-
41.发明申请公开(公告)号:US20080192939A1
公开(公告)日:2008-08-14
申请号:US12061084
申请日:2008-04-02
申请人: Jeffrey Bruce Lotspiech , Dalit Naor , Simeon Naor
发明人: Jeffrey Bruce Lotspiech , Dalit Naor , Simeon Naor
CPC分类号: H04L63/0428 , G11B20/0021 , H04L9/0836 , H04L9/0891 , H04L12/18 , H04L2209/605 , H04L2209/606
摘要: A tree is used to partition stateless receivers in a broadcast content encryption system into subsets. Two different methods of partitioning are disclosed. When a set of revoked receivers is identified, the revoked receivers define a relatively small cover of the non-revoked receivers by disjoint subsets. Subset keys associated with the subsets are then used to encrypt a session key that in turn is used to encrypt the broadcast content. Only non-revoked receivers can decrypt the session key and, hence, the content.
摘要翻译: 一棵树用于将广播内容加密系统中的无状态接收器分成子集。 公开了两种不同的分割方法。 当识别出一组撤销的接收者时,撤销的接收者通过不相交的子集定义非撤销的接收者的相对较小的覆盖。 与子集相关联的子集密钥然后用于加密会话密钥,会话密钥又用于加密广播内容。 只有非撤销的接收者可以解密会话密钥,因此可以解密内容。
-
42.发明授权System and method for guaranteeing software integrity via combined hardware and software authentication 有权通过组合的硬件和软件认证来保证软件完整性的系统和方法公开(公告)号:US07240200B2
公开(公告)日:2007-07-03
申请号:US10259542
申请日:2002-09-26
CPC分类号: H04L9/3249 , G06F21/64 , G06Q10/087 , H04L9/302 , H04L9/3236 , H04L2209/127 , H04L2209/56 , H04L2209/603
摘要: A system, method, and computer program product enabling individual user devices to authenticate and validate a digital message sent by a distribution center, without requiring transmissions to the distribution center. The center transmits the message with an appended modulus that is the product of two specially selected primes. The transmission also includes an appended authentication value that is based on an original message hash value, a new message hash value, and the modulus. The new message hash value is designed to be the center's public RSA key; a corresponding private RSA key is also computed. Individual user devices combine a digital signet, a public modulus, preferably unique hardware-based numbers, and an original message hash to compute a unique integrity value K. Subsequent messages are similarly processed to determine new integrity values K′, which equal K if and only if new messages originated from the center and have not been corrupted.
摘要翻译: 一种系统,方法和计算机程序产品,其使得各个用户设备能够对分发中心发送的数字消息进行认证和验证,而不需要向分发中心传输。 中心传输具有两个特别选择的素数的乘积的附加模数的消息。 传输还包括基于原始消息散列值,新消息散列值和模数的附加认证值。 新消息哈希值被设计为中心的公共RSA密钥; 还计算相应的专用RSA密钥。 单个用户设备组合数字签名,公共模块,优选地基于唯一的基于硬件的号码和原始消息散列以计算唯一的完整性值K.类似地处理后续消息以确定新的完整性值K',其等于K if 只有新消息始发于中心并且没有被破坏。
-
43.发明申请System, method, and service for delivering multimedia content by means of a permission to decrypt titles on a physical media 有权用于通过对物理介质上的标题进行解密的许可来传送多媒体内容的系统,方法和服务公开(公告)号:US20060129490A1
公开(公告)日:2006-06-15
申请号:US11009272
申请日:2004-12-10
IPC分类号: G06F17/60
CPC分类号: G06F21/10
摘要: Enhanced multimedia content on physical media interacts with the user through a media player and the Internet. Enhanced multimedia utilizes IDs for pieces of content on the media and a media key block. On the enhanced media is a file with a list of URLs. As the enhanced media plays a title requiring an external permission for decryption, the media player accesses the URL for that title and obtains the permission. The permission may be purchased or provided for free. Secure encryption and transmission of permission is accomplished by broadcast encryption using a media key block. Each media has a unique set of keys that allow the media player to process the media key block; however, each media follows a unique path through the media key block. All legitimate media players obtain the media key; circumvention devices cannot decipher the media key block.
摘要翻译: 物理媒体上的增强型多媒体内容通过媒体播放器和互联网与用户交互。 增强多媒体利用媒体上的内容片段和媒体密钥块的ID。 在增强型媒体上是一个包含URL列表的文件。 由于增强型媒体播放需要外部解密权限的标题,媒体播放器访问该标题的URL并获得该权限。 许可可以免费购买或提供。 通过使用媒体密钥块的广播加密来实现安全加密和许可传输。 每个媒体都有一组唯一的密钥,允许媒体播放器处理媒体密钥块; 然而,每个媒体遵循通过媒体密钥块的唯一路径。 所有合法媒体播放器获取媒体密钥; 规避设备不能破译媒体密钥块。
-
公开(公告)号:US07039803B2
公开(公告)日:2006-05-02
申请号:US09770877
申请日:2001-01-26
申请人: Jeffrey Bruce Lotspiech , Dalit Naor , Simeon Naor
发明人: Jeffrey Bruce Lotspiech , Dalit Naor , Simeon Naor
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , G11B20/0021 , H04L9/0836 , H04L9/0891 , H04L12/18 , H04L2209/605 , H04L2209/606
摘要: A tree is used to partition stateless receivers in a broadcast content encryption system into subsets. Two different methods of partitioning are disclosed. When a set of revoked receivers is identified, the revoked receivers define a relatively small cover of the non-revoked receivers by disjoint subsets. Subset keys associated with the subsets are then used to encrypt a session key that in turn is used to encrypt the broadcast content. Only non-revoked receivers can decrypt the session key and, hence, the content.
-
公开(公告)号:US20120272068A9
公开(公告)日:2012-10-25
申请号:US12713111
申请日:2010-02-25
CPC分类号: G11B20/00086 , G06F21/10 , G11B20/00115 , G11B20/0021 , G11B20/00246 , G11B20/00362 , G11B20/0042 , G11B20/00427 , G11B20/00442 , G11B20/00731 , G11B20/00746 , G11B20/00855 , G11B20/00869 , G11B20/00927 , H04L9/002 , H04L67/38 , H04L2209/16 , H04L2209/605
摘要: A method of renewing encryption applied to a content file in a playback device comprising determining a specified variant of at least one microcode function to be used in playing back the content file, determining if variants are stored in internal memory on the playback device to determine if the specified variant is included in the stored variants, retrieving the specified variant from a variant storage in a memory located in a media device in communication with the playback device, if the specified variant is not included in the stored variants, and using the specified variant to access the content file. A playback device has at least one memory having a variant storage, the variant storage including at least one variant of a microcode function, and a processor configured to execute instructions to determine at least one specified variant, access the variant storage of at least one memory to acquire the specified variant, and use the specified variant to decrypt a content file downloaded to a media device in communication with the playback device.
摘要翻译: 一种更新应用于播放设备中的内容文件的加密方法,包括:确定要用于播放内容文件的至少一个微代码功能的指定变体,确定变体是否存储在播放设备的内部存储器中,以确定是否 指定的变体包括在存储的变体中,如果指定的变体不包括在存储的变体中,则从位于与播放设备通信的媒体设备中的存储器中的变体存储器中检索指定的变体,并且使用指定的变体 访问内容文件。 回放设备具有至少一个具有变体存储器的存储器,该变体存储器包括微代码功能的至少一个变体,以及被配置为执行指令以确定至少一个指定变体的处理器,访问至少一个存储器的变体存储器 以获取指定的变体,并使用指定的变体解密下载到与回放设备通信的媒体设备的内容文件。
-
公开(公告)号:US07971070B2
公开(公告)日:2011-06-28
申请号:US10905570
申请日:2005-01-11
IPC分类号: G06F12/14
CPC分类号: G11B20/00086 , G11B20/00362 , G11B20/00427 , G11B20/00528 , H04N5/913 , H04N21/4334 , H04N21/4627 , H04N21/8355 , H04N2005/91364
摘要: A recorder system contains a media key block (MKB) and selectively writes protected content into a recording medium according to the following content protection logic, to combat theft of the protected content: If the medium does not have a MKB, then the recorder writes its stored MKB into the medium and writes protected content into the medium. If the medium has a MKB that is older than the stored MKB in the recorder, then the recorder writes its stored MKB into the medium before re-encrypting and writing protected content into the medium. If the medium has a MKB that is newer than the stored MKB, then the MKB in the medium is used for content protection. The recorder may store the newer MKB in non-volatile memory, effectively updating its previous stored MKB, so the recorder will have the most recently observed MKB for content protection use.
摘要翻译: 记录器系统包含媒体密钥块(MKB),并根据以下内容保护逻辑选择性地将受保护内容写入记录介质,以防止受保护内容的盗窃:如果介质没有MKB,则记录器将其写入 将MKB存储到介质中,并将受保护的内容写入介质。 如果介质的MKB比存储器中存储的MKB更早,则记录器将其存储的MKB写入介质,然后再重新加密并将受保护的内容写入介质。 如果介质的MKB比存储的MKB更新,则介质中的MKB用于内容保护。 录音机可以将更新的MKB存储在非易失性存储器中,有效地更新其以前存储的MKB,因此录音机将具有最近观察到的MKB以进行内容保护。
-
公开(公告)号:US20090049558A1
公开(公告)日:2009-02-19
申请号:US11838835
申请日:2007-08-14
CPC分类号: H04L9/32 , G06F21/10 , G06T1/005 , G06T2201/0063 , G09C5/00 , H04L2209/606
摘要: A system and method is provided for identifying the source of an unauthorized copy of content. The method includes embedding a unique user fingerprint code to into each of a plurality of authorized copies of content and identifying an unknown fingerprint code in an unauthorized copy of the content. Each member of the unknown fingerprint code is compared to each corresponding member in each of the user fingerprint codes. A score is assigned to each of the user fingerprint codes based on the comparison and users associated with scores exceeding a threshold are identified as a source of the unauthorized copy.
摘要翻译: 提供了一种系统和方法,用于识别未经授权的内容副本的来源。 该方法包括将唯一用户指纹码嵌入到内容的多个授权副本中的每一个中,并且在未经授权的内容副本中识别未知指纹码。 将未知指纹码的每个成员与每个用户指纹码中的每个相应成员进行比较。 基于比较将得分分配给每个用户指纹码,并将与超过阈值的分数相关联的用户识别为未经授权复制的来源。
-
公开(公告)号:US07007162B1
公开(公告)日:2006-02-28
申请号:US09564658
申请日:2000-05-03
IPC分类号: G06F17/00
CPC分类号: G11B20/00086 , G11B20/0021 , G11B20/00246 , G11B20/00362 , G11B20/10
摘要: A forensic media key block (MKB) is provided to a clone device, either a software- or hardware-implemented clone, that has gained access to one or more compromised device keys of unknown identity from a set of the device keys in a digital content guard system. Media keys in the forensic MKB are selectively marked as “revoked” and then the ability of the clone to decrypt the MKB to successfully play content is observed. In this way the identity of the compromised key or keys is eventually learned, and the system can then revoke the compromised key or keys system-wide.
摘要翻译: 向克隆设备提供取证媒体密钥块(MKB),该克隆设备是软件或硬件实现的克隆,其从数字内容中的设备密钥集合中获得对未知身份的一个或多个受损设备密钥的访问 守卫系统。 法医MKB中的媒体密钥被选择性地标记为“撤销”,然后观察克隆解密MKB成功播放内容的能力。 以这种方式,最终学习了受损密钥或密钥的身份,然后系统可以在系统范围内撤销被破坏的密钥或密钥。
-
公开(公告)号:US06832319B1
公开(公告)日:2004-12-14
申请号:US09358162
申请日:1999-07-20
IPC分类号: G06F1214
CPC分类号: H04N7/163 , G11B20/00362 , H04L9/0861 , H04L9/14 , H04L2209/34 , H04L2209/606 , H04N7/1675 , H04N21/2585 , H04N21/26613
摘要: A system and method for enabling broadcast programs to be copied once only by consumer recorders includes writing a unique media identification on each blank disk to which content is to copied in a read-only area of the disk before it is initially recorded. Also, a one-way key management media key block is written to the disk. A content key is derived by combining a media key, derived from the media key block, with the media identification. Additionally, to facilitate copying the content one time only, an exchange key is established between the recorder and a sender such as a satellite receiver or a disk player that is associated with the recorder, and the exchange key is modified with special numbers representing control commands including copy once and copy no more. The exchange key is then encrypted using the content key and then hashed with a nonce to render a bus content key. The bus content key is then used to encrypt the data for copying the data to a disk.
摘要翻译: 仅通过消费者记录器使广播节目能够被复制一次的系统和方法包括在最初记录该盘之前将内容要复制到的每个空白盘上写入唯一的媒体标识到该盘的只读区域。 此外,单向密钥管理媒体密钥块被写入磁盘。 通过将从媒体密钥块导出的媒体密钥与媒体标识组合来导出内容密钥。 此外,为了便于一次复制内容,在记录器和与记录器相关联的诸如卫星接收机或磁盘播放器的发送者之间建立交换密钥,并且用代表控制命令的特殊号码修改交换密钥 包括复制一次,不复制。 然后使用内容密钥加密交换密钥,然后用随机数进行散列以呈现总线内容密钥。 总线内容密钥然后用于加密用于将数据复制到磁盘的数据。
-
公开(公告)号:US06609116B1
公开(公告)日:2003-08-19
申请号:US09379049
申请日:1999-08-23
IPC分类号: G06F1760
CPC分类号: H04N7/163 , G11B20/00362 , H04L9/0861 , H04L9/14 , H04L2209/34 , H04L2209/606 , H04N7/1675 , H04N21/2585 , H04N21/26613
摘要: A system and method for updating old blank media onto which newer content is sought to be copied, to reduce the risk of unauthorized copying of new content onto old unupdated media. A computer system executes a method in which one or more calculate media key commands (CMKC) are written onto a blank recording medium, with the CMKCs defining an old media key. One or more CMKCs defining a new media key is associated with broadcast content, with the new CMKCs effectively revoking one or more device keys of a suspected pirate device. A legitimate player/recorder can decrypt the media keys from both the medium and the content, and then encrypt the content using the new media key and encrypt the first unconditional CMKC in the new CMKCs with the old media key. The encrypted content and the (now conditional) CMKC are recorded on the medium.
摘要翻译: 用于更新旧的空白介质的系统和方法,在其上寻求更新的内容被复制,以减少未经授权将新内容复制到旧的未更新介质上的风险。 计算机系统执行一种方法,其中一个或多个计算媒体密钥命令(CMKC)被写入空白记录介质,CMKC定义旧的媒体密钥。 定义新媒体密钥的一个或多个CMKC与广播内容相关联,新的CMKC有效地撤销可疑盗版设备的一个或多个设备密钥。 合法的播放器/记录器可以从介质和内容中解密媒体密钥,然后使用新的媒体密钥对内容进行加密,并利用旧的媒体密钥对新的CMKC中的第一个无条件的CMKC进行加密。 加密内容和(现在条件)CMKC被记录在介质上。
-
-
-
-
-
-
-
-
-
搜索结果
73 条记录 (耗时 0.044 秒)
