WO2008069888B1 - Methods and apparatuses for accessing content based on a session ticket - Google Patents

Methods and apparatuses for accessing content based on a session ticket

Info

Publication number
WO2008069888B1
WO2008069888B1 PCT/US2007/023617 US2007023617W WO2008069888B1 WO 2008069888 B1 WO2008069888 B1 WO 2008069888B1 US 2007023617 W US2007023617 W US 2007023617W WO 2008069888 B1 WO2008069888 B1 WO 2008069888B1
Authority
WO
WIPO (PCT)
Prior art keywords
session
memory device
content
session ticket
cryptographic key
Prior art date
Application number
PCT/US2007/023617
Other languages
French (fr)
Other versions
WO2008069888A3 (en
WO2008069888A2 (en
Inventor
Fabrice Jogand Coulomb
Haluk Kent Tanik
Oktay Rasizade
Original Assignee
Sandisk Corp
Fabrice Jogand Coulomb
Haluk Kent Tanik
Oktay Rasizade
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US11/600,273 external-priority patent/US20080112566A1/en
Priority claimed from US11/600,263 external-priority patent/US8079071B2/en
Application filed by Sandisk Corp, Fabrice Jogand Coulomb, Haluk Kent Tanik, Oktay Rasizade filed Critical Sandisk Corp
Priority to KR1020097012043A priority Critical patent/KR101450131B1/en
Priority to JP2009537160A priority patent/JP2010509887A/en
Priority to EP07870860A priority patent/EP2082348A2/en
Priority to CN2007800489177A priority patent/CN101578608B/en
Publication of WO2008069888A2 publication Critical patent/WO2008069888A2/en
Publication of WO2008069888A3 publication Critical patent/WO2008069888A3/en
Publication of WO2008069888B1 publication Critical patent/WO2008069888B1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • G11B20/00485Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
    • G11B20/00492Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted
    • G11B20/00521Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted wherein each session of a multisession recording medium is encrypted with a separate encryption key
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • G11B20/00485Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
    • G11B20/0055Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein license data is encrypted
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/00746Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number
    • G11B20/00789Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of functional copies, which can be accessed at a time, e.g. electronic bookshelf concept, virtual library, video rentals or check-in/check out
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/00746Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number
    • G11B20/00797Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of times a content can be reproduced, e.g. using playback counters
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/0084Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific time or date
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B2220/00Record carriers by type
    • G11B2220/60Solid state media
    • G11B2220/61Solid state media wherein solid state memory is used for storing A/V content

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Library & Information Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Storage Device Security (AREA)
  • Telephonic Communication Services (AREA)

Abstract

A method for accessing content stored on a memory device is provided. In this method, a request to access the content is transmitted and a session ticket is received. The session ticket includes a parameter used to decrypt the content and the session ticket is generated based on a variable that is configured to change at a session. The content may be accessed based on the session ticket. An apparatus is also provided comprising a memory and a processor in communication with the memory. The processor is configured to: transmit a request to a memory device to access content stored in the memory device; receive a session ticket; and access the content based on the session ticket. The session ticket includes a parameter used to decrypt the content and the session ticket is generated based on a number that is configured to change at a session.

Claims

32
AMENDED CLAIMS received by the International Bureau on 30 July 2008 (30.07.2008)
1. A method for accessing content stored on a memory device, comprising: transmitting a request to access the content; receiving a session ticket, the session ticket including a parameter used to decrypt the content, the session ticket being generated based on a variable that is configured to change at a session; and accessing the content based on the session ticket.
2. The method of claim 1, wherein the accessing the content comprises: transmitting the session ticket to the memory device; and receiving the content from the memory device.
3. The method of claim 1 , wherein the parameter is a reference to a cryptographic key, the content being encrypted with the cryptographic key.
4. The method of claim 1 , wherein the parameter is a cryptographic nonce, the cryptographic nonce being used to generate a cryptographic key.
5. The method of claim 1, wherein the variable is a number.
6. The method of claim 5, wherein the number is configured to change
randomly. 33
7. The method of claim 1, wherein the session spans for a period of time.
8. The method of claim 1, wherein the session expires when a computing device coupled to the memory device is restarted.
9. The method of claim 1 , wherein the session expires when the memory device is decoupled from a computing device.
15. A method for accessing content stored in a memory device, comprising: providing a reference to a cryptographic key, the content being encrypted using the cryptographic key; encrypting the reference to the cryptographic key based on a number to define a session ticket, the number being configured to change randomly at a session; and accessing the content based on the session ticket.
16. The method of claim 15, wherein the session spans for a period of time.
17. The method of claim 15, wherein the session expires when a computing device coupled to the memory device is restarted.
18. The method of claim 15, wherein the session expires when the memory device is decoupled from a computing device.
19. A memory device, comprising: a memory; and a memory controller in communication with the memory, the memory controller being configured to: retrieve a parameter used to decrypt a content, generate a session ticket based on the parameter and a number, the number being configured to change at a session, transmit the session ticket to a computing device, the computing device being configured to be coupled to the memory device, receive the session ticket from the computing device, and access the content based on the session ticket.
20. The memory device of claim 19, wherein the memory controller is further configured to: decrypt the session ticket based on the number to extract the parameter; and access the content based on the parameter.
21. The memory device of claim 19, wherein the parameter is a reference to a cryptographic key, the content being encrypted with the cryptographic key.
22. The memory device of claim 19, wherein the parameter is a cryptographic nonce, the cryptographic nonce being used to generate a cryptographic key. 35
23. The memory device of claim 19, wherein the session spans for a period of time.
24. The memory device of claim 19, wherein the session expires when the computing device is restarted.
25. The memory device of claim 19, wherein the session expires when the memory device is decoupled from the computing device.
26. A memory device, comprising: a non- volatile memory; and a memory controller in communication with the non- volatile memory, the memory controller being configured to: retrieve a reference to a cryptographic key used to decrypt a content, encrypt the reference to the cryptographic key based on a number to define a session ticket, the number being configured to change at a session, transmit the session ticket to a computing device, the computing device being configured to be coupled to the memory device, receive the session ticket from the computing device, and access the content based on the session ticket. 36
27. The memory device of claim 26, wherein memory controller is further configured to: decrypt the session ticket based on the number to extract the reference to the cryptographic key; retrieve the cryptographic key based on the reference to the cryptographic key; decrypt the content using the cryptographic key; and transmit the content to the computing device.
28. The memory device of claim 26, wherein the number is randomly generated.
29. The memory device of claim 26, wherein the session spans for a period of time.
30. The memory device of claim 26, wherein the session expires when the computing device is restarted.
31. The memory device of claim 26, wherein the session expires when the memory device is decoupled from the computing device.
32. An apparatus, comprising: a memory; 37 a processor in communication with the memory, the processor being configured to: transmit a first request to a memory device to access a first content stored in the memory device, receive a first session ticket, the first session ticket including a first parameter used to decrypt the first content, the first session ticket being generated based on a number that is configured to change at a session, and access the first content based on the first session ticket.
33. The apparatus of claim 32, wherein the processor is further configured to: transmit a second request to the memory device to access a second content stored in the memory device; receive a second session ticket, the second session ticket including a second parameter used to decrypt the second content; and access the second content based on the second session ticket.
34. The apparatus of claim 32, wherein the processor is further configured to: transmit the session ticket to the memory device; and receive the content from the memory device.
35. The apparatus of claim 32, wherein the processor is further configured to: decrypt the session ticket based on the number to extract the parameter; and access the content based on the parameter. 38
36. The apparatus of claim 32, wherein the parameter is a reference to a cryptographic key, the content being encrypted with the cryptographic key.
37. The apparatus of claim 32, wherein the parameter is a cryptographic nonce, the cryptographic nonce being used to generate a cryptographic key.
PCT/US2007/023617 2006-11-14 2007-11-09 Methods and apparatuses for accessing content based on a session ticket WO2008069888A2 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
KR1020097012043A KR101450131B1 (en) 2006-11-14 2007-11-09 Methods and apparatuses for accessing content based on a session ticket
JP2009537160A JP2010509887A (en) 2006-11-14 2007-11-09 Method and apparatus for accessing content based on a session ticket
EP07870860A EP2082348A2 (en) 2006-11-14 2007-11-09 Methods and apparatuses for accessing content based on a session ticket
CN2007800489177A CN101578608B (en) 2006-11-14 2007-11-09 Methods and apparatuses for accessing content based on a session ticket

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US11/600,273 US20080112566A1 (en) 2006-11-14 2006-11-14 Apparatuses for accessing content based on a session ticket
US11/600,263 2006-11-14
US11/600,263 US8079071B2 (en) 2006-11-14 2006-11-14 Methods for accessing content based on a session ticket
US11/600,273 2006-11-14

Publications (3)

Publication Number Publication Date
WO2008069888A2 WO2008069888A2 (en) 2008-06-12
WO2008069888A3 WO2008069888A3 (en) 2008-07-31
WO2008069888B1 true WO2008069888B1 (en) 2008-09-18

Family

ID=39313149

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2007/023617 WO2008069888A2 (en) 2006-11-14 2007-11-09 Methods and apparatuses for accessing content based on a session ticket

Country Status (5)

Country Link
EP (1) EP2082348A2 (en)
JP (1) JP2010509887A (en)
KR (1) KR101450131B1 (en)
TW (1) TWI441037B (en)
WO (1) WO2008069888A2 (en)

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3216607B2 (en) * 1998-07-29 2001-10-09 日本電気株式会社 Digital work distribution system and method, digital work reproduction apparatus and method, and recording medium
US7599890B2 (en) * 2000-03-30 2009-10-06 Sanyo Electric Co., Ltd. Content data storage
US20040019801A1 (en) * 2002-05-17 2004-01-29 Fredrik Lindholm Secure content sharing in digital rights management
JP3869761B2 (en) * 2002-06-05 2007-01-17 三洋電機株式会社 Content playback device
JP2004133654A (en) * 2002-10-10 2004-04-30 Sanyo Electric Co Ltd Storage device, terminal device, and server system
KR20050096040A (en) * 2004-03-29 2005-10-05 삼성전자주식회사 Method for playbacking content using portable storage by digital rights management, and portable storage for the same
US7664966B2 (en) * 2004-05-17 2010-02-16 Microsoft Corporation Secure storage on recordable medium in a content protection system
WO2006013924A1 (en) * 2004-08-06 2006-02-09 Pioneer Corporation Recording/reproducing device, recording medium processing device, reproducing device, recording medium, contents recording/reproducing system, and contents recording/reproducing method
US8504849B2 (en) * 2004-12-21 2013-08-06 Sandisk Technologies Inc. Method for versatile content control

Also Published As

Publication number Publication date
JP2010509887A (en) 2010-03-25
KR20090091750A (en) 2009-08-28
WO2008069888A3 (en) 2008-07-31
TW200839564A (en) 2008-10-01
KR101450131B1 (en) 2014-10-13
EP2082348A2 (en) 2009-07-29
WO2008069888A2 (en) 2008-06-12
TWI441037B (en) 2014-06-11

Similar Documents

Publication Publication Date Title
CA2560477A1 (en) Method and apparatus for playing back content based on digital rights management between portable storage and device, and portable storage for the same
RU2004137285A (en) SYSTEMS AND METHODS FOR PROTECTED BIOMETRIC AUTHENTICATION
IL159295A0 (en) Authentication of a user across communication sessions
MXPA02001383A (en) Information processing method/apparatus and program.
WO2004099921A3 (en) Method and apparatus for secure import of information into data aggregation program hosted by personal trusted device
JP2004166270A5 (en)
JP2007502576A5 (en)
GB0502888D0 (en) Key delivery method and apparatus in a communications system
WO2009028137A1 (en) Key terminal apparatus, lsi for encryption process, unique key producing method, and content system
WO2006135897A3 (en) Proxy authentication network
WO2006023151A3 (en) Method of delivering direct proof private keys to devices using an on-line service
WO2007092588A3 (en) Secure digital content management using mutating identifiers
JP2009512069A5 (en)
JP2010114885A5 (en)
AU2003276532A1 (en) A method of distributing the location data of a mobile device
WO2008026060B1 (en) Method, system and device for synchronizing between server and mobile device
WO2007067839A3 (en) Method and system for managing secure access to data in a network
TW200718144A (en) Method and system for transferring data
EP1456995A4 (en) Methods and apparatus for secure distribution of program content
RU2012107868A (en) COMMUNICATION SYSTEM, COMMUNICATION DEVICE, COMMUNICATION METHOD AND COMPUTER PROGRAM
JP2006211662A5 (en)
RU2010103447A (en) SERVER DEVICE, LICENSE DISTRIBUTION METHOD AND CONTENT RECEPTION DEVICE
JP2006186807A5 (en)
WO2008069888B1 (en) Methods and apparatuses for accessing content based on a session ticket
JP2007174657A5 (en)

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200780048917.7

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07870860

Country of ref document: EP

Kind code of ref document: A2

WWE Wipo information: entry into national phase

Ref document number: 2007870860

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2009537160

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 1020097012043

Country of ref document: KR