-
公开(公告)号:US20060047601A1
公开(公告)日:2006-03-02
申请号:US11180151
申请日:2005-07-13
CPC分类号: H04H60/14 , H04L9/083 , H04L9/0897 , H04L63/061 , H04L63/068 , H04L2209/60 , H04N7/1675 , H04N7/17336 , H04N21/26613 , H04N21/4383 , H04N21/4384 , H04N21/6125 , H04N21/63345
摘要: The present invention discloses an apparatus and method for distributing channel key data to an endpoint device. In one example, the present invention provides channel key data to at least one endpoint device prior to the endpoint device being tuned to at least one channel associated with the channel key data. The endpoint device is then informed of the expiration time of the channel key data and is subsequently, upon request, provided the replacement channel key data on a optimized basis (e.g. randomized or utilizing some other optimization algorithm) prior to the expiration time of the original channel key data.
摘要翻译: 本发明公开了一种用于将通道密钥数据分发到端点设备的装置和方法。 在一个示例中,本发明在将端点设备调谐到与频道密钥数据相关联的至少一个频道之前,向至少一个端点设备提供频道密钥数据。 然后,通知端点设备通道密钥数据的到期时间,并且随后根据请求,在原始的到期时间之前优化的基础(例如,随机化或利用一些其他优化算法)提供替换信道密钥数据 频道关键数据。
-
公开(公告)号:US20080267398A1
公开(公告)日:2008-10-30
申请号:US12108719
申请日:2008-04-24
IPC分类号: H04N7/167
CPC分类号: G11B20/00086 , G11B20/00166 , G11B20/0021 , G11B20/00507 , G11B20/00731 , G11B27/30 , G11B2220/2516 , H04N7/1675 , H04N21/2541 , H04N21/4135 , H04N21/4147 , H04N21/43615 , H04N21/43622 , H04N21/4367 , H04N21/4408 , H04N21/4627 , H04N21/835 , H04N21/8355 , H04N21/8456
摘要: A process may be utilized by the DVR. The process receives a plurality of segments of a set of content and a plurality of corresponding content rule sets. Further, the process provides one or more instructions to record and encrypt the plurality of segments of the set of content on a storage medium. In addition, the process provides the plurality of content rule sets to the DRM component to be inserted into a locally generated and secured content license associated with the encryption of the set of content. The secured content license includes a master key and a list of the plurality of corresponding content rule sets that have been received in order of reception. The process receives a plurality of marker tokens from the DRM component in order to facilitate trick mode playback.
摘要翻译: DVR可以利用一个过程。 该过程接收一组内容和多个对应的内容规则集合的多个片段。 此外,该过程提供一个或多个指令以在存储介质上记录和加密该组内容的多个段。 此外,该过程向DRM组件提供多个内容规则集以被插入到与该组内容的加密相关联的本地生成和安全的内容许可中。 安全内容许可证包括主密钥和已经按照接收顺序接收的多个对应的内容规则集的列表。 该过程从DRM组件接收多个标记符号以便于特技模式回放。
-
公开(公告)号:US09171569B2
公开(公告)日:2015-10-27
申请号:US12108719
申请日:2008-04-24
IPC分类号: G11B20/00 , G11B27/30 , H04N7/167 , H04N21/254 , H04N21/4147 , H04N21/436 , H04N21/4367 , H04N21/4408 , H04N21/4627 , H04N21/835 , H04N21/8355 , H04N21/845
CPC分类号: G11B20/00086 , G11B20/00166 , G11B20/0021 , G11B20/00507 , G11B20/00731 , G11B27/30 , G11B2220/2516 , H04N7/1675 , H04N21/2541 , H04N21/4135 , H04N21/4147 , H04N21/43615 , H04N21/43622 , H04N21/4367 , H04N21/4408 , H04N21/4627 , H04N21/835 , H04N21/8355 , H04N21/8456
摘要: A process may be utilized by the DVR. The process receives a plurality of segments of a set of content and a plurality of corresponding content rule sets. Further, the process provides one or more instructions to record and encrypt the plurality of segments of the set of content on a storage medium. In addition, the process provides the plurality of content rule sets to the DRM component to be inserted into a locally generated and secured content license associated with the encryption of the set of content. The secured content license includes a master key and a list of the plurality of corresponding content rule sets that have been received in order of reception. The process receives a plurality of marker tokens from the DRM component in order to facilitate trick mode playback.
摘要翻译: DVR可以利用一个过程。 该过程接收一组内容和多个对应的内容规则集合的多个片段。 此外,该过程提供一个或多个指令以在存储介质上记录和加密该组内容的多个段。 此外,该过程向DRM组件提供多个内容规则集以被插入到与该组内容的加密相关联的本地生成和安全的内容许可中。 安全内容许可证包括主密钥和已经按照接收顺序接收的多个对应的内容规则集的列表。 该过程从DRM组件接收多个标记符号以便于特技模式回放。
-
4.发明授权公开(公告)号:US07818792B2
公开(公告)日:2010-10-19
申请号:US10067610
申请日:2002-02-04
IPC分类号: G06F7/04
CPC分类号: H04L63/062 , H04L9/083 , H04L9/0841 , H04L9/3213 , H04L63/0807 , H04L2209/34 , H04L2209/56 , H04L2209/60
摘要: A method and system (100) for providing third party authentication when requesting content and/or services from an application server (106). The method is applicable to key management protocols that utilize the concept of tickets. The method and system include a client (102) being coupled with a third party application server (107), wherein the client submits a request for content from the third party application server and the third party application server returns requested information and corresponding authentication. The client further couples with a first application server (106), wherein the client submits a key request (KEY_REQ) including the third party server information and corresponding authentication to the first application server. The first application server authenticates the third party server information and verifies client authorization based on third party information. The first application server returns a key reply (KEY_REP) if the third party server information is authenticated and client authorization is verified.
摘要翻译: 一种用于在从应用服务器(106)请求内容和/或服务时提供第三方认证的方法和系统(100)。 该方法适用于利用机票概念的密钥管理协议。 所述方法和系统包括与第三方应用服务器(107)耦合的客户机(102),其中客户端从第三方应用服务器提交对内容的请求,并且第三方应用服务器返回所请求的信息和相应的认证。 客户端还与第一应用服务器(106)进行耦合,其中客户端向第一应用服务器提交包括第三方服务器信息和对应认证的密钥请求(KEY_REQ)。 第一应用服务器认证第三方服务器信息,并根据第三方信息验证客户端授权。 如果第三方服务器信息被认证并且验证了客户端授权,则第一个应用程序服务器返回一个密钥回复(KEY_REP)。
-
5.发明申请公开(公告)号:US20100318791A1
公开(公告)日:2010-12-16
申请号:US12814554
申请日:2010-06-14
IPC分类号: H04L29/06
CPC分类号: H04L63/0823 , H04L9/3268 , H04L63/10 , H04L2209/603 , H04L2209/76
摘要: Systems and methods are disclosed for providing certificate status information about a certificate includes receiving, at a Certificate Status Information Protocol (CSIP) proxy device the certificate identity information about the certificate of the second device. Then determining, using the CSIP proxy device, whether the certificate status information is stored in a CSIP proxy device memory. If the certificate status information is not stored in the CSIP proxy device memory, creating a CSIP request based on the certificate identity information and sending the CSIP request, including the certificate identity information, to a CSIP responder computer outside the local network domain. If the certificate status information is stored in the CSIP proxy device memory, sending the certificate status information to the first device. Also, a system and method are disclosed for using a CSIP responder computer.
摘要翻译: 公开了用于提供关于证书的证书状态信息的系统和方法,包括在证书状态信息协议(CSIP)代理设备处接收关于第二设备的证书的证书身份信息。 然后,使用CSIP代理设备确定证书状态信息是否存储在CSIP代理设备存储器中。 如果证书状态信息未存储在CSIP代理设备存储器中,则根据证书身份信息创建CSIP请求,并将CSIP请求(包括证书身份信息)发送到本地网络域之外的CSIP响应者计算机。 如果证书状态信息存储在CSIP代理设备存储器中,则将证书状态信息发送到第一设备。 此外,公开了一种用于使用CSIP应答计算机的系统和方法。
-
公开(公告)号:US20050204038A1
公开(公告)日:2005-09-15
申请号:US10798050
申请日:2004-03-11
IPC分类号: G06F15/173 , G06F17/60
CPC分类号: H04L63/0807 , G06F21/10 , G06F2221/0788 , G06Q30/00 , H04L63/0428
摘要: A method (300) for distributing data (25), within a network (11), between a source consumer (50) and a destination consumer (250). The data (25) originates from, and is protected by predetermined intellectual property rights of, a third party (20). The method (300) includes: specifying (302) a first access condition associated with the data, the access condition based on the predetermined intellectual property rights; based on a request requesting transfer of the data from the source consumer to the destination consumer, and based on a service ticket issued by an authority associated with the source consumer, arranging (304) for authentication of the destination consumer; and after authentication of the destination consumer, based on a second access condition issued by an authority associated with the source consumer, arranging (306) for transfer of the data, via the network in a peer-to-peer manner, from the source consumer to the destination consumer. Use (308) of the data is restricted in a manner specified by access conditions.
摘要翻译: 一种用于在网络(11)内在源消费者(50)和目的地消费者(250)之间分发数据(25)的方法(300)。 数据(25)来源于第三方(20)的预定知识产权保护。 方法(300)包括:指定(302)与数据相关联的第一访问条件,基于预定知识产权的访问条件; 基于请求从所述源消费者转发到所述目的地消费者的请求,并且基于与所述源消费者相关联的机构发布的服务票据,安排(304)用于所述目的地消费者的认证; 并且在所述目的地消费者的认证之后,基于与所述源消费者相关联的授权机构发布的第二访问条件,经由所述网络以对等方式从所述源消费者安排(306)所述数据的传送 到目的地消费者。 使用(308)的数据以访问条件指定的方式进行限制。
-
公开(公告)号:US09184917B2
公开(公告)日:2015-11-10
申请号:US13170261
申请日:2011-06-28
CPC分类号: H04L9/3247 , G06F21/10 , H04L9/3265 , H04L63/123 , H04L2209/603 , H04L2463/101
摘要: A client, method and system for registering a DRM client is disclosed. The method (100) includes the steps of: initiating (110) a registration request via a DRM client with an encrypted registration message including an asymmetric key cryptographic identity, a customer identifier and an application specific information (AINFO) field including a digital signature and a device certificate chain; validating (120) information in the application specific information (AINFO) field by a DRM registration server; and receiving (130) a registration response, the registration response being encrypted and including access information, to obtain content. Advantageously, this method provides an enhanced and reliable means of authentication.
摘要翻译: 公开了用于注册DRM客户端的客户端,方法和系统。 所述方法(100)包括以下步骤:通过DRM客户端发起(110)注册请求,所述注册请求具有加密的注册消息,所述加密的注册消息包括非对称密钥加密标识,客户标识符和包括数字签名的应用专用信息(AINFO) 设备证书链; 通过DRM注册服务器验证应用程序特定信息(AINFO)字段中的信息(120); 并且接收(130)注册响应,所述注册响应被加密并包括访问信息,以获得内容。 有利地,该方法提供了增强和可靠的认证手段。
-
公开(公告)号:US08255989B2
公开(公告)日:2012-08-28
申请号:US10170951
申请日:2002-06-12
申请人: Alexander Medvinsky , Petr Peterka , Paul Moroney
发明人: Alexander Medvinsky , Petr Peterka , Paul Moroney
IPC分类号: G06F7/04
CPC分类号: H04L63/0457 , G06F21/10 , G06F21/602 , G06F21/606 , H04L63/0407 , H04L63/062 , H04L63/0807 , H04L65/607 , H04L65/608
摘要: A session rights object and authorization data are used for defining a consumer's access right to a media content stream. The access rights are determined at a caching server remotely located from the consumer rather than locally at the end user site. In a first aspect, in a computing network having a content provider, a key distribution center, a caching server and a client, a method for controlling client access to a real-time data stream from the caching server, is disclosed. The method includes receiving, by the client, a session rights object from a content provider, the session rights object defining access rules for accessing the real-time data stream; receiving, by the client, authorization data from the key distribution center, the authorization data defining the client's access rights to the real-time data stream; forwarding to the caching server the session rights object and the authorization data; comparing, by the caching server, the session rights object with the authorization data to determine client authorization; and if the client is authorized, streaming, by the caching server, the real-time data stream to the client.
摘要翻译: 会话权限对象和授权数据用于定义消费者对媒体内容流的访问权限。 访问权限在远程位于消费者的缓存服务器上确定,而不是在最终用户站点本地。 在第一方面,在具有内容提供商,密钥分配中心,高速缓存服务器和客户端的计算网络中,公开了一种用于控制来自高速缓存服务器的客户端对实时数据流的访问的方法。 该方法包括从客户端接收来自内容提供商的会话权限对象,会话权限对象定义用于访问实时数据流的访问规则; 由客户端从密钥分配中心接收授权数据,定义客户端对实时数据流的访问权限; 转发到缓存服务器会话权限对象和授权数据; 通过缓存服务器比较会话权限对象与授权数据,以确定客户端授权; 并且如果客户端被授权,则通过缓存服务器流式传输到客户端的实时数据流。
-
公开(公告)号:US20110161660A1
公开(公告)日:2011-06-30
申请号:US12648768
申请日:2009-12-29
申请人: Jiang Zhang , Alexander Medvinsky , Paul Moroney , Petr Peterka
发明人: Jiang Zhang , Alexander Medvinsky , Paul Moroney , Petr Peterka
CPC分类号: H04L63/061 , H04L9/0841 , H04L9/3226 , H04L9/3263 , H04L9/3271 , H04L63/0442 , H04L63/0823 , H04L63/0869 , H04L63/123 , H04L2463/061
摘要: In a method of temporarily registering a second device with a first device, in which the first device includes a temporary registration mode, the temporary registration mode in the first device is activated, a temporary registration operation in the first device is initiated from the second device, a determination as to whether the second device is authorized to register with the first device is made, and the second device is temporarily registered with the first device in response to a determination that the second device is authorized to register with the first device, in which the temporary registration requires that at least one of the second device and the first device delete information required for the temporary registration following at least one of a determination of a network connection between the first device and the second device and a powering off of at least one of the first device and the second device.
摘要翻译: 在第一设备暂时注册第二设备的方法中,其中第一设备包括临时注册模式,激活第一设备中的临时注册模式,从第二设备启动第一设备中的临时注册操作 进行关于第二设备是否被授权向第一设备注册的确定,并且响应于第二设备被授权向第一设备注册的确定,第二设备被临时登记到第一设备, 所述暂时注册要求所述第二设备和所述第一设备中的至少一个删除在所述第一设备和所述第二设备之间的网络连接的确定中的至少一个之后临时注册所需的信息,以及至少 第一个设备和第二个设备之一。
-
10.发明申请Method and Apparatus for Composing a Digital Rights Management License Format 审中-公开构建数字版权管理许可证格式的方法和装置公开(公告)号:US20080270311A1
公开(公告)日:2008-10-30
申请号:US11843312
申请日:2007-08-22
申请人: Petr Peterka , Alexander Medvinsky , Paul Moroney
发明人: Petr Peterka , Alexander Medvinsky , Paul Moroney
IPC分类号: G06Q10/00
摘要: A process composes a content license for a set of content. The content license has a static portion and a dynamic portion. Further, the process inserts a master key into the static portion. In addition, the process inserts a plurality of content rule sets of values into the dynamic portion and composes a unique content encryption key for each segment of content associated with one of the content rule sets of values as each of the content rule sets of values is sequentially received during recording of the content. The unique content encryption key is based on the master key and at least a subset of the content rule set of values for a corresponding segment of the content. The unique content encryption key is utilized for encryption of each segment of the content to generate a plurality of encrypted content segments for storage on the storage medium.
摘要翻译: 一个进程组成一组内容的内容许可证。 内容许可证具有静态部分和动态部分。 此外,该过程将主密钥插入静态部分。 此外,该过程将多个内容规则集值集合插入到动态部分中,并且对于与内容规则集值之一相关联的每个内容段,构成唯一内容加密密钥,因为每个内容规则集值是 在记录内容期间顺序地接收。 唯一内容加密密钥基于主密钥以及内容的相应段的内容规则集合的集合的至少一个子集。 独特的内容加密密钥用于加密内容的每个段,以生成用于存储在存储介质上的多个加密的内容段。
-
-
-
-
-
-
-
-
-
搜索结果
128 条记录 (耗时 0.029 秒)
