System and method for protecting data files by periodically refreshing a decryption key
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
H04L-009/00
H04K-001/00
출원번호
US-0468747
(1999-12-21)
발명자
/ 주소
Wang, Xin
출원인 / 주소
ContentGuard Holdings, Inc.
대리인 / 주소
NixonPeabody, LLP
인용정보
피인용 횟수 :
38인용 특허 :
139
초록▼
Methods for transferring among key holders in encoding and cryptographic systems the right to decode and decrypt messages in a way that does not explicitly reveal decoding and decrypting keys used and the original messages. Such methods are more secure and more efficient than typical re-encoding and
Methods for transferring among key holders in encoding and cryptographic systems the right to decode and decrypt messages in a way that does not explicitly reveal decoding and decrypting keys used and the original messages. Such methods are more secure and more efficient than typical re-encoding and re-encryption schemes, and are useful in developing such applications as document distribution and long-term file protection.
대표청구항▼
1. A method for protecting a data file on a computer system, comprising the steps of:providing a grantee's encryption key, a grantee's decryption key, a grantor's encryption key, and a grantor's decryption key; using asymmetric encryption, encrypting the data file using the grantor's encryption key
1. A method for protecting a data file on a computer system, comprising the steps of:providing a grantee's encryption key, a grantee's decryption key, a grantor's encryption key, and a grantor's decryption key; using asymmetric encryption, encrypting the data file using the grantor's encryption key to create an encrypted data file; generating a transformation key from the grantor's decryption key, the grantee's encryption key and other data which is data file independent; transforming the encrypted data file with the transformation of the encrypted data file does not reveal the data file during the process of transforming; providing the transformed encrypted data file to the grantee; and decrypting the transformed encrypted file by the grantee with the grantee's decryption key; wherein the transformation key does not allow the grantee to determine the grantor's decryption key. 2. The method of claim 1, further comprising the step of repeating the generating step, and transforming step and the providing step on a periodic basis.3. A processor-driven system adapted to protect a data file, the system comprising:a processor; and a memory coupled to the processor for storing the data file; wherein the processor is programmed to perform the steps of: providing a grantee's encryption key, a grantee's decryption key, a grantor's encryption key, and a grantor's decryption key; using asymmetric encryption, encrypting the data file using the grantor's encryption key to create an encrypted data file; generating a transformation key from the grantor's decryption key, the grantee's encryption key and other data which is data file independent; transforming the encrypted data file with the transformation key to generate a transformed encrypted data file wherein the transforming does not reveal the data file during the process of transforming; providing the transformed encrypted data file to the grantee; and decrypting the transformed encrypted file by the grantee with the grantee's decryption key; wherein the transformation key does not allow the grantee to determine the grantor's decryption key. 4. The processor-driven system of claim 3, further comprising a communication interface.5. The processor-driven system of claim 3, wherein the processor and the memory are included within a portable device.6. The processor-driven system of claim 3, wherein the processor and the memory are included within a smart card.7. The method of claim 1, wherein said generating step comprises generating the transformation key from the grantor's decryption key, the grantee's encryption key, and the ciphertext of the encrypted data file.8. The method of claim 1 wherein said generating step comprises generating the transformation key from the grantor's decryption key, the grantee's encryption key, and a random variable.9. The method of claim 1 wherein said generating step comprises generating the transformation key from the grantor's decryption key, the grantee's encryption key, the ciphertext of the encrypted data file, and a random variable.10. The processor driven system of claim 3, wherein said generating step comprises generating the transformation key from the grantor's decryption key, the grantee's encryption key, and the ciphertext of the encrypted data file.11. The processor driven system of claim 3, wherein said generating step comprises generating the transformation key from the grantor's decryption key, the grantee's encryption key, and a random variable.12. The processor driven system of claim 3, wherein said generating step comprises generating the transformation key from the grantor's decryption key, the grantee's encryption key, the ciphertext of the encrypted data file, and a random variable.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (139)
Wobber Edward (Menlo Park CA) Abadi Martin (Palo Alto CA) Birrell Andrew (Los Altos CA) Lampson Butler (Cambridge MA), Access control subsystem and method for distributed computer system using locally cached authentication credentials.
Davis Derek L. (Phoenix AZ) Smith Lionel (Queen Creek AZ), Apparatus and method for preventing disclosure through user-authentication at a printing node.
Russell Edward A. (Acton MA), Authorization system for obtaining in single step both identification and access rights of client to server directly fro.
Kenneth Louis Milsted ; Craig Kindell ; Qing Gong, Automated method and apparatus to package digital content for electronic distribution using the identity of the source content.
Barnes Vera L. (Wayne PA) Dodds ; Jr. Thomas J. (Drexel Hill PA) Gibson Harold F. (Downington PA) Campbell ; Jr. Carl M. (Newtown Square PA), Communications line authentication device.
Fischer Addison M. (60 14th Ave. South Naples FL 33942), Computer system security method and apparatus for creating and using program authorization information data structures.
Fischer Addison M. (60 14th Ave. South Naples FL 33942), Computer system security method and apparatus having program authorization information data structures.
Narasimhalu Arcot D. (Singapore SGX) Wang Weiguo (Singapore SGX) Kankanhalli Mohan S. (Singapore SGX), Controlled dissemination of digital information.
Downer Robert R. (Medfield MA) Noonan Richard C. (Belmont MA) Dalke David M. (Marlborough MA), Controlling machine operation with respect to consumable accessory units.
Hartrick Thomas V. (Gaithersburg MD) Stevens Jeffrey N. (Gaithersburg MD) Sabia Nicholas J. (Silver Spring MD), Data processing system and method to enforce payment of royalties when copying softcopy books.
Geffrotin Bernard (Meudon FRX), Data processing system comprising authentification means viz a viz a smart card, an electronic circuit for use in such s.
Stefik Mark J. (Woodside CA) Russell Daniel M. (Palo Alto CA) Bobrow Daniel G. (Palo Alto CA) Henderson ; Jr. D. Austin (La Honda CA), Document processing system utilizing document service cards to provide document processing services.
Elmer Thomas I. (Sunnyvale CA) Nguyen Tuan T. (Milpitas CA) Lin Rung-Pan (San Jose CA), Encryption of streams of addressed information to be used for program code protection.
Chandra Akhileshwari N. (Mahopac NY) Comerford Liam D. (Carmel NY) White Steve R. (New York NY), Implementing a shared higher level of privilege on personal computers for copy protection of software.
Akiyama Ryota,JPX ; Hasebe Takayuki,JPX ; Yoshioka Makoto,JPX, Information distribution system wherein storage medium storing ciphered information is distributed.
Okano Hirokazu (1-8-6 ; Kurakake Asakita-Ku ; Hiroshima-shi ; Hiroshima JPX), Information processing system using error-correcting codes and cryptography.
Lessin Arlen R. (New York NY) Gruppuso Frank M. (Commack NY) Harrison Shelley A. (Dix Hills NY), Intelligent portable interactive personal data system.
Stefik Mark J. (Woodside CA) Bobrow Daniel G. (Palo Alto CA) Card Stuart K. (Los Altos CA) Casey Michalene M. (Morgan Hill CA) Goldstein Richard J. (San Francisco CA) Lamming Michael G. (Cambridge CA, Interactive contents revealing storage device.
Hershey Antoinette F. (Acton MA) French Andrew H. (Lexington MA) Boire Christopher P. (Westborough MA), License mangagement system and license storage key.
Johnson Donavon W. (Georgetown TX) Morgan Stephen P. (Mahopac NY) Smith Todd A. (Austin TX), Maintenance of file attributes in a distributed data processing system.
Cooper Thomas Edward ; Pryor Robert Franklin, Method and apparatus for enabling trial period use of software products: method and apparatus for generating a machine-d.
Cooper Thomas E. (Louisville CO) Nagda Jagdish (Boulder CO) Pryor Robert F. (Longmont CO), Method and apparatus for enabling trial period use of software products: method and apparatus for passing encrypted file.
Cooper Thomas Edward ; Phillips Hudson Wayne ; Pryor Robert Franklin, Method and apparatus for enabling trial period use of software products: method and apparatus for utilizing a decryption.
Chou Wayne W. (25 Hauley Pl. Ridgefield CT 06877) Erett Richard E. (78 White Birch La. Stamford CT 06905), Method and apparatus for protecting computer software utilizing coded filter network in conjunction with an active coded.
Jones Gregory A. (Seattle WA) Price Robert M. (Seattle WA) Veghte William L. (Bellevue WA), Method and system for authenticating access to heterogeneous computing services.
Halter Bernard J. (Longmont CO) Bracco Alphonse M. (Reston VA) Johnson Donald B. (Manassas VA) Le An V. (Manassas VA) Matyas Stephen M. (Manassas VA) Prymak ; deceased Rostislaw (late of Dumfries VA , Method and system for multimedia access control enablement.
Janis Frederick L. (Keller TX), Method and system for providing user access control within a distributed data processing system by the exchange of acces.
Janis Frederick L. (Keller TX), Method and system for variable authority level user access control in a distributed data processing system having multip.
Ye Shin-Ju,FRX ; Rabiller Philippe,FRX ; Keskes Naamen,FRX, Method for automatic detection of planar heterogeneities crossing the stratification of an environment.
Griffeth Nancy D. (Westfield NJ) Velthuijsen Hugo (Den Haag NLX), Method for resolving conflicts among distributed entities through the generation of counter proposals by transversing a.
Chou Wayne W. (Ridgefield CT) Kulinets Joseph M. (Stamford CT) Elteto Laszlo (Stamford CT) Engel Frederik (Wilton CT), Method of software distribution protection.
Elliott John C. (Summit NJ) O\Connell James A. (Short Hills NJ) Ladouceur Lawrence (Scarsdale NY) Altman William (Lower Paxton PA) Jarett Keith (Oakland CA), Multi-issuer transaction device with individual identification verification plug-in application modules for each issuer.
Johnson Herrick J. (Marblehead MA) Olson Margaret (Nashua NH) Jones Stuart (Cambridge MA) Bodoff Stephanie (Somerville MA) Bertrand Stephen C. (Waltham MA) Levine Paul H. (Carlisle MA), Network license server.
Johnson Donald B. (Manassas VA) Le An V. (Manassas VA) Matyas Stephen M. (Manassas VA) Prymak Rostislaw (Dumfries VA) Wilkins John D. (Somerville VA), Secure cryptographic operations using control vectors generated inside a cryptographic facility.
Chandra Ashileshwari N. (Mahopac NY) Comerford Liam D. (Carmel NY) White Steve R. (New York NY), Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocess.
Van Wie David M. ; Weber Robert P., Steganographic techniques for securely delivering electronic digital rights management control information over insecure.
Van Wie David M. ; Weber Robert P., Steganographic techniques for securely delivering electronic digital rights management control information over insecure communication channels.
Chan Alfred ; Kekicheff Marc B. ; Weise Joel M. ; Wentker David C., System and method for a multi-application smart card which can facilitate a post-issuance download of an application onto the smart card.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., System and methods for secure transaction management and electronic rights protection.
Stefik Mark J. (Woodside CA) Bobrow Daniel G. (Palo Alto CA) Pirolli Peter L. T. (El Cerrito CA), System for controlling the distribution and use of composite digital works.
Stefik Mark J. (Woodside CA) Merkle Ralph C. (Sunnyvale CA) Pirolli Peter L. T. (El Cerrito CA), System for controlling the distribution and use of digital works having a fee reporting mechanism.
Stefik Mark J. ; Petrie Glen W. ; Okamoto Steve A. ; Briggs Nicholas H., System for controlling the distribution and use of rendered digital works through watermaking.
Volk Larry N. (3320 Royce Ct. Las Vegas NV), System for vending program cartridges which have circuitry for inhibiting program usage after preset time interval expir.
Edwards ; Jr. Gordon L. (Easley SC), System with software usage timer and counter for allowing limited use but preventing continued unauthorized use of prote.
Saigh Michael M. ; Chang Edward H. ; Brockhouse Douglas B. ; Chang Hsiao-Shih, Systems and apparatus for electronic communication and storage of information.
Shear Victor H. ; Van Wie David M. ; Weber Robert P., Systems and methods for matching, selecting, narrowcasting, and/or classifying based on rights management and/or other information.
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Karl L. Ginter ; Victor H. Shear ; Francis J. Spahn ; David M. Van Wie, Systems and methods for secure transaction management and electronic rights protection.
Karl L. Ginter ; Victor H. Shear ; Francis J. Spahn ; David M. Van Wie, Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for the secure transaction management and electronic rights protection.
Aldous Stephen C. (Salt Lake City UT) Dake Guy M. (Sandy UT), Systems for connection of physical/electrical media connectors to computer communications cards.
Hall Edwin J. ; Shear Victor H. ; Tomasello Luke S. ; Van Wie David M. ; Weber Robert P. ; Worsencroft Kim ; Xu Xuejun, Techniques for defining using and manipulating rights management data structures.
Hall Edwin J. ; Shear Victor H. ; Tomasello Luke S. ; Van Wie David M. ; Weber Robert P. ; Worsencroft Kim ; Xu Xuejun, Techniques for defining, using and manipulating rights management data structures.
Abraham Dennis G. (Concord NC) Aden Steven G. (Charlotte NC) Arnold Todd W. (Charlotte NC) Neckyfarow Steven W. (Charlotte NC) Rohland William S. (Charlotte NC), Transaction system security method and apparatus.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M. ; Weber Robert P., Trusted and secure techniques, systems and methods for item delivery and execution.
Pavlov Leonidas P. (Colorado Springs CO) Aba-Jbara Nabil M. (Colorado Springs CO), Unitary, self-contained card verification and validation system and method.
Abraham Dennis G. (Concord NC) Henningsmeyer Daniela (Stuttgart VA DEX) Hudson John M. (Manassas VA) Johnson Donald B. (Manassas VA) Le An V. (Manassas VA) Matyas Stephen M. (Manassas VA) Stevens Jam, User defined function facility.
Cohen Jason M. (20 Skookwams Ct. West Islip NY 11795), Video communications system having a remotely controlled central source of video and audio data.
Scalisi, Joseph F.; Butler, David; Anderson, Roger B.; Mejia, Desiree; Beydler, Michael L., Apparatus and method for determining location and tracking coordinates of a tracking device.
Scalisi, Joseph F.; Butler, David; Anderson, Roger B.; Mejia, Desiree; Beydler, Michael L., Apparatus and method for determining location and tracking coordinates of a tracking device.
Scalisi, Joseph F.; Butler, David; Anderson, Roger B.; Mejia, Desiree; Beydler, Michael L., Apparatus and method for determining location and tracking coordinates of a tracking device.
Scalisi, Joseph F.; Butler, David; Anderson, Roger B.; Mejia, Desiree; Beydler, Michael L., Apparatus and method for determining location and tracking coordinates of a tracking device.
Scalisi, Joseph F.; Mejia, Desiree; Butler, David; Anderson, Roger B., Apparatus and method for generating position fix of a tracking device in accordance with a subscriber service usage profile to conserve tracking device power.
Anderson, Roger B.; Anderson, Jennifer B., Apparatus and method to provide secure communication over an insecure communication channel for location information using tracking devices.
Hahn, Timothy J.; Palmer, Jr., Bernard P.; Waidner, Michael P.; Whitmore, James J., Software protection using an installation product having an entitlement file.
Hahn, Timothy J.; Palmer, Jr., Bernard P.; Waidner, Michael P.; Whitmore, James J., Software protection using an installation product having an entitlement file.
Hahn, Timothy J.; Palmer, Jr., Bernard P.; Waidner, Michael P.; Whitmore, James J., Software protection using an installation product having an entitlement file.
Scalisi, Joseph F.; Mejia, Desiree; Morse, David M.; Beydler, Michael L., System and method for creating and managing a personalized web interface for monitoring location information on individuals and objects using tracking devices.
Beydler, Michael L.; Anderson, Roger B.; Scalisi, Joseph F.; Mejia, Desiree; Morse, David M., System and method for improved communication bandwidth utilization when monitoring location information.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.