WO2008060300A1 - Systèmes et procédés de gestion de droits numériques distribués - Google Patents

Systèmes et procédés de gestion de droits numériques distribués Download PDF

Info

Publication number
WO2008060300A1
WO2008060300A1 PCT/US2006/060999 US2006060999W WO2008060300A1 WO 2008060300 A1 WO2008060300 A1 WO 2008060300A1 US 2006060999 W US2006060999 W US 2006060999W WO 2008060300 A1 WO2008060300 A1 WO 2008060300A1
Authority
WO
WIPO (PCT)
Prior art keywords
media file
user
identifier
server
advertisement
Prior art date
Application number
PCT/US2006/060999
Other languages
English (en)
Inventor
Cheng Han
Vincent Wang
Zhiliang Chen
Original Assignee
Dynomedia, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Dynomedia, Inc. filed Critical Dynomedia, Inc.
Priority to PCT/US2006/060999 priority Critical patent/WO2008060300A1/fr
Priority to CN200710080111.8A priority patent/CN101184086B/zh
Publication of WO2008060300A1 publication Critical patent/WO2008060300A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/42User authentication using separate channels for security data

Definitions

  • the present invention relates to the field of online media distribution, and specifically to systems and methods for providing digital rights management in a distributed environment.
  • DRM Digital rights management
  • Some DRM schemes may comprise distributing a media file which contains a fixed set of license policies and means for enforcing those policies. While this approach may have some efficiency advantages, it does not allow for the license policies to subsequently be modified without redistributing entirely new copies of the file.
  • Other DRM schemes may require license policies to be obtained from a central server each time a file is accessed.
  • Peer-to-peer networks have long been available for communicating among computers and sharing files. Peer-to-peer networks have been used among other things, to share and distribute media files among a group of peers. Peer-to-peer networks, as compared to centralized client-server networks, may have the advantage of having fewer bandwidth and processor bottlenecks, as well as being more adaptive to changing network circumstances. However, peer-to-peer networks may be difficult to monitor for purposes of controlling file distribution. Once a file is on a peer-to- peer network, there may no longer be a single access point to the file which a publisher can use to control access. Thus there exists a need for a DRM solution which combines the efficiency of peer-to-peer networks with the control over licensing policies offered by centralized DRM management.
  • advertisements may be used in conjunction with media files in order to generate revenue or product prominence.
  • consumers may react negatively if they are compelled to watch advertisements along with a particular media file, and may avoid the file altogether.
  • consumers are given a choice as to whether to watch or listen to an advertisement, so many consumers may choose not to watch the advertisement, that the advertisement does not produce the desired results.
  • target advertising to users of digital media such that user interest in the advertisements displayed or optionally displayed along with a media file generate sufficient results to be successful.
  • the present invention relates to a digital rights management framework in which license headers containing permissions associated with media files are kept separately from the media files.
  • the license headers may then be stored in a distributed network of peer nodes, which service requests from media players operated by peers to access the media files by consulting the license headers and then, if authorized, transmitting a session key enabling access to the media file.
  • the media files may be distributed via any manner, including peer-to-peer transmission, while still enabling flexible, centralized license management.
  • the present invention is a method for providing collaborative authentication in a distributed digital rights management environment.
  • the method comprises: receiving, by a server from a first client, a request to access a media file, the request comprising a user identifier, an application identifier, and a media file identifier; determining, by the server, that access to the media file is restricted to a set of users; sending, by the server, a request to a second client identified as having previously interacted with the user identified by the user identifier, the request comprising the user identifier and the application identifier; receiving, by the server, a response from the second client confirming the user identifier corresponds to the application identifier; and transmitting, by the server to the first client, a session key corresponding to the requested media file.
  • the present invention is a computer-implemented system for providing collaborative authentication in a distributed digital rights management environment.
  • the system comprises: an authentication server which receives from a first client, a request to access a media file, the request comprising a user identifier, an application identifier, and a media file identifier; determines that access to the media file is restricted to a set of users; sends a request to a second client identified as having previously interacted with the user identified by the user identifier, the request comprising the user identifier and the application identifier; receives a response from the second client confirming the user identifier corresponds to the application identifier; and transmits, to the first client, a session key corresponding to the requested media file.
  • the present invention is a computer program product comprising computer readable means for providing collaborative authentication in a distributed digital rights management environment.
  • the product comprises: a media player which executes on a client, and, upon receiving a request from a user to play a media file, sends a request to a server comprising a user identifier, an application identifier, and a media file identifier; and a peer verification module which executes on the client and which receives, from an authentication server, a request comprising a user identifier and an application identifier; determines that the received user identifier corresponds to the application identifier; and transmits a response to the server identifying the determined correspondence.
  • the present invention is a method of providing targeted advertisements to users viewing media files in a distributed network.
  • the method comprises: receiving, by a server from a user operating a client, a request to access a media file, the request comprising a user identifier identifying the user and a media file identifier identifying the media file; determining, in response to the media file identifier and the user identifier, an advertisement to be displayed to the user in conjunction with the media file; and transmitting, to the client, the determined advertisement and a session key corresponding to the media file.
  • the present invention is a method of providing targeted advertisements to users viewing media files in a distributed network.
  • the method comprises: receiving, by a server from a user operating a client, a request to access a media file, the request comprising a user identifier identifying the user and a media file identifier identifying the media file; determining, in response to the media file identifier and the user identifier, an advertisement to be displayed to the user in conjunction with the media file; and transmitting, to the client, the determined advertisement and a session key corresponding to the media file.
  • the present invention is a computer implemented system for providing targeted advertisements to users viewing media files in a distributed network.
  • the system comprises: an authentication server which receives from a user operating a first client, a request to access a media file, the request comprising a user identifier identifying the user and a media file identifier identifying the media file; transmits the media file identifier and user identifier to an advertisement sever; and transmits to the client a session key corresponding to the media file and an advertisement server, in communication with the authentication server, which determines, in response to a received media file identifier and the user identifier, an advertisement to be displayed to the user in conjunction with the media file; and transmits, to the first client, the determined advertisement.
  • FIG. 1 depicts an embodiment of a computer network useful for enabling a distributed digital rights management environment
  • FIGs. 2A and 2B depict block diagrams of a typical computer 200 useful as client computing devices and server computing devices;
  • FIG. 3 A depicts a block diagram of an example of a media file access center
  • FIG. 3B depicts a flow diagram of a method for providing distributed digital rights management
  • FIG. 4A depicts one embodiment of a computer network useful for enabling collaborative authentication in a distributed digital rights management environment
  • FIG. 4B depicts a flow diagram of a method for providing collaborative authentication in a distributed digital rights management environment
  • FIG. 5 depicts a block diagram of a network for enabling editing and republishing of media files in a distributed digital rights management framework
  • FIG. 6 depicts a block diagram of a license header comprising a plurality of sublicenses
  • FIG. 7 depicts a flow diagram of one method for providing granular media file permissions in a distributed digital rights management framework
  • FIG. 8 depicts a flow diagram of a method for allowing editing and republishing of media files in a distributed digital rights management framework
  • FIG. 9 depicts a flow diagram of a method for enabling prepaid purchase of licenses in a distributed digital rights management framework.
  • FIG. 10 depicts a flow diagram of a method for providing targeted advertisements to users viewing media files in a distributed network.
  • FIG. 1 an embodiment of a computer network useful for enabling a distributed digital rights management environment is shown.
  • a plurality clients 113 in a plurality of networks 11 Ia, 11 Ib, 11 In are in communication with a plurality of supernodes.
  • the supernodes 100 are in communication with one or more central servers 110, 115, 120.
  • a computer network useful for enabling distributed digital rights management environment uses a plurality of supernodes to handle requests from a number of clients.
  • the clients may be organized in one or more networks 11 Ia, 11 Ib, 11 In, which may comprise any type of network, including without limitation local area networks, wide area networks, and peer-to-peer networks.
  • the requests handled may comprise requests to access a media file, requests to republish a media file, requests to prepurchase a given number of licenses for a media file, and requests to upload a new media file.
  • the supernodes may be in contact with one or more servers 110, 115, 120, which service any requests which cannot be handled by a supernode.
  • the clients may locate a supernode for communication by requesting the network address of a supernode from a centralized server.
  • a central server may maintain an index of available supernodes, and respond to client requests by providing an address of a supernode in proximity to the client making the request.
  • a client may discover a supernode via communications with peers on the network.
  • a client may receive the address of a second supernode via communication with a first supernode.
  • a client may maintain a table of known supernodes.
  • one or more of the clients 113 may participate in a peer-to-peer file sharing network.
  • a client 113 may download a media file from a second client 113, and then send a request to a supernode for a session key which will allow the client to play the media file using a media player.
  • the supernodes may be located and selected such that response time to the request is lesser than if all requests for a session key went to a central server.
  • a server 110, 115, 120 or client 113, 100 may comprise any computing device, including without limitation computing devices such as the ones described in FIGs. 2A and 2B.
  • the client 113 may comprise any device having functionality for playing one or more media files, and sending and receiving information.
  • the client may comprise software and/or hardware specifically adapted for the playing of media files.
  • a client may also comprise software and/or hardware comprising a peer verification module which executes on the client.
  • a peer verification module may be used to authenticate requests made by peers with whom a client has communicated with in the past.
  • a peer verification module may receive, from an authentication server, a request comprising a user identifier and an application identifier; determine that the received user identifier corresponds to the application identifier; and transmit a response to the server identifying the determined correspondence.
  • the peer verification module may execute on the client transparently to the user of the client.
  • the peer verification module may comprise a background process which executes upon a network connection being established by the client.
  • the peer verification module may automatically begin executing upon startup of a media file player.
  • a media file player and a peer verification module may be packaged together for download, or purchase on CD, such that installing the media file player automatically installs the peer verification module as well.
  • the media file player and the peer verification module mare share one or more processes, code, or executables.
  • a client may also comprise a usage monitor, which operates to monitor the amount and frequency with which the client is online.
  • a usage monitor may also monitor the availability of a client for acting as a file server or as an authentication server.
  • the clients 113 may be in communication with one or more other clients 113 via peer-to-peer connections. Examples of peer-to-peer interactions may include sharing files, Internet streaming, instant messaging, Voice over Internet Protocol (VoIP) applications, and distributed computing.
  • a client may store one or more files in a manner such that the files are accessible by one or more other clients. This may be done using any peer-to-peer file sharing or streaming technology. Ia one embodiment, a number of clients may use a single web site to post links to files and other content the clients are currently sharing.
  • a supernode 100 may comprise any client or server designated to receive requests from clients 113 to access one or more media files.
  • a supernode may also be referred to as an authentication server.
  • a supernode may comprise a client 113, with software for handling media file requests.
  • a supernode may comprise a client which has been selected to serve as a supemode 100 because of certain behavior. Examples of selection criteria for a supernode may comprise reliability thresholds, uptime thresholds, peer verification thresholds, network activity thresholds, connection bandwidth thresholds, and node location algorithms.
  • a client 113 may be elected as a supernode based on participating in a network for a given amount of time. Or, for example, a client 113 may be elected as a supernode based on stability, network speed, or having downloaded or uploaded a certain number of media files.
  • a supernode may comprise software or hardware which acts as an authentication server, which manages requests from clients 113 to access files and authenticates the clients and one or more users of the clients.
  • software comprising functionality for a client to perform supernode functions may be included with a media file player and a peer verification module as described above.
  • the supernode software may be downloaded by a client upon election of the client as a supernode.
  • the supernode software may execute transparently to a user of the client.
  • a user of the client may be prompted to select whether the user wishes the client to perform supernode functions.
  • a server such as the servers 110, 115, 120, and the supernode 100 may comprise any computing device or devices capable of sending and receiving information.
  • a server may comprise a group of servers which act as a logical unit, such as, for example, a server farm or a number of distributed data centers with servers performing related functions.
  • two or more of servers depicted may reside on the same physical machine.
  • two or more of the servers depicted may share one or more resources including without limitation processors, memory, and bandwidth.
  • a supernode may be in communication with a central license server 120.
  • a central license server may be used as a central repository for licensing information relating to a plurality of media files.
  • the supernode 100 may communicate with a central license server to determine a license that applies to a particular media file.
  • the supernode 100 may also communicate with a central license server to verify the identity of one or more clients.
  • the supernode 100 may store information relating to license information to particular media files. In some embodiments, the supernode may store license information relating to previously requested media files, to enable subsequent requests for those media files to be processed more efficiently. In another embodiment, a supernode may receive periodic updates of licensing information relating to media files from a central license server 120. In still other embodiments, a supernode may receive updates from other supernodes 100. The supernodes and central license server or servers may use any techniques for synchronizing license information, including periodic updates, pushed updates, pulled updates, and predictive updates.
  • a supernode may also store one or more media files.
  • a centralized content server may be provided to store media files in the system.
  • media files may be stored via a combination of central servers, supernodes, and clients using peer-to-peer file transfer software.
  • the supernode 100 is also connected to a payment processing server 115.
  • the payment processing server 115 may comprise any server capable of processing information corresponding to transferring funds between two parties, such as for example, processing credit card charges, credit card credits, bank account withdrawals and bank account deposits.
  • a payment processing server may comprise one or more payment modules including a secured web-service based interface to integrate with micropayment, online payment, mobile payment or legacy payment systems.
  • a payment processing server may include support for currency conversion, including conversion to one or more virtual ' currencies used within the system.
  • the payment processing server 115 may be used to collect revenue associated with one or more purchases of access to a media file.
  • the payment processing server 115 may receive credit card payments from players corresponding to downloading a movie. Or, for example, the payment processing server 115 may distribute funds back to a content publisher. For example, a given audio file might have an associated $1 download fee. The payment processing server 115 may collect the $1 fee from a client, and then transfer some or all of the $1 to an account held by the publisher of the audio file. In some embodiments, a payment processing server may store information relating to one or more user accounts. In these embodiments, users may deposit a given amount of money in an account, and have the account deducted for purchases relating to the system.
  • the game server 100 is also connected to an advertisement server 110.
  • An advertisement server 110 may comprise any server capable of transmitting one or more advertisements.
  • an advertisement server may be used to generate targeted advertisements corresponding to a particular media file and end user.
  • one or more of the servers discussed may comprise web servers, which may comprise any server capable of delivering content readable by a web browser, including without limitation HTML pages, Javascript, Java applets, Ajax, XML, WML, and images.
  • the servers may receive and transmit streaming content and services.
  • the client 113 and the servers may be connected in any manner, and via any network or networks.
  • the clients 113 may communicate directly with one or more of the supernode 100, the central license server 120, the payment processing server 115, or the advertisement server 110.
  • Connections and networks included in the connections may comprise the Internet, local networks, web servers, file servers, routers, databases, computers, servers, network appliances, or any other computing devices capable of sending and receiving information.
  • the network may comprise computing devices connected via cables, infrared ports, wireless signals, or any other means of connecting multiple computing devices.
  • the network and any devices connected to the networks may communicate via any communication protocol used to communicate among or within computing devices, including without limitation SSL, BitTorrent, HTML, XML, RDP, ICA, FTP, HTTP, SIP, XMPP (also known as Jabber), TCP, IP, UDP, IPX, SPX, NetBIOS, NetBEUI, SMB, SMTP, Ethernet, ARCNET, Fiber Distributed Data Interface (FDDI), RS232, IEEE 802.11, IEEE 802.11a, IEE 802.11b, IEEE 802.1 Ig and direct asynchronous connections, or any combination thereof.
  • the network may comprise mobile telephone networks utilizing any protocol or protocols used to communicate among mobile devices, including AMPS 5 TDMA, CDMA, GSM, GPRS or UMTS.
  • FIGs. 2A and 2B depict block diagrams of a typical computer 200 useful as client computing devices and server computing devices.
  • each computer 200 includes a central processing unit 202, and a main memory unit 204.
  • Each computer 200 may also include other optional elements, such as one or more input/output devices 230a-230b (generally referred to using reference numeral 230), and a cache memory 240 in communication with the central processing unit 202.
  • the central processing unit 202 is any logic circuitry that responds to and processes instructions fetched from the main memory unit 204.
  • the central processing unit is provided by a microprocessor unit, such as those manufactured by Intel Corporation of Mountain View, California; those manufactured by Motorola Corporation of Schaumburg, Illinois; the Crusoe and Efficeon lines of processors manufactured by Transmeta Corporation of Santa Clara, California; the lines of processors manufactured by International Business Machines of White Plains, New York; or the lines of processors manufactured by Advanced Micro Devices of Sunnyvale, California.
  • Main memory unit 204 may be one or more memory chips capable of storing data and allowing any storage location to be directly accessed by the microprocessor 202, such as Static random access memory (SRAM), Burst SRAM or SynchBurst SRAM (BSRAM), Dynamic random access memory (DRAM), Fast Page Mode DRAM (FPM DRAM), Enhanced DRAM (EDRAM), Extended Data Output RAM (EDO RAM), Extended Data Output DRAM (EDO DRAM), Burst Extended Data Output DRAM (BEDO DRAM), Enhanced DRAM (EDRAM), synchronous DRAM (SDRAM), JEDEC SRAM, PClOO SDRAM, Double Data Rate SDRAM (DDR SDRAM), Enhanced SDRAM (ESDRAM), SyncLink DRAM (SLDRAM), Direct Rambus DRAM (DRDRAM), or Ferroelectric RAM (FRAM).
  • SRAM Static random access memory
  • BSRAM SynchBurst SRAM
  • DRAM Dynamic random access memory
  • FPM DRAM Fast Page Mode DRAM
  • EDRAM Extended Data
  • FIG. 2A the processor 202 communicates with main memory 204 via a system bus 250 (described in more detail below).
  • FIG. 2B depicts an embodiment of a computer system 200 in which the processor communicates directly with main memory 204 via a memory port.
  • the main memory 204 may be DRDRAM.
  • FIGs. 2A and 2B depict embodiments in which the main processor 202 communicates directly with cache memory 240 via a secondary bus, sometimes referred to as a "backside" bus.
  • the main processor 202 communicates with cache memory 240 using the system bus 250.
  • Cache memory 240 typically has a faster response time than main memory 204 and is typically provided by SRAM, BSRAM, or EDRAM.
  • the processor 202 communicates with various I/O devices 230 via a local system bus 250.
  • Various busses may be used to connect the central processing unit 202 to the I/O devices 230, including a VESA VL bus, an ISA bus, an EISA bus, a MicroChannel Architecture (MCA) bus, a PCI bus, a PCI-X bus, a PCI-Express bus, or a NuBus.
  • MCA MicroChannel Architecture
  • PCI bus PCI bus
  • PCI-X bus PCI-X bus
  • PCI-Express PCI-Express bus
  • NuBus NuBus.
  • the processor 202 may use an Advanced Graphics Port (AGP) to communicate with the display.
  • AGP Advanced Graphics Port
  • FIG. 2B depicts an embodiment of a computer system 200 in which the main processor 202 communicates directly with I/O device 230b via HyperTransport, Rapid I/O, or InfiniBand.
  • FIG. 2B also depicts an embodiment in which local busses and direct communication are mixed: the processor 202 communicates with I/O device 230a using a local interconnect bus while communicating with I/O device 230b directly.
  • JVO devices 230 may be present in the computer system 200.
  • Input devices include keyboards, mice, trackpads, trackballs, cameras, video cameras, microphones, and drawing tablets.
  • Output devices include video displays, speakers, inkjet printers, laser printers, and dye-sublimation printers.
  • An I/O device may also provide mass storage for the computer system 800 such as a hard disk drive, a floppy disk drive for receiving floppy disks such as 3.5-inch, 5.25-inch disks or ZIP disks, a CD-ROM drive, a CD-R/RW drive, a DVD-ROM drive, tape drives of various formats, and USB storage devices such as the USB Flash Drive line of devices manufactured by Twintech Industry, Inc. of Los Alamitos, California.
  • an I/O device 230 may be a bridge between the system bus 250 and an external communication bus, such as a USB bus, an Apple Desktop Bus, an RS-132 serial connection, a SCSI bus, a FireWire bus, a Fire Wire 800 bus, an Ethernet bus, an AppleTalk bus, a Gigabit Ethernet bus, an Asynchronous Transfer Mode bus, a HIPPI bus, a Super HIPPI bus, a SerialPlus bus, a SCI/LAMP bus, a FibreChannel bus, or a Serial Attached small computer system interface bus.
  • an external communication bus such as a USB bus, an Apple Desktop Bus, an RS-132 serial connection, a SCSI bus, a FireWire bus, a Fire Wire 800 bus, an Ethernet bus, an AppleTalk bus, a Gigabit Ethernet bus, an Asynchronous Transfer Mode bus, a HIPPI bus, a Super HIPPI bus, a SerialPlus bus, a SCI/LAMP bus, a FibreChannel bus, or
  • General-purpose computers of the sort depicted in FIG. 2A and FIG. 2B typically operate under the control of operating systems, which control scheduling of tasks and access to system resources.
  • Typical operating systems include: MICROSOFT WINDOWS, manufactured by Microsoft Corp. of Redmond, Washington; MacOS, manufactured by Apple Computer of Cupertino, California; OS/2, manufactured by International Business Machines of Armonk, New York; and Linux, a freely-available operating system distributed by Caldera Corp. of Salt Lake City, Utah, among others.
  • the device may be a JAVA- enabled cellular telephone, such as the i55sr, i58sr, i85s, or the i88s, all of which are manufactured by Motorola Corp. of Schaumburg, Illinois; the 6035 or the 7135, manufactured by Kyocera of Kyoto, Japan; or the i300 or i330, manufactured by Samsung Electronics Co., Ltd., of Seoul, Korea.
  • a mobile device may be a personal digital assistant (PDA) operating under control of the PalmOS operating system, such as the Tungsten W, the VJJ, the VIIx, the i705, all of which are manufactured by palmOne, Inc. of Milpitas, California.
  • PDA personal digital assistant
  • the client 113 may be a personal digital assistant (PDA) operating under control of the PocketPC operating system, such as the iPAQ 4155, iPAQ 5555, iPAQ 1945, iPAQ 2215, and iPAQ 4255, all of which manufactured by Hewlett-Packard Corporation of Palo Alto, California; the ViewSonic V36, manufactured by ViewSonic of Walnut, California; or the Toshiba PocketPC e405, manufactured by Toshiba America, Inc. of New York, New York.
  • PDA personal digital assistant
  • the mobile device is a combination PDA/telephone device such as the Treo 180, Treo 270, Treo 600, Treo 650, Treo 700, or the Treo 70Ow, all of which are manufactured by palmOne, Inc. of Milpitas, California.
  • the mobile device is a cellular telephone that operates under control of the PocketPC operating system, such as the MPx200, manufactured by Motorola Corp.
  • a mobile device may comprise a mobile gaming device with wireless communication capability.
  • a typical mobile device may comprise many of the elements described above in FIG. 2A and 2B, including the processor 202 and the main memory 204.
  • a media file access center may comprise a computer application or web page which allows a user to access media files available on a network.
  • a media file access center may comprise means for a user to chat, share media files with, and otherwise communicate with a number of other users or peers.
  • a media file access center 300 may also comprise means for a user to browse, download, and upload media files from one or more centralized locations.
  • a media file access center 300 may comprise a standalone application.
  • a media file access center may comprise a web site.
  • a media file access center may be implemented using any programming and/or display languages including without limitation HTML, XML, WML, javascript, Java applets, Aj ax, SVG, and Flash.
  • a media file access center 300 may comprise functionality for a user to browse media files hosted by one or more peers.
  • a user may be provided with a directory structure in which the user can browse files hosted by peers.
  • any other interface may be provided, including peer home pages, topic and keyword searches, and searching based on peer recommendations.
  • a media file access center 300 may also comprise functionality for searching one or more centralized locations for media files.
  • these central locations may comprise servers which store copies of media files which may also be hosted on one or more peers.
  • these central locations may comprise commercial entities which host content.
  • a media file access center may be linked or otherwise operate in conjunction with a media file player. For example, a user may locate a media file using the media file access center, and upon selecting the media file, a media file player is launched or activated to play the selected media file. Or for example, a user may select a media file for viewing, and the media file access center may automatically deduct a fee associated with the viewing of the media file from the user's account. The media file access center may then transmit confirmation of the payment and an access key for the media file to a media file player.
  • a single application may comprise both a media file player and a media file access center.
  • the media file access center and/or any content residing on the media file access center may be hosted by a supernode 100. In other embodiments, the media file access center and/or any content residing on the media file access center may be hosted by a centralized server 100.
  • the method comprises receiving, by a supernode from a client, a request to access a media file protected by a session-based DRM, the request comprising a user identifier, an application identifier, and a media file identifier (step 301); identifying, by the supernode, a license policy corresponding to the media file (step 303); deducting, from an account associated with the user, a payment specified in the license policy with respect to the requested access (step 305); and transmitting, by the supernode to the client, a session key corresponding to the identified file (step 307).
  • one embodiment of a method for providing distributed digital rights management comprises receiving, by a supernode from a client, a request to access a media file protected by a session-based DRM, the request comprising a user identifier, an application identifier, and a media file identifier (step 301).
  • the supernode may receive the request via any protocol or protocols.
  • a media file may comprise any type of media file, including without limitation video, audio, photographic, and multimedia files. Examples of media file protocols include MPEG-3 (also known as MP3), MPEG-4, DivX, XviD, JPEG, GIF, WINDOWS MEDIA AUDIO defined by Microsoft Corporation, REAL AUDIO as defined by Real Networks.
  • the media file may be protected by any form of session-based DRM.
  • the DRM may be specifically coordinated with a media file player program installed on the client.
  • the DRM may be constructed such that only the specifically coordinated media file player program can play the associated media file.
  • the session-based DRM may be constructed to operate in conjunction with a unique application identifier, which identifies a specific instance of the media file player program. In these embodiments, a session key which enables a user to play a particular media file would only be valid if used to play the media file using the instance of the media file player program for which the session key was generated.
  • the media file may already reside on the client. In other embodiments, the file may reside on the supernode receiving the request, or on a second supernode. In still other embodiments, the file may reside on a central server. In one embodiment, the request to access the media file may also comprise a request to download, stream, or otherwise transfer the file to the client.
  • a media file identifier may comprise any series of bits and/or bytes that uniquely identifies a media file.
  • a media file identifier may comprise information such as a media file title, author, and length.
  • a media file identifier may comprise a cryptographic hash of some or all of the contents of the media file.
  • media files uploaded into a media file distribution network may be assigned a media file identifier upon introduction into the network.
  • this media file identifier may comprise a serial number.
  • a media file identifier may comprise a real or virtual pathname corresponding to a directory where the media file may be stored.
  • a media file identifier may comprise a URL.
  • a media file identifier may be unique to every instance of a particular media file. In this embodiment, each time a copy of a media file is made, a new media file identifier is assigned. In this manner individual copies of a media file may be identified and tracked.
  • a user identifier may comprise any series of bits and/or bytes that uniquely identifies a user.
  • a user identifier may comprise a screen name, such as the screen names "JeffD" and "SueZQ" shown in FIG 3A.
  • a user identifier may comprise a number randomly or pseudo-randomly assigned to a given user.
  • a user may be assigned a user identifier when the user joins and/or establishes an account with the media file distribution network.
  • a central server may maintain a database of users and user identifiers.
  • An application identifier may comprise any series of bits and/or bytes that uniquely identify a media file player.
  • an application identifier may be created when a media file player is installed on a client.
  • the application identifier may comprise identifying information corresponding to the client on which the player is installed, such as a CPU identifier, a machine identifier, a hard disk serial number, or a network address.
  • an application identifier may identify a particular web application or web browser.
  • a central server may maintain a database of users and user identifiers, and corresponding application identifiers. For example, when a user first joins a media file network, a centralized server may record an identifier for the application the user uses to access media files.
  • user and application identifiers may be managed by a central authority, allowing for fine-grained access control to media files. For example, by tracking both application identifiers and user identifiers, a central authority may prevent a user authorized to access a media file from accessing the media file using an application not approved for use with the media file. In this way, unauthorized copying can be minimized by disallowing a media file to be played on any player for which it is not authorized. Or for example, it may be used to prevent two users who may share the same media file player from also sharing one or more media files.
  • the supemode may then identify a license policy corresponding to the media file (step 303).
  • a license policy may comprise any policy or set of policies which apply to access, use, or distribution of a media file. License policies may for example, define a set of persons who are authorized to access a particular media file. This set of persons may be, for example, a set of friends of the publisher of the media file, a set of people selected for a test screening of the media file, a set of people who have paid a licensing fee for the media file, a set of people who have paid a subscription fee for a series of media files, or a set of people who have had licenses for the media file purchased for them by a third party.
  • a license policy may also define a set of permissible uses for a media file.
  • a license policy may state that a particular media file is restricted to a single viewing.
  • a license policy may indicate that a viewer must pay a given fee for each time the media file is viewed.
  • a license policy may state that a particular media file is restricted to being viewed at a given resolution.
  • a license policy may state ways in which a media file may or may not be modified.
  • a license policy may state that a media file may not be altered, but that it may be combined with one or more other media files.
  • a license policy may state that the audio of a media file may be altered, but not the video.
  • a license policy may require an author or publishers permission in order to modify the media file.
  • a license policy may also require a fee be paid in conjunction with any particular use or modification of the media file.
  • a license policy may also define one or more conditions relating to distribution of the media file.
  • a license policy may state that users are free to redistribute a media file.
  • a license policy may state that users must pay a fee to redistribute a media file, or pay a fee each time someone they redistributed the media file to views the file .
  • a license policy may state that users may only redistribute a media file within a certain geographic region.
  • a license policy may state that users may only redistribute a media file to a certain number of users.
  • a license policy may state that a user may only redistribute a given portion or portions of a media file.
  • a license policy may state that users may only redistribute the media file within larger compilations of media files, or users may only redistribute the media file if it has been modified.
  • a license policy may comprise any protocol or file format including without limitation HTML, XML, WML, and plain text.
  • a set of license policies corresponding to a particular media file may be stored in a single file.
  • a single file may comprise a set of license policies which apply to more than one media file.
  • some or all of a license policy may be stored using encryption and/or digital signatures such that the license policy can be authenticated and cannot be tampered or altered.
  • a license policy may be included in a media file header, which comprises other information relating to a media file.
  • the supernode may identify a license policy corresponding to the media file (step 303) by searching a database of license policies stored on the supernode. This database may comprise any means of storing license policies. In cases where the license policy does not exist on the supernode, the supernode may send a request to a central license server for a license policy. In some embodiments, the supernode may receive periodic updates of license policies from one or more central license servers. In other embodiments, the supernode may contact one or more publishers of the media file to identify a license policy corresponding to the media file.
  • the method then comprises deducting, from an account associated with the user, a payment specified in the license policy with respect to the requested access (step 305).
  • the deduction may be accomplished by means of a payment processing server as discussed herein.
  • the method then comprises transmitting, by the supernode to the client, a session key corresponding to the identified file (step 307).
  • This transmission may be done using any protocol or protocols.
  • one or more media files may be transmitted in addition to the session key.
  • one or more advertisements may be transmitted in addition to the session key.
  • a number of clients 113a, 113b, 113n are connected to a designated client 100, referred to as a supernode.
  • the supernode receives, from a first client, a request to access a media file, which may comprise a user identifier, an application identifier, and a media file identifier.
  • the supernode may determine, by consulting a file directory or a central license server 120 that access to the media file is restricted to a set of users.
  • the supernode may then send a request to a number of clients 113b, 113n to verify that the application identifier provided by the client 113a corresponds to the user identifier provided.
  • the supernode may then receive a response from the clients 113b, 113n confirming the user identifier corresponds to the client address.
  • the supernode may then transmit a session key allowing the client 113a to access the identified media file.
  • the supernode may also transmit an advertisement from an advertisement server 120 along with the session key, and may communicate with a payment processing server 110 if payment is required to access the media file.
  • the method comprises: receiving, by a server from a first client, a request to access a media file, the request comprising a user identifier, an application identifier, and a media file identifier (step 401); determining, by the server, that access to the media file is restricted to a set of users (step 403); sending, by the server, a request to a second client identified as having previously interacted with the user identified by the user identifier, the request comprising the user identifier and the client address (step 405); receiving, by the server, a response from the second client confirming the user identifier corresponds to the client address (step 407); and transmitting, by the server to the first client, a session key corresponding to the requested media file (step 409) and sending, to a second server, a request to deduct a given amount from an account associated with the user identifier (step 41
  • the method shown comprises receiving, by a server from a first client, a request to access a media file, the request comprising a user identifier, an application identifier, and a media file identifier (step 401).
  • the server may comprise any server described herein, including without limitation a supernode 100.
  • the user identifier, application identifier, and media file identifier may comprise any identifiers described herein.
  • the request may be transmitted from a media file access center.
  • the method then comprises determining, by the server, that access to the media file is restricted to a set of users (step 403).
  • the server may determine that access to the media file is restricted by identifying a license policy associated with the media file. This identification may be done by any means described herein, including without limitation searching a local directory, and making a request to a central license server.
  • the method then comprises sending, by the server, a request to a second client identified as having previously interacted with the user identified by the user identifier, the request comprising the user identifier and the application identifier (step 405).
  • This step may be performed in cases where the server has no record of the particular application identifier corresponding to the user identifier. This may occur in cases where a user has recently installed a new media file player, or is using a computer of a friend. Alternatively, this scenario may occur if a malicious user is attempting to gain access to a media file under the guise of another user.
  • the server may send the request using any protocol or protocols.
  • the server may send a request to a plurality of clients identified as having previously interacted with the user identified by the user identifier.
  • the request may be sent to a peer verification module executing on the second client as described herein.
  • a server may use any method to identify a second client as having previously interacted with the user identified by the user identifier.
  • the server may keep a record of past client interactions. For example, a server might receive a request from a user to access a particular media file, and the request may indicate that the media file is hosted by a given client. The server could then infer that the user and client have been in communication.
  • the server may send a request to a number of clients inquiring whether they have previously interacted with the user. For example, the server might send a request to all clients on the same LAN as the user. Or, for example, the server might send a request to all clients identified by the user as "friends" or "contacts" in a buddy list.
  • clients may periodically update the supernode of users with whom the clients have communicated.
  • the client may determine, by checking any records stored on the client, whether the client has communicated with the identified user, and if so, whether the user was communicating using the identified application. Examples of records of communication with the user and the application may include chat logs, file transfer records, and blog or message board postings. The client may then respond to the server indicating whether the client has any record of the identified user using the identified application.
  • the server may then receive a response from the second client confirming the user identifier corresponds to the client address (step 407).
  • the server may receive a plurality of responses from a plurality of clients.
  • the server may use a predetermined threshold to determine whether to accept the peer verification.
  • the server may require that at least a given number of positive confirmations be received in order to accept the verification.
  • the server may require that positive verifications be received from at least two clients.
  • the server may require that a certain percentage of the responses received by the server be positive confirmations.
  • the server may require at least 75% of the received responses to include positive verifications in order to accept the request.
  • the server may either send out more requests to other clients, send a request to a central server to authenticate the user identifier/application identifier pair, or simply deny the request.
  • the server may then transmit to the first client, a session key corresponding to the requested media file (step 409).
  • the server may also transmit one or more advertisements, as will be discussed herein with respect to FIG. 10.
  • the method also comprises sending, to a second server, a request to deduct a given amount from an account associated with the user identifier (step 411).
  • This request may be sent using any protocol or protocols.
  • the second server may comprise a payment processing server.
  • the second server may comprise a supernode.
  • the server may wait until the server receives confirmation of the deduction before transmitting the session key to the client.
  • a client 113a (referred to as the republisher) transmits a request to modify and/or redistribute a given media file registered to a publisher associated with a second client 113e (referred to as the publisher).
  • the request is passed through a supernode and potentially a number of servers, and arrives at the publisher.
  • the publisher may then respond to the request, either with an automated response or by presenting the request to a user.
  • the response is passed through one or more servers, and the permission arrives at the client. After receiving the permission the user may modify and/or redistribute the media file.
  • a license header 600 comprises a plurality of sublicenses 620a, 620b, 620c (generally 620). Each sublicense corresponds to one or more chapters 625 a, 625b, 625c, 625d (generally 625) of the media file.
  • a license header may comprise a number of sublicenses.
  • a license header may comprise any protocol or protocols, including XML, HTML, and WML.
  • a license header may correspond to one or more media files.
  • a license header may be digitally signed by an entity so as to enable a client or a media file player to verify the authenticity of the license header.
  • a license header may be signed by a central authority which is known and trusted by the media file player.
  • a license header may be digitally signed by the creator of the media file.
  • a license header may comprise one or more license policies, as described herein.
  • different chapters of a media file may be associated with different sublicenses and, consequently, different license policies.
  • a chapter of a media file may comprise any discrete unit of a media file.
  • a chapter may comprise a temporal unit, such as the first 30 seconds of a video clip.
  • a chapter may comprise a spatial unit, such as a logo displayed in the bottom right corner of a video clip.
  • a chapter may comprise a media unit, such as the soundtrack of a video clip.
  • a chapter may comprise a subgroup of a particular media element, such as the bass line in a music recording.
  • a license header may be specific to a single instance of a media file. For example, a publisher may release 10 copies of the same music video. Each copy may have a unique media file identifier and a unique license header, each license header referring only to the media file identifier associated with it. In this manner, different copies of a media file may have different license policies. This allows a publisher to exert control over individual copies. For example, a publisher may distribute a copy to a friend which allows for unlimited use and modification, but distribute a copy to a newspaper reviewer which allows for only a limited number of viewings and no modifications.
  • a license header may also correspond to a plurality of copies of a media file.
  • a license header declaring that a media file may freely be distributed may correspond to each copy of the media file that is made. In some embodiments this may be accomplished by duplicating the media file identifier along with the media file when a copy is made, rather than creating a new media file identifier. In other embodiments, this may be accomplished by creating a license header which applies to media files having media file identifiers within a certain range or with a certain prefix.
  • a license header might then specify that the license applies to all videos having the prefix "BobsVideoOOOl"
  • Each copy of BobsVideoOOOl may then be created with the media file identifier having the form of "BobsVideoOOOl*****" In this way, individual copies may be tracked separately, while requiring only a single license header to be maintained.
  • a media file identifier and a copy identifier, identifying a particular copy of the media file may be included as separate parameters.
  • a license header may be stored either together or separately from its corresponding media file.
  • superaodes may store and manage requests for license headers, while clients store the media files themselves.
  • the media files could be protected with DRM such that they cannot be played except in a media file player which requires a license header authorizing the playing.
  • DRM digital rights management
  • the license comprises three sublicenses applying to four chapters.
  • the first 620a and third 620c sublicenses correspond to content imported by the creator of the media file from other publishers.
  • the second 620b sublicense corresponds to content created by the creator of the combined media file.
  • the "inherited tag" indicates that the license that applies to the chapters 2 & 3 is also the license that applies to the combined work as a whole.
  • a license header may incorporate multiple DRM schemes.
  • the license header as a whole may be digitally signed by one authority, and the combined media file may be protected with DRM applicable to one media file player.
  • One of the sublicenses might designate a given chapter as protected by an alternative and/or proprietary DRM scheme.
  • a media file player may be adapted specifically to recognize license headers and apply any license policies contained in the header.
  • a license header denotes that a media file comprises more than one DRM scheme
  • the media file player may interface with one or more additional media file players in order to play the content protected by any DRM schemes that are not recognized or implemented by the first media player.
  • a license header may comprise information relating to a particular media file that can be used to play a given chapter of the corresponding media file.
  • a publisher may create a video that the publisher intends for free public distribution, but using a soundtrack that is protected by a proprietary DRM format.
  • the license header may comprise information relating to the DRM format of the soundtrack.
  • the user's media file player may then read the license header, and discover whether the user has the required second media file player for playing the soundtrack.
  • the media file player may then either prompt the user to install the second player, or launch the second player automatically.
  • the soundtrack requires the user purchase a license
  • the either the first or second media file player may prompt the user as to whether the user would like to purchase the license, and provide means for doing so.
  • the two players may then work in conjunction to play the video along with the soundtrack.
  • a video file may contain one video track (Vl), one free audio track (Al) with low quality, or limited number of playback, and one pay-for audio track (A2).
  • the media file player may allow consumers to play the video file by 1 media file player, and if the user does not pay, the user can access the free or free-preview sound track. Therefore, the media file publisher can choose to distribute the video file (Vl+Al) to the public. After the preview, users may choose to purchase and download the high-quality sound track (A2).
  • the license header may comprise information which allows multiple media file players to coordinate playback. For example, if a song used as part of a video soundtrack requires a separate media file player, the license header may identify both the media file player needed and the time and duration at which the song occurs. In this manner the primary media file player may launch or otherwise activate the needed media file player at the correct time.
  • the method comprises creating a combined media file, the combined media file comprising a plurality of media elements, wherein each element comprises at least one DRM protection (step 701); creating a license header corresponding to the combined media file, wherein the license header comprises licensing information corresponding to both the combined media file and each of the plurality of media elements (step 703); and associating the license header with the combined media file (step 705).
  • the method comprises creating a combined media file, the combined media file comprising a plurality of media elements, wherein each element comprises at least one DRM protection (step 701).
  • Each media element may comprise any type of media file.
  • the media elements may each be protected with the same DRM scheme, in other cases each media element may be protected with a different DRM scheme.
  • the combined media file may be created by a media file editor designed to interact with DRM-protected media files, and specifically media files with license headers ass described herein.
  • the media file editor may be a standalone application.
  • the media file editor may be integrated with a media file player and/or a media file access center as described herein.
  • the media file editor may comprise a web-based application.
  • the method shown then comprises creating a license header corresponding to the combined media file, wherein the license header comprises licensing information corresponding to both the combined media file and each of the plurality of media elements (step 703).
  • This license header may comprise any license header described herein, and the licensing information may comprise any licensing policy or policies described herein.
  • the license header may also contain any other information relating to the media file, including author and publisher information, a media file identifier.
  • the method shown then comprises associating the license header with the combined media file (step 705).
  • This association may be done by incorporating a media file identifier corresponding to the media file into the license, hi some embodiments, the association may comprise digitally signing the both the license header and the corresponding media file.
  • the combined media file may then be distributed to other clients and users using any of the means described herein.
  • the method comprises: transmitting, by a client to a server, a request to republish a first media file, the media file having an associated license (step 801); receiving, from the server, a permission to republish the first media file (step 803); and creating a second media file, the second media file comprising a portion of the first media file, and comprising a license header with license information corresponding to the first media file and license information corresponding to the second media file (step 805).
  • the method comprises transmitting, by a client to a server, a request to republish a first media file, the media file having an associated license (step 801).
  • the request may be transmitted by any protocol or protocols. In some instances, the request may be transmitted to a supernode 100. In some embodiments, the request may be transmitted by a media file player. In other embodiments, the request may be transmitted by a media file editor.
  • a request to republish a music file may comprise a request to redistribute, or a request to modify and/or incorporate into a compilation and redistribute.
  • the request may specify one or more license policies which will apply to the redistribution, such as that the redistribution will be limited to a certain number of users, or that the users will have to pay a fee.
  • the supernode may consult a local database of license policies to determine if the license policy associated with the media file permits the request. If no license policy is found locally, the supernode may send a request to a central license server to determine whether the license policy associated with the media file permits the request. In the event the request is not permitted, or in the event no license is found, the supernode or the central license server may forward the request to the media file publisher 113e. In some cases the request may be forwarded through one or more other supernodes. The publisher 113e may then either respond automatically to the forwarded request, or present the request to a user, who may respond.
  • the client may then receive, from the server, a permission to republish the first media file (step 803).
  • the permission may comprise a license header with a license policy indicating the permission.
  • a client may transmit a request to redistribute a video clip in conjunction with an advertisement or in conjunction with a hint to play an advertisement, the video clip having a given media file identifier.
  • the client may then receive a permission comprising a license header identifying the media file identifier, and comprising a license policy allowing the user to redistribute the video clip under certain conditions. Since the media file identifier is unique to the specific instance of the video clip, the license header will not be able to be transferred to other copies of the video clip currently held by other users.
  • the license header and media file may be suitably encrypted and digitally signed by the publisher or a trusted third party so as to prevent tampering by users or redistributers. In this way a publisher can achieve fine-grained control over redistribution of media files.
  • the client may then create a second media file, the second media file comprising a portion of the first media file; and comprising a license header with license information corresponding to the first media file and license information corresponding to the second media file (step 805).
  • the second media file may be created by a media file editor specifically designed for creating such files.
  • the media file editor may read the permission so as to prevent the client from violating any license policies concerning the redistribution. For example, in response to a license policy, the media file editor may limit the total amount of material the user can incorporate in the created media file to be no longer than 15 seconds. Or, for example, the media file editor may prevent the user from modifying the created media file. Or, for example, the media file editor may prevent the user from removing certain portions of the first media file, such as a copyright notice, or closing credits.
  • the above method may also be applied to any other request from a client relating to a media file, including requests to modify the media file and requests to modify the media file and then redistribute the media file.
  • the method comprises: receiving, at a server from a client, a request to purchase a quantity of prepaid licenses for a media file, the request comprising a user identifier (step 901); creating, at the server, a copy of the requested media file, wherein the copy is encoded with a license indicating the quantity of prepaid licenses (step 903); associating, by the server, a file identifier with the copy (step 905); and transmitting, by the server to the client, the file identifier (step 907); receiving, by a second server from a second client, a request to access a media file, the request comprising the file identifier (step 909); determining, by the second server, that the quantity of prepaid licenses associated with the identified file is at least one (step 911); decrementing, by the second server, the quantity of prepaid licenses associated
  • the method comprises: receiving, at a server from a client, a request to purchase a quantity of prepaid licenses for a media file, the request comprising a user identifier (step 901).
  • the server may comprise a supernode, in other embodiments, the server may comprise a central license server.
  • the request for prepaid licenses may comprise a request for any type of license, including a license to access, modify, or redistribute.
  • the request may specify one or more user identifiers corresponding to users who the prepaid licenses are intended for.
  • the method may then comprise creating, at the server, a copy of the requested media file, wherein the copy is encoded with a license indicating the quantity of prepaid licenses (step 903).
  • the server may communicate with a payment processing server to deduct the amount of the prepaid licenses from an account corresponding to the user identifier.
  • the copy of the media file may be stored in any location. In some embodiments, the copy may be stored on the server. In other embodiments, the copy may be stored on one or more clients. In still other embodiments, the copy may be stored on a plurality of supernodes.
  • the server may also create a license header for the created copy of the media file.
  • the license header may specify the quantity and nature of the prepaid licenses.
  • the method may then comprise associating, by the server, a file identifier with the copy (step 905).
  • the file identifier may comprise any identifier which identifies the location of the file.
  • the file identifier may comprise a URL.
  • the file identifier may comprise a media file identifier as described herein.
  • the method may then comprise transmitting, by the server to the client, the file identifier (step 907).
  • the client may the forward the file identifier to one or more other clients who the client wishes to distribute the prepaid licenses to. Those other clients may in turn transmit a request for the file. This request may be transmitted by a media file player, a media file editor, or a web browser in cases where the file identifier is a URL.
  • the method then comprises receiving, by a second server from a second client, a request to access a media file, the request comprising the file identifier (step 909).
  • the second server may comprise the same server as the first server. In other embodiments, they may comprise two different servers.
  • the second server may then determine that the quantity of prepaid licenses associated with the identified file is at least one (step 911). In some embodiments, the second server may make this determination by identifying a license header corresponding to the media file pointed to by the file identifier. The second server may identify this license header via any method described herein, including consulting a local database, or sending a request to another server. If the quantity is less than one, this may indicate that all prepaid licenses have been used, and thus the request should be denied. In some cases the server may also check to see if the user making the request for the media file is a user authorized by the prepaid licenses.
  • the second server may then decrement the quantity of prepaid licenses associated with the identified file (step 913).
  • the second server may then transmit, to the second client, a session key corresponding to the identified file (step 915).
  • the second sever may also transmit a copy of the media file or transmit a location from which the media file may be downloaded or streamed.
  • the method comprises: receiving, by a server from a user operating a client, a request to access a media file, the request comprising a user identifier identifying the user and a media file identifier identifying the media file (step 1001); determining, in response to the media file identifier and the user identifier, an advertisement to be displayed to the user in conjunction with the media file(step 1003); and transmitting, to the first client, the determined advertisement and a session key corresponding to the media file (step 1005).
  • method for providing targeted advertisements comprises receiving, by a server from a user operating a client, a request to access a media file, the request comprising a user identifier identifying the user and a media file identifier identifying the media file (step 1001). This step may be performed in accordance with any of the embodiments described herein. In some embodiments, the request may also comprise an application identifier.
  • the method may then comprise determining, in response to the media file identifier and the user identifier, an advertisement to be displayed to the user in conjunction with the media file (step 1003).
  • the server may determine the advertisement to display without contacting an additional server.
  • the server may send a request to a second server, such as an advertisement server, which may determine the advertisement to be displayed.
  • the server may determine an advertisement to be displayed also in response to an application identifier received.
  • An advertisement may comprise any form of advertisement.
  • an advertisement may comprise another media file of either the same or a different format than the requested media file.
  • an advertisement may comprise a media file and an associated license header.
  • the server determines based on at least one media file previously accessed by the user, an advertisement to be displayed to the user in conjunction with the media file.
  • the server may identify an advertisement with a common theme or a shared keyword with the previously viewed media file.
  • the server may identify an advertisement published by a publisher who also published a media file previously accessed by the user.
  • the server determines, based on at least one advertisement previously accessed by the user, an advertisement to be displayed to the user in conjunction with the media file.
  • the server may identify an advertisement with a common theme or a shared keyword with the previously viewed advertisement.
  • the server may identify an advertisement published by a publisher who also published an advertisement previously accessed by the user.
  • the server determines, based on a length of time a previous advertisement was played by the user, an advertisement to be displayed to the user in conjunction with the media file. In this manner, the server may identify a previous advertisement which held the user's interest. In this manner, a server may also identify advertisements which did not hold the user's interest — those that the user closed or stopped after a brief period. Again, the server may use any information corresponding to the previously viewed advertisement in determining the advertisement to be shown.
  • the server determines, based on a response to a previous advertisement by the user, an advertisement to be displayed to the user in conjunction with the media file.
  • a user response may comprise any user action with respect to the advertisement, including a user clicking on a link within the advertisement, a user purchasing an item via the advertisement, a user forwarding the advertisement to one or more other users, a user playing the advertisement multiple times, or a user muting an advertisement.
  • the server may use any information corresponding to the previously viewed advertisement in determining the advertisement to be shown.
  • the server determines, based on at least one advertisement previously displayed in conjunction with the context of the media file, an advertisement to be displayed to the user in conjunction with the media file.
  • the server may identify advertisements that are particularly successful or unsuccessful when shown alongside certain videos, and then attempt to show advertisements that have been successful at generating positive user responses along with future requests for the media file.
  • the server may measure whether an advertisement was successful with another viewer of the media file using any metric, including without limitation time of viewing, response to a link, purchase of an item, replaying the advertisement, or forwarding the advertisement to another user.
  • the method may then comprise transmitting, to the client, the determined advertisement and a session key corresponding to the media file.
  • the determined advertisement may be transmitted by the server which received the request.
  • the determined advertisement may be transmitted by an advertisement server.
  • the determined advertisement may be transmitted by a second client.
  • a server may transmit a link from which the client can download the determined advertisement.
  • the user may be forced to watch the determined advertisement prior to playing the requested media file. In other embodiments, the user may be able to view the advertisement at the user's option.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

Structure de gestion de droits numériques dans laquelle les en-tête de licence contenant des autorisations associées à des fichiers média sont conservées indépendamment desdits fichiers. Les en-tête de licence peuvent alors être stockées dans un réseau distribué de noeuds homologues dont le service exige des lecteurs de média utilisé par des pairs qu'ils accèdent aux fichiers de média en consultant les en-tête de licence et, si l'autorisation est accordée, qu'ils transmettent une clé de session libérant le fichier média. Ainsi, les fichiers média peuvent être distribués de diverses manières, y compris par transmission entre homologues, tout en permettant une gestion des licences centralisée et souple. L'invention concerne également des systèmes et des procédés de republication de fichiers média et de distribution de licences prépayées aux fichiers de média.
PCT/US2006/060999 2006-11-16 2006-11-16 Systèmes et procédés de gestion de droits numériques distribués WO2008060300A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/US2006/060999 WO2008060300A1 (fr) 2006-11-16 2006-11-16 Systèmes et procédés de gestion de droits numériques distribués
CN200710080111.8A CN101184086B (zh) 2006-11-16 2007-02-12 用于分布式数字版权管理的系统和方法

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/US2006/060999 WO2008060300A1 (fr) 2006-11-16 2006-11-16 Systèmes et procédés de gestion de droits numériques distribués

Publications (1)

Publication Number Publication Date
WO2008060300A1 true WO2008060300A1 (fr) 2008-05-22

Family

ID=38480644

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2006/060999 WO2008060300A1 (fr) 2006-11-16 2006-11-16 Systèmes et procédés de gestion de droits numériques distribués

Country Status (2)

Country Link
CN (1) CN101184086B (fr)
WO (1) WO2008060300A1 (fr)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120136998A1 (en) * 2010-10-29 2012-05-31 Hough Jason M Methods and systems for accessing licensable items in a geographic area
CN105872789A (zh) * 2016-04-22 2016-08-17 天脉聚源(北京)传媒科技有限公司 一种管理播放权限的方法及装置
GB2537587A (en) * 2015-02-27 2016-10-26 Novastone Media Ltd Asymmetric permissions in a communications system

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5316363B2 (ja) * 2009-10-20 2013-10-16 ソニー株式会社 情報処理装置、機能管理方法、コンピュータプログラム及び情報処理システム
CN101714996B (zh) * 2009-12-31 2013-08-07 中兴通讯股份有限公司 基于对等计算网络的认证系统及方法
WO2011126280A2 (fr) * 2010-04-05 2011-10-13 엘지전자 주식회사 Procédé permettant de mettre à jour un contenu publicitaire à l'aide d'une gestion de droits numériques (drm)
CN101867607A (zh) * 2010-05-21 2010-10-20 北京无限立通通讯技术有限责任公司 一种分布式数据存取方法、装置及系统
CN102487390B (zh) * 2010-12-01 2015-05-20 中国电信股份有限公司 基于p2p技术实现大容量媒体流直播的系统及方法
CN102571857B (zh) * 2010-12-27 2014-12-31 北京闪联云视信息技术有限公司 一种实现登录xmpp服务器的方法和系统
CN103139182B (zh) * 2011-12-01 2016-04-06 北大方正集团有限公司 一种允许用户访问的方法、客户端、服务器以及系统
US9348921B2 (en) * 2012-05-01 2016-05-24 Google Inc. Determining access to comments
CN106712955A (zh) * 2015-11-18 2017-05-24 珠海金山办公软件有限公司 一种文件分享方法及装置
CN107145768B (zh) * 2016-03-01 2021-02-12 华为技术有限公司 版权管理方法和系统
CN106790261B (zh) * 2017-02-03 2019-11-08 上海云熵网络科技有限公司 分布式文件系统及用于其中节点间认证通信的方法
EP3627361B1 (fr) * 2018-09-21 2021-07-21 Nokia Technologies Oy Contrôle de contenus multimédia
CN110784743A (zh) * 2019-10-15 2020-02-11 苏州佳世达光电有限公司 多轨道影音档的播放方法

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001080525A1 (fr) * 2000-04-14 2001-10-25 Sun Microsystems, Inc. Securite acces reseau
WO2003034408A2 (fr) * 2001-10-18 2003-04-24 Nokia Corporation Systeme et procede permettant de dupliquer et de deplacer de maniere controlee un contenu entre des dispositifs et des domaines en fonction d'un chiffrement conditionnel de cle de contenu selon l'etat d'utilisation
WO2006048804A1 (fr) * 2004-11-01 2006-05-11 Koninklijke Philips Electronics N.V. Acces ameliore a un domaine

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2383649A1 (fr) * 2001-10-02 2011-11-02 Citrix Systems, Inc. Procédés pour l'exécution de programmes distribués avec association de type fichier dans un réseau client-serveur
WO2004062243A2 (fr) * 2002-12-31 2004-07-22 Motorola, Inc, A Corporation Of The State Of Delaware Systeme et procede d'autorisation repartie pour acceder a un dispositif de communication

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001080525A1 (fr) * 2000-04-14 2001-10-25 Sun Microsystems, Inc. Securite acces reseau
WO2003034408A2 (fr) * 2001-10-18 2003-04-24 Nokia Corporation Systeme et procede permettant de dupliquer et de deplacer de maniere controlee un contenu entre des dispositifs et des domaines en fonction d'un chiffrement conditionnel de cle de contenu selon l'etat d'utilisation
WO2006048804A1 (fr) * 2004-11-01 2006-05-11 Koninklijke Philips Electronics N.V. Acces ameliore a un domaine

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120136998A1 (en) * 2010-10-29 2012-05-31 Hough Jason M Methods and systems for accessing licensable items in a geographic area
US9262595B2 (en) 2010-10-29 2016-02-16 Qualcomm Incorporated Methods and systems for accessing licensable items in a geographic area
US9977878B2 (en) 2010-10-29 2018-05-22 Qualcomm Incorporated Methods and systems for accessing licensable items in a geographic area
US10614198B2 (en) 2010-10-29 2020-04-07 Qualcomm Incorporated Methods and systems for accessing licensable items in a geographic area
GB2537587A (en) * 2015-02-27 2016-10-26 Novastone Media Ltd Asymmetric permissions in a communications system
GB2537587B (en) * 2015-02-27 2019-01-02 Novastone Media Ltd Asymmetric permissions in a communications system
US10523601B2 (en) 2015-02-27 2019-12-31 Novastone Media Ltd. Asymmetric permissions in a communications system
US10841254B2 (en) 2015-02-27 2020-11-17 Novastone Media Ltd. Asymmetric permissions in a communications system
US11876759B2 (en) 2015-02-27 2024-01-16 Novastone Media Ltd. Asymmetric permissions in a communications system
CN105872789A (zh) * 2016-04-22 2016-08-17 天脉聚源(北京)传媒科技有限公司 一种管理播放权限的方法及装置

Also Published As

Publication number Publication date
CN101184086A (zh) 2008-05-21
CN101184086B (zh) 2013-04-24

Similar Documents

Publication Publication Date Title
WO2008060300A1 (fr) Systèmes et procédés de gestion de droits numériques distribués
WO2008060299A1 (fr) Systèmes et procédés de distribution et de génération conjointe de contenus
US7165050B2 (en) Media on demand via peering
KR100947045B1 (ko) 공유 네트워크에서 디지털 컨텐트를 보안 분배하기 위한 시스템 및 방법
KR100806430B1 (ko) 수신된 디지털 컨텐츠를 검토하기 위한 시스템 및 방법
US7483958B1 (en) Methods and apparatuses for sharing media content, libraries and playlists
EP2378733B1 (fr) Distribution de contenu numérique et système d'abonnement
JP4463998B2 (ja) 保護されたオンライン音楽配布システム
US20030120928A1 (en) Methods for rights enabled peer-to-peer networking
US20050273805A1 (en) Methods and apparatus for a title transaction network
US20060064386A1 (en) Media on demand via peering
JP2010517138A (ja) ファイルフラグメントを共有する方法、システムおよび装置
JP2009500700A (ja) 分散ストレージおよびブログを通した共同ビデオ
MXPA04006989A (es) Metodo y sistema para distribuir un objeto multimedia.
EA009793B1 (ru) Распространение и управление правами для цифрового контента
KR20230043800A (ko) 컨텐츠 관리 서버
EP1766846A1 (fr) Procédés et appareils pour la validation de transactions dans des réseaux
KR102474863B1 (ko) 사용자 단말기, 디지털 컨텐츠의 이용 권리 증서를 유통시키는 방법, 및 상기 방법을 실행하기 위하여 매체에 저장된 컴퓨터 프로그램
KR20100053646A (ko) 디지털 콘텐츠를 배포하는 시스템 및 방법
US20080288371A1 (en) Internet based method and process for facilitating the presentation, sale, purchase, development and management of creative ideas concepts and content
WO2002051057A2 (fr) Procedes pour la mise en reseaux en peer to peer (p2p) validee par un systeme de gestion des droits
TWI832168B (zh) 在分佈式運算系統中之客戶認證程序期間遞送內容之系統及方法
Venkataramu Analysis and enhancement of Apple’s FairPlay digital rights management
CA2338674A1 (fr) Systeme d'echange de fichiers entre homologues
Michalko et al. Decent whitepaper

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 06839926

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2008071235

Country of ref document: EG

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06839926

Country of ref document: EP

Kind code of ref document: A1