公开(公告)号：US20170270309A1

公开(公告)日：2017-09-21

申请号：US15614935

申请日：2017-06-06

Applicant: Google Inc.

Inventor： David Kimbal Dorwin ,  Ryan David Sleevi ,  Andrew Martin Scherkus

IPC: G06F21/60

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: Embodiments are directed towards decrypting encrypted content. A key for decrypting the encrypted content may be provided to a web application executing within a browser. The application may employ a generic cryptography application program interface (GCAPI) to perform actions on the key, including, storing the key, decrypting an encrypted key, generating another key, converting the key to a different encryption type, or the like. The GCAPI may or may not be enabled to explicitly share the key with the browser's media engine. In response to receiving encrypted content, the GCAPI may provide the key to the application, explicitly or inexplicitly to the browser's media engine, or the like. The key may be utilized by the application, the browser, the media element, browser's media engine, and/or the GCAPI to decrypt the encrypted content. The decrypted content may be displayed within the browser to a user of a client device.

公开(公告)号：US08891765B1

公开(公告)日：2014-11-18

申请号：US13710940

申请日：2012-12-11

Applicant: Google Inc.

Inventor： David Kimbal Dorwin

IPC: H04N7/167 ,  G06F21/10

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: A method, apparatus, and manufacture for a content decryption module (CDM) is provided. A user agent loads a web application. The web application gets a license for encrypted media content. The web application instructs a media stack of the user agent to play the encrypted media content. The license is sent from the web application to the media stack. Next, the license is sent from the media stack to the CDM. The media stack and the CDM are distinct binaries from each other. Encrypted data is sent from the media stack to the CDM. The encrypted data includes at least a portion of the encrypted media content. Next, the CDM provides decrypted data by decrypting the encrypted data.

Abstract translation: 提供了一种用于内容解密模块（CDM）的方法，装置和制造。 用户代理加载Web应用程序。 Web应用程序获取加密媒体内容的许可证。 web应用程序指示用户代理的媒体栈播放加密的媒体内容。 许可证从Web应用程序发送到媒体堆栈。 接下来，许可证从媒体堆栈发送到CDM。 媒体堆栈和CDM是彼此不同的二进制文件。 加密数据从媒体堆栈发送到CDM。 加密数据包括加密的媒体内容的至少一部分。 接下来，CDM通过解密加密的数据来提供解密的数据。

公开(公告)号：US09697363B1

公开(公告)日：2017-07-04

申请号：US13654271

申请日：2012-10-17

Applicant: GOOGLE INC.

Inventor： David Kimbal Dorwin

IPC: G06F21/60 ,  H04W12/08

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: Techniques are described for reducing time to decrypt a next encrypted frame in a content stream by optimizing a license/key acquisition process. When requesting content, a key identifier and/or license identifier may be included within a webpage using a link, script, or similar access point. When a client device sends a request for content, the loading of the webpage within the client device includes the embedded key identifier. Access to the key/license identifier at the client device then may initiate a key/license acquisition process by the client device. The key/license may be obtained from a key management device in parallel with, or prior to, downloading of at least a portion of the content stream.

公开(公告)号：US09697185B1

公开(公告)日：2017-07-04

申请号：US13708573

申请日：2012-12-07

Applicant: GOOGLE INC.

Inventor： David Kimbal Dorwin ,  Andrew Martin Scherkus

IPC: G06F17/00 ,  G06F17/22 ,  H04L29/06

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: A method, apparatus, and manufacture for content protection for protecting some objects is provided. A content protection operation or license operation is performed for at least one media object of a web application. Some or all of the objects are then marked as protected. When an operation is performed that accesses a protected object, a user agent determines whether to deny the operation, to allow the operation and mark data exported by the operation and objects storing the exported data as protected objects, or to allow the operation and not mark data exported by the operation and objects storing the exported data as protected objects.

公开(公告)号：US10102648B1

公开(公告)日：2018-10-16

申请号：US13712538

申请日：2012-12-12

Applicant: GOOGLE INC.

Inventor： Eric Vannier ,  David Kimbal Dorwin

IPC: G06T11/00 ,  G06F21/10 ,  G06F21/50

Abstract: Embodiments are directed towards generating an image from a plurality of content layers. The content layers may include secure content that overlaps at least one other content layer. When the image is generated, the secure content may be rendered as a layer below the plurality of content layers. Additionally, each area of content layers that is overlapped by an area of the secure content may be modified to be transparent, where the area of the secure content is visible in the image through each transparently modified area. In some embodiments, an alpha channel value of each pixel in each area of content layers that is overlapped by the secure content may be modified. Secure content and unsecure content at a same layer may be split into different layers, where the unsecure content layer may be rendered at a theoretical secure content layer.

公开(公告)号：US09875363B2

公开(公告)日：2018-01-23

申请号：US15614935

申请日：2017-06-06

Applicant: Google Inc.

Inventor： David Kimbal Dorwin ,  Ryan David Sleevi ,  Andrew Martin Scherkus

IPC: G06F21/00 ,  G06F21/60

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: Embodiments are directed towards decrypting encrypted content. A key for decrypting the encrypted content may be provided to a web application executing within a browser. The application may employ a generic cryptography application program interface (GCAPI) to perform actions on the key, including, storing the key, decrypting an encrypted key, generating another key, converting the key to a different encryption type, or the like. The GCAPI may or may not be enabled to explicitly share the key with the browser's media engine. In response to receiving encrypted content, the GCAPI may provide the key to the application, explicitly or inexplicitly to the browser's media engine, or the like. The key may be utilized by the application, the browser, the media element, browser's media engine, and/or the GCAPI to decrypt the encrypted content. The decrypted content may be displayed within the browser to a user of a client device.

公开(公告)号：US09697366B1

公开(公告)日：2017-07-04

申请号：US14640611

申请日：2015-03-06

Applicant: Google Inc.

Inventor： David Kimbal Dorwin ,  Ryan David Sleevi ,  Andrew Martin Scherkus

IPC: H04L29/06 ,  G06F21/60

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: Embodiments are directed towards decrypting encrypted content. A key for decrypting the encrypted content may be provided to a web application executing within a browser. The application may employ a generic cryptography application program interface (GCAPI) to perform actions on the key, including, storing the key, decrypting an encrypted key, generating another key, converting the key to a different encryption type, or the like. The GCAPI may or may not be enabled to explicitly share the key with the browser's media engine. In response to receiving encrypted content, the GCAPI may provide the key to the application, explicitly or inexplicitly to the browser's media engine, or the like. The key may be utilized by the application, the browser, the media element, browser's media engine, and/or the GCAPI to decrypt the encrypted content. The decrypted content may be displayed within the browser to a user of a client device.

公开(公告)号：US09542368B1

公开(公告)日：2017-01-10

申请号：US13711481

申请日：2012-12-11

Applicant: GOOGLE INC.

Inventor： David Kimbal Dorwin

IPC: G06F17/00 ,  G06F17/22 ,  G06F17/20

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: A method, apparatus, and manufacture for instantiating a browser plugin is provided. A client web browser of a client is employed to instantiate a browser plugin for the client web browser. Next, the client web browser is employed to obtain a reference to the browser plugin. Then, a command is given to the browser plugin via the reference to the browser plugin. The browser plugin is used by the client web browser rather than the web page.

Abstract translation: 提供了一种用于实例化浏览器插件的方法，装置和制造。 客户端的客户端Web浏览器用于实例化客户端Web浏览器的浏览器插件。 接下来，使用客户端web浏览器来获得对浏览器插件的引用。 然后，通过引用浏览器插件给浏览器插件一个命令。 浏览器插件由客户端Web浏览器使用，而不是网页。

公开(公告)号：US09503764B1

公开(公告)日：2016-11-22

申请号：US14857208

申请日：2015-09-17

Applicant: Google Inc.

Inventor： William Alexander Drewry ,  David Kimbal Dorwin

IPC: H04L29/06 ,  H04N21/2347 ,  H04L9/08 ,  H04N21/266 ,  H04N21/4627 ,  H04N21/4405

CPC classification number: H04N21/2347 ,  H04L9/08 ,  H04N7/1675 ,  H04N21/235 ,  H04N21/26613 ,  H04N21/435 ,  H04N21/4405 ,  H04N21/44055 ,  H04N21/4627 ,  H04N21/8456

Abstract: A system to facilitate media content protection is provided. The system includes a partitioning component, a key derivation component and an output component. The partitioning component partitions encrypted media content associated with a master key into a plurality of media content segments. The key derivation component generates respective subkeys for the plurality of media content segments based at least in part on the master key and one or more parameters associated with one or more memory operations. The output component generates decrypted media content based at least in part on the respective subkeys.

公开(公告)号：US20150317462A1

公开(公告)日：2015-11-05

申请号：US14800680

申请日：2015-07-15

Applicant: Google Inc.

Inventor： David Kimbal Dorwin

IPC: G06F21/10 ,  G06F21/62 ,  H04L29/06

CPC classification number: G06F21/602 ,  G06F11/3003 ,  G06F17/2247 ,  G06F21/10 ,  G06F21/105 ,  G06F21/60 ,  G06F21/62 ,  G06F21/6209 ,  G06F2221/0724 ,  G06F2221/0759 ,  G11B20/00086 ,  H04L9/0631 ,  H04L9/32 ,  H04L29/06027 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/102 ,  H04L65/80 ,  H04L2209/603 ,  H04L2463/101 ,  H04L2463/103 ,  H04N21/24 ,  H04N21/25825 ,  H04N21/25833 ,  H04N21/41407 ,  H04N21/4516

Abstract: Application-driven interceptor module enables offline playback of Digital Rights Management (DRM) protected content to work in a same way as online playback. Communications with the DRM module are intercepted by the application-driven interceptor that is aware of the client device's network connection status. When the interceptor application determines that the client device is offline, requests for the protected content, and license/key to the protected content may then be managed by the interceptor application. In one embodiment, the interceptor application may retrieve requests for the key/license from a locally protected data store, and provide the key/license to the DRM module. In this manner, the DRM module may be unaware that its messages are being intercepted, and may then operate the same, unaware of whether or not the client device is online or offline.

Abstract translation: 应用程序驱动的拦截器模块使得数字版权管理（DRM）受保护内容的离线播放能够以与在线播放相同的方式工作。 与DRM模块的通信被知道客户端设备的网络连接状态的应用程序驱动拦截器拦截。 当拦截器应用程序确定客户端设备脱机时，受保护内容的请求以及受保护内容的许可证/密钥可能由拦截器应用程序管理。 在一个实施例中，拦截器应用可以从本地保护的数据存储中检索对于密钥/许可证的请求，并将密钥/许可证提供给DRM模块。 以这种方式，DRM模块可能不知道其消息被拦截，并且然后可以操作相同，不知道客户端设备是否在线或离线。