Re: Open Source implementations Re: Encrypted Media proposal (was RE: ISSUE-179: av_param - Chairs Solicit Alternate Proposals or Counter-Proposals) from Mark Watson on 2012-02-28 (public-html@w3.org from February 2012)

From: Mark Watson <watsonm@netflix.com>
Date: Tue, 28 Feb 2012 01:55:18 +0000
To: Henri Sivonen <hsivonen@iki.fi>
CC: Glenn Adams <glenn@skynav.com>, "<john@netpurgatory.com>" <john@netpurgatory.com>, Andreas Kuckartz <A.Kuckartz@ping.de>, "HTML WG (public-html@w3.org)" <public-html@w3.org>, Adrian Bateman <adrianba@microsoft.com>, Maciej Stachowiak <mjs@apple.com>, David Dorwin <ddorwin@google.com>
Message-ID: <9CC28271-BD6F-4028-9877-359AF37B614C@netflix.com>

On Feb 26, 2012, at 11:01 PM, Henri Sivonen wrote:

(If you are OK with revealing the unscrambled content
to the user and only want to hide it from third parties, you just use
https.)

On this point, specifically, the user, content provider or both may also wish to hide the content from third parties whilst it is stored on network servers as well as during transport. http services from CDNs are cheaper than https services and https brings with it a number of operational complexities.

This can be done by encrypting the file itself and providing the key only to authorized users. The "clearkey" keysystem proposed would support this use-case.

There are also use cases where the content provider, for whatever reasons, is confident that authorized users will not pass the key or content to unauthorized users and in these cases too the "clearkey" system has value.

...Mark

Received on Tuesday, 28 February 2012 01:55:48 UTC