-
公开(公告)号:US07412061B2
公开(公告)日:2008-08-12
申请号:US10981846
申请日:2004-11-05
CPC分类号: H04L63/12 , G06F21/10 , G06F21/71 , G06F21/84 , G06F2211/007 , G06F2221/0797 , G06F2221/2105 , G06F2221/2107 , G06F2221/2137 , G06Q30/06 , G07F11/002 , H04L9/083 , H04L9/0869 , H04L63/0442 , H04L63/068 , H04L63/0823 , H04L2209/603 , H04L2463/101
摘要: To encrypt a digital object, a key ID is selected for the digital object, and a function ƒ( ) having an input and an output is selected. The selected key ID is then employed as the input to the function ƒ( ), and the output of such function ƒ( ) is employed as the key (KD) for the digital object: ƒ(key ID)key (KD). The digital object is then according to such key (KD), and the encrypted digital object is distributed.
摘要翻译: 为了加密数字对象,为数字对象选择密钥ID,并且选择具有输入和输出的函数f()。 然后将所选择的密钥ID用作函数f()的输入,并且使用这种函数f()的输出作为数字对象的密钥(KD):f(密钥ID)
键(KD)。 然后,数字对象按照这样的密钥(KD),加密的数字对象被分发。
-
公开(公告)号:US07383205B1
公开(公告)日:2008-06-03
申请号:US09482843
申请日:2000-01-13
IPC分类号: G06Q30/00
CPC分类号: H04L63/0442 , G06F21/10 , G06F21/71 , G06F2211/007 , G06F2221/0797 , G06F2221/2105 , G06F2221/2137 , G06Q40/04 , H04L63/068 , H04L63/0823 , H04L63/12 , H04L2463/101
摘要: A digital content package includes encrypted digital content to be rendered in accordance with a corresponding digital license and is separate and apart from the license. The encrypted digital content is decrypt-able according to a decryption key (KD) obtained from the license. The package also includes a content/package ID that identifies one of the digital content and the package, and license acquisition information including a location of a license provider for providing the license.
摘要翻译: 数字内容包包括根据相应的数字许可证呈现的加密的数字内容,并且与许可证是分开的。 根据从许可证获得的解密密钥(KD),加密的数字内容是可解密的。 该软件包还包括识别数字内容和软件包之一的内容/软件包ID,以及许可证获取信息,包括用于提供许可证的许可证提供者的位置。
-
43.发明授权公开(公告)号:US07380130B2
公开(公告)日:2008-05-27
申请号:US10125170
申请日:2002-04-18
申请人: Paul England , Marcus Peinado , Nicholas P. Wilt
发明人: Paul England , Marcus Peinado , Nicholas P. Wilt
IPC分类号: G06F12/14
CPC分类号: G06F21/445 , G06F21/57 , G06F21/606
摘要: Methods and systems are provided for authenticating component(s) in connection with the use of a trusted graphics system. Techniques are provided for authenticating a graphics card in connection with a system that cryptographically secures content routed through a graphics pipeline, such that an application or device can indicate to the trusted graphics platform that the application or device is a trusted user of the trusted graphics platform, and such that the graphics platform can communicate to the trusted application or device that the graphics platform may be trusted by the application or device.
摘要翻译: 提供了与使用可信图形系统相关联的认证组件的方法和系统。 提供技术用于与密码地保护通过图形流水线路由的内容的系统相结合地认证图形卡,使得应用程序或设备可向可信图形平台指示应用程序或设备是可信图形平台的受信任用户 并且使得图形平台可以与受信任的应用或设备通信图形平台可被应用或设备信任。
-
公开(公告)号:US20080021839A1
公开(公告)日:2008-01-24
申请号:US11866041
申请日:2007-10-02
申请人: Marcus Peinado , Paul England , Frank Yerrace
发明人: Marcus Peinado , Paul England , Frank Yerrace
IPC分类号: H04L9/00
CPC分类号: G06F21/10 , G06F2221/2107
摘要: Digital content is released to a rendering application for forwarding by such rendering application to an ultimate destination by way of a path therebetween. The path is defined by at least one module, and the digital content is initially in an encrypted form. An authentication of at least a portion of the path is performed to determine whether each defining module thereof is to be trusted to appropriately handle the digital content passing therethrough. The encrypted digital content is decrypted if in fact each such defining module is to be trusted, and the decrypted digital content is forwarded to the rendering application for further forwarding to the ultimate destination by way of the authenticated path.
摘要翻译: 数字内容被释放到呈现应用程序,用于通过这些渲染应用程序之间的路径转发到最终目的地。 该路径由至少一个模块定义,数字内容最初是加密形式。 执行路径的至少一部分的认证,以确定其每个定义模块是否被信任以适当地处理通过其中的数字内容。 如果实际上每个这样的定义模块都被信任,则加密的数字内容被解密,并且解密的数字内容被转发到呈现应用程序,以便通过认证路径进一步转发到最终目的地。
-
公开(公告)号:US20070143839A1
公开(公告)日:2007-06-21
申请号:US11275146
申请日:2005-12-15
申请人: Yuqun Chen , Marcus Peinado
发明人: Yuqun Chen , Marcus Peinado
IPC分类号: G06F12/14 , H04N7/16 , H04L9/32 , H04L9/00 , G06F17/30 , H04K1/00 , G06F12/00 , G06F7/04 , G06F13/00 , G06K9/00 , H03M1/68 , G06F7/58 , G06K19/00 , G11C7/00
CPC分类号: G06F21/57 , G06F21/53 , G06F21/629
摘要: A plurality of access units may be established with varying levels of privilege and access rights, such that the user may perform tasks carrying with them a high risk of viral infection in an access unit with a low level of privilege and access rights. When an authenticated user desires to perform tasks requiring a higher level of privilege and access rights, the user may switch to an access unit having a higher privilege and access rights level by instigating a physical action. The physical action may include selecting a button (included in either a UI or on a peripheral device), or inputting biometric data to switch among running access units. A signal instigated by the physical action is transmitted along a trusted path between the isolation kernel and where the physical action was instigated.
摘要翻译: 可以建立具有不同级别的特权和访问权限的多个访问单元,使得用户可以执行具有低级特权和访问权限的访问单元中病毒感染的高风险的任务。 当认证用户希望执行需要更高级别的特权和访问权限的任务时,用户可以通过煽动身体动作来切换到具有较高特权和访问权限级别的访问单元。 物理动作可以包括选择按钮(包括在UI中或在外围设备上),或者输入生物测定数据以在运行的访问单元之间切换。 通过物理动作引发的信号沿着隔离核心之间的信任路径传输,并且物理作用被引发。
-
46.发明授权Binding content to a portable storage device or the like in a digital rights management (DRM) system 有权在数字版权管理(DRM)系统中将内容绑定到便携式存储设备等公开(公告)号:US07231669B2
公开(公告)日:2007-06-12
申请号:US11364731
申请日:2006-02-27
申请人: Yuen Yu Leung , Marcus Peinado , Clifford P. Strom
发明人: Yuen Yu Leung , Marcus Peinado , Clifford P. Strom
CPC分类号: G06F21/10 , H04L63/10 , H04N21/41407 , H04N21/4405 , H04N21/4627
摘要: Digital content is rendered on a device by transferring the content to the device and obtaining a digital license corresponding to the content. A sub-license corresponding to and based on the obtained license is composed and transferred to the device, and the content is rendered on the device only in accordance with the terms of the sub-license. The content is encrypted and decryptable according to a content key, and the sub-license includes the content key encrypted and decryptable according to a secret. The sub-license also includes indexing information identifying the secret to the device. The indexing information in the sub-license is obtained to identify the secret, and the secret is acquired based at least in part on the indexing information. The secret is then applied to the encrypted content key to decrypt and obtain the content key, and the obtained content key is applied to the encrypted content to decrypt and obtain the content. To compose the sub-license and also to render the content, the secret is derived by obtaining a device identifier, acquiring a super-secret, and applying the obtained device identifier and super-secret to a function to derive the secret.
摘要翻译: 通过将内容传送到设备并获得与内容相对应的数字许可证,在设备上呈现数字内容。 对应于并基于所获得的许可证的子许可证被组合并传送到设备,并且仅根据子许可证的条款在设备上呈现内容。 内容根据内容密钥被加密和可解密,并且子许可证包括根据秘密加密和可解密的内容密钥。 子许可证还包括标识设备秘密的索引信息。 获取子许可证中的索引信息以识别秘密,并且至少部分地基于索引信息获取秘密。 然后将秘密应用于加密内容密钥以解密并获得内容密钥,并将获得的内容密钥应用于加密内容以解密并获得内容。 为了构成子许可证并且还呈现内容,通过获得设备标识符,获取超级秘密,并将获得的设备标识符和超级秘密应用于导出秘密的功能来导出秘密。
-
公开(公告)号:US07162745B2
公开(公告)日:2007-01-09
申请号:US11176080
申请日:2005-07-07
CPC分类号: G06F21/10
摘要: Theft of decompressed digital content as the content is being rendered is prevented. A requested slow-down of the rendering of the content is detected. Transfers of relatively large amounts of data are detected. A re-compressor-based requested slow-down of the rendering of the content is detected. A re-compressor re-compressing the content is detected. In each situation, the detected activity is presumably initiated by a content thief attempting to steal the content. In each situation, the detected activity is responded to in a manner designed to frustrate the presumed attempt of the content thief to steal the content.
-
公开(公告)号:US07107463B2
公开(公告)日:2006-09-12
申请号:US11206519
申请日:2005-08-18
申请人: Paul England , Marcus Peinado , Daniel R. Simon , Josh D. Benaloh
发明人: Paul England , Marcus Peinado , Daniel R. Simon , Josh D. Benaloh
摘要: Manifest-based trusted agent management in a trusted operating system environment includes receiving a request to execute a process is received and setting up a virtual memory space for the process. Additionally, a manifest corresponding to the process is accessed, and which of a plurality of binaries can be executed in the virtual memory space is limited based on indicators, of the binaries, that are included in the manifest.
-
49.发明申请公开(公告)号:US20060167815A1
公开(公告)日:2006-07-27
申请号:US11388403
申请日:2006-03-24
申请人: Marcus Peinado , Rajasekhar Abburi , Paul England , Krishnamurthy Ganesan , Jeffrey Bell , Arnold Blinn , Thomas Jones
发明人: Marcus Peinado , Rajasekhar Abburi , Paul England , Krishnamurthy Ganesan , Jeffrey Bell , Arnold Blinn , Thomas Jones
IPC分类号: G06Q99/00
CPC分类号: G07F11/002 , G06F21/10 , G06F21/71 , G06F2211/007 , G06F2221/0797 , G06F2221/2105 , G06F2221/2137 , G06Q20/3678 , G06Q30/06 , H04L63/0442 , H04L63/068 , H04L63/0823 , H04L63/12 , H04L2463/101
摘要: An enforcement architecture and method for implementing digital rights management are disclosed. Digital content is distributed from a content server to a computing device of a user and received, and an attempt is made to render the digital content by way of a rendering application. The rendering application invokes a Digital Rights Management (DRM) system, and such DRM system determines whether a right to render the digital content in the manner sought exists based on any digital license stored in the computing device and corresponding to the digital content. If the right does not exist, a digital license that provides such right and that corresponds to the digital content is requested from a license server, and the license server issues the digital license to the DRM system. The computing device receives the issued digital license and stores the received digital license thereon.
摘要翻译: 披露了实施数字版权管理的执法架构和方法。 数字内容从内容服务器分发到用户的计算设备并被接收,并且尝试通过渲染应用呈现数字内容。 呈现应用程序调用数字权限管理(DRM)系统,并且这样的DRM系统基于存储在计算设备中并对应于数字内容的任何数字许可,确定以所寻求的方式呈现数字内容的权利是否存在。 如果权利不存在,则从许可证服务器请求提供这种权利并对应于数字内容的数字许可证,并且许可证服务器向DRM系统发布数字许可证。 计算设备接收所发行的数字许可证并在其上存储所接收的数字许可证。
-
公开(公告)号:US07073063B2
公开(公告)日:2006-07-04
申请号:US09892371
申请日:2001-06-27
申请人: Marcus Peinado
发明人: Marcus Peinado
IPC分类号: H04L9/00
CPC分类号: H04L63/0442 , G06F21/10 , G06F21/71 , G06F2211/007 , G06F2211/008 , G06F2221/0795 , G06F2221/0797 , G06F2221/2101 , G06F2221/2105 , G06F2221/2137 , G06F2221/2145 , G07F11/002 , H04L63/068 , H04L63/0823 , H04L63/12 , H04L2463/101
摘要: To render digital content encrypted according to a content key (KD) on a first device having a public key (PU1) and a corresponding private key (PR1), a digital license corresponding to the content is obtained, where the digital license includes the content key (KD) therein in an encrypted form. The encrypted content key (KD) from the digital license is decrypted to produce the content key (KD), and the public key (PU1) of the first device is obtained therefrom. The content key (KD) is then encrypted according to the public key (PU1) of the first device (PU1 (KD)), and a sub-license corresponding to and based on the obtained license is composed, where the sub-license includes (PU1 (KD)). The composed sub-license is then transferred to the first device.
-
-
-
-
-
-
-
-
-
搜索结果
159 条记录 (耗时 0.06 秒)
