphertext, and then signing the network data packet ciphertext by using a private key of the cloud platform to form a network data packet ciphertext signature file; and after the multimedia terminal verifies the network data packet ciphertext signature file, decrypting the network data packet ciphertext by using the shared key to obtain the multimedia data, and then calculating the full digest value of the multimedia data.

The second aspect of the present invention provides a multimedia secure playing system, which includes: the cloud platform and the multimedia terminal are in network communication connection, and the multimedia safe playing method is executed.

Based on the above, the cloud platform is provided with a first security module, and the first security module is used for calculating a full digest value and a simple digest value of the multimedia data and performing signature operation on the first full digest value and the first simple digest value along with the multimedia data; the multimedia terminal is provided with a second security module and a storage module, wherein the second security module is used for checking the signature of the received network data packet signature file and verifying the full abstract value and the simple abstract value of the multimedia data after the signature passes; the storage module is used for storing the multimedia data and the corresponding first summary data in an associated mode.

The multimedia safe playing method and the multimedia safe playing system can effectively prevent the multimedia data from being illegally blocked, tampered and forged in the releasing process, and realize the credible playing of the multimedia data.

Additional aspects and advantages of the invention will be set forth in part in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention.

Drawings

The above and/or additional aspects and advantages of the present invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:

FIG. 1 is a flow chart illustrating a method for secure multimedia playback according to the present invention;

fig. 2 shows a block diagram of the multimedia secure playing system of the present invention.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.

It will be understood that when an element is referred to as being "connected" to another element, it can be directly connected to the other element or intervening elements may also be present.

Unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. The terminology used in the description of the invention herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention.