-
1.发明授权Method and system for providing security within multiple set-top boxes assigned for a single customer 有权在为单个客户分配的多个机顶盒中提供安全性的方法和系统公开(公告)号:US08973025B2
公开(公告)日:2015-03-03
申请号:US13287576
申请日:2011-11-02
申请人: Paul Moroney , Scott Contini , Eric Sprunk , Allen James Anderson
发明人: Paul Moroney , Scott Contini , Eric Sprunk , Allen James Anderson
IPC分类号: H04N7/16 , H04N7/167 , H04N21/436 , H04N21/418 , H04N21/45 , H04N21/4367 , H04N21/442 , H04N21/4623
CPC分类号: H04N21/43615 , H04N7/162 , H04N7/163 , H04N7/165 , H04N7/1675 , H04N21/4181 , H04N21/4367 , H04N21/44227 , H04N21/4532 , H04N21/4623
摘要: Two or more set-top boxes are installed in a household. A communications link, preferably a physical link, is provided between or among the set-top boxes. One of the boxes is designated as a “master” box while the other box or boxes are “slaves.” The slave box will use the communications link to communicate in a secured and encrypted manner with the master box. If that communication is severed, e.g., if an attempt is made to move the slave box to another household to provide unauthorized service in that household, the slave box will stop working when it can no longer communicate with the master box.
摘要翻译: 家庭中安装了两个或更多的机顶盒。 在机顶盒之间或之间提供通信链路,优选物理链路。 其中一个框被指定为“主”框,而其他框或框是“从站”。从框将使用通信链路以安全和加密的方式与主框进行通信。 如果该通信被切断,例如,如果试图将从属盒移动到另一家庭以在该家庭中提供未经授权的服务,则当它不再能够与主盒通信时,从属盒将停止工作。
-
2.发明申请Method and System for Providing Security within Multiple Set-Top Boxes Assigned for a Single Customer 有权为单个客户分配的多个机顶盒提供安全的方法和系统公开(公告)号:US20120110612A1
公开(公告)日:2012-05-03
申请号:US13287576
申请日:2011-11-02
申请人: Paul Moroney , Scott Contini , Eric Sprunk , Allen James Anderson
发明人: Paul Moroney , Scott Contini , Eric Sprunk , Allen James Anderson
IPC分类号: H04N21/25 , H04N21/2665
CPC分类号: H04N21/43615 , H04N7/162 , H04N7/163 , H04N7/165 , H04N7/1675 , H04N21/4181 , H04N21/4367 , H04N21/44227 , H04N21/4532 , H04N21/4623
摘要: Two or more set-top boxes are installed in a household. A communications link, preferably a physical link, is provided between or among the set-top boxes. One of the boxes is designated as a “master” box while the other box or boxes are “slaves.” The slave box will use the communications link to communicate in a secured and encrypted manner with the master box. If that communication is severed, e.g., if an attempt is made to move the slave box to another household to provide unauthorized service in that household, the slave box will stop working when it can no longer communicate with the master box.
摘要翻译: 一个家庭安装了两个或更多的机顶盒。 在机顶盒之间或之间提供通信链路,优选物理链路。 其中一个框被指定为“主”框,而其他框或框是“从站”。从框将使用通信链路以安全和加密的方式与主框进行通信。 如果该通信被切断,例如,如果试图将从属盒移动到另一家庭以在该家庭中提供未经授权的服务,则当它不再能够与主盒通信时,从属盒将停止工作。
-
3.发明申请Method and Apparatus for Providing an Asymmetric Encrypted Cookie for Product Data Storage 有权为产品数据存储提供不对称加密Cookie的方法和装置公开(公告)号:US20090028343A1
公开(公告)日:2009-01-29
申请号:US11782721
申请日:2007-07-25
申请人: Eric Sprunk
发明人: Eric Sprunk
CPC分类号: H04L9/0894
摘要: A process may be utilized by a device to implement public key asymmetric encryption. The process encrypts a data set with a symmetric encryption key to form an encrypted data set. Further, the process encrypts the symmetric encryption key with a public key component of an asymmetric encryption key to form an asymmetric encrypted cookie. Finally, the process stores the encrypted data set and the asymmetric encrypted cookie in a non-secure area of a storage medium.
摘要翻译: 设备可以使用进程来实现公共密钥非对称加密。 该过程使用对称加密密钥对数据集进行加密以形成加密数据集。 此外,该过程使用非对称加密密钥的公共密钥组件对对称加密密钥进行加密以形成非对称加密的cookie。 最后,该过程将加密的数据集和非对称加密的cookie存储在存储介质的非安全区域中。
-
公开(公告)号:US07404082B2
公开(公告)日:2008-07-22
申请号:US11228180
申请日:2005-09-16
申请人: Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
发明人: Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
IPC分类号: H04L9/00
CPC分类号: H04L9/0825 , G11B20/0021 , G11B20/00731 , H04L9/0822 , H04L9/083 , H04L2209/603 , H04N21/26606 , H04N21/26613 , H04N21/4181 , H04N21/63345 , H04N21/8355
摘要: Described herein are embodiments that provide an approach to cryptographic key management for a digital rights management (DRM) architecture that includes multiple levels of key management for minimizing bandwidth usage while maximizing security for the DRM architecture. In one embodiment, there is provided a data structure for cryptographic key management that includes a public/private key pair and three additional layers of symmetric keys for authorizing access to a plurality of contents.
摘要翻译: 这里描述的是提供用于数字版权管理(DRM)架构的加密密钥管理的方法的实施例,其包括用于最小化带宽使用的多级密钥管理,同时最大化DRM架构的安全性。 在一个实施例中,提供了一种用于加密密钥管理的数据结构,其包括用于授权访问多个内容的公钥/私钥对和三个对称密钥层。
-
公开(公告)号:US20050076183A1
公开(公告)日:2005-04-07
申请号:US10796340
申请日:2004-03-09
申请人: Alexander Medvinsky , Eric Sprunk
发明人: Alexander Medvinsky , Eric Sprunk
IPC分类号: G06F12/14
CPC分类号: H04N21/8355 , H04N21/4627
摘要: A system is provided for enforcing program content agreements between a program distributor and a client. The program content can be restricted so as to prevent any playback of program content once unauthorized interference is detected. Furthermore, a specific time value can be used as part of a time message to indicate an expiration of a time stamp. Thus, an attack using fabricated time messages or buffered time messages can be averted.
摘要翻译: 提供了一种用于在程序分发者和客户端之间执行程序内容协议的系统。 可以限制节目内容,以便一旦检测到未经授权的干扰就防止播放节目内容。 此外,特定时间值可以用作时间消息的一部分,以指示时间戳的到期。 因此,可以避免使用制造的时间消息或缓冲时间消息的攻击。
-
公开(公告)号:US5473693A
公开(公告)日:1995-12-05
申请号:US167781
申请日:1993-12-21
申请人: Eric Sprunk
发明人: Eric Sprunk
CPC分类号: H04L9/0625
摘要: An implementation of a security algorithm such as DES is provided that overcomes the complementarity weaknesses provided by conventional implementations. In a DES implementation, a cryptographic processor applies the DES algorithm to a data block. The DES processor includes a first input port for receiving the data block, a second input port for receiving a cryptographic key, and an output port for outputting the data block after encryption. A nonlinear function that does not have complementarity is applied to at least one of the ports. The nonlinear function can comprise a lookup table, which could be advantageously derived from a DES S-Box.
摘要翻译: 提供了诸如DES的安全算法的实现,其克服了常规实现提供的互补弱点。 在DES实现中,加密处理器将DES算法应用于数据块。 DES处理器包括用于接收数据块的第一输入端口,用于接收加密密钥的第二输入端口和用于在加密之后输出数据块的输出端口。 不具有互补性的非线性函数被应用于至少一个端口。 非线性函数可以包括可以有利地从DES S-Box导出的查找表。
-
7.发明授权Method and system for providing security within multiple set-top boxes assigned for a single customer 有权在为单个客户分配的多个机顶盒中提供安全性的方法和系统公开(公告)号:US08068610B2
公开(公告)日:2011-11-29
申请号:US10301092
申请日:2002-11-20
申请人: Paul Moroney , Scott Contini , Eric Sprunk , Allen James Anderson
发明人: Paul Moroney , Scott Contini , Eric Sprunk , Allen James Anderson
CPC分类号: H04N21/43615 , H04N7/162 , H04N7/163 , H04N7/165 , H04N7/1675 , H04N21/4181 , H04N21/4367 , H04N21/44227 , H04N21/4532 , H04N21/4623
摘要: Two or more set-top boxes are installed in a household. A communications link, preferably a physical link, is provided between or among the set-top boxes. One of the boxes is designated as a “master” box while the other box or boxes are “slaves.” The slave box will use the communications link to communicate in a secured and encrypted manner with the master box. If that communication is severed, e.g., if an attempt is made to move the slave box to another household to provide unauthorized service in that household, the slave box will stop working when it can no longer communicate with the master box.
摘要翻译: 家庭中安装了两个或更多的机顶盒。 在机顶盒之间或之间提供通信链路,优选物理链路。 其中一个框被指定为“主”框,而其他框或框是“从站”。从框将使用通信链路以安全和加密的方式与主框进行通信。 如果该通信被切断,例如,如果试图将从属盒移动到另一家庭以在该家庭中提供未经授权的服务,则当它不再能够与主盒通信时,从属盒将停止工作。
-
8.发明授权Key management protocol and authentication system for secure internet protocol rights management architecture 有权用于安全互联网协议权限管理架构的密钥管理协议和认证系统公开(公告)号:US07243366B2
公开(公告)日:2007-07-10
申请号:US10092347
申请日:2002-03-04
申请人: Alexander Medvinsky , Petr Peterka , Paul Moroney , Eric Sprunk
发明人: Alexander Medvinsky , Petr Peterka , Paul Moroney , Eric Sprunk
CPC分类号: H04L63/04 , G06Q20/367 , H04L63/062 , H04L63/08 , H04L2463/101
摘要: A digital rights management architecture for securely delivering content to authorized consumers. The architecture includes a content provider and a consumer system for requesting content from the content provider. The content provider generates a session rights object having purchase options selected by the consumer. A KDC thereafter provides authorization data to the consumer system. Also, a caching server is provided for comparing the purchase options with the authorization data. The caching server forwards the requested content to the consumer system if the purchase options match the authorization data. Note that the caching server employs real time streaming for securely forwarding the encrypted content, and the requested content is encrypted for forwarding to the consumer system. Further, the caching server and the consumer system exchange encrypted control messages (and authenticated) for supporting transfer of the requested content. In this manner, all interfaces between components are protected by encryption and/authenticated.
摘要翻译: 数字版权管理架构,用于将权限安全地传递给授权消费者。 该架构包括内容提供商和用于从内容提供商请求内容的消费者系统。 内容提供商生成具有由消费者选择的购买选项的会话权限对象。 KDC此后向消费者系统提供授权数据。 此外,还提供了一个缓存服务器,用于将购买选项与授权数据进行比较。 如果购买选项与授权数据匹配,则缓存服务器将所请求的内容转发到消费者系统。 请注意,缓存服务器采用实时流式传输安全地转发加密的内容,并且所请求的内容被加密以转发到消费者系统。 此外,缓存服务器和消费者系统交换加密的控制消息(并被认证)以支持所请求的内容的传送。 以这种方式,组件之间的所有接口都受到加密和/或认证的保护。
-
公开(公告)号:US20060146885A1
公开(公告)日:2006-07-06
申请号:US11026413
申请日:2004-12-30
申请人: Bridget Kimball , Michael Habrat , John Okimoto , Douglas Petty , Eric Sprunk , Lawrence Tang
发明人: Bridget Kimball , Michael Habrat , John Okimoto , Douglas Petty , Eric Sprunk , Lawrence Tang
IPC分类号: H04J3/06
CPC分类号: G06F21/10 , G06F21/725 , H04L63/123 , H04L2463/121
摘要: The present invention discloses a system and method for providing a secured system time reference to a subscriber device, e.g., a set top box or a receiver. In one embodiment, the system time reference is provided in a secure system time message that is broadcasted to a plurality of subscriber devices. Each subscriber device has a security device or software application that is capable of determining whether the received system time reference is legitimate. If the system time reference is determined to be legitimate, a local time reference is synchronized with said received system time reference.
摘要翻译: 本发明公开了一种用于向订户设备(例如机顶盒或接收机)提供安全系统时间参考的系统和方法。 在一个实施例中,在广播到多个订户设备的安全系统时间消息中提供系统时间参考。 每个用户设备具有能够确定所接收的系统时间参考是否合法的安全设备或软件应用。 如果确定系统时间参考是合法的,则将本地时间基准与所接收的系统时间参考同步。
-
公开(公告)号:US20050071640A1
公开(公告)日:2005-03-31
申请号:US10796712
申请日:2004-03-09
申请人: Eric Sprunk , Paul Moroney
发明人: Eric Sprunk , Paul Moroney
CPC分类号: H04L9/14 , H04L9/0894 , H04L9/3236 , H04L2209/603
摘要: A method for authenticating a string of data stored remotely from the processor. A bifurcated hash routine can be utilized to provide a check root along with a putative new root for a revised string of data. The check root can be compared with the previously determined initial root. If the check root matches the initial root, the new root is accepted in view of the fact that it was computed concurrently with the check root.
摘要翻译: 一种用于认证从处理器远程存储的数据串的方法。 可以使用分叉哈希例程来为经修改的数据串提供检查根和推定的新根。 检查根可以与先前确定的初始根进行比较。 如果检查根与初始根匹配,则根据与检查根同时计算的事实,新的根被接受。
-
-
-
-
-
-
-
-
-
搜索结果
35 条记录 (耗时 0.015 秒)
