公开(公告)号：US06888944B2

公开(公告)日：2005-05-03

申请号：US09777506

申请日：2001-02-05

申请人： Jeffrey Bruce Lotspiech ,  Dalit Naor ,  Sigfredo Ismael Nin ,  Florian Pestoni

发明人： Jeffrey Bruce Lotspiech ,  Dalit Naor ,  Sigfredo Ismael Nin ,  Florian Pestoni

IPC分类号： H04H20/00 ,  H04L9/00 ,  H04L9/08 ,  H04N7/16 ,  H04N7/167 ,  H04N21/258 ,  H04N21/266

CPC分类号： H04N7/163 ,  G11B20/00362 ,  H04L9/0861 ,  H04L9/14 ,  H04L2209/34 ,  H04L2209/606 ,  H04N7/1675 ,  H04N21/2585 ,  H04N21/26613

摘要： Sets of encryption keys useful by devices for decrypting encrypted content are defined using an error-correcting code such as a Reed-Solomon code to define vectors of length “n” over an alphabet of (0, . . . , N−1), wherein “n” is the number of columns in a key matrix and “N” is the number of rows in the matrix. Each vector represents a set of keys that can be assigned to a device. With this invention, overlap between sets of keys can be minimized to minimize the possibility that the key set of an innocent device might be inadvertently revoked when the key set of a compromised device is revoked. Also, only the generating matrix of the error-correcting code and the index of one set of keys need be stored in memory, since all previously defined key sets can be regenerated if need be from just the generating matrix and index.

摘要翻译： 使用诸如里德 - 所罗门码的纠错码来定义加密内容解密设备所使用的加密密钥集合，以在（0，...，N-1）的字母表上定义长度为“n”的向量， 其中“n”是键矩阵中的列数，“N”是矩阵中的行数。 每个向量表示可以分配给设备的一组密钥。 利用本发明，可以最小化密钥组之间的重叠，以最小化当被破坏的设备的密钥组被撤销时，无辜设备的密钥组可能被无意中撤销的可能性。 此外，只有纠错码的生成矩阵和一组密钥的索引需要存储在存储器中，因为如果需要仅来自生成矩阵和索引，则可以重新生成所有先前定义的密钥集。

公开(公告)号：US06748539B1

公开(公告)日：2004-06-08

申请号：US09487644

申请日：2000-01-19

申请人： Jeffrey Bruce Lotspiech

发明人： Jeffrey Bruce Lotspiech

IPC分类号： G06F1130

CPC分类号： G06F21/10 ,  G06F2221/2153 ,  G11B20/00362

摘要： A system and method for permitting the rental of digitized content such as music from a kiosk includes a flash memory device that is insertable into the kiosk. The kiosk derives a content key from a media key block and a media ID on the flash memory device, and then encrypts the content using the content key and records the content on the flash memory device. The flash memory device can then be removed and engaged with a player-recorder which decrypts the content and plays the content. When it is desired to check the content back in, the flash memory device is engaged with the kiosk and the content is erased. Importantly, the media ID of the flash memory device is altered during check in, such that if the user saved the content prior to check in, the content, if recorded back onto the flash memory device after check in, could not be decrypted.

摘要翻译： 一种用于允许租借数字化内容（诸如来自信息亭的音乐）的系统和方法包括可插入信息亭的闪存设备。 信息亭从闪存设备上的媒体密钥块和媒体ID导出内容密钥，然后使用内容密钥加密内容，并将内容记录在闪存设备上。 然后可以将闪存设备移除并与解密内容并播放内容的播放器记录器接合。 当需要重新检查内容时，闪存设备与信息亭互动并且内容被擦除。 重要的是，在登记期间闪存设备的媒体ID被改变，使得如果用户在登记之前保存了内容，则内容在登入后被记录回到闪存设备上是无法解密的。

公开(公告)号：US06650753B1

公开(公告)日：2003-11-18

申请号：US09597600

申请日：2000-06-20

申请人： Jeffrey Bruce Lotspiech ,  Kevin Snow McCurley

发明人： Jeffrey Bruce Lotspiech ,  Kevin Snow McCurley

IPC分类号： H04L900

CPC分类号： H04N7/163 ,  G11B20/00362 ,  H04L9/0861 ,  H04L9/14 ,  H04L2209/34 ,  H04L2209/606 ,  H04N7/1675 ,  H04N21/2585 ,  H04N21/26613

摘要： A digital broadcast system provides secure transmission of digital programs to in-home digital devices even when some of the devices are unauthorized. A matrix of device keys Sj,i is provided, wherein “i” is a key index variable indicating a position in a key dimension of the matrix and “j” is a sets index variable indicating a position in a sets dimension of the matrix. Each in-home device is assigned plural dev ice keys from the matrix, with one and only one device key for each key index variable “i” being assigned to a device. To generate a session key for a broadcast program, session numbers xi are encrypted with all device keys Sj,i to generate a session key block which is decrypted by the in-home devices and used to generate a session key for decrypting the program. If one of the devices is a compromised device, at least one of the session numbers is a dummy number that is encrypted and decrypted by the corresponding compromised device key, with the resulting session key being useless in decrypting the program.

摘要翻译： 数字广播系统提供数字节目到家庭内数字设备的安全传输，即使某些设备是未授权的。 提供了设备密钥Sj，i的矩阵，其中“i”是指示矩阵的关键维度中的位置的键索引变量，“j”是指示矩阵的集合维度中的位置的集合索引变量。 每个家庭设备从矩阵中分配了多个开关冰钥匙，每个键索引变量“i”被分配给设备的仅一个设备密钥。 为了生成用于广播节目​​的会话密钥，会话号码xi用所有设备密钥Sj，i进行加密，以生成由家庭内设备解密并用于生成用于解密程序的会话密钥的会话密钥块。 如果其中一个设备是受损设备，则会话号码中的至少一个是被相应的受损设备密钥加密和解密的虚拟号码，结果会话密钥在解密该程序时是无用的。