For secure streaming, the video file is first encrypted. This encryption happens when the video file is processed into various formats required for online streaming. Most video encryption processes use the AES-128 encryption method, which is the only publicly available encryption algorithm used by the NSA for top secret information. Once the video has been encrypted, all files are stored in a private cloud.
Encryption does not by itself guarantee complete content security. This is because once encrypted, the security of the encrypted video depends on the security of the content keys that are used. It is critical therefore that the content keys are handled in the most secure manner, mainly at the time the video is decrypted for playback.
The content keys are stored in the DRM license server. Each time the video is to be played, the browser/ app requests the content keys from the license server. These keys have to be securely handled so as not to be accessible outside of the browser or app. The content keys are only accessed by the trusted Content Decryption Module, which decrypts the video and passes the playable video file to the browser/ app.
DRM technologies such as Widevine, Fairplay and Playready implement native Content Decryption Modules inside of browsers and mobile operating systems. Google implements Widevine CDM in the Chrome browser, the Chromecast and in Android OS. Likewise Microsoft implements Playready CDM in Windows, Internet Explorer and Windows Phones. Apple implements the FairPlay CDM in iOS and in Safari browser.
This CDM-based decryption delivers the highest possible security for videos. Videos encrypted by VdoCipher are only securely decrypted by these device’s CDMs, delivering Hollywood-grade security for videos.