[특허]System and method for delivering encrypted information in a communication network using location indentity and key tables

System and method for delivering encrypted information in a communication network using location indentity and key tables 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G06F-012/14
출원번호	US-0561857 (2006-11-20)
등록번호	US-8472627 (2013-06-25)
발명자 / 주소	Denning, Dorothy E. Glick, Barry J. Karpf, Ronald S. Seiler, Mark E.
출원인 / 주소	Geocodex LLC
대리인 / 주소	O'Melveny & Myers LLP
인용정보	피인용 횟수 : 10 인용 특허 : 56

초록 ▼

Access to digital data is controlled by encrypting the data in such a manner that it can be decrypted only at a specified location, within a specific time frame, and with a secret key. Data encrypted in such a manner is said to be geo-encrypted. This geo-encryption process comprises a method in which plaintext data is first encrypted using a data encrypting key that is generated at the time of encryption. The data encrypting key is then encrypted (or locked) using a key encrypting key and information derived from the location of the intended receiver. The encrypted data encrypting key is then transmitted to the receiver along with the ciphertext data. The receiver both must be at the correct location and must have a copy of the corresponding key decrypting key in order to derive the location information and decrypt the data encrypting key.

대표청구항 ▼

1. A system for controlling access to content data, comprising: a receiver device, anda distributor device comprising a memory, a cryptographic engine adapted to perform encryption and decryption functions, and a processor operatively coupled to the memory and the cryptographic engine, the processor of the distributor device being adapted to communicate with the receiver device via a communications network, wherein the processor of the distributor device is further adapted to: (a) enable the cryptographic engine of the distributor device to use a data encrypting/decrypting key to encrypt the content data;(b) enable the cryptographic engine of the distributor device to use a key encrypting/decrypting key to encrypt both the data encrypting/decrypting key and at least one content-owner constraint; and(c) send the encrypted content data, the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint to the receiver device via the communications network;wherein the receiver device comprises a memory, a cryptographic engine adapted to perform encryption and decryption functions, and a processor operatively coupled to the memory and the cryptographic engine, the processor of the receiver device being adapted to communicate with the communications network, wherein the processor of the receiver device is further adapted to: (a) receive via the communications network the encrypted content data, the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint;(b) enable the cryptographic engine of the receiver device to decrypt both the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraints;(c) decrypt the encrypted content data if the at least one content-owner constraint is satisfied, and(d) enable the cryptographic engine of the receiver device to use a second key encrypting/decrypting key to re-encrypt the data encrypting/decrypting key and to send the encrypted content data and the re-encrypted data encrypting/decrypting key to at least one other receiver device via the communications network, wherein the second key encrypting/decrypting key is different from the first key encrypting/decrypting key. 2. The system of claim 1, wherein the processor of the receiver device is further adapted to enable the cryptographic engine of the receiver device to use the key encrypting/decrypting key to decrypt both the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraints. 3. The system of claim 1, wherein the processor of the distributor device is further adapted to generate the data encrypting/decrypting key. 4. The system of claim 1, wherein the processor of the distributor device is further adapted to generate the key encrypting/decrypting key. 5. The system of claim 1, wherein the processor of the receiver device is further adapted to generate the second key encrypting/decrypting key. 6. The system of claim 1, wherein the processor of the receiver device is further adapted to generate a key identifier (ID) associated with the second key encrypting/decrypting key and to send the key ID and the second key encrypting/decryption key to the at least one other receiver. 7. The system of claim 6, wherein the processor of the receiver device is further adapted to enable the cryptographic engine of the receiver device to encrypt the second key encrypting/decrypting key and the key ID before it is sent to the at least one other receiver. 8. The system of claim 1, wherein the at least one content-owner constraint comprises a permissible time period for use of the content data, and the receiver device further comprises a time source, the processor of the receiver device being further adapted to retrieve a current time measurement from the time source and determine whether the current time measurement satisfies the permissible time period. 9. The system of claim 1, wherein the at least one content-owner constraint comprises a permissible geographical proximity for use of the content data, wherein the receiver device further comprises a geographic data source, the processor of the receiver device being further adapted to retrieve a current geographic location measurement from the geographic data source, and determine whether the current geographic location satisfies the permissible geographic proximity. 10. The system of claim 1, wherein the at least one content-owner constraint comprises at least a permissible time period for use of the content data and a permissible geographical proximity for use of the content data. 11. The system of claim 1, wherein the receiver device comprises a tamperproof, secure enclosure for preventing unauthorized access to at least the data encrypting/decrypting key. 12. The system of claim 11, wherein the at least one other receiver device comprises a tamperproof, secure enclosure for preventing unauthorized access to at least the data encrypting/decrypting key. 13. The system of claim 1, wherein the processor of the receiver device is further adapted to enable the cryptographic engine of the receiver device to use the data encrypting/decrypting key to decrypt the content data if the at least one content-owner constraint is satisfied. 14. The system of claim 6, wherein the processor of the receiver device is further adapted to enable the cryptographic engine of the receiver device to use the second key encrypting/decrypting key to encrypt at least one other content-owner constraint and send the at least one other encrypted content-owner constraint to the at least one other receiver. 15. The system of claim 14, wherein the at least one other content-owner constraint is the same as the at least one content-owner constraint. 16. The system of claim 14, wherein the at least one other content-owner constraint is at least partially the same as the at least one content-owner constraint. 17. The system of claim 14, further comprising the at least one other receiver, wherein the at least one other receiver device comprises a memory, a cryptographic engine adapted to perform at least a decryption function, and a processor operatively coupled to the memory and the cryptographic engine, the processor of the at least one other receiver device being adapted to receive via the communications network the second key encrypting/decrypting key and the key ID, and to store the second key encrypting/decrypting key and the key ID in the memory of the at least one other receiver so that the key ID is linked to the second key encrypting/decrypting key. 18. The system of claim 17, wherein the processor of the at least one other receiver device is further adapted to (i) receive via the communications network the encrypted content data, the re-encrypted data encrypting/decrypting key, and the at least one other encrypted content-owner constraint, (ii) receive via the communications network a retransmission of the key ID, (iii) use the key ID to retrieve the second key encrypting/decrypting key from the memory of the at least one other receiver device, and (iii) enable the cryptographic engine of the at least one other receiver device to use the second key encrypting/decrypting key to decrypt the at least one other encrypted content-owner constraint. 19. The system of claim 18, wherein the processor of the at least one other receiver device is further adapted to render the content data if the at least one other content-owner constraint is satisfied. 20. The system of claim 19, wherein the processor of the at least one other receiver device is further adapted to enable the cryptographic engine of the at least one other receiver device to use the data encrypting/decrypting key to decrypt the content data if the at least one other content-owner constraint is satisfied. 21. The system of claim 20, wherein the processor of the at least one other receiver device is further adapted to enable the cryptographic engine of the at least one other receiver device to use the second key encrypting/decrypting key to decrypt the content data if the at least one other content-owner constraint is satisfied. 22. A method for controlling access to content data, comprising: a distributor device (i) using a data encrypting/decrypting key to encrypt the content data, (ii) using a key encrypting/decrypting key to encrypt both the data encrypting/decrypting key and at least one content-owner constraint, and (iii) sending the encrypted content data, the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint to a receiver device via a communication network; anda receiver device (i) receiving via the communications network the encrypted content data, the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint, (ii) decrypting both the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint, (iii) decrypt the encrypted content data if the at least one content-owner constraint is satisfied, (iv) using a second key encrypting/decrypting key to re-encrypt the data encrypting/decrypting key, and (v) sending the encrypted content data and the re-encrypted data encrypting/decrypting key to at least one other receiver device via the communications network. 23. The method of claim 22, wherein the step of the receiver device decrypting both the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint further comprises the receiver device using the key encrypting/decrypting key to decrypt both the encrypted data encrypting/decrypting key and the at least one encrypted content-owner constraint. 24. The method of claim 22, further comprising the distributor device generating the data encrypting/decrypting key. 25. The method of claim 22, further comprising the distributor device generating the key encrypting/decrypting key. 26. The method of claim 22, further comprising the receiver device generating the second key encrypting/decrypting key. 27. The method of claim 23, further comprising the receiver device generating a key identifier (ID) associated with the second key encrypting/decrypting key and sending the key ID and the second key encrypting/decrypting key to the at least one other receiver. 28. The method of claim 27, further comprising the receiver encrypting the key ID and the second key encrypting/decrypting key before sending it to the at least one other receiver. 29. The method of claim 22, wherein the step of determining whether the at least one content-owner constraint is satisfied further comprises the steps of retrieving a current time from a time source and determining whether the current time satisfies a permissible time period. 30. The method of claim 22, wherein the step of determining whether the at least one content-owner constraint is satisfied further comprises the steps of retrieving a current geographic location from a geographic data source and determining whether the current geographic location satisfies a permissible geographic proximity. 31. The method of claim 22, wherein the step of determining whether the at least one content-owner constraint is satisfied further comprises the steps of retrieving a current time, retrieving a current geographical location, determining whether the current time satisfies a permissible time period, and determining whether the current geographic location satisfies a permissible geographic proximity. 32. The method of claim 22, further comprising the receiver device using the data encrypting/decrypting key to decrypt the content data if the at least one content-owner constraint is satisfied. 33. The method of claim 32, further comprising the receiver device using the second key encrypting/decrypting key to encrypt at least one other content-owner constraint and sending the at least one other encrypted content-owner constraint to the at least one other receiver. 34. The method of claim 33, wherein the at least one other content-owner constraint is the same as the at least one content-owner constraint. 35. The method of claim 33, wherein the at least one other content-owner constraint is at least partially the same as the at least one content-owner constraint. 36. The method of claim 33, further comprising the at least one other receiver device receiving via the communications network the second key encrypting/decrypting key and the key ID, and storing the second encrypting/decrypting key and the key ID in a memory of the at least one other receiver device so that the key ID is linked to the second encrypting/decrypting key. 37. The method of claim 36, further comprising the at least one other receiver device (i) receiving via the communications network the encrypted content data, the re-encrypted data encrypting/decrypting key, and the at least one other encrypted content-owner constraint, (ii) receiving via the communications network a retransmission of the key ID, (iii) using the key ID to retrieve the second key encrypting/decrypting key from the memory of the at least one other receiver device, and (iv) using the second key encrypting/decrypting key to decrypt the at least one other encrypted content-owner constraint. 38. The method of claim 37, further comprising the at least one other receiver device using the second key encrypting/decrypting key to decrypt the data encrypting/decrypting key if the at least one other content-owner constraint is satisfied. 39. The method of claim 38, further comprising the at least one other receiver device, after the encrypted data encrypting/decrypting key is decrypted, using the data encrypting/decrypting key to decrypt the encrypted content data. 40. The method of claim 37, wherein the step of the at least one other receiver device using the second key encrypting/decrypting key to decrypt the at least one other encrypted content-owner constraint, further comprises using the second key encrypting/decrypting key to decrypt both the at least one other encrypted content-owner constraint and the data encrypting/decrypting key. 41. The method of claim 40, further comprising the at least one other receiver device using the data encrypting/decrypting key to decrypt the encrypted content data if the at least one other content-owner constraint is satisfied. 42. The method of claim 22, further comprising enclosing the receiver device in a tamperproof, secure enclosure to prevent unauthorized access to at least the data encrypting/decrypting key. 43. The method of claim 22, further comprising enclosing the at least one other receiver device in a tamperproof, secure enclosure to prevent unauthorized access to at least the data encrypting/decrypting key.

이 특허에 인용된 특허 (56)

Michael Mellen ; James E. Disbrow ; William E. Wagner ; James Roesch ; Carl Finney, Access control system for mobile platform using electronic key-embedded location verification data.
상세보기
Wood, David L.; Norton, Derk, Access management system and method employing secure credentials.
상세보기
Minor Halsey M. ; Gandhi Munish ; Headapohl William E. ; Rosenberg Jonathan, Apparatus and method for passing private demographic information between hyperlink destinations.
상세보기
Schipper John F. ; Loomis Peter V. W. ; Pelley Allan M. ; Janky James M. ; Sheynblat Len, Authentication of a message source.
상세보기
Rangedahl Lars ; Ratajski Gregory ; Chien Andrew Ying-Tsai ; Wang James, Automated location verification and authorization system for electronic devices.
상세보기
Shibata Koichi (Osaka JPX) Nakamura Mitsuhiro (Osaka JPX), Communications system capable of communicating encrypted information.
상세보기
Phelan Sean,GBX, Computer system for indentifying local resources.
상세보기
Thomas Mark Hastings ; Michael E. McNeil ; Todd S. Glassey ; Gerald L. Willett, Controlling access to stored information based on geographical location and date and time.
상세보기
Horne Donald R. (Don Mills CAX), Cryptographic system for direct broadcast satellite system.
상세보기
Johnson Woodrow W. ; Atkins Christine J. ; Yoh Jon, Electronic rights management and authorization system.
상세보기
David E. Jones CA; Cormac M. O'Connell CA, Encryption processor with shared memory interconnect.
상세보기
Fennel ; Jr. John W. (Olney MD) Heinz ; Jr. Miles T. (Seabrook MD), Encryption using destination addresses in a TDMA satellite communications network.
상세보기
Brothers Harlan Jay ; Genly Chris Hind, Event verification system.
상세보기
Kilpatrick Paul E. ; Helbig H. Russell, Geographical system for accessing data.
상세보기
Johnson Charles R. (Garland TX) Ward Phillip W. (Dallas TX) Lindley Joe H. (Garland TX) Maher Robert A. (Richardson TX) Holmes Jerry D. (Dallas TX) Fuchser Troy D. (Plano TX), Global position system (GPS) multiplexed receiver.
상세보기
Newman Bryan, Historical simulator.
상세보기
Schipper John F. ; Pelley Allan M., Image authentication patterning.
상세보기
Woo Arthur N., Integrated audio recording and GPS system.
상세보기
Cupps Bryan ; Glass Tim, Internet online order method and apparatus.
상세보기
Clapper, Edward O., Location dependent encryption and/or decryption.
상세보기
Koss, Michael C., Location-based web browsing.
상세보기
Murphy Michael D. (Sunnyvale CA), Location-sensitive decryption of an encrypted message.
상세보기
Teare Melvin J. (Framingham MA) Walker Stephen S. (Marlborough MA), Location-sensitive remote database access control.
상세보기
Sims, III, J Robert, Media content protection utilizing public key cryptography.
상세보기
Barbari Edward P. (2941 Belmont Woods Way Belmont CA 94002), Method & apparatus for dynamically creating and transmitting documents via facsimile equipment.
상세보기
MacDoran Peter F. ; Mathews Michael B. ; Ziel Fred A. ; Gold Kenn L. ; Anderson Steven M. ; Coffey Mark A. ; Denning Dorothy E., Method and apparatus for authenticating the location of remote users of networked computing systems.
상세보기
Murphy Michael D., Method and apparatus for location-sensitive decryption of an encrypted signal.
상세보기
Starek Robert Phillip ; Friedman George ; Marshall David Earl ; Chambers Jason Lee ; Moorman Michael J. ; Newgard Terry S., Method and apparatus for real-time secure file deletion.
상세보기
Alcorn Allan E. ; Hale Richard L., Method and apparatus using geographical position and universal time determination means to provide authenticated, secure, on-line communication between remote gaming locations.
상세보기
Wyatt Stuart Alan, Method for defining and verifying user access rights to a computer information.
상세보기
Craport William N. ; Winters Bruce C., Method for identifying the geographic region of a geographic area which contains a geographic zone.
상세보기
Fischer Addison M. (60 14th Ave. South Naples FL 33942), Method for providing location certificates.
상세보기
Bates Benjamin G., Method of controlling access to a movable container and to a compartment of a vehicle, and a secure cargo transportation system.
상세보기
Wechselberger Anthony J. (San Diego CA) Bluestein Leo I. (Rancho Bernardo CA) Jedynak Leo (San Diego CA) Drake David A. (Escondido CA) Simpson Larry W. (Poway CA), Multi-layer encryption system for the broadcast of encrypted information.
상세보기
Kung Kenneth C. (Cerritos CA), One-time logon means and methods for distributed computing systems.
상세보기
Inoue Atsushi,JPX ; Ishiyama Masahiro,JPX ; Fukumoto Atsushi,JPX ; Tsuda Yoshiyuki,JPX ; Shimbo Atsushi,JPX ; Okamoto Toshio,JPX, Packet processing device and mobile computer with reduced packet processing overhead.
상세보기
Fraker William F. ; Storm John M., Position and time-at-position logging system.
상세보기
Peinado, Marcus; Manferdelli, John L.; Bell, Jeffrey R. C., Rendering digital content in an encrypted rights-protected form.
상세보기
Rabne Michael W. ; Barker James A. ; Alrashid Tareq M.T. ; Christian Brian S. ; Cox Steven C. ; Slotta Elizabeth A. ; Upthegrove Luella R., Rights management system for digital media.
상세보기
Laurance Joel E. (Gaithersburg MD) Stewart Walter M. (Potomac MD), Satellite communication system and method with message authentication suitable for use in financial institutions.
상세보기
Hanas Orest J. (Palatine IL) Pennypacker Frank C. (Crystal Lake IL) Radloff Charles B. (San Diego CA) Schulman Richard D. (San Diego CA), Satellite scrambling communication network using geographically separated uplinks.
상세보기
Schipper John F. (Palo Alto CA) Melton Walter C. (Los Gatos CA), Secure communication of information.
상세보기
Leopold Raymond J. (Chandler AZ), Secure satellite over-the-air rekeying method and system.
상세보기
Clark James Monroe, Selective denial of encrypted high precision data by indirect keying.
상세보기
Van Wie David M. ; Weber Robert P., Steganographic techniques for securely delivering electronic digital rights management control information over insecure.
상세보기
Emery Mark ; Gulzar Zaman, Storage, transmission, communication and access to geographical positioning data linked with standard telephony numberin.
상세보기
Shimada Kazutoshi,JPX, System and method for controlling access to subject data using location data associated with the subject data and a requ.
상세보기
Kenner Brian ; Gruber Harry, System and method for delivery of video data over a computer network.
상세보기
Richard Dale Hoffman, System and method for managing client application state in a stateless web browser environment.
상세보기
Kenner Brian ; Karush Arnold, System and method for optimized storage and retrieval of data on a distributed computer network.
상세보기
Spies Terence R. ; Simon Daniel R., System and method for secure purchase and delivery of video content programs.
상세보기
Dustan Robert Frederick,CAX ; Vieira Dirk A.,CAX, System and method for securely accessing information from disparate data sources through a network.
상세보기
Doeberl Terrence M. ; Sansone Ronald P. ; Prakash Suti ; Porter Paul W ; Macdonald Marcy F. ; Martin Judith A. ; Reichman Ronald, System for managing user-characterizing network protocol headers.
상세보기
Johnstone Robert L. ; Campanella S. Joseph, System for providing location-specific data to a user.
상세보기
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
상세보기
Hall Edwin J. ; Shear Victor H. ; Tomasello Luke S. ; Van Wie David M. ; Weber Robert P. ; Worsencroft Kim ; Xu Xuejun, Techniques for defining using and manipulating rights management data structures.
상세보기

이 특허를 인용한 특허 (10)

Hybertson, Eric, Apparatus and methods for content transfer protection.
상세보기
Zheng, Qingji; Wang, Guoqiang; Ravindran, Ravishankar, Data distributing over network to user devices.
상세보기
Alderucci, Dean P., Determining that a gaming device is communicating with a gaming server.
상세보기
Helms, William L.; Carlucci, John B.; Schnitzer, Jason Kazmir, Downloadable security and protection methods and apparatus.
상세보기
Kumar, Ambuj; Marson, Mark Evan; Beitel, Daniel Robert, Location aware cryptography.
상세보기
Parann-Nissany, Gilad, Methods, devices, and media for secure key management in a non-secured, distributed, virtualized environment with applications to cloud-computing security and management.
상세보기
Helms, William; Hayashi, Michael T.; Leddy, Kevin J.; Christman, David A., Technique for securely communicating and storing programming material in a trusted domain.
상세보기
Helms, William L.; Carlucci, John B.; Hayashi, Michael T.; Fahrny, James W., Technique for securely communicating programming content.
상세보기
Alderucci, Dean P., Using a first device to verify whether a second device is communicating with a server.
상세보기
Alderucci, Dean P., Verifying a gaming device is in communications with a gaming server by passing an indicator between the gaming device and a verification device.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

System and method for delivering encrypted information in a communication network using location indentity and key tables 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (56)

이 특허를 인용한 특허 (10)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

System and method for delivering encrypted information in a communication network using location indentity and key tables 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (56)

이 특허를 인용한 특허 (10)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트