IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
US-0467510
(2006-08-25)
|
등록번호 |
US-7376831
(2008-05-20)
|
발명자
/ 주소 |
- Kollmyer,Brad
- Baker,Brian A.
- Shapiro,Eric Bradley
- Kollmyer,Aric
- Rutman,Mike
- MacLean,Charles Duncan
- Robertson,Dan
- Taylor,Neal
- Hunsche,Dick
- Walker,Amanda
|
출원인 / 주소 |
- Widevine Technologies, Inc.
|
대리인 / 주소 |
|
인용정보 |
피인용 횟수 :
59 인용 특허 :
106 |
초록
▼
An apparatus, system, and method are directed towards parsing and selectively encrypting different portions of data in real-time, decrypting the encrypted data in real-time, and passing the data to a media player on a client computer or other network capable device. Data in a network packet may be p
An apparatus, system, and method are directed towards parsing and selectively encrypting different portions of data in real-time, decrypting the encrypted data in real-time, and passing the data to a media player on a client computer or other network capable device. Data in a network packet may be parsed into payload and non-payload portions. The payload portion of the packet data may then be examined to determine whether a predefined type of the data is recognized. For example, in one embodiment, the predefined data type may be media content. If the payload portion is recognized as a predefined data type, then it may be selectively encrypted. The selectively encrypted payload portion and non-payload portion of the packet may then be combined, such that the non-payload portion may be employed by firewalls, proxies, and/or NATs to route the packet towards the client computer or other network capable device.
대표청구항
▼
What is claimed as new and desired to be proteceted by Letters Patent of the United States is: 1. An encryption bridge for selectively encrypting data to a client device, comprising: a network component that is configured to send and receive data over a network; and a processor that is operative to
What is claimed as new and desired to be proteceted by Letters Patent of the United States is: 1. An encryption bridge for selectively encrypting data to a client device, comprising: a network component that is configured to send and receive data over a network; and a processor that is operative to perform actions, including: receiving a packet; examining a payload portion of the packet for a predefined data type, and if the payload portion includes the predefined data type, selectively encrypting the payload portion and; employing, in part, the network component, to send the selectively encrypted payload portion in another packet towards another network device, over the network. 2. The encryption bridge of claim 1, wherein the processor is operative to perform actions, further comprising: if the payload portion does not include a recognized predefined data type, based on the examination, then employing, in part, the network component, to send the payload and non-payload portions towards another network device, over the network. 3. The encryption bridge of claim 1, wherein the processor is operative to perform actions, further comprising: downloading onto the other network device, a component that is configured to enable the other network device to decrypt the selectively encrypted payload portion of the other packet. 4. The encryption bridge of claim 3, wherein the processor is operative to perform actions, further comprising: exchanging encryption keys with the downloaded component for use in decrypting the selectively encrypted payload portion. 5. The encryption bridge of claim 1, wherein the processor is operative to perform actions, further comprising: if the other network device is compromised, terminating sending of packets to the other network device. 6. The encryption bridge of claim 1, wherein the predefined data types further comprises data associated with at least one of multimedia content, an electronic book, a medical record, a medical image, or financial data. 7. The encryption bridge of claim 1, where the processor is operative to perform actions, further comprising: parsing the packet into a payload portion and a non-payload portion. 8. The encryption bridge of claim 1, where the processor is operative to perform actions, further comprising: combining at least the non-payload portion and the selectively encrypted payload portion. 9. A computer-readable storage medium having computer-executable instructions for managing data over a network, the computer-executable instructions when installed onto a computing device enable the computing device to perform actions, comprising: receiving a stream of packets; examining a payload portion of each packet for a predefined data type, and if at least one of the payload portions includes the predefined data type, selectively encrypting the at least one payload portion; and streaming at least the selectively encrypted payload portions in packets over the network. 10. The computer-readable storage medium of claim 9, further comprising: negotiating an encryption/decryption key and key exchange with another computing device for use in decrypting of the streaming packets. 11. The computer-readable storage medium of claim 9, wherein the computing device to perform actions, further comprising: enabling downloading and installing of a component onto another computing device for use in decrypting the selectively encrypted payload portions of the streamed packets. 12. The computer-readable storage medium of claim 11, wherein the component is installed on the other computing device in volatile memory. 13. The computer-readable storage medium of claim 9, wherein the computing device to perform actions, further comprising: monitoring another computing device, to which the streamed network packets are being sent; and if it is determined that the other computing device is compromised, terminating the streaming of the packets. 14. The computer-readable storage medium of claim 9, wherein the computing device is configured to receive a different stream of network packets from a plurality of different servers, and to further provide streaming of network packets to a plurality of different client devices. 15. The computer-readable storage medium of claim 14, wherein each of the plurality of different client devices receives a stream of network packets selectively encrypted with a unique encryption key for the client device. 16. A system for managing data securely over a network, comprising: a first device that is operative to perform actions, including: receiving a packet; examining a payload portion of the packet for a predefined data type, and if the payload portion includes the predefined data type, selectively encrypting the payload portion and; communicating the selectively encrypted portions over the network in a packet; and a second device that is operative to perform actions, including: receiving the communicated packet, parsing the received packet into the payload and the non-payload portion, and decrypting the selectively encrypted payload portion. 17. The system of claim 16, wherein: The second device is operative to negotiate and exchange a key for use in at least one of encrypting or decrypting the selectively encrypted payload portion with another device.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.