专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20060059342A1 System and method for providing authorized access to digital content 有权
标题翻译：提供授权访问数字内容的系统和方法
公开(公告)号：US20060059342A1
公开(公告)日：2006-03-16
申请号：US11228180
申请日：2005-09-16
申请人： Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
发明人： Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
IPC分类号： H04L9/00
CPC分类号： H04L9/0825 , G11B20/0021 , G11B20/00731 , H04L9/0822 , H04L9/083 , H04L2209/603 , H04N21/26606 , H04N21/26613 , H04N21/4181 , H04N21/63345 , H04N21/8355
摘要： Described herein are embodiments that provide an approach to cryptographic key management for a digital rights management (DRM) architecture that includes multiple levels of key management for minimizing bandwidth usage while maximizing security for the DRM architecture. In one embodiment, there is provided a data structure for cryptographic key management that includes a public/private key pair and three additional layers of symmetric keys for authorizing access to a plurality of contents.
摘要翻译：这里描述的是提供用于数字版权管理（DRM）架构的加密密钥管理的方法的实施例，其包括用于最小化带宽使用的多级密钥管理，同时最大化DRM架构的安全性。在一个实施例中，提供了一种用于加密密钥管理的数据结构，其包括用于授权访问多个内容的公钥/私钥对和三个对称密钥层。

2. 发明授权

US07404082B2 System and method for providing authorized access to digital content 有权
标题翻译：提供授权访问数字内容的系统和方法
公开(公告)号：US07404082B2
公开(公告)日：2008-07-22
申请号：US11228180
申请日：2005-09-16
申请人： Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
发明人： Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
IPC分类号： H04L9/00
CPC分类号： H04L9/0825 , G11B20/0021 , G11B20/00731 , H04L9/0822 , H04L9/083 , H04L2209/603 , H04N21/26606 , H04N21/26613 , H04N21/4181 , H04N21/63345 , H04N21/8355
摘要： Described herein are embodiments that provide an approach to cryptographic key management for a digital rights management (DRM) architecture that includes multiple levels of key management for minimizing bandwidth usage while maximizing security for the DRM architecture. In one embodiment, there is provided a data structure for cryptographic key management that includes a public/private key pair and three additional layers of symmetric keys for authorizing access to a plurality of contents.
摘要翻译：这里描述的是提供用于数字版权管理（DRM）架构的加密密钥管理的方法的实施例，其包括用于最小化带宽使用的多级密钥管理，同时最大化DRM架构的安全性。在一个实施例中，提供了一种用于加密密钥管理的数据结构，其包括用于授权访问多个内容的公钥/私钥对和三个对称密钥层。

3. 发明申请

US20050076183A1 Method and apparatus for enforcing timed agreements 审中-公开
标题翻译：执行定时协议的方法和设备
公开(公告)号：US20050076183A1
公开(公告)日：2005-04-07
申请号：US10796340
申请日：2004-03-09
申请人： Alexander Medvinsky , Eric Sprunk
发明人： Alexander Medvinsky , Eric Sprunk
IPC分类号： G06F12/14
CPC分类号： H04N21/8355 , H04N21/4627
摘要： A system is provided for enforcing program content agreements between a program distributor and a client. The program content can be restricted so as to prevent any playback of program content once unauthorized interference is detected. Furthermore, a specific time value can be used as part of a time message to indicate an expiration of a time stamp. Thus, an attack using fabricated time messages or buffered time messages can be averted.
摘要翻译：提供了一种用于在程序分发者和客户端之间执行程序内容协议的系统。可以限制节目内容，以便一旦检测到未经授权的干扰就防止播放节目内容。此外，特定时间值可以用作时间消息的一部分，以指示时间戳的到期。因此，可以避免使用制造的时间消息或缓冲时间消息的攻击。

4. 发明授权

US07243366B2 Key management protocol and authentication system for secure internet protocol rights management architecture 有权
标题翻译：用于安全互联网协议权限管理架构的密钥管理协议和认证系统
公开(公告)号：US07243366B2
公开(公告)日：2007-07-10
申请号：US10092347
申请日：2002-03-04
申请人： Alexander Medvinsky , Petr Peterka , Paul Moroney , Eric Sprunk
发明人： Alexander Medvinsky , Petr Peterka , Paul Moroney , Eric Sprunk
IPC分类号： G06F17/30 , G06F7/04 , G06K9/00 , H04L9/32 , H04L9/00
CPC分类号： H04L63/04 , G06Q20/367 , H04L63/062 , H04L63/08 , H04L2463/101
摘要： A digital rights management architecture for securely delivering content to authorized consumers. The architecture includes a content provider and a consumer system for requesting content from the content provider. The content provider generates a session rights object having purchase options selected by the consumer. A KDC thereafter provides authorization data to the consumer system. Also, a caching server is provided for comparing the purchase options with the authorization data. The caching server forwards the requested content to the consumer system if the purchase options match the authorization data. Note that the caching server employs real time streaming for securely forwarding the encrypted content, and the requested content is encrypted for forwarding to the consumer system. Further, the caching server and the consumer system exchange encrypted control messages (and authenticated) for supporting transfer of the requested content. In this manner, all interfaces between components are protected by encryption and/authenticated.
摘要翻译：数字版权管理架构，用于将权限安全地传递给授权消费者。该架构包括内容提供商和用于从内容提供商请求内容的消费者系统。内容提供商生成具有由消费者选择的购买选项的会话权限对象。 KDC此后向消费者系统提供授权数据。此外，还提供了一个缓存服务器，用于将购买选项与授权数据进行比较。如果购买选项与授权数据匹配，则缓存服务器将所请求的内容转发到消费者系统。请注意，缓存服务器采用实时流式传输安全地转发加密的内容，并且所请求的内容被加密以转发到消费者系统。此外，缓存服务器和消费者系统交换加密的控制消息（并被认证）以支持所请求的内容的传送。以这种方式，组件之间的所有接口都受到加密和/或认证的保护。

5. 发明申请

US20070179898A1 Secure consumer distribution of content using subkeys for encryption and authentication 审中-公开
标题翻译：使用子密钥安全消费者分发内容进行加密和认证
公开(公告)号：US20070179898A1
公开(公告)日：2007-08-02
申请号：US11347704
申请日：2006-02-02
申请人： Alexander Medvinsky , Eric Sprunk
发明人： Alexander Medvinsky , Eric Sprunk
IPC分类号： H04L9/00
CPC分类号： H04L9/083 , H04L9/0891 , H04L63/0428 , H04L63/0807 , H04L2209/603 , H04L2463/062 , H04L2463/101
摘要： User-to-user (“superdistribution”) of digital content allows for management and control of the distribution by a content owner, content distributor or other owner or licensee of the content. Provisions are also available for identifying senders and receivers of content for purposes of compensating or encouraging distribution. A sending user generates a referral key that is used to encrypt all, or a portion of, the content, or to encrypt other mechanisms (e.g., another key, ticket, etc.) that will ultimately be used to allow access to the content. The sending user creates a content referral object that includes the restricted referral key, an identification of the license server and an identification of the content. A receiving user receives the content referral object and contacts the license server to identify the transaction (e.g., content being referred, access rights desired, etc.) and to receive information (e.g., a key or ticket) to use the referral key to access the content.
摘要翻译：数字内容的用户到用户（“超级分配”）允许管理和控制内容所有者，内容分发者或其他内容的所有者或许可人的分发。为了补偿或鼓励发行，还可以提供确定内容的发送者和接收者的规定。发送用户生成用于加密内容的全部或一部分的引荐密钥，或加密将最终用于允许访问内容的其他机制（例如，另一个密钥，票据等）。发送用户创建包括受限推荐密钥，许可证服务器的标识和内容的标识的内容引用对象。接收用户接收内容引用对象并与许可证服务器联系以识别交易（例如，被引用的内容，所需的访问权限等）并且接收使用推荐密钥访问的信息（例如，密钥或票证）内容。

6. 发明申请

US20080049942A1 SYSTEM AND METHOD FOR SECURE KEY DISTRIBUTION TO MANUFACTURED PRODUCTS 有权
标题翻译：系统和方法，用于安全地分配到制造产品上
公开(公告)号：US20080049942A1
公开(公告)日：2008-02-28
申请号：US11846045
申请日：2007-08-28
申请人： Eric Sprunk , Alexander Medvinsky , Xin Qiu , Stuart Moskovics , Liqiang Chen
发明人： Eric Sprunk , Alexander Medvinsky , Xin Qiu , Stuart Moskovics , Liqiang Chen
IPC分类号： H04L9/08
CPC分类号： H04L9/0844 , H04L9/006 , H04L9/0822 , H04L63/0428 , H04L63/062 , H04L63/0823 , H04L63/166
摘要： A system and method for securely distributing PKI data, such as one or more private keys or other confidential digital information, from a PKI data generation facility to a product in a product personalization facility that is not connected to the PKI data generation facility and is assumed to be a non-secure product personalization facility. The system includes a PKI data loader for securely transmitting the encrypted PKI data transferred from the PKI data generator to a PKI server at the product personalization facility. The PKI server then transfers the PKI data to the product of interest, typically via a PKI station acting as a proxy between the PKI server and the product. In each communication step, PKI data being transferred is encrypted multiple times and the system is designed such that if any intermediate node is compromised with all of its keys, the overall system has not yet been compromised.
摘要翻译：用于将PKI数据（例如一个或多个私钥或其他机密数字信息）的PKI数据安全地分发到不连接到PKI数据生成设备并被假定的产品个性化设施中的产品的系统和方法成为不安全的产品个性化设施。该系统包括PKI数据加载器，用于将从PKI数据发生器传送的加密的PKI数据安全地发送到产品个性化设施的PKI服务器。 PKI服务器然后将PKI数据传送到感兴趣的产品，通常通过充当PKI服务器和产品之间代理的PKI站。在每个通信步骤中，正在传送的PKI数据被加密多次，并且系统被设计成使得如果任何中间节点与其所有密钥相冲突，则整个系统尚未被破坏。

7. 发明申请

US20060149676A1 Method and apparatus for providing a secure move of a decrpytion content key 审中-公开
标题翻译：提供解密内容密钥的安全移动的方法和装置
公开(公告)号：US20060149676A1
公开(公告)日：2006-07-06
申请号：US11027830
申请日：2004-12-30
申请人： Eric Sprunk , Alexander Medvinsky
发明人： Eric Sprunk , Alexander Medvinsky
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/0841 , H04L2209/60
摘要： The present invention discloses an apparatus and method for providing a secure move of a content decryption key within or between domains. Namely, the present invention addresses the single copy usage rule by restricting the movement of the decryption key instead of restricting the movement of the encrypted content itself.
摘要翻译：本发明公开了一种用于提供域内或域之间的内容解密密钥的安全移动的装置和方法。即，本发明通过限制解密密钥的移动而不是限制加密内容本身的移动来解决单一复制使用规则。

8. 发明申请

US20050027985A1 Internet protocol telephony security architecture 有权
标题翻译：互联网协议电话安全架构
公开(公告)号：US20050027985A1
公开(公告)日：2005-02-03
申请号：US10893047
申请日：2004-07-15
申请人： Eric Sprunk , Paul Moroney , Alexander Medvinsky , Steven Anderson , Jonathan Fellows
发明人： Eric Sprunk , Paul Moroney , Alexander Medvinsky , Steven Anderson , Jonathan Fellows
IPC分类号： G06F1/00 , G06F12/14 , G06F21/00 , H04L9/32 , H04L29/06 , H04L12/16
CPC分类号： H04L29/06027 , G06F12/1408 , G06F21/606 , G06F2207/7219 , G06F2211/008 , G06F2221/2129 , H04L9/083 , H04L9/0841 , H04L9/3213 , H04L9/3263 , H04L63/0435 , H04L63/0442 , H04L63/061 , H04L63/062 , H04L63/0807 , H04L63/12 , H04L65/1043
摘要： A secure Internet Protocol (IP) telephony system, apparatus, and methods are disclosed. Communications over an IP telephony system can be secured by securing communications to and from a Cable Telephony Adapter (CTA). The system can include one or more CTAs, network servers, servers configured as signaling controllers, key distribution centers (KDC), and can include gateways that couple the IP telephony system to a Public Switched Telephone Network (PSTN). Each CTA can be configured as secure hardware and can be configured with multiple encryption keys that are used to communicate signaling or bearer channel communications. The KDC can be configured to periodically distribute symmetric encryption keys to secure communications between devices that have been provisioned to operate in the system and signaling controllers. The secure devices, such as the CTA, can communicate with other secure devices by establishing signaling and bearer channels that are encrypted with session specific symmetric keys derived from a symmetric key distributed by a signaling controller.
摘要翻译：公开了一种安全的因特网协议（IP）电话系统，装置和方法。通过IP电话系统的通信可以通过保护与有线电话适配器（CTA）的通信来保护。该系统可以包括一个或多个CTA，网络服务器，配置为信令控制器的服务器，密钥分配中心（KDC），并且可以包括将IP电话系统耦合到公共交换电话网络（PSTN）的网关。每个CTA都可以配置为安全硬件，并且可以配置多个用于通信信令或承载信道通信的加密密钥。 KDC可以被配置为周期性地分配对称加密密钥以保护已经被提供以在系统和信令控制器中操作的设备之间的通信。诸如CTA之类的安全设备可以通过建立用由信令控制器分配的对称密钥导出的会话专用对称密钥加密的信令和承载信道来与其他安全设备进行通信。

9. 发明申请

US20050022019A1 Enforcement of playback count in secure hardware for presentation of digital productions 审中-公开
标题翻译：在安全硬件中执行播放计数，以呈现数字制作
公开(公告)号：US20050022019A1
公开(公告)日：2005-01-27
申请号：US10613868
申请日：2003-07-05
申请人： Alexander Medvinsky , Eric Sprunk
发明人： Alexander Medvinsky , Eric Sprunk
IPC分类号： G06F20060101 , G06F15/16 , G06F15/173 , H04H60/31 , H04L9/00 , H04L9/32 , H04N7/173
CPC分类号： H04L9/32 , G06F21/10 , G06F2221/2135 , G11B20/00086 , G11B20/00753 , G11B20/0084 , G11B20/00869 , G11B2220/2545 , H04L2209/56 , H04L2209/603 , H04N21/254 , H04N21/2541 , H04N21/4405 , H04N21/44204 , H04N21/4627 , H04N21/835 , H04N21/8355
摘要： A system for restricting playback of an electronic presentation, such as a digital video or song. The system uses a playback time limit that specifies a duration of allowable playback time. The playback time limit is typically longer than the running time of the presentation so that a user is able to use standard transport controls such as pause, stop, rewind, fast forward, etc., that affect the overall playback time needed to view the presentation in its entirety. One approach uses a secure time base that is provided by a server over a network to a client device that includes a playback device. The secure time base is received and used by secure processing within the playback device. This approach allows rendering of the presentation to an output device to be performed by non-secure processing without unduly compromising the security of the system.
摘要翻译：一种用于限制诸如数字视频或歌曲之类的电子演示文稿播放的系统。系统使用播放时间限制，指定播放时间允许的持续时间。播放时间限制通常比演示的运行时间长，以便用户能够使用影响观看演示所需的整体播放时间的标准传输控制，例如暂停，停止，倒退，快进等的全部。一种方法使用由服务器通过网络向包括回放设备的客户端设备提供的安全时基。通过播放设备内的安全处理来接收和使用安全时基。该方法允许将呈现呈现给输出设备以通过非安全处理来执行，而不会不适当地危及系统的安全性。

10. 发明申请

US20060150252A1 Method and apparatus for providing a border guard between security domains 有权
标题翻译：用于在安全域之间提供边界防护的方法和装置
公开(公告)号：US20060150252A1
公开(公告)日：2006-07-06
申请号：US11027206
申请日：2004-12-30
申请人： John Okimoto , Bridget Kimball , Annie Chen , Michael Habrat , Douglas Petty , Eric Sprunk , Lawrence Tang
发明人： John Okimoto , Bridget Kimball , Annie Chen , Michael Habrat , Douglas Petty , Eric Sprunk , Lawrence Tang
IPC分类号： H04N7/16
CPC分类号： G06F21/10 , H04N7/1675 , H04N21/4147 , H04N21/4405 , H04N21/4408 , H04N21/8355
摘要： The present invention discloses an apparatus and method for defining and enforcing rules of transition between two security domains, e.g., a transport domain and a persistent security domain. In turn, a border guard, e.g., a security device, is provided between these two domains that enforce rules for transition between the two security domains. This novel approach of defining a transport domain and a persistent security domain simplifies the classification of the digital content and its movement through the system. Namely, the border guard once established between the two systems can enforce DRM rules associated with how contents are moved between the two domains.
摘要翻译：本发明公开了一种用于定义和实施两个安全域（例如传输域和持久安全域）之间的转换规则的装置和方法。反过来，在这两个域之间提供边界警卫，例如安全装置，这两个域执行两个安全域之间的转换规则。这种定义传输域和持久安全域的新颖方法简化了数字内容的分类及其通过系统的移动。也就是说，在两个系统之间建立的边界守卫可以实施与内容在两个域之间移动的相关联的DRM规则。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式