- From: <bugzilla@jessica.w3.org>
- Date: Wed, 19 Feb 2014 23:51:27 +0000
- To: public-html-bugzilla@w3.org
https://www.w3.org/Bugs/Public/show_bug.cgi?id=24027 --- Comment #10 from David Dorwin <ddorwin@google.com> --- (In reply to Joe Steele from comment #9) > (In reply to David Dorwin from comment #8) > > (In reply to Joe Steele from comment #7) > > > This looks like a good format. And many (most?) OTT providers should be able > > > to generate this either at packaging time or at license generation time > > > without trouble. > > > > Yes, but it's not needed at license generation time - the license contains > > the key but not the Initialization Data. On the other hand, an application > > might want to generate valid Initalization Data at license request > > generation time (createSession()). > > You are right. I guess I was thinking of generating it on the server as well > to confirm the key prior to sending to the client. But I don't believe we > send this MAC in the key request for ClearKey do we? So it must be validated > on the client side. My understanding is that the main purpose is for the CDM to use the MAC to verify the contents of the license are what it needs. It's still unclear how the CDM would do this and what it would report should the verification fail. Clear Key does not use the MAC. This would only apply to other key systems that support this common PSSH format. -- You are receiving this mail because: You are the QA Contact for the bug.
Received on Wednesday, 19 February 2014 23:51:29 UTC