专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2003107588A1 SYSTEM FOR AUTHENTICATION BETWEEN DEVICES USING GROUP CERTIFICATES 审中-公开
标题翻译：使用集团证书的设备之间的认证系统
公开(公告)号：WO2003107588A1
公开(公告)日：2003-12-24
申请号：PCT/IB2003/002337
申请日：2003-05-27
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , LENOIR, Petrus, J. , TALSTRA, Johan, C. , VAN DEN HEUVEL, Sebastiaan, A., F., A. , STARING, Antonius, A., M.
发明人： LENOIR, Petrus, J. , TALSTRA, Johan, C. , VAN DEN HEUVEL, Sebastiaan, A., F., A. , STARING, Antonius, A., M.
IPC分类号： H04L9/32
CPC分类号： G11B20/00086 , G11B20/0021 , H04L9/3263 , H04L12/2805 , H04L12/2838 , H04L2209/60
摘要： In whitelist-based authentication, a first device (102) in a system (100) authenticates itself to a second device (103) using a group certificate identifying a range of non-revoked device identifiers, said range encompassing the device identifier of the first device (102). Preferably the device identifiers correspond to leaf nodes in a hierarchically ordered tree, and the group certificate identifies a node (202-207) in the tree representing a subtree in which the leaf nodes correspond to said range. The group certificate can also identify a further node (308, 310, 312) in the subtree which represents a sub-subtree in which the leaf nodes correspond to revoked device identifiers. Alternatively, the device identifiers are selected from a sequentially ordered range, and the group certificate identifies a subrange of the sequentially ordered range, said subrange encompassing the whitelisted device identifiers.
摘要翻译：在基于白名单的认证中，系统（100）中的第一设备（102）使用识别非撤销设备标识符的范围的组证书向第二设备（103）认证自身，所述范围包括第一设备标识符的设备标识符设备（102）。优选地，设备标识符对应于分层排序树中的叶节点，并且组证书标识树中的节点（202-207），其中叶节点对应于所述范围的子树。组证书还可以标识子树中的另一个节点（308,310,312），其表示子节点，其中叶节点对应于撤销的设备标识符。或者，从顺序排序的范围中选择设备标识符，并且组证书标识顺序排列的范围的子范围，所述子范围包含列入白名单的设备标识符。

2. 发明申请

WO2003107589A1 METHOD FOR AUTHENTICATION BETWEEN DEVICES 审中-公开
标题翻译：设备之间的认证方法
公开(公告)号：WO2003107589A1
公开(公告)日：2003-12-24
申请号：PCT/IB2003/002340
申请日：2003-05-27
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , LENOIR, Petrus, J. , TALSTRA, Johan, C. , VAN DEN HEUVEL, Sebastisaan, A., F., A. , STARING, Antonius, A., M.
发明人： LENOIR, Petrus, J. , TALSTRA, Johan, C. , VAN DEN HEUVEL, Sebastisaan, A., F., A. , STARING, Antonius, A., M.
IPC分类号： H04L9/32
CPC分类号： G11B20/00086 , G06F21/445 , G11B20/0021 , H04L9/3263 , H04L12/2805 , H04L12/2838 , H04L2209/60
摘要： A certifying authority provides a method for whitelist-based controlling of authentication of a first device (102) in a system (100) to a second device (103). The method comprises issuing to the first device (102) a group certificate identifying a range of non-revoked device identifiers, said range encompassing the device identifier of the first device (102). Preferably the device identifiers correspond to leaf nodes in a hierarchically ordered tree, and the group certificate identifies a node (202-207) in the tree representing a subtree in which the leaf nodes correspond to said range. The group certificate can also identify a further node (308, 310, 312) in the subtree which represents a sub-subtree in which the leaf nodes correspond to revoked device identifiers. Alternatively, the device identifiers are selected from a sequentially ordered range, and the group certificate identifies a subrange of the sequentially ordered range, said subrange encompassing the whitelisted device identifiers.
摘要翻译：认证机构提供一种用于基于白名单的控制系统（100）中的第一设备（102）到第二设备（103）的认证的方法。该方法包括向第一设备（102）发出识别非撤销设备标识符的范围的组证书，所述范围包含第一设备（102）的设备标识符。优选地，设备标识符对应于分层排序树中的叶节点，并且组证书标识树中的节点（202-207），其中叶节点对应于所述范围的子树。组证书还可以标识子树中的另一个节点（308,310,312），其表示子节点，其中叶节点对应于撤销的设备标识符。或者，从顺序排序的范围中选择设备标识符，并且组证书标识顺序排列的范围的子范围，所述子范围包含列入白名单的设备标识符。

3. 发明申请

WO2005024820A1 CONTENT PROTECTION METHOD AND SYSTEM 审中-公开
标题翻译：内容保护方法与系统
公开(公告)号：WO2005024820A1
公开(公告)日：2005-03-17
申请号：PCT/IB2004/051585
申请日：2004-08-27
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , STARING, Antonius, A., M. , TALSTRA, Johan, C. , SKORIC, Boris , MAES, Maurice, J., J. J-B.
发明人： STARING, Antonius, A., M. , TALSTRA, Johan, C. , SKORIC, Boris , MAES, Maurice, J., J. J-B.
IPC分类号： G11B20/00
CPC分类号： G06F21/10 , G06F2221/0753 , G06F2221/2115 , G11B20/00086 , G11B20/00253 , G11B20/00369 , G11B20/00492
摘要： The present invention relates to a content protection method and system as well as to a reproduction method and device providing copy protection of electronic content. In order to provide protection against illicit copying by consumers as well as by authoring and formatting facilities content-dependent encryption of the content is proposed. In an encryption step the content (C0) is encrypted using an application key (AK) and/or a disc key (DK). Further, a content-dependent content mark (AK', H, MAC) is generated using said content (C0), which content mark is to be evaluated during decryption of said encrypted content (C2).
摘要翻译：本发明涉及一种内容保护方法和系统，以及提供电子内容的复制保护的再现方法和装置。为了提供消费者非法复制的保护，以及创作和格式化设施，提出内容相关内容的加密。在加密步骤中，使用应用密钥（AK）和/或盘密钥（DK）对内容（C0）进行加密。此外，使用所述内容（C0）生成内容相关内容标记（AK'，H，MAC），在所述加密内容（C2）的解密期间，要评估哪个内容标记。

4. 发明申请

WO2002065255A3 PROCESSING COPY PROTECTION SIGNALS 审中-公开
公开(公告)号：WO2002065255A3
公开(公告)日：2002-08-22
申请号：PCT/IB2002/000350
申请日：2002-02-01
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , MAES, Maurice, J., J., J-B. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
发明人： MAES, Maurice, J., J., J-B. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
IPC分类号： G06F1/00
摘要： This invention relates to a method and an arrangement for recording an information signal with first copy protection information to a storage medium using recording means, said recording being performed according to first copy rules identified by said first copy protection information. The method comprises the steps of detecting the first copy protection information identifying said first copy rules, recording at least second copy protection information according to said detected first copy rules, said first and at least second copy protection information identifying a legality message to be interpreted by reading means, recording screening information in a safe way on said storage medium, said screening information identifying that the first copy protection message has been read.

5. 发明申请

WO2007063432A3 RECORD CARRIER WITH COPY PROTECTION MEANS 审中-公开
公开(公告)号：WO2007063432A3
公开(公告)日：2007-06-07
申请号：PCT/IB2006/053664
申请日：2006-10-06
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
发明人： STARING, Antonius, A., M. , TALSTRA, Johan, C.
IPC分类号： G11B20/00
摘要： In summary, ROM marks (such as wobbles, lateral deviations in the spiral with lands and pits in an optical disc) are used on optical media to ensure consumer-grade copying devices cannot duplicate original media. An additional level of security is that the detection of the side channel information requires knowledge of a certain secret, which must be hidden well in authorized players. If the secret leaks, a professional pirate will be able to detect the ROM mark and duplicate the original medium with the side channel information intact. The present invention proposes that instead of a single ROM mark, many ROM marks are applied to a disc. Further, devices are divided into groups, and each group has the capability to only detect one mark from the group. This way, if a secret is obtained from a device, the disc can be duplicated, but only a limited number of devices will be able to use this disc. Creating a disc that can be played in any device requires the hacking of one device from every group.

6. 发明申请

WO2007000714A2 DEVICE AND METHOD FOR KEY BLOCK BASED AUTHENTICATION 审中-公开
标题翻译：基于密钥块的认证的装置和方法
公开(公告)号：WO2007000714A2
公开(公告)日：2007-01-04
申请号：PCT/IB2006/052087
申请日：2006-06-26
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
发明人： STARING, Antonius, A., M. , TALSTRA, Johan, C.
CPC分类号： H04L9/3247 , H04L9/0836 , H04L9/321 , H04L2209/601
摘要： The invention relates to a device (250) and a method for key block based authentication. In order to overcome the problems of known devices and method for authentication and to allow for an effective key block and/or application revocation wherein it is ensured that valid and new revocation information reaches said device and is used for authentication, a device (250) for a key block based authentication is proposed comprising authentication means (252) for authenticating between said device (250) having revocation information (254) and an application unit to be authenticated having a key block (AKB) by means of said revocation information (254) and said key block (AKB), and internal trigger means (256) for triggering a process of renewing of said revocation information (254).
摘要翻译：基于密钥块的认证的设备（250）和方法技术领域本发明涉及一种用于基于密钥块的认证的设备（250）和方法。为了克服用于认证的已知设备和方法的问题并且允许有效的密钥块和/或应用撤销，其中确保有效的和新的撤销信息到达所述设备并用于认证，设备（250）对于基于密钥块的认证，提出了一种认证装置（252），用于通过所述撤销信息（254）在具有撤销信息（254）的所述设备（250）与具有密钥块（AKB）的待认证的应用单元之间进行认证）和所述密钥块（AKB）;以及内部触发装置（256），用于触发更新所述撤销信息（254）的过程。

7. 发明申请

WO2006077510A1 SECURE HOST INTERFACE 审中-公开
标题翻译：安全主机界面
公开(公告)号：WO2006077510A1
公开(公告)日：2006-07-27
申请号：PCT/IB2006/050126
申请日：2006-01-13
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
发明人： STARING, Antonius, A., M. , TALSTRA, Johan, C.
IPC分类号： G11B20/00 , H04L9/32
CPC分类号： G11B20/00086 , G06F21/10 , G06F2221/2103 , H04L9/3273 , H04L63/0428 , H04L63/06 , H04L2209/603 , H04L2209/605 , H04L2463/101
摘要： The present invention relates to a digital rights management system (40) for controlling access rights to copy protected content comprising an application unit (1, 21, 41) and a drive unit (3, 23, 43), to an application unit (1, 21, 41), to a drive unit (3, 23, 43) and to a corresponding digital rights management method. In order to allow an increased security in the management of digital rights, wherein in particular a "filter-driver"-hack is made impossible or is at least substantially complicated and a reliable confirmation about a command given in respect of digital rights and its execution, a digital rights management system (40) is proposed wherein said application unit (1, 21, 41) comprises a key storage unit (45) for storing a bus key (KB), a request generation unit (47) for generating a request (7, 27) to be carried out by said drive unit including a message regarding said access rights and a challenge (RX), a communication unit (51) for transmitting said request (7, 27) and for receiving a response (13, 33) to said request (7, 27) from said drive unit (3, 23, 43), a response verification unit (49) for verifying a link between said request (7, 27) and said response (13, 33) by decoding said response (13, 33) using said bus key (KB) and by checking for the presence of an indication of said challenge (RX) in said response (13, 33) and said drive unit (3, 23, 43) comprises a key storage unit (55) for storing a bus key (KB), a communication unit (51) for receiving a request (7, 27) including a message regarding said access rights and a challenge (RX) from said application unit (1, 21, 41) and for transmitting a response (13, 33) to said request (1, 21, 41), a request processing unit (57) for verifying said request (7, 27) and processing said message, a response generation unit (59) for generating said response (13, 33) including an indication of said challenge (RX) and a reply to said message, wherein said indication of said challenge (RX) and said reply are cryptographically linked by means of said bus key (KB) and wherein indication of said challenge (RX) in said response (13, 33) indicates that said request has been carried out.
摘要翻译：本发明涉及一种数字权限管理系统（40），用于将应用单元（1，21,41）和驱动单元（3,23,43）复制到受保护内容的访问权限控制到应用单元（1），21,41）到驱动单元（3,23,43）以及相应的数字版权管理方法。为了允许在数字权利的管理中增加安全性，其中特别是使得“过滤器驱动程序” - 不可能或者至少基本上是复杂的，并且关于数字权利及其执行给出的命令的可靠确认提出了一种数字版权管理系统（40），其中所述应用单元（1，21,41）包括用于存储总线密钥（KB）的密钥存储单元（45），用于生成请求的请求生成单元（47）（7,27）由所述驱动单元执行，包括关于所述访问权限和询问（RX）的消息，用于发送所述请求（7,27）并用于接收响应（13,27）的通信单元（51） 33）到来自所述驱动单元（3,23,43）的所述请求（7,27）的响应验证单元（49），用于通过以下步骤验证所述请求（7,27）和所述响应（13,33）之间的链接的响应验证单元使用所述总线密钥（KB）解码所述响应（13,33），并通过检查是否存在所述查询的指示所述响应（13,33）中的振铃（RX）和所述驱动单元（3,23,43）包括用于存储总线密钥（KB）的密钥存储单元（55），用于接收请求的通信单元（7,27），包括关于所述访问权限的消息和来自所述应用单元（1，21,41）的询问（RX）并且用于向所述请求（1,21,41）发送响应（13,33），用于验证所述请求（7,27）并处理所述消息的请求处理单元（57），用于产生所述响应（13,33）的响应生成单元（59），包括所述挑战（RX）的指示和对所述消息，其中所述询问（RX）和所述应答的所述指示通过所述总线密钥（KB）加密地链接，并且其中所述响应（13,33）中的所述询问（RX）的指示指示所述请求已经被执行。

8. 发明申请

WO2006064412A1 CONTROLLING DISTRIBUTION AND USE OF DIGITAL WORKS 审中-公开
标题翻译：控制分布和使用数字工作
公开(公告)号：WO2006064412A1
公开(公告)日：2006-06-22
申请号：PCT/IB2005/054093
申请日：2005-12-07
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , BAGGEN, Constant, P., M., J. , HAITSMA, Jaap, A. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
发明人： BAGGEN, Constant, P., M., J. , HAITSMA, Jaap, A. , STARING, Antonius, A., M. , TALSTRA, Johan, C.
IPC分类号： G11B20/00
CPC分类号： G11B20/00086 , G11B20/00094 , G11B20/00123 , G11B20/0021 , G11B20/00369 , G11B20/00557 , G11B20/00731 , G11B20/00797 , G11B20/0092
摘要： In order to efficiently prevent the save-and-restore attack on usage rights associated with digital work, these usage rights are protected by a hidden channel. In order to make it a difficult or expensive to manipulate the hidden channel, a device is proposed comprising: writing means (34) for writing on a record carrier (20) said digital work (DW) and attached usage right information (22) defining one or more conditions to be satisfied in order for the usage right to be exercised, - fingerprint extraction means (23) for deriving fingerprint data (24) from physically uncontrollable, changeable non-uniformities on said record carrier (20) , and authentication means (25) for generating authentication data (26) from said fingerprint data (24) and said usage right information (22) , said authentication data being provided for authenticating said usage right information, said writing means (34) being adapted for writing said authentication data (25) on said record carrier (20) .
摘要翻译：为了有效地防止与数字作品相关的使用权的保存和恢复攻击，这些使用权利被隐藏的信道保护。为了使操作隐藏通道变得困难或昂贵，提出了一种设备，包括：写入装置（34），用于在记录载体（20）上写入所述数字作业（DW）和附加的使用权信息（22），其定义为了使用权被行使而要满足的一个或多个条件; - 指纹提取装置（23），用于从所述记录载体（20）上的物理不可控，可变的不均匀性导出指纹数据（24）;以及认证装置（25），用于从所述指纹数据（24）和所述使用权信息（22）生成认证数据（26），所述认证数据被提供用于认证所述使用权信息，所述写入装置（34）适于写入所述认证所述记录载体（20）上的数据（25）。

9. 发明申请

WO2004006121A2 METHOD AND ARRANGEMENT FOR PROCESSING A SIGNAL USING A DIGITAL PROCESSOR HAVING A GIVEN WORD LENGTH 审中-公开
标题翻译：使用具有字长的数字处理器处理信号的方法和装置
公开(公告)号：WO2004006121A2
公开(公告)日：2004-01-15
申请号：PCT/IB2003/002529
申请日：2003-07-02
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , LINNARTZ, Johan, P., M., G. , KALKER, Antonius, A., C., M. , TALSTRA, Johan, C. , STARING, Antonius, A., M.
发明人： LINNARTZ, Johan, P., M., G. , KALKER, Antonius, A., C., M. , TALSTRA, Johan, C. , STARING, Antonius, A., M.
IPC分类号： G06F17/10
CPC分类号： G06T1/005 , G06F17/142 , G06T2201/0052 , G06T2201/0065
摘要： A digital signal processor such as a watermark detector (12-18) operating with integer arithmetic circuits has a certain accuracy. Each processing step (multiplication, addition) increases the number of bits (the word length). For example, the Fast Fourier Transform (12) having a butterfly structure requires a plurality of such processing steps to be performed. In practical implementations, the processing steps are recursively performed by a single integer arithmetic circuit having a given word length, say N. After each step, the word length of the signal is reduced to the given word length N by rounding, truncation, or some other smart form of quantization. In order to prevent quantization errors, the signal is pre-processed by a pre-processor (19) which reduces the word length and which is invariant with respect to the subsequent process. This means that if the pre-processor operated with infinite accuracy, it would have no effect on the subsequent process. If such a pre-processor operates with finite accuracy, it will reduce the quantization noise.
摘要翻译：诸如使用整数运算电路工作的水印检测器（12-18）的数字信号处理器具有一定的精度。每个处理步骤（乘法，加法）增加位数（字长）。例如，具有蝶形结构的快速傅里叶变换（12）需要执行多个这样的处理步骤。在实际实现中，处理步骤由具有给定字长（例如N）的单个整数运算电路递归地执行。在每个步骤之后，通过舍入，截断或一些信号将信号的字长减小到给定字长度N 其他智能形式的量化。为了防止量化误差，信号由预处理器（19）预处理，预处理器（19）减小了字长并且相对于后续处理是不变的。这意味着如果预处理器以无限精度操作，则对后续处理将不起作用。如果这样的预处理器以有限的精度操作，则它将减少量化噪声。

10. 发明申请

WO2003049106A3 METHOD AND APPARATUS FOR VERIFYING THE INTEGRITY OF SYSTEM DATA 审中-公开
公开(公告)号：WO2003049106A3
公开(公告)日：2003-06-12
申请号：PCT/IB2002/005114
申请日：2002-12-02
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , TALSTRA, Johan, C. , STARING, Antonius, A., M.
发明人： TALSTRA, Johan, C. , STARING, Antonius, A., M.
IPC分类号： G11B20/00
摘要： The present invention relates to a method of verifying the integrity of system data, particularly of copy protection information like an Effective Key Block or a Media Key Block including revocation data for revoking untrusted devices. At present cryptographic information relating to content-protection is prerecorded on disks. In order to avoid that this information is changed which poses a security risk, a cryptographic hash of the cryptographic information is stored on the disk in read-only manner according to a known method. However, the processing according to a known method is slow and increases the start-up time. This problem is solved according to the present invention by a method of verifying the integrity of system data, comprising the steps of: generating a cryptographic key from said system data, generating check data from said cryptographic key using a hash function, and verifying the integrity of said system data by comparing the generated check data with a trusted version of said check data. The invention further refers to a method generating such check data, to corresponding apparatuses, to a storage medium and to a computer program.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式