Architecture

 
 
 
 
 
 
 
 
Contract Service (CS)

manages contracts expressed in MPEG-21 CEL (Contracts Expression Language). It provides different search operations over the contracts stored in the system. The main objective of these operations is to help contracts? parties in the management of their contracts, providing contract search by country, rights issued, exclusivity, etc.
Object Registration Service (ORS)

enables applications to request a digital representation of content and metadata (i.e. digital objects) to be generated and registered in the system. It also provides operations for searching objects and reporting of new object creation. Content and metadata are packaged together following the MPEG-21 Digital Item approach.
License Service (LS)

deals with all operations related to licenses and offers: creation, search, authorization of user operations based on licenses she owns and reporting of authorizations performed. Licenses are expressed using MPEG-21 REL, guaranteeing standards support. The reason for this has been a redesign of the service in order to treat licenses and offers as a unique resource, providing into only one service the operations related to them.
Transcoding Service (TS)

is used to convert video files into different formats for its visualization into different platforms and devices. It is connected with the UpDown service, as the current transcoding occurs when the file is uploaded into the system. In this precise moment, several versions of the uploaded video files are created, including one version for video streaming in a lower quality than the original file.
Protection Service (PS)

generates encryption keys upon request, registers encryption keys associated to uniquely identified content and provides the encryption keys for protected content to the AS.
User Application (UA)

is the player, edition tool, browser or any other means that is managed by the user to deal with the DRM functionality, such as registering and accessing protected contents. The UA may have an internal trusted module or intermediary to enforce DRM, which consists of a secure local repository for licenses, protection information, offline operation reports and other critical data. In those cases, it may be responsible for estimating tool fingerprints, require offline authorizations, unprotect content, track offline operations and manage content protection information.
Workflow Manager (WM)

may be an integral part of the UA or otherwise be located in the server part (e.g. web portal, brokerage service) to reduce the UA complexity. It can be seen as a broker to whom the UA requires different operations to be performed, as object registration, content upload, rights offer management, license acquisition, authorization, etc. It is responsible for orchestrating the different services and operations needed to perform an operation. It can be integrated into a web portal that acts as the front end of the mtPlatform services.
UpDown Service (UDS)

enables applications to upload and download digital resources such as audio or video files, text documents, etc. There are several versions of this service, depending on the needs of the application using it and the storage options required. Currently, this service has an FTP version, an HTTP version and an Amazon Web Services version. Resources can be optionally encrypted under request, asking for protection keys to the Protection Services (PS), described next.
Billing Service (BS)

deals with the payment operations originated by the users? operations performed in the platform. There are different kinds of payment information supported by this module, as it is differentiated the payment for the service from the payment for the purchases done (licenses purchased). To do so, different billing conditions are taken into account. The service provides operations for service providers (sellers) like retrieval and generation of bills according to different criteria, like date range or specific user. It also offers operations to service clients (purchasers or buyers) for checking consumption done according to different parameters, like number of purchases or date range.
Authentication Service (AS)

authenticates users' identity. It generates SAML (Security Assertion Markup Language) based tokens. Any service in the mtPlatform architecture will require a token argument to be provided in order to authenticate users. Tokens are digitally signed, so that they can be checked for authenticity and integrity by the receiving service. Moreover, the ATS deals with user registration and management (i.e. personal data modification, user account deactivation, etc.).
Certification Authority (CA)

which issues credentials for the different Components and Actors in the system, as X.509 certificates and private keys for the different architectural components.
 

The mtPlatform (mediaTG media Platform, see brochure) is a service-oriented platform based on the flexible web services approach. It consists of several modules and services, which individually provide a subset of the whole system functionality needed for registering, protecting and governing multimedia content. mtPlatform encompasses an important part of the content value chain, from content creation and distribution to its consumption by final users.

mtPlatform can be used to build DRM-enabled applications (where DRM stands for Digital Rights Management). However, it can be also used to set up different business models based on content registration, content protection, content licensing, content governance (also known as authorization-based content access control), reporting, search and authentication. Furthermore, specialized vertical markets can be implemented on top of it.

One of the advantages of service-oriented DRM functionality relies on the possibility of decoupling it into different subsystems depending on the needs of the application that is going to be implemented, while being able to share the same common services between different applications with different requirements, thus reducing costs.

mtPlatform is an evolution of MIPAMS (Multimedia Information Protection and Management System), a modular distributed platform initially developed by DMAG, a research group with a wide experience in Multimedia area from UPC BarcelonaTech. Read this document for more details.