公开(公告)号：US10079833B2

公开(公告)日：2018-09-18

申请号：US14673675

申请日：2015-03-30

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: H04L29/06 ,  G06F17/30 ,  G06F21/10 ,  G06F21/62

CPC classification number: H04L63/101 ,  G06F21/10 ,  G06F21/6209 ,  G06F2221/0768

Abstract: A digital rights management (DRM) method for protecting digital documents, implemented in a DRM system. When an operator (document publisher) scans a document on a scanner to generates a digital document and specifies a list of users who will be granted access rights to the document, the DRM system applies digital rights protection to the document according to the specified access rights, and distributes the document to the specified users; the system also sends a confirmation notification such as an email to the document publisher, which contains a list of the receiving users, a copy of the protected digital document, and a link to a web-based tool that will allow the publisher to modify the access rights granted to the users. In addition, when applying digital rights protection, the DRM system specifies the publisher as a user who will have access rights to the document.

公开(公告)号：US20170004291A1

公开(公告)日：2017-01-05

申请号：US14788419

申请日：2015-06-30

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: G06F21/10 ,  G06F21/62

CPC classification number: G06F21/10 ,  G06F2221/0728

Abstract: A digital rights management system includes two digital rights management servers (RMS servers) connected to a client computer. The two RMS servers implement different but related digital rights management (DRM) policies, with the first RMS server implementing conventional DRM policies and the second RMS server implementing extended DRM policies. An application program on the client computer interacts with a document on the client computer, and communicates with the first RMS server to obtain access authorization for the document. A plug-in program in the client computer cooperates with the application program, and communicates with the second RMS server to obtain additional access authorization for the document. Access to the document is granted when both RMS servers grant access to the document. This achieves extended digital rights management control which can provide a more flexible access control than that provided by existing DRM systems.

Abstract translation: 数字版权管理系统包括连接到客户端计算机的两个数字版权管理服务器（RMS服务器）。 两个RMS服务器实现不同但相关的数字版权管理（DRM）策略，第一个RMS服务器实施常规DRM策略，第二个RMS服务器实现扩展的DRM策略。 客户端计算机上的应用程序与客户端计算机上的文档进行交互，并与第一个RMS服务器通信，以获取文档的访问权限。 客户端计算机中的插件程序与应用程序协作，并与第二RMS服务器进行通信，以获取文档的附加访问授权。 当两个RMS服务器授予对文档的访问权限时，将授予对文档的访问权限。 这实现了扩展的数字版权管理控制，其可以提供比现有DRM系统提供的更灵活的访问控制。

公开(公告)号：US20160142381A1

公开(公告)日：2016-05-19

申请号：US14543871

申请日：2014-11-17

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Kyohei Shiraishi ,  Rabindra Pathak

IPC: H04L29/06

CPC classification number: H04L63/0428 ,  G06F21/10 ,  G06F2221/0724 ,  H04L63/20 ,  H04L2463/101

Abstract: A digital rights management (DRM) method for protecting emails can apply different protection policies to different components of an email such as the message body and the attached digital files. While an email application of the client encrypts the entire email document including both the message and the attachments, a plugin module on the client obtains user input regarding the DRM policies to be applied to individual attachments and then transmits the encrypted email along with the information about the DRM policies for the individual attachments to a digital rights management server. The server first decrypts the entire email document, then applies the user-specified DRM policies to the attachments individually. The server re-composes an email and attaches the individually protected attachments, and transmits the email to the exchange server.

Abstract translation: 用于保护电子邮件的数字版权管理（DRM）方法可以将不同的保护策略应用于电子邮件的不同组件，例如邮件正文和附加的数字文件。 虽然客户端的电子邮件应用程序加密了包括消息和附件在内的整个电子邮件文件，客户端上的插件模块可以获取有关应用于各个附件的DRM策略的用户输入，然后将加密的电子邮件与关于 针对数字版权管理服务器的各个附件的DRM策略。 服务器首先解密整个电子邮件文档，然后将用户指定的DRM策略单独应用于附件。 服务器重新组合电子邮件并附加单独受保护的附件，并将该电子邮件发送到交换服务器。

公开(公告)号：US10409965B2

公开(公告)日：2019-09-10

申请号：US15841262

申请日：2017-12-13

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: G06F21/62 ,  G06F21/10

Abstract: A digital rights management system includes two digital rights management servers (RMS servers) connected to a client computer. The two RMS servers implement different but related digital rights management (DRM) policies, with the first RMS server implementing conventional DRM policies and the second RMS server implementing extended DRM policies. An application program on the client computer interacts with a document on the client computer, and communicates with the first RMS server to obtain access authorization for the document. A plug-in program in the client computer cooperates with the application program, and communicates with the second RMS server to obtain additional access authorization for the document. Access to the document is granted when both RMS servers grant access to the document. This achieves extended digital rights management control which can provide a more flexible access control than that provided by existing DRM systems.

公开(公告)号：US20160140328A1

公开(公告)日：2016-05-19

申请号：US14547053

申请日：2014-11-18

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: G06F21/10 ,  H04L29/06

CPC classification number: H04L63/20 ,  G06F21/604 ,  G06F21/6209 ,  G06F2221/2115 ,  H04L51/26 ,  H04L63/0428 ,  H04L63/10 ,  H04L2463/101

Abstract: A method for automatically applying digital rights management (DRM) to outgoing emails based on a color category of the email set by the sending user. A plugin module on the user's computer interacts with the email application to extract the color category setting for the email and converts it to a category ID recognized by the digital rights management (RMS) server. The RMS server determines the DRM policy corresponding to the category ID using an association table, and applies that DRM policy to protect the email before sending the email to an exchange server. When a recipient receives the email, the application program on the recipient's computer cooperates with the RMS server to determine whether the recipient is allowed to access the email based on the DRM policy that has been applied to the email.

Abstract translation: 一种用于基于由发送用户设置的电子邮件的颜色类别自动地将数字版权管理（DRM）应用于外发电子邮件的方法。 用户计算机上的插件模块与电子邮件应用程序交互以提取电子邮件的颜色类别设置，并将其转换为数字版权管理（RMS）服务器识别的类别ID。 RMS服务器使用关联表确定与类别ID相对应的DRM策略，并且在将电子邮件发送到交换服务器之前应用该DRM策略来保护该电子邮件。 当收件人收到电子邮件时，收件人计算机上的应用程序与RMS服务器配合，以确定是否允许接收者基于已应用于电子邮件的DRM策略来访问电子邮件。

公开(公告)号：US20170270283A1

公开(公告)日：2017-09-21

申请号：US15072275

申请日：2016-03-16

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Kyohei Shiraishi ,  Rabindra Pathak

IPC: G06F21/10 ,  H04L9/32 ,  H04L29/06 ,  G06F21/60 ,  G06F21/62

CPC classification number: G06F21/10 ,  G06F21/602 ,  G06F21/6227 ,  G06F2221/0753 ,  G06F2221/0755 ,  G06F2221/2107 ,  H04L9/3247

Abstract: In a digital rights management system, layers are defined for each document and user permissions are specified for each layer, to control user access at the layer-level. The layers are ordered by depth, where a layer completely contained inside another layer is deemed deeper than the other layer. The layers are encrypted in a deep-to-shallow order, each by its own encryption key. The entire document is then encrypted. When a user requests access to a document, the system generates an ordered sequence of encryption keys based on the user's access rights for each layer. The document open program on the user's client computer attempts to decrypt the various layers using the ordered sequence of keys. The client program and the system's key sequence generating algorithm are designed to give the result that only layers that the user has access to are successfully decrypted and displayed at document open time.

公开(公告)号：US20170004292A1

公开(公告)日：2017-01-05

申请号：US14788435

申请日：2015-06-30

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: G06F21/10 ,  G06Q20/40

CPC classification number: G06Q20/40 ,  G06F21/10 ,  G06F21/6209 ,  G06F21/6218 ,  G06F2221/2115 ,  G06Q20/1235 ,  G06Q2220/18

Abstract: A hybrid digital rights management (DRM) system includes a hybrid digital rights management server (RMS server) connected to first and second RMS servers and a client computer. The hybrid RMS server stores a policy mapping table that maps its DRM policies to remote DRM policies on the first or second RMS servers, and can also create policies that satisfy the schema requirements of the first or second RMS server using policies stored in the hybrid RMS server. When the hybrid RMS server receives a document protection request from the client computer, it extracts the filename extension for the document to be protected, and uses the filename extension to select one of the first and second RMS servers as a target RMS server. The document is protected by the target RMS server, and also added to a protected document database on the hybrid RMS server.

Abstract translation: 混合数字版权管理（DRM）系统包括连接到第一和第二RMS服务器的混合数字版权管理服务器（RMS服务器）和客户端计算机。 混合RMS服务器存储将其DRM策略映射到第一或第二RMS服务器上的远程DRM策略的策略映射表，并且还可以使用存储在混合RMS中的策略来创建满足第一或第二RMS服务器的模式要求的策略 服务器。 当混合RMS服务器从客户端计算机收到文档保护请求时，它提取要保护的文档的文件扩展名，并使用文件扩展名将第一和第二RMS服务器之一选择为目标RMS服务器。 该文档由目标RMS服务器保护，并且还添加到混合RMS服务器上的受保护的文档数据库。

公开(公告)号：US20160294832A1

公开(公告)日：2016-10-06

申请号：US14673675

申请日：2015-03-30

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: H04L29/06 ,  G06F17/30 ,  H04L9/08

CPC classification number: H04L63/101 ,  G06F17/30011 ,  G06F21/10 ,  G06F21/6209 ,  G06F2221/0768

Abstract: A digital rights management (DRM) method for protecting digital documents, implemented in a DRM system. When an operator (document publisher) scans a document on a scanner to generates a digital document and specifies a list of users who will be granted access rights to the document, the DRM system applies digital rights protection to the document according to the specified access rights, and distributes the document to the specified users; the system also sends a confirmation notification such as an email to the document publisher, which contains a list of the receiving users, a copy of the protected digital document, and a link to a web-based tool that will allow the publisher to modify the access rights granted to the users. In addition, when applying digital rights protection, the DRM system specifies the publisher as a user who will have access rights to the document.

Abstract translation: 用于保护DRM系统中实现的数字文档的数字版权管理（DRM）方法。 当操作员（文档发布者）扫描扫描仪上的文档以生成数字文档并指定将被授予文档访问权限的用户列表时，DRM系统根据指定的访问权限向文档应用数字版权保护 ，并将文档分发给指定的用户; 系统还向文档发布者发送诸如电子邮件的确认通知，其中包含接收用户的列表，受保护的数字文档的副本以及指向基于Web的工具的链接，该链接将允许发行者修改 授予用户的访问权限。 另外，当应用数字版权保护时，DRM系统将发布者指定为具有对该文档的访问权限的用户。

公开(公告)号：US09990474B2

公开(公告)日：2018-06-05

申请号：US15072275

申请日：2016-03-16

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Kyohei Shiraishi ,  Rabindra Pathak

IPC: G06F21/10 ,  G06F21/60 ,  G06F21/62 ,  H04L29/06 ,  H04L9/32

CPC classification number: G06F21/10 ,  G06F21/602 ,  G06F21/6227 ,  G06F2221/0753 ,  G06F2221/0755 ,  G06F2221/2107 ,  H04L9/3247

Abstract: In a digital rights management system, layers are defined for each document and user permissions are specified for each layer, to control user access at the layer-level. The layers are ordered by depth, where a layer completely contained inside another layer is deemed deeper than the other layer. The layers are encrypted in a deep-to-shallow order, each by its own encryption key. The entire document is then encrypted. When a user requests access to a document, the system generates an ordered sequence of encryption keys based on the user's access rights for each layer. The document open program on the user's client computer attempts to decrypt the various layers using the ordered sequence of keys. The client program and the system's key sequence generating algorithm are designed to give the result that only layers that the user has access to are successfully decrypted and displayed at document open time.

公开(公告)号：US09959395B2

公开(公告)日：2018-05-01

申请号：US14788419

申请日：2015-06-30

Applicant: KONICA MINOLTA LABORATORY U.S.A., INC.

Inventor： Rabindra Pathak ,  Kyohei Shiraishi

IPC: G06F21/10 ,  G06F21/62

CPC classification number: G06F21/10 ,  G06F2221/0728

Abstract: A digital rights management system includes two digital rights management servers (RMS servers) connected to a client computer. The two RMS servers implement different but related digital rights management (DRM) policies, with the first RMS server implementing conventional DRM policies and the second RMS server implementing extended DRM policies. An application program on the client computer interacts with a document on the client computer, and communicates with the first RMS server to obtain access authorization for the document. A plug-in program in the client computer cooperates with the application program, and communicates with the second RMS server to obtain additional access authorization for the document. Access to the document is granted when both RMS servers grant access to the document. This achieves extended digital rights management control which can provide a more flexible access control than that provided by existing DRM systems.