-
公开(公告)号:US09300465B2
公开(公告)日:2016-03-29
申请号:US12034421
申请日:2008-02-20
申请人: Eric M. Foster , Jeffrey B. Lotspiech , Florian Pestoni , Wilfred E. Plouffe, Jr. , Frank A. Schaffa
发明人: Eric M. Foster , Jeffrey B. Lotspiech , Florian Pestoni , Wilfred E. Plouffe, Jr. , Frank A. Schaffa
CPC分类号: H04L9/0822 , G11B20/0021 , G11B20/00362 , H04L9/083 , H04L9/12 , H04L63/045 , H04L2209/603 , H04L2463/101
摘要: A method and system for attaching a title key to encrypted content for synchronized transmission to, or storage by, a recipient is provided. Specifically, under the present invention, an elementary media stream is parceled into content units that each include a content packet and a header. The content packets are encrypted with one or more title keys. Once the content packets have been encrypted, the title keys are themselves encrypted with a key encrypting key. The encrypted title keys are then attached to the corresponding encrypted content packets for synchronized transmission to a recipient.
-
公开(公告)号:US07881476B2
公开(公告)日:2011-02-01
申请号:US12417783
申请日:2009-04-03
IPC分类号: H04L9/00
CPC分类号: G11B20/00086 , G11B20/00094 , G11B20/00123 , G11B20/0021 , G11B20/00362 , G11B20/0071 , G11B20/00855 , G11B20/00978 , H04L63/0428 , H04L63/123
摘要: Enhanced multimedia content on physical media interacts with the user through a media player and the Internet. Enhanced multimedia utilizes IDs for pieces of content on the media and a media key block. On the enhanced media is a file with a list of URLs. As the enhanced media plays a section requiring a set of keys for decryption, the media player accesses the URL for that section and obtains the decryption key. The decryption key may be purchased or provided for free. Secure encryption and transmission of these keys is accomplished by broadcast encryption using a media key block. Each media has a unique set of keys that allow the media player to process the media key block; however, each media follows a unique path through the media key block. All legitimate media players obtain the media key; circumvention devices cannot decipher the media key block.
摘要翻译: 物理媒体上的增强型多媒体内容通过媒体播放器和互联网与用户交互。 增强多媒体利用媒体上的内容片段和媒体密钥块的ID。 在增强型媒体上是一个包含URL列表的文件。 由于增强媒体播放需要一组密钥进行解密的部分,媒体播放器访问该部分的URL并获得解密密钥。 解密密钥可以免费购买或提供。 通过使用媒体密钥块的广播加密来实现这些密钥的安全加密和传输。 每个媒体都有一组唯一的密钥,允许媒体播放器处理媒体密钥块; 然而,每个媒体遵循通过媒体密钥块的唯一路径。 所有合法媒体播放器获取媒体密钥; 规避设备不能破译媒体密钥块。
-
13.发明授权公开(公告)号:US07721098B2
公开(公告)日:2010-05-18
申请号:US12134134
申请日:2008-06-05
申请人: Jeffrey B. Lotspiech
发明人: Jeffrey B. Lotspiech
IPC分类号: H04L9/32
CPC分类号: H04L9/3249 , G06F21/64 , G06Q10/087 , H04L9/302 , H04L9/3236 , H04L2209/127 , H04L2209/56 , H04L2209/603
摘要: A system, method, and computer program product enabling individual user devices to authenticate and validate a digital message sent by a distribution center, without requiring transmissions to the distribution center. The center transmits the message with an appended modulus that is the product of two specially selected primes. The transmission also includes an appended authentication value that is based on an original message hash value, a new message hash value, and the modulus. The new message hash value is designed to be the center's public RSA key; a corresponding private RSA key is also computed. Individual user devices combine a digital signet, a public modulus, preferably unique hardware-based numbers, and an original message hash to compute a unique integrity value K. Subsequent messages are similarly processed to determine new integrity values K′, which equal K if and only if new messages originated from the center and have not been corrupted.
-
公开(公告)号:US20090185688A1
公开(公告)日:2009-07-23
申请号:US12417783
申请日:2009-04-03
IPC分类号: H04L9/06
CPC分类号: G11B20/00086 , G11B20/00094 , G11B20/00123 , G11B20/0021 , G11B20/00362 , G11B20/0071 , G11B20/00855 , G11B20/00978 , H04L63/0428 , H04L63/123
摘要: Enhanced multimedia content on physical media interacts with the user through a media player and the Internet. Enhanced multimedia utilizes IDs for pieces of content on the media and a media key block. On the enhanced media is a file with a list of URLs. As the enhanced media plays a section requiring a set of keys for decryption, the media player accesses the URL for that section and obtains the decryption key. The decryption key may be purchased or provided for free. Secure encryption and transmission of these keys is accomplished by broadcast encryption using a media key block. Each media has a unique set of keys that allow the media player to process the media key block; however, each media follows a unique path through the media key block. All legitimate media players obtain the media key; circumvention devices cannot decipher the media key block.
摘要翻译: 物理媒体上的增强型多媒体内容通过媒体播放器和互联网与用户交互。 增强多媒体利用媒体上的内容片段和媒体密钥块的ID。 在增强型媒体上是一个包含URL列表的文件。 由于增强媒体播放需要一组密钥进行解密的部分,媒体播放器访问该部分的URL并获得解密密钥。 解密密钥可以免费购买或提供。 通过使用媒体密钥块的广播加密来实现这些密钥的安全加密和传输。 每个媒体都有一组唯一的密钥,允许媒体播放器处理媒体密钥块; 然而,每个媒体遵循通过媒体密钥块的唯一路径。 所有合法媒体播放器获取媒体密钥; 规避设备不能破译媒体密钥块。
-
15.发明授权公开(公告)号:US07516331B2
公开(公告)日:2009-04-07
申请号:US10723725
申请日:2003-11-26
申请人: Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
发明人: Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
IPC分类号: H04L9/32
CPC分类号: G06F21/6218 , G06F21/14 , G06F21/51
摘要: A trusted Java virtual machine provides a method for supporting tamper-resistant applications, ensuring the integrity of an application and its secrets such as keys. The trusted Java virtual machine verifies the integrity of the Java application, prevents debugging of the Java application, and allows the Java application to securely store and retrieve secrets. The trusted Java virtual machine environment comprises a TrustedDictionary, a TrustedBundle, an optional encryption method for encrypting and decrypting byte codes, and an underlying trusted Java virtual machine. The encrypted TrustedDictionary protects data while the TrustedBundle protects programming code, allowing applications to store secret data and secure counters. The application designer can restrict TrustedBundle access to only those interfaces that the application designer explicitly exports. The open source code may optionally be encrypted. Secrets required by the open source programming code of the application are encrypted in TrustedDictionary.
摘要翻译: 受信任的Java虚拟机提供了一种支持防篡改应用程序的方法,确保应用程序的完整性及其密钥(如密钥)。 受信任的Java虚拟机验证Java应用程序的完整性,防止Java应用程序的调试,并允许Java应用程序安全地存储和检索秘密。 受信任的Java虚拟机环境包括TrustedDictionary,TrustedBundle,用于加密和解密字节代码的可选加密方法,以及底层可信Java虚拟机。 加密的TrustedDictionary保护数据,而TrustedBundle保护编程代码,允许应用程序存储秘密数据和安全计数器。 应用程序设计人员可以将TrustedBundle访问限制为应用程序设计程序明确导出的那些接口。 可以可选地加密开源代码。 应用程序的开源编程代码所需的秘密在TrustedDictionary中加密。
-
公开(公告)号:US06611812B2
公开(公告)日:2003-08-26
申请号:US09376102
申请日:1999-08-17
申请人: Marco M. Hurtado , Kenneth L. Milsted , George G. Gruse , Edgar Downs , Christopher T. Lehman , Richard L. Spagna , Jeffrey B. Lotspiech
发明人: Marco M. Hurtado , Kenneth L. Milsted , George G. Gruse , Edgar Downs , Christopher T. Lehman , Richard L. Spagna , Jeffrey B. Lotspiech
IPC分类号: G06F1760
CPC分类号: H04L69/04 , G06F21/10 , G06F2211/007 , G06F2221/0737 , G06F2221/2107 , G06F2221/2135 , G06Q20/3821 , G06Q20/401 , H04L63/0428 , H04L67/18 , H04L69/329 , H04L2463/101 , H04L2463/102 , H04W4/02
摘要: A method to delivery encrypted digital content to a end user system for playing the content comprising the steps of: reading from a computer readable medium metadata which has previously associated with the content. A user selects from the metadata associated content to decrypt and the end user system establishes a secure connection with an authorization authority for decrypting the content. The end user system receives a secure container containing the decrypting key for decrypting at least part of the previously encrypted content as permitted. The system creates a secure container using the encrypting key from a clearing house, wherein the secure container has an encrypting key therein from the end user system; transferring the secure container to the clearing house for authentication of permission to decrypt the content. The system receives from the clearing house, a secure container encrypted using the encrypting key of the end user system containing the decrypting key for decrypting at least part of the previously encrypted content stored on the computer readable medium as permitted; and playing at least part of the previously encrypted content by decrypting the secure container using the encrypting key of the end user system to access the decrypting key for decrypting at least part of the encrypted content.
摘要翻译: 一种将加密的数字内容传送到用于播放内容的最终用户系统的方法,包括以下步骤:从计算机可读介质读取先前与内容相关联的元数据。 用户从元数据相关联的内容中进行选择以进行解密,并且最终用户系统与用于解密内容的授权机构建立安全连接。 最终用户系统接收包含解密密钥的安全容器,用于在允许的情况下解密至少部分先前加密的内容。 系统使用来自结算所的加密密钥创建安全容器,其中安全容器在其中具有来自最终用户系统的加密密钥; 将安全容器转移到结算所,以便认证解密内容的许可。 该系统从结算所接收使用包含解密密钥的最终用户系统的加密密钥加密的安全容器,用于在许可的情况下解密存储在计算机可读介质上的至少部分先前加密的内容; 以及通过使用所述最终用户系统的加密密钥解密所述安全容器来访问所述解密密钥以解密所述加密内容的至少一部分,来播放所述先前加密的内容的至少一部分。
-
公开(公告)号:US4377803A
公开(公告)日:1983-03-22
申请号:US165879
申请日:1980-07-02
IPC分类号: G06K9/34
CPC分类号: G06K9/34 , G06K2209/01
摘要: An apparatus and method is provided for segmenting characters generated by an optical scanner. The apparatus also identifies underscores. The underscores are then masked and subsequent processing devices are informed of the existence of said underscores. Input video raster scans representative of a portion of a line of textual material are loaded into a video buffer. The video raster scans are broken up into a plurality of sections. The horizontal histogram (number of black pixel counts) associated with each section is determined. The baseline, vertical histogram and word location for each line of data to be segmented is determined. A find character unit finds the boundaries for each character. The character is sequentially transferred from the video buffer to a character output buffer.
摘要翻译: 提供了一种用于分割由光学扫描器产生的字符的装置和方法。 该设备还标识下划线。 然后对下划线进行掩蔽,然后通知随后的处理装置存在所述下划线。 将表示文本材料行的一部分的输入视频光栅扫描加载到视频缓冲器中。 视频光栅扫描被分解成多个部分。 确定与每个部分相关联的水平直方图(黑色像素数的数量)。 确定要分割的每行数据的基线,垂直直方图和字位置。 查找字符单元找到每个字符的边界。 该字符从视频缓冲器顺序传送到字符输出缓冲器。
-
公开(公告)号:US08528055B2
公开(公告)日:2013-09-03
申请号:US12950244
申请日:2010-11-19
CPC分类号: H04N21/4627 , H04L9/0866 , H04L63/065 , H04L2209/601
摘要: A first message comprising a received indication of a management key block (MKB) and a received indication of an authorization table (AT) is received at a first network device from a second network device. The received indications of the MKB and AT are validated by comparing them to generated indications of the MKB and AT, respectively. A response is generated based on the validation of the received indications and transmitted from the first network device to the second network device. The generated indications and response are stored. A second message comprising a second received indication of the MKB and a second received indication of the AT is received at the first network device from the second network device. The first network device communicates with the second network device in accordance with the stored response on determining that the second received indications match corresponding stored indications.
摘要翻译: 在第一网络设备处从第二网络设备接收包括管理密钥块(MKB)的接收指示和授权表(AT)的接收指示的第一消息。 通过将MKB和AT的接收指示与MKB和AT的生成指示进行比较来验证。 基于接收到的指示的验证并从第一网络设备发送到第二网络设备来产生响应。 生成的指示和响应被存储。 在第一网络设备处从第二网络设备接收包括MKB的第二接收指示和AT的第二接收指示的第二消息。 第一网络设备在确定第二接收指示匹配相应的存储指示时,根据存储的响应与第二网络设备通信。
-
19.发明申请公开(公告)号:US20120131344A1
公开(公告)日:2012-05-24
申请号:US12950115
申请日:2010-11-19
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , H04L63/126 , H04L2209/601
摘要: Provided are techniques to enable, using broadcast encryption, a device to locate a service offered by a server with the knowledge that the service offered by the server is a trusted service. A signed enhanced Management Key Block (eMKB) includes a trusted service locator (TSL) that includes one or more records, or “trusted service data records” (TSDRs), each identifying a particular service and a corresponding location of the service is generated and transmitted over a network. Devices authorized to access a particular service parse the eMKB for the end point of the service, connect to the appropriate server and transmit a request.
摘要翻译: 提供的技术是使用广播加密来实现设备定位服务器提供的服务,知道服务器提供的服务是受信任的服务。 签署的增强型管理密钥块(eMKB)包括一个包含一个或多个记录的信任的服务定位器(TSL),或者“可信服务数据记录”(TSDR),每个标识特定的服务,并且生成该服务的对应位置, 通过网络传输。 授权访问特定服务的设备解析服务终点的eMKB,连接到相应的服务器并发送请求。
-
20.发明授权公开(公告)号:US07747877B2
公开(公告)日:2010-06-29
申请号:US12363876
申请日:2009-02-02
申请人: Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
发明人: Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
CPC分类号: G06F21/6218 , G06F21/14 , G06F21/51
摘要: A trusted Java virtual machine provides a method for supporting tamper-resistant applications, ensuring the integrity of an application and its secrets such as keys. The trusted Java virtual machine verifies the integrity of the Java application, prevents debugging of the Java application, and allows the Java application to securely store and retrieve secrets. The trusted Java virtual machine environment comprises a TrustedDictionary, a TrustedBundle, an optional encryption method for encrypting and decrypting byte codes, and an underlying trusted Java virtual machine. The encrypted TrustedDictionary protects data while the TrustedBundle protects programming code, allowing applications to store secret data and secure counters. The application designer can restrict TrustedBundle access to only those interfaces that the application designer explicitly exports. The open source code may optionally be encrypted. Secrets required by the open source programming code of the application are encrypted in TrustedDictionary.
摘要翻译: 受信任的Java虚拟机提供了一种支持防篡改应用程序的方法,确保应用程序的完整性及其密钥(如密钥)。 受信任的Java虚拟机验证Java应用程序的完整性,防止Java应用程序的调试,并允许Java应用程序安全地存储和检索秘密。 受信任的Java虚拟机环境包括TrustedDictionary,TrustedBundle,用于加密和解密字节代码的可选加密方法,以及底层可信Java虚拟机。 加密的TrustedDictionary保护数据,而TrustedBundle保护编程代码,允许应用程序存储秘密数据和安全计数器。 应用程序设计人员可以将TrustedBundle访问限制为应用程序设计程序明确导出的那些接口。 可以可选地加密开源代码。 应用程序的开源编程代码所需的秘密在TrustedDictionary中加密。
-
-
-
-
-
-
-
-
-
搜索结果
46 条记录 (耗时 0.045 秒)
