It is hard to believe that here in 2017 we still don't have any video formats that incorporate encryption directly into the standard, so that all players of that format would - for example - be able to detect encryption and challenge the user for a password. If a vendor wants to provide at least a crude basic encryption for proprietary video content, what are the options?
One option I see is to use a proprietary encryption product like AxCrypt to convert the MP4 video into a proprietary encryption format. But that requires the content creator and the content viewer to both use a proprietary application like AxCrypt to exchange the video. This are is also no easy way to revoke permissions to view the content later.
Another option would be to use a file sharing network like Dropbox, together with an encryption layer on top of that file sharing network, such as Boxcryptor. That again requires everyone to agree on a proprietary set of products to exchange content.
What are other possible solutions? It would be nice if a product like AxCrypt existed that let users be given permissions in the Cloud, and the service could manage all of the key exchange issues transparently.
+ Reply to Thread
Results 1 to 9 of 9
Yes, ffmpeg can do it.
- explained here (sounds complicated)
Discussion thread: ffmpeg support for reading / writing encrypted MP4 files
"I'm not familiar with any player that can play it as is, but it can be played once repackaged to MPEG-DASH. In this form, it can be played by Chrome with Widevine / Edge with PlayReady etc."
Last edited by raffriff42; 18th Jun 2017 at 04:14.
The DRM focus has been on internet delivery in HLS and DASH. That's where you need to head if you eschew proprietary solutions.
You wouldn't have to spend thousands on implementing DASH encryption, but some work is involved. Chrome or Edge are what the customer would see - not command-line tools.
For an easier solution, you could use a digital delivery service - where the download link is encrypted, not the content itself. Sample services are squarespace and fetchapp. They handle secure login & CC processing for you, a not insignificant development effort, and something you need with encrypted content anyway.
Before you say, "but one of my 100 customers might share the video with a friend or on YouTube!", yeah, somebody might do that whatever protection you put on it.
It's far from perfect but worth considering.
Regarding copying of content, the feature I would really love to see is a cloud service that puts a hidden user-specific identifier into each copy of a stream. If someone copies your content to Youtube, the name of the offender is there in the video, and you can at least terminate their further access.