TWI462549B - Network system for distributing protected content - Google Patents

Description

Network system for distributing protected content

The present invention relates to networks, and more particularly to network systems that allow secure distribution of protected content.

Consumers often buy video content on digital versatile discs (DVDs). A DVD player can be used to output the video content to a television (TV) or other video monitor. Some DVD players may include a rotating device for allowing one of a plurality of DVDs to be selected and played. In some cases, when the DVD player is located and connected to a second TV in a room of the consumer's home, the consumer may want to view the content of the DVD on the first TV set in another room. As a result, it is necessary to disconnect the DVD player from the second TV, move it to the room having the first TV, and then reconnect it to the first TV. Alternatively, if the consumer has a second DVD player, the consumer moves the DVD into the player.

One possible solution to this problem involves copying the DVD content onto another DVD. A DVD player typically includes only one DVD player, which is difficult to copy a DVD. In order to copy a DVD, the user must copy the DVD content to the hard drive system. Typically, copy protection designs such as Digital Rights Management (DRM) prevent such duplication, although some duplication may be permitted by copyright law. This is due in part to the fact that the material is decrypted and/or decoded by the DVD player and is therefore in an unprotected form when it is output to other devices. The program also requires an additional DVD player.

A system for distributing content across a network, including memory for storing content. The provider network device communicates with the memory and wirelessly communicates with the requestor network device requesting a copy of the content. The provider network device determines the local/remote state of the requester network device, transmitting a key request to the requester network device and receiving a key from the requester network device when the requestor network device has a local state, The content is encrypted with the key and the encrypted content is transmitted to the requester network device.

The provider network device receives or determines at least one of a connected signal quality estimate, a data rate estimate, a distance estimate, and a direction estimate, and is based on the at least one of a signal quality estimate, a data rate estimate, a distance estimate, and a direction estimate Determine the local/remote status.

In other features, the provider network device includes a digital versatile disc (DVD) system. The requester network device includes a hard disk drive (HDD) system. The provider network device includes a local network determination module that determines the local/remote status of the requester network device.

In other features, the HDD system includes a non-volatile HDD memory that stores data in a non-volatile manner and includes user accessible segments and hidden segments. A hard disk drive (HDD) control module communicates with the HDD non-volatile memory, selectively requests and receives content from the provider network device, and stores the requested content in a hidden section of the non-volatile HDD memory. in.

In other features, after transmitting the request to the provider network device, the HDD control module receives the key request and transmits the key to the provider network device in response to the key request. The requested content received by the HDD system from the provider network device is encrypted with the key. The HDD control module decrypts the requested content. The requested content includes usage data that is also written to the hidden section of the non-volatile HDD memory, and the HDD control module makes the requested content unavailable when the usage data indicates the end of use. The HDD system deletes the requested content from the non-volatile HDD memory. Use the data to set the number of times allowed. Use the data to set the duration of the allowed use.

In other features, the DVD system includes non-volatile memory that stores content. The DVD control module communicates with the non-volatile memory and selectively receives requests for content from the requester network device. The DVD control module requests a key from the requester network device before transmitting the requested content, and determines the amount of time required to receive the key from the HDD system after transmitting the key request to the HDD system. The DVD system encrypts the requested content before transmitting the requested content to the HDD system. The DVD control module includes the usage data in the requested content that is transmitted to the HDD system. Use the data to set the number of times allowed. Use the data to set the duration of the allowed use.

The provider network device communicates with a wireless network interface that includes physical layer devices and media access control devices. At least one of the physical layer device and the media access control device generates the at least one of a quality estimate, a distance estimate, a direction estimate, and a data rate estimate. The wireless network interface is associated with the access point.

A system for distributing content in a network, including storage means for storing content. The provider network device communicates with the storage device and wirelessly communicates with the wireless requestor network device requesting a copy of the content. The provider network device determines the local/remote state of the requester network device, transmits a key request to the requester network device, and receives the network device from the requester when the requester network device has a local state A key that encrypts the content with the key and transmits the encrypted content to the requester network device.

In other features, the provider network device receives or determines at least one of a connected signal quality estimate, a data rate estimate, a distance estimate, and a direction estimate, and is based on signal quality estimation, data rate estimation, distance estimation, and direction estimation. The at least one of the determinations of the local/remote state. The provider network device includes a digital versatile disc (DVD) system. The requester network device includes a hard disk drive (HDD) system. The provider network device includes local network determining means for determining the local/remote status of the requester network device.

In other features, the HDD system includes a non-volatile HDD memory device for storing data in a non-volatile manner and including user accessible segments and hidden segments. A hard disk drive (HDD) control device communicates with the HDD non-volatile memory device to selectively request and receive content from the provider network device and store the requested content in a hidden area of the non-volatile HDD memory device In the paragraph.

In other features, after transmitting the request to the provider network device, the HDD control device receives the key request and transmits the key to the provider network device in response to the key request. The requested content received by the HDD system from the provider network device is encrypted with the key. The HDD control device decrypts the requested content. The requested content includes usage data that is also written to the hidden section of the non-volatile HDD memory device, and wherein the HDD control device makes the requested content unavailable when the usage data indicates that the use is permitted. The HDD system deletes the requested content from the non-volatile HDD memory device. Use the data to set the number of times allowed. Use the data to set the duration of the allowed use.

In other features, the DVD system includes a non-volatile memory device that stores content, and a DVD control device that communicates with the non-volatile memory, the DVD control device for selectively receiving a request for content from the requester network device . The DVD control device requests a key from the requester network device before transmitting the requested content, and determines the amount of time required to receive the key from the HDD system after transmitting the key request to the HDD system. The DVD control device encrypts the requested content before transmitting the requested content to the HDD system. The DVD control device includes the usage data in the requested content that is transmitted to the HDD system. The usage data sets at least one of the number of allowed uses and the duration of use allowed.

In other features, the wireless network interface device is in communication with the provider network device for providing a wireless interface, the wireless network interface device comprising: a physical layer device for providing a physical layer interface, and for providing a physical layer device A media access control device for the interface with the host. At least one of the physical layer device and the media access control device generates the at least one of a quality estimate, a distance estimate, a direction estimate, and a data rate estimate. The wireless network interface is associated with the access point.

Other areas of application of the present invention will be apparent from the following detailed description. The detailed description and specific examples of the invention are intended to be understood

The invention will be described in detail herein with reference to the appended claims.

The following description of the preferred embodiment(s) is merely exemplary in nature and is not intended to limit the invention, its application or use. As used herein, the term module or device refers to a dedicated integrated circuit (ASIC), an electronic circuit, a processor (shared, dedicated, or processor group) that executes one or more software or firmware programs. And memory, combinatorial logic, and/or other suitable components that provide the described functionality. For the sake of clarity, the same reference numbers will be used in the drawings to identify similar elements.

Referring now to Figure 1, a local area network 2 includes a router 3, a data machine 4, and a provider network device 5, which are selectively provided to one or more local requestor network devices, as described below. Protected content 6. The provider network device 5 is a network compatible device including a regional network determination module 7. One or more of the requestor network devices 8-1, 8-2, ..., and 8-N (collectively referred to as requesters 8) selectively request a copy of the protected content 6. It will be appreciated that although the display router 3 is connected to a wireline, those skilled in the art will readily appreciate other network configurations including, but not limited to, wireless access points (APs), ad hoc network connection configurations, and/or wireless network configurations. . Although the illustrated provider network device 5 includes a memory such as non-volatile memory for protected content 6, the protected content 6 may be stored internal and/or external to the provider network device 5. .

The data machine 4 is connected to a broadband service provider 9, which provides video content, digital content, broadband connections to a distributed communication system (DCS) 10, and/or other network services. The service provider 9 can provide broadband access by using wired or wireless connections, coaxial cable, digital subscriber line (DSL), satellite, and/or any other connection system or method.

The DCS 10 is connected to the network devices 12-11, 12-12, ... 12-1P, 12-21, 12- by one or more servers 11-1, 11-2, ... and 11-M. 22, ... 12-2R, ... and 12-M1, 12-M2, ... 12-MS (collectively referred to as network devices 12). When the requester network device requests a copy of the protected content 6, the local area network determining module 7 selectively determines whether the requestor network device has a local state or a remote state. This approach improves security by preventing remote network devices from accessing protected content.

There are a number of different ways for the local area network determination module 7 to determine the local/remote status of the requester network device. For example, in some embodiments, the provider network device 5 determines the local/remote state by determining the amount of time required to receive a response from the requester network device. If the response time is less than the predetermined time period, the requester network device is determined to have a local state. If not, the requester network device has a remote state and a copy of the protected content is rejected. The amount of time required to transmit data to and receive data from the remote network device 12 via the service provider 9, DCS 10, and server 11 is significantly greater than the time required for the local requestor network device to respond. Quantity. In other words, the predetermined time period is set to be greater than the response time required by the local requestor network device and less than the response time required by the remote requestor network device.

In other embodiments, the provider network device checks the DHCP table in the Dynamic Host Configuration Protocol (DHCP) server to determine the Media Access Control (MAC) address of the regional network device. If the requester network device matches the local MAC address in the table, the requestor network device has a local state and a copy of the protected content can be transmitted. If there is no match, the requester network device has a remote state and a copy of the protected content is not transmitted.

In other embodiments, the provider network device 5 can transmit a message to the router 3 to temporarily block the external ports of the router 3 or the data machine 4 to the service provider 9 (and DCS 10). After blocking the external port, the provider network device 5 determines if the requester network device is still capable of communicating (this would be true if the requester network device has a local state). If the provider network device is capable of communicating with the requester network device, the provider network device transmits the copy protected content. As will be appreciated by those skilled in the art, one or more of these methods can be combined, and/or other methods can be used to determine the local/remote state of the requester network device.

Although the following description partially adopts a DVD system and/or a combined DVD/HDD system as a provider network device, and employs another network device including a combined DVD/HDD system and/or HDD system as a requester network device, However, those skilled in the art will recognize that other provider network devices and/or requester network devices can be used. Those skilled in the art will also recognize that all of the embodiments described below in connection with the DVD and HDD systems can be implemented using any other suitable network device.

Referring now to Figure 2, there is shown a functional block diagram of a DVD and HDD system of a first exemplary network. The local area network 13 includes a data machine 14 that communicates with the service provider 18 via the media 16. The service provider 18 provides connectivity to a decentralized communication system (DCS) 22 (eg, an internetwork, LAN, WAN, or other decentralized network), and/or provides other network services such as video content, telephony services, and the like. . The data machine 14 can be coupled to a router 28 that connects the plurality of network devices 30-1, 30-2, ..., and 30-N (collectively referred to as network devices 30) to the data machine 14. One of the network devices 30-1 is connected to a hard disk drive (HDD) system 34, which can be connected to a television or monitor 38. The television or monitor 38 can also be connected to the media 16 directly or through a set-top box (not shown) and receive content from the service provider 18.

The regional network 13 may include an access point (AP) 40 in communication with the router 28 and one or more wireless stations 42-1, 42-2, ..., and 42-N (collectively referred to as wireless stations 42). Although the illustrated AP 40 is connected to the router 28, the AP and router functions can be combined into a single device. Alternatively, the combined AP/router can be directly connected to the data machine 14. Other types of network configurations and connections will be apparent to those skilled in the art.

The network device 30-2 communicates with the router 28 and the DVD player or the combined DVD/HDD player 44 (both hereinafter referred to as "DVD player 44"), such as the US patent filed on January 19, 2005. The entire contents of the above-identified application are hereby incorporated by reference in its entirety in its entirety in its entirety in the the the the the the the the the the the The DVD player 44, in turn, can communicate with a television or monitor 46 that can be coupled to the media 16 or the set-top box 50. Service provider 18 provides broadband access, video content, and/or other services to DCS 22. One or more other servers 54-1 and 54-2 (collectively referred to as servers 54) provide an interface to network device 60, computer 62, personal digital assistant (PDA), etc. to DCS 22.

In some embodiments, a user of the television or monitor 38 may want to access the DVD content associated with the DVD player 44. Initially, the HDD 34 can request a list of available content from the DVD player. The DVD delivers a list of available content. The HDD 34 transmits a message via the network to the DVD player 44 requesting a copy of the content selected from the list. The DVD system determines whether the HDD system has a local state. If the HDD system or other requester network device has a local status, the content archive is transmitted. If the HDD system or other requester network device has a remote state, the request is denied. The local/remote state determination can be made based on the response time, the MAC address in the DHCP table, the external connection disconnection and corresponding dialog, and/or other suitable methods.

In some embodiments, the DVD 44 responds by requesting a key from the HDD 34. The DVD 44 starts a timer that determines the amount of time it takes for the HDD 34 to respond. The HDD 34 transmits the requested key to the DVD 44. The DVD 44 determines whether the HDD 34 has responded within a predetermined amount of time.

If the HDD 34 responds within a predetermined amount of time, the DVD 44 uses the key to encrypt the selected content and transmits the encoded content to the HDD 34 over the network. The HDD 34 uses the key to descramble the content and allows playback of the content on a television or monitor 38. It will be appreciated that key exchange can also occur earlier than when the HDD originally requested a list of available content.

The HDD 34 can also receive usage data for constrained use from the DVD player. For example, the usage data may allow N playbacks and/or playback for a predetermined period of time. The HDD 34 renders the video content unavailable after the end of the allowed usage time period as specified in the usage profile. For example, HDD can delete video content.

In some embodiments, HDD 34 includes user accessible segments and hidden segments. The video content from the DVD 44 is stored in a hidden section of the DVD 44. The key provided by HDD 34 may be part of a public/private key encryption system and/or other suitable data encryption. Alternatively, other forms of key-based coding can be performed.

If the DVD player is a single DVD player, the DVD transmits a list of content available on the DVD in the DVD player. If the DVD player includes a rotary transfer device, the DVD player transmits a list of DVD content available from a plurality of DVDs in the rotary transfer device. If the DVD player is a combined DVD/HDD player, the DVD/HDD player transmits a list of DVD content available on one or more DVDs in the player and DVD content stored on the associated HDD.

Referring now to Figures 3 through 5, there are shown various typical configurations of the present invention. In these embodiments, the provider network device includes a DVD system and/or a combined DVD/HDD system, and the requester network device includes an HDD system and/or a combined DVD/HDD system. In Fig. 3, the HDD 34 is connected to the network through the station 42-1, and the station 42-1 wirelessly communicates with the AP 40. The DVD 44 and the television set 46 are connected to the router 28 via the network device 30-2 and the medium 16. In FIG. 4, the HDD 34 is connected to the router 28 by the network device 30-1 and the medium 16. The DVD 44 is connected to the network by the station 42-2, and the station 42-2 is in wireless communication with the AP 40. In Figure 5, HDD 34 and DVD 44 are connected to the network by one or more stations 42-1 and/or 42-2. Various other network configurations will be apparent to those skilled in the art.

Referring now to FIG. 6, a typical requester network device includes an HDD system 110 having a HDD printed circuit board (PCB) 114. The buffer 118 stores read, write and/or volatile control data associated with the control of the HDD system 110. Buffer 118 typically uses volatile memory with low latency. For example, SDRAM or other types of low latency memory can be used. Non-volatile memory 119, such as flash memory, can also be used to store key material such as non-volatile control codes.

The processor 122 disposed on the HDD PCB 114 performs control and/or data processing related to the operation of the HDD system 110. A hard disk control module (HDC) 126 is in communication with the input/output interface 124 and is in communication with a spindle/voice coil motor (VCM) driver or module 130 and/or a read/write channel module 134. The HDC 126 coordinates data entry/output via the interface 124 and the host 135, as well as control of the spindle/VCM driver 130, the read/write channel module 134, and the processor 122.

During a write operation, the read/write channel module 134 encodes the material to be written to the read/write device 159. The read/write channel module 134 writes signals for reliability processing, and may, for example, apply error correction coding (ECC) and perform length limit coding (RLL) and the like. During a read operation, the read/write channel module 134 converts the analog read signal output of the read/write device 159 into a digital read signal. The converted signal is then detected and decoded using well known techniques to recover the data written to the HDD.

The hard disk drive assembly (HDDA) 150 includes one or more hard drive disks 152 that include a magnetic coating that stores a magnetic field. Disc 152 is rotated by a spindle motor typically shown at 154. Typically, spindle motor 154 rotates hard drive disk 152 at a controlled speed during a read/write operation. One or more read/write arms 158 are moved relative to the disk 152 to read and/or write data from/to the hard drive disk 152. The spindle/VCM driver 130 controls the spindle motor 154 for rotating the disk 152. The spindle/VCM driver 130 also produces control signals that position the read/write arm 158, for example using a voice coil actuator, stepper motor, or any other suitable actuator.

A read/write device 159 is located near the end of the read/write arm 158. The read/write device 159 includes a write element that generates a magnetic field, such as an inductor. The read/write device 159 also includes a read element (e.g., a magnetoresistive (MR) element) that senses the magnetic field on the disk 152. The HDDA 150 includes a preamp circuit 160 that amplifies an analog read/write signal. When reading data, the preamplifier circuit 160 amplifies the low level signal from the read element and outputs the amplified signal to the read/write channel module 134. When data is written, a write current flowing through the write element of the read/write device 159 is generated. The write current is switched to produce a magnetic field having positive or negative polarity. The positive or negative polarity is stored by the hard drive dish 152 and is used to represent the data.

Referring now to Figures 7A and 7B, a typical provider network device includes a DVD system 210. The DVD PCB 214 includes a buffer 218 that stores read data, writes data, and/or volatile control codes associated with control of the DVD system 210. Buffer 218 may employ volatile memory such as SDRAM or other types of low latency memory. Non-volatile memory 219, such as flash memory, can also be used to store key material, such as data related to DVD write formats, and/or non-volatile control codes. The processor 222 disposed on the DVD PCB 214 performs control and/or data processing related to the operation of the DVD system 210. Processor 222 also performs the required compression/decompression and/or copy protected decoding. The DVD control module 226 is in communication with the input/output interface 224 and with the spindle/feed motor (FM) driver 230 and/or the read/write channel module 234. The DVD control module 226 coordinates data entry/output via the interface 224, as well as control of the spindle/FM driver, read/write channel module 234, and processor 222.

During a write operation, the read/write channel module 234 encodes the material to be written to the DVD disc by an optical read/write (ORW) or optical read only (OR) device 259. The read/write channel module 234 processes signals for reliability, and may, for example, apply ECC, RLL, and the like. During a read operation, the read/write channel module 234 converts the analog output of the ORW or OR device 259 into a digital signal. The converted signal is then detected and decoded using well known techniques to recover the material written to the DVD.

The DVD component (DVDA) 250 includes a DVD disc 252 that optically stores material. The disk 252 is rotated by a spindle motor typically shown at 254. Spindle motor 254 rotates DVD disc 252 at a controlled and/or variable speed during a read/write operation. The ORW or OR device 259 is moved relative to the DVD disc 252 to read and/or write data from/to the DVD disc 252. The ORW or OR device 259 typically includes a laser and an optical sensor.

For DVD read/write and DVD-reading systems, during a read operation, the laser is directed onto a track on the DVD containing land and pits. The optical sensor senses the reflection caused by the bumps/grooves. In some DVD read/write (RW) applications, the laser can also be used to heat the die layer on a DVD disc during a write operation. If the stamp is heated to a temperature, the stamp is transparent and represents a binary digital word value. If the stamp is heated to another temperature, the stamp is opaque and represents another binary digital word value. Other techniques for writing DVDs can be used.

The spindle/FM driver 230 controls a spindle motor 254 that controllably rotates the DVD disc 252. The spindle/FM driver 230 also produces control signals that are used to position the feed motor 258 using, for example, a voice coil actuator, a stepper motor, or any other suitable actuator. Feed motor 258 generally moves ORW or OR device 259 radially relative to DVD disc 252. Laser driver 261 generates a laser drive signal based on the output of read/write channel module 234. The DVDA 250 includes a preamplifier circuit 260 that amplifies an analog read signal. When reading data, the preamplifier circuit 260 amplifies the low level signal from the ORW or OR device and outputs the amplified signal to the read/write channel module device 234.

The DVD system 210 also includes a codec module 240 that encodes and/or decodes video such as any of the MPEG formats. The audio and/or video digital signal processors and/or modules 242 and 244 perform audio and/or video signal processing, respectively.

Similar to HDD system 110, portions of DVD system 210 may be implemented by one or more integrated circuits (ICs) or wafers. For example, processor 222 and DVD control module 226 can be implemented from a single wafer. Spindle/FM driver 230 and/or read/write channel module 234 may also be implemented by the same wafer as processor 222, DVD control module 226, and/or by other wafers. Most DVD systems 210 other than the DVDA 250 can also be implemented as an SOC.

Reference is now made to Fig. 7C, which shows a simplified functional block diagram of a typical combined DVD/HDD system 280 in accordance with some embodiments of the present invention. The combined DVD/HDD system can be used as a provider network device or a requester network device. The combined DVD/HDD system 280 includes a combined system control module 284 that communicates with volatile memory 292 and non-volatile memory 290 that store data for both DVD and HDD operations. System control module 284 communicates with interface 296 of host 298 via interface 294. In some embodiments, interfaces 294 and 296 are Serial ATA interfaces, Fibre Channel (FC), Serial Attached Small Computer System Interface (SAS), or other suitable interface.

The combined DVD/HDD system controls both DVD and HDD systems. The DVD/HDD system reduces overall system overhead and provides improved functionality and performance. The overhead is reduced by using a single DRAM and flash memory for both DVD and HDD data storage. A single power supply and a reduced number of external connections are required, which further reduces overhead.

In addition, a unified DVD/HDD system allows copy-protected content to be copied bit-by-bit directly to the HDD. In other words, copying protected content can be replicated without decrypting the copy protection scheme or digital rights management (DRM) and without the need for significant operating system intervention. Traditionally, separate DVD and HDD systems require the DVD to decode/decrypt DRM or other copy protection before making the output. DRM or other copy protection may or may not allow subsequent copying to the HDD. By merging the system, because DRM or copy protection remains intact, additional functionality is provided due to the built-in security of copy protection or DRM schemes. For example, a single DVD drive copy operation is supported without removing copy protection or DRM. In addition, the HDD can work as a virtual DVD changer (DVD changer). Other variations of the combined DVD/HDD system are shown and described in U.S. Patent Application Serial No. 11/039,288, filed on Jan. 19, 2005.

Referring now to Figure 8, there is shown partitioning the non-volatile memory 300 of the HDD into a user accessible section and a hidden section in accordance with some embodiments. The non-volatile memory 300 of the HDD is assigned a first portion 304 accessible to the user and a second portion 308 that is non-user accessible (or hidden). According to some embodiments of the invention, the second hidden portion 308 is used in one or more of the following ways. The hidden portion 308 is used to store the contents of the DVD that was copied at 324. In addition, the hidden portion 308 of the HDD is used at 320 to provide a virtual DVD rotation transport. In other words, multiple DVDs can be copied to the HDD and replayed at a later date. This hidden portion 308 can also store: a write strategy 310 for DVDs; a static or dynamic write buffer 324 for DVDs; and a static or dynamic read buffer 316 for DVDs.

Referring now to Figure 9A, there is shown the steps performed by the network device. Control begins in step 350. In step 352, control determines whether the provider network device has received a request for a copy of the protected content. If not, control returns to step 352. If step 352 is true, then control determines in step 354 whether the requestor network device is located in the local area network. If step 354 is false, then control rejects the request and returns to step 352. If step 354 is true, then in step 356, the provider network device transmits a copy of the protected content to the requester network device.

The provider network device determines in any suitable manner whether the requestor network device is in a local area network. For example, the response time of the requester network device can be compared to a predetermined threshold. In other embodiments, the provider network device can temporarily request that the external port of the router or modem be blocked so that the provider network device can confirm the local/remote state of the requester network device before the file is transmitted. In other embodiments, the local server can be queried to determine the local area network device. Other methods for determining the local/remote state can also be used.

Referring now to Figure 9B, there is shown the step of determining the local/remote state by temporarily blocking the external chirp. Control begins in step 360. At step 362, control determines if the provider network device received a request to copy the protected file. If step 362 is false, then control returns to step 362. If step 362 is true, then control continues with step 364 where the provider network device requests the external port of the router or modem to be blocked. At step 368, the provider network device determines if the requestor network device has a local state. For example, the provider network device can transmit a message to the requester network device and wait for a response. If step 368 is false, the provider network device rejects the request and control returns to step 362. If step 368 is true, then the provider network device transmits a copy of the archive to the requester network device at step 370. The provider network device unblocks the external connection or port of the router or modem at step 374.

Referring now to Figure 9C, there is shown the step of interrogating the local server (e.g., a DHCP server) to determine the local/remote status. Control begins in step 380. At step 382, control determines if the provider network device received a request to copy the protected file. If step 382 is false, then control returns to step 382. If step 382 is true, then control continues with step 384 where the provider network device queries the server for the identity of the regional network device. The identity may include a MAC address, although other identity types may also be used. At step 386, the provider network device determines if the requestor network device has a local state. If step 386 is false, the provider network device rejects the request and control returns to step 382. If step 386 is true, then the provider network device transmits a copy of the archive to the requester network device at step 388.

Referring now to Figure 9D, the steps performed by the network system are generally shown at 400. At step 402, control begins. At step 404, the provider network device determines if the requestor network device requested a copy of the content. If not, control returns to step 404. Otherwise, control continues with step 408 and the provider network device requests the key from the requester network device. At step 412, the provider network device starts a timer.

At step 416, the provider network device determines if a key has been received. If the key is not received and (in some embodiments) does not exceed the predetermined time period, then control continues with step 416. Otherwise, control continues with step 420 and the provider network device stops the timer. At step 422, control determines if the timer is less than a predetermined period of time.

In some embodiments, the predetermined period of time is less than or equal to the amount of time required for the packet to travel one or two hops. Provides additional security by limiting response time. The amount of time it takes for a computer or other device outside the local area network to respond will exceed the predetermined period of time. In other words, a key-containing packet from a computer (e.g., computer 62) or other network device (e.g., network device 60) connected outside of the local area network will exceed one or two hops. This is due to the time required by the modem and the service provider.

If step 422 is false, then control returns to step 404. If step 422 is true, the provider network device encrypts or encrypts the content using the key at step 426 and transmits the encrypted or encrypted content over the network to the requesting device, and control continues with step 404.

Referring now to Figure 10, there is shown the steps of a method that allows a copy of a protected file N times from a requester network device. Control begins in step 600. At step 602, control determines whether the copy protected file has been stored on the requestor network device. If not, control returns to step 602. If step 602 is true, then control sets N=1 of the file at step 604. At step 606, control determines whether a copy protected file stored on the requester's network spool has been played. If step 606 is false, then control returns to step 606. If step 606 is true, then control increments N at step 610. At step 614, control determines if N = _Nmax . If step 614 is false, then control returns to step 606. If step 614 is true, then control deletes the copy protected file from the requester network device or otherwise renders the copy protected file unavailable at step 618, and control returns to step 602.

Referring now to Figure 11, there is shown the steps of a method for limiting the number of times a copy protected file stored on a requester network device can be played. Control begins in step 640. At step 644, control determines whether the copy protected file has been stored on the requester network device. If step 644 is false, then control returns to step 644. Otherwise, control continues with step 646 and sets a timer. At step 648, control determines if the timer is over. If step 648 is false, then control returns to step 648. If step 648 is true, then control deletes the copy protected file from the requester network device at step 652, and control continues with step 644. Although a timer is described, any usage measurement and/or comparison can be performed. For example, a date and/or timestamp can be used and can be compared to the current date and/or time. Other types of usage materials will be apparent to those skilled in the art.

Referring now to FIG. 12A, media server 700 can be used to supply protected content from provider 702 to requester 704. Although router 706 is shown coupled to media server 700, provider 702, and requester 704, other network configurations and connections may be used, such as, but not limited to, ad-hoc network mode, peer-to-peer mode, and the like. In some embodiments, the media server includes a local/remote state determination module 701 as previously described. Media server 700 provides a list of available content to requester 704. The requester 704 requests the content. The media server 700 confirms that the requestor is in the local area network by any of the methods described above. If the requester 704 is on the local area network, the media server 700 requests the content from the provider 702. Provider 702 transmits the content directly to requester 704 or to media server 700, which delivers the content to requester 704.

Referring now to FIGS. 12B and 13, the media server 700 supplies protected content from the DVD system 710 to the HDD system 712. DVD system 710 and HDD system 712 can be implemented as described in the previous embodiments. In Figure 13, media server 700 can be implemented in the network as shown. Other network configurations are contemplated, such as those described herein and other network configurations. The media server can be connected to the network either wired or wirelessly.

Referring now to Figure 14, there is shown a flow chart of the steps performed by the media server in accordance with the present invention. Control begins in step 720. At step 722, control determines whether the server has received a request from the requestor for a copy of the protected archive. If false, then control returns to step 722. If true, at step 724, the media server determines if the requestor has a local status. The local status of the requester can be judged in any of the foregoing ways. If step 726 is true, then in step 728, the server requests the archive from the provider and transmits the archive to the requester. Alternatively, the provider can pass the file directly to the requester.

Referring now to Figure 15, the provider network device 5 determines the local/remote status of the wireless network device that is requesting the protected content. The provider network device 5 can communicate with the access point 800 via the router 3. The access point 800 can include a physical layer (PHY) device 802 and a medium access control (MAC) device 804, wherein the physical layer device 802 provides an interface to the wireless medium, and the media access control device 804 provides the physical layer device 802 and the host Interface between devices.

The physical layer device 802 can determine at least one of the following: the connection speed of the connection to the client; the signal quality of the connection to the client; the connection distance to the client and/or the connection direction to the client. Wireless access point 800 includes an antenna system 805 that can include one or more antennas. For example, the antenna system can be a multiple input, multiple output (MIMO) antenna system. If multiple antennas are used, the physical layer device 802 can selectively determine the direction in which the client is positioned relative to the access point 800 and forward the direction information to the provider network device 5. The physical layer device 802 can determine the direction based on triangulation techniques and/or using other methods.

For example, the wireless network device can include a client 810-1. Client 810-1 includes a physical layer (PHY) device 812-1 that provides an interface to wireless media. The client 810-1 also includes a medium access control (MAC) device 814-1 that provides an interface between the physical layer device 812-1 and the host, such as a laptop, personal digital assistant, and/or Any other suitable device. Other clients 810-2 and 810-Q (collectively referred to as clients 810) may also establish a wireless connection with access point 800. The wireless access point 800 can also determine their connection speed, signal quality, connection distance, and/or connection direction when the clients 810-2 and 810-Q request access to the protected content.

The wireless access point 800 can selectively communicate the connection speed, signal quality, connection distance, and/or connection direction of the corresponding client 810 to the regional network determination module 7. The regional network determining module 7 compares the connection speed, signal quality, connection distance, and/or connection direction with a predetermined threshold and/or adaptive threshold, and determines whether the particular client 810 is local or remote. of. If client 810 is local, protected content can be delivered to the client 810, as described above. If the client 810 is remote, the protected content is not transmitted to the client 810 and/or a further verification step can be performed.

The connection speed and/or signal quality of the connection between the wireless access point 800 and the client 810 tends to decrease as a function of the distance between the wireless access point 800 and the client 810. Thus, when client 810 requests access to protected content (requester network device), the provider network device can evaluate whether the client is local or remote. Thus, the provider network device 5 can restrict fraudulent requests for protected content. Although the exemplary embodiment shown in Fig. 15 relates to an infrastructure mode wireless network, an ad-hoc mode wireless network can also be used.

Referring now to Figure 17, the provider network device 5 can include a wireless network interface 800 that includes a physical layer device 802 and a medium access control (MAC) device 804. The wireless network interface 800 can function as an access point/router in infrastructure mode, working as a client in an ad-hoc configuration and/or any other suitable network configuration.

16A-16E are functional block diagrams of typical physical layer devices of wireless network devices, such as access points or wireless network interfaces. The physical layer device 802 can include a connection rate determination module 820 as shown in FIG. 16A. The connection rate determination module 820 determines the connection rate at which the client 810 transmits the data to the access point 800 and forwards the connection rate information to the provider network device 5. The physical layer device 802 can include a connected signal quality determination module 830 as shown in FIG. 16B. The connected signal quality determination module 830 estimates the signal quality of the connection and forwards the signal quality information to the provider network device. Signal quality may be estimated based on received signal emphasis indicator (RSSI), bit or packet error rate, and/or other suitable criteria.

In FIG. 16C, the physical layer device 802 can include a connection direction determination module 840. The connection direction determination module 840 can use triangulation (e.g., using multiple antennas) and/or other techniques to determine the direction in which the client is positioned relative to the physical layer device 802. The physical layer device 802 forwards the connection direction information to the regional network determination module 7. For example, the access point can be positioned adjacent to the exterior wall of the building. If the client 810 is positioned in the direction of the interior of the building, additional speed, distance, and/or signal quality determinations can be performed to determine if the client is local or remote. However, if the client 810 is positioned in a direction outside the building, the client 810 can be classified as remote without further analysis. Connection direction, connection distance, connection signal quality, and/or connection data rate estimates may also be estimated in the access point, network interface media access control (MAC) device, and/or in the provider network device.

In FIG. 16D, the physical layer device 802 can include a connection distance determination module 850 that estimates the distance to the client 810. The distance may be estimated based on the amount of time required to transmit and/or receive data between the access point 800 and the client 810.

In FIG. 16E, the physical layer device 802 can generate two or more of a connection direction, a connection speed, a connection distance, and a connection signal quality estimation. The provider network device can determine the local/remote state based on the two or more estimates.

Referring now to Figures 18A and 18B, the provider network device can determine the requesting wireless network by determining whether the signal from the requesting wireless network device is received via a repeater and/or more than R transponders. The local/remote state of the device, where R is an integer greater than one. Using one or more repeaters can indicate that the requesting wireless network device has no local state.

In FIG. 18A, requester wireless network device 900 communicates with provider network device 910 via one or more repeaters 902-1, . . ., and 902-R, where R is an integer greater than zero. In this exemplary implementation, provider network device 910 communicates with requester wireless network device 900 in infrastructure mode via access point 904 and router 906. However, specific modes can also be used. The provider network device 910 determines if the requestor network device is communicating via one or more repeaters and/or the number of repeaters being used. The provider network device 910 determines the local/remote status of the requester network device based on the repeater determination.

For example, if any repeater is used, some provider network devices can determine that the requestor network device is remote. In other typical networks, if more than R transponders are used, the provider network device can determine that the requestor network device is remote, where R is greater than one. The provider network device 910 can use any suitable method to sense whether a repeater is used. For example, the provider network device can use the time required for an acknowledgment (ACK) from the requester network device as a criterion.

A flowchart of the steps of this exemplary method for identifying whether a requesting wireless network device is communicating via one or more repeaters is illustrated in FIG. 18B. In the figure, control begins in step 920. In step 924, control determines if a local or remote state of the requestor network device needs to be determined. If so, control continues to step 926 and the timer is started.

In step 928, control transfers the message to the requester network device. In step 930, control determines if an acknowledgment (ACK) has been received from the requester network device. If not, then control determines in step 934 whether the timer is less than the maximum threshold _Tthmax . If yes, then control returns to step 930. If YES in step 930, then control stops the timer in step 940. In step 942, control determines if the timer is less than the second threshold _Tth . If so, then control continues with step 944 and sets the state of the requester network device equal to local. If step 942 is no or step 934 is no, then control continues with step 946 and sets the state of the requester network device equal to the far end. Control then ends in step 950.

Referring now to Figure 19, there is shown the steps of a method for operating a requester network device. The requestor network device may initially request access to content that may be provided by the provider network device. Upon expiration of the constraint on the content at the requester network device, the requestor network device may request access to the content again. If the provider network device authorizes access M times, where M is an integer greater than or equal to 2, it may be fair to make the following assumptions: assume that the provider network device now has ownership of the content, and the requestor network device Unrestricted access may be acceptable.

Control begins in step 960. In step 964, control determines if the requestor network device has received the content with constraints. If step 964 is YES, then control continues with step 966 and stores these constraints. Control setting calculator N=1. In step 970, control applies these constraints. In step 974, control determines if these constraints have expired. If no, then control returns to step 974. Otherwise, control continues with step 978 and it is determined if the user has requested the same content again. If no, then control returns to step 978. If step 978 is true, then control determines if the requestor network device receives the permission. If true, then control increments N in step 986. In step 990, control determines if N is greater than or equal to M, where M is an integer greater than or equal to two. If the step 990 is no, then control returns to step 970 and continues to impose constraints. If step 990 is true, then control continues with step 994 and these constraints of the content are removed.

From the above detailed description and the broad teachings, those skilled in the art will appreciate that the invention can be practiced in various ways. Accordingly, the present invention is to be construed as being limited by the specific examples thereof. This is due to the fact that the other modifications will be apparent to those skilled in the art after the specification, the drawings, and the scope of the claims.

2. . . Regional network

3. . . router

4. . . Data machine

5. . . Provider network device

6. . . Protected content

7. . . Regional network determination module

8-1. . . Requester network device

8-2. . . Requester network device

8-N. . . Requester network device

9. . . service provider

10. . . Decentralized communication system

11-1. . . server

11-2. . . server

11-M. . . server

12-11~12-1P. . . Network device

12-21~12-2R. . . Network device

12-M1~12-MS. . . Network device

13. . . Regional network

14. . . Data machine

16. . . media

18. . . service provider

twenty two. . . Decentralized communication system

28. . . router

30-1. . . Network device

30-2. . . Network device

30-N. . . Network device

34. . . Hard disk drive (HDD) system

38. . . TV or monitor

40. . . Access point

42-1. . . Wireless station

42-2. . . Wireless station

42-N. . . Wireless station

44. . . DVD player

46. . . TV or monitor

50. . . Set-top box

54-1. . . server

54-2. . . server

60. . . Network device

62. . . computer

110. . . HDD system

114. . . HDD printed circuit board

118. . . Buffer/volatile memory

119. . . Non-volatile memory

122. . . processor

124. . . Input/output interface

126. . . Hard Disk Control Module (HDC)

130. . . Spindle/VCM driver

134. . . Read/write channel module

135. . . Host

150. . . Hard disk drive assembly (HDDA)

152. . . Hard drive disc

154. . . Spindle motor

158. . . Read/write arm

159. . . Read/write device

160. . . Preamplifier circuit

210. . . DVD system

214. . . DVD PCB

218. . . Buffer/volatile memory

219. . . Non-volatile memory

222. . . processor

224. . . Input/output interface

226. . . DVD control module

230. . . Spindle/FM driver

234. . . Read/write channel module

235. . . Wired or wireless host

240. . . Codec module

242. . . Audio digital signal processor and/or module

244. . . Video digital signal processor and/or module

250. . . DVD component

252. . . DVD disc

254. . . Spindle motor

258. . . Feed motor

259. . . OR device

260. . . Preamplifier circuit

261. . . Laser driver

280. . . DVD/HDD system

284. . . System control module

290. . . Non-volatile memory

292. . . Volatile memory

294, 296. . . interface

298. . . Host

300. . . Non-volatile memory

304. . . first part

308. . . Second part

310. . . Write strategy for DVD

314. . . Static or dynamic write buffer for DVD

316. . . Static or dynamic DVD read buffer

320. . . DVD replacement storage

324. . . DVD copy storage

700. . . Media server

701. . . Local/remote status judgment module

702. . . provider

704. . . Requester

706. . . router

710. . . DVD system

712. . . HDD system

800. . . Access point/wireless network interface

802. . . Physical layer (PHY) device

804. . . Media access control (MAC) device

805. . . Antenna system

810-1. . . Client

810-2. . . Client

810-Q. . . Client

812-1. . . Physical layer (PHY) device

814-1. . . Media access control (MAC) device

820. . . Connection rate determination module

830. . . Connection signal quality determination module

840. . . Connection direction determination module

850. . . Connection distance determination module

900. . . Requester wireless network device

902-1. . . Forwarder

902-R. . . Forwarder

904. . . Access point

906. . . router

910. . . Provider network device

914. . . Wireless requester

1 is a functional block diagram of a provider network device that provides protected digital content to one or more requestor network devices in a local area network; and FIG. 2 is a first communication with a data machine in accordance with the present invention. Functional block diagram of a DVD and HDD system of a typical network; Figure 3 is a functional block diagram of a DVD and HDD system of a second typical network in communication with a data machine in accordance with the present invention; and FIG. 4 is a diagram of a data machine in accordance with the present invention. Functional block diagram of the DVD and HDD system of the third typical network of communication; FIG. 5 is a functional block diagram of the DVD and HDD system of the fourth typical network in communication with the data machine according to the present invention; FIG. 6 is a diagram showing HDD Functional block diagram of a typical supplicant network device of the system; FIG. 7A is a functional block diagram of a typical provider network device including a DVD system having read only operation; and FIG. 7B is a diagram showing a DVD system including read and write operations. Functional block diagram of a typical provider network device; Figure 7C is a functional block diagram of a provider or requester network device including a combined DVD/HDD system; and Figure 8 is a non-volatile HDD of Figure 6 User accessible area of sexual memory Hidden section; Figures 9A-9D are flow diagrams illustrating the security steps performed by the provider and/or requester network device; Figure 10 is a diagram illustrating the use of replaying protected files from the requester network device A flowchart of the steps of the method of N times; FIG. 11 is a flow chart illustrating the steps of a method for limiting the number of times a copy protected file stored on a requester network device can be played; FIG. 12A includes media a functional block diagram of the server's network, where the media server supplies the protected content from the provider to the requester; Figure 12B is a functional block diagram of the network including the media server, where the media server will be protected Supply from the DVD system to the HDD system; Figure 13 shows the media server in a typical network configuration; Figure 14 is a flow chart illustrating the steps performed by the media server in accordance with the present invention; Figure 15 is a judgment such as Functional block diagram of the provider network device for the local/remote state of the wireless network device such as the client; Figures 16A-16E are diagrams of the wireless network device such as the access point or wireless network interface Functional block diagram of the body device; Figure 17 is a functional block diagram of the provider network device including the wireless network interface; and Figure 18A is a requester wireless network communicating with the provider network device via one or more repeaters Functional block diagram of a road device; FIG. 18B is a flow chart illustrating steps of a typical method for identifying whether a requesting wireless network device is communicating via one or more repeaters; and FIG. 19 is a diagram illustrating A flow diagram of steps performed by the network device for selectively removing restrictions.

3. . . router

4. . . Data machine

5. . . Provider network device

6. . . Protected content

7. . . Regional network determination module

8-1. . . Requester network device

8-2. . . Requester network device

8-N. . . Requester network device

9. . . service provider

800. . . Access point/wireless network interface

802. . . Physical layer (PHY) device

804. . . Media access control (MAC) device

810-1. . . Client

810-2. . . Client

810-Q. . . Client

812-1. . . Physical layer (PHY) device

814-1. . . Media access control (MAC) device

Claims (20)

A system for distributing content in a network, comprising: a memory that stores content; and a provider network device that communicates with the memory and wirelessly communicates with a requestor network device that requests a copy of the content The provider network device determines a local/remote state of the requester network device, and when the requestor network device has a local state, transmits a key request to the requester network device and receives from the a key of the requester network device determining whether the key was received during a predetermined time period based on a number of hops, encrypting the content with the key, and receiving the content during the predetermined time period A key that transmits the encrypted content to the requester network device. The system of claim 1, wherein the provider network device receives or determines at least one of signal quality estimation, data rate estimation, distance estimation, and direction estimation for a connection, and estimates based on the signal quality The at least one of the data rate estimate, the distance estimate, and the direction estimate determines the local/remote state. A system as claimed in claim 1, wherein the provider network device comprises a digital versatile disc (DVD) system. The system of claim 1, further comprising the requester network device, wherein the requester network device comprises a hard disk drive (HDD) system. The system of claim 4, wherein the HDD system comprises: a non-volatile HDD memory that stores data in a non-volatile manner and includes user accessible segments and hidden segments; a hard disk drive (HDD) control module in communication with the HDD non-volatile memory, selectively requesting and receiving content from the provider network device, and storing the requested content to the non-volatile HDD memory In the hidden section. The system of claim 5, wherein the HDD control module receives the key request after transmitting the request to the provider network device, and transmits the key to the provider network device in response to the key request The requested content received by the HDD system from the provider network device is encrypted using the key. The system of claim 6, wherein the HDD control module decrypts the requested content. The system of claim 5, wherein the requested content includes: usage data of the hidden section also written to the non-volatile HDD memory, and wherein the HDD control module is instructed by the usage data When the end of the use is allowed, the requested content is made unavailable. The system of claim 8 wherein the HDD system deletes the requested content from the non-volatile HDD memory. A system as claimed in claim 8, wherein the usage data sets a predetermined number of times allowed for use. For example, the system of claim 8 of the patent scope, wherein the usage data sets a period during which the use is permitted. For example, the system of claim 3, wherein the DVD system comprises: a non-volatile memory storing content; and a DVD control module in communication with the non-volatile memory and selectively receiving a request for content from the requester network device. The system of claim 12, wherein the DVD control module determines the amount of time required to receive the key from the requester network device after transmitting the key request to the requester network device. A system of claim 13, wherein the DVD system transmits the requested content to the requester network device if the key is received during the predetermined time period. The system of claim 14, wherein the DVD system encrypts the requested content before transmitting the requested content to the requester network device. The system of claim 15 wherein the DVD control module includes usage data in the requested content that is transmitted to the requester network device. For example, the system of claim 16 of the patent scope, wherein the usage data sets the number of times allowed to be used. For example, the system of claim 16 of the patent scope, wherein the usage data sets a period during which the use is permitted. The system of claim 2, further comprising a wireless network interface including a physical layer device and a medium access control device, and wherein at least one of the physical layer device and the media access control device generates the quality estimate, Distance estimate The at least one of the direction estimate and the data rate estimate. A system as claimed in claim 19, wherein the wireless network interface is associated with an access point.