HomeMoxietypeLoginScreening Room

Useful Links 

Structured Data Testing Tool

JSON-LD Structured Data

ffmpeg

Theora.org

ISP testing tools

Amazon Cloud Front Serving Private Content Documentation

AWS Service Health Dashboard

Amazon Query Requests

What Is My DNS

DNS Queries

Pingdom

Check Your Headers

Open Graph

Getting Started with Linux Commands

Omega Enlarger

Rodagon 80mm lens for medium format

DCP and ProRes Preparation

Online Subtitle Shifter

i-Tunes Content Guide

Payroll Entries in QuickBooks

PNC Business Account Fees

Export Still Frame in FCP

Swedish Window Glaze

Haskap Berry

Film Carrier

Subsyncer Frame Rate Conversion




Categories
Accessibility
Advertising
Apple
Business
DRM
E-Commerce
Firefox
Google
Internet
Mac Tips
Marketing
Mobile Internet
Movies
New York
Offbeat
Photography
Privacy
Security
SEO
Social Web
Tech Buzz
Usability
Web Site Optimization
Word of the Week

Most Recent Entries
Taking a Master 25fps File and Converting it to 24fps
S-Bahnhof Potsdamer Platz 1989
Phomopsis in the Vineyard – Symptoms, Forecast, and Management
Best Book Design Covers 2020
DRM License and How it Works
Grants For Doing Nothing
Amazon Prime versus Twitch Streaming Video
LVH Video Segmenter
Copenhagen
Central Serous Chorioretinopathy
All entries
DRM
UserpicAdobe Protected Streaming
Posted by Moxietype
04.02.09 Printable version

The Media-Streams are encrypted "on the fly" by the Flash Media Server (the protocol used is rtmpe or rtmps). In addition the client player can be verified via "SWF-Verification", to make sure that only the official client can be used.

Encryption:

All contents are encrypted by the Flash Media Server "on the fly". This means, there is no encryption of the source file needed (which is different to Microsoft DRM, for instance). For data transmission, a special protocol is used: rtmpe or rtmps.

rtmps uses SSL-encryption, rtmpe makes use of proprietary encryption algorithms. rtmpe causes less CPU-load than rtmps on the Flash Media Server. In the past, some tools were able to capture rtmpe Streams by taking advantage of a security hole within the flash player object. Adobe fixed that issue in Jan. 2009.

Currently, there are no known hacks for rtmps and for rtmpe and also there are no known tools to perform rtmpe/rtmps decryption, but it is known that private groups have found a way to rip those streams (HorribleSubs ripping Crunchyroll)

SWF-Verification:

This technique is used to ensure that only the official Flash client, delivered by the content owner, can be used to request the streaming data.

All officially allowed clients (which are in fact *.swf Files) need to be placed on the Flash Media Server. Any unknown client requesting a connection will receive a "connection reject".

The combination of both techniques ensures that streams cannot be sniffed and stored into a local file. SWF verification is needed to avoid that manipulated clients can access the content. Those clients could possibly write the unencrypted content to a file.

Besides that, it is possible to restrict connections to the Flash Media Server to a list of known hosts, to avoid that the whole player (the flash client) is placed on a foreign site.

Source



Return to Home
© 2020 All content by Moxietype unless otherwise noted, with some restriction on its use. - Powered by MoxieType.