TW200941996A - Using mobile device to construct a secure E-DRM method - Google Patents

Abstract

On the basis of the mobile device, we propose an efficient digital rights management protocol. We apply symmetrical cryptosystem, asymmetrical cryptosystem, digital signature and one-way hash function mechanisms in our scheme. To overcome the computing resource weakness problem of mobile devices, we also integrate digital certificate, hardware information and one time password mechanisms such that the security, persistent protection, integrity, authentication, track usage of DRM work, changeable access right, integration and portability issues will be assured. In this way, the mobile user can access the digital content securely in the enterprise via authorization mechanism.

Description

200941996 IX. Description of the invention: [& Ming's technical field], the present invention relates to a mobile device-based full-party & +-digit content protection method in a company or organization, through appropriate authorization authentication and ordering The mobile device protects the software and hardware mechanism. The employees in the enterprise or organization can access the digital content inside the enterprise or organization at any time and place, and the digital content inside the enterprise or organization can also be protected by security. © Ben Ming Ming is in the field of "Information Security" or may receive relevant professional advice or assistance from the "Republic of China Information Society". [Prior Art] In recent years, the illegal activities of intellectual property rights have caused enterprises to pay attention to the protection of the inner valley. The illegal copying of abused digital content becomes a double problem. Because personally trusted handheld devices are more portable than personal computers, and anyone can access network resources anytime, anywhere. For example, there are well-protected and valuable digital content that is easily subject to unauthorized copying, modification, and re-release. This has caused financial losses to providers of services, and such cases have emerged in recent years. Therefore, the construction of an effective 娄:: property rights management system has become a very important issue in the industry. With the advent of the tribute era, information technology has brought a lot of new conveniences, but it has also brought about new crises. In recent years, the documents of the entities have gradually digitized. With the popularity of the Internet and the widespread use of e-mail, the methods of information dissimilation are becoming more diversified and dazzling. Therefore, how to adopt effective "advice security" control has always caused organizations, enterprises and related users to worry about the issues. In order to avoid the human factors and the sensitive data are not normal processing and use, 2009, almost all enterprises face the challenge: how to effectively protect important information within the enterprise? At present, the awareness of confidential information management by government agencies and enterprises has generally increased, so a large amount of funds have been invested in preventing intrusion products and equipment. However, the issue of security is still emerging. In general, organizations often use defense-based security methods to preserve digital records and information. For example, the purchase of a firewall to isolate internal and external networks, restrict access to the corporate network; or the intrusion detection system to separate,: protect the network, further restrict its access control. Therefore, from the early storage of files in the disc (,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,

Peonss (10) to restrict specific (four) folder or (four) access, strengthen access control to the broadcast system; use the file encryption system (Encryption Fil " e System' EFS) to further ensure the security of file data storage, so that ^ Private t network (VlrtUal heart (10) tons of VPN), Internet communication (four) security (InternetPrc) t (10) ^ c) Road H H phase end level (Secure s 〇 U U U U ^ ^ ^ ^ ^ ^ ^ ^ : : : : : : : When you save the digital content. Such a technology can indeed use t to further: the secure storage of the file to protect the file; but still can not limit the regular card "go. Some companies even add pma technology in the file" to convert all the files into _ (P 〇rtable Docu_t However, Τα: Η Η file 'Although you can set protection from copying, printing, etc., pass: Right 疋 疋 After obtaining the file decryption, the file may be scattered. That is & = nu PDF password cracking software You can easily copy the contents of the PDF and obtain the confidential information to help the organization control the machine to recognize the meat. The access is tuned to ~1 access, but once the user «verifies and agrees, it will be cool. It is impossible to restrict the content of the content or the transmission method. 200941996 Therefore, the anti-float-based preservation method cannot control the use and dissemination of people after legally obtaining digital content. 'Looking at the evolution of these preservation technologies for protecting digital content. Can be divided into - the following: ♦ File sharing method when you first use the computer: The file is on the disk and 'copy to others when you need it. Disadvantages: Uncontrollable copying File flow direction. • The first generation. The use of the broadcast system controls the $ method: in the NTFS standard system for resource sharing control. Lack, point · people with access can be shared without authorization. The second generation: add the password method in the file: set the read password or edit the password in the file. • #点: The file may be distributed after the file password is obtained. ♦ The third generation · the file method for granting authorization ^ The file publisher can determine the user and the scope of use. & ▲ 疋 以 以 以 第 及 及 及 及 及 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些 这些It is necessary to trace and control its use and participation. It means that it is a hacker but it is difficult to prevent family thieves. This is because the most important financial security gap is often neglected - the personnel with access rights within the enterprise. These authorized personnel are not Any intrusion technology is needed, because the information is readily available within his access rights. Only one command can be used to transmit one confidentiality to the competitor through its d-way, allowing the government to make a huge amount of business. Loss. - The number of content leaks in government agencies or business units is constantly re-emphasizing h > 寅中· /g B ^ m '-疋 If you can manage through appropriate mechanisms, these problems can be avoided According to a survey conducted by Crime Scene Investigation 200941996 (CSI/FBI), the loss of intellectual property in the United States exceeded US$70 million in 2003. A few years ago, the domestic TSMC secret documents flowed out of the mainland, and the losses were reported to be more than one billion yuan. Like Xinli, the world's second-largest consumer electronics manufacturer, has condemned digital content pirates for reducing profits from its music business 'released on June 30, 2002. Lost in three months', An event of 130 million yuan ($160 million). This shows that the illegal use of digital content has become a serious security problem. This also highlights the importance of asset protection and the value of Digital Right Managed (Digital Right Managed) technology. In order to prevent unauthorized users from accessing digital content, it is necessary to construct an effective management mechanism. Therefore, the construction of an effective digital property management system has become a very urgent issue. The focus of the present invention is to study a suitable solution, propose a mobile device-based full-scale number == method within the enterprise or organization, through appropriate authorization authentication and protection of mobile devices, or Employees within the organization can access and be protected by security at any time and place. #/ Digital content within the organization -:: There are already several companies and organizations that manage digital rights in order to manage digital property rights. The product that manages the problem. These companies include ::rXeIBM, MlCr〇S〇f" However, there should be such a thing in this field. Most of the products lack consensus, and each method makes Li Tong’s method limit their design into a closed i-control system. There is no similar product being proposed for the device to access digital content within the enterprise. Next, the present invention will briefly explain the digital property management system. 200941996 Most typical digital property management systems can be viewed as Stony Brook

The typical digital property management system architecture diagram (shown in Figure 1) disclosed by Uni vers i ty in 2004 is conceptually composed of three main parts, which are divided into * Server), license server

12 (License Server) and digital rights management of client 13 (DRM)

Cl ient), which are described as follows: (1) Content server ll (C〇ntent Server) The basic function of the content server 11 is to store the protected content file in a secure location, which is basically a file. The server or a 0 database system, the digital content itself is converted into a digital property management format and stored in a content repository lll (Content Repository), and is managed by a digital property management wrapper 112 (DRM Packager) Encrypt and encapsulate these sensitive digital content, related multimedia and property rights specifications. (2) License Server i2 (License Server) The organization responsible for the digital content license (including the property rights specification and decryption key). These property specifications and encryption keys 122 (Encryption Keys) generated by the digital property management wrapper 12 are stored in the license server 〇 12. The information contained in the license has property rights specifications, a content identifier and a user identity identifier 124 (which may be the user's name, the user's biometric information, digital credentials or device identification). The license feeding device 12 passes the authority 121 (Rights), and after confirming the encryption gold wheel 1 22 and the user identity identification 24, the license generator is responsible for issuing the license of the appropriate A for legitimate use. By. (3) DRM Client of Client 13 The 'user side' is the least trusted in the whole system, because any user of 200941996 may want to crack the protected digital content. Therefore, in order to ensure the safe operation of the entire system, the user-side digital rights management software must have the characteristics of Tamper P^of, so that malicious users can not tamper with the protection of software and hardware. Action 3 ensures that digital content can only be used in accordance with its permissions. The digital property rights of the client 13 includes the digital property management control H 131 (DRM Controller, receiving the user's needs and the license feeding device 12 communication to provide digital property rights to execute the software and hardware to unlock the digital content), and its main tasks are :

1-Receiving the user's request 132 (Rendering AppHCatlon) 'Exercising its right to seal the content (3) (6) elbow such as pachage' The content package 133 includes the content 丨 (6) he (4) and the certificate data 1332 (Metadada) 'and Formed by appropriate encryption (E-cho ypti〇n). . . 2. Collect user identification information, apply this information and the license from the licensed feed, and compare the contents of the license 134 with the license 1341 and the key i342aeys and encrypt (Encrypti〇n). 3. The encrypted gold input 122 of the content of the license 134 is retrieved, and the digital content is unlocked. The introduction of digital property rights management is indeed a solution to the illegal access of illegal users, and it also provides an effective solution for enterprises. It is believed that the increase in demand for digital property management will be obvious in the future. However, under the operating structure of digital property management (as shown in Figure 2, the typical digital property management control process), the user must confirm the identity, and the digital property management system can make the (four) meaning row according to the individual (four). For example, payment or information is provided, and the steps of authorizing and transmitting content are performed accordingly. This is a direct challenge for the user - it can hide the real/minute behavior patterns and habits in the network environment. However, this is also a necessary measure for the management of digital property rights in enterprises (4) because the internal control of the enterprise must be controlled and the digital content is accessed in 200941996. Most of the digital property management processes are generally similar to the following steps, so the present invention will briefly illustrate the operation of these processes in Figure 2. Step 2-1: Author 21 encrypts the digital content. Step 2-2: The author 21 transmits the encrypted digital content to the content server for storage. Step 2-3: The author 21 defines a license 23 for accessing the digital content and stores it in the license server 22. Step 2-4: The author 21 grants the user a license to access the digital content. Step 2-5: The user 24 attempts to access the digital content by executing software and hardware (such as the control mechanism 25 having non-tamperable characteristics) with secure digital rights. Step 2 6 · When the user 24 attempts to turn on the digital content, the control mechanism 25 automatically initiates the connection to the license server 22 to verify the identity of the user, and after verifying the identity, the license server 22 issues the decryption key to use. The control mechanism 25 of the client side accesses the digital content. Step 2-7: The control mechanism 25 unpacks the digital content with the decryption key in accordance with the permission mechanism, rule ' on the license 23. Since the publisher of the license can decide who is the user and their rights, even if the user passes the files to others again, for those who obtain the documents through the illegal pipeline, because they have not passed the identity authentication, file. The main reason is that "the file must be obtained first and then the right". The user and the publisher of the file are separated. It is true that "only the file=cloth can determine the user and the scope of use", and the illegal user cannot It is impossible to open the file again, that is, the user can no longer publish the decrypted file to others. 'The core technology mentioned above is "separate users and publishers of files" to ensure the security of corporate documents. . 12

200941996 It can be seen that the digital description of the 4..t Cui sli system must be based on the software and hardware technology, as well as a comprehensive management mechanism, including the presentation of digital content, noisy digital content With the protection of the property rights itself, the digital content month “stays in the products that have been digitized. Otherwise, due to the content of the web::Γ:limits, and the content will be re-applied: Month. Knowing the status of content being used (read, download, store...), let alone controlling the scope of use of individual users or limiting their behavior. Therefore, based on the rapid spread of the Internet: and the emerging operating model Development, digital property management system came into being, which has become the latest development focus of content management software. Digital property management not only protects the rights of content providers, but also avoids users' infringement in unknown circumstances. A typical intra-enterprise digital property management system should have restrictions on the protection of unauthorized access to digital content. In terms of government, there are indeed many well-known companies at home and abroad such as Microsoft.

Rights Management Services (RMS) - 〇ffice 2〇〇3 Inf〇rmati〇n Right Managem.ent (IRM) ’ and such as tkntica, TjustView and Mirage are all managed within the company's digital property rights. These companies' products are designed to protect sensitive information such as financial reports, product specifications, customer profiles and confidential email messages. Take the Microsoft RMS security mechanism as an example: 1. All roles require credentials to verify identity. 2 • Digital content is encrypted. 3. RMS-enabled Applicatlon also requires Microsoft certification (the township hardware serial number, in order to play authorized digital content on specific hardware devices) ^ 13 200941996 4, the use of packaged files (Packed File) must first obtain a license ( License) ° 5. The data flow is achieved through standard encryption technology. * 6. Certify identity by verifying components. 7. Control mechanism for cancellation and withdrawal of licenses. 8. A unique mechanism. The aforementioned Microsoft RMS security mechanism is based on the following machines: _ 1. Cryptographic Mechanisms: Use symmetric encryption to protect digital content and use asymmetric encryption to protect usage rights. 2. Unique mechanism (individual izati〇n): Although the RMS does not use the device's hardware serial number to perform unique actions at the beginning, it initially generates a security processor certi icate (spc) in addition to each computer device. In addition to registering the RMS server for future legitimacy of the hardware, the RMS server issues a Rlght account certificate (RAC) for each user on the device, so that each user has a 〇*Na SyStem towel. The self-identification-only identification means that the user can still use his own unique identification code on other RMS-protected devices to obtain the symmetric gold input of the encrypted number (4) capacity for browsing. Digital content, that is, the rac certificate issued by the RMS server. In the shell. Fl, in the entire digital property management system, the user's verification is ambiguous, and the same unique mechanism is adopted to prevent the comprehensive resolution of the digital property management system. 3. Tamper Resistance: The RMS-compatible application on the client side can access the privacy of the certificate. 14 200941996 All of them are strictly controlled by the wind°ws operating system. The measures have _ non-π weights. Appllcation Exclusion: It is forbidden to use Cui's application to access specific digital content package files. Exclusion of F () digital calcare management components (10) M Component xc uS1〇n): When the digital property management component is played digital content. The ancestor, the fork, the user-compatible application, combined with the protection of the operating system Ο

'The whole woman's environment is enforced, and the decryption and playback of digital content is performed. 4. Digital watermarking (Digital ffatennarking): Broadcast digital content creators can add sub-watermarks as needed to achieve copyright protection or track property usage before performing digital content encryption. The above is an introduction to the MS RMS of the present invention, but the main disadvantages of the Ms RMs are as follows: '& (1) The transactions between the two companies must have some of the same trusted networks. Microsoft's information copyright management must use the cooperation between the NET pass and the ADUctive Directory, and the customer must coordinate with the partner to do the tree trust operation. E-DRM vendors mostly use the method of website server authentication to handle the problem of cross-network authentication at the user end, which is a huge project. (2) Portability is only available in the Microsoft Windows operating platform environment. 'The ability to cross-platform portability is insufficient. (3) Once the access rights are released, it is not allowed to change the user's access rights. In fact, E-DRM technology is not new. As early as Microsoft, there were already Mirage, Authentica and the information rights of the company. 15 200941996 Management field; Mirage and Authentica are network core and Kuanhua information agents respectively, and TrustView's TrustView is a local product. In the case of Yushuo, the security level provided by the company TrustView can be downloaded from the simplest, for example, after logging in to the Windows domain, and the user can log in to the server every time the file is opened, and cannot print. Very strict layers such as copying, modifying, and even print screens. The benefits of these third-party software are that they can support multiple platforms. Take TrustView as an example, you can mention

Digital rights management protection for documents, web pages and Adobe PDF files, and integrated with IBM N〇tes, Microsoft products Shared p〇nal Server, (File Management System) or Winchill (Product Design Document Management System). In contrast, Microsoft can only 〇ffice 2〇〇3 and

In the SerVer2〇03 environment, users of previous versions of fHce can only receive files with such protections' and have not yet accessed offline, or batch replenishment with Authentic^ E-DRM as an example, its main disadvantages There are: Less than 1 · Integral (Inte (four) te) The existing application system capabilities are called 2. Only in Microsoft Windows, the level of portability is insufficient. Only under the portability of the 'cross-flat 3. Authentic ^. Although the product and function are complete, the cost is flawed, more suitable for large enterprises to use, use Tian Yimen dip $ - Shi Yu, test; if you can provide localized ^ 5 杈, I believe that the operation and use will be more ^ the certification and account integration of the sound of the sound> 3, 糸 管理者 manager "now the D's grip will also affect management efficiency. The above is the present invention at home and abroad Le Pan's New Zealand-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- What's the matter?' 'Enterprises often discuss, say, draw, develop 16 200941996 or decide on a project that specifically consists of employees who are part of different departments. A team that is temporarily grouped can only be saved. Authorization of relevant sensitive documents, once the project is over, the members of the team must be disbanded, and then the relevant sensitive documents can no longer be accessed. In this case, the sensitive rights of the holes can no longer pass through the original Subordinate department The structure of the Chinese single authentication method to authorize 'these products mentioned above is bound to fail to meet the current requirements, and this task-oriented work team authorization method must be considered = flexible and efficient, for example, the core of the authorized organization Members 〇❹ If the authorization method is still not functioning properly within the enterprise or company, and on the other hand, the security of the digital content within the enterprise is taken into account. Therefore, the complete digital property management system needs to be in addition to the cryptographic technology that protects the digital content itself. It has complete property rights control and comprehensive management mechanism. That is to say, in the digital environment, 'encryption, authentication, obtaining manager's consent, and setting access rights, etc.' to ensure the safe dissemination of copyright information or to prevent illegal transmission. Content rights management system. The application environment for the protection of products in the wireless communication network has been stipulated: each, and has released the second version of the digital rights of mobile devices (5) bUedevice_standardversK)n _ The proposed (four) specifications are expected to be produced by digital (4) Licensing mechanism In order to release the user's rights, the user illegally uses these digital contents. The above is off, enough to avoid illegally making the exhibition. 疋 About the digital property management, the focus of the invention is to look at the helmets in the workshop. Under the condition that the cheek-like product is proposed, research. A suitable solution for the operation - a digital content protection platform that can take action of the child in the enterprise or organization. 17 200941996 [Invention] The object of the present invention is to provide a utilization The mobile device establishes a digital property management method for internal security of the enterprise. As long as the user can verify the identity of the authorized institution, the digital property rights execute the software and hardware (DRM_AP) and obtain the effective decryption key KEYm, and the handheld device can be used anytime and anywhere. Access to digital content 'is not limited by time and location, and is highly mobile. Another object of the present invention is to provide a digital property management method for establishing internal security of an enterprise by using mobile devices, which classifies all digital contents in the enterprise into a category, and designs a content header information DRM — Apt... to directly inform the user. The type of Viewer or piayer required to access the digital content, the user can directly download the relevant DRM-APt^ to the relevant address, and the original application is not changed, so that the existing application system can be integrated. The proposed file architecture is more flexible and can integrate existing applications. A digital property management method for establishing internal security of a business using the mobile device can be achieved as described above, and includes the following three phases: 1. Content packaging phase: The digital content is encapsulated, encrypted, and stored in the content storage by the package server. The public directory of the server is available for users to download (the file format is shown in Figure 3) and the symmetry record KRYni is sent to the license server for storage. The foregoing action digital rights management file format includes a content header and a protected content. Please refer to FIG. 3, where the content header includes a content identifier (CID), a digital executable hardware and software category (DRM_APtype), a decryption key identifier (IDm), attributes (Attributes), and encrypted content. The signature value Sigc, the URL of the authorized model, etc.; the protected content includes the digital content (c) with the addition of 18 200941996. ‘II. Registration phase: . In the initial registration phase, the mobile user must submit his or her personal identity certificate to the authorized institution (the authorized organization may be composed of relevant internal supervisors) to complete the registration process with the authorized institution and the license server. Third, to obtain the decryption key: impressed users must submit their personal identity voucher and a valid pass code for the authorized institution to verify, (4) the organization according to the user's identity to decide whether to agree to issue its decryption key (acquisition decryption key It is obtained by the authorized organization's random number seed, and is matched with the international mobile device identity code, personal identity certificate, and time stamp to obtain the H-order function. Finally, the DRM_AP decrypts the digital content with the decryption key. [Embodiment] The present invention proposes a digital product management method for establishing internal security of an enterprise by using mobile devices, and satisfies the following requirements: Requirements: 1. Permanent protection: An E-DRM system must ensure permanent and secure protection of a certain Digital content, which means that the location of access control and digital data is irrelevant. If the requirements for permanent protection of digital content cannot be met, the system will be considered a failure. 2. Integrity: For the recipient, it should be easy to verify whether the intruder has been falsified into false information during the transmission of the message. 19 200941996 3. Verifiability: It is easy for the recipient to determine the source of the message it receives, ie the intruder cannot impersonate someone. Heart ^DRM workflow is traceable · Access to the log file is a useful traceable information if the company wants to monitor the privacy of the bedding and pose a hazard to security issues. • The mechanism for changing the access rights after the release is allowed: When the authority of an enterprise = initial assignment may be insufficient or too high, the E-DRM system must allow the protection of the protected data to be changed after the release. Take power. Ο

Choose 6::::? System: Integrating existing applications will be an important determinant of L. 7. Mobility: There are two important issues raised regarding mobility: (A) f is time-limited: users can access digital content at any time. (Β) Space is not limited: Users can access digital content when they are authorized. The method proposed by X m^ is divided into three stages to illustrate i. The content is sealed, and the δ main book stage. 3. Obtain the decryption key phase. The following sections will illustrate this architectural process for these three phases. The first stage: the content packaging stage Μ I" is mainly encapsulated and encrypted by the package server, and then the symmetry of the public directory of the content storage device is symmetrical, and the key is KEYc. B is stored in the license server. In Figure 4, the present invention is directed to the internal content of the enterprise. Figure 4 includes the following steps: ... 仃 杻 杻 management structure

W. Author 31 creates a number (four) capacity 'knot digital content reverse recognition The seal server 32 encapsulates the digital content 'encryption. U 20 200941996 Step 3-2: The encapsulation server 32 encodes the digital content into a digital poetry management content format poem and generates a symmetry money κ Ε γ (1), and then encrypts the encoded digital content into a ciphertext c, c~(10). The package servo is 32. The header of the related content is also generated (c〇ntent W information, and the package server 32 signs the C and (3) with its key SKc in order to ensure the integrity of the content. That is, the heart (7) And combined with ciphertext c to become the action digital property management file format (Figure 3)', then the encrypted digital property format is sent to the content storage feeding service II 33. (4) Storage and storage device 33 - received the form After the content of the first content is signed by the S coffee and the action digital property management file, the content can be sealed with the content, 32# public key PKc, and the verification algorithm and () are used to verify whether the integrity of the following two drought values is Really.

Vpk(:, (SigcH)~CH ^pkci (^8c)~C ^ If the two verification formulas above are established, the content storage server will store the processed digital rights management file in the public directory. For users to download and use. Code nt.:T3: Encapsulate him 1132 also uses its own key ^ to sign the content identification horse CID and decrypted symmetry key KEYc|d

SlSKEY ~ SSKa (CID, ΚΕΥα〇) is stored in the company's internal secure channel (C/A Na (10),) to the license server 3 4 PKc Step 3 - 4 · License server 34 uses the packaged feeder 32 The key 'passes the verification algorithm, (), verifies the signature value of the packaged feeder 32 η ^pk a (SigKEy) = (C/D, KEYcid) 200941996 If the above verification formula is true, the license server 34 puts Still stored in its own database.

Step 3-5: After the user connects to the public directory of the content storage server 33, the mobile digital rights management file (the file format is shown in Figure 3) and the Tamper_Pr〇〇f digital property rights execution soft must be downloaded. Hardware (J) RM-AP), which is downloaded to the user's personal handheld device 35, is responsible for controlling and decoding these encrypted digits & The user can learn about the authorized institution's global resource locator (URL) via the digital header to request authorization for the decryption key. The X ® content storage server 33 and the license server 34 are connected to the line service provider 37 via the network %, and the mobile network service provider provides the local location recorder 371 (H〇meL〇cati〇) nRegis^r, hlr), visitor location recorder 372 (Visit〇r L〇cati〇n Register, nR), device identification recorder 373 (Equipment Identity Register, eir), etc., through the mobile information exchange center 374 (M 〇bUe SwitchiM Center, MSC), GPRS (General Packet Radi〇 Service) Service Node 375 (Serving GSN, SGSN), and the base station controller 376 (BaSe Station Controller, BSC) transmits the message to the radio base station 377 (Base Transceiver Stati〇n, BTS) is connected to the personal handheld device 35. This action is a general service provided by the mobile network service provider 37 and will not be described here. The second stage: registration stage In the initial registration stage, the mobile user must submit his personal identity certificate to the authorized institution (this authorized organization may be composed of relevant internal supervisors), establish relevant system parameters and coordinate two one-way The sequence function) and H() are used as tools for interactive verification of the decryption key phase. It includes 22 200941996. The following steps: Step 1: The mobile user inserts the personal identity certificate Cert into the browser of the handheld device, and the digital rights execution software (DRM-AP) that has been downloaded to the handheld device captures the international of the handheld device. The International Mobile Equipment Identity (IMEI) is transmitted to the authorized institution and the license server through the internal security pipeline to complete the registration process with the authorized institution and the license feeder. Ο

Step 2: Once the authorized institution receives the personal identity certificate Cert of the mobile user, the user's identity verification procedure is performed. If the personal identity verification is correct, the authorized organization generates two large random numbers SEED and N, which are transmitted to the mobile user's handheld device through the internal security bureau. The authorized institution also records the personal identity certificate Cert of the mobile user and the international mobile device identity codes IMEI, SEED and 1 of the user's handheld device in their own database. Le 2僧: The user must present his personal identity certificate and a single use = in code (via the discretionary seed selected by the authorized body, in line with international action)

As a code, personal identity voucher, time stamp, and the H-order function operation, I get the I == agency verification, and the authorized organization will decide whether or not to use the user's identity to make a record. Finally, _-ΑΡ decrypts the gold. Number· 芊 Β Β 丄 丄 丄 丄 丄 丄 丄 丄 丄 丄 丄 。 。 。 。 。 。 。 。 The method includes the following steps: 1: When the mobile user 51 is on a business trip, the step is to open the protected digital content two each time: once the verification step is automatically started, the second user is required to perform the second solution. 51 must be a knife/knife verification procedure. DRM_AP will automatically start the verification of personal identity 23 200941996 passcode steps, the user-side information (including the international mobile device identity code IMEI, a valid passcode Pt, personal identity certificate) Cert, the request message for the decryption key (requirement message includes request for a certain number of 'bit content CID access rights), time stamp τ and content identifier CID), and participate in the tth "one time use" Calculation of valid pass code pt". Suppose "丨Γ refers to the join operation;, '10,' refers to the repulsion or 匣 operation. The present invention takes the action user 51 to enter the system for example. 'The pt value is obtained by the following operation: P, = Η' (Ν, ΘΙΜΕΙΦ (Cert || T || CID)) 5 where Nt is the large random number generated by the authority 52 before the t-1th transaction, and the initial value N〇=SEED is the household number = //' ( 7V. Ten 侃 £7 (Ce"丨丨r丨丨C/D)) DRM-AP is calculated and transmitted (/,,r,C/D, to (c; c丨丨c/D), p,, Cm) to the authority 52' to request the decryption key. Step 5-2: Once the user's request is received, the authority 52 first checks whether the received time stamp T is less than or equal to The specified time constant τ is then verified by the authorized institution 52 SEED' stored in the library and the SEED stored in the handheld device, as well as the personal certificate; secondly, the international mobile device identity code and one time using the valid pass code Therefore, the authorization authority 52 first searches for the corresponding system parameters based on the user's personal identity certificate cert to the database. And perform verification using a valid passcode. 7 Τ<τ Η* (SEED II ΤII CID)=Hl (SEED'\\ T || CIO) P,=Hl (N, '®IMEm(Cert || T | | CID)) 24 ❹ e : (mine (called _ Chuan 丨 bribe 丨 | Ό 10 / / '调 (聪). 丨丨 丨丨Γ 丨丨Γ 十) 10i 200941996 If the above verification formula is correct, the authorized agency 52 The information for the user to be verified by the parameters SEED', IMEI, corpse, and p from the 姥 料 丨 S S S S A = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = =丨φ ^State (匕,丨丨/;, and generate the large random random number required for the first t + 1 transaction, then calculate and transmit (A, / / (four) (Gryphon to action user 51, Finally: save the N... and t+1 parameters to the relevant assets (4), and update the relevant information. Sub-step 5-3: The DRM-Ap of the mobile user receives the above message and uses the parameter di of the (4) Lion and IMEI carry out the following mathematical formulas

Verification, verify the authenticity of the message transmitted by the authority 52: J? A K"F(M)(pj ship £) 丨丨 十10 (10) (巧丨丨丨Γ) ^ The verification formula above is correct , indicating _, the received 5 holes from the legal authorized broadcast 5 9, (51 m + ^ reminder mechanism 52 so the user's DRM_Ap will be calculated: N.

々>· , + ι J "After I and I are stored as the next - the authorizes the requirement to make a bamboo - the person uses the valid pass code pt + 丨" parameter seed. Step 5-4. After the verification by Step 3 is confirmed by the authority 52, it will decide whether or not to agree to the demand service proposed by the mobile user 51. The private (four) AU itself uses "algorithm, () check out the signature value Slg"

Si8AU = SSKm (IMFJ^ClD^TXer^D,) Then the authority 52t server 53 is authorized. ...ah, the chest ride is sent to the execution ^ Step 5-5: The license server 53 receives the signature of the authorized institution 52

After SlgAU, 'the first will be the plunder: the authority PU of the authority 52 through the verification algorithm ^, verify the signature of the signature to the correctness of (10) / 25 200941996 M (Sig, CID t, T, Cert,, if the above verification formula To be true, then the Cert (IMI) and (Cert, IME1,) stored in the database are compared and verified, and finally the decryption key KEYcid is issued to the mobile user's drm-ap. Therefore, the license server benefits 53 must calculate and transmit r(10)) to the DRM-AP of the mobile client. At this time, the license server 53 records the access transaction information.

Step 5-6: After receiving the above message, the DRM-AP first performs the following discriminant operation. 'Verify the authenticity of the license feeding device 5 3: =(//F((10)(6 || || /Affi7 ) φ /^(^)(/^ || Γ) After the comparison is calculated, if the above formula is correct, it means that there is DRM-AP (IMEI 'Cert) and the presence of the license server 53 (ΙΜΕΙ, ,

Cert) is consistent, and it also verifies the correctness of receiving the message from the license server 53, so the DRM-AP can finally solve the decryption key KEYud, and then use the decryption algorithm DMT (//〆) to solve the digital content M.

®Cert Nail)® H(IMEr®Cert,®n® KEYaD = KEYCID

DfcEYcm(C) = Μ In other words, when the digital property control component DRM_Ap attempts to turn on the encrypted digital content, steps 丨 to 6 in this phase will be automatically executed until the decryption key is correctly accessed. The protected digital content can be accessed by the mobile client's DRM_Ap, otherwise the mobile user will be denied access to the digital content. Here D(4)-AP of Tamper_pr〇〇f is the key mechanism in this architecture. The ruler is based on two important ideas in the present invention: the first is to focus on the design of the client's action digital property management file format (Figure 3), and then provide the user with the DRM-ΑΡ tampering without the 4 26 200941996 "Use a valid passcode at one time" to verify. The second is to focus on the design of the server side, which depends on the verification of the hardware information of the IMEI, which is the handheld device. The handheld device must be verified by the device ID code and an effective pass code. It can be accessed via the embedded DRM-AP. Through the foregoing description, the present invention provides a digital content protection platform for constructing a mobile device within a company or an organization. In the case where no similar products have been proposed, a suitable solution is proposed. In the architecture, as long as the user can verify the identity of the authorized organization, ^ DRM-AP and obtain a valid decryption key 鍮 | | | ) | | | | | | | | | 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮 鍮The portability is high, that is, the user can use the handheld device to target the real wireless environment, and the present invention introduces the issue into the design of the digital property management system, so that the user can support through the wireless network. The use of handheld devices can access internal resources of the enterprise anytime and anywhere, strive for timeliness, improve the competitiveness of enterprises, and enable the access of digital content within the enterprise to take into account portability and security. 〃 如此 As such, the present invention can integrate an existing application system (Integrati〇n). In the DCF auditing framework proposed by Ben Maoming (such as Yu San), all the digits within the enterprise are classified into different categories, and a content header information block is designed to directly inform the user of the required content for accessing the digital content. Vi ewer or Player category, users can go directly to the relevant address to download the relevant DRM APtype 'has not changed the original application, so it can integrate the existing application system, which is more flexible than the proposed file structure. Can integrate existing application systems. Therefore, the present invention has the following advantages: 27 200941996 • An attacker cannot impersonate an authorized institution. 2. An attacker cannot fake an action user. 3. The attacker cannot fake the license server. 4. Prevent resend attacks. 5. Ability to permanently protect digital content. 6 · Maintain the integrity of digital content. 7. Traceable digital property management workflow. 8. The mechanism for changing the access to the right after the cloth is still allowed. The above is a detailed description of a possible embodiment of the present invention, and the embodiment is not intended to limit the scope of the invention, and the equivalent implementation or modification of the present invention should be included in the present invention. In the scope of patents. BRIEF DESCRIPTION OF THE DRAWINGS Referring to the detailed description of the present invention and the accompanying drawings, the technical contents of the present invention and its effects can be further explained. The related drawings are as follows: Figure 1 is a conventional digital property management. The system architecture diagram; Figure 2 is the customary digital property management control process; Figure 3 is the action digital property management file format; Figure 4 is the internal content packaging phase of the action property management framework; and Figure 5 is the internal content authorization phase of the enterprise Management architecture diagram. [Main component symbol description] 11 content server 28 200941996

111 content database 112 digital property management packager 12 license server 121 authority 122 encryption key 123 license processing unit 124 user identity identification 13 client 131 digital property management controller 132 user demand 133 content package 1331 content 1332 Interpretation Information 134 License 1341 Authority 1342 Gold Record 21 Author 22 License Server 23 License 24 User 2 5 Control Mechanism 29 200941996 31 Author 32 Package Server 33 Storage Server 34 License Server 35 Personal Handheld Device 36 Network

37 mobile network service provider 371 home location recorder 3 7 2 visitor location recorder 373 device identification recorder 374 mobile messaging center 375 GPRS service node 376 base station controller 377 radio base station 51 user 52 authorized agency license 53 Server 30

Claims (1)

200941996 X. Patent application scope: L—The digital property management method for establishing internal security of mobile devices, including the following steps: — Content encapsulation: Encapsulation, encryption and storage of content to the content storage (4) by the package servo The public directory is for (4) to download, and the decrypted symmetry key is sent to the license server for storage; 0. Registration stage: The mobile user must submit his personal identity and complete the note to the authorized institution and the license server. The steps of registering the voucher to the authorized institution during the initial registration phase; 3. Obtaining the decryption key: The mobile user must submit his personal identity voucher and use the valid passcode for the authorized institution (4), and the authorized institution is based on the user's The identity decides whether or not to agree to issue its decryption key. Finally, the software and hardware are executed by the digital property to decrypt the key to unlock the digital content. 2. If you apply for a patent scope! The digital property management method for establishing internal security of an enterprise using mobile devices, wherein the authorization mechanism in the registration phase is composed of related main pastes within the enterprise. 3. If the patent application scope is i, the employee uses the mobile device to establish the digital property rights method of the internal security of the enterprise. Among them, the acquisition of the decryption gold wheel is selected by the authorized institution, and the international mobile device identity 31 200941996 code, The personal identity voucher and the time stamp are obtained after the operation of the heuristic function. .4· > In the first paragraph of the patent scope, the digital property management method for establishing internal security of the enterprise using mobile devices, the towel content segment further includes: Step 1: The author creates digital content and sends the digital content The package server encapsulates and encrypts the digital content; Step 2: The package (4) encodes the number (4), and generates a ® symmetry key, and then encrypts the encoded digital content into ciphertext; The encapsulation server also generates the header information of the related content, and the encapsulation server enters the chapter (4) with its own secret, and combines the ciphertext to become the mobile digital property management building case format, and then the encrypted number ^ property rights格读❹Μ(四)翻服肖; I post (10) material servo & that is, the contents of the seal (four) server's public record 'through the verification algorithm verification table Τ content signature value and action digital property rights management standard two signature values of 1 Integrity 'If the two signature values are established, the content storage server will store the IP address management file of the encryption I in the public directory for users to download and use; The feeding device also uses its own key to the content identification code... to sign the symmetry key, and send the content of the content to the license server through the internal security channel of the enterprise; /Step 4 · Licensed feeding device Use the packaged feeder to verify the signature of the package server by verifying the 200941996 algorithm. If the verification value is true, the license (4) 11 stores the time code and the decrypted symmetry key in its own database. Step 5: After the user connects to the public directory of the content storage server, the mobile digital rights management file and the digital property rights execution software must be downloaded and downloaded to the user's personal handheld device. Negative audio control, decryption of these encrypted digital content. ❹ 5. As described in the scope of patent application 帛 4, the digital property management method for establishing internal security of the enterprise using mobile devices, the information of the header includes the content identification code (CID), digital property enforcement software and hardware category (DRM) -APtype), decryption key identifier (IDm) 'Attributes', encrypted content signature value Sigc, authorized institution's "Universal Resource Locator" (URL) and other information; and the protected content includes There is encrypted digital content (c). ❹ 6. The digital property management method for establishing internal security of an enterprise using mobile devices as described in item 4 of the patent application scope, wherein the user's personal handheld device can know the authorized institution's website address through the digital content header, so as to obtain the decryption gold. The authorization requirement for the key. 7- The digital property management method for establishing internal security of the enterprise using mobile devices as described in item 1 of the patent application scope, wherein the registration phase further includes: 33 200941996 Step 1: Mobile users embed personal identity credentials into handheld devices In the browser, the digital rights of the handheld device are downloaded to implement the hardware and software of the handheld device, and the international mobile device identity code of the handheld device is transmitted to the authorized institution and the license server through the security channel of the enterprise (4) to complete the authorization to the authorized institution and license. Steps for registering the server; Step 2: Authorizing the organization - receiving the personal identity certificate of the inciting user 8. After the user's identity verification procedure is performed, if the personal identity is verified correctly, the authorized institution Generate two large random random numbers, which are transmitted to the mobile device's handheld device through the internal security channel of the enterprise. The authorized organization also records the mobile user's personal identity certificate and the international mobile device identity code of the latter's handheld device. In its own database. For example, the digital property rights management method for establishing internal security of an enterprise using the mobile device as described in claim 1 of the patent application scope, wherein obtaining the decryption key further includes: Step 1: When the mobile user travels outside, the digital property rights execution After each attempt to open the protected digital content by the software and hardware, the necessary verification steps for obtaining the decryption key are initiated from (4), and the user of the guiding action must perform the procedure of identity verification, and then propose to the authorized institution to obtain the decryption key. Demand; "2:1 (four) after the demand of the leader, the authorized institution will first check whether the time stamp received is less than or equal to the time constant, and then 34 200941996 the random E number stored in the f The random random number of the handheld device and the personal voucher are verified, and then the international mobile device identity code and the valid pass code are verified. (4) The verification values are correct. The authorized organization will store the data in its own database. Parameter production - a message for the user to verify, and generate the large (1) transaction required The chaotic number is then calculated and transmitted to the mobile user, and finally the parameters are stored in the relevant database and the relevant intercept information is updated; f3: The digital property of the mobile user end executes the software and hardware after receiving the above information. Verify the authorized machine with the parameters stored by itself. If the verification value is the correct one..." 疋 确 , , , , , , , , , , , , , , , , 軚 軚 軚 軚 軚 軚 軚 軚 軚 軚 軚 軚 軚The digital property rights implementation of the software and hardware is to calculate the random number 1 and the gambling deposit 'read as the next time' to make the "demand production -: the parameter seed of the valid pass code; Step 4: After the authorization mechanism has passed the verification of step 3 Then, it will decide whether or not to agree with the demand service proposed by the action user, and then use the private use (4) algorithm to obtain the signature value, and then the authorized institution will pass the calculation result to the license feeding device; Step 5 license servo money correction After the signature of the authorized institution, it will first be induced by the public key of the authorized institution; a> the verification algorithm to verify the correct value of the signature 35 200941996 The person finally has the right to enforce the function. If the verification value is true, then the identity certificate stored in the database and the international mobile device identity code are compared and verified, and the decryption key is issued to the mobile user. Step 6: After the digital property rights are executed, the software server transmits the message verification. If the value of the above-mentioned verification formula is correct, it also verifies the ambiguity of receiving the message from the license server. therefore Digital property rights implementation of software and hardware can finally solve the decryption gold loss, and then use the decryption algorithm to solve the digital content; as described in the scope of the patent application, the use of mobile devices to establish the internal security of the digital property management method of the digital rights management The software and hardware automatically start to execute the steps to verify the personal identity and the pass code, and the user's information, such as the international mobile device identity code, the money, the valid pass g Pt, the personal identity certificate Gert, the acquisition and release The request for the gold record (the demand message includes the requirement to request access to the CID for a certain number of digits), the time stamp τ and the content identification code CID; and the calculation of the 4 times of the use of the valid pass code pt . Declaring the digital property management method of P Anwang in the enterprise using the mobile device according to the eighth item of the patent scope, that is, when the digital right performs the hardware and software to try to open the encrypted digital content, the order 36 200941996 The steps of the segment will be automatically executed until the decryption key is correctly accessed. At this time, the protected digital content can be accessed by the digital client of the mobile client, otherwise the mobile user will Will be denied access to this digital content. 37