-
1.发明授权Device archiving of past cluster binding information on a broadcast encryption-based network 有权在基于广播加密的网络上设备归档过去的集群绑定信息公开(公告)号:US09009489B2
公开(公告)日:2015-04-14
申请号:US13585950
申请日:2012-08-15
CPC分类号: H04L9/0866 , H04L2209/601
摘要: Provided are techniques for the creation and storage of an archive for binding IDs corresponding to a cluster of devices that render content protected by a broadcast encryption scheme. When two or more clusters are merged, a binding ID corresponding to one of the clusters is selected and a new management key is generated. Binding IDs associated with the clusters other than the cluster associated with the selected binding ID are encrypted using the new management key and stored on a cluster-authorized device in a binding ID archive. Content stored in conformity with an outdated binding ID is retrieved by decrypting the binding ID archive with the management key, recalculating an old management key and decrypting the stored content.
摘要翻译: 提供了用于创建和存储用于绑定ID的存档的技术,所述绑定ID对应于呈现由广播加密方案保护的内容的设备的集群。 当两个或更多个集群合并时,选择与一个集群对应的绑定ID,并生成新的管理密钥。 与除与所选绑定ID相关联的集群之外的集群相关联的绑定ID使用新的管理密钥加密并存储在绑定ID归档中的集群授权设备上。 通过用管理密钥解密绑定ID档案,重新计算旧的管理密钥并解密所存储的内容来检索与过时的绑定ID一致的存储的内容。
-
2.发明授权公开(公告)号:US09009487B2
公开(公告)日:2015-04-14
申请号:US12950159
申请日:2010-11-19
CPC分类号: H04L9/0866 , H04L2209/601
摘要: Provided are techniques for the creation and storage of an archive for binding IDs corresponding to a cluster of devices that render content protected by a broadcast encryption scheme. When two or more clusters are merged, a binding ID corresponding to one of the clusters is selected and a new management key is generated. Binding IDs associated with the clusters other than the cluster associated with the selected binding ID are encrypted using the new management key and stored on a cluster-authorized device in a binding ID archive. Content stored in conformity with an outdated binding ID is retrieved by decrypting the binding ID archive with the management key, recalculating an old management key and decrypting the stored content.
-
公开(公告)号:US20120131638A1
公开(公告)日:2012-05-24
申请号:US12950244
申请日:2010-11-19
IPC分类号: G06F21/00
CPC分类号: H04N21/4627 , H04L9/0866 , H04L63/065 , H04L2209/601
摘要: A message comprising an indication of a management key block and an indication of an authorization table is received at a first network device from a second network device. The indication of the management key block, the indication of the authorization table, and a response message generated based on validating the indication of the management key block and the indication of the authorization table are stored. A second message comprising a second indication of the management key block and a second indication of the authorization table is received at the first network device from the second network device. The first network device communicates with the second network device in accordance with the stored response associated with the first message on determining that the second indication management key block and the second indication of the authorization table match corresponding stored indications of the management key block and the authorization table.
摘要翻译: 在第一网络设备处从第二网络设备接收包括管理密钥块的指示和授权表的指示的消息。 存储管理密钥块的指示,授权表的指示以及基于验证管理密钥块的指示和授权表的指示而生成的响应消息。 在第一网络设备处从第二网络设备接收包括管理密钥块的第二指示和授权表的第二指示的第二消息。 第一网络设备在确定第二指示管理密钥块和授权表的第二指示与管理密钥块的相应存储指示和授权相关联时,根据存储的与第一消息相关联的响应与第二网络设备进行通信 表。
-
4.发明申请DEVICE ARCHIVING OF PAST CLUSTER BINDING INFORMATION ON A BROADCAST ENCRYPTION-BASED NETWORK 有权基于加密的基于网络的过滤器绑定信息的设备存档公开(公告)号:US20120131337A1
公开(公告)日:2012-05-24
申请号:US12950159
申请日:2010-11-19
IPC分类号: H04L9/32
CPC分类号: H04L9/0866 , H04L2209/601
摘要: Provided are techniques for the creation and storage of an archive for binding IDs corresponding to a cluster of devices that render content protected by a broadcast encryption scheme. When two or more clusters are merged, a binding ID corresponding to one of the clusters is selected and a new management key is generated. Binding IDs associated with the clusters other than the cluster associated with the selected binding ID are encrypted using the new management key and stored on a cluster-authorized device in a binding ID archive. Content stored in conformity with an outdated binding ID is retrieved by decrypting the binding ID archive with the management key, recalculating an old management key and decrypting the stored content.
摘要翻译: 提供了用于创建和存储用于绑定ID的存档的技术,所述绑定ID对应于呈现由广播加密方案保护的内容的设备的集群。 当两个或更多个集群合并时,选择与一个集群对应的绑定ID,并生成新的管理密钥。 与除与所选绑定ID相关联的集群之外的集群相关联的绑定ID使用新的管理密钥加密并存储在绑定ID归档中的集群授权设备上。 通过用管理密钥解密绑定ID档案,重新计算旧的管理密钥并解密所存储的内容来检索与过时的绑定ID一致的存储的内容。
-
公开(公告)号:US08528055B2
公开(公告)日:2013-09-03
申请号:US12950244
申请日:2010-11-19
CPC分类号: H04N21/4627 , H04L9/0866 , H04L63/065 , H04L2209/601
摘要: A first message comprising a received indication of a management key block (MKB) and a received indication of an authorization table (AT) is received at a first network device from a second network device. The received indications of the MKB and AT are validated by comparing them to generated indications of the MKB and AT, respectively. A response is generated based on the validation of the received indications and transmitted from the first network device to the second network device. The generated indications and response are stored. A second message comprising a second received indication of the MKB and a second received indication of the AT is received at the first network device from the second network device. The first network device communicates with the second network device in accordance with the stored response on determining that the second received indications match corresponding stored indications.
摘要翻译: 在第一网络设备处从第二网络设备接收包括管理密钥块(MKB)的接收指示和授权表(AT)的接收指示的第一消息。 通过将MKB和AT的接收指示与MKB和AT的生成指示进行比较来验证。 基于接收到的指示的验证并从第一网络设备发送到第二网络设备来产生响应。 生成的指示和响应被存储。 在第一网络设备处从第二网络设备接收包括MKB的第二接收指示和AT的第二接收指示的第二消息。 第一网络设备在确定第二接收指示匹配相应的存储指示时,根据存储的响应与第二网络设备通信。
-
6.发明申请公开(公告)号:US20120308002A1
公开(公告)日:2012-12-06
申请号:US13585950
申请日:2012-08-15
IPC分类号: H04L9/00
CPC分类号: H04L9/0866 , H04L2209/601
摘要: Provided are techniques for the creation and storage of an archive for binding IDs corresponding to a cluster of devices that render content protected by a broadcast encryption scheme. When two or more clusters are merged, a binding ID corresponding to one of the clusters is selected and a new management key is generated. Binding IDs associated with the clusters other than the cluster associated with the selected binding ID are encrypted using the new management key and stored on a cluster-authorized device in a binding ID archive. Content stored in conformity with an outdated binding ID is retrieved by decrypting the binding ID archive with the management key, recalculating an old management key and decrypting the stored content.
-
7.发明授权Authentication and authorization of a device by a service using broadcast encryption 有权使用广播加密的服务对设备的认证和授权公开(公告)号:US08862878B2
公开(公告)日:2014-10-14
申请号:US12950301
申请日:2010-11-19
CPC分类号: H04L9/0836 , H04L9/3271 , H04L2209/601
摘要: Provided are techniques to enable a device that provides a service to authorize a second device for receiving the service and the delivery of the service to the second device and other devices within a trusted network. A signed Management Key Block (MKB) is generated and transmitted over a network. Devices authorized to access a particular service parse the MKB and transmit a request. A server associated with the service determines whether or not the device is authorized to access the service based upon data included in the request. The first device may issue a challenge to the second device for authentication purposes. If service is approved, service is initiated, either from the first device or another authorized device. Devices may be organized into classes such that devices of a specific class are authorized to access the service.
摘要翻译: 提供的技术是使得提供服务的设备能够授权第二设备来接收服务以及向第二设备和受信任网络内的其他设备的服务传递。 签署的管理密钥块(MKB)通过网络生成和传输。 授权访问特定服务的设备解析MKB并发送请求。 与服务器相关联的服务器基于请求中包括的数据确定设备是否被授权访问服务。 为了认证目的,第一设备可能会向第二设备发出挑战。 如果服务被批准,服务将从第一个设备或其他授权设备启动。 设备可以被组织成类,使得特定类的设备被授权访问服务。
-
8.发明申请公开(公告)号:US20120131344A1
公开(公告)日:2012-05-24
申请号:US12950115
申请日:2010-11-19
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , H04L63/126 , H04L2209/601
摘要: Provided are techniques to enable, using broadcast encryption, a device to locate a service offered by a server with the knowledge that the service offered by the server is a trusted service. A signed enhanced Management Key Block (eMKB) includes a trusted service locator (TSL) that includes one or more records, or “trusted service data records” (TSDRs), each identifying a particular service and a corresponding location of the service is generated and transmitted over a network. Devices authorized to access a particular service parse the eMKB for the end point of the service, connect to the appropriate server and transmit a request.
摘要翻译: 提供的技术是使用广播加密来实现设备定位服务器提供的服务,知道服务器提供的服务是受信任的服务。 签署的增强型管理密钥块(eMKB)包括一个包含一个或多个记录的信任的服务定位器(TSL),或者“可信服务数据记录”(TSDR),每个标识特定的服务,并且生成该服务的对应位置, 通过网络传输。 授权访问特定服务的设备解析服务终点的eMKB,连接到相应的服务器并发送请求。
-
公开(公告)号:US09755836B2
公开(公告)日:2017-09-05
申请号:US12950115
申请日:2010-11-19
CPC分类号: H04L9/3247 , H04L63/126 , H04L2209/601
摘要: Provided are techniques to enable, using broadcast encryption, a device to locate a service offered by a server with the knowledge that the service offered by the server is a trusted service. A signed enhanced Management Key Block (eMKB) includes a trusted service locator (TSL) that includes one or more records, or “trusted service data records” (TSDRs), each identifying a particular service and a corresponding location of the service is generated and transmitted over a network. Devices authorized to access a particular service parse the eMKB for the end point of the service, connect to the appropriate server and transmit a request.
-
10.发明申请公开(公告)号:US20120131338A1
公开(公告)日:2012-05-24
申请号:US12950301
申请日:2010-11-19
IPC分类号: H04L9/32
CPC分类号: H04L9/0836 , H04L9/3271 , H04L2209/601
摘要: Provided are techniques to enable a device that provides a service to authorize a second device for receiving the service and the delivery of the service to the second device and other devices within a trusted network. A signed Management Key Block (MKB) is generated and transmitted over a network. Devices authorized to access a particular service parse the MKB and transmit a request. A server associated with the service determines whether or not the device is authorized to access the service based upon data included in the request. The first device may issue a challenge to the second device for authentication purposes. If service is approved, service is initiated, either from the first device or another authorized device. Devices may be organized into classes such that devices of a specific class are authorized to access the service.
摘要翻译: 提供的技术是使得能够提供服务的设备授权第二设备来接收服务以及向第二设备和受信任网络内的其他设备传送服务的技术。 签署的管理密钥块(MKB)通过网络生成和传输。 授权访问特定服务的设备解析MKB并发送请求。 与服务器相关联的服务器基于请求中包括的数据确定设备是否被授权访问服务。 为了认证目的,第一设备可能会向第二设备发出挑战。 如果服务被批准,服务将从第一个设备或其他授权设备启动。 设备可以被组织成类,使得特定类的设备被授权访问服务。
-
-
-
-
-
-
-
-
-
搜索结果
47 条记录 (耗时 0.026 秒)
