专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

61. 发明授权

US08364951B2 System for digital rights management using distributed provisioning and authentication 有权
标题翻译：使用分布式配置和认证的数字版权管理系统
公开(公告)号：US08364951B2
公开(公告)日：2013-01-29
申请号：US10334606
申请日：2002-12-30
申请人： Petr Peterka , Alexander Medvinsky
发明人： Petr Peterka , Alexander Medvinsky
IPC分类号： H04L9/00
CPC分类号： H04L63/062 , H04L63/0807 , H04L63/0823 , H04L2463/101
摘要： A digital rights management system (DRM) for restricting and permitting content access in a digital content distribution network such as a network used to deliver television programming. The DRM uses distributed authentication and provisioning so that the potentially many different entities involved in the content distribution network can have localized management and control. Distributed authentication can use single or multiple instances of authentication services. A ticket granting service (TGS) is used to allow clients to request services. In one approach, multiple authentication services use a common key that is known to the TGS. In another approach, unique keys are provided to each authentication service and these keys are communicated to the TGS. Distributed provisioning allows different entities to grant access rights or other resources. Provisioning service (PS) processes can execute at multiple different physical locations. Synchronization among the different PSs is provided by a managing entity or in a peer-to-peer transfer to help ensure the uniqueness of user IDs. New clients can make an initialization request from a key management system via an appropriate protocol. The requests can be made from a single, dedicated authentication service, from an authentication service associated with a specific provisioning service, or from multiple authentication services in the network.
摘要翻译：一种数字版权管理系统（DRM），用于限制和许可数字内容分发网络中的内容访问，例如用于传送电视节目的网络。 DRM使用分布式认证和配置，使得涉及内容分发网络的潜在许多不同实体可以具有本地化的管理和控制。分布式身份验证可以使用单个或多个身份验证服务实例。票务授予服务（TGS）用于允许客户端请求服务。在一种方法中，多个认证服务使用TGS已知的公共密钥。在另一种方法中，向每个认证服务提供唯一的密钥，并将这些密钥通信给TGS。分布式配置允许不同的实体授予访问权限或其他资源。配置服务（PS）进程可以在多个不同的物理位置执行。不同PS之间的同步由管理实体或对等传输提供，以帮助确保用户ID的唯一性。新客户端可以通过适当的协议从密钥管理系统发出初始化请求。可以从单个专用认证服务，从与特定供应服务相关联的认证服务或从网络中的多个认证服务进行请求。

62. 发明授权

US08266684B2 Tokenized resource access 有权
标题翻译：令牌化的资源访问
公开(公告)号：US08266684B2
公开(公告)日：2012-09-11
申请号：US12242150
申请日：2008-09-30
申请人： Daniel E. Kline , Alexander Medvinsky
发明人： Daniel E. Kline , Alexander Medvinsky
IPC分类号： G06F21/00
CPC分类号： G06F21/33 , G01R31/31705
摘要： A method and system for unlocking diagnostic functions in a hardware device for a user. The method obtains a signed permission object for the hardware device, and validates the signed permission object. A memory of the hardware device stores a device identifier and a last recorded sequence number. The signed permission object includes a sequence number and is associated with an expiration counter having an initial value that indicates a lifetime for the signed permission object. When the signed permission object is valid, the method updates the expiration counter to decrease the lifetime of the signed permission object, stores the sequence number associated with the signed permission object as the last recorded sequence number in the hardware device, and unlocks the diagnostic functions for the user based on the signed permission object.
摘要翻译：一种用于在用户的硬件设备中解锁诊断功能的方法和系统。该方法获取硬件设备的签名许可对象，并验证签名的权限对象。硬件设备的存储器存储设备标识符和最后记录的序列号。签名的权限对象包括序列号，并且与具有指示签名的许可对象的生命周期的初始值的到期计数器相关联。当签名的权限对象有效时，该方法更新到期计数器以减少签名的权限对象的生命周期，将与签名的许可对象相关联的序列号作为最后记录的序列号存储在硬件设备中，并解锁诊断功能为用户基于签名的权限对象。

63. 发明申请

US20100217964A1 METHOD AND APPARATUS FOR CONTROLLING ENABLEMENT OF JTAG INTERFACE 有权
标题翻译：用于控制JTAG接口启动的方法和装置
公开(公告)号：US20100217964A1
公开(公告)日：2010-08-26
申请号：US12391488
申请日：2009-02-24
申请人： Petr Peterka , Alexander Medvinsky
发明人： Petr Peterka , Alexander Medvinsky
IPC分类号： H04L9/32 , G06F15/177 , G06F12/14
CPC分类号： G01R31/318555 , G01R31/31719
摘要： A method, device and system for controlling JTAG interface enablement within a communication device. The JTAG interface can be selectively enabled based on the receipt of an encrypted access token generated by an access token server. The access token server generates the access token in response to an end user providing appropriate device-specific information. The access token includes appropriate information that, upon appropriate authentication and decryption, can temporarily device bind the boot code image of the device in a manner that enables the JTAG interface. Alternatively, the access token includes appropriate information that instructs the general purpose processor to choose between JTAG interface enablement information and JTAG interface disablement information for use with the boot code image of the device. The access token can include expiration information that causes an enabled JTAG interface to revert back to its disabled status upon expiration of the access token.
摘要翻译：一种用于控制通信设备内的JTAG接口使能的方法，设备和系统。可以基于由访问令牌服务器生成的加密访问令牌的接收来选择性地启用JTAG接口。访问令牌服务器响应于最终用户提供适当的设备特定信息来生成访问令牌。访问令牌包括适当的信息，在适当的认证和解密之后，可以以启用JTAG接口的方式临时地将设备的引导代码映像绑定。或者，访问令牌包括指示通用处理器在JTAG接口使能信息和JTAG接口禁用信息之间进行选择以与设备的启动代码映像一起使用的适当信息。访问令牌可以包括使得启用的JTAG接口在访问令牌到期时恢复到其禁用状态的到期信息。

64. 发明申请

US20100169646A1 SECURE AND EFFICIENT DOMAIN KEY DISTRIBUTION FOR DEVICE REGISTRATION 有权
标题翻译：用于设备注册的安全和有效的域分配
公开(公告)号：US20100169646A1
公开(公告)日：2010-07-01
申请号：US12344997
申请日：2008-12-29
申请人： Jiang Zhang , Alexander Medvinsky
发明人： Jiang Zhang , Alexander Medvinsky
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/0866 , H04L9/0869 , H04L9/3263 , H04L63/061 , H04L63/104 , H04L2209/60 , H04L2209/80 , H04N21/43615 , H04N21/43637 , H04N21/4408
摘要： A domain key is securely distributed from a device in an existing network to a device outside the network. Each device generates the session key on its own using the first random number, the second random number, the Personal Identification Number, and the same key generation function. The device in the existing network sends the domain key encrypted with the session key to the other device.
摘要翻译：域密钥从现有网络中的设备安全分发到网络外部的设备。每个设备使用第一个随机数，第二个随机数，个人识别号和相同的密钥生成函数自行生成会话密钥。现有网络中的设备将会话密钥加密的域密钥发送给其他设备。

65. 发明授权

US07656794B2 Method and apparatus for authenticated quality of service reservation 有权
标题翻译：用于认证服务质量保留的方法和装置
公开(公告)号：US07656794B2
公开(公告)日：2010-02-02
申请号：US10350538
申请日：2003-01-24
申请人： Alexander Medvinsky
发明人： Alexander Medvinsky
IPC分类号： H04L12/56 , H04L9/32
CPC分类号： H04L63/126 , H04L47/70 , H04L47/724 , H04L47/805 , H04L47/808 , H04L63/06
摘要： A method and apparatus for providing authenticated quality of service reservation in a communication system. According to one embodiment of the invention a signaling controller distributes keys for use by a first quality of service server and a router for establishing quality of service over a communication system.
摘要翻译：一种用于在通信系统中提供经认证的服务质量保留的方法和装置。根据本发明的一个实施例，信令控制器分配由第一服务质量服务器和路由器使用的密钥，用于通过通信系统建立服务质量。

66. 发明申请

US20090249080A1 METHODS, APPARATUS AND SYSTEM FOR AUTHENTICATING A PROGRAMMABLE HARDWARE DEVICE AND FOR AUTHENTICATING COMMANDS RECEIVED IN THE PROGRAMMABLE HARDWARE DEVICE FROM A SECURE PROCESSOR 有权
标题翻译：用于认证可编程硬件设备和用于认证可编程硬件设备中从安全处理器接收的命令的方法，装置和系统
公开(公告)号：US20090249080A1
公开(公告)日：2009-10-01
申请号：US12056721
申请日：2008-03-27
申请人： Jiang Zhang , Peter Chen , Alexander Medvinsky
发明人： Jiang Zhang , Peter Chen , Alexander Medvinsky
IPC分类号： G06F21/22 , G06F12/14 , H04L9/08
CPC分类号： G06F21/76 , G06F12/1466 , G06F21/73 , G06F2221/2129
摘要： A method, device and system for authenticating a programmable hardware device, such as a programmable hardware chip, and a command received by the programmable hardware device. A secure processor or other trusted source authenticates the programmable hardware chip by verifying, with the secure processor's own verification key, a random number sent to the programmable hardware chip and encrypted using a verification key embedded within the programmable hardware chip, since the nature of the encryption is such that only the original logic function that includes the verification key can encrypt the data correctly. A command received by the programmable hardware chip is authenticated by verifying that a command authentication token received by the programmable hardware chip is generated using the correct command authentication key and consequently verifying that the command is received from the secure processor, as only the party who has the command authentication key can encrypt the data correctly.
摘要翻译：用于认证可编程硬件设备（诸如可编程硬件芯片）和由可编程硬件设备接收的命令的方法，设备和系统。安全处理器或其他可信源通过使用安全处理器自己的验证密钥验证发送到可编程硬件芯片的随机数并使用嵌入在可编程硬件芯片内的验证密钥进行加密来验证可编程硬件芯片，因为加密只有包含验证密钥的原始逻辑功能才能正确加密数据。由可编程硬件芯片接收的命令通过验证使用正确的命令认证密钥生成由可编程硬件芯片接收到的命令认证令牌，从而验证从安全处理器接收到该命令的认证，只有具有命令认证密钥可以正确加密数据。

67. 发明授权

US07590996B2 Intrusion detection for object security 有权
标题翻译：入侵检测对象安全
公开(公告)号：US07590996B2
公开(公告)日：2009-09-15
申请号：US10818658
申请日：2004-04-05
申请人： Alexander Medvinsky
发明人： Alexander Medvinsky
IPC分类号： H04N7/173
CPC分类号： H04L63/08 , H04L29/06 , H04L29/06027 , H04L63/123 , H04L63/1408 , H04N5/4401 , H04N7/165 , H04N7/167 , H04N17/004 , H04N21/2404 , H04N21/25833 , H04N21/4405 , H04N21/44236 , H04N21/4424 , H04N21/4425 , H04N21/4623 , H04N21/4627
摘要： According to the invention, a method for detecting modification to a video content receiver within a content distribution system is described. In one step, a message is generated by a content provider. The message is sent to the content receiver by way of a network. The message includes an intentionally-inserted error that a normally-operating content receiver would detect. The message is check for either authenticity or authorization. The message is received by the content receiver from the network. At a point physically remote to the content receiver, it is detected that the content receiver failed to detect the intentionally-inserted error in the message.
摘要翻译：根据本发明，描述了一种用于检测对内容分发系统内的视频内容接收器的修改的方法。在一个步骤中，消息由内容提供商生成。消息通过网络发送到内容接收方。该消息包括正常操作的内容接收器将检测到的故意插入的错误。该消息是检查真实性或授权。消息由内容接收器从网络接收。在物理上远离内容接收器的点处，检测到内容接收器未能检测到该消息中的故意插入的错误。

68. 发明授权

US07451312B2 Authenticated dynamic address assignment 有权
标题翻译：认证的动态地址分配
公开(公告)号：US07451312B2
公开(公告)日：2008-11-11
申请号：US09799918
申请日：2001-03-05
申请人： Alexander Medvinsky , Poornima Lalwaney
发明人： Alexander Medvinsky , Poornima Lalwaney
IPC分类号： H04L9/00
CPC分类号： H04L63/0807 , H04L29/06 , H04L29/12216 , H04L29/12273 , H04L29/12801 , H04L61/2015 , H04L61/2053 , H04L61/6004 , H04L69/329
摘要： A method for an uninitialized client to obtain credentials from a server which are then used to provide authenticated exchange for network configuration parameter assignment. The obtained credentials can be applied to an authentication option when a dynamic host configuration protocol (DHCP) is being used for address assignment.
摘要翻译：用于未初始化的客户端从服务器获取凭证的方法，然后该服务器用于为网络配置参数分配提供经认证的交换。当动态主机配置协议（DHCP）用于地址分配时，获得的凭证可以应用于认证选项。

69. 发明申请

US20080270308A1 Method and Apparatus for Providing a Secure Trick Play 审中-公开
标题翻译：提供安全技巧播放的方法和装置
公开(公告)号：US20080270308A1
公开(公告)日：2008-10-30
申请号：US11843335
申请日：2007-08-22
申请人： Petr Peterka , Alexander Medvinsky , Paul Moroney
发明人： Petr Peterka , Alexander Medvinsky , Paul Moroney
IPC分类号： G06Q10/00
CPC分类号： H04N21/440281 , G06F21/10 , G06F2221/0784 , G06F2221/2137 , G06F2221/2151 , H04N21/4147 , H04N21/4408 , H04N21/4627 , H04N21/8456
摘要： A process may be utilized by a DVR. The process characterizes a set of content as a plurality of segments as the set of content is received. Each of the segments has a segment length according to a predetermined time interval. Further, the process encrypts each of the segments with a corresponding content encryption key to generate a plurality of encrypted segments. The corresponding content encryption key for each of the segments is generated by the DRM component. In addition, the process stores each of the encrypted segments for playback with trick play features in accordance with an expiration content rule having a time limit on the temporary playability of the set of content.
摘要翻译： DVR可以利用进程。当接收到内容集合时，该过程将一组内容表征为多个段。每个段具有根据预定时间间隔的段长度。此外，该过程使用对应的内容加密密钥来加密每个段，以生成多个加密段。每个段的相应内容加密密钥由DRM组件产生。此外，该过程根据具有对该组内容的临时播放性具有时间限制的期满内容规则，将每个加密段用于播放特技播放特征。

70. 发明申请

US20080267399A1 Method and Apparatus for Secure Content Recording 审中-公开
标题翻译：用于安全内容记录的方法和装置
公开(公告)号：US20080267399A1
公开(公告)日：2008-10-30
申请号：US11851066
申请日：2007-09-06
申请人： Alexander Medvinsky , Petr Peterka
发明人： Alexander Medvinsky , Petr Peterka
IPC分类号： H04N7/167 , H04L9/00
CPC分类号： H04N21/835 , H04L9/0841 , H04L9/0891 , H04L2209/603 , H04N7/1675 , H04N21/43622 , H04N21/4367 , H04N21/4405 , H04N21/4408
摘要： A method is provided that establishes a secure tunnel with a content acquisition processor that acquires encrypted content from a content source and decrypts the encrypted content to obtain content. The content acquisition processor is not trusted for providing digital rights management. Further, the method transmits a request through the secure tunnel to the content acquisition processor to re-encrypt the content with a content encryption key so that re-encrypted content is generated and stores the re-encrypted content on a storage medium. The request includes the content encryption key.
摘要翻译：提供了一种与内容获取处理器建立安全通道的方法，该内容获取处理器从内容源获取加密的内容并对加密的内容进行解密以获得内容。内容获取处理器不受信任用于提供数字版权管理。此外，该方法通过安全通道向内容获取处理器发送请求，以内容加密密钥重新加密内容，从而生成重新加密的内容，并将重新加密的内容存储在存储介质上。该请求包括内容加密密钥。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式