IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
UP-0943413
(2004-09-17)
|
등록번호 |
US-7707643
(2010-05-20)
|
발명자
/ 주소 |
- DeMello, Marco A.
- Krishnaswamy, Vinay
- Manferdelli, John L.
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 |
피인용 횟수 :
14 인용 특허 :
63 |
초록
▼
A digital rights management system for the distribution, protection and use of electronic content. The system includes a client architecture which receives content, where the content is preferably protected by encryption and may include a license and individualization features. Content is protected
A digital rights management system for the distribution, protection and use of electronic content. The system includes a client architecture which receives content, where the content is preferably protected by encryption and may include a license and individualization features. Content is protected at several levels, including: no protection; source-sealed; individually-sealed (or “inscribed”); source-signed; and fully-individualized (or “owner exclusive”). The client also includes and/or receives components which permit the access and protection of the encrypted content, as well as components that allow content to be provided to the client in a form that is individualized for the client. In some cases, access to the content will be governed by a rights construct defined in the license bound to the content. The client components include an object which accesses encrypted content, an object that parses the license and enforces the rights in the license, an object which obtains protection software and data that is individualized for the client and/or the persona operating the client, and a script of instructions that provides individualization information to a distributor of content so that the content may be individualized for the client and/or its operating persona. Content is generally protected by encrypting it with a key and then sealing the key into the content in a way that binds it to the meta-data associated with the content. In some instances, the key may also be encrypted in such a way as to be accessible only by the use of individualized protection software installed on the client; thereby binding use of the content to a particular client or set of clients.
대표청구항
▼
what is claimed is: 1. A computing device adapted to communicate via a network infrastructure, comprising: a long-term storage device; a plurality of individual user secure repositories on the long term storage device for storing content files, each repository created using a unique user login iden
what is claimed is: 1. A computing device adapted to communicate via a network infrastructure, comprising: a long-term storage device; a plurality of individual user secure repositories on the long term storage device for storing content files, each repository created using a unique user login identifier and unique hardware identifiers derived from hardware components on the individual user's computing device and supplied by the individual user; a user interface adapted to interact with the computing device and for launching a rendering application; a management module, separate from the rendering application and interfaceable to any of a plurality of rendering applications that include the rendering application, that receives a communication from the rendering application to access a content file stored on the long-term storage device, wherein the content file and a pre-generated secure repository private/public key pair is stored in the individual user secure repository of the individual user in a format encrypted using said unique user login identifier and hardware identifiers; the management module providing access to the individual user secure repository of the individual user from any one of a plurality of devices associated with the individual user; and wherein the management module returns a private key of said private/public key pair which enables the use of the content file by the rendering application, and wherein the private key comprises a key to decrypt the content file, the private key obtained from an activation certificate obtained during activation of the rendering application. 2. The computing device of claim 1, wherein the management module authenticates the rendering application prior to returning the private key. 3. A method of supporting a content distribution system, said method comprising the acts of: providing, to a software developer first entity, an interface for requesting at least one service, said interface being usable by a digital content rendering application; providing, to a consumer of encrypted information, a set of computer-executable instructions that provide one or more services; creating a plurality of individual-user secure repositories on a storage device, each individual-user secure repository created using a unique user login identifier and unique hardware identifiers derived from hardware components on the individual user's computing device and supplied by the individual user; providing access to the individual user secure repository of the individual user from any one of a plurality of devices associated with the individual user; generating a secure private/public key pair for each individual-user secure repository and storing the secure private/public key pair within the associated repository; wherein said computer-executable instructions are invocable by way of said interface, and wherein said one or more services include enabling the use of the encrypted information, the one or more services including a private key of the secure private/public key pair to decrypt the encrypted information, the private key obtained from the individual-user secure repository of the individual user. 4. The method of claim 3, wherein said set of computer-executable instructions comprises a component object model (COM) object. 5. The method of claim 3, wherein said one or more services include decrypting the encrypted information for provision to said software developer first entity. 6. The method of claim 3, wherein said one or more services include unsealing at least some of the encrypted information. 7. The method of claim 3, wherein said one or more services include authenticating a digital content rendering application. 8. A method of using a content file stored in an encrypted format, said method comprising the acts of: creating a plurality of individual-user secure repositories on a storage device, each individual-user secure repository created using a unique user login identifier and unique hardware identifiers derived from hardware components on the individual user's computing device and supplied by the individual user; generating a secure private/public key pair for each individual-user secure repository and storing the secure private/public key pair within the associated repository; providing access to the individual user repository of the individual user from any one of a plurality of devices associated with the individual user; issuing a first request to provide a private key of the secure private/public key pair which enables the use of the content file, wherein the private key is obtained from the individual-user secure repository of the individual user and generates an activation certificate that activates a reader to view the content file; and if the content file is sealed with information pertaining to an authorized user, issuing a second request using the activation certificate to provide second data which includes the information. 9. The method of claim 8, wherein said first request is issued to an object which satisfies said first and second requests. 10. The method of claim 9, wherein said object comprises a component object model (COM) object.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.