-
公开(公告)号:US20050071669A1
公开(公告)日:2005-03-31
申请号:US10933011
申请日:2004-09-02
CPC分类号: H04N21/43615 , G06F21/10 , H04N21/8355
摘要: A copyright protection method (150) and apparatus (190) employs (151) a first protection scheme (160) within a single authorized domain (195), in which all interfaces (194a-c) are protected with digital rights management system and employs (152) a second protection scheme (170) for use in inter-domain file transfers. The method (150) and apparatus (190) may employ (153) a third protection scheme (180) for external outputs (197a-c) not protected by a digital rights management system. The first protection scheme (160) includes specifying (161) whether a copy of files is allowed to be stored anywhere within the single authorized domain; specifying (162) whether files may be stored only on specific devices within the single authorized domain; or specifying (163) how many simultaneous rendering devices are permitted when rendering files. The second protection scheme (170) may include: specifying (171) if the files may be copied to other domains; and explicitly identifying (172) domains to which copies are allowed; specifying (173) if files may be moved to other domains, and optionally allowing movement of files to any other domain; specifying (174) a list of specific domains to which content may be copied, and preserving content rights during content transfer to another domain; or specifying (175) specific domains to which content may be moved, and preserving content rights during content transfer. The third protection scheme (180) may include: specifying (181) copy protection information separately for analog, digital uncompressed and digital compressed outputs; specifying (182) a CGMS Copy protection state; specifying (183) MACROVISION parameters for analog outputs; specifying (184) if a particular type of output is allowed at all; or disabling (185) the particular type of output if the particular output type is not allowed.
-
公开(公告)号:US20050071663A1
公开(公告)日:2005-03-31
申请号:US10672929
申请日:2003-09-26
申请人: Alexander Medvinsky , Petr Peterka , Jiang Zhang
发明人: Alexander Medvinsky , Petr Peterka , Jiang Zhang
CPC分类号: H04N21/43615 , G06F21/10 , H04N21/8355
摘要: Management of rights to content is provided within an authorized domain. In a single authorized domain, where a plurality of domain interfaces are protected using a common rights management system, a copy of particular content may be allowed to be provided on all devices or only on specific devices coupled to the domain via the interfaces. Copy protection information, for outputs to external devices not protected by the common rights management system, is also specified. Rules can be provided for specifying whether particular content may be copied or moved to another protected domain. A number of rendering devices permitted to render the content simultaneously may be specified. Content rules are provided for use in managing rights to content within an authorized domain. Such rules can be associated with content that is persistently stored by a consumer device, as well as with content that is only rendered by a consumer device.
摘要翻译: 在授权域内提供对内容权限的管理。 在单个授权域中,其中使用共同权限管理系统来保护多个域接口,可以允许在所有设备上或仅通过经由接口耦合到域的特定设备上提供特定内容的副本。 还规定了将保护信息复制到不受普通版权管理系统保护的外部设备的输出。 可以提供规则来指定特定内容是否可以被复制或移动到另一个受保护的域。 可以指定允许同时呈现内容的多个渲染设备。 提供内容规则用于管理授权域内的内容权限。 这样的规则可以与由消费者设备持久存储的内容以及仅由消费者设备呈现的内容相关联。
-
23.发明授权公开(公告)号:US08825551B2
公开(公告)日:2014-09-02
申请号:US11321210
申请日:2005-12-29
申请人: Petr Peterka , Alexander Medvinsky
发明人: Petr Peterka , Alexander Medvinsky
CPC分类号: G06Q20/00 , G06F21/10 , G06Q2220/00 , G06Q2220/10 , G06Q2220/18
摘要: The systems disclosed here provide a complete standards-based end-to-end scalable system for storage, delivery and in-home distribution of digital content over IP networks using standard protocols such as Real-time Transport Protocol (“RTP”) or IP-encapsulated MPEG-2 Transport Stream, or traditional MPEG-2 networks. Mechanisms are provided for receiving content from one security domain, re-encrypting that content uniquely for a receiving device, persistently storing that content, and playing back that content at a later time to and within another security domain. The systems also provide the ability to stream the persistently-stored content from the initial receiving device to another device that has been authenticated as part of a, e.g., home network. This allows a media server, e.g., a dual-tuner set-top box (“STB”) with hard drive, to deliver recorded content to any TV in the house by streaming to media clients such as STBs.
摘要翻译: 这里公开的系统提供了一种完整的基于标准的端对端可扩展系统,用于使用诸如实时传输协议(“RTP”)或IP-IP的标准协议通过IP网络存储,传送和在家内分发数字内容, 封装的MPEG-2传输流或传统的MPEG-2网络。 提供了用于从一个安全域接收内容的机制,对于接收设备唯一地重新加密该内容,持续存储该内容,以及在稍后时间再到该另一个安全域内的该内容。 这些系统还提供将持续存储的内容从初始接收设备流传送到已经被认证为例如家庭网络的一部分的另一设备的能力。 这允许诸如具有硬盘驱动器的双调谐器机顶盒(“STB”)的媒体服务器通过流向诸如STB的媒体客户端将记录的内容传送到房屋中的任何电视。
-
公开(公告)号:US20130091353A1
公开(公告)日:2013-04-11
申请号:US13564643
申请日:2012-08-01
申请人: Jiang Zhang , Alexander Medvinsky , Kwan Chen , Paul Moroney , Petr Peterka
发明人: Jiang Zhang , Alexander Medvinsky , Kwan Chen , Paul Moroney , Petr Peterka
CPC分类号: H04L9/3268 , H04L9/0825 , H04L9/083 , H04L2209/16
摘要: A method and apparatus are for transferring a client device certificate and an associated encrypted client private key to a client device from a secure device. The secure device receives over a secure connection, a secure device certificate, a secure device private key and a plurality of client device certificates. Each client certificate is associated with a bootstrap public key but is not assigned to any particular client device. A plurality of encrypted client private keys is also received. Each of the encrypted client private keys comprises a client private key associated with one of the client device certificates encrypted with the bootstrap public key. The plurality of client device certificates is stored. The encrypted client private keys are stored in double encrypted protected form. A client device certificate and an associated encrypted client private key are transferred to a client device that has successfully registered with the secure device.
摘要翻译: 一种方法和装置用于将客户端设备证书和相关联的加密的客户端私钥从安全设备传送到客户端设备。 安全设备通过安全连接,安全设备证书,安全设备私钥和多个客户端设备证书接收。 每个客户端证书与引导公钥相关联,但不分配给任何特定的客户端设备。 还接收多个加密的客户端私钥。 每个加密的客户端专用密钥包括与用引导公钥加密的客户端设备证书之一相关联的客户端专用密钥。 存储多个客户端设备证书。 加密的客户端私钥以双加密保护形式存储。 客户端设备证书和相关联的加密客户端私钥被传送到已经成功地向安全设备注册的客户端设备。
-
25.发明申请Method and Apparatus for Handling of Content that includes a Mix of CCI Segments 审中-公开处理含有CCI段的混合物的内容的方法和装置公开(公告)号:US20080271153A1
公开(公告)日:2008-10-30
申请号:US11950698
申请日:2007-12-05
申请人: Petr Peterka , Alexander Medvinsky , Paul Moroney
发明人: Petr Peterka , Alexander Medvinsky , Paul Moroney
IPC分类号: G06F21/00
CPC分类号: G06F21/10
摘要: A process is provided. The process stores, on a first device, each segment of a set of content having corresponding copy control information. Further, the process receives, from a second device, a request for a copy of the set of content. In addition, the process analyzes a list of the copy control information associated with each segment of the set of content. The process also establishes a restriction indicator, based on the request for the copy of the set of content, for one or more segments of the set of content having a corresponding copy control information value. Finally, the process provides to the second device, the content, the list of copy control information, and the restriction indicator for the one or more segments.
摘要翻译: 提供了一个过程。 该过程在第一设备上存储具有相应复制控制信息的一组内容的每个段。 此外,该过程从第二设备接收对该组内容的副本的请求。 此外,该过程分析与该组内容的每个片段相关联的复制控制信息的列表。 该过程还基于对该组内容的复制的请求,针对该组内容的一个或多个段具有相应的复制控制信息值建立限制指示符。 最后,该过程向第二设备提供一个或多个段的内容,复制控制信息列表和限制指示符。
-
公开(公告)号:US20080267411A1
公开(公告)日:2008-10-30
申请号:US11773115
申请日:2007-07-03
申请人: Petr Peterka , Alexander Medvinsky
发明人: Petr Peterka , Alexander Medvinsky
IPC分类号: H04L9/08
CPC分类号: H04N21/835 , H04L9/0841 , H04L9/0891 , H04L2209/603 , H04N7/1675 , H04N21/43622 , H04N21/4367 , H04N21/4405 , H04N21/4408
摘要: A method is provided that authenticates a data transfer module. Further, the method establishes a secure tunnel between a first processor, which receives a copy protection key from the data transfer module, and a second processor, which receives the copy protection key from the first processor through the secure tunnel. In addition, the method receives, at the second processor, encrypted content from the data transfer module. The method also decrypts, at the second processor, the encrypted content with the copy protection key to generate decrypted content.
摘要翻译: 提供了一种验证数据传输模块的方法。 此外,该方法在从数据传输模块接收复制保护密钥的第一处理器和通过安全隧道从第一处理器接收复制保护密钥的第二处理器之间建立安全隧道。 此外,该方法在第二处理器处接收来自数据传送模块的加密内容。 该方法还在第二处理器处利用复制保护密钥解密加密的内容以产生解密的内容。
-
公开(公告)号:US07404082B2
公开(公告)日:2008-07-22
申请号:US11228180
申请日:2005-09-16
申请人: Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
发明人: Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
IPC分类号: H04L9/00
CPC分类号: H04L9/0825 , G11B20/0021 , G11B20/00731 , H04L9/0822 , H04L9/083 , H04L2209/603 , H04N21/26606 , H04N21/26613 , H04N21/4181 , H04N21/63345 , H04N21/8355
摘要: Described herein are embodiments that provide an approach to cryptographic key management for a digital rights management (DRM) architecture that includes multiple levels of key management for minimizing bandwidth usage while maximizing security for the DRM architecture. In one embodiment, there is provided a data structure for cryptographic key management that includes a public/private key pair and three additional layers of symmetric keys for authorizing access to a plurality of contents.
摘要翻译: 这里描述的是提供用于数字版权管理(DRM)架构的加密密钥管理的方法的实施例,其包括用于最小化带宽使用的多级密钥管理,同时最大化DRM架构的安全性。 在一个实施例中,提供了一种用于加密密钥管理的数据结构,其包括用于授权访问多个内容的公钥/私钥对和三个对称密钥层。
-
公开(公告)号:US08214630B2
公开(公告)日:2012-07-03
申请号:US12391488
申请日:2009-02-24
申请人: Petr Peterka , Alexander Medvinsky
发明人: Petr Peterka , Alexander Medvinsky
IPC分类号: G06F15/177 , G06F21/00 , G06F11/30 , H04L9/32
CPC分类号: G01R31/318555 , G01R31/31719
摘要: A method, device and system for controlling JTAG interface enablement within a communication device. The JTAG interface can be selectively enabled based on the receipt of an encrypted access token generated by an access token server. The access token server generates the access token in response to an end user providing appropriate device-specific information. The access token includes appropriate information that, upon appropriate authentication and decryption, can temporarily device bind the boot code image of the device in a manner that enables the JTAG interface. Alternatively, the access token includes appropriate information that instructs the general purpose processor to choose between JTAG interface enablement information and JTAG interface disablement information for use with the boot code image of the device. The access token can include expiration information that causes an enabled JTAG interface to revert back to its disabled status upon expiration of the access token.
摘要翻译: 一种用于控制通信设备内的JTAG接口使能的方法,设备和系统。 可以基于由访问令牌服务器生成的加密访问令牌的接收来选择性地启用JTAG接口。 访问令牌服务器响应于最终用户提供适当的设备特定信息来生成访问令牌。 访问令牌包括适当的信息,在适当的认证和解密之后,可以以启用JTAG接口的方式临时地将设备的引导代码映像绑定。 或者,访问令牌包括指示通用处理器在JTAG接口使能信息和JTAG接口禁用信息之间进行选择以与设备的启动代码映像一起使用的适当信息。 访问令牌可以包括使得启用的JTAG接口在访问令牌到期时恢复到其禁用状态的到期信息。
-
公开(公告)号:US07953668B2
公开(公告)日:2011-05-31
申请号:US11446668
申请日:2006-06-05
申请人: Jiang Zhang , Alexander Medvinsky , Petr Peterka
发明人: Jiang Zhang , Alexander Medvinsky , Petr Peterka
IPC分类号: G06F21/00
摘要: The present invention discloses an apparatus and method for reserving a set of requested rights. In one example, the digital rights data associated with digital content information is found in a remaining rights file using a license index. A portion of the digital rights data is subsequently reserved. A determination is made as to whether a content download associated with the digital content information is successful. If the content download is unsuccessful, then the reserved portion of the digital rights data is cancelled. Alternatively, if the content download is successful, then the remaining rights file is updated to reflect a use of the portion of the digital rights data.
摘要翻译: 本发明公开了一种用于保留一组请求权限的装置和方法。 在一个示例中,使用许可索引在剩余的权限文件中找到与数字内容信息相关联的数字版权数据。 数字版权数据的一部分随后被保留。 确定与数字内容信息相关联的内容下载是否成功。 如果内容下载不成功,则取消数字版权数据的保留部分。 或者,如果内容下载成功,则剩余的权利文件被更新以反映该部分数字版权数据的使用。
-
公开(公告)号:US07865723B2
公开(公告)日:2011-01-04
申请号:US11201675
申请日:2005-08-11
申请人: Petr Peterka , Alexander Medvinsky
发明人: Petr Peterka , Alexander Medvinsky
IPC分类号: H04L29/06
CPC分类号: H04L12/18
摘要: Method and apparatus providing program information to client devices for at least one multicast stream of digital content is described. In one embodiment, session description messages for the at least one multicast stream of digital content are generated. Each of the session description messages includes at least one content access parameter. The at least one content access parameter may include digital rights management (DRM) data, channel key identification data associated with the at least one channel of the at least one multicast stream of digital content, and/or data indicative of whether each session description message is associated with a channel, a program, or a program segment. Each of the session description messages is signed using a cryptographic key. The session description messages are then multicasted to the client devices using a predefined multicast address.
摘要翻译: 描述了向数字内容的至少一个多播流向客户设备提供节目信息的方法和装置。 在一个实施例中,生成数字内容的至少一个多播流的会话描述消息。 每个会话描述消息包括至少一个内容访问参数。 至少一个内容访问参数可以包括数字版权管理(DRM)数据,与数字内容的至少一个多播流的至少一个信道相关联的信道密钥标识数据,和/或指示每个会话描述消息 与频道,节目或节目片段相关联。 每个会话描述消息都使用加密密钥进行签名。 然后使用预定义的多播地址将会话描述消息多播到客户端设备。
-
-
-
-
-
-
-
-
-
搜索结果
85 条记录 (耗时 0.023 秒)
