公开(公告)号：WO2008069888A2

公开(公告)日：2008-06-12

申请号：PCT/US2007/023617

申请日：2007-11-09

Applicant: SANDISK CORPORATION ,  COULOMB, Fabrice, Jogand ,  TANIK, Haluk, Kent ,  RASIZADE, Oktay

Inventor： COULOMB, Fabrice, Jogand ,  TANIK, Haluk, Kent ,  RASIZADE, Oktay

IPC: G06F21/00

CPC classification number: G11B20/0021 ,  G06F21/10 ,  G06F21/78 ,  G11B20/00086 ,  G11B20/00521 ,  G11B20/0055 ,  G11B20/00789 ,  G11B20/00797 ,  G11B20/0084 ,  G11B2220/61

Abstract: A method for accessing content stored on a memory device is provided. In this method, a request to access the content is transmitted and a session ticket is received. The session ticket includes a parameter used to decrypt the content and the session ticket is generated based on a variable that is configured to change at a session. The content may be accessed based on the session ticket. An apparatus is also provided comprising a memory and a processor in communication with the memory. The processor is configured to: transmit a request to a memory device to access content stored in the memory device; receive a session ticket; and access the content based on the session ticket. The session ticket includes a parameter used to decrypt the content and the session ticket is generated based on a number that is configured to change at a session.

Abstract translation: 提供了一种用于访问存储在存储设备上的内容的方法。 在此方法中，传输访问内容的请求并接收会话票证。 会话票据包括用于解密内容的参数，会话票据是基于配置为在会话中改变的变量生成的。 内容可以基于会话票据被访问。 还提供了一种设备，其包括存储器和与存储器通信的处理器。 处理器被配置为：向存储器装置发送请求以访问存储在存储器装置中的内容; 接收会话票据; 并根据会话票据访问内容。 会话票据包括用于解密内容的参数，会话票据是根据配置为在会话中更改的号码生成的。

公开(公告)号：WO2008069887A3

公开(公告)日：2008-06-12

申请号：PCT/US2007/023615

申请日：2007-11-09

Applicant: SANDISK CORPORATION ,  JOGAND-COULOMB, Fabrice ,  TANIK, Haluk, K. ,  RASIZADE, Oktay, S.

Inventor： JOGAND-COULOMB, Fabrice ,  TANIK, Haluk, K. ,  RASIZADE, Oktay, S.

IPC: G06F21/00

Abstract: A method, system, and computer-readable media storing operational instructions for allowing content protected by a first DRM system to be accessed by a second DRM system are disclosed. In one embodiment, a request is received from a host application for a license for content protected by a first DRM system, the first DRM system being different from the host application's DRM system. A license supported by the host application's DRM system is then generated from a license supported by the first DRM system. In another embodiment, a request is received to store content protected by a first DRM system. In response to the request, a portable license for the content is generated from a license supported by the first DRM system. Alternatively or additionally, a portable file format for the content is generated from a file format supported by the first DRM system. The request can come from a first computing platform, and the portable license and/or file format can be generated by a second computing platform. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.

公开(公告)号：WO2008060468B1

公开(公告)日：2008-10-23

申请号：PCT/US2007023649

申请日：2007-11-09

Applicant: SANDISK CORP ,  JOGAND-COULOMB FABRICE ,  RASIZADE OKTAY S ,  TANIK HALUK K

Inventor： JOGAND-COULOMB FABRICE ,  RASIZADE OKTAY S ,  TANIK HALUK K

IPC: G06F21/10

CPC classification number: G06F21/10

Abstract: A method and computer-readable media storing operational instructions for allowing multiple users to access preview content are disclosed. In one embodiment, a user is provided with preview content and is allowed to access the preview content even if another user's access to the preview content has expired. In another embodiment, a user is provided with content that he is not allowed to access but is allowed to access a preview version of the content by creating a license that specifies the user's access to the preview content, wherein the license is stored on a memory device that stores the preview content. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.

Abstract translation: 公开了一种存储用于允许多个用户访问预览内容的操作指令的方法和计算机可读介质。 在一个实施例中，为用户提供预览内容，并且即使其他用户对预览内容的访问已经过期也被允许访问预览内容。 在另一个实施例中，向用户提供他不被允许访问的内容，但是被允许通过创建指定用户对预览内容的访问的许可来访问内容的预览版本，其中该许可被存储在存储器 存储预览内容的设备。 公开了其他实施例，并且每个实施例可以单独使用或组合使用。

公开(公告)号：WO2008060468A3

公开(公告)日：2008-07-31

申请号：PCT/US2007023649

申请日：2007-11-09

Applicant: SANDISK CORP ,  JOGAND-COULOMB FABRICE ,  RASIZADE OKTAY S ,  TANIK HALUK K

Inventor： JOGAND-COULOMB FABRICE ,  RASIZADE OKTAY S ,  TANIK HALUK K

IPC: G06F21/10

CPC classification number: G06F21/10

Abstract: A method and computer-readable media storing operational instructions for allowing multiple users to access preview content are disclosed. In one embodiment, a user is provided with preview content and is allowed to access the preview content even if another user's access to the preview content has expired. In another embodiment, a user is provided with content that he is not allowed to access but is allowed to access a preview version of the content by creating a license that specifies the user's access to the preview content, wherein the license is stored on a memory device that stores the preview content. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.

Abstract translation: 公开了存储用于允许多个用户访问预览内容的操作指令的方法和计算机可读介质。 在一个实施例中，向用户提供预览内容，并且即使其他用户对预览内容的访问已经到期，也允许用户访问预览内容。 在另一个实施例中，向用户提供他不允许访问的内容，但允许其通过创建指定用户对预览内容的访问的许可来访问内容的预览版本，其中许可证被存储在存储器 存储预览内容的设备。 公开了其它实施例，并且每个实施例可以单独使用或组合使用。

公开(公告)号：WO2011059940A1

公开(公告)日：2011-05-19

申请号：PCT/US2010/055919

申请日：2010-11-09

Applicant: SANDISK CORPORATION ,  RASIZADE, Oktay ,  TANIK, Haluk, Kent ,  JOGAND-COULOMB, Fabrice

Inventor： RASIZADE, Oktay ,  TANIK, Haluk, Kent ,  JOGAND-COULOMB, Fabrice

IPC: G06F21/00

CPC classification number: G06F21/10

Abstract: A method and system of binding content at first access is disclosed. A nonvolatile storage device may provide a content access script and a content binding script in order to access protected content. An accessing application may attempt to access the protected content by executing a content access script. The accessing application must have permission to access and execute the content access script. If the accessing application cannot access or execute the content access script, the accessing application may access and execute the content binding script. The content binding script contains instructions that enable the accessing application to successfully execute the content access script. The content binding script, when executed, may disable itself from being executed again by moving critical information associated with the access to protected data. Thus, the content binding script may be executed once to enable an accessing application to successfully execute the content access script.

Abstract translation: 公开了一种在第一次访问时绑定内容的方法和系统。 非易失性存储设备可以提供内容访问脚本和内容绑定脚本，以访问受保护的内容。 访问应用可以通过执行内容访问脚本来尝试访问受保护的内容。 访问应用程序必须具有访问和执行内容访问脚本的权限。 如果访问应用程序无法访问或执行内容访问脚本，访问应用程序可以访问和执行内容绑定脚本。 内容绑定脚本包含允许访问应用程序成功执行内容访问脚本的指令。 内容绑定脚本在执行时可能会通过移动与受保护数据的访问相关联的关键信息来禁止其再次执行。 因此，可以执行内容绑定脚本一次以使访问应用能够成功地执行内容访问脚本。

公开(公告)号：WO2008069887B1

公开(公告)日：2008-09-18

申请号：PCT/US2007023615

申请日：2007-11-09

Applicant: SANDISK CORP ,  JOGAND-COULOMB FABRICE ,  TANIK HALUK K ,  RASIZADE OKTAY S

Inventor： JOGAND-COULOMB FABRICE ,  TANIK HALUK K ,  RASIZADE OKTAY S

IPC: G06F21/10

CPC classification number: G06F21/10

Abstract: A method, system, and computer-readable media storing operational instructions for allowing content protected by a first DRM system to be accessed by a second DRM system are disclosed. In one embodiment, a request is received from a host application for a license for content protected by a first DRM system, the first DRM system being different from the host application's DRM system. A license supported by the host application's DRM system is then generated from a license supported by the first DRM system. In another embodiment, a request is received to store content protected by a first DRM system. In response to the request, a portable license for the content is generated from a license supported by the first DRM system. Alternatively or additionally, a portable file format for the content is generated from a file format supported by the first DRM system. The request can come from a first computing platform, and the portable license and/or file format can be generated by a second computing platform. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.

Abstract translation: 公开了一种存储操作指令的方法，系统和计算机可读介质，用于允许由第一DRM系统保护的内容被第二DRM系统访问。 在一个实施例中，从主机应用接收针对由第一DRM系统保护的内容的许可的请求，所述第一DRM系统与主机应用的DRM系统不同。 然后，由第一DRM系统支持的许可证生成由主机应用的DRM系统支持的许可证。 在另一个实施例中，接收到请求以存储由第一DRM系统保护的内容。 响应于该请求，从第一DRM系统支持的许可证生成用于内容的便携式许可证。 或者或另外，用于内容的便携式文件格式从由第一DRM系统支持的文件格式生成。 该请求可以来自第一计算平台，并且便携式许可证和/或文件格式可以由第二计算平台生成。 公开了其它实施例，并且每个实施例可以单独使用或组合使用。

公开(公告)号：WO2008069887A2

公开(公告)日：2008-06-12

申请号：PCT/US2007023615

申请日：2007-11-09

Applicant: SANDISK CORP ,  JOGAND-COULOMB FABRICE ,  TANIK HALUK K ,  RASIZADE OKTAY S

Inventor： JOGAND-COULOMB FABRICE ,  TANIK HALUK K ,  RASIZADE OKTAY S

IPC: G06F21/10

CPC classification number: G06F21/10

Abstract: A method, system, and computer-readable media storing operational instructions for allowing content protected by a first DRM system to be accessed by a second DRM system are disclosed. In one embodiment, a request is received from a host application for a license for content protected by a first DRM system, the first DRM system being different from the host application's DRM system. A license supported by the host application's DRM system is then generated from a license supported by the first DRM system. In another embodiment, a request is received to store content protected by a first DRM system. In response to the request, a portable license for the content is generated from a license supported by the first DRM system. Alternatively or additionally, a portable file format for the content is generated from a file format supported by the first DRM system. The request can come from a first computing platform, and the portable license and/or file format can be generated by a second computing platform. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.

公开(公告)号：WO2008069888A3

公开(公告)日：2008-07-31

申请号：PCT/US2007023617

申请日：2007-11-09

Applicant: SANDISK CORP ,  COULOMB FABRICE JOGAND ,  TANIK HALUK KENT ,  RASIZADE OKTAY

Inventor： COULOMB FABRICE JOGAND ,  TANIK HALUK KENT ,  RASIZADE OKTAY

IPC: G06F21/10 ,  G06F21/78 ,  G11B20/00

CPC classification number: G11B20/0021 ,  G06F21/10 ,  G06F21/78 ,  G11B20/00086 ,  G11B20/00521 ,  G11B20/0055 ,  G11B20/00789 ,  G11B20/00797 ,  G11B20/0084 ,  G11B2220/61

Abstract: A method for accessing content stored on a memory device is provided. In this method, a request to access the content is transmitted and a session ticket is received. The session ticket includes a parameter used to decrypt the content and the session ticket is generated based on a variable that is configured to change at a session. The content may be accessed based on the session ticket. An apparatus is also provided comprising a memory and a processor in communication with the memory. The processor is configured to: transmit a request to a memory device to access content stored in the memory device; receive a session ticket; and access the content based on the session ticket. The session ticket includes a parameter used to decrypt the content and the session ticket is generated based on a number that is configured to change at a session.

Abstract translation: 提供了一种用于访问存储在存储器设备上的内容的方法。 在此方法中，传输访问内容的请求并接收会话票证。 会话票据包括用于解密内容的参数，会话票据是基于配置为在会话中改变的变量生成的。 内容可以基于会话票据被访问。 还提供了一种设备，其包括存储器和与存储器通信的处理器。 处理器被配置为：向存储器装置发送请求以访问存储在存储器装置中的内容; 接收会话票据; 并根据会话票据访问内容。 会话票据包括用于解密内容的参数，会话票据基于配置为在会话中改变的号码而生成。

公开(公告)号：WO2008060468A2

公开(公告)日：2008-05-22

申请号：PCT/US2007/023649

申请日：2007-11-09

Applicant: SANDISK CORPORATION ,  JOGAND-COULOMB, Fabrice ,  RASIZADE, Oktay, S. ,  TANIK, Haluk, K.

Inventor： JOGAND-COULOMB, Fabrice ,  RASIZADE, Oktay, S. ,  TANIK, Haluk, K.

IPC: G06F21/00

CPC classification number: G06F21/10

Abstract: A method and computer-readable media storing operational instructions for allowing multiple users to access preview content are disclosed. In one embodiment, a user is provided with preview content and is allowed to access the preview content even if another user's access to the preview content has expired. In another embodiment, a user is provided with content that he is not allowed to access but is allowed to access a preview version of the content by creating a license that specifies the user's access to the preview content, wherein the license is stored on a memory device that stores the preview content. Other embodiments are disclosed, and each of the embodiments can be used alone or together in combination.

Abstract translation: 公开了一种存储用于允许多个用户访问预览内容的操作指令的方法和计算机可读介质。 在一个实施例中，为用户提供预览内容，并且即使其他用户对预览内容的访问已经过期也被允许访问预览内容。 在另一个实施例中，向用户提供他不被允许访问的内容，但是被允许通过创建指定用户对预览内容的访问的许可来访问内容的预览版本，其中该许可被存储在存储器 存储预览内容的设备。 公开了其他实施例，并且每个实施例可以单独使用或组合使用。

公开(公告)号：WO2007094874A3

公开(公告)日：2007-12-06

申请号：PCT/US2006060928

申请日：2006-11-15

Applicant: SANDISK CORP ,  RASIZADE OKTAY ,  QAWAMI BAHMAN ,  JOGAND-COULOMB FABRICE ,  CHANG ROBERT C ,  SABET-SHARGHI FARSHID

Inventor： RASIZADE OKTAY ,  QAWAMI BAHMAN ,  JOGAND-COULOMB FABRICE ,  CHANG ROBERT C ,  SABET-SHARGHI FARSHID

IPC: G06F21/10 ,  G06F21/78

CPC classification number: G06F21/78 ,  G06F21/10

Abstract: One or more rights objects (RO) files may be used for storing RO's preferably in the protected area available only to authenticated users. A RO navigation file is stored preferably in an unprotected public area containing status bits, where each status bit identifies whether a location in a RO file contains a valid RO or not. Preferably, there is a one-to-one correspondence between the location for a RO in a RO file and a location in the RO navigation file for the status bit which identifies whether its corresponding location in the RO file contains a valid RO or not. Whether a particular location in a RO file contains a valid RO or not can be found by checking its corresponding status bit in the RO navigation file. By finding out whether a particular location in a RO file contains a valid RO or not in this manner, it is possible to delete ROs without having to go through an authentication process. The process of finding an empty slot in the RO file for storing a new RO is also simplified. This greatly increases the efficiency of RO management. A similar system may be used for management of content encryption/ encryption keys for protecting content files.

Abstract translation: 可以使用一个或多个权限对象（RO）文件来存储RO，优选地在仅对经认证的用户可用的保护区域中。 RO导航文件优选地存储在包含状态位的未受保护的公共区域中，其中每个状态位识别RO文件中的位置是否包含有效的RO。 优选地，在RO文件中的RO的位置与用于状态位的RO导航文件中的位置之间存在一一对应关系，该状态位标识其在RO文件中的相应位置是否包含有效的RO。 通过检查RO导航文件中相应的状态位，可以找到RO文件中的特定位置是否包含有效的RO。 通过查找RO文件中的特定位置是否包含有效的RO，以这种方式，可以删除RO而无需经过身份验证过程。 在RO文件中找到用于存储新的RO的空槽的过程也被简化。 这大大提高了RO管理的效率。 类似的系统可以用于管理用于保护内容文件的内容加密/加密密钥。