[go: up one dir, main page]

CN1934852A - Method and system for selectively providing access to content - Google Patents

Method and system for selectively providing access to content Download PDF

Info

Publication number
CN1934852A
CN1934852A CNA2005800085189A CN200580008518A CN1934852A CN 1934852 A CN1934852 A CN 1934852A CN A2005800085189 A CNA2005800085189 A CN A2005800085189A CN 200580008518 A CN200580008518 A CN 200580008518A CN 1934852 A CN1934852 A CN 1934852A
Authority
CN
China
Prior art keywords
program
key
data
content
identifier
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CNA2005800085189A
Other languages
Chinese (zh)
Inventor
迈克·亚瑟·德伦伯格
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Thomson Licensing SAS
Original Assignee
Thomson Licensing SAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Thomson Licensing SAS filed Critical Thomson Licensing SAS
Publication of CN1934852A publication Critical patent/CN1934852A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

一种操作数字节目重放设备的方法,包括:通过第一通信网络来接收代表节目的包括加密数据部分的数据流;从所接收的数据流中识别与所述节目相关联的标识符;通过第二通信网络,将所述节目标识符和与所述数字节目重放设备相关联的设备标识符传输至授权设备;响应所述传输,通过第二通信网络来接收所述解密密钥;以及,使用所述解密密钥对所述数据流进行解密,并生成用于所述节目重放的输出信号。

Figure 200580008518

A method of operating a digital program playback device, comprising: receiving, over a first communications network, a data stream representing a program comprising encrypted data portions; identifying an identifier associated with said program from the received data stream; transmitting the program identifier and a device identifier associated with the digital program playback device to an authorizing device by a second communications network; receiving the decryption key over the second communications network in response to the transmission; and , using the decryption key to decrypt the data stream and generate an output signal for playback of the program.

Figure 200580008518

Description

选择性提供内容访问的系统和方法Systems and methods for selectively providing access to content

技术领域technical field

本发明涉及一种限制对诸如计算机程序、音频节目和音频/视频节目之类的内容的访问的方法和系统。The present invention relates to a method and system for restricting access to content such as computer programs, audio programs and audio/video programs.

背景技术Background technique

诸如计算机程序、音频节目和音频/视频节目之类的内容通过如传输和/或预记录介质(象CD和DVD)的广泛散布是很普遍的。然而,防止对分配的高价值内容的未授权访问证实是存在问题的,尤其,在空中广播和预记录介质的情况下。目前的方法使用多种访问保护技术,包括使用例如,智能卡、包含于内容中的能够使用公共密钥进行解密的密钥、以及必须键入以解锁计算机程序的密钥。Wide distribution of content such as computer programs, audio programs and audio/video programs via eg transmission and/or pre-recorded media like CDs and DVDs is common. However, preventing unauthorized access to distributed high-value content proves to be problematic, especially in the case of over-the-air broadcasts and pre-recorded media. Current approaches use a variety of access protection techniques, including the use of, for example, smart cards, keys contained in the content that can be decrypted using a public key, and keys that must be entered to unlock the computer program.

典型地,数字权限管理不与拷贝保护系统结合以提供综合的解决方案。例如,当拷贝保护方案存在用于封闭系统(例如,卫星提供商)时,这些系统不会有效地结合数字权限管理。此外,数字权限管理系统不会有效地存在用于计算机程序,也没有为移动设备开发出有效的解决方案。此外,也没有有效地存在为特定内容提供特定密钥的装置。最后,许多系统不具有可靠地确保对双向或双路通信网络进行访问,以管理拷贝保护过程和相关的数字权限的装置。非常期望克服上述问题的改进的机制和技术。Typically, digital rights management is not combined with copy protection systems to provide a comprehensive solution. For example, while copy protection schemes exist for closed systems (eg, satellite providers), these systems do not effectively incorporate digital rights management. Furthermore, digital rights management systems do not exist effectively for computer programs, nor have effective solutions been developed for mobile devices. Furthermore, there is effectively no means to provide specific keys for specific content. Finally, many systems have no means of reliably ensuring access to a two-way or two-way communication network to manage the copy protection process and associated digital rights. Improved mechanisms and techniques to overcome the above problems are highly desirable.

发明内容Contents of the invention

本发明提出了一种操作数字节目重放设备的方法,所述方法包括:通过第一通信网络来接收包括代表节目的加密数据部分的数据流;从所接收的数据流中识别与节目相关联的标识符;通过第二通信网络,将所述节目标识符与所述节目执行设备相关联的设备标识符传输至授权设备;响应该传输,通过第二通信网络来接收解密密钥;以及使用解密密钥对数据流进行解密,并生成节目重放的输出信号。The present invention proposes a method of operating a digital program playback device, the method comprising: receiving over a first communication network a data stream comprising encrypted data portions representing a program; identifying from the received data stream the an identifier for the program; transmitting the program identifier and a device identifier associated with the program execution device to an authorizing device via a second communication network; in response to the transmission, receiving a decryption key via the second communication network; and using The decryption key decrypts the data stream and generates an output signal for program playback.

附图说明Description of drawings

通过结合附图来考虑以下对本发明优选实施例的详细描述,将有利于理解本发明,其中,相似的数字表示相似的部分,以及:An understanding of the invention will be facilitated by considering the following detailed description of the preferred embodiments of the invention when considered in conjunction with the accompanying drawings, wherein like numerals indicate like parts, and:

图1示出了根据本发明的方案的系统的结构示意图;Fig. 1 shows the structural representation of the system according to the scheme of the present invention;

图2示出了根据本发明的方案,很好地适于与计算机软件内容一起使用的系统的结构示意图;Figure 2 shows a schematic block diagram of a system well suited for use with computer software content in accordance with the aspects of the present invention;

图3示出了根据本发明的方案,很好地适于与音频/视频内容一起使用的系统的结构示意图;Figure 3 shows a schematic block diagram of a system well suited for use with audio/video content according to the inventive arrangements;

图4示出了适于与图3的系统一起使用的示例性重放过程的结构示意图;FIG. 4 shows a block diagram of an exemplary playback process suitable for use with the system of FIG. 3;

图5A和5B示出了根据本发明的方案,可以用于客户机设备的结构的结构示意图;5A and 5B show a schematic structural diagram of a structure that can be used for a client device according to the solution of the present invention;

图6示出了根据本发明的方案,解决网络传输中的时延的机制的代表图示;Fig. 6 shows according to the solution of the present invention, a representative illustration of the mechanism for solving the time delay in network transmission;

图7示出了根据本发明的方案的方法。Figure 7 illustrates a method according to an aspect of the present invention.

具体实施方式Detailed ways

将理解,尽管出于清楚的目的,去除了典型的拷贝保护和数字权限管理系统和方法中的许多其它元件,对本发明的附图和描述进行了简化,以说明与对本发明的清楚理解相关的元件。本领域普通技术人员可以认识到,在本发明的实施过程中,期望和/或需要其它的元件和/或步骤。然而,由于本领域熟知这样的元件和步骤,并且这些元件和步骤并不利于理解本发明,所以这里不提供对这样的元件和步骤的详细讨论。It will be appreciated that while many other elements of a typical copy protection and digital rights management system and method have been removed for purposes of clarity, the drawings and description of the present invention have been simplified to illustrate the essentials that are relevant to a clear understanding of the invention element. Those of ordinary skill in the art will recognize that other elements and/or steps are desirable and/or required in the practice of the present invention. However, since such elements and steps are well known in the art and do not facilitate the understanding of the present invention, a detailed discussion of such elements and steps is not provided here.

根据本发明的方案,可以提供:使用多种传递方法,使用诸如双路寻呼网络之类的通信网络的集中化机制,作为访问解密密钥以重放所分配的加密内容的装置。所述系统可以执行数字权限管理(DRM)和拷贝保护(CP)机制,并且提供无线访问以支持固定位置和移动设备(例如,台式个人计算机、膝上型计算机、以及固定的和移动的机顶盒和显示设备)。此外,所使用的网络可以提供“总是在线”功能。According to the solution of the invention, it is possible to provide, using multiple delivery methods, a centralized mechanism of a communication network, such as a two-way paging network, as a means of accessing a decryption key to replay distributed encrypted content. The system can implement digital rights management (DRM) and copy protection (CP) mechanisms, and provide wireless access to support fixed location and mobile devices (for example, desktop personal computers, laptop computers, and fixed and mobile set-top boxes and display screen). In addition, the network used may provide an "always on" feature.

根据本发明的方案,典型地,系统可以将内容和密钥服务器、安全模块的硬件实施并入客户机设备中;以及利用在通信网络中处理固有时延的方法,用于提供低成本解密密钥装置(provision),以有利于拷贝保护和/或数字权限管理方案。根据本发明的方案,实际上,由于对于“盗版者”来说,拷贝包含被加密、但其自身缺少必要的解密密钥的介质的内容是无利的,所以这样的系统和方法可以鼓励内容拷贝(copying)。According to the solution of the present invention, the system can typically incorporate content and key servers, hardware implementations of security modules into client devices; key provisioning to facilitate copy protection and/or digital rights management schemes. According to the solution of the present invention, such a system and method can encourage content encryption since it is in fact unprofitable for "pirates" to copy content containing media that is encrypted but lacks the necessary decryption key itself. copying.

现在参照图1,图1示出了根据本发明的方案的系统100。通常,系统100包括内容服务器110、密钥服务器120、内容分配措施130(如无线和/或有线传输系统,诸如陆地和卫星电视网络、计算机与通常称为因特网的计算机网络的全球互联、以及有线电视和计算机网络;以及介质分配信道,诸如零售分配链)、客户机设备140和通信网络150。Referring now to FIG. 1 , there is shown a system 100 in accordance with aspects of the present invention. Generally, system 100 includes content server 110, key server 120, content distribution means 130 (e.g., wireless and/or wireline transmission systems, such as terrestrial and satellite television networks, global interconnection of computers with a computer network commonly referred to as the Internet, and wireline television and computer networks; and media distribution channels, such as retail distribution chains), client devices 140, and communications network 150.

通常在内容服务器(110)上创建、数字化(如果必要)、以及存储内容(例如,计算机软件、音频和/或视频节目)。在示例性配置中,将关于内容的元数据与内容相关以对内容进行唯一地识别。密钥服务器120包括以下非限制性示例:包括内容加密/解密密钥的数据库,唯一的内容标识符,关于什么设备140是授权设备的信息,什么设备正在播放或记录、或者有权播放或记录内容,以及每个设备140已播放或记录了特定内容多少次。假设内容服务器110允许,可以使用设备140来执行、播放和/或记录内容。在客户机重放设备140安全地从密钥服务器120中获得相应的解密密钥之后,发生对加密内容的访问。例如,可以通过网络150来传输该许可。Content (eg, computer software, audio and/or video programming) is typically created, digitized (if necessary), and stored on a content server (110). In an exemplary configuration, metadata about the content is associated with the content to uniquely identify the content. Key server 120 includes the following non-limiting examples: a database including content encryption/decryption keys, a unique content identifier, information about what device 140 is an authorized device, what device is playing or recording, or has the right to play or record content, and how many times each device 140 has played or recorded that particular content. Device 140 may be used to execute, play and/or record content, provided content server 110 allows it. Access to encrypted content occurs after client playback device 140 securely obtains the corresponding decryption key from key server 120 . The license may be transmitted over network 150, for example.

在示例性实施例中,可以通过内容分配措施130,例如,通过广播或介质分配网络,来提供内容。为了记录内容,许可查找设备140可以通过网络150来安全地联系密钥服务器120,以确定是否该设备可以拷贝主体内容(subject content)。例如,可以通过同伴元数据、广播信道/时间信息、或者内容本身来识别该主体内容。密钥服务器120可以通过通信链路115来联系内容服务器110,以确定与主体内容相关联的数字权限管理(DRM)信息,例如,是否授权请求设备140来播放和/或记录该主体内容。如果可允许,则密钥服务器120可以通过网络150,将唯一的内容标识符和记录密钥安全地返回至请求设备140。然后,请求设备可以使用由密钥服务器120返回的信息,例如,解密和/或加密密钥,来记录该主体内容。可以使用这样的加密密钥来加密所记录的内容以用于存储。存储密钥可以不同于用于在内容服务器110上存储内容、和/或在得到密钥服务器120的授权之前保护内容免受访问的密钥。可选地,能够以被接收的内容的加密形式来存储该内容,以及安全地存储解密密钥以便之后使用。In an exemplary embodiment, the content may be provided through a content distribution facility 130, eg, through a broadcast or media distribution network. To record content, license lookup device 140 may securely contact key server 120 over network 150 to determine whether the device may copy subject content. For example, the subject content may be identified by companion metadata, broadcast channel/time information, or the content itself. Key server 120 may contact content server 110 via communication link 115 to determine digital rights management (DRM) information associated with the subject content, eg, whether requesting device 140 is authorized to play and/or record the subject content. If permissible, key server 120 may securely return the unique content identifier and recording key to requesting device 140 over network 150 . The requesting device may then use the information returned by the key server 120, eg, decryption and/or encryption keys, to record the subject content. Such an encryption key may be used to encrypt recorded content for storage. The storage key may be different from the key used to store the content on the content server 110 and/or protect the content from access until authorized by the key server 120 . Alternatively, received content can be stored in encrypted form, and the decryption key securely stored for later use.

仪作为非限制性示例,网络150可以采用无线通信网络的形式,诸如双路寻呼机网络。可以对通过例如寻呼机网络(例如,在设备140(图1)与密钥服务器120(图1)之间)的网络150的通信进行加密。尽管不是关键的,但是出于成本的考虑,双路寻呼机网络可以尤其有利地用作网络150中的至少一部分。期望这样的网络将提供相对低的每事务的成本,同时提供对宽地理区域上的广泛访问。然而,这样的网络会引入设备140与密钥服务器120之间的通信中的固有时延。例如,会体验到1、5或甚至10分钟之类的时延。然而,双路寻呼机网络解决了固定位置的客户机设备的连接问题,使得不需要电话调制解调器和其它宽带连接。此外,可以使用相同的系统来提供移动客户机设备的连接。例如,通过使用网络150安全密钥、或密钥对来加密通信,可以保障阻止对网络150上的通信进行未授权的访问。As a non-limiting example, network 150 may take the form of a wireless communications network, such as a two-way pager network. Communications over network 150, such as a pager network (eg, between device 140 (FIG. 1) and key server 120 (FIG. 1), may be encrypted. Although not critical, a two-way pager network may be particularly advantageous for use as at least a portion of network 150 due to cost considerations. It is expected that such a network will provide a relatively low cost per transaction while providing widespread access over a wide geographic area. However, such a network introduces inherent latency in communications between device 140 and key server 120 . For example, delays of like 1, 5 or even 10 minutes may be experienced. However, a two-way pager network solves the connection problem for fixed-location client devices, eliminating the need for telephone modems and other broadband connections. Additionally, the same system can be used to provide connectivity for mobile client devices. For example, unauthorized access to communications over the network 150 may be secured by encrypting communications using a network 150 security key, or key pair.

现在参照图2,图2示出了根据本发明的方案的系统200,系统200很好地适于与计算机软件内容一起使用。在图1和图2中,相似的参考数字标识相似的元件。系统200还包括程序/节目创建系统210,典型地,系统210包括用于创建计算机可执行代码的硬件/软件的多个元件。然后,可以将内容提供给可以加密和存储该内容的内容服务器110。可以将相应的加密/解密密钥和内容标识符提供给密钥服务器120。可以使用对称密钥、或者公共/专用密钥对。程序标识符可以是明文的,即不加密。可以使用内容分配措施130,如通过CD、DVD或宽带网络,来分配加密内容。在通过网络150,从密钥服务器120中获得相应的解密密钥时,可以在个人计算机140处开始执行计算机程序。Referring now to FIG. 2, there is shown a system 200 well suited for use with computer software content in accordance with aspects of the present invention. In FIGS. 1 and 2 , like reference numerals identify like elements. System 200 also includes a program/program creation system 210, which typically includes a number of elements of hardware/software for creating computer-executable code. The content can then be provided to content server 110 which can encrypt and store the content. Corresponding encryption/decryption keys and content identifiers may be provided to the key server 120 . Symmetric keys, or public/private key pairs can be used. Program identifiers can be in clear text, ie not encrypted. Encrypted content may be distributed using content distribution means 130, such as via CD, DVD or broadband network. Execution of the computer program may start at the personal computer 140 upon obtaining the corresponding decryption key from the key server 120 via the network 150 .

仍作为非限制性示例,密钥服务器120可以在一个或多个数据库中创建相应的入口,其中的数据库反映了程序加密/解密密钥、唯一的程序标识符、关于什么设备是授权的设备的信息、什么设备正在执行内容、以及设备已执行或被授权来执行特定内容多少次。本发明预想了多种可能的实施方式。在简化的实施例中,设备可以为每个安装、执行或重放来重新查询密钥服务器。可选地,可以在安全处理器中提供永久的或基于时间的数字权限管理信息。在这样的情况下,密钥可以对于一个或多个安装、执行或重放有效,直至密钥到期、超时、或者出现预定次数的允许播放。Still by way of non-limiting example, key server 120 may create corresponding entries in one or more databases reflecting program encryption/decryption keys, unique program identifiers, information about what devices are authorized devices information, what device is executing the content, and how many times the device has executed or is authorized to execute the specific content. The present invention envisions many possible implementations. In a simplified embodiment, the device may re-query the key server for each install, execution or replay. Optionally, permanent or time-based digital rights management information can be provided in the security processor. In such a case, the key may be valid for one or more installations, executions, or replays until the key expires, times out, or a predetermined number of allowed plays occur.

由于加密程序不包含启动密钥,所以可以提供加密程序以进行自由地拷贝。可以使用任何类型的内容分配措施(例如,以DVD、因特网文件等装载)来分配加密内容。仅在相同的解密之后,才发生加密程序的计算机执行,解密需要个人计算机设备140通过网络150,从密钥服务器120中获得解密密钥。Since the encryption program does not contain an activation key, the encryption program can be provided for free copying. Encrypted content may be distributed using any type of content distribution means (eg, loading on DVD, Internet files, etc.). Computer execution of the encryption program takes place only after the same decryption, which requires the personal computer device 140 to obtain the decryption key from the key server 120 via the network 150 .

现在参照图3,图3示出了根据本发明方案的系统300,系统300很好地适于与音频/视频内容一起使用。在图1和图3中,相似的参考数字仍标识相似的元件。系统300还包括程序/节目创建系统310,典型地,系统310包括相机、麦克风和通常用于记录象录音、电影和电视之类的音频/视频表示的硬件/软件。可以使用系统310来创建和数字化音频/视频内容。可以再将该内容提供给可以加密和存储该内容的内容服务器110。可以将唯一的内容标识符与加密内容相关联作为元数据,并明文地提供。可以将相应的加密/解密密钥和内容标识符提供给密钥服务器120,并由密钥服务器120存储。可以使用内容分配措施130,如通过CD、DVD或宽带网络,来分配加密内容。在通过网络150,从密钥服务器120中获得相应的解密密钥时,可以在如类似于数字接收机或DVD播放器的重放设备140处发生重放。Referring now to FIG. 3, there is shown a system 300 well suited for use with audio/video content in accordance with aspects of the present invention. In FIGS. 1 and 3 , like reference numerals still identify like elements. System 300 also includes program/program creation system 310, which typically includes a camera, microphone, and hardware/software typically used to record audio/visual presentations like audio recordings, movies, and television. The system 310 can be used to create and digitize audio/video content. The content can then be provided to the content server 110 which can encrypt and store the content. A unique content identifier may be associated with encrypted content as metadata and provided in the clear. The corresponding encryption/decryption keys and content identifiers may be provided to and stored by the key server 120 . Encrypted content may be distributed using content distribution means 130, such as via CD, DVD or broadband network. Upon obtaining a corresponding decryption key from the key server 120 over the network 150, playback may occur at a playback device 140, such as a digital receiver or DVD player.

仍作为非限制性示例,密钥服务器120可以在一个或多个数据库中创建相应的入口,其中的数据库反映了节目加密/解密密钥、唯一的节目标识符、关于什么设备是授权的设备的信息、授权什么设备来播放/记录内容、以及设备已访问或被授权以访问特定内容多少次。由于加密节目不包含启动密钥,所以可以提供加密节目以进行自由地拷贝。可以使用任何类型的内容分配措施(例如,广播传输,以DVD、因特网文件装载等)来分配加密内容。仅在相同的解密之后,才发生加密节目的计算机拷贝或重放,解密需要个人计算机设备140通过网络150,从密钥服务器120中获得解密密钥。Still by way of non-limiting example, key server 120 may create corresponding entries in one or more databases reflecting program encryption/decryption keys, unique program identifiers, information about what devices are authorized devices information, what devices are authorized to play/record content, and how many times a device has accessed or is authorized to access specific content. Since an encrypted program does not contain an activation key, the encrypted program can be provided for free copying. Encrypted content may be distributed using any type of content distribution means (eg, broadcast transmission, loading on DVD, Internet file, etc.). Computer copying or playback of the encrypted program takes place only after the same decryption, which requires the personal computer device 140 to obtain the decryption key from the key server 120 via the network 150 .

现在参照图4,图4示出了适于与图3的系统300一起使用的示例性重放过程400的结构示意图。重放设备140确定与要播放的内容相关联的内容标识符,其中,例如,通过从诸如DVD或CD之类的包含清楚的文字标识符和加密内容的介质中读取要播放的内容。然后,重放设备140可以通过网络150来联系密钥服务器120,例如,网络150可以采用双路寻呼机网络的形式。密钥服务器120验证播放机设备140和唯一的节目标识符。如果允许重放,例如,如果内容仍具有播放权限,则密钥服务器120以安全的方式使用网络150,将相应的解密密钥(作为非限制性实施例,可以是对称密钥、或密钥对的相应的一部分)发送至重放设备140。重放设备140可以使用获得的密钥来解密重放的内容,并如通过与重放设备通信耦合的显示设备(如通过RCA电缆或HDMI接口),在显示设备上生成用于解密的节目内容重放的输出信号145。Referring now to FIG. 4 , a block diagram of an exemplary playback process 400 suitable for use with the system 300 of FIG. 3 is shown. Playback device 140 determines the content identifier associated with the content to be played, for example, by reading the content to be played from a medium, such as a DVD or CD, that contains clear text identifiers and encrypted content. Playback device 140 may then contact key server 120 over network 150, which may take the form of a two-way pager network, for example. Key server 120 authenticates player device 140 and the unique program identifier. If replay is allowed, for example, if the content still has playback rights, the key server 120 uses the network 150 in a secure manner, and the corresponding decryption key (as a non-limiting example, may be a symmetric key, or a key corresponding part of the pair) to the playback device 140. Playback device 140 may use the obtained key to decrypt the replayed content and generate program content for decryption on the display device, such as via a display device communicatively coupled to the playback device (e.g., via an RCA cable or HDMI interface). The output signal 145 is reproduced.

现在参照图5A,图5A示出了根据本发明的方案,可以用于诸如图1-4的设备140之类的客户机设备的结构500A的示意图。例如,结构500A可以用于实施与客户机设备140的内容记录相关的所有安全策略,甚至可以结合于设备的音频/视频解码器中。Referring now to FIG. 5A, there is shown a schematic diagram of an architecture 500A that may be used with a client device, such as device 140 of FIGS. 1-4, in accordance with aspects of the present invention. For example, structure 500A may be used to enforce all security policies related to content recording by client device 140, and may even be incorporated into the device's audio/video decoder.

作为非限制性示例,结构500A可以包括输入510,输入510适于从内容分配措施130(图1)中接收加密内容。例如,输入510可以采用音频/视频数据解码器、或缓冲器的形式,用于从天线或网络连接、或介质驱动中接收数据流。接收数据可以存储于诸如硬盘驱动之类的存储设备540中,并使用读/写接口530从中读取。可以将接收数据提供给加密器/解密器520。内容密钥寄存器550可以存储由加密器/解密器520使用的密钥和相应的内容标识符。结构500A还可以包括调制解调器560,用于通过网络150进行通信;以及设备标识符和网络150安全密钥存储器570。存储器570可以存储特定设备140的设备标识符、以及用于网络150的网络安全密钥。结构500A可以应答性地操作安全处理器580。可以从用作介质130(诸如卫星调谐器/解调器、家庭网络、或有线电视/解调器)的任何适当的源中提供A/V或内容数据。通过调制解调器560(如寻呼机网络调制解调器)来接收网络150通信(例如,无线寻呼机传输)。As a non-limiting example, structure 500A may include input 510 adapted to receive encrypted content from content distribution facility 130 (FIG. 1). For example, input 510 may take the form of an audio/video data decoder, or buffer, for receiving a data stream from an antenna or network connection, or a media drive. Received data may be stored in a storage device 540 such as a hard drive and read therefrom using the read/write interface 530 . The received data may be provided to encrypter/decryptor 520 . Content key register 550 may store keys used by encryptor/decryptor 520 and corresponding content identifiers. Structure 500A may also include modem 560 for communicating over network 150 ; and device identifier and network 150 security key storage 570 . Memory 570 may store a device identifier for a particular device 140 , as well as a network security key for network 150 . Architecture 500A may operate security processor 580 responsively. A/V or content data may be provided from any suitable source used as medium 130, such as a satellite tuner/demodulator, home network, or cable TV/demodulator. Network 150 communications (eg, wireless pager transmissions) are received through modem 560 (eg, a pager network modem).

通常,根据本发明的方案,不期望明文地将A/V内容存储于设备540上。因此,通常期望在存储之前加密A/V内容。可以通过密钥服务器120来提供相应的加密密钥和唯一内容ID,并且使用调制解调器560,通过网络150来发送。在将加密密钥放入存储设备540之前,加密器/解密器520可以使用该加密密钥来加密内容。In general, it is not desirable to store A/V content on device 540 in the clear in accordance with aspects of the present invention. Therefore, it is often desirable to encrypt A/V content prior to storage. The corresponding encryption key and unique content ID may be provided by key server 120 and sent over network 150 using modem 560 . Encryptor/decryptor 520 may use the encryption key to encrypt content before placing the encryption key in storage device 540 .

现在参照图5B,图5B示出了根据本发明的方案,可以用于诸如图1-4的设备140之类的客户机设备的结构500B的示意图。在图5A和图5B中,相似的参考数字标识相似的元件。根据本发明的方案,例如,结构500B可以用于实施与客户机设备140的内容重放相关联的所有安全策略,甚至可以结合于设备的音频/视频解码器中。此外,结构500B包括A/V解码器515和加密器/解密器525,可选地,加密器/解密器525可以是相同的加密器/解密器元件520。再次,安全处理器580控制验证和密钥处理。可以使用公共/专用密钥对加密技术。在验证了设备140和特定内容之后,作为对发送至密钥服务器120的设备和内容标识符的响应,安全处理器580(通过网络150和调制解调器560)从密钥服务器120中接收加密的内容密钥。然后,可以将内容解密密钥写入寄存器550中(通常,除了安全处理器580之外,寄存器550是不可访问的),并用于使用加密器/解密器525来解密相关内容,以用于使用解码器515的内容解码。例如,可以从存储器540中恢复内容并进行解密。Referring now to FIG. 5B, there is shown a schematic diagram of an architecture 500B that may be used for a client device, such as device 140 of FIGS. 1-4, in accordance with aspects of the present invention. In FIGS. 5A and 5B , like reference numerals identify like elements. According to aspects of the invention, for example, structure 500B may be used to enforce all security policies associated with content playback by client device 140, and may even be incorporated into the device's audio/video decoder. Furthermore, structure 500B includes A/V decoder 515 and encrypter/decryptor 525 , which may optionally be the same encrypter/decryptor element 520 . Again, security processor 580 controls authentication and key handling. Public/private key pair encryption techniques may be used. After authenticating device 140 and specific content, security processor 580 receives (via network 150 and modem 560) an encrypted content key from key server 120 in response to the device and content identifier sent to key server 120. key. The content decryption key can then be written into register 550 (typically, register 550 is inaccessible except for secure processor 580) and used to decrypt the associated content using encryptor/decryptor 525 for use in The content of the decoder 515 is decoded. For example, the content may be recovered from memory 540 and decrypted.

现在参照图6,图6示出了根据本发明的方案,解决网络传输中的时延的机制的代表图示。如前所述,网络150会将时延引入设备140与密钥服务器120之间的通信。如果系统中有太多时延,则用户不会发现系统的可用性。为了隐藏传输时延,在有密钥服务器120和/或内容服务器110识别内容之前,可以允许访问(例如,执行、播放和/或记录)诸如前几分钟(例如,5-10分钟)的音频/视频节目之类的节目数据流的第一部分,并将结果返回至设备140。这样的执行可以与计算机程序产品的有限的功能相对应。这样的播放或记录可以用于实现与数字视频录制机(DVR)相关联的暂停特征(因而在没有权限来记录内容的情况下,设置关于可以暂停多长时间的内容的限制)。可以在该间隔期间明文地存储节目内容的记录,或者使用可以存储于多个设备140中的公共加密密钥进行加密。Referring now to FIG. 6, FIG. 6 shows a representative diagram of a mechanism for addressing delays in network transmissions according to an aspect of the present invention. As previously mentioned, network 150 introduces latency into communications between device 140 and key server 120 . If there is too much latency in the system, users will not find the system usable. To hide transmission delays, access (e.g., execution, playback, and/or recording) of audio such as the first few minutes (e.g., 5-10 minutes) may be permitted before the content is identified by the key server 120 and/or the content server 110 /video program and return the result to device 140. Such execution may correspond to limited functionality of the computer program product. Such playback or recording can be used to implement the pause feature associated with digital video recorders (DVRs) (thus setting limits on how long content can be paused without permission to record the content). Recordings of the programming content may be stored in the clear during this interval, or encrypted using a common encryption key, which may be stored in multiple devices 140 .

作为另一非限制性示例,在从密钥服务器120中获取密钥之前,可以通过使该部分不加密(即,明文地)、或者使用客户机设备已经访问过的密钥进行加密,来允许执行、播放和/或记录程序/节目内容600的第一部分610。可选地,根据计算机程序内容的时间或程序功能,部分610可以与有限的功能对应。在音频和/或视频内容的情况下,部分610可以与所有程序/节目的一部分对应,如前几分钟。在一些点620之后,使用从密钥服务器120中获得的密钥来保护内容的部分630(例如,加密)。As another non-limiting example, prior to retrieving the key from the key server 120, it is possible to allow A first portion 610 of the program/program content 600 is executed, played and/or recorded. Alternatively, portion 610 may correspond to limited functions according to the timing of computer program content or program functions. In the case of audio and/or video content, portion 610 may correspond to a portion of all programs/programs, such as the first few minutes. After some point 620, a portion of the content is secured 630 (eg, encrypted) using a key obtained from key server 120 .

这样的机制会呈现许多优点。可以鼓励第三方内容分配。此外,在记录内容之前来标识内容。这防止了对内容进行未授权的执行、播放和/或记录。数字权限管理(DRM)结合于密钥服务器的中心。密钥服务器可以跟踪每个个人服务器设备、或设备群的可允许权限。如果特定设备或群设备已超出了可允许的执行、播放和/或记录权限,则不会将密钥发送给请求的客户机设备。此外,如果提供了客户帐单信息,则可以在每个客户的基础上(而不是在设备的基础上)对DRM进行管理。最后,可以通过任何尺度等级对内容加密进行分级。例如,内容的每个记录片断都可以具有唯一的加密密钥。为了降低时延,可以选择性地将大量的密钥存储于安全结构中。Such a mechanism would present a number of advantages. Third-party content distribution may be encouraged. Furthermore, the content is identified prior to recording the content. This prevents unauthorized execution, playback and/or recording of the content. Digital rights management (DRM) is integrated at the heart of the key server. The key server can track the allowable permissions of each individual server device, or group of devices. If the allowable execute, play and/or record rights have been exceeded for a particular device or group of devices, the key will not be sent to the requesting client device. Additionally, DRM can be managed on a per customer basis (rather than a device basis) if customer billing information is provided. Finally, content encryption can be graded by any scale level. For example, each recorded segment of content may have a unique encryption key. To reduce latency, a large number of keys can optionally be stored in a secure structure.

现在参照图7,图7示出了代表根据本发明方案的方法或处理流程700的示意框图。方法700可以很好地与图3的系统和图4的处理器一起使用。例如,类似的方法可以用于记录内容,或者执行内容。Referring now to FIG. 7, there is shown a schematic block diagram representative of a method or process flow 700 in accordance with aspects of the present invention. Method 700 may well be used with the system of FIG. 3 and the processor of FIG. 4 . For example, similar methods can be used to record content, or to execute content.

方法700包括通过第一通信网络来接收710指示节目的数据流。在方框720中,从接收的数据流中识别与节目相关联的标识符。然后,将节目标识符同与访问设备相关联的设备标识符一起,通过第二通信网络传输至授权设备(方框730)。在方框740中,响应传输730,通过第二通信网络接收解密密钥。然后在方框750中,使用接收的解密密钥来解密数据流,并输出指示解密数据流的输出信号。Method 700 includes receiving 710 a data stream indicative of a program over a first communication network. In block 720, an identifier associated with the program is identified from the received data stream. The program identifier is then transmitted to the authorizing device over the second communications network, along with the device identifier associated with the accessing device (block 730). In block 740, in response to transmission 730, a decryption key is received over the second communications network. Then in block 750, the data stream is decrypted using the received decryption key and an output signal indicative of the decrypted data stream is output.

接收数据流可以包括代表节目第一部分的数据部分,以及代表节目第二部分的加密数据部分。通常,第一数据部分可由接收设备访问,以进行处理并用于输出指示节目第一部分的信号(方框760),这与节目第二部分的解密密钥的接收相独立。在示例性实施例中,解密代表节目第一部分的数据部分。在可选示例性实施例中,可以使用接收机已经访问过的公共密钥来加密数据部分。因此,在方框760中,如先于在方框740中接收解密密钥,第一数据部分可以用于输出指示节目第一部分的信号。可以使用双路寻呼机网络来完成传输730和接收740的步骤。The received data stream may include a data portion representing a first portion of the program, and an encrypted data portion representing a second portion of the program. Typically, the first portion of data is accessible by a receiving device for processing and for outputting a signal indicative of the first portion of the program (block 760), independent of receipt of a decryption key for the second portion of the program. In an exemplary embodiment, a portion of data representing a first portion of the program is decrypted. In an alternative exemplary embodiment, the data portion may be encrypted using a public key that the receiver already has access to. Thus, in block 760, as prior to receiving the decryption key in block 740, the first data portion may be used to output a signal indicative of the first portion of the program. The steps of transmitting 730 and receiving 740 may be accomplished using a two-way pager network.

可以理解,示出的本发明的形式仅是示例性的实施例。可以在部件的功能和设置中作出不同的改变;等效的装置可以替代那些示出并描述了的装置;以及可以在不偏离权利要求中所限定的本发明的精神和范围的情况下,独立于其它特征来使用特定特征。It is to be understood that the forms of the invention shown are exemplary embodiments only. Various changes may be made in the function and arrangement of parts; equivalent means may be substituted for those shown and described; and independent changes may be made without departing from the spirit and scope of the invention as defined in the claims. Use specific features with other features.

Claims (27)

1, a kind of method of operand word program playback device comprises:
By first communication network receive represent program, comprise enciphered data partial data stream;
The identifier that identification is associated with described program from the data flow that is received;
By the second communication network, described program identifier and described digital program playback device associated device identifier are transferred to authorisation device;
Respond described transmission, come the receiving and deciphering key by the second communication network; And
Use described decruption key that described data flow is decrypted, and generate the output signal that is used for described program playback.
2, the method for claim 1 also comprises: receive and represent program to begin the clear data stream of part, and also comprise: before receiving described decruption key, response clear data stream generates the step of output signal.
3, the method for claim 1 also comprises: receive and represent program to begin the public key encrypts data stream of part, and also comprise: before receiving described decruption key, respond public key encrypts data stream, generate the step of output signal.
4, the method for claim 1, wherein described digital playback device comprises mobile subscriber terminal, and described second communication medium comprises two-way pager network.
5, a kind of method that is used to be transmitted in the program of resetting on the digital playback device may further comprise the steps:
Encrypt the data flow of representing program;
The decruption key that will be used for decrypted data stream is stored in key server;
The playback right limit information that will be associated with digital playback device is stored in the database;
Transmit institute's data stream encrypted by first communication network;
By the second communication network, receive the request that described digital playback device is visited described program, described request comprises identifier related with described program and the identifier that is associated with digital playback device;
Response database determines whether described digital playback device has the access rights to described program; And
Respond described determining step, described decruption key is transferred to described digital playback device.
6, method as claimed in claim 5 also comprises by described first communication network, the clear data stream of the beginning part of the described program of transmission representative.
7, method as claimed in claim 5 also comprises by described first communication network, the public key encrypts data stream of the beginning part of the described program of transmission representative.
8, method as claimed in claim 5, wherein, described digital playback device comprises mobile subscriber terminal, and described second communication medium comprises two-way pager network.
9, a kind of method of operand word program recording apparatus comprises:
Come receiving data stream by first communication network, described data flow comprises first data division of the first that represents described program and the enciphered data part of representing the second portion of described program;
The identifier that identification is associated with described program from the data flow that is received;
By the second communication network, described program identifier and described digital program playback device associated device identifier are transferred to authorisation device;
Respond described transmission, come the receiving and deciphering key by described second communication network; And
Use described decruption key that described data flow is decrypted, and generate the output signal that is used to write down described program.
10, method as claimed in claim 9, wherein, the first of described program is the beginning part of described program, and also comprises: before receiving described decruption key, respond the step that described first data division generates output signal.
11, method as claimed in claim 9, wherein, described first data division is unencrypted or uses public-key encryption.
12, method as claimed in claim 9, wherein, described second communication medium comprises two-way pager network.
13, a kind of method of operational computations machine program execution apparatus comprises:
Data are conducted interviews, and described data comprise first data division of the first that represents described program and the enciphered data part of representing the second portion of described program;
The identifier that identification is associated with described program from the data of being visited;
By the second communication network, described program identifier and described program execution apparatus associated device identifier are transferred to authorisation device;
Respond described transmission, come the receiving and deciphering key by described second communication network; And
Use described decruption key to decipher the described enciphered data part of described program, and generate the output that is used to carry out described program.
14, method as claimed in claim 13, wherein, the described output that is used to carry out described program comprises: be used to activate the output with the part of the corresponding described computer program of described second portion.
15, method as claimed in claim 13, wherein, the described first of described program is the function limitation version of described computer program, and also is included in before the described decruption key of reception, response first generates the step of output signal.
16, method as claimed in claim 12, wherein, described first data division is unencrypted or uses public-key encryption.
17, method as claimed in claim 12, wherein, described second communication medium comprises two-way pager network.
18, a kind of computer program is stored on the computer-readable medium and with computing equipment and uses, and described computer program comprises:
First data division is represented the first of described computer program;
The enciphered data part is represented the second portion of described computer program;
Code is used for the program identifier that is associated with described computer program product from the identification of described first data division, and with described computing equipment associated device identifier;
Code is used for described program identifier and device identifier are transferred to authorisation device;
Code is used to respond described transmission, comes the receiving and deciphering key; And
Code is used to use described decruption key to decipher the described enciphered data part of described computer program, and generates the output that is used to carry out described computer program.
19, product as claimed in claim 18, wherein, the described output that is used to carry out described computer program comprises: activate the output with the function of the corresponding described computer program of described second portion.
20, product as claimed in claim 19, wherein, the described first of described computer program represents the function limitation version of described computer program, and also is included in before the described decruption key of reception, responds the step that first data division generates output signal.
21, product as claimed in claim 18, wherein, described first data division is unencrypted or uses public-key encryption.
22, product as claimed in claim 18, wherein, described second communication medium comprises two-way pager network.
23, a kind of method of client devices that optionally provide to the visit of content, described method comprises:
First data division of the first of the described content of visit representative and the enciphered data part of representing the second portion of described content;
The identifier that identification is associated with described content from the data of being visited;
Transfer to authorisation device with described program identifier with described client devices associated device identifier;
Respond described transmission and come the receiving and deciphering key;
Before receiving described decruption key, respond described first data division and generate output signal, so that visit the first of described content; And
Use described decruption key to decipher the encryption section of described data, and respond described decryption portion and generate output signal, for use in the second portion of the described content of visit.
24, method as claimed in claim 23, wherein, described content comprises at least one in representing of computer program, audio representation and audio/video.
25, method as claimed in claim 23, wherein, described provide visit comprise following at least one: computer program product, audio plays are represented, audio plays/representation of video shot, record audio is represented and record audio/representation of video shot.
26, method as claimed in claim 23, wherein, described transmission and reception are by two-way pager network.
27, method as claimed in claim 23, wherein, described first data division is unencrypted or uses public-key encryption.
CNA2005800085189A 2004-03-18 2005-03-17 Method and system for selectively providing access to content Pending CN1934852A (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US55422004P 2004-03-18 2004-03-18
US60/554,241 2004-03-18
US60/554,302 2004-03-18
US60/554,220 2004-03-18

Publications (1)

Publication Number Publication Date
CN1934852A true CN1934852A (en) 2007-03-21

Family

ID=37879425

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2005800085189A Pending CN1934852A (en) 2004-03-18 2005-03-17 Method and system for selectively providing access to content

Country Status (1)

Country Link
CN (1) CN1934852A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103873243A (en) * 2012-12-12 2014-06-18 腾讯科技(北京)有限公司 Method for realizing data security transmission, system, server and terminal
CN104836854A (en) * 2015-04-22 2015-08-12 中国建设银行股份有限公司 Business information display method and device
CN111279678A (en) * 2017-11-06 2020-06-12 索尼公司 Display device, camera device, method and program

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103873243A (en) * 2012-12-12 2014-06-18 腾讯科技(北京)有限公司 Method for realizing data security transmission, system, server and terminal
US9811643B2 (en) 2012-12-12 2017-11-07 Tencent Technology (Shenzhen) Company Limited Method, system, server and terminal for implementing secure transmission of data
CN103873243B (en) * 2012-12-12 2018-06-15 腾讯科技(北京)有限公司 Realize method, system, server and the terminal of data security transmission
CN104836854A (en) * 2015-04-22 2015-08-12 中国建设银行股份有限公司 Business information display method and device
CN111279678A (en) * 2017-11-06 2020-06-12 索尼公司 Display device, camera device, method and program

Similar Documents

Publication Publication Date Title
US8234217B2 (en) Method and system for selectively providing access to content
US11886545B2 (en) Federated digital rights management scheme including trusted systems
US20190147143A1 (en) Decoupling rights in a digital content unit from download
US7260557B2 (en) Method and apparatus for license distribution
US8086535B2 (en) Decoupling rights in a digital content unit from download
US20130283051A1 (en) Persistent License for Stored Content
KR100585096B1 (en) Authentication method of a data processing device having a recording device and devices suitable therefor
KR20060106654A (en) Content information provision system, content information provision server, content playback device, content information provision method, content playback method and computer program
CN1568446A (en) Secure content distribution method and system
MX2009000389A (en) Method and apparatus for securely moving and returning digital content.
KR101862209B1 (en) Contents security system based on Open Trusted Execution Environment and the method thereof
KR100695665B1 (en) Devices and methods of accessing data using the entity lock security registry
CN1934852A (en) Method and system for selectively providing access to content
JP2008099087A (en) Information recording and reproducing program, information processing apparatus, and information recording and reproducing method
TWI225352B (en) Apparatus and method for preventing digital media piracy
JP4612423B2 (en) Recording / reproducing apparatus and recording / reproducing program
KR101316625B1 (en) System and method for restrictively recording contents using device key of content playback device
KR20250110511A (en) Streaming image providing method via media gateway
KR101492669B1 (en) Method for recording and restoring a ciphered content by a processing unit

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Open date: 20070321