US20070300310A1 - Method and system for implementing digital rights management - Google Patents

Method and system for implementing digital rights management Download PDF

Info

Publication number
US20070300310A1
US20070300310A1 US11/895,870 US89587007A US2007300310A1 US 20070300310 A1 US20070300310 A1 US 20070300310A1 US 89587007 A US89587007 A US 89587007A US 2007300310 A1 US2007300310 A1 US 2007300310A1
Authority
US
United States
Prior art keywords
content
digital content
piece
digital
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US11/895,870
Inventor
Donald Molaro
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Sony Corp
Sony Electronics Inc
Original Assignee
Sony Corp
Sony Electronics Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sony Corp, Sony Electronics Inc filed Critical Sony Corp
Priority to US11/895,870 priority Critical patent/US20070300310A1/en
Publication of US20070300310A1 publication Critical patent/US20070300310A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
    • H04N21/4405Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream decryption
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/835Generation of protective data, e.g. certificates
    • H04N21/8355Generation of protective data, e.g. certificates involving usage data, e.g. number of copies or viewings allowed

Definitions

  • the present invention relates to the field of digital content distribution. More specifically, embodiments of the present invention are directed to implementing digital rights management.
  • the Internet is increasingly being used as a distribution medium for entertainment content such as movies, music, or other multi-media presentations.
  • entertainment content such as movies, music, or other multi-media presentations.
  • digital content e.g., a movie
  • systems having sufficient computing capacity to provide an acceptable level of real-time streaming video performance have proven to be too expensive for most users.
  • Internet capacity for providing wide scale delivery of streaming video content is, at this time, insufficient.
  • content providers typically rent the content to end users for a specified time period and allow the end users to store the content upon their personal computers so that they can access the digital content later.
  • Conditional access is a technology that is mainly used to control access to digital programming to authorized users by encrypting the transmitted programming.
  • Conditional Access has been used for years for pay-per-view broadcasts of live content (e.g., sports events, etc.) that is encrypted and broadcast to end users and selectively decrypted at the end user's site using a set-top box.
  • FIG. 1 is a diagram of an exemplary prior art Conditional Access system 100 .
  • a content provider 101 transmits digital content to end users (e.g., end users 120 , 121 , 123 , and 124 of FIG. 1 ) via broadcast network 150 .
  • the digital content is encrypted at the uplink site (e.g., site 110 ) using a previously chosen encryption key.
  • Distribution of the keys for decrypting the digital content is typically accomplished by sending smart card storage devices containing the decryption keys to the end users.
  • the smart card is inserted into the end user's set-top box (not shown) and thus enables the end user to decrypt the digital content.
  • the set-top box filters out the broadcast signals and decrypts them using the decryption key stored on the smart card.
  • the decrypted signal is then decoded and output to the end users' television.
  • FIG. 2 is a block diagram of an exemplary prior art DRM system 200 .
  • DRM technology addresses the need for protecting file distribution.
  • DRM has emerged as a set of technologies and business models to protect digital media copyrights and to provide revenue to content owners.
  • repository 210 holds the content offered for distribution by content provider 101 .
  • Encrypted content server 220 packages the content for distribution to the end users by encrypting the requested content with a session key that is sent from encrypted content server 220 to license server 230 .
  • License server 230 maintains a license file 235 containing the session key and a description of the usage rules associated with the requested content.
  • End user 120 receives encrypted content file 225 , which they can store upon their computer, and communication is established with license server 230 to verify access rights to the encrypted content and obtain the session key for decrypting the content file. Once access rights have been verified, end user 120 can access the requested content.
  • the license describing the usage rules associated with the digital content, describes a one-to-one relationship in which a specific piece of digital content can be accessed by a designated playback device during a specified time interval.
  • This is inconvenient for many users who, having more than one television, may wish to access the content using multiple playback devices.
  • a user may wish to begin watching a piece of digital content (e.g., a movie) in their living room, and finish watching it later in the night in their bedroom on a second television.
  • the license associated with the digital content only allows the movie to be played one specific device, for example, the television in the living room, and only within a single specified time period.
  • a user wanting to watch the same piece of digital content on multiple television sets is required to obtain multiple licenses for that piece of digital content.
  • a first license associated with a first copy of the digital content
  • a second license associated with a second copy of the same digital content
  • This system is inconvenient to the end users because they have to obtain multiple licensed copies of the content.
  • the users have to determine which copy of the digital content can be played upon a given television set.
  • This system is also inconvenient and expensive for the content providers because they need to send multiple copies of the same content to the same user. Thus, the content providers cannot use their bandwidth to serve other end users while the multiple copies are being sent.
  • it is desirable that such a method and system includes security measures to protect against unauthorized copy and distribution of the digital content.
  • a content license is created that defines the parameters for accessing a piece of digital content.
  • a first logical expression in the content license defines a plurality of playback devices that are authorized to access the piece of digital content.
  • a second logical expression in the content license defines at least one time interval when the plurality of playback devices are authorized to access the piece of digital content.
  • the second logical expression defines a plurality of time intervals when the piece of digital content can be accessed by at least one playback device.
  • An end user orders a piece of digital content to be downloaded via the Internet from a content provider.
  • the end user identifies a plurality of playback devices with which they would like to access the digital content and a time or times when they would like to access the digital content.
  • a trust relationship is established using a certificate authority to verify the identity of each of the playback devices the end user will use to access the digital content.
  • each playback device is also identified using a Silicon Identification number (SID), Media Access Control (MAC) address, or the like.
  • SID Silicon Identification number
  • MAC Media Access Control
  • the content provider creates a content license that is used by the end user to access the digital content.
  • the content license describes the parameters for accessing the digital content. In embodiments of the present invention, these parameters are expressed using a logical expression such as a Boolean statement. Using a logical expression to describe these parameters allows the inclusion of multiple playback devices and/or multiple playback times into a single content license.
  • the content license defines the piece of digital content, the playback devices authorized to access the piece of digital content, and the time interval(s) that the playback devices are authorized to access the piece of digital content.
  • Embodiments of the present invention can also be used to restrict the access by a particular playback device to a specific time period.
  • the encrypted piece of digital content is delivered to the end user.
  • the playback device downloads the content license to enable access.
  • a file is included in the content license that is encrypted using the public key of the playback device accessing the digital content.
  • This encrypted file contains the keys needed to decrypt the digital content. Using its private key, the playback device decrypts this file, obtains the keys for decrypting the digital content, and begins playback of the digital content.
  • embodiments of the present invention protect the copyright privileges of the content provider while facilitating greater convenience and flexibility for the end user.
  • FIG. 1 is a block diagram of an exemplary prior art Conditional Access (CA) digital content protection model.
  • CA Conditional Access
  • FIG. 2 is a block diagram of an exemplary prior art Digital Rights Management (DRM) digital content protection model.
  • DRM Digital Rights Management
  • FIG. 3A is a diagram of an exemplary model for distributing digital content in accordance with embodiments of the present invention.
  • FIG. 3B is a diagram of an exemplary model for distributing digital content in accordance with another embodiment of the present invention.
  • FIG. 4 is a diagram of an exemplary trust model used in accordance with embodiments of the present invention.
  • FIG. 5 is a diagram of trust relationships created in an exemplary DRM system in accordance with embodiments of the present invention.
  • FIG. 6 is a diagram showing one embodiment of a playback device.
  • FIG. 7 is a diagram showing another embodiment of a playback device.
  • FIG. 8 is a flowchart of a method for implementing digital rights management in accordance with embodiments of the present invention.
  • FIG. 9 is a flowchart of a method for implementing digital rights management in accordance with embodiments of the present invention.
  • FIG. 10 is a flowchart of a method for implementing digital rights management in accordance with embodiments of the present invention.
  • FIG. 11 is a flowchart of an exemplary parser process used in embodiments of the present invention.
  • FIG. 3A is a diagram of an exemplary model 300 for distributing digital content in accordance with one embodiment of the present invention.
  • end user 120 is coupled with Internet 350 using a home gateway 310 .
  • a broadband connection is used to communicatively couple home gateway 310 with Internet 350 .
  • home computer 320 may be a personal computer or a dedicated home server system for storing digital content.
  • Home gateway 310 is further coupled with a plurality of playback devices 330 and 340 .
  • playback devices 330 and 340 are coupled with televisions 331 and 341 respectively and facilitate playback of downloaded digital television programming.
  • FIG. 3B is a diagram of an alternative implementation for distributing digital content in accordance with embodiments of the present invention.
  • computer 320 couples home gateway 310 with a single playback device 330 .
  • Playback device 330 is also coupled with televisions 331 and 341 .
  • playback devices 330 and 340 are dedicated set-top boxes for accessing the digital content stored upon home computer 320 , decrypting and decoding it, and outputting it to televisions 331 and 341 respectively. It is appreciated that in other implementations of the present invention, digital content may comprise other media types than television programming such as, for example, music or other programming. In other embodiments of the present invention, playback devices 330 and 340 may be integrated into televisions 331 and 341 respectively. For example, playback device 330 may comprise a circuit board that is built into television 331 .
  • a unique identification referred to as a silicon identification number (SID) is associated with each of the playback devices (e.g., playback devices 330 and 340 of FIG. 3A ) that end user 120 will use to playback encrypted content 301 .
  • SID silicon identification number
  • an integrated circuit chip similar to a media access control (MAC) address chip is used to uniquely identify each playback device.
  • the SID is included in content license 302 to facilitate defining playback devices used by end user 120 that are authorized to access a piece of digital content sent by content provider 101 . This makes unauthorized access of the piece of digital content more difficult because unless the playback device is identified using the correct SID, access to the piece of digital content is not allowed.
  • a trust relationship is established between end user 120 and content provider 101 .
  • An explanation of an exemplary trust relationship is described in greater detail in the following discussion of FIG. 4 .
  • FIG. 4 is a diagram of an exemplary trust model 400 used in accordance with embodiments of the present invention.
  • trust relationship is established between end user 120 and content provider 101 before a content license is created by content provider 101 .
  • certificate authority 360 establishes a known trust with both content provider 101 and end user 120 . This in turn establishes an implied trust between content provider 101 and end user 120 .
  • a digital certificate compliant with the X.509 standard is used by certificate authority 360 to establish trust between end user 120 and content provider 101 .
  • Digital certificates are digital documents issued by a certificate authority (e.g., certificate authority 360 of FIG. 4 ) that establish the credentials of entities doing business or other transactions on the Internet.
  • the digital certificate attests to the binding of a public key, used for encrypting messages and digital signatures, to an individual or other entity. They typically contain the certificate holder's name, a certificate serial number, expiration dates, a copy of the certificate holder's public key, and the digital signature of the certificate-issuing authority so that a recipient can verify that the certificate originated from a trusted party.
  • Digital certificates can be kept in registries so that trusted users can look up other users' public keys.
  • each playback device used by end user 120 is issued a separate digital certificate.
  • playback devices 330 and 340 may be provided with a signed digital certificate when they are manufactured.
  • Each of these digital certificates may also contain the SID of the particular playback device being verified by the certificate authority. This allows content provider 101 to verify the identity of each playback device used by end user 120 and include this information in the content license (e.g., content license 302 ) associated with encrypted content 301 .
  • digital certificates can be kept in registries so that authenticating users can look up the other users' public keys.
  • content provider 101 maintains a database for associating the digital certificates each of the playback devices that user 120 will use to access encrypted content 301 .
  • This database includes, for example, the public key of playback device 330 and of playback device 340 as well.
  • FIG. 5 is a diagram of trust relationships created in an exemplary DRM 500 system in accordance with embodiments of the present invention.
  • a known trust is established between content provider 101 and, for example, playback device 330 .
  • playback device 330 may be manufactured with a signed digital certificate.
  • a set-up routine may be used that creates implied trusts with computer 320 and end user 120 via the known trust established between playback device 330 and certificate authority 360 . This also creates an implied trust between playback device 330 and encrypted content server 220 and license server 230 .
  • end user 120 orders a piece of digital content, either directly from content provider 101 or via a trusted third party (e.g., a cable television service provider), content provider 101 first determines that the piece of digital content will be played upon a trusted playback device. As discussed above, content provider 101 may maintain a registry of trusted playback devices that includes the public key of each of the trusted playback devices. End user 120 typically specifies the piece of digital content being ordered, the playback device(s) that will be used to access the piece of digital content, and time period(s) during which the piece of digital content will be accessed.
  • a trusted third party e.g., a cable television service provider
  • the piece of digital content is sent from repository 210 to encrypted content server 220 .
  • the piece of digital content is encrypted using an approved algorithm such as the Advanced Encryption Standard (AES).
  • AES is an encryption standard in which data is encrypted using a symmetric key block cipher, which is a type of cipher that encrypts data in blocks, rather than a single bit at a time, and uses the same key for both encryption and decryption.
  • the key used to encrypt the piece of digital content is randomly changed at intervals of approximately 1.6 megabytes. Thus, a sequence of keys are used to encrypt the piece of digital content.
  • the key sequence is sent from encrypted content server 220 to license server 230 .
  • License server then creates content license 302 comprising a description of the access rights a user has to the piece of digital content and the key sequence for decrypting the digital content.
  • the key sequence used to encrypt the digital content is encrypted using the public key of the playback device that accesses the piece of digital content. While the present embodiment recites using a symmetric key sequence for encrypting digital content, the present invention is well suited to using an asymmetric key encryption as well.
  • a separate content license may be created for each playback device that is authorized to access the piece of digital content and maintained on license server 230 .
  • Each license contains a description of the piece of digital content, the playback devices authorized to access the piece of digital content, and the time or times that each of the playback devices is authorized to access the piece of digital content.
  • Each license also contains the key sequence of the digital content that is further encrypted using the public key of one of the authorized playback devices.
  • content license 302 comprises one copy of the key sequence that is encrypted using the public key of playback device 330 .
  • a second content license 302 comprises a second copy of the same key sequence that is encrypted using the public key of playback device 340 .
  • content license 302 may be entirely encrypted using the public key of the playback device obtaining the content license.
  • a single license may be maintained on license server 230 containing a description of the piece of digital content, the playback devices authorized to access the piece of digital content, and the time or times that each of the playback devices is authorized to access the piece of digital content. Additionally, multiple copies of the key sequence are contained in the content license, each of which is further encrypted using the public key of one of the authorized playback devices. Referring again to FIG. 3A , content license 302 comprises one copy of the key sequence that is encrypted using the public key of playback device 330 , and a second copy of the same key sequence that is encrypted using the public key of playback device 340 .
  • content license 302 is a logical expression defining parameters for accessing a piece of digital content (e.g., encrypted content 301 ).
  • a Boolean expression may be used to describe the access rights an end user has to a piece of digital content. It is appreciated that the logical expressions used to define access parameters in content license 302 may utilize other forms of logic statements than a Boolean statement.
  • a mathematical statement may be used to describe the access rights of the end user.
  • other parameters may be expressed in content license 302 . For example, a Motion Picture Association of America (MPAA) rating may be used as an access parameter. Playback device 330 may be configured such that it cannot access a piece of digital content having an MPAA rating of PG-13 or higher.
  • MPAA Motion Picture Association of America
  • Some DRM systems utilize the extensible rights mark-up language (XRML) to define the rules for accessing a piece of digital content. Because XRML is a declarative language, the description of access rights does not allow a decision making process to occur. Therefore, a content license in a conventional DRM system describes a single piece of digital content, a single playback device authorized to access the digital content, and a single time interval in which the authorized playback device could access the piece of digital content. However, this does not allow sufficient flexibility for end users who may want to access the piece of digital content from more than one television in their house or at different times. With a conventional DRM system in which each license can only represent a single period, this is not an achievable goal.
  • XRML extensible rights mark-up language
  • logical operators such as the Boolean operators “AND,” “OR,” “NOT,” “NOR,” “NAND,” “XOR,” etc.
  • the three playback devices are identified using their silicon identification numbers (e.g., SID 1 , SID 2 , and SID 3 ) and the time interval is defined as having a start time T 1 and an ending time T 2 .
  • SID 1 , SID 2 , and SID 3 silicon identification numbers
  • the time interval is defined as having a start time T 1 and an ending time T 2 .
  • two playback devices are identified by their SID number and four different time intervals are defined in which the piece of digital content can be accessed.
  • embodiments of the present invention may utilize logical expressions which define access parameters using both mathematical operators and Boolean operators. For example, in the following expression, time intervals for accessing a piece of digital content are defined in a Boolean expression in which the operands are defined using mathematical operators.
  • ((NOW>START 1 ) AND (NOW ⁇ END 1 )) and ((NOW>START 2 ) AND (NOW ⁇ END 2 )) represent two distinct validity periods that may be included in a single content license.
  • the validity periods may be expressed as a start time plus the length of the validity period.
  • the authorized time for accessing digital content may be expressed as (T1+8 hours).
  • the previous examples comprise logical operators, it is not required that the logical expression defining access parameters uses logical operators. For example, in one embodiment the logical expression uses set theory to define access parameters.
  • a content license used in embodiments of the present invention comprises a logical expression defining the parameters for accessing a piece of digital content and a key sequence for decrypting the piece of digital content.
  • the options field may be used to include additional features into the content license.
  • an MPAA rating may be included in this field.
  • the identification field may comprise the title of the piece of digital content and other information for end user 120 such as a summary of the access rights to the piece of digital content.
  • Access parameters for DEVICEA are defined in the rights field which lists 6 separate time intervals in which DEVICEA can access the piece of digital content.
  • the rights for DEVICEB are defined in the rights field which lists 6 additional time intervals in which DEVICEB can access the piece of digital content.
  • the keys field comprises the key sequence used to encrypt the digital content at encrypted content server 220 . This key sequence is then encrypted using the public key of the playback devices accessing the digital content.
  • copy of encrypted content 301 is sent to computer 320 via Internet 350 .
  • playback device 330 connects with license server 230 via Internet 350 and home gateway 310 and obtains a copy of the content license 302 .
  • a portion of content license 302 comprises a sequence of keys that can be used to decrypt the piece of digital content. This sequence of keys was encrypted using the public key of playback device 330 .
  • playback device 330 decrypts the sequence of keys using its private key.
  • Playback device 330 now has a copy of the content license that describes the parameters for accessing encrypted content 301 as well as a decrypted copy of the key sequence used to encrypt the piece of digital content. If the parameters of content license 302 authorize playback device 330 to access the piece of content at that particular time, playback device 330 connects with computer 320 using home gateway 310 to access the piece of encrypted digital content. As the encrypted content is received by playback device 330 , the key sequence is used to decrypt the digital content, which is then decoded by playback device and output to television 331 .
  • the output to television 331 is an analog signal to prevent a decrypted version of the digital content from being accessed by end user 120 .
  • the output from the playback devices may be encoded using MacrovisionTM. MacrovisionTM protects copyright holders from unauthorized recording of programming from videocassettes, digital Pay-Per-View (PPV) programs and Digital Video Discs (DVDs), etc. to videocassette.
  • PV Pay-Per-View
  • DVDs Digital Video Discs
  • end user 120 decides to watch encrypted content 301 on television 341 , a similar process is initiated to determine whether playback device 340 is authorized to access the digital content. For example, playback device 340 contacts license server 230 to obtain copy of content license 302 . A copy of content license 302 is encrypted using the public key associated with the digital certificate of playback device 340 . Content license 302 is decrypted and, if authorized, encrypted content 301 is accessed from computer 320 . The encrypted digital content is then decrypted and decoded by playback device 340 and output to television 341 .
  • each of the playback devices may synchronize its clock with a trusted entity, for example, either license server 230 or certificate authority 360 .
  • a distributed clock algorithm can be sent to the playback device that provides a substantially secure and monotonically increasing notion of time on the playback device that can be updated on a regular basis. This prevents an end user from resetting their clock to an earlier time in order to continue accessing the piece of digital content. For example, by constantly resetting the clock on either computer 320 or playback device 330 , a user may try to deceive the system into allowing access to the digital content after the content license has expired.
  • content license 302 may be streamed in real time rather than stored upon playback device 330 to prevent unauthorized access to the digital content. This limits access to the decryption key to only the time periods in which encrypted content 301 is being accessed.
  • FIG. 6 is a diagram showing one embodiment of a playback device in accordance with embodiments of the present invention.
  • encrypted content 301 is received from computer 320 (e.g., via a home network coupled with home gateway 310 ).
  • An encrypted copy of content license 302 is obtained from license server 230 .
  • the encrypted copy of content license 302 also contains the key sequence needed to decrypt content 610 .
  • a tamper detection circuit is utilized that detects an attempts to tamper or in some way access the decryption and decoding hardware (e.g., component 630 of FIG. 6 ).
  • the tamper detection circuit detects tampering, it causes playback device 330 to become un-trusted by content provider 101 .
  • a signal can be sent to content provider 101 or to certificate authority 360 indicating that the playback device has been tampered with.
  • Content provider 101 can then refuse to grant a license for digital content to playback device 330 .
  • FIG. 7 is a diagram showing another embodiment of a playback device.
  • CPU 710 is coupled with decrypt and decode component 730 via PCI bus 740 .
  • Encrypted content 301 is input directly into component 730 and the decoded and decrypted analog signal is sent to CPU 710 via bus 750 . This prevents obtaining a decrypted copy of the digital content by sampling the signal on PCI bus 740 .
  • FIG. 8 is a flowchart of a method 800 for implementing digital rights management in accordance with embodiments of the present invention.
  • a content license is created defining parameters for accessing a piece of digital content.
  • a first logical expression in the content license defines a plurality of playback devices that a recipient of the piece of digital content is authorized to use when accessing the piece of digital content.
  • the present invention uses an SID to uniquely identify each playback device authorized to access a piece of digital content.
  • embodiments of the present invention utilize a certificate authority to verify the identity of each playback device to be included in the content license.
  • embodiments of the present invention facilitate protecting the content provider's copyright privileges by making it easier to identify a particular playback device that is allowed access to a piece of digital content.
  • a single content license can allow multiple playback devices to access a single piece of digital content and at multiple time periods. This is convenient to end users who were previously required to obtain multiple content licenses if they wanted to play the piece of digital content on more than one playback device. Additionally, the end users had to determine which content license was valid for the particular playback device they were using to view the piece of digital content.
  • a user can obtain a single content license that allows utilizing a plurality of authorized playback devices to view a piece of digital content. Additionally, the end user is not forced to determine which content license is valid for a particular playback device.
  • a second logical expression in the content license defines a time interval wherein the plurality of playback devices are authorized to access the piece of digital content. Additionally, the second logical expression may define a plurality of time intervals in which the plurality of playback devices are authorized to access the piece of digital content. This may also comprise defining a separate time interval for accessing the piece of digital content to a particular playback device. As described above, using a logical expression facilitates including multiple playback devices and/or multiple time intervals for accessing a piece of digital content into a single content license. Using conventional digital rights management methods, a content license describes a single piece of digital content, that can only be accessed by a particular playback device within a particular time interval.
  • the content license is utilized to access the piece of digital content.
  • the playback device obtains a copy of the content license.
  • the content license also comprises the sequence of keys used to encrypt the digital content. This sequence is further encrypted using the public key of the playback device.
  • the encrypted key sequence is decrypted using the private key of the playback device and is used by the playback device to decrypt the digital content.
  • FIG. 9 is a flowchart of a method 900 for implementing digital rights management in accordance with embodiments of the present invention.
  • a content license defining parameters for accessing a piece of digital content is created.
  • a first logical expression defines a plurality of time intervals wherein a recipient of a piece of digital content is authorized to access a piece of digital content.
  • using a logical expression facilitates greater flexibility in defining access parameters to the digital content than is possible using conventional XRML statements because a single content license can be used to define multiple time intervals when a piece of digital content can be accessed.
  • a single time interval is defined for accessing a piece of digital content. This is due to the limitations imposed by using a declarative language (e.g., XRML) to define access parameters.
  • the present invention utilizes logical expressions (e.g., Boolean statements) to define access parameters which facilitates incorporating decision making steps into the process of determining digital rights.
  • a second logical expression in the content license defines at least one playback device authorized to access the piece of digital content during the time intervals defined in the first logical expression.
  • a certificate authority is used to verify the identity of the playback device defined in the content license.
  • embodiments of the present invention facilitate protecting the content provider's copyright by making it easier to identify a particular playback device that is allowed access to a piece of digital content.
  • the playback device is identified using an identification unique to the device (e.g., a SID) to prevent unauthorized access to the piece of digital content.
  • the second logical expression may define a plurality of playback devices authorized to access the piece of digital content during the time intervals defined in the first logical expression of the content license.
  • the content license is utilized to access the piece of digital content.
  • the playback device obtains a copy of the content license.
  • the content license also comprises the sequence of keys used to encrypt the digital content. This sequence is further encrypted using the public key of the playback device.
  • the encrypted key sequence is decrypted using the private key of the playback device and is used by the playback device to decrypt the digital content.
  • portions of the present invention are comprised of computer-readable and computer-executable instructions that reside, for example, in computer system 1000 which is used as a part of a computer network. It is appreciated that computer system 1000 of FIG. 10 is exemplary only and that the present invention can operate within a number of different computer systems including general-purpose computer systems, embedded computer systems, laptop computer systems, hand-held computer systems, and stand-alone computer systems.
  • computer system 1000 includes an address/data bus 1001 for conveying digital information between the various components, a central processor unit (CPU) 1002 for processing the digital information and instructions, a volatile main memory 1003 comprised of volatile random access memory (RAM) for storing the digital information and instructions, and a non-volatile read only memory (ROM) 1004 for storing information and instructions of a more permanent nature.
  • computer system 1000 may also include a data storage device 1005 (e.g., a magnetic, optical, floppy, or tape drive or the like) for storing vast amounts of data.
  • a software program for implementing digital rights management of the present invention can be stored either in volatile memory 1003 , data storage device 1005 , or in an external storage device (not shown).
  • Computer system 1000 Devices which are optionally coupled to computer system 1000 include a display device 1006 for displaying information to a computer user, an alpha-numeric input device 1007 (e.g., a keyboard), and a cursor control device 1008 (e.g., mouse, trackball, light pen, etc.) for inputting data, selections, updates, etc.
  • Computer system 1000 can also include a mechanism for emitting an audible signal (not shown).
  • optional display device 1006 of FIG. 10 may be a liquid crystal device, cathode ray tube, or other display device suitable for creating graphic images and alpha-numeric characters recognizable to a user.
  • Optional cursor control device 1008 allows the computer user to dynamically signal the two dimensional movement of a visible symbol (cursor) on a display screen of display device 1006 .
  • cursor control device 1008 are known in the art including a trackball, mouse, touch pad, joystick, or special keys on alpha-numeric input 1007 capable of signaling movement of a given direction or manner displacement.
  • a cursor can be directed an/or activated via input from alpha-numeric input 1007 using special keys and key sequence commands.
  • the cursor may be directed and/or activated via input from a number of specially adapted cursor directing devices.
  • computer system 1000 can include an input/output (I/O) signal unit (e.g., interface) 1009 for interfacing with a peripheral device 1010 (e.g., a computer network, modem, mass storage device, etc.).
  • I/O input/output
  • peripheral device 1010 e.g., a computer network, modem, mass storage device, etc.
  • computer system 1000 may be coupled in a network, such as the Internet or a client/server environment, whereby a number of clients (e.g., personal computers, workstations, portable computers, minicomputers, terminals, etc.) are used to run processes for performing desired tasks (e.g., “creating,” “delivering,” “verifying,” “dividing,” “encrypting,” “including,” “identifying,” “using,” etc.).
  • desired tasks e.g., “creating,” “delivering,” “verifying,” “dividing,” “encrypting,” “including,” “identifying,” “using,” etc.
  • computer system 1000 can be coupled in a system for implementing digital rights
  • FIG. 11 is a flowchart of an exemplary parser process 1100 used in embodiments of the present invention.
  • the parser process of FIG. 11 may be implemented upon the playback devices used to access digital content (e.g., playback device 330 and playback device 340 of FIG. 3 ) in the present invention.
  • the encrypted license is input.
  • content license 302 is obtained by, for example, playback device 330 when a user attempts to access a piece of digital content stored upon computer 320 .
  • the content license is decrypted.
  • playback device 330 decrypts content license 302 .
  • content license 302 may comprise a first logical expression defining a plurality of playback devices that a user can use to access a piece of digital content.
  • a second logical expression in content license 302 defines a time interval wherein the plurality of playback devices are authorized to access the piece of digital content.
  • content license 302 comprises a first logical expression defining a plurality of time intervals wherein the user can access a piece of digital content and a second logical expression defining at least one playback device authorized to access the piece of digital content during one of the time intervals.
  • Session tokens may be generated by playback device 330 to manage access to the piece of digital content stored upon computer 320 .
  • the information in the token describes validity periods for accessing the digital content by playback device 330 .
  • step 1104 of FIG. 11 a logical operation is performed to determine whether the UID in content license 302 describes the playback device performing the parsing process. If the UID of the playback device matches the UID described in content license 302 , flowchart 1100 proceeds to step 1105 . If the UID of the playback device does not match the UID described in content license 302 , flowchart 1100 proceeds to step 1107 .
  • a logical operation is performed to determine whether the current time is a valid time interval for playback device 330 to access the piece of digital content.
  • the current time is compared with the parameters in content license 302 describing when playback device 330 can access the digital content.
  • the current time is occasionally updated from a trusted source such as content provider 101 or certificate authority 360 . If the current time falls within the time interval parameters in content license 302 , flowchart 1100 proceeds to step 1106 . If the current time is not within the time interval parameters of content license 302 , flowchart 1100 proceeds to step 1107 .
  • step 1106 of FIG. 11 the digital content stored upon computer 320 is accessed by playback device 330 . Because the parameters defining access rights to the digital content have been met, the user can use playback device 330 to access the digital content.
  • step 1107 of FIG. 11 access to the digital content is denied. Because the parameters for accessing the digital content stored upon computer 320 have not been met, playback device 330 can not be used to access the digital content.

Abstract

In one embodiment, a content license is created that defines parameters for accessing a piece of digital content. A first logical expression in the content license defines a plurality of playback devices that are authorized to access the piece of digital content. A second logical expression in the content license defines at least one time interval when the plurality of playback devices are authorized to access the piece of digital content. The content license is used to access the piece of digital content.

Description

    RELATED U.S. PATENT APPLICATION
  • This Continuation Application claims the benefit and priority to the co-pending, commonly-owned U.S. patent application with Attorney Docket No. SONY-50S5252, application Ser. No. 10/391,718, filed on Mar. 18, 2003, by Molaro, and entitled “A METHOD AND SYSTEM FOR IMPLEMENTING DIGITAL RIGHTS MANAGEMENT,” assigned to the same assignee, which is incorporated herein by reference.
  • FIELD OF THE INVENTION
  • The present invention relates to the field of digital content distribution. More specifically, embodiments of the present invention are directed to implementing digital rights management.
  • BACKGROUND OF THE INVENTION
  • The Internet is increasingly being used as a distribution medium for entertainment content such as movies, music, or other multi-media presentations. At one time, it was predicted that a user would be able to order digital content (e.g., a movie) over the Internet and have it streamed in real-time to their computer. However, systems having sufficient computing capacity to provide an acceptable level of real-time streaming video performance have proven to be too expensive for most users. Additionally, Internet capacity for providing wide scale delivery of streaming video content is, at this time, insufficient. In order to allow distribution of digital content over the Internet, content providers typically rent the content to end users for a specified time period and allow the end users to store the content upon their personal computers so that they can access the digital content later.
  • Unfortunately, this system facilitates unauthorized distribution of copies of copyrighted material. For example, a user can easily copy the digital content and inappropriately distribute it over the Internet. This could potentially cause copyright holders to lose revenue. Recent court cases show that the entertainment industry is intent upon preventing unauthorized access and copying of their property. At the same time, they want to facilitate distribution of their content to as wide an audience as possible. Therefore, copyright holders are looking for methods of delivering high quality content over the Internet that still protect their copyright privileges.
  • Currently, there are two predominant digital content protection models that are used in the distribution of video content (e.g., television programming or movie distribution), conditional access (CA) and digital rights management (DRM). Conditional access (CA) is a technology that is mainly used to control access to digital programming to authorized users by encrypting the transmitted programming. Conditional Access has been used for years for pay-per-view broadcasts of live content (e.g., sports events, etc.) that is encrypted and broadcast to end users and selectively decrypted at the end user's site using a set-top box.
  • FIG. 1 is a diagram of an exemplary prior art Conditional Access system 100. In FIG. 1, a content provider 101 transmits digital content to end users (e.g., end users 120, 121, 123, and 124 of FIG. 1) via broadcast network 150. The digital content is encrypted at the uplink site (e.g., site 110) using a previously chosen encryption key. Distribution of the keys for decrypting the digital content is typically accomplished by sending smart card storage devices containing the decryption keys to the end users. The smart card is inserted into the end user's set-top box (not shown) and thus enables the end user to decrypt the digital content. For example, the set-top box filters out the broadcast signals and decrypts them using the decryption key stored on the smart card. The decrypted signal is then decoded and output to the end users' television.
  • Many users may find the CA model inconvenient because of the delay involved in delivering the decryption key to the end user. Furthermore, to deliver streaming content over the Internet, there must be a continuous high bandwidth link between the end user and content provider which may be difficult to maintain for the duration of the content broadcast.
  • FIG. 2 is a block diagram of an exemplary prior art DRM system 200. DRM technology addresses the need for protecting file distribution. DRM has emerged as a set of technologies and business models to protect digital media copyrights and to provide revenue to content owners. In FIG. 2, repository 210 holds the content offered for distribution by content provider 101. When a user orders a file or other digital content (e.g., a movie) the content is sent from repository 210 to encrypted content server 220. Encrypted content server 220 packages the content for distribution to the end users by encrypting the requested content with a session key that is sent from encrypted content server 220 to license server 230. License server 230 maintains a license file 235 containing the session key and a description of the usage rules associated with the requested content. End user 120 receives encrypted content file 225, which they can store upon their computer, and communication is established with license server 230 to verify access rights to the encrypted content and obtain the session key for decrypting the content file. Once access rights have been verified, end user 120 can access the requested content.
  • There are a variety of problems associated with the DRM system as described. For example, the license, describing the usage rules associated with the digital content, describes a one-to-one relationship in which a specific piece of digital content can be accessed by a designated playback device during a specified time interval. This is inconvenient for many users who, having more than one television, may wish to access the content using multiple playback devices. Thus, a user may wish to begin watching a piece of digital content (e.g., a movie) in their living room, and finish watching it later in the night in their bedroom on a second television. However, the license associated with the digital content only allows the movie to be played one specific device, for example, the television in the living room, and only within a single specified time period.
  • Currently, a user wanting to watch the same piece of digital content on multiple television sets is required to obtain multiple licenses for that piece of digital content. Thus, a first license, associated with a first copy of the digital content, is obtained allowing the end user to watch the digital content on the television in their living room. A second license, associated with a second copy of the same digital content, is obtained allowing the end user to watch the digital content in their bedroom. This system is inconvenient to the end users because they have to obtain multiple licensed copies of the content. Additionally, the users have to determine which copy of the digital content can be played upon a given television set. This system is also inconvenient and expensive for the content providers because they need to send multiple copies of the same content to the same user. Thus, the content providers cannot use their bandwidth to serve other end users while the multiple copies are being sent.
  • SUMMARY OF THE INVENTION
  • Accordingly, a need exists for a method and system that facilitates delivery of high quality digital content to an end user without necessitating a continuous communications link between a user and a content provider. An additional need exists for a method and system that, while meeting the above stated need, allows the end user to access the digital content in a more convenient manner. More specifically, a need exists for a method that allows a user to access digital content upon a plurality of playback devices and/or at a plurality of time intervals using a single content license. Furthermore, while meeting the above stated needs, it is desirable that such a method and system includes security measures to protect against unauthorized copy and distribution of the digital content.
  • In one embodiment of the present invention, a content license is created that defines the parameters for accessing a piece of digital content. A first logical expression in the content license defines a plurality of playback devices that are authorized to access the piece of digital content. A second logical expression in the content license defines at least one time interval when the plurality of playback devices are authorized to access the piece of digital content. In another embodiment of the present invention, the second logical expression defines a plurality of time intervals when the piece of digital content can be accessed by at least one playback device.
  • The following example shows how an embodiment of the present invention may be used to implement digital rights management. An end user orders a piece of digital content to be downloaded via the Internet from a content provider. The end user identifies a plurality of playback devices with which they would like to access the digital content and a time or times when they would like to access the digital content.
  • A trust relationship is established using a certificate authority to verify the identity of each of the playback devices the end user will use to access the digital content. In embodiments of the present invention, each playback device is also identified using a Silicon Identification number (SID), Media Access Control (MAC) address, or the like. The SID each of the playback devices that will access the digital content are included in the content license to prevent accessing the piece of digital content on an unauthorized playback device.
  • The content provider creates a content license that is used by the end user to access the digital content. The content license describes the parameters for accessing the digital content. In embodiments of the present invention, these parameters are expressed using a logical expression such as a Boolean statement. Using a logical expression to describe these parameters allows the inclusion of multiple playback devices and/or multiple playback times into a single content license. In embodiments of the present invention, the content license defines the piece of digital content, the playback devices authorized to access the piece of digital content, and the time interval(s) that the playback devices are authorized to access the piece of digital content. Embodiments of the present invention can also be used to restrict the access by a particular playback device to a specific time period.
  • The encrypted piece of digital content is delivered to the end user. When the end user tries to access the piece of digital content, the playback device downloads the content license to enable access. A file is included in the content license that is encrypted using the public key of the playback device accessing the digital content. This encrypted file contains the keys needed to decrypt the digital content. Using its private key, the playback device decrypts this file, obtains the keys for decrypting the digital content, and begins playback of the digital content.
  • Thus, embodiments of the present invention protect the copyright privileges of the content provider while facilitating greater convenience and flexibility for the end user.
  • BRIEF DESCRIPTION OF THE DRAWINGS
  • The accompanying drawings, which are incorporated in and form a part of this specification, illustrate embodiments of the present invention and, together with the description, serve to explain the principles of the invention. Unless specifically noted, the drawings referred to in this description should be understood as not being drawn to scale.
  • FIG. 1 is a block diagram of an exemplary prior art Conditional Access (CA) digital content protection model.
  • FIG. 2 is a block diagram of an exemplary prior art Digital Rights Management (DRM) digital content protection model.
  • FIG. 3A is a diagram of an exemplary model for distributing digital content in accordance with embodiments of the present invention.
  • FIG. 3B is a diagram of an exemplary model for distributing digital content in accordance with another embodiment of the present invention.
  • FIG. 4 is a diagram of an exemplary trust model used in accordance with embodiments of the present invention.
  • FIG. 5 is a diagram of trust relationships created in an exemplary DRM system in accordance with embodiments of the present invention.
  • FIG. 6 is a diagram showing one embodiment of a playback device.
  • FIG. 7 is a diagram showing another embodiment of a playback device.
  • FIG. 8 is a flowchart of a method for implementing digital rights management in accordance with embodiments of the present invention.
  • FIG. 9 is a flowchart of a method for implementing digital rights management in accordance with embodiments of the present invention.
  • FIG. 10 is a flowchart of a method for implementing digital rights management in accordance with embodiments of the present invention.
  • FIG. 11 is a flowchart of an exemplary parser process used in embodiments of the present invention.
  • DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT
  • Reference will now be made in detail to the preferred embodiments of the present invention, examples of which are illustrated in the accompanying drawings. While the present invention will be described in conjunction with the preferred embodiments, it will be understood that they are not intended to limit the present invention to these embodiments alone. On the contrary, the present invention is intended to cover alternatives, modifications, and equivalents which may be included within the spirit and scope of the present invention as defined by the appended claims. Furthermore, in the following detailed description of the present invention, numerous specific details are set forth in order to provide a thorough understanding of the present invention. However, embodiments of the present invention may be practiced without these specific details. In other instances, well-known methods, procedures, components, and circuits have not been described in detail so as not to unnecessarily obscure aspects of the present invention.
  • Notation and Nomenclature
  • Some portions of the detailed descriptions which follow are presented in terms of procedures, logic blocks, processing and other symbolic representations of operations on data bits within a computer memory. These descriptions and representations are the means used by those skilled in the data processing arts to most effectively convey the substance of their work to others skilled in the art. In the present application, a procedure, logic block, process, or the like, is conceived to be a self-consistent sequence of steps or instructions leading to a desired result. The steps are those requiring physical manipulations of physical quantities. Usually, although not necessarily, these quantities take the form of electrical or magnetic signal capable of being stored, transferred, combined, compared, and otherwise manipulated in a computer system.
  • It should be borne in mind, however, that all of these and similar terms are to be associated with the appropriate physical quantities and are merely convenient labels applied to these quantities. Unless specifically stated otherwise as apparent from the following discussions, it is appreciated that throughout the present invention, discussions utilizing terms such as “creating,” “including,” “defining,” “verifying,” “associating,” “including,” “accessing,” or the like, refer to the action and processes of a computer system, or similar electronic computing device, that manipulates and transforms data represented as physical (electronic) quantities within the computer system's registers and memories into other data similarly represented as physical quantities within the computer system memories or registers or other such information storage, transmission or display devices.
  • FIG. 3A is a diagram of an exemplary model 300 for distributing digital content in accordance with one embodiment of the present invention. In the embodiment of FIG. 3A, end user 120 is coupled with Internet 350 using a home gateway 310. In embodiments of the present invention, a broadband connection is used to communicatively couple home gateway 310 with Internet 350. There are a variety of commercially available home gateway devices that are used to couple home computer networks with broadband Internet connections and may be used in embodiments of the present invention. Similarly, home computer 320 may be a personal computer or a dedicated home server system for storing digital content. Home gateway 310 is further coupled with a plurality of playback devices 330 and 340. In the embodiment of FIG. 3A, playback devices 330 and 340 are coupled with televisions 331 and 341 respectively and facilitate playback of downloaded digital television programming.
  • FIG. 3B is a diagram of an alternative implementation for distributing digital content in accordance with embodiments of the present invention. In FIG. 3B, computer 320 couples home gateway 310 with a single playback device 330. Playback device 330 is also coupled with televisions 331 and 341.
  • In embodiments of the present invention, playback devices 330 and 340 are dedicated set-top boxes for accessing the digital content stored upon home computer 320, decrypting and decoding it, and outputting it to televisions 331 and 341 respectively. It is appreciated that in other implementations of the present invention, digital content may comprise other media types than television programming such as, for example, music or other programming. In other embodiments of the present invention, playback devices 330 and 340 may be integrated into televisions 331 and 341 respectively. For example, playback device 330 may comprise a circuit board that is built into television 331.
  • Referring again to FIG. 3A, in embodiments of the present invention, a unique identification, referred to as a silicon identification number (SID) is associated with each of the playback devices (e.g., playback devices 330 and 340 of FIG. 3A) that end user 120 will use to playback encrypted content 301. In one embodiment, an integrated circuit chip similar to a media access control (MAC) address chip is used to uniquely identify each playback device. The SID is included in content license 302 to facilitate defining playback devices used by end user 120 that are authorized to access a piece of digital content sent by content provider 101. This makes unauthorized access of the piece of digital content more difficult because unless the playback device is identified using the correct SID, access to the piece of digital content is not allowed.
  • In embodiments of the present invention, a trust relationship is established between end user 120 and content provider 101. An explanation of an exemplary trust relationship is described in greater detail in the following discussion of FIG. 4.
  • FIG. 4 is a diagram of an exemplary trust model 400 used in accordance with embodiments of the present invention. In embodiments of the present invention, trust relationship is established between end user 120 and content provider 101 before a content license is created by content provider 101. For example, in FIG. 4 certificate authority 360 establishes a known trust with both content provider 101 and end user 120. This in turn establishes an implied trust between content provider 101 and end user 120. In embodiments of the present invention, a digital certificate compliant with the X.509 standard is used by certificate authority 360 to establish trust between end user 120 and content provider 101.
  • Digital certificates are digital documents issued by a certificate authority (e.g., certificate authority 360 of FIG. 4) that establish the credentials of entities doing business or other transactions on the Internet. The digital certificate attests to the binding of a public key, used for encrypting messages and digital signatures, to an individual or other entity. They typically contain the certificate holder's name, a certificate serial number, expiration dates, a copy of the certificate holder's public key, and the digital signature of the certificate-issuing authority so that a recipient can verify that the certificate originated from a trusted party. Digital certificates can be kept in registries so that trusted users can look up other users' public keys.
  • In embodiments of the present invention, each playback device used by end user 120 is issued a separate digital certificate. For example, playback devices 330 and 340 may be provided with a signed digital certificate when they are manufactured. Each of these digital certificates may also contain the SID of the particular playback device being verified by the certificate authority. This allows content provider 101 to verify the identity of each playback device used by end user 120 and include this information in the content license (e.g., content license 302) associated with encrypted content 301. As stated above, digital certificates can be kept in registries so that authenticating users can look up the other users' public keys. Thus, in embodiments of the present invention, content provider 101 maintains a database for associating the digital certificates each of the playback devices that user 120 will use to access encrypted content 301. This database includes, for example, the public key of playback device 330 and of playback device 340 as well.
  • FIG. 5 is a diagram of trust relationships created in an exemplary DRM 500 system in accordance with embodiments of the present invention. In FIG. 5, a known trust is established between content provider 101 and, for example, playback device 330. As stated above, playback device 330 may be manufactured with a signed digital certificate. When playback device 330 is initially coupled with home gateway 310, a set-up routine may be used that creates implied trusts with computer 320 and end user 120 via the known trust established between playback device 330 and certificate authority 360. This also creates an implied trust between playback device 330 and encrypted content server 220 and license server 230. This facilitates preventing unauthorized access of a piece of digital content because content provider 101 will not send a piece of digital content to untrusted playback devices. While the present embodiments of establishing trust have been specifically recited, the present invention is well suited for utilizing a variety of methods for verifying identities and establishing trust relationships.
  • Referring again to FIG. 3A, when end user 120 orders a piece of digital content, either directly from content provider 101 or via a trusted third party (e.g., a cable television service provider), content provider 101 first determines that the piece of digital content will be played upon a trusted playback device. As discussed above, content provider 101 may maintain a registry of trusted playback devices that includes the public key of each of the trusted playback devices. End user 120 typically specifies the piece of digital content being ordered, the playback device(s) that will be used to access the piece of digital content, and time period(s) during which the piece of digital content will be accessed.
  • Once content provider 101 determines that the piece of digital content is to be accessed by a trusted playback device, the piece of digital content is sent from repository 210 to encrypted content server 220. The piece of digital content is encrypted using an approved algorithm such as the Advanced Encryption Standard (AES). The AES is an encryption standard in which data is encrypted using a symmetric key block cipher, which is a type of cipher that encrypts data in blocks, rather than a single bit at a time, and uses the same key for both encryption and decryption. In embodiments of the present invention, the key used to encrypt the piece of digital content is randomly changed at intervals of approximately 1.6 megabytes. Thus, a sequence of keys are used to encrypt the piece of digital content. The key sequence is sent from encrypted content server 220 to license server 230. License server then creates content license 302 comprising a description of the access rights a user has to the piece of digital content and the key sequence for decrypting the digital content. In one embodiment of the present invention, the key sequence used to encrypt the digital content is encrypted using the public key of the playback device that accesses the piece of digital content. While the present embodiment recites using a symmetric key sequence for encrypting digital content, the present invention is well suited to using an asymmetric key encryption as well.
  • In one embodiment of the present invention, a separate content license may be created for each playback device that is authorized to access the piece of digital content and maintained on license server 230. Each license contains a description of the piece of digital content, the playback devices authorized to access the piece of digital content, and the time or times that each of the playback devices is authorized to access the piece of digital content. Each license also contains the key sequence of the digital content that is further encrypted using the public key of one of the authorized playback devices. Thus in FIG. 3A, content license 302 comprises one copy of the key sequence that is encrypted using the public key of playback device 330. A second content license 302 comprises a second copy of the same key sequence that is encrypted using the public key of playback device 340. In this implementation, content license 302 may be entirely encrypted using the public key of the playback device obtaining the content license.
  • In another embodiment, a single license may be maintained on license server 230 containing a description of the piece of digital content, the playback devices authorized to access the piece of digital content, and the time or times that each of the playback devices is authorized to access the piece of digital content. Additionally, multiple copies of the key sequence are contained in the content license, each of which is further encrypted using the public key of one of the authorized playback devices. Referring again to FIG. 3A, content license 302 comprises one copy of the key sequence that is encrypted using the public key of playback device 330, and a second copy of the same key sequence that is encrypted using the public key of playback device 340.
  • In the present invention, content license 302 is a logical expression defining parameters for accessing a piece of digital content (e.g., encrypted content 301). In one embodiment, a Boolean expression may be used to describe the access rights an end user has to a piece of digital content. It is appreciated that the logical expressions used to define access parameters in content license 302 may utilize other forms of logic statements than a Boolean statement. In another implementation, a mathematical statement may be used to describe the access rights of the end user. Additionally, it is appreciated that other parameters may be expressed in content license 302. For example, a Motion Picture Association of America (MPAA) rating may be used as an access parameter. Playback device 330 may be configured such that it cannot access a piece of digital content having an MPAA rating of PG-13 or higher.
  • Some DRM systems utilize the extensible rights mark-up language (XRML) to define the rules for accessing a piece of digital content. Because XRML is a declarative language, the description of access rights does not allow a decision making process to occur. Therefore, a content license in a conventional DRM system describes a single piece of digital content, a single playback device authorized to access the digital content, and a single time interval in which the authorized playback device could access the piece of digital content. However, this does not allow sufficient flexibility for end users who may want to access the piece of digital content from more than one television in their house or at different times. With a conventional DRM system in which each license can only represent a single period, this is not an achievable goal.
  • Because embodiments of the present invention utilize logical expressions in content license 302, a plurality of time intervals and playback devices can be included in a single content license using logical operators such as the Boolean operators “AND,” “OR,” “NOT,” “NOR,” “NAND,” “XOR,” etc., or mathematical operators such as “<,” “>” “+,” “−,” “=,” “≠,” etc. For example, the following exemplary expression can be used to describe three playback devices that are authorized to access a piece digital content during a designated time interval:
  • (<SID1>:<T1>:<T2>) OR
  • (<SID2>:<T1>:<T2>) OR
  • (<SID3>:<T1>:<T2>)
  • In the above example, the three playback devices are identified using their silicon identification numbers (e.g., SID1, SID2, and SID3) and the time interval is defined as having a start time T1 and an ending time T2. Using logical statements to define access parameters also allows more complex expressions such as:
  • (<SID1>:<T1>:<T2> AND <T3>:<T4>) OR
  • (<SID2>:<T4>:<T5> AND <T6>:<T7>)
  • In the above example, two playback devices are identified by their SID number and four different time intervals are defined in which the piece of digital content can be accessed.
  • Additionally, embodiments of the present invention may utilize logical expressions which define access parameters using both mathematical operators and Boolean operators. For example, in the following expression, time intervals for accessing a piece of digital content are defined in a Boolean expression in which the operands are defined using mathematical operators.
  • ((NOW>START1) AND (NOW<END1)) OR
  • ((NOW>START2) AND (NOW<END2))
  • In the above example, ((NOW>START1) AND (NOW<END1)) and ((NOW>START2) AND (NOW<END2)) represent two distinct validity periods that may be included in a single content license. In another embodiment, the validity periods may be expressed as a start time plus the length of the validity period. For example, the authorized time for accessing digital content may be expressed as (T1+8 hours). While the previous examples comprise logical operators, it is not required that the logical expression defining access parameters uses logical operators. For example, in one embodiment the logical expression uses set theory to define access parameters.
  • D=SID ε{DeviceA, DeviceB}
  • I=NOW ε{(START1,END1),(START2,END2),(START3,END3)}
  • R=D×I
  • As stated above, a content license used in embodiments of the present invention comprises a logical expression defining the parameters for accessing a piece of digital content and a key sequence for decrypting the piece of digital content. Thus, an exemplary content license of the present invention may be expressed as follows:
    DOCUMENT
    OPTIONS
    END OPTIONS
    IDENTIFICATION
    END IDENTIFICATION
    RIGHTS
    (((SID=DEVICEA) AND
    (((NOW > START1) AND (NOW < END1)) OR
     ((NOW > START2) AND (NOW < END2)) OR
     ((NOW > START3) AND (NOW < END3)) OR
     ((NOW > START4) AND (NOW < END4)) OR
     ((NOW > START5) AND (NOW < END5)) OR
     ((NOW > START6) AND (NOW < END6)))) OR
    (SID=DEVICEB) AND
    (((NOW > START7) AND (NOW < END7)) OR
     ((NOW > START8) AND (NOW < END8)) OR
     ((NOW > START9) AND (NOW < END9)) OR
     ((NOW > START10) AND (NOW < END10)) OR
     ((NOW > START11) AND (NOW < END11)) OR
     ((NOW > START12) AND (NOW < END12)))))
    END RIGHTS
    KEYS
    KEY 1
    KEY 2
    KEY 3
    KEY 4
    KEY 5
    KEY 6
    KEY 7
    KEY 8
    KEY 9
    KEY 10
    END KEYS
    END
  • In the exemplary content license above, the options field may be used to include additional features into the content license. For example, an MPAA rating may be included in this field. The identification field may comprise the title of the piece of digital content and other information for end user 120 such as a summary of the access rights to the piece of digital content. Access parameters for DEVICEA are defined in the rights field which lists 6 separate time intervals in which DEVICEA can access the piece of digital content. Additionally, the rights for DEVICEB are defined in the rights field which lists 6 additional time intervals in which DEVICEB can access the piece of digital content. The keys field comprises the key sequence used to encrypt the digital content at encrypted content server 220. This key sequence is then encrypted using the public key of the playback devices accessing the digital content.
  • Returning now to FIG. 3A, copy of encrypted content 301 is sent to computer 320 via Internet 350. When user 120 attempts to access encrypted content 301 using, for example, playback device 330, playback device 330 connects with license server 230 via Internet 350 and home gateway 310 and obtains a copy of the content license 302. As stated above, a portion of content license 302 comprises a sequence of keys that can be used to decrypt the piece of digital content. This sequence of keys was encrypted using the public key of playback device 330. Upon obtaining a copy of the playback license, playback device 330 decrypts the sequence of keys using its private key.
  • Playback device 330 now has a copy of the content license that describes the parameters for accessing encrypted content 301 as well as a decrypted copy of the key sequence used to encrypt the piece of digital content. If the parameters of content license 302 authorize playback device 330 to access the piece of content at that particular time, playback device 330 connects with computer 320 using home gateway 310 to access the piece of encrypted digital content. As the encrypted content is received by playback device 330, the key sequence is used to decrypt the digital content, which is then decoded by playback device and output to television 331.
  • In embodiments of the present invention, the output to television 331 is an analog signal to prevent a decrypted version of the digital content from being accessed by end user 120. Additionally, the output from the playback devices may be encoded using Macrovision™. Macrovision™ protects copyright holders from unauthorized recording of programming from videocassettes, digital Pay-Per-View (PPV) programs and Digital Video Discs (DVDs), etc. to videocassette.
  • If end user 120 decides to watch encrypted content 301 on television 341, a similar process is initiated to determine whether playback device 340 is authorized to access the digital content. For example, playback device 340 contacts license server 230 to obtain copy of content license 302. A copy of content license 302 is encrypted using the public key associated with the digital certificate of playback device 340. Content license 302 is decrypted and, if authorized, encrypted content 301 is accessed from computer 320. The encrypted digital content is then decrypted and decoded by playback device 340 and output to television 341.
  • In embodiments of the present invention, in order to reduce the possibility of an end user gaining unlimited access to a piece of digital content, each of the playback devices may synchronize its clock with a trusted entity, for example, either license server 230 or certificate authority 360. In embodiments of the present invention, a distributed clock algorithm can be sent to the playback device that provides a substantially secure and monotonically increasing notion of time on the playback device that can be updated on a regular basis. This prevents an end user from resetting their clock to an earlier time in order to continue accessing the piece of digital content. For example, by constantly resetting the clock on either computer 320 or playback device 330, a user may try to deceive the system into allowing access to the digital content after the content license has expired. By synchronizing the clock on the playback devices and/or computer 320 with a trusted entity, the opportunity for this type of security breach is reduced. Additionally, in embodiments of the present invention, content license 302 may be streamed in real time rather than stored upon playback device 330 to prevent unauthorized access to the digital content. This limits access to the decryption key to only the time periods in which encrypted content 301 is being accessed.
  • To reduce the possibility for unauthorized copying of digital content at the end users' premises, it is important that the area in which the digital content is decrypted inside the playback device is substantially inaccessible to the end user. Ideally, decrypted digital content is not accessible outside of the playback device itself. FIG. 6 is a diagram showing one embodiment of a playback device in accordance with embodiments of the present invention. In FIG. 6, encrypted content 301 is received from computer 320 (e.g., via a home network coupled with home gateway 310). An encrypted copy of content license 302 is obtained from license server 230. The encrypted copy of content license 302 also contains the key sequence needed to decrypt content 610.
  • In the embodiment of FIG. 6, a tamper detection circuit is utilized that detects an attempts to tamper or in some way access the decryption and decoding hardware (e.g., component 630 of FIG. 6). In one embodiment, if the tamper detection circuit detects tampering, it causes playback device 330 to become un-trusted by content provider 101. For example, a signal can be sent to content provider 101 or to certificate authority 360 indicating that the playback device has been tampered with. Content provider 101 can then refuse to grant a license for digital content to playback device 330.
  • FIG. 7 is a diagram showing another embodiment of a playback device. In FIG. 7, CPU 710 is coupled with decrypt and decode component 730 via PCI bus 740. Encrypted content 301 is input directly into component 730 and the decoded and decrypted analog signal is sent to CPU 710 via bus 750. This prevents obtaining a decrypted copy of the digital content by sampling the signal on PCI bus 740.
  • FIG. 8 is a flowchart of a method 800 for implementing digital rights management in accordance with embodiments of the present invention. In step 810, a content license is created defining parameters for accessing a piece of digital content. In one embodiment of the present invention, a first logical expression in the content license defines a plurality of playback devices that a recipient of the piece of digital content is authorized to use when accessing the piece of digital content. As described above, the present invention uses an SID to uniquely identify each playback device authorized to access a piece of digital content. Additionally, embodiments of the present invention utilize a certificate authority to verify the identity of each playback device to be included in the content license. Thus, embodiments of the present invention facilitate protecting the content provider's copyright privileges by making it easier to identify a particular playback device that is allowed access to a piece of digital content.
  • As described above, using a logical expression to define access parameters facilitates greater flexibility than conventional XRML statements because a single content license can allow multiple playback devices to access a single piece of digital content and at multiple time periods. This is convenient to end users who were previously required to obtain multiple content licenses if they wanted to play the piece of digital content on more than one playback device. Additionally, the end users had to determine which content license was valid for the particular playback device they were using to view the piece of digital content. Using the present invention, a user can obtain a single content license that allows utilizing a plurality of authorized playback devices to view a piece of digital content. Additionally, the end user is not forced to determine which content license is valid for a particular playback device.
  • In the embodiment of method 800, a second logical expression in the content license defines a time interval wherein the plurality of playback devices are authorized to access the piece of digital content. Additionally, the second logical expression may define a plurality of time intervals in which the plurality of playback devices are authorized to access the piece of digital content. This may also comprise defining a separate time interval for accessing the piece of digital content to a particular playback device. As described above, using a logical expression facilitates including multiple playback devices and/or multiple time intervals for accessing a piece of digital content into a single content license. Using conventional digital rights management methods, a content license describes a single piece of digital content, that can only be accessed by a particular playback device within a particular time interval.
  • In step 820 of FIG. 8, the content license is utilized to access the piece of digital content. When a user attempts to access a piece of digital content, the playback device obtains a copy of the content license. The content license also comprises the sequence of keys used to encrypt the digital content. This sequence is further encrypted using the public key of the playback device. The encrypted key sequence is decrypted using the private key of the playback device and is used by the playback device to decrypt the digital content.
  • FIG. 9 is a flowchart of a method 900 for implementing digital rights management in accordance with embodiments of the present invention. In step 910 of FIG. 9, a content license defining parameters for accessing a piece of digital content is created. In the embodiment of method 900, a first logical expression defines a plurality of time intervals wherein a recipient of a piece of digital content is authorized to access a piece of digital content. As described above, using a logical expression facilitates greater flexibility in defining access parameters to the digital content than is possible using conventional XRML statements because a single content license can be used to define multiple time intervals when a piece of digital content can be accessed. In a conventional digital rights content license, a single time interval is defined for accessing a piece of digital content. This is due to the limitations imposed by using a declarative language (e.g., XRML) to define access parameters. The present invention utilizes logical expressions (e.g., Boolean statements) to define access parameters which facilitates incorporating decision making steps into the process of determining digital rights.
  • A second logical expression in the content license defines at least one playback device authorized to access the piece of digital content during the time intervals defined in the first logical expression. In the embodiment of method 900, a certificate authority is used to verify the identity of the playback device defined in the content license. Thus, embodiments of the present invention facilitate protecting the content provider's copyright by making it easier to identify a particular playback device that is allowed access to a piece of digital content. Additionally, the playback device is identified using an identification unique to the device (e.g., a SID) to prevent unauthorized access to the piece of digital content. Additionally, the second logical expression may define a plurality of playback devices authorized to access the piece of digital content during the time intervals defined in the first logical expression of the content license.
  • In step 920 of FIG. 9, the content license is utilized to access the piece of digital content. As described above, when a user attempts to access a piece of digital content, the playback device obtains a copy of the content license. The content license also comprises the sequence of keys used to encrypt the digital content. This sequence is further encrypted using the public key of the playback device. The encrypted key sequence is decrypted using the private key of the playback device and is used by the playback device to decrypt the digital content.
  • With reference to FIG. 10, portions of the present invention are comprised of computer-readable and computer-executable instructions that reside, for example, in computer system 1000 which is used as a part of a computer network. It is appreciated that computer system 1000 of FIG. 10 is exemplary only and that the present invention can operate within a number of different computer systems including general-purpose computer systems, embedded computer systems, laptop computer systems, hand-held computer systems, and stand-alone computer systems.
  • In the present embodiment, computer system 1000 includes an address/data bus 1001 for conveying digital information between the various components, a central processor unit (CPU) 1002 for processing the digital information and instructions, a volatile main memory 1003 comprised of volatile random access memory (RAM) for storing the digital information and instructions, and a non-volatile read only memory (ROM) 1004 for storing information and instructions of a more permanent nature. In addition, computer system 1000 may also include a data storage device 1005 (e.g., a magnetic, optical, floppy, or tape drive or the like) for storing vast amounts of data. It should be noted that a software program for implementing digital rights management of the present invention can be stored either in volatile memory 1003, data storage device 1005, or in an external storage device (not shown).
  • Devices which are optionally coupled to computer system 1000 include a display device 1006 for displaying information to a computer user, an alpha-numeric input device 1007 (e.g., a keyboard), and a cursor control device 1008 (e.g., mouse, trackball, light pen, etc.) for inputting data, selections, updates, etc. Computer system 1000 can also include a mechanism for emitting an audible signal (not shown).
  • Returning still to FIG. 10, optional display device 1006 of FIG. 10 may be a liquid crystal device, cathode ray tube, or other display device suitable for creating graphic images and alpha-numeric characters recognizable to a user. Optional cursor control device 1008 allows the computer user to dynamically signal the two dimensional movement of a visible symbol (cursor) on a display screen of display device 1006. Many implementations of cursor control device 1008 are known in the art including a trackball, mouse, touch pad, joystick, or special keys on alpha-numeric input 1007 capable of signaling movement of a given direction or manner displacement. Alternatively, it will be appreciated that a cursor can be directed an/or activated via input from alpha-numeric input 1007 using special keys and key sequence commands. Alternatively, the cursor may be directed and/or activated via input from a number of specially adapted cursor directing devices.
  • Furthermore, computer system 1000 can include an input/output (I/O) signal unit (e.g., interface) 1009 for interfacing with a peripheral device 1010 (e.g., a computer network, modem, mass storage device, etc.). Accordingly, computer system 1000 may be coupled in a network, such as the Internet or a client/server environment, whereby a number of clients (e.g., personal computers, workstations, portable computers, minicomputers, terminals, etc.) are used to run processes for performing desired tasks (e.g., “creating,” “delivering,” “verifying,” “dividing,” “encrypting,” “including,” “identifying,” “using,” etc.). In particular, computer system 1000 can be coupled in a system for implementing digital rights management.
  • FIG. 11 is a flowchart of an exemplary parser process 1100 used in embodiments of the present invention. The parser process of FIG. 11 may be implemented upon the playback devices used to access digital content (e.g., playback device 330 and playback device 340 of FIG. 3) in the present invention. In step 1101 of FIG. 11, the encrypted license is input. In the embodiment of FIG. 11, content license 302 is obtained by, for example, playback device 330 when a user attempts to access a piece of digital content stored upon computer 320.
  • In step 1102 of FIG. 11, the content license is decrypted. Using its private key, playback device 330 decrypts content license 302. In one embodiment of the present invention, content license 302 may comprise a first logical expression defining a plurality of playback devices that a user can use to access a piece of digital content. A second logical expression in content license 302 defines a time interval wherein the plurality of playback devices are authorized to access the piece of digital content. In another embodiment of the present invention, content license 302 comprises a first logical expression defining a plurality of time intervals wherein the user can access a piece of digital content and a second logical expression defining at least one playback device authorized to access the piece of digital content during one of the time intervals.
  • In step 1103 of FIG. 11, a token is generated. Session tokens may be generated by playback device 330 to manage access to the piece of digital content stored upon computer 320. The information in the token describes validity periods for accessing the digital content by playback device 330.
  • In step 1104 of FIG. 11, a logical operation is performed to determine whether the UID in content license 302 describes the playback device performing the parsing process. If the UID of the playback device matches the UID described in content license 302, flowchart 1100 proceeds to step 1105. If the UID of the playback device does not match the UID described in content license 302, flowchart 1100 proceeds to step 1107.
  • In step 1105 of FIG. 11, a logical operation is performed to determine whether the current time is a valid time interval for playback device 330 to access the piece of digital content. The current time is compared with the parameters in content license 302 describing when playback device 330 can access the digital content. In embodiments of the present invention, the current time is occasionally updated from a trusted source such as content provider 101 or certificate authority 360. If the current time falls within the time interval parameters in content license 302, flowchart 1100 proceeds to step 1106. If the current time is not within the time interval parameters of content license 302, flowchart 1100 proceeds to step 1107.
  • In step 1106 of FIG. 11, the digital content stored upon computer 320 is accessed by playback device 330. Because the parameters defining access rights to the digital content have been met, the user can use playback device 330 to access the digital content.
  • In step 1107 of FIG. 11, access to the digital content is denied. Because the parameters for accessing the digital content stored upon computer 320 have not been met, playback device 330 can not be used to access the digital content.
  • The preferred embodiment of the present invention, a method and system for implementing digital rights management, is thus described. While the present invention has been described in particular embodiments, it should be appreciated that the present invention should not be construed as limited by such embodiments, but rather construed according to the following claims.

Claims (27)

1. A method of creating a content license for facilitating access to a piece of digital content comprising:
accessing a plurality of parameters wherein said plurality of parameters is operable to uniquely identify a plurality of authorized playback devices that are associated with a recipient; and
utilizing said plurality of parameters to create said content license, wherein said content license enables any one of said plurality of authorized playback devices to access said piece of digital content.
2. The method as described in claim 1, wherein said plurality of parameters is further operable to define a time interval that said plurality of authorized playback devices are authorized to access said piece of digital content.
3. The method as described in claim 1, wherein said plurality of parameters uniquely identify said plurality of authorized play devices through a unique identification of each of said plurality of playback devices.
4. The method as described in claim 1, wherein said accessing said plurality of parameters comprises:
using a logical expression that comprises a plurality of mathematical expressions.
5. The method as described in claim 1 further comprising:
transmitting said created content license to said recipient.
6. The method as described in claim 1 further comprising:
verifying an identity of said recipient of said piece of digital content.
7. The method as described in claim 6 wherein said verifying comprises:
using of a digital certificate that is substantially compliant with the X.509 standard.
8. The method as described in claim 1 further comprising:
verifying each of said plurality of playback devices using a plurality of digital certificates.
9. The method as recited in claim 8, wherein said plurality of digital certificates are substantially compliant with the X.509 standard.
10. A method of creating a content license for facilitating access to a piece of digital content comprising:
accessing a request for accessing said piece of digital content;
accessing a plurality of parameters operable to identify a plurality of authorized playback devices that belong to a client requesting said piece of digital content; and
utilizing said plurality of parameters to create said content license, wherein said content license enables any one of said plurality of authorized playback devices to access said piece of digital content.
11. The method as described in claim 10, wherein said plurality of parameters is further operable to define a time interval that said plurality of authorized playback devices are authorized to access said piece of digital content.
12. The method as described in claim 10, wherein said plurality of parameters uniquely identify said plurality of authorized play devices through a unique identification of each of said plurality of playback devices.
13. The method as described in claim 10, wherein said accessing said plurality of parameters is through use of a logical expression that comprises a plurality of mathematical expressions.
14. The method as described in claim 10 further comprising:
transmitting said created content license to said recipient.
15. The method as described in claim 10 further comprising:
verifying an identity of said recipient of said piece of digital content.
16. The method as described in claim 15 wherein said verification is through use of a digital certificate that is substantially compliant with the X.509 standard.
17. The method as described in claim 10 further comprising:
verifying each of said plurality of playback devices using a plurality of digital certificates.
18. The method as recited in claim 17, wherein said plurality of digital certificates are substantially compliant with the X.509 standard.
19. A computer system comprising:
a bus;
a memory unit coupled with said bus; and
a processor coupled with said bus, said processor for executing a method of creating a content license for facilitating access to a piece of digital content comprising:
accessing a plurality of parameters wherein said plurality of parameters is operable to uniquely identify a plurality of authorized playback devices that belong to a recipient; and
utilizing said plurality of parameters to create said content license, wherein said content license enables any one of said plurality of authorized playback devices to access said piece of digital content.
20. The computer system as described in claim 19, wherein said plurality of parameters is further operable to define a time interval that said plurality of authorized playback devices are authorized to access said piece of digital content.
21. The computer system as described in claim 19, wherein said plurality of parameters uniquely identify said plurality of authorized play devices through a unique identification of each of said plurality of playback devices.
22. The computer system as described in claim 19, wherein said accessing said plurality of parameters comprises using a logical expression that comprises a plurality of mathematical expressions.
23. The computer system as described in claim 19, wherein said method further comprises:
transmitting said created content license to said recipient.
24. The computer system as described in claim 19, wherein said method further comprises:
verifying an identity of said recipient of said piece of digital content.
25. The computer system as described in claim 24 wherein said verification comprises using a digital certificate that is substantially compliant with the X.509 standard.
26. The computer system as described in claim 19, wherein said method further comprises:
verifying each of said plurality of playback devices using a plurality of digital certificates.
27. The computer system as recited in claim 26, wherein said plurality of digital certificates is substantially compliant with the X.509 standard.
US11/895,870 2003-03-18 2007-08-27 Method and system for implementing digital rights management Abandoned US20070300310A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US11/895,870 US20070300310A1 (en) 2003-03-18 2007-08-27 Method and system for implementing digital rights management

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/391,718 US7278165B2 (en) 2003-03-18 2003-03-18 Method and system for implementing digital rights management
US11/895,870 US20070300310A1 (en) 2003-03-18 2007-08-27 Method and system for implementing digital rights management

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US10/391,718 Continuation US7278165B2 (en) 2003-03-18 2003-03-18 Method and system for implementing digital rights management

Publications (1)

Publication Number Publication Date
US20070300310A1 true US20070300310A1 (en) 2007-12-27

Family

ID=32987744

Family Applications (2)

Application Number Title Priority Date Filing Date
US10/391,718 Active 2025-03-24 US7278165B2 (en) 2003-03-18 2003-03-18 Method and system for implementing digital rights management
US11/895,870 Abandoned US20070300310A1 (en) 2003-03-18 2007-08-27 Method and system for implementing digital rights management

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US10/391,718 Active 2025-03-24 US7278165B2 (en) 2003-03-18 2003-03-18 Method and system for implementing digital rights management

Country Status (2)

Country Link
US (2) US7278165B2 (en)
WO (1) WO2004084017A2 (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080133715A1 (en) * 2006-11-30 2008-06-05 Sony Corporation Content playback system, playback device, playback switching method, and program
US20080177822A1 (en) * 2006-12-25 2008-07-24 Sony Corporation Content playback system, playback device, playback control method and program
US20100071070A1 (en) * 2005-01-07 2010-03-18 Amandeep Jawa Managing Sharing of Media Content From a Server Computer to One or More of a Plurality of Client Computers Across the Computer Network
US20110158411A1 (en) * 2009-12-29 2011-06-30 General Instrument Corporation Registering client devices with a registration server
US8935809B2 (en) 2012-06-22 2015-01-13 International Business Machines Corporation Consumption based digital content rental expiration
US20160364551A1 (en) * 2015-06-15 2016-12-15 Samsung Electronics Co., Ltd. Enabling content protection over broadcast channels
US20190028739A1 (en) * 2017-07-18 2019-01-24 Opentv, Inc. Content rating system implementation using license rotation

Families Citing this family (95)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4221286B2 (en) * 2001-06-06 2009-02-12 ヤフー! インコーポレイテッド System and method for managing access to digital content and streaming data
JP4186512B2 (en) * 2002-05-20 2008-11-26 ソニー株式会社 Service providing system, device terminal and processing method thereof, authentication device and method, service providing device and method, and program
US7181010B2 (en) * 2002-05-24 2007-02-20 Scientific-Atlanta, Inc. Apparatus for entitling remote client devices
US7861082B2 (en) * 2002-05-24 2010-12-28 Pinder Howard G Validating client-receivers
AU2003257347A1 (en) * 2002-08-27 2004-03-19 Barix Ag System for managing and outputting audio data
JP2004117798A (en) * 2002-09-26 2004-04-15 Yamaha Corp Content providing system, information processing terminal, and processing program
US7895337B2 (en) * 2002-12-26 2011-02-22 Oracle International Corporation Systems and methods of generating a content aware interface
US8666524B2 (en) 2003-01-02 2014-03-04 Catch Media, Inc. Portable music player and transmitter
US8732086B2 (en) * 2003-01-02 2014-05-20 Catch Media, Inc. Method and system for managing rights for digital music
US8644969B2 (en) 2003-01-02 2014-02-04 Catch Media, Inc. Content provisioning and revenue disbursement
US8918195B2 (en) 2003-01-02 2014-12-23 Catch Media, Inc. Media management and tracking
US7370212B2 (en) 2003-02-25 2008-05-06 Microsoft Corporation Issuing a publisher use license off-line in a digital rights management (DRM) system
US20050108176A1 (en) * 2003-04-30 2005-05-19 Jarol Scott B. Configurable rules based content item consumption
KR101244308B1 (en) * 2003-12-08 2013-03-18 삼성전자주식회사 Encoding Method for moving picture file and the Digital right management using the same
US9286445B2 (en) * 2003-12-18 2016-03-15 Red Hat, Inc. Rights management system
EP1555592A3 (en) * 2004-01-13 2014-05-07 Yamaha Corporation Contents data management apparatus
US7676846B2 (en) * 2004-02-13 2010-03-09 Microsoft Corporation Binding content to an entity
EP1564994A1 (en) * 2004-02-13 2005-08-17 Nagravision S.A. Method for managing rights of subscribers to a multi-operator pay television system
US20050187879A1 (en) * 2004-02-19 2005-08-25 Microsoft Corporation Persistent license for stored content
EP1726116A2 (en) * 2004-03-15 2006-11-29 Matsushita Electric Industrial Co., Ltd. Encryption device and key distribution device and system
KR101043336B1 (en) * 2004-03-29 2011-06-22 삼성전자주식회사 Method and apparatus for acquiring and removing informations of digital right objects
KR20050096040A (en) * 2004-03-29 2005-10-05 삼성전자주식회사 Method for playbacking content using portable storage by digital rights management, and portable storage for the same
US7568096B2 (en) * 2004-04-23 2009-07-28 Microsoft Corporation Rendering digital content in a content protection system according to a plurality of chained digital licenses
US20060242406A1 (en) 2005-04-22 2006-10-26 Microsoft Corporation Protected computing environment
US7676590B2 (en) * 2004-05-03 2010-03-09 Microsoft Corporation Background transcoding
EP1594316A1 (en) * 2004-05-03 2005-11-09 Thomson Licensing Certificate validity checking
DE102004024869A1 (en) * 2004-05-19 2006-01-19 Siemens Ag Method for prioritizing telecommunication networks in a telecommunication terminal
KR101100391B1 (en) * 2004-06-01 2012-01-02 삼성전자주식회사 Method for playbacking content using portable storage by digital rights management, and portable storage for the same
US20060036554A1 (en) * 2004-08-12 2006-02-16 Microsoft Corporation Content and license delivery to shared devices
US7602913B2 (en) 2004-08-18 2009-10-13 Scientific - Atlanta, Inc. Retrieval and transfer of encrypted hard drive content from DVR set-top box utilizing second DVR set-top box
US7602914B2 (en) 2004-08-18 2009-10-13 Scientific-Atlanta, Inc. Utilization of encrypted hard drive content by one DVR set-top box when recorded by another
US7630499B2 (en) * 2004-08-18 2009-12-08 Scientific-Atlanta, Inc. Retrieval and transfer of encrypted hard drive content from DVR set-top boxes
US11734393B2 (en) 2004-09-20 2023-08-22 Warner Bros. Entertainment Inc. Content distribution with renewable content protection
US20060064386A1 (en) * 2004-09-20 2006-03-23 Aaron Marking Media on demand via peering
US8793762B2 (en) 2004-09-20 2014-07-29 Secure Content Storage Association Llc Simple nonautonomous peering network media
US20060080257A1 (en) * 2004-10-08 2006-04-13 Level 3 Communications, Inc. Digital content distribution framework
EP1811423A4 (en) * 2004-10-15 2011-10-05 Vodafone Plc Linking operation method, and communication terminal device
KR100677152B1 (en) * 2004-11-17 2007-02-02 삼성전자주식회사 Method for transmitting content in home network using user-binding
US7669121B2 (en) * 2005-01-19 2010-02-23 Microsoft Corporation Transcode matrix
US7634664B2 (en) * 2005-02-15 2009-12-15 Hewlett-Packard Development Company, L.P. Devices, systems, and methods for secure download of data
US8438645B2 (en) 2005-04-27 2013-05-07 Microsoft Corporation Secure clock with grace periods
US8725646B2 (en) 2005-04-15 2014-05-13 Microsoft Corporation Output protection levels
US7738766B2 (en) * 2005-04-18 2010-06-15 Microsoft Corporation Sanctioned transcoding of digital-media content
US7558463B2 (en) * 2005-04-18 2009-07-07 Microsoft Corporation Retention of information about digital-media rights in transformed digital media content
US9436804B2 (en) 2005-04-22 2016-09-06 Microsoft Technology Licensing, Llc Establishing a unique session key using a hardware functionality scan
US9363481B2 (en) 2005-04-22 2016-06-07 Microsoft Technology Licensing, Llc Protected media pipeline
US20060265758A1 (en) 2005-05-20 2006-11-23 Microsoft Corporation Extensible media rights
US7924913B2 (en) 2005-09-15 2011-04-12 Microsoft Corporation Non-realtime data transcoding of multimedia content
US8306918B2 (en) 2005-10-11 2012-11-06 Apple Inc. Use of media storage structure with multiple pieces of content in a content-distribution system
CN100461195C (en) * 2005-12-07 2009-02-11 华为技术有限公司 Digital copyright managing method
US20070204350A1 (en) * 2006-02-18 2007-08-30 Gibson Guitar Corp. Secure Internet
US20070223392A1 (en) * 2006-03-21 2007-09-27 Samsung Electronics Co., Ltd. Method and device for checking validity period of certificate and method and device for displaying content information
US8208796B2 (en) 2006-04-17 2012-06-26 Prus Bohdan S Systems and methods for prioritizing the storage location of media data
JP2009535735A (en) * 2006-05-02 2009-10-01 ブロードオン コミュニケーションズ コーポレーション Content management system and method
US8224751B2 (en) 2006-05-03 2012-07-17 Apple Inc. Device-independent management of cryptographic information
US10528705B2 (en) * 2006-05-09 2020-01-07 Apple Inc. Determining validity of subscription to use digital content
US20070265977A1 (en) * 2006-05-12 2007-11-15 Chris Read Method and system for improved digital rights management
US20070289028A1 (en) * 2006-06-12 2007-12-13 Software Spectrum, Inc. Time Bound Entitlement for Digital Content Distribution Framework
US10229276B2 (en) * 2006-06-12 2019-03-12 Adobe Inc. Method and apparatus for document author control of digital rights management
US20070288389A1 (en) * 2006-06-12 2007-12-13 Vaughan Michael J Version Compliance System
US9277295B2 (en) 2006-06-16 2016-03-01 Cisco Technology, Inc. Securing media content using interchangeable encryption key
US9137480B2 (en) 2006-06-30 2015-09-15 Cisco Technology, Inc. Secure escrow and recovery of media device content keys
US7978720B2 (en) 2006-06-30 2011-07-12 Russ Samuel H Digital media device having media content transfer capability
US20080005204A1 (en) * 2006-06-30 2008-01-03 Scientific-Atlanta, Inc. Systems and Methods for Applying Retention Rules
US8296240B2 (en) * 2007-03-22 2012-10-23 Sony Corporation Digital rights management dongle
US20080271165A1 (en) * 2007-04-27 2008-10-30 Microsoft Corporation Parameter-based interpretation of drm license policy
US8347098B2 (en) * 2007-05-22 2013-01-01 Apple Inc. Media storage structures for storing content, devices for using such structures, systems for distributing such structures
US9311492B2 (en) 2007-05-22 2016-04-12 Apple Inc. Media storage structures for storing content, devices for using such structures, systems for distributing such structures
US8108680B2 (en) * 2007-07-23 2012-01-31 Murray Mark R Preventing unauthorized poaching of set top box assets
FR2920559B1 (en) * 2007-08-30 2011-07-01 Xooloo DISTRIBUTED DATABASE
US7949133B2 (en) * 2007-09-26 2011-05-24 Pinder Howard G Controlled cryptoperiod timing to reduce decoder processing load
US7870273B2 (en) * 2007-09-28 2011-01-11 Disney Enterprises, Inc. Method and system for indentifying a device implementing a digital rights management protocol
US20090245520A1 (en) * 2008-03-27 2009-10-01 Mediatek Inc. Digital content protection methods
GB2458568B (en) * 2008-03-27 2012-09-19 Covertix Ltd System and method for dynamically enforcing security policies on electronic files
US8769675B2 (en) * 2008-05-13 2014-07-01 Apple Inc. Clock roll forward detection
US10748208B2 (en) * 2008-06-17 2020-08-18 Sony Interactive Entertainment Inc. Scheme for processing rental content in an information processing apparatus
KR101528856B1 (en) * 2008-08-14 2015-06-15 삼성전자주식회사 Contents receiving apparatus obtaining application control information and method thereof
US8413256B2 (en) * 2008-08-26 2013-04-02 Cox Communications, Inc. Content protection and digital rights management (DRM)
US20100057674A1 (en) * 2008-08-27 2010-03-04 Honeywell International, Inc. Floating licenses for a real time license system
US20100162414A1 (en) * 2008-12-23 2010-06-24 General Instrument Corporation Digital Rights Management for Differing Domain-Size Restrictions
US20100169347A1 (en) * 2008-12-31 2010-07-01 Tandberg Television, Inc. Systems and methods for communicating segments of media content
US20100169942A1 (en) * 2008-12-31 2010-07-01 Tandberg Television, Inc. Systems, methods, and apparatus for tagging segments of media content
US8185477B2 (en) * 2008-12-31 2012-05-22 Ericsson Television Inc. Systems and methods for providing a license for media content over a network
US9003512B2 (en) 2009-01-16 2015-04-07 Cox Communications, Inc. Content protection management system
US8171565B2 (en) * 2009-08-18 2012-05-01 Condel International Technologies Inc. Systems and methods for locally generating license and activating DRM agent
US8464356B2 (en) * 2009-09-02 2013-06-11 Sony Corporation Personal library on net
WO2011082489A1 (en) * 2010-01-06 2011-07-14 Vitrium Systems Inc. Method and system of providing a viewing experience with respect to a document having read-only content
EP2622553A4 (en) * 2010-09-27 2015-08-12 Express In Music Pte Ltd Method and apparatus for streaming rights-managed content directly to a target device over a network
US9782674B2 (en) 2011-01-07 2017-10-10 Ganz Synchronizing system for gameplaying
EP2479696A1 (en) * 2011-01-19 2012-07-25 British Telecommunications public limited company Data security
EP2530944A1 (en) * 2011-05-31 2012-12-05 Alcatel-Lucent España, S.A. Method for authorising
US9577824B2 (en) * 2011-09-23 2017-02-21 CSC Holdings, LLC Delivering a content item from a server to a device
US9071856B2 (en) * 2012-05-31 2015-06-30 Arris Technology, Inc. Policy enforcement for multiple devices using an audience definition
US10680833B2 (en) 2016-02-26 2020-06-09 Apple Inc. Obtaining and using time information on a secure element (SE)
US10630490B2 (en) * 2016-02-26 2020-04-21 Apple Inc. Obtaining and using time information on a secure element (SE)

Citations (52)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6230267B1 (en) * 1997-05-15 2001-05-08 Mondex International Limited IC card transportation key set
US20020013940A1 (en) * 2000-05-11 2002-01-31 Yuji Tsukamoto Content rental system
US20020019814A1 (en) * 2001-03-01 2002-02-14 Krishnamurthy Ganesan Specifying rights in a digital rights license according to events
US20020046181A1 (en) * 1998-12-28 2002-04-18 Guy A. Story License management for digital content
US20020065780A1 (en) * 2000-04-05 2002-05-30 Isogon Corp. License compliance verification system
US20020083318A1 (en) * 2000-12-26 2002-06-27 Larose Gordon Edward Method and system for software integrity control using secure hardware assist
US20020107941A1 (en) * 1996-09-12 2002-08-08 Audible, Inc. Apparatus and method for authoring and maintaining a library of content and targeting content to a playback device
US20020152393A1 (en) * 2001-01-09 2002-10-17 Johannes Thoma Secure extensible computing environment
US20030004885A1 (en) * 2001-06-29 2003-01-02 International Business Machines Corporation Digital rights management
US20030014630A1 (en) * 2001-06-27 2003-01-16 Spencer Donald J. Secure music delivery
US20030018491A1 (en) * 2001-07-17 2003-01-23 Tohru Nakahara Content usage device and network system, and license information acquisition method
US20030028639A1 (en) * 2001-08-03 2003-02-06 Masaya Yamamoto Access control system
US20030046568A1 (en) * 2001-09-06 2003-03-06 Riddick Christopher J. Media protection system and method and hardware decryption module used therein
US6550001B1 (en) * 1998-10-30 2003-04-15 Intel Corporation Method and implementation of statistical detection of read after write and write after write hazards
US6550011B1 (en) * 1998-08-05 2003-04-15 Hewlett Packard Development Company, L.P. Media content protection utilizing public key cryptography
US20030078891A1 (en) * 2001-10-18 2003-04-24 Capitant Patrice J. Systems and methods for providing digital rights management compatibility
US6615347B1 (en) * 1998-06-30 2003-09-02 Verisign, Inc. Digital certificate cross-referencing
US20030167392A1 (en) * 2000-06-16 2003-09-04 Fransdonk Robert W. Method and system to secure content for distribution via a network
US6618808B1 (en) * 1996-04-01 2003-09-09 Copyright Clearance Center, Inc. Electronic rights management and authorization system
US20030233561A1 (en) * 2002-06-12 2003-12-18 Microsoft Corporation Publishing content in connection with digital rights management (DRM) architecture
US20040148424A1 (en) * 2003-01-24 2004-07-29 Aaron Berkson Digital media distribution system with expiring advertisements
US6779115B1 (en) * 2000-02-18 2004-08-17 Digital5, Inc. Portable device using a smart card to receive and decrypt digital data
US20040168056A1 (en) * 2003-02-26 2004-08-26 Microsoft Corporation Revocation of a certificate and exclusion of other principals in a digital rights management (DRM) system based on a revocation list from a delegated revocation authority
US20040171533A1 (en) * 2000-02-29 2004-09-02 Barbara Zehentner Methods and compositions for regulating adiopocytes
US20040172533A1 (en) * 2003-02-27 2004-09-02 Microsoft Corporation Tying a digital license to a user and tying the user to multiple computing devices in a digital rights management (DRM) sytem
US20040198494A1 (en) * 2003-04-03 2004-10-07 Igt Secure gaming system
US20050137984A1 (en) * 2001-05-31 2005-06-23 Mai Nguyen System and method for rights offering and granting using shared state variables
US6920567B1 (en) * 1999-04-07 2005-07-19 Viatech Technologies Inc. System and embedded license control mechanism for the creation and distribution of digital content files and enforcement of licensed use of the digital content files
US6944766B2 (en) * 2000-05-02 2005-09-13 Canon Kabushiki Kaisha Information processing apparatus
US6944776B1 (en) * 1999-04-12 2005-09-13 Microsoft Corporation System and method for data rights management
US20050210261A1 (en) * 2002-05-22 2005-09-22 Kamperman Franciscus Lucas A J Digital rights management method and system
US6981262B1 (en) * 2000-06-27 2005-12-27 Microsoft Corporation System and method for client interaction in a multi-level rights-management architecture
US20050289072A1 (en) * 2004-06-29 2005-12-29 Vinay Sabharwal System for automatic, secure and large scale software license management over any computer network
US20060047603A1 (en) * 2002-10-22 2006-03-02 Koninklijke Philips Electronics N.V. System and method for managing digital rights
US20060059105A1 (en) * 2004-09-16 2006-03-16 Sony Corporation Move component, program, and move method
US7020704B1 (en) * 1999-10-05 2006-03-28 Lipscomb Kenneth O System and method for distributing media assets to user devices via a portal synchronized by said user devices
US20060069749A1 (en) * 1997-12-05 2006-03-30 Pinpoint Incorporated Location enhanced information delivery system
US7028127B2 (en) * 2000-01-18 2006-04-11 Samsung Electronics Co., Ltd. Method of controlling portable personal device having facilities for storing and playing digital contents by computer and portable personal device operation method therefor
US7028009B2 (en) * 2001-01-17 2006-04-11 Contentguardiholdings, Inc. Method and apparatus for distributing enforceable property rights
US7028187B1 (en) * 1991-11-15 2006-04-11 Citibank, N.A. Electronic transaction apparatus for electronic commerce
US7136945B2 (en) * 2003-03-31 2006-11-14 Sony Corporation Method and apparatus for extending protected content access with peer to peer applications
US20070038576A1 (en) * 2005-08-12 2007-02-15 Lg Electronics Inc. Method for moving rights object in digital rights management
US20070073694A1 (en) * 2005-09-26 2007-03-29 Jerome Picault Method and apparatus of determining access rights to content items
US20070079380A1 (en) * 2003-10-27 2007-04-05 Matsushita Electric Industrial Co., Ltd Content distribution server and content playback control terminal
US20070089151A1 (en) * 2001-06-27 2007-04-19 Mci, Llc. Method and system for delivery of digital media experience via common instant communication clients
US20070089174A1 (en) * 2005-10-14 2007-04-19 David M. Bader Content management system and method for DRM enforcement in a client-server system
US20070094737A1 (en) * 2003-10-29 2007-04-26 Sony Ericsson Mobile Communications Ab Binding content to a user
US20070219917A1 (en) * 2004-03-29 2007-09-20 Smart Internet Tecnoogy Crc Pty Limited Digital License Sharing System and Method
US20070255580A1 (en) * 2004-06-22 2007-11-01 Ebooks Corporation Limited Lending System and Method
US20080071690A1 (en) * 2006-09-04 2008-03-20 Samsung Electronics Co., Ltd. Contents decryption method using DRM card
US7415439B2 (en) * 2001-07-06 2008-08-19 Nokia Corporation Digital rights management in a mobile communications environment
US7493291B2 (en) * 2003-02-06 2009-02-17 Nokia Corporation System and method for locally sharing subscription of multimedia content

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1045388A1 (en) * 1999-04-16 2000-10-18 Deutsche Thomson-Brandt Gmbh Method and apparatus for preventing illegal usage of multimedia content
DE60320696D1 (en) * 2002-03-15 2008-06-19 Yamaha Corp Content distribution system by means of terminal identification embedded in licenses

Patent Citations (52)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7028187B1 (en) * 1991-11-15 2006-04-11 Citibank, N.A. Electronic transaction apparatus for electronic commerce
US6618808B1 (en) * 1996-04-01 2003-09-09 Copyright Clearance Center, Inc. Electronic rights management and authorization system
US20020107941A1 (en) * 1996-09-12 2002-08-08 Audible, Inc. Apparatus and method for authoring and maintaining a library of content and targeting content to a playback device
US6230267B1 (en) * 1997-05-15 2001-05-08 Mondex International Limited IC card transportation key set
US20060069749A1 (en) * 1997-12-05 2006-03-30 Pinpoint Incorporated Location enhanced information delivery system
US6615347B1 (en) * 1998-06-30 2003-09-02 Verisign, Inc. Digital certificate cross-referencing
US6550011B1 (en) * 1998-08-05 2003-04-15 Hewlett Packard Development Company, L.P. Media content protection utilizing public key cryptography
US6550001B1 (en) * 1998-10-30 2003-04-15 Intel Corporation Method and implementation of statistical detection of read after write and write after write hazards
US20020046181A1 (en) * 1998-12-28 2002-04-18 Guy A. Story License management for digital content
US6920567B1 (en) * 1999-04-07 2005-07-19 Viatech Technologies Inc. System and embedded license control mechanism for the creation and distribution of digital content files and enforcement of licensed use of the digital content files
US6944776B1 (en) * 1999-04-12 2005-09-13 Microsoft Corporation System and method for data rights management
US7020704B1 (en) * 1999-10-05 2006-03-28 Lipscomb Kenneth O System and method for distributing media assets to user devices via a portal synchronized by said user devices
US7028127B2 (en) * 2000-01-18 2006-04-11 Samsung Electronics Co., Ltd. Method of controlling portable personal device having facilities for storing and playing digital contents by computer and portable personal device operation method therefor
US6779115B1 (en) * 2000-02-18 2004-08-17 Digital5, Inc. Portable device using a smart card to receive and decrypt digital data
US20040171533A1 (en) * 2000-02-29 2004-09-02 Barbara Zehentner Methods and compositions for regulating adiopocytes
US20020065780A1 (en) * 2000-04-05 2002-05-30 Isogon Corp. License compliance verification system
US6944766B2 (en) * 2000-05-02 2005-09-13 Canon Kabushiki Kaisha Information processing apparatus
US20020013940A1 (en) * 2000-05-11 2002-01-31 Yuji Tsukamoto Content rental system
US20030167392A1 (en) * 2000-06-16 2003-09-04 Fransdonk Robert W. Method and system to secure content for distribution via a network
US6981262B1 (en) * 2000-06-27 2005-12-27 Microsoft Corporation System and method for client interaction in a multi-level rights-management architecture
US20020083318A1 (en) * 2000-12-26 2002-06-27 Larose Gordon Edward Method and system for software integrity control using secure hardware assist
US20020152393A1 (en) * 2001-01-09 2002-10-17 Johannes Thoma Secure extensible computing environment
US7028009B2 (en) * 2001-01-17 2006-04-11 Contentguardiholdings, Inc. Method and apparatus for distributing enforceable property rights
US20020019814A1 (en) * 2001-03-01 2002-02-14 Krishnamurthy Ganesan Specifying rights in a digital rights license according to events
US20050137984A1 (en) * 2001-05-31 2005-06-23 Mai Nguyen System and method for rights offering and granting using shared state variables
US20070089151A1 (en) * 2001-06-27 2007-04-19 Mci, Llc. Method and system for delivery of digital media experience via common instant communication clients
US20030014630A1 (en) * 2001-06-27 2003-01-16 Spencer Donald J. Secure music delivery
US20030004885A1 (en) * 2001-06-29 2003-01-02 International Business Machines Corporation Digital rights management
US7415439B2 (en) * 2001-07-06 2008-08-19 Nokia Corporation Digital rights management in a mobile communications environment
US20030018491A1 (en) * 2001-07-17 2003-01-23 Tohru Nakahara Content usage device and network system, and license information acquisition method
US20030028639A1 (en) * 2001-08-03 2003-02-06 Masaya Yamamoto Access control system
US20030046568A1 (en) * 2001-09-06 2003-03-06 Riddick Christopher J. Media protection system and method and hardware decryption module used therein
US20030078891A1 (en) * 2001-10-18 2003-04-24 Capitant Patrice J. Systems and methods for providing digital rights management compatibility
US20050210261A1 (en) * 2002-05-22 2005-09-22 Kamperman Franciscus Lucas A J Digital rights management method and system
US20030233561A1 (en) * 2002-06-12 2003-12-18 Microsoft Corporation Publishing content in connection with digital rights management (DRM) architecture
US20060047603A1 (en) * 2002-10-22 2006-03-02 Koninklijke Philips Electronics N.V. System and method for managing digital rights
US20040148424A1 (en) * 2003-01-24 2004-07-29 Aaron Berkson Digital media distribution system with expiring advertisements
US7493291B2 (en) * 2003-02-06 2009-02-17 Nokia Corporation System and method for locally sharing subscription of multimedia content
US20040168056A1 (en) * 2003-02-26 2004-08-26 Microsoft Corporation Revocation of a certificate and exclusion of other principals in a digital rights management (DRM) system based on a revocation list from a delegated revocation authority
US20040172533A1 (en) * 2003-02-27 2004-09-02 Microsoft Corporation Tying a digital license to a user and tying the user to multiple computing devices in a digital rights management (DRM) sytem
US7136945B2 (en) * 2003-03-31 2006-11-14 Sony Corporation Method and apparatus for extending protected content access with peer to peer applications
US20040198494A1 (en) * 2003-04-03 2004-10-07 Igt Secure gaming system
US20070079380A1 (en) * 2003-10-27 2007-04-05 Matsushita Electric Industrial Co., Ltd Content distribution server and content playback control terminal
US20070094737A1 (en) * 2003-10-29 2007-04-26 Sony Ericsson Mobile Communications Ab Binding content to a user
US20070219917A1 (en) * 2004-03-29 2007-09-20 Smart Internet Tecnoogy Crc Pty Limited Digital License Sharing System and Method
US20070255580A1 (en) * 2004-06-22 2007-11-01 Ebooks Corporation Limited Lending System and Method
US20050289072A1 (en) * 2004-06-29 2005-12-29 Vinay Sabharwal System for automatic, secure and large scale software license management over any computer network
US20060059105A1 (en) * 2004-09-16 2006-03-16 Sony Corporation Move component, program, and move method
US20070038576A1 (en) * 2005-08-12 2007-02-15 Lg Electronics Inc. Method for moving rights object in digital rights management
US20070073694A1 (en) * 2005-09-26 2007-03-29 Jerome Picault Method and apparatus of determining access rights to content items
US20070089174A1 (en) * 2005-10-14 2007-04-19 David M. Bader Content management system and method for DRM enforcement in a client-server system
US20080071690A1 (en) * 2006-09-04 2008-03-20 Samsung Electronics Co., Ltd. Contents decryption method using DRM card

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100071070A1 (en) * 2005-01-07 2010-03-18 Amandeep Jawa Managing Sharing of Media Content From a Server Computer to One or More of a Plurality of Client Computers Across the Computer Network
US20080133715A1 (en) * 2006-11-30 2008-06-05 Sony Corporation Content playback system, playback device, playback switching method, and program
US20080177822A1 (en) * 2006-12-25 2008-07-24 Sony Corporation Content playback system, playback device, playback control method and program
US8316154B2 (en) 2006-12-25 2012-11-20 Sony Corporation Content playback system, playback device, playback control method and program
US20110158411A1 (en) * 2009-12-29 2011-06-30 General Instrument Corporation Registering client devices with a registration server
US8364964B2 (en) * 2009-12-29 2013-01-29 General Instrument Corporation Registering client devices with a registration server
US8935809B2 (en) 2012-06-22 2015-01-13 International Business Machines Corporation Consumption based digital content rental expiration
US20160364551A1 (en) * 2015-06-15 2016-12-15 Samsung Electronics Co., Ltd. Enabling content protection over broadcast channels
CN107787493A (en) * 2015-06-15 2018-03-09 三星电子株式会社 Method and apparatus for enabling content protecting by broadcast channel
US10528707B2 (en) * 2015-06-15 2020-01-07 Samsung Electronics Co., Ltd. Enabling content protection over broadcast channels
US20190028739A1 (en) * 2017-07-18 2019-01-24 Opentv, Inc. Content rating system implementation using license rotation

Also Published As

Publication number Publication date
US20040187014A1 (en) 2004-09-23
WO2004084017A3 (en) 2005-01-27
WO2004084017A2 (en) 2004-09-30
US7278165B2 (en) 2007-10-02

Similar Documents

Publication Publication Date Title
US7278165B2 (en) Method and system for implementing digital rights management
US7400729B2 (en) Secure delivery of encrypted digital content
US8474054B2 (en) Systems and methods for conditional access and digital rights management
KR100966970B1 (en) Method of updating a revocation list of noncompliant keys, appliances or modules in a secure system for broadcasting content
CA2428953C (en) Secure media path methods, systems, and architecture
US10055553B2 (en) PC secure video path
US20090199287A1 (en) Systems and methods for conditional access and digital rights management
US20040151315A1 (en) Streaming media security system and method
US7650312B2 (en) Method and system to enable continuous monitoring of integrity and validity of a digital content
KR101406350B1 (en) Method for managing consumption of digital contents within a client domain and devices implementing this method
US20070192810A1 (en) Encrypting Content In A Tuner Device And Analyzing Content Protection Policy
US20110113443A1 (en) IP TV With DRM
US20100217976A1 (en) Method and apparatus for importing content
KR20050050085A (en) Method for verifying validity of domestic digital network key
US20210258624A1 (en) Systems and methods for managing access to content assets

Legal Events

Date Code Title Description
STCB Information on status: application discontinuation

Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION