公开(公告)号：US20150143131A1

公开(公告)日：2015-05-21

申请号：US14370852

申请日：2012-12-26

Applicant: SONY CORPORATION

Inventor： Hiroshi Kuno ,  Takamichi Hayashi ,  Yoshiyuki Kobayashi ,  Katsumi Muramatsu ,  Koji Yoshimura

IPC: G06F12/14 ,  G06F21/60

Abstract: According to a first aspect of the present disclosure, there is provided an information storage device including a storage unit that stores encrypted content, usage control information of the encrypted content, and a revocation list in which revocation information of a content reproduction device is recorded, and a data processing unit that determines whether content reproduction of an information processing device which performs decoding of the encrypted content is permitted. The data processing unit acquires an entry identifier which is designation information for a registration entry of the revocation list recorded in the usage control information, executes an identifier registration determination process for determining whether an identifier of the information processing device which performs decoding of the encrypted content is registered in the entry of the revocation list identified according to the acquired entry identifier, and determines whether a subkey which is a generation key for a title key applied to the decoding of the encrypted content is to be provided to the information processing device based on a result of the identifier registration determination process.

Abstract translation: 根据本公开的第一方面，提供了一种信息存储装置，其包括存储加密内容的存储单元，加密内容的使用控制信息和其中记录内容再现装置的撤销信息的撤销列表， 以及数据处理单元，其确定是否允许执行加密内容的解码的信息处理设备的内容再现。 数据处理单元获取作为使用控制信息中记录的撤销列表的注册条目的指定信息的条目标识符，执行用于确定执行加密内容的解码的信息处理装置的标识符的标识符登记确定处理 被登记在根据获取的条目标识符识别的撤销列表的条目中，并且确定作为用于加密内容的解码的标题密钥的生成密钥的子密钥是否将被提供给信息处理装置 标识符登记确定处理的结果。

公开(公告)号：US10515021B2

公开(公告)日：2019-12-24

申请号：US14370852

申请日：2012-12-26

Applicant: SONY CORPORATION

Inventor： Hiroshi Kuno ,  Takamichi Hayashi ,  Yoshiyuki Kobayashi ,  Katsumi Muramatsu ,  Koji Yoshimura

IPC: G06F12/14 ,  G06F21/60 ,  G06F21/62 ,  H04L9/08 ,  H04L9/32 ,  G06F21/10

Abstract: According to a first aspect of the present disclosure, there is provided an information storage device including a storage unit that stores encrypted content, usage control information of the encrypted content, and a revocation list in which revocation information of a content reproduction device is recorded, and a data processing unit that determines whether content reproduction of an information processing device which performs decoding of the encrypted content is permitted. The data processing unit acquires an entry identifier which is designation information for a registration entry of the revocation list recorded in the usage control information, executes an identifier registration determination process for determining whether an identifier of the information processing device which performs decoding of the encrypted content is registered in the entry of the revocation list identified according to the acquired entry identifier, and determines whether a subkey which is a generation key for a title key applied to the decoding of the encrypted content is to be provided to the information processing device based on a result of the identifier registration determination process.

公开(公告)号：US09805173B2

公开(公告)日：2017-10-31

申请号：US14351627

申请日：2013-06-26

Applicant: Sony Corporation

Inventor： Hiroshi Kuno ,  Yoshiyuki Kobayashi ,  Takamichi Hayashi ,  Katsumi Muramatsu

IPC: H04N21/44 ,  G06F21/10 ,  H04L9/08 ,  H04N21/418 ,  H04N21/4627 ,  H04N21/475 ,  H04N21/8355 ,  H04N21/4405 ,  G11B20/00

CPC classification number: G06F21/10 ,  G11B20/00086 ,  G11B20/0021 ,  G11B20/00855 ,  H04L9/0866 ,  H04L2209/60 ,  H04N21/4181 ,  H04N21/4184 ,  H04N21/4405 ,  H04N21/4627 ,  H04N21/4753 ,  H04N21/8355

Abstract: An information storage device including one or more processors configured to store an encrypted content and to control access of an external device to the information storage device is provided. The one or more processors are further configured to store a converted title key obtained by converting a title key which is an encryption key to be applied to decryption of the encrypted content, and a user token obtained by converting binding secret information to be applied to calculate the title key from the converted title key. The one or more processors are further configured to allow the external device having a confirmed access right to the information storage device to read out the user token.

公开(公告)号：US09767298B2

公开(公告)日：2017-09-19

申请号：US14363135

申请日：2012-11-29

Applicant: SONY CORPORATION

Inventor： Takamichi Hayashi ,  Hiroshi Kuno ,  Koji Yoshimura

IPC: G06F21/62 ,  H04N5/913 ,  H04N21/4405 ,  H04N21/4627 ,  H04N21/8355 ,  H04N5/903 ,  H04L9/32 ,  H04L9/08 ,  H04L29/06 ,  G06F21/10

CPC classification number: G06F21/62 ,  G06F21/10 ,  G06F21/105 ,  G06F2221/07 ,  H04L9/088 ,  H04L9/3268 ,  H04L9/3273 ,  H04L63/06 ,  H04L63/062 ,  H04L63/0869 ,  H04L63/10 ,  H04L63/12 ,  H04N5/903 ,  H04N5/913 ,  H04N21/4405 ,  H04N21/4627 ,  H04N21/8355 ,  H04N2005/91364

Abstract: There is provided a device and a method for preventing using of illegitimate content or manufacturing of the illegitimate media that uses illegitimate media. In a system that has an information storage device, a license management apparatus that generates a media key set (MKS) that is stored in the information storage device, and a content provision apparatus, at the time of manufacturing of the information storage device, the license management apparatus compares an MKS version that is set in the MKS that is stored in the information storage device, and an allowance minimum MKS version that is recorded in a controller of the information storage device, and thus records key information stored in the MKS, in a storage unit under the condition that it is confirmed that the MKS version is equal to or greater in value than the allowance minimum MKS version.

公开(公告)号：US09734306B2

公开(公告)日：2017-08-15

申请号：US14401395

申请日：2013-03-25

Applicant: Sony Corporation

Inventor： Kenjiro Ueda ,  Hiroshi Kuno ,  Yoshiyuki Kobayashi

IPC: G06F11/30 ,  G06F12/14 ,  G06F21/10 ,  G06F21/44 ,  G06F21/62 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06F21/10 ,  G06F21/44 ,  G06F21/62 ,  G06F2221/0753 ,  H04L9/0897 ,  H04L9/321 ,  H04L9/3263 ,  H04L2209/60

Abstract: Disclosed is a structure that includes: an information processing apparatus that stores content into an information storage device such as a memory card including an access allowed block based on an access right check made on each block, and uses the content; a content usage managing server that provides content usage permission information to the information processing apparatus; and a content correspondence information providing server that provides the encryption key to be used in decrypting the encrypted content stored in the information storage device. The content usage managing server determines the block for storing the encryption key and notifies the content correspondence information providing server of a block identifier that is the identifier of the determined block, and the content correspondence information providing server performs a process to write the encryption key into the block corresponding to the received block identifier.

公开(公告)号：US09390030B2

公开(公告)日：2016-07-12

申请号：US14345543

申请日：2012-10-19

Applicant: SONY CORPORATION

Inventor： Yoshiyuki Kobayashi ,  Hiroshi Kuno ,  Takamichi Hayashi

IPC: G06F12/14 ,  H04L9/32 ,  G06F21/10

CPC classification number: G06F12/1408 ,  G06F12/14 ,  G06F21/10 ,  H04L9/3236 ,  H04L9/3247 ,  H04L9/3263

Abstract: Provided is an information storage device including a storage unit configured to store encrypted content and an encryption key to be applied to decryption of the encrypted content, wherein the storage unit stores a converted encryption key generated through an arithmetic operation of the encryption key and an electronic signature that is constituent data of an encrypted content signature file set corresponding to the encrypted content, wherein the electronic signature is an electronic signature for data that includes constituent data of the encrypted content and the encryption key, and wherein a reproduction device configured to read the encrypted content from the storage unit and execute a decryption process is able to be caused to perform acquisition of the encryption key through an arithmetic operation of applying the electronic signature to the converted encryption key.

Abstract translation: 提供了一种信息存储装置，包括：存储单元，被配置为存储加密内容和加密密钥，用于加密内容的解密，其中存储单元存储通过加密密钥的算术运算产生的转换的加密密钥和电子 签名，其是与加密内容相对应的加密内容签名文件集的组成数据，其中，电子签名是包括加密内容和加密密钥的组成数据的数据的电子签名，并且其中，被配置为读取 通过将电子签名应用于转换后的加密密钥的算术运算，能够使来自存储单元的加密内容并执行解密处理来执行加密密钥的获取。

公开(公告)号：US20140380063A1

公开(公告)日：2014-12-25

申请号：US14345543

申请日：2012-10-19

Applicant: SONY CORPORATION

Inventor： Yoshiyuki Kobayashi ,  Hiroshi Kuno ,  Takamichi Hayashi

IPC: G06F12/14

CPC classification number: G06F12/1408 ,  G06F12/14 ,  G06F21/10 ,  H04L9/3236 ,  H04L9/3247 ,  H04L9/3263

Abstract: Provided is an information storage device including a storage unit configured to store encrypted content and an encryption key to be applied to decryption of the encrypted content, wherein the storage unit stores a converted encryption key generated through an arithmetic operation of the encryption key and an electronic signature that is constituent data of an encrypted content signature file set corresponding to the encrypted content, wherein the electronic signature is an electronic signature for data that includes constituent data of the encrypted content and the encryption key, and wherein a reproduction device configured to read the encrypted content from the storage unit and execute a decryption process is able to be caused to perform acquisition of the encryption key through an arithmetic operation of applying the electronic signature to the converted encryption key.

Abstract translation: 提供了一种信息存储装置，包括：存储单元，被配置为存储加密内容和加密密钥，用于加密内容的解密，其中存储单元存储通过加密密钥的算术运算产生的转换的加密密钥和电子 签名，其是与加密内容相对应的加密内容签名文件集的组成数据，其中电子签名是包括加密内容和加密密钥的组成数据的数据的电子签名，并且其中，被配置为读取 通过将电子签名应用于转换后的加密密钥的算术运算，能够使来自存储单元的加密内容并执行解密处理来执行加密密钥的获取。

公开(公告)号：US20140237235A1

公开(公告)日：2014-08-21

申请号：US14351627

申请日：2013-06-26

Applicant: Sony Corporation

Inventor： Hiroshi Kuno ,  Yoshiyuki Kobayashi ,  Takamichi Hayashi ,  Katsumi Muramatsu

IPC: G06F21/10

CPC classification number: G06F21/10 ,  G11B20/00086 ,  G11B20/0021 ,  G11B20/00855 ,  H04L9/0866 ,  H04L2209/60 ,  H04N21/4181 ,  H04N21/4184 ,  H04N21/4405 ,  H04N21/4627 ,  H04N21/4753 ,  H04N21/8355

Abstract: Content usage control is realized on condition of the establishment of user authentication without having to communicate with a server or the like. An information storage device such as a memory card stores an encrypted content, a converted title key obtained by converting a title key which is an encryption key, and a user token obtained by converting binding secret information to be applied to calculate the title key from the converted title key. A reproducing device that decrypts and reproduces the encrypted content acquires the converted title key and the user token, and generates an authentication key on the basis of user identification information such as a user ID. Furthermore, the binding secret information is calculated by computation processing between the user token and the authentication key, the title key is calculated from the converted title key by applying the calculated binding secret information, and decryption processing of the encrypted content is executed by applying the calculated title key.

Abstract translation: 内容使用控制是在建立用户认证的条件下实现的，而不必与服务器等进行通信。 诸如存储卡的信息存储装置存储加密的内容，通过转换作为加密密钥的标题密钥获得的转换的标题密钥和通过转换要应用的绑定秘密信息而获得的用户令牌，以从 转换标题密钥。 解密并再现加密内容的再现装置获取转换的标题密钥和用户令牌，并且基于诸如用户ID的用户标识信息生成认证密钥。 此外，通过用户令牌和认证密钥之间的计算处理来计算绑定秘密信息，通过应用计算的绑定秘密信息，从转换的标题密钥计算出标题密钥，并且通过应用加密内容来执行加密内容的解密处理 计算标题键。

公开(公告)号：US10120984B2

公开(公告)日：2018-11-06

申请号：US13669700

申请日：2012-11-06

Applicant: Sony Corporation

Inventor： Yoshiyuki Kobayashi ,  Hiroshi Kuno ,  Takamichi Hayashi

IPC: H04L29/06 ,  G06F21/10 ,  H04L9/08 ,  H04L9/32 ,  G11B20/00

Abstract: An information processing apparatus includes a data processing unit which executes processing for decoding and reproducing encrypted content. The data processing unit executes processing for determining whether the content can be reproduced by applying an encrypted content signature file. The encrypted content signature file stores information on issue date of the encrypted content signature file and an encrypted content signature issuer certificate with a public key of an encrypted content signature issuer. In determining whether the content can be reproduced, the data processing unit compares expiration date of the encrypted content signature issuer certificate with the information on issue date of the encrypted content signature file, and does not perform processing for decoding and reproducing the encrypted content when the expiration date is before the issue date, and performs the processing for decoding and reproducing the encrypted content only when the expiration date is not before the issue date.

公开(公告)号：US09363089B2

公开(公告)日：2016-06-07

申请号：US14060986

申请日：2013-10-23

Applicant: SONY CORPORATION

Inventor： Hiroshi Kuno ,  Takamichi Hayashi ,  Koji Yoshimura ,  Katsumi Muramatsu ,  Yoshiyuki Kobayashi

IPC: H04L9/32

CPC classification number: H04L9/3271 ,  H04L2209/60

Abstract: There is provided an information processing apparatus including: a data processing unit, on which a medium as an information storage apparatus is mounted, which controls reproduction of content stored on the medium, wherein the data processing unit executes host device ID registration processing for outputting a host device ID, which is an identifier of the host device, to the medium and storing the host device ID on the medium, receives the host device ID, which is stored on the medium, from the medium after execution of the host device ID registration processing, executes connection consistency confirmation processing for executing matching processing between the received host ID and the host device ID of the host device, and executes or continues content reproduction under a condition that the matching processing has been established in the connection consistency confirmation processing, or stops the content reproduction if the matching processing has not been established.

Abstract translation: 提供了一种信息处理装置，包括：数据处理单元，其上安装有作为信息存储装置的介质，其控制存储在介质上的内容的再现，其中数据处理单元执行主机设备ID注册处理，用于输出 作为主机设备的标识符的主机设备ID到介质并将主机设备ID存储在介质上，在执行主机设备ID注册之后从介质接收存储在介质上的主机设备ID 执行连接一致性确认处理，用于执行所接收的主机ID与主机设备的主机设备ID之间的匹配处理，并且在连接一致性确认处理中已经建立了匹配处理的条件下执行或继续内容再现，或者 如果匹配处理尚未建立，则停止内容再现。