While doing some research on secure video delivery technologies and DRM I was not able to understand the differences between using EME + ClearKey with key configured in a player itself (like this option from BitMovin) or getting the key from license server (as suggested in this answer).
If I understand correctly when using commercial DRM systems decryption process is done in CDM and therefore the private keys and decrypted data are kept in a secure environment within the browser, operating system, and hardware (if supported). At the same time BitMovin documentation mentions, that when using ClearKey in player configuration ‘the decryption on the client side doesn't happen in an isolated secure environment as it is the case with an actual DRM solution, it is handled by a HTML5 player directly.’
My question is: how decryption works when you use normal license request mechanism with ClearKey? Is it more robust in terms of decryption process than having keys in player configuration? Does decryption happen in isolated environment?
I understand that from key security point of view this solution is still much less secure than using commercial DRM-system, but I want to have full information for proper comparison. My goal is to choose the right technology for video content delivery for small educational business.
