公开(公告)号：US07039801B2

公开(公告)日：2006-05-02

申请号：US09837904

申请日：2001-04-19

申请人： Attila Narin

发明人： Attila Narin

IPC分类号： H04L9/00

CPC分类号： G06F21/53

摘要： A secure first process uses a non-secure software object by hosting said non-secure software object in a separate second process, where the first process's address space is inaccessible to the second process. The first process communicates with the second process, preferably by means of a COM API that the second process exposes to the first process. The application that runs in the second process may expose APIs of the hosted non-secure object to the first process, and the first process may communicate with the non-secure object hosted in the second process through this API. In a preferred embodiment, the second process renders its output in a child window of the first process, so that the use of a second process to host non-secure software objects is transparent to a user of the first process.

公开(公告)号：US06966034B2

公开(公告)日：2005-11-15

申请号：US09754065

申请日：2001-01-05

申请人： Attila Narin

发明人： Attila Narin

IPC分类号： G06F3/00 ,  G06F9/00 ,  G06F15/16 ,  G06F17/00 ,  H04L29/08

CPC分类号： H04L67/2819 ,  H04L67/02 ,  H04L67/2804

摘要： A method and system for generating and/or servicing requests for information requested across networks, such as the Internet, is disclosed. In some embodiments, supplemental request header information is included with HyperText Transfer Protocol (HTTP) requests for a web page. The supplemental request header information may identify one or more characteristics of an application for which the HTTP request was generated. In further embodiments, the Internet server servicing the HTTP request having such a supplemental request header may extract and use information from this header to select and/or modify the requested web page to best suit the requesting application's status and/or current characteristic.

摘要翻译： 公开了一种用于生成和/或服务于通过诸如因特网的网络所请求的信息的请求的方法和系统。 在一些实施例中，补充请求头信息被包括在网页的超文本传输​​协议（HTTP）请求中。 补充请求头信息可以标识生成HTTP请求的应用的一个或多个特征。 在另外的实施例中，为具有这样的补充请求头的HTTP请求提供服务的因特网服务器可以提取和使用来自该头部的信息来选择和/或修改所请求的网页以最适合请求应用的状态和/或当前特性。

公开(公告)号：US20050097056A1

公开(公告)日：2005-05-05

申请号：US10984099

申请日：2004-11-09

申请人： Marco DeMello ,  Attila Narin ,  Venkateshaiah Setty ,  Pavel Zeman ,  Vinay Krishnaswamy ,  John Manferdelli ,  Frank Byrum ,  Leroy Keely ,  Yoram Yaacovi ,  Jeffrey Alger

发明人： Marco DeMello ,  Attila Narin ,  Venkateshaiah Setty ,  Pavel Zeman ,  Vinay Krishnaswamy ,  John Manferdelli ,  Frank Byrum ,  Leroy Keely ,  Yoram Yaacovi ,  Jeffrey Alger

IPC分类号： G06F1/00 ,  G06F21/00 ,  H04L9/00

CPC分类号： G06F21/10 ,  G06F2221/0704 ,  G06F2221/0737 ,  G06F2221/0797 ,  G06F2221/2117

摘要： A digital rights management system for the distribution, protection and use of electronic content. The system includes a client architecture which receives content, where the content is preferably protected by encryption and may include a license and individualization features. Content is protected at several levels, including: no protection; source-sealed; individually-sealed (or “inscribed”); source-signed; and fully-individualized (or “owner exclusive”). The client also includes and/or receives components which permit the access and protection of the encrypted content, as well as components that allow content to be provided to the client in a form that is individualized for the client. In some cases, access to the content will be governed by a rights construct defined in the license bound to the content. The client components include an object which accesses encrypted content, an object that parses the license and enforces the rights in the license, an object which obtains protection software and data that is individualized for the client and/or the persona operating the client, and a script of instructions that provides individualization information to a distributor of content so that the content may be individualized for the client and/or its operating persona. Content is generally protected by encrypting it with a key and then sealing the key into the content in a way that binds it to the meta-data associated with the content. In some instances, the key may also be encrypted in such a way as to be accessible only by the use of individualized protection software installed on the client, thereby binding use of the content to a particular client or set of clients.

公开(公告)号：US06751778B1

公开(公告)日：2004-06-15

申请号：US09304134

申请日：1999-05-03

申请人： David M Broman ,  Ariye M Cohen ,  Rico Mariani ,  Attila Narin ,  Sanjeev K Rajan ,  Lin-Fon Shaw ,  Bassam Tabbara

发明人： David M Broman ,  Ariye M Cohen ,  Rico Mariani ,  Attila Narin ,  Sanjeev K Rajan ,  Lin-Fon Shaw ,  Bassam Tabbara

IPC分类号： G06F1721

CPC分类号： G06F17/21

摘要： Methods and systems for rendering information pages are described. A page is divided into panes which are rendered by individual pane renderers. The pane renderers can be shared between pages, or even re-used across multiple applications. Rendering support components or objects are provided and can provide access to shared services or data (e.g. ads, user preferences, scripts, and styles) that might be required by multiple panes on a page. Page descriptions comprising pane renderers are created dynamically in a prescribed fashion by an application. A page renderer service in a platform then processes the page description and causes the appropriate RSOs to be called, initialized, and used by the pane renderers to render the page.

摘要翻译： 描述用于呈现信息页面的方法和系统。 页面分为窗格，由单独的窗格渲染器呈现。 窗格渲染器可以在页面之间共享，甚至可以跨多个应用程序重新使用。 提供渲染支持组件或对象，并且可以访问页面上的多个窗格可能需要的共享服务或数据（例如，广告，用户首选项，脚本和样式）。 包含窗格渲染器的页面描述是由应用程序以规定的方式动态创建的。 平台中的页面渲染器服务然后处理页面描述，并导致适当的RSO被窗格渲染器调用，初始化和使用以呈现页面。

公开(公告)号：US09141713B1

公开(公告)日：2015-09-22

申请号：US11323858

申请日：2005-12-30

申请人： Attila Narin

发明人： Attila Narin

IPC分类号： G06F17/30

CPC分类号： G06Q30/0623 ,  G06F17/30828 ,  G06F17/30864 ,  G06F17/30876 ,  G06F17/30905 ,  G06F17/30914 ,  H04L67/02 ,  H04L67/10

摘要： A web page optimization engine for optimizing a web page is described. The web page optimization engine includes a keyword mapping engine configured to generate a keyword map including a listing of keywords, where each keyword is associated with one or more web pages. The web page optimization engine further includes a map reversal engine configured to generate a web page map including a listing of web page subject matters, where each web page subject matter is associated with one or more keywords based on the associations from the keyword map. The web page optimization engine yet further includes a web page generation engine configured to generate a web page for a web page subject matter in the web page map to include at least one of the one or more keywords for that web page subject matter.

摘要翻译： 描述了用于优化网页的网页优化引擎。 网页优化引擎包括被配置为生成包括关键字列表的关键字映射的关键字映射引擎，其中每个关键字与一个或多个网页相关联。 网页优化引擎还包括映射反转引擎，其被配置为生成包括网页主题的列表的网页地图，其中基于关键字图的关联，每个网页主题与一个或多个关键字相关联。 网页优化引擎还包括网页生成引擎，其被配置为生成网页地图中的网页主题的网页，以包括用于该网页主题的一个或多个关键字中的至少一个。

公开(公告)号：US07891007B2

公开(公告)日：2011-02-15

申请号：US10185511

申请日：2002-06-28

申请人： Peter David Waxman ,  Attila Narin ,  Scott Cottrille ,  Vinay Krishnaswamy ,  Marco A. DeMello ,  Chandramouli Venkatesh ,  Frank D. Byrum ,  Steve Bourne

发明人： Peter David Waxman ,  Attila Narin ,  Scott Cottrille ,  Vinay Krishnaswamy ,  Marco A. DeMello ,  Chandramouli Venkatesh ,  Frank D. Byrum ,  Steve Bourne

IPC分类号： H04N7/16

CPC分类号： H04L63/0428 ,  G06F21/10 ,  H04L63/10 ,  H04L63/12 ,  H04L2463/101

摘要： A method for managing rights in digital content includes generating rights data for a piece of digital content and forming a piece of rights managed digital content by associating the rights data with the piece of digital content. The rights data includes parameters that govern the terms on which the content may be licensed, and may include a list of entities to which the content may be licensed, a respective set of one or more rights that each such entity has in the digital content, and any conditions that may be placed on those rights. A method for licensing rights managed digital content includes receiving a license request for a license to use the piece of rights managed digital content, where the license request includes such a signed rights label. The digital signature on the signed rights label is validated to determine whether a trusted entity issued the signed rights label. If a trusted entity issued the signed rights label, a license to use the piece of rights managed digital content in accordance with the rights data may be issued.

摘要翻译： 用于管理数字内容中的权利的方法包括通过将权利数据与该片数字内容相关联来生成一段数字内容的权限数据，并形成权限管理的数字内容。 权利数据包括控制内容可以被许可的术语的参数，并且可以包括内容可以被许可的实体的列表，每个这样的实体在数字内容中具有的一个或多个权限的相应集合， 以及可能针对这些权利的任何条件。 许可权管理数字内容的方法包括接收许可证的许可证请求以使用该版权管理的数字内容，其中许可请求包括这样的签名权利标签。 对签名的权利标签上的数字签名进行验证，以确定信任的实体是否签发了签名的权利标签。 如果可信实体签发了签名的权利标签，则可以颁发根据权利数据使用该版权管理的数字内容的许可。

公开(公告)号：US07443985B2

公开(公告)日：2008-10-28

申请号：US11508437

申请日：2006-08-23

申请人： Vinay Krishnaswamy ,  Attila Narin ,  Gregory Kostal ,  Vladimir Yarmolenko ,  Scott C. Cottrille

发明人： Vinay Krishnaswamy ,  Attila Narin ,  Gregory Kostal ,  Vladimir Yarmolenko ,  Scott C. Cottrille

IPC分类号： H04L9/00

CPC分类号： H04L63/0428 ,  H04L63/0464 ,  H04L63/0823 ,  H04L63/12 ,  H04L2463/101

摘要： A key management interface that allows for different key protection schemes to be plugged into a digital rights management system is disclosed. The interface exposes the functionality of signing data, decrypting data encrypted using a public key, and re-encrypting data encrypted using the public key exported by the interface to a different authenticated principal (i.e., a different public key). Thus, a secure interface can be provided such that the data does not enter or leave the interface in the clear. Such an interface exports private key operations of signing and decryption, and provides security and authentication for the digital asset server in licensing and publishing. During publishing, a client can encrypt asset keys such that only a specified entity can decrypt it, using a plug-in, for example, that implements the aforementioned interface. During licensing, the license issuing entity can use the interface to decrypt keys for assets and to sign licenses and rights labels such that the asset is protected and consumable by a host digital rights management platform. The interface thus provides an abstraction for key operations.

摘要翻译： 公开了一种允许将不同密钥保护方案插入数字版权管理系统的密钥管理接口。 该接口公开了签名数据的功能，解密使用公共密钥加密的数据，并且使用由该接口导出的公共密钥加密的数据重新加密到不同的认证主体（即不同的公钥）。 因此，可以提供安全接口，使得数据不会进入或离开界面清楚。 这样的接口导出签名和解密的私钥操作，并为许可和发布中的数字资产服务器提供安全和身份验证。 在发布期间，客户端可以加密资产密钥，使得只有指定的实体可以使用例如实现上述接口的插件来对其进行解密。 在许可期间，许可证发放实体可以使用接口解密资产的密钥，并签署许可证和权利标签，以使资产受到主机数字版权管理平台的保护和消耗。 因此，该接口为关键操作提供了一个抽象。

公开(公告)号：US07353402B2

公开(公告)日：2008-04-01

申请号：US10185527

申请日：2002-06-28

申请人： Steven Bourne ,  Prashant Malik ,  Vinay Krishnaswamy ,  James B. Shobe, Jr. ,  Chandramouli Venkatesh ,  Attila Narin

发明人： Steven Bourne ,  Prashant Malik ,  Vinay Krishnaswamy ,  James B. Shobe, Jr. ,  Chandramouli Venkatesh ,  Attila Narin

IPC分类号： H04L9/00

CPC分类号： H04L63/0442 ,  G06F21/10 ,  H04L2463/101

摘要： Content is encrypted according to a content key (CK) ((CK(content))), (CK) is protected according to a license server public key (PU-DRM), and rights data associated with the content is protected according to (PU-DRM). The protected items are submitted as a rights label to the license server for signing. The license server validates the rights label and, if valid, digitally signs based on the protected rights data to result in a signed rights label (SRL), and returns same. The SRL is concatenated with (CK(content)) and both are distributed to a user. To render the content, the user submits the SRL to the license server to request a license. The license server verifies the SRL signature and reviews the SRL protected rights data to determine whether the user is entitled to the license, and if so issues the license, including (CK) in a protected form accessible to the user.

摘要翻译： 内容根据内容密钥（CK）（（CK（content）））进行加密，（CK）根据许可证服务器公钥（PU-DRM）进行保护，并且与内容相关联的权限数据根据（ PU-DRM）。 受保护的项目作为权限标签提交到许可证服务器进行签名。 许可证服务器验证权利标签，如果有效，则根据受保护的权利数据进行数字签名，以生成签名的权利标签（SRL），并返回相同的标签。 SRL与（CK（内容））连接，并且都分配给用户。 为了呈现内容，用户将SRL提交给许可证服务器以请求许可证。 许可证服务器验证SRL签名并检查SRL保护的权限数据，以确定用户是否有权获得许可证，如果是，则将许可证（包括（CK））保存在用户可访问的受保护的表单中。

公开(公告)号：US07213079B2

公开(公告)日：2007-05-01

申请号：US11169939

申请日：2005-06-30

申请人： Attila Narin

发明人： Attila Narin

IPC分类号： G06F15/16 ,  G06F15/00 ,  G06F17/00 ,  G06F3/00 ,  G06F9/00

CPC分类号： H04L67/2819 ,  H04L67/02 ,  H04L67/2804

摘要： A method and system for generating and/or servicing requests for information requested across networks, such as the Internet, is disclosed. In some embodiments, supplemental request header information is included with HyperText Transfer Protocol (HTTP) requests for a web page. The supplemental request header information may identify one or more characteristics of an application for which the HTTP request was generated. In further embodiments, the Internet server servicing the HTTP request having such a supplemental request header may extract and use information from this header to select and/or modify the requested web page to best suit the requesting application's status and/or current characteristic.

摘要翻译： 公开了一种用于生成和/或服务于通过诸如因特网的网络所请求的信息的请求的方法和系统。 在一些实施例中，补充请求头信息被包括在网页的超文本传输​​协议（HTTP）请求中。 补充请求头信息可以标识生成HTTP请求的应用的一个或多个特征。 在另外的实施例中，为具有这样的补充请求头的HTTP请求提供服务的因特网服务器可以提取和使用来自该头部的信息来选择和/或修改所请求的网页以最适合请求应用的状态和/或当前特性。

公开(公告)号：US07185363B1

公开(公告)日：2007-02-27

申请号：US10265437

申请日：2002-10-04

申请人： Attila Narin ,  Marco A. DeMello

发明人： Attila Narin ,  Marco A. DeMello

IPC分类号： G06F9/00 ,  G06F12/00

CPC分类号： H04L63/10 ,  G06F21/10 ,  H04L63/0428 ,  H04L2463/101

摘要： A first device is used to initiate and direct a rights-management transaction, such as content licensing, acquisition, or activation, on behalf of a second device. The first device may, for example, be a desktop computer, laptop computer, or electronic kiosk at a bricks-and-mortar store. The second device may, for example, be a handheld computer that is cradled to establish communicative connectivity with the first device. A user interacts with the first device to initiate a transaction on behalf of the second device. The first device then obtains the information from the second device that is necessary to perform the transaction on behalf of the second device, communicates with a server, and provides the result of the server communication to the first device. Thus, the first device acts as a proxy for the second device.

摘要翻译： 第一个设备用于代表第二个设备启动和引导权限管理事务，如内容许可，获取或激活。 第一设备可以例如是在实体店的台式计算机，膝上型计算机或电子亭。 第二设备可以例如是手持式计算机，其被支撑以建立与第一设备的通信连接。 用户与第一设备交互以代表第二设备发起事务。 然后，第一设备从第二设备获取代表第二设备执行交易所需的信息，与服务器通信，并将服务器通信的结果提供给第一设备。 因此，第一设备充当第二设备的代理。