Stream redistribution usually takes two forms: authorized users sharing CDN credentials after content key theft, or bad actors rebroadcasting the stream through their own delivery path. Both create real business risk by extending premium access beyond the intended audience.
DRMtoday addresses this challenge with the DRM Session Token, a form of device authentication that complements traditional user authorization with a stronger second layer of trust. Bound to the DRM client identity and continuously refreshed through license renewals or key rotation requests, it helps ensure that stream access remains tied not just to an entitled user, but to a verified playback device throughout the session.
By using a challenge-response DRM license request to issue TLS-bound CDN Access Tokens, DRMtoday ensures that CDN authorization is linked to a verified DRM client context rather than a simple CDN access token. Because the token is bound to the underlying TLS session and revalidated through DRM renewal flows, exfiltrated credentials are significantly harder to replay from another environment. When redistribution occurs through rebroadcasting, forensic watermarking can identify the compromised session, enabling DRMtoday's stream takedown capabilities to revoke that specific stream without impacting other viewers.