摘要:
A method for a communication device for establishing a secure authenticated channel using multiple shared keys traded with another device is described. A first shared key common to a home domain is received from a non-device entity, such as a domain manager or a trusted third party. Also, a second shared key is established with the other device. An initial integrity protection of communication relating to rights sharing between the communication device and the other device is then created using the second shared key. The integrity protection of communication relating to rights sharing between the communication device and the other device is thereafter augmented using the first shared key.
摘要:
A controller (900) for transferring media content rights between media devices comprising a memory (906), a user interface (910) and a transceiver (902). The memory (906) stores a list of media devices (914) capable of receiving the permissions associated with the media content from an originating device and an encryption key (920) that may be used to encrypt the permissions. The user interface (910) detects a user selection of a target device from the list of media devices (914). The transceiver (902) communicates an address (916) associated with the target device and the encryption key (920) to the originating device. Thus, the originating device is able to encrypt the permissions using the encryption key (920) and send the encrypted permissions to the address (916) associated with the target device.
摘要:
A method of an existing media device for distributing a media key to a new media device joining a local area network or revoking an existing media key. For distributing a media key, a set of key generation counter (“KGC”) values are received from the media devices (1010). Each value is then voted on based on the network keys utilized by the existing media device (1012). Next, all votes for each value are gathered from the media devices (1012). A popular values is determined from the set of values (1014). To revoke a media key, a NONCE is encrypted with the network key (1104). The encrypted NONCE is then distributed to media devices of the local area network (1108). Next, votes are gathered from the media devices of the local area network (1110). All votes are received from media devices that are able to decrypt the NONCE using the media key.
摘要:
A digital security system (100) for distributing media content to a local area network (104). The system (100) comprises a media provider (106), media devices (110-116) for receiving media content from the media provider (106) and a remote agent (108) for communicating with the media provider (106) and the media devices (110-116). The media provider (106), or associated third party, has encrypted media content and a content key corresponding to the encrypted media content. Each media device (110-116) has content storage for receiving the encrypted media content, and key storage for receiving the content key. The remote agent (108) obtains the content key from the media provider, (106) encrypts the content key with a network privacy key, and send the encrypted content key to the media devices (110-116). When the media devices (110-116) receive the encrypted media content from the media provider (106), they will be able to decrypt the encrypted content key using the network privacy key and decrypt the encrypted media content using the decrypted content key.
摘要:
An embodiment generally relates to a method of managing content in a mobile device. The method includes receiving content from a provider, where the content includes at least one file segmented into plurality of segments and at least one segment being encoded with a digital rights management (DRM) technique. The method also includes determining DRM status each segment of the plurality of segments and retrieving a DRM permission in response to the at least one segment being encoded by a DRM technique. The method further includes applying the DRM permission to the at least one segment of the content and displaying the least one segment.
摘要:
Method and apparatus for transferring protected content between digital rights management systems is described. One aspect of the invention relates to importing content from an upstream digital rights management (DRM) system into a device in a downstream DRM system. Data is received that associates at least one device in the downstream DRM system with a rights issuer module (RIM). Authenticity of the data is verified as originating from an entity in a trust hierarchy of the device. If the data is authentic and the device is one of the at least one device associated with the RIM, a ciphertext version of the content and a corresponding content license is accepted from the RIM.
摘要:
An architecture for dynamic IP address management is disclosed. The architecture includes a gateway (GW) coupled between a private IP network and a public IP network. A dynamic host configuration processor (DHCP) is operatively coupled to the GW. A network address translator (NAT) couples to the GW. Lastly, a processor, operatively coupled to the GW and the DHCP, is provided for dynamically assigning to a private IP network subscriber equipment an external IP address and a corresponding IP address hold time as a function of an application to be performed. Assignment of the external IP address and a corresponding IP address hold time is in response to a) a request for accessing the public IP network by a subscriber equipment of the private IP network to perform the application, or b) a request for accessing the private IP network by an entity of the public IP network. The external IP address is selected from a prescribed number of external IP addresses available to the private IP network.
摘要:
A media device (812) for tracking usage of content distributed to media devices (806-812) of a local area network (802). A memory (906) of the media device (812) stores a content usage counter (918) associated with media content (816) of the media device (812). The transceiver (902) of the media device (812) communicates content usage counters (918) among other media devices (806-810) of the local area network (802). The processor (904) of the media device (812) identifies a highest content usage counter having a highest value among the content usage counters (918) of the particular media device (812) and the other media devices (806-810). The processor (904) also determines whether the highest content usage counter is less than a maximum allowable content usage counter for the local area network (802). The transceiver (902) notifies the other media devices (806-810) that media content (816) will be used if the highest content usage counter is less than the maximum allowable content usage counter.
摘要:
A peer communication terminal 200 programmed to operate in a peer-to-peer network. The terminals includes a transceiver 210, a controller 220 coupled to the transceiver and to a memory device 230, and a a mapping table stored in memory, wherein the mapping table associates a terminal identity to corresponding transport information for at least one other peer terminal.
摘要:
A method (100, 200, 300, 400, 600) for sharing values among nodes (processors) (900, 1004, 1006, 1008, 1010) in a network (1000) that includes mobile nodes that is resistant to corruption by faulty nodes. Movement of nodes triggers special messages forwarding processor values to and from nodes that have moved. Movement also triggers initialization of a round counter associated with each message forwarding the processor values in each node that handles the special messages that are triggered in response to movement. The round counter provides additional time for values to be distributed to nodes in the network.