Widevine DRM License Server

VdoCipher is a first party Widevine DRM License Partner with Google. We provide Zero Risk video streaming solutions for media & education businesses to help them serve premium content on their site and mobile app with Hollywood grade security and functionalities.

Here you can find details of the security options possible with our Google Widevine DRM implementation


Block Screen Capture in Android and iOS


End-to-end Encryption


Location, IP and Device Restrictions


Offline downloads with time restrictions

Applying Restrictions based on Country, IP Address and User Device, Membership

IP and Geo-based whitelisting and blacklisting with Widevine DRM

Our IP and Geo restriction uses a JSON based configuration which allows for infinite customizability.

For instance you may require a whitelist within a blacklist within a whitelist. This can be done with a small JSON in our config. The best part is that almost infinite nesting is possible.

The IP whitelist allows for CIDR based configuration which can be setup over corporate and university subnets. The CIDR configuration also allows you to constrain specific ISP networks. This proves valuable in setting up Value-added-services on ISP and Telecom networks.

        "action": "false",
        "ipSet": [],
        "countrySet": []
        "action": "true",
        "ipSet": [],
        "countrySet": ["IN", "GB"]

Sample JSON object to implement whitelisting

Quality-constraints based on Device security Level

Our multi-platform DRM uses the maximum security features available on a device. For instance Widevine DRM provides three levels of security - L1, L2 and L3, with L1 devices offering the highest security.

A common implementation solution is to stream premium HD content only on devices supporting L1 security. Most Android devices for instance support L1 security. L2 and L3 devices (such as Chrome on Desktops) on the other hand receive standard-quality video streams.

You can likewise specify other device requirements (for example HDCP status) as part of DRM license.

Applying Time-based Restrictions

Rental constraint for offline files

You can allow your viewers to download an encrypted version of the video to their Android, iOS or Chrome devices. This video can be made to expire after a certain time by specifying a rental duration. The access token in this case also need to specified to allow persistence of license. Our Android SDK also allows managing downloads and playback of offline videos.

Session time restrictions

Our unified multi-DRM APIs allow you to configure the session duration for playback during generating the license. This can be useful when the content is very sensitive. Widevine DRM, FPS DRM both have these features.

Key Management Details

Live and VOD compatibility with Widevine DRM

The DRM content keys are made to be compatible with commonly used open-source tools such as Shaka packager and Bento4 packagers. Our JSON-based APIs comes with Sample code in multiple languages for license key generation.

Encoder consumer workflow via DRM 

The Encoder consumer workflow for content key generation allows separating the concerns for key generation and encoding into multiple micro-services. This is recommended for restricting access to your authorization keys to minimal number of applications.

Key Handling with CMS using Widevine DRM

DRM configuration allows setting up with custom content key which can be a primary key in your video management CMS. This setup allows easy configuration without any major changes in your existing DB.

Multi-DRM with unified encryption and licensing API utilizes a single asset ID without raking up technical debt. Unified licensing API takes out the worry from handling multiple streams and devices separately.

Sample Architecture for integrating VdoCipher DRM licensing to your streaming setup