Security framework for HTTP streaming architecture

摘要

Methods and apparatus for preventing unauthorized access to online content, including in particular streaming video and other media, are provided. In various embodiments, techniques are provided to authorize users and to authenticate clients (e.g., client media players) to a content delivery system. The content delivery system may comprise a content delivery network with one or more content or “edge” servers therein. The requesting client is sent a program at the time of content delivery. The program may be embedded in the content stream, or sent outside of the stream. The program contains instructions that are executed by the client and cause it to return identifying information to the content delivery system, which can then determine whether the client player is recognized and, if so, authorized to view the content. Unrecognized and/or altered players may be prevented from viewing the content.

主权项

1. A computer-implemented method for authenticating a client player application, the method comprising:
receiving, at a server, a request for streaming content from a client player application; sending at least one portion of the streaming content to the client player application; sending a program to the client player application for execution thereby, the program being embedded in the at least one portion of streaming content and comprising one or more computer-readable instructions that, when executed by the client player application, cause the client player application to send information identifying the client player application to the server; receiving the information identifying the client player application and determining whether the client player application is recognized as an authentic client player application, based at least in part on the content of the information identifying the client player application that was sent because of the embedded program's one or more computer-readable instructions.