WO2010058317A1 - Procédé et dispositif de gestion de contenu numérique - Google Patents

Procédé et dispositif de gestion de contenu numérique Download PDF

Info

Publication number
WO2010058317A1
WO2010058317A1 PCT/IB2009/054954 IB2009054954W WO2010058317A1 WO 2010058317 A1 WO2010058317 A1 WO 2010058317A1 IB 2009054954 W IB2009054954 W IB 2009054954W WO 2010058317 A1 WO2010058317 A1 WO 2010058317A1
Authority
WO
WIPO (PCT)
Prior art keywords
content key
encrypted
digital content
key
content
Prior art date
Application number
PCT/IB2009/054954
Other languages
English (en)
Inventor
Changjie Wang
Fulong Ma
Hui Li
Original Assignee
Koninklijke Philips Electronics N.V.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninklijke Philips Electronics N.V. filed Critical Koninklijke Philips Electronics N.V.
Priority to MX2011005255A priority Critical patent/MX2011005255A/es
Priority to US13/129,139 priority patent/US8489885B2/en
Priority to RU2011124962/08A priority patent/RU2530296C2/ru
Priority to EP09787376.4A priority patent/EP2359291B1/fr
Priority to CN200980146394.9A priority patent/CN102224506B/zh
Priority to JP2011536971A priority patent/JP5872289B2/ja
Priority to BRPI0916119A priority patent/BRPI0916119B1/pt
Priority to KR1020117013768A priority patent/KR101696447B1/ko
Publication of WO2010058317A1 publication Critical patent/WO2010058317A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]

Definitions

  • the invention relates generally to information technology. More particularly, the present invention relates to digital content management.
  • DRM Digital Rights Management
  • CP content provider device 101
  • RI right issuer device 102
  • CD client device 103
  • CD 103 To buy (i.e. access/use%) a piece of digital content, CD 103 first connects to CP 101 via a network 104 so as to get (by download online or by other offline methods) an encrypted version of said digital content. Then, CD 103 connects to RI 102 to make the payment and obtains a license data authorizing access to the digital content.
  • a content key is included in the license data for decrypting the digital content.
  • the license data is encrypted by RI 102 with the secret key of CD 103 so that only CD 103 can retrieve the content key to decrypt the digital content.
  • the content key for decryption is shared between CP 101 and RI 102, and such a scenario is suitable in situations in which CP and RI are implemented by "parties" trusting each other (e.g. CP is implemented in a first entity, RI is implemented in a second entity, both of which are operated by a big company).
  • Publishing digital content by a person/individual or by a small company has its own features which are different from the scenario of publishing digital content by a big company.
  • a maker of content is a person or a small company, he can only play the role of CP, and often has a website/server to publish the content, but the maker of content has no capability to provide the DRM service and therefore has to seek a separate entity to act as RI.
  • CP and RI are independent entities, i.e. they have their own interests and therefore do not necessarily trust each other. For example, RI would like to control how many protected copies CP has published and wants to charge the commission accordingly. CP would like to keep his own content from being accessed by RI.
  • the improved methods are implemented by CP, RI, and CD.
  • the first device corresponds to CP
  • the second device corresponds to RI
  • the third device corresponds to CD.
  • a method for managing digital content performed by a first device comprising the steps of encrypting said content key by said first device so as to generate an encrypted content key; and sending said encrypted content key by said first device to a second device, wherein said encrypted content key is intended to be included in a license data to be sent by said second device to a third device in response to a request from said third device to use said digital content, said license data describing the rights to use said digital content by said third device.
  • a method for managing digital content performed by a second device comprising the steps of receiving, by a second device, the encrypted content key from said first device; and sending, by said second device to a third device, a license data describing the rights to use said digital content by said third device in response to a request from said third device to use said digital content, wherein said license data includes said encrypted content key.
  • a method for managing digital content performed by a third device comprising the steps of sending, by said third device to said second device, a request to use said digital content; receiving, by said third device from said second device, a license data describing the rights to use said digital content by said third device, wherein said license includes said encrypted content key; and receiving, by said third device from said first device, data for decrypting said encrypted content key.
  • a first device for managing digital content is provided.
  • said digital content is encrypted with a content key by said first device.
  • the first device comprises a unit for encrypting said content so as to generate an encrypted content key; and a unit for sending said encrypted content key to a second device, wherein said encrypted content key is intended to be included in a license data to be sent by said second device to a third device in response to a request from said third device to use said digital content, said license data describing the rights to use said digital content by said third device.
  • a second device for managing digital content is provided.
  • said digital content is encrypted with a content key by a first device, and said content key is encrypted by said first device so as to generate an encrypted content key.
  • the second device comprises a unit for receiving the encrypted content key from said first device; and a unit for sending, to a third device, a license data describing the rights to use said digital content by said third device in response to a request from said third device to use said digital content, wherein said license data includes said encrypted content key.
  • a third device for managing digital content is provided.
  • said digital content is encrypted with a content key by a first device, said content key is encrypted by said first device so as to generate an encrypted content key, and said encrypted content key is sent by said first device to a second device.
  • the third device comprises a unit for sending a request to use said digital content to said second device; a unit for receiving, from said second device, a license data describing the rights to use said digital content by said third device, wherein said license includes said encrypted content key; and a unit for receiving, from said first device, data for decrypting said encrypted content key. Since the content key is encrypted, the RI device is not able to access the digital content, but it can still perform the license data service. Thus, a CP who is independent of a RI can use the service from RI and does not need to share the content key with RI.
  • FIG. l is a schematic diagram showing a known DRM system
  • FIG.2 shows a system for managing digital content according to the invention
  • FIG.3 is a flow chart for managing digital content according to the invention
  • FIG.4 is a block diagram of the first device according to the invention.
  • FIG.5 is a block diagram of the second device according to the invention.
  • FIG.6 is a block diagram of the third device according to the invention.
  • CP keeps the content key for decrypting a given encrypted digital content
  • CP needs RI help to release the license data
  • RI is an independent entity providing DRM service to CP.
  • FIG.2 shows a system for managing digital content according to the invention.
  • the system comprises a first device 21, a second device 22, and a third device 23.
  • the first device is a device 21, a second device 22, and a third device 23.
  • the second device 22, and the third device 23 are capable of communicating with each other via a wired or a wireless network.
  • the first device 21 is a CP which is capable of encrypting digital content and publishing the encrypted digital content.
  • the first device 21 may correspond, for example, to a personal computer.
  • the second device 22 is a RI which is capable of generating and releasing license data to CD.
  • the second device 22 may correspond to a server.
  • the third device 23 is a CD which needs to use the digital content.
  • the third device 23 may correspond to a personal computer.
  • the principle of the invention is to send, by the first device 21, an encrypted content key 202 to the second device 22; the second device 22 releases a license data 203 including the encrypted content key 202 to the third device 23 upon request of the third device 23; the third device 23 thus obtains the license data 203 from the second device 22; and then the third device 23 receives data 204 from the first device 21 for decrypting the encrypted content key
  • a block represents a step; the broken-line block indicates that the step is an optional step; an arrow-headed line represents the data-transmitting path.
  • data is the result of the last step (e.g. output of the last step), and, on the other hand, data is the input of the next step.
  • the first device 21 has a digital content and wants to publish the digital content by using the digital rights management system (DRM).
  • DRM digital rights management system
  • the digital content may represent any type of digital content, such as: video data (e.g. songs), audio data (e.g. movies), textual documents (e.g. articles, books, magazines or newspapers), and software (e.g. complete applications, upgrades, fixes), etc.
  • video data e.g. songs
  • audio data e.g. movies
  • textual documents e.g. articles, books, magazines or newspapers
  • software e.g. complete applications, upgrades, fixes
  • Packaging digital content includes encrypting the digital content with a content key, and adding a digital content header for describing the necessary information of the digital content, etc.
  • the necessary information may be, for example, the content key ID, the IP address for obtaining the license data, etc.
  • symmetrical or asymmetrical encryption algorithms For example, symmetrical or asymmetrical encryption algorithms. If a symmetrical encryption algorithm is used, only one key is used for encryption as well as decryption. If an asymmetrical encryption algorithm is used, a key pair is involved, namely, a private and a public key. Normally, the public key is used to encrypt the digital content, and the private key is used to decrypt the digital content.
  • Packaging digital content is well known in the art; therefore, no detailed description will be given here.
  • the digital content After the digital content has been packaged by the first device 21, it is published by the first device 21 via the Internet (for example, via a webpage) or via any movable storage (for example, CD, DVD, flash memory, etc).
  • a method performed by the first device 21 for managing the digital content comprises a step 310 of encrypting said content key by said first device 21 so as to generate an encrypted content key.
  • a step 311 of sending the encrypted content key by the first device 21 to the second device 22 is performed.
  • the encrypted content key sent to the second device 22 is intended to be included in a license data to be sent by the second device 22 to the third device 23 in response to a request from said third device 23 to use said digital content, said license data describing the rights to use said digital content by said third device 23.
  • the encrypted content key may be sent directly from the first device 21 to the second device 22. It may also be sent to the second device 22 indirectly. For example, it may be uploaded (sent) to a predefined address so as to be downloaded by the second device 23. It is also possible not to send the encrypted content key but the encrypted content key ID (identification), and the second device 22 can generate an encrypted content key based on the encrypted content key ID. Similarly to sending the encrypted content key, the encrypted content key ID may also be sent to the second device 22 either directly or indirectly.
  • the sending step 311 refers to all situations, no matter whether the encrypted content key or the encrypted content key ID is sent directly or indirectly to the second device 22, because the final result is that the second device 22 obtains the encrypted content key from the first device 21.
  • a step 320 of receiving, by the second device 22, the encrypted content key from said first device 21 is performed.
  • the receiving step 320 also includes all situations as long as the encrypted content key is obtained by the second device 22, no matter whether it is obtained directly from the first device 21 or indirectly.
  • a step 330 of sending, by the third device 23 to the second device 22, a request to use said digital content is performed.
  • the encrypted digital content can be obtained by the third device 23 by downloading from the Internet or from a movable storage.
  • a trusted architecture component typically referred to as DRM agent
  • DRM agent installed in the third device will seek the content key from the license data for decrypting the encrypted digital content. If the DRM agent fails to find a license data for the digital content, the DRM agent of the third device 23 will control this device to send a request to use said digital content to the second device 22.
  • the IP address of the second device 22 for the third device 23 sending the request may be embedded in the header of the packaged digital content.
  • the second device 22 When the second device 22 receives a request from the third device 23 to use said digital content, the second device 22 authenticates the third device 23. If the third device 23 meets the requirement of using the digital content, for example, complete the payment, the second device 22 performs a step 321 of sending license data to the third device 23, said license data describing the rights to use said digital content by the third device 23 and including said encrypted content key.
  • the license data includes data for describing the rights to use the digital content and the encrypted content key for decrypting the digital content.
  • the usage rights may be, for example, printing the digital content, or playing the digital content for a certain time or during a certain period.
  • the license data sent by the second device 22 may include the IP address of the first device 21 so that the third device 23 can be directed to the first device 21 for decrypting the encrypted content key.
  • the third device 23 performs a step 331 of receiving a license data from the second device 22.
  • the digital content cannot be decrypted by the third device 23 using the encrypted content key directly.
  • the third device 23 first needs to have the encrypted content key decrypted. Therefore, a step 312 of sending data for decrypting said encrypted content key by the first device 21 to said third device 23 is performed.
  • the data sent to the third device 23 may be the decryption key for decrypting the encrypted content key; the data may also be a key seed for generating a decryption key by the third device 23.
  • the first device 21 may decrypt the encrypted content key directly for the third device 23.
  • the data sent by the first device 21 is the decrypted content key (i.e. clean content key).
  • the data Before sending data for decrypting the encrypted content key to the third device 23, the data may be encrypted by the first device 21 using the public key of the third device 23 for ensuring a security data transmission.
  • the public key of the third device 23 can be informed, for example, by the second device 22 or by the third device 23.
  • a step 333 of receiving data for decrypting the encrypted content key is performed by the third device 23.
  • the third device 23 may perform a step 332 of sending a message to the first device 21 for requesting the first device 21 to send data for decrypting said encrypted content key.
  • the second device 22 may also be the second device 22 which triggers the first device 21 to perform the sending step 312.
  • the way in which the second device 22 triggers the first device to perform the sending step 312 will be described hereinafter.
  • the second device 22 may perform a step 324 of sending information about the identifier of said digital content (referred to as “content ID”), the identifier of said third device 23 (referred to as “device ID”) and the public key of said third device 23 after the sending step 321.
  • content ID the identifier of said digital content
  • device ID the identifier of said third device 23
  • public key of said third device 23 after the sending step 321.
  • the information may be sent to the first device 21; it may also be sent to the third device 23.
  • this device performs a corresponding step 334 of receiving this information.
  • the information sent to the third device 23 may be included in the message sent in step 332 for requesting said first device 21 to send data for decrypting said encrypted content key. Including this information in the message sent in step 332 aims at providing proof that the third device 23 is authorized by the second device 22.
  • the information sent to the third device 23 may also be directly forwarded by the third device 23 to the first device 21 as the message for requesting the first device 21 to send data for decrypting said encrypted content key.
  • the first device 21 further comprises a step 314 of receiving the afore-mentioned information.
  • the information sent to the first device 21 is used to notify this device of the fact that a license data for a digital content (the digital content ID of said digital content is included in said information) has been sent to the third device 23.
  • the first device 21 receives a message from the third device 23 for requesting the first device 21 to send data for decrypting the encrypted content key
  • the first device 21 can compare the device ID indicated in said information with the device ID requesting the data for decrypting the encrypted content key so as to verify if the requesting device is authorized by the second device 22.
  • the information sent to the first device 21 may also be used to trigger this device to perform the step 312 of sending data for decrypting the encrypted content.
  • the first device 21 may connect to the third device 23 and send the data automatically without waiting for another request from the third device 23.
  • the information may be signed, for security, by the second device using its private key.
  • the other device i.e. the first or the third device in the invention
  • the other device can use the public key of the second device so as to verify the validity of this information.
  • RI uses its private key to sign the license data and the public key of CD to encrypt the content key included in the license data. In this way, only the authorized CD can decrypt the content key.
  • the content key is first encrypted by the first device 21, and the encrypted content key is then encrypted again by the second device 22, which can be represented by E 2 (Ei(CK)), wherein
  • E 2 (X) is understood to mean encryption of X by the second device 22, and Ei(X) is understood to mean encryption of X by the first device 21.
  • the DRM agent according to the known DRM system can use the private key of the third device 23 to decrypt E 2 (Ei(CK)).
  • the result of the decryption is Ei(CK).
  • Ei(CK) is still an encrypted content key, it cannot be used by the DRM agent directly.
  • the third device 23 receives data for decrypting the encrypted content key, and since the known DRM agent does not have two decryption steps, it will not use the received data to decrypt the encrypted content key.
  • the encryption step performed by the first device 21 for encrypting the content key will hereinafter be referred to as the first encryption.
  • the encryption step performed by the second device 22 for encrypting the encrypted content key will be referred to as the second encryption.
  • the order of the decryption steps will be: first decrypts the last encryption step, and last decrypts the first encryption step.
  • the invention further proposes a solution for adaptation to the known DRM system, which needs to exchange the order of two decryption steps.
  • the third device 23 should first decrypt the first encryption using the received data, and then send the result of this decryption to the known DRM agent; the known DRM agent can thus decrypt the second encryption.
  • E 2 (CK) will be sent to the DRM agent for the second decryption.
  • the DRM agent can use the private key of the third device 23 to decrypt E 2 (CK) and obtain the cleaned content key.
  • the third device 23 is thus capable of decrypting the digital content.
  • the first device may use "blinding" as an encryption method to encrypt the content key, since "blinding" has a property of being commutative with certain encryption algorithms.
  • Blinding in the context of the invention is understood to mean a specific encryption method. It is a technique by which an agent can provide a service to (i.e. compute a function for) a client in an encoded form without knowing either the real input or the real output.
  • blinding The most common application of blinding is the blind signature.
  • the signer digitally signs a message without being able to learn its content.
  • the method comprises the steps of blinding the content key by the first device 21 so as to generate a blinded content key; sending, by the first device 21, the blinded content key to a second device 22; sending, by the second device 22 to a third device 23, a license data describing the rights to use said digital content by the third device 23 in response to a request from the third device 23 to use said digital content, wherein said license data includes said blinded content key; and receiving, by said third device 23 from said first device 21, data for unblinding said blinded content key.
  • the first device 21 blinds the content key (CK) so as to generate a blinded content key (BCK).
  • the second device 22 encrypts the blinded content key which is included in the license data and sent to the third device 23, which encrypted blinded content key is referred to as EBCK.
  • EBCK (BCK e ")modP (3) wherein e 2 ⁇ , d Z3 are a set of RSA parameters which are used for the third device 23.
  • mod P is omitted in the following context.
  • the third device 23 needs to first perform the unblinding step as the first decryption step and then perform the second decryption step on EBCK.
  • the unblinding step is:
  • the decryption step is:
  • FIG.4 is a block diagram of the first device 21 according to the invention for managing digital content.
  • Line 400 represents the data bus of the first device 21 for exchanging data.
  • the first device 21 is a content provider comprising a packaging unit 401 for creating a digital content package.
  • the first device 41 also comprises an encrypting unit 402 for performing the above-mentioned encryption step 310 so as to generate an encrypted content key.
  • the first device 21 also comprises a unit 403 for performing the above-mentioned step 311 of sending the encrypted content key, and a unit 405 for performing the above- mentioned step 312 of sending data for decrypting the encrypted content key.
  • the first device 21 also comprises a receiving unit 404 for receiving data, for example, performing the above-mentioned step 314 of receiving the message for requesting data for decrypting said encrypted content key.
  • FIG.5 shows a second device 22 for managing digital content in a digital rights management system according to the invention.
  • the digital content is encrypted with a content key by the first device 21, and the content key is encrypted by said first device 21 so as to generate an encrypted content key.
  • Line 500 represents the data bus of the second device 22 for exchanging data.
  • the second device 22 comprises a receiving unit 501 for receiving data from other devices, for example, performing the above-mentioned step 320 of receiving the encrypted content key from the first device 21, or, for example, receiving a request to use the digital content from the third device 23.
  • the second device 22 comprises a license generating unit 502 for generating a license data in response to a request from the third device 23 to use said digital content.
  • the license data describes the rights to use said digital content by said third device 23 and includes the received encrypted content key.
  • the second device 22 also comprises a sending unit 503 for performing the above- mentioned step 321 of sending the license data generated by the license generating unit 502.
  • the second device 22 also comprises a unit 504 for performing the above-mentioned step 324 of sending information about the digital content ID, the third device ID and the public key of the third device.
  • FIG.6 shows a third device 23 for managing digital content in a digital rights management system.
  • the digital content is encrypted with a content key by the first device 21, said content key is encrypted by said first device 21 so as to generate an encrypted content key, and said encrypted content key is sent by said first device 21 to the second device 22.
  • 600 represents the data bus of the third device 23 for exchanging data.
  • the third device 23 comprises a sending unit 601 for performing the afore-mentioned step 330 of sending a request to use said digital content to said second device 22, and also for performing the afore-mentioned step 332 of sending a message for requesting said first device 21 to send data for decrypting said encrypted content key.
  • the third device 23 also comprises a receiving unit 602 for performing the aforementioned step 331 of receiving the above-mentioned license data from the second device 22, and also for performing the afore-mentioned step 333 of receiving data for decrypting said encrypted content key.
  • the receiving unit 602 may also be used to perform the above-mentioned step 334 of receiving information about the digital content ID, the third device ID and the public key of said third device (23).
  • the third device 23 also comprises a unit 605 for sending, to said first device 21, a message for requesting said first device 21 to send data for decrypting said encrypted content key.
  • the third device 23 also comprises a DRM agent 603 for decrypting the digital content using the encrypted content key included in the license data and received data for decrypting the encrypted content key.
  • a DRM agent 603 for decrypting the digital content using the encrypted content key included in the license data and received data for decrypting the encrypted content key.
  • the DRM agent 603 seeks the license data to derive the encrypted content key, and requests data from the first device 21 for decrypting the encrypted content key.
  • the DRM agent 603 can decrypt the encrypted digital content and send the clean digital content to the rendering unit 604 for rendering.
  • the rendering unit for example, Windows media player, is used to render the digital content.
  • the above- mentioned packaging unit 401 can be implemented by a memory stored with instruction data, and so can the encrypting unit 402, the sending units 403 and 405, the receiving unit 404, the receiving unit 501, the license generating unit 502, the sending units 503 and 504, the sending units 601and 605, the receiving unit 602, the DRM agent 603, and the rendering unit 604. All of them can be implemented separately by a memory with specific instruction data.
  • the packaging unit 401, the encrypting unit 402, the sending units 403 and 405, and the receiving unit 404 can be implemented by one or a plurality of memories stored with different instruction codes. These units may also be implemented by one or a plurality of printed circuit boards or by one or a plurality of processors.
  • the receiving unit 501, the license generating unit 502, and the sending units 503 and 504 may be implemented by one or a plurality of memories stored with different instruction codes. These units may also be implemented by one or a plurality of printed circuit boards or by one or a plurality of processors.
  • the sending units 601 and 605, the receiving unit 602, the DRM agent 603, and the rendering unit 604 may be implemented by one or a plurality of memories stored with different instruction codes. These units may also be implemented by one or a plurality of printed circuit boards or by one or a plurality of processors.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

L'invention concerne un procédé et des dispositifs de gestion de contenu numérique, le procédé consistant à envoyer, par un premier dispositif (21), une clé de contenu cryptée (202) à un deuxième dispositif (22) ; à envoyer, par ledit deuxième dispositif (22) à un troisième dispositif (23), des données de licence décrivant les droits d’utilisation dudit contenu numérique par ledit troisième dispositif (23) en réponse à une demande d'utilisation dudit contenu numérique provenant dudit troisième dispositif (23), lesdites données de licence comprenant ladite clé de contenu cryptée (202) ; et à recevoir, par ledit troisième dispositif (23) depuis ledit premier dispositif (21), des données pour décrypter ladite clé de contenu cryptée (202).
PCT/IB2009/054954 2008-11-20 2009-11-09 Procédé et dispositif de gestion de contenu numérique WO2010058317A1 (fr)

Priority Applications (8)

Application Number Priority Date Filing Date Title
MX2011005255A MX2011005255A (es) 2008-11-20 2009-11-09 Metodo y dispositivo de manejo de contenido digital.
US13/129,139 US8489885B2 (en) 2008-11-20 2009-11-09 Method and device for managing digital content
RU2011124962/08A RU2530296C2 (ru) 2008-11-20 2009-11-09 Способ и устройство для управления цифровым контентом
EP09787376.4A EP2359291B1 (fr) 2008-11-20 2009-11-09 Procédé et dispositif de gestion de contenu numérique
CN200980146394.9A CN102224506B (zh) 2008-11-20 2009-11-09 用于对数字内容进行管理的方法和设备
JP2011536971A JP5872289B2 (ja) 2008-11-20 2009-11-09 デジタルコンテンツを管理するための方法及び装置
BRPI0916119A BRPI0916119B1 (pt) 2008-11-20 2009-11-09 método de gerenciamento de conteúdo digital, primeiro dispositivo para gerenciamento de conteúdo digital, segundo dispositivo para gerenciamento de conteúdo digital e terceiro dispositivo para gerenciamento de conteúdo digital
KR1020117013768A KR101696447B1 (ko) 2008-11-20 2009-11-09 디지털 콘텐트를 관리하기 위한 방법 및 디바이스

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200810178639.3 2008-11-20
CN200810178639 2008-11-20

Publications (1)

Publication Number Publication Date
WO2010058317A1 true WO2010058317A1 (fr) 2010-05-27

Family

ID=41566326

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2009/054954 WO2010058317A1 (fr) 2008-11-20 2009-11-09 Procédé et dispositif de gestion de contenu numérique

Country Status (9)

Country Link
US (1) US8489885B2 (fr)
EP (1) EP2359291B1 (fr)
JP (1) JP5872289B2 (fr)
KR (1) KR101696447B1 (fr)
CN (1) CN102224506B (fr)
BR (1) BRPI0916119B1 (fr)
MX (1) MX2011005255A (fr)
RU (1) RU2530296C2 (fr)
WO (1) WO2010058317A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120090034A1 (en) * 2010-10-12 2012-04-12 Samsung Electronics Co., Ltd. Method and apparatus for downloading drm module
WO2014032707A1 (fr) * 2012-08-29 2014-03-06 Siemens Convergence Creators Gmbh Procédé et système d'attribution de contenus d'informations

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8738537B2 (en) * 2003-11-21 2014-05-27 Intel Corporation System and method for relicensing content
US8271549B2 (en) 2005-08-05 2012-09-18 Intel Corporation System and method for automatically managing media content
GB0813298D0 (en) * 2008-07-19 2008-08-27 Univ St Andrews Multipad encryption
US9015479B2 (en) * 2011-12-16 2015-04-21 Sandisk Technologies Inc. Host device and method for super-distribution of content protected with a localized content encryption key
US20130156196A1 (en) * 2011-12-16 2013-06-20 Fabrice E. Jogand-Coulomb Storage Device and Method for Super-Distribution of Content Protected with a Localized Content Encyrption Key
US20150161360A1 (en) * 2013-12-06 2015-06-11 Microsoft Corporation Mobile Device Generated Sharing of Cloud Media Collections
US9680814B2 (en) * 2013-12-25 2017-06-13 Huawei Technologies Co., Ltd. Method, device, and system for registering terminal application
US10447693B2 (en) * 2016-01-28 2019-10-15 Verizon Patent And Licensing Inc. Selectively permitting a receiver device to access a message based on authenticating the receiver device
US9935952B2 (en) * 2016-01-28 2018-04-03 Verizon Patent And Licensing Inc. Selectively permitting a receiver device to access a message based on authenticating the receiver device
CN107172003B (zh) * 2016-03-08 2020-08-04 创新先进技术有限公司 一种发布信息的处理方法、装置及信息发布系统
CN111506882B (zh) * 2019-01-30 2024-02-27 京东方科技集团股份有限公司 电子设备及数字文件管理方法
JP7494148B2 (ja) 2021-07-13 2024-06-03 Kddi株式会社 検証システム、配信サーバ及びブラウザ
CN113676478B (zh) * 2021-08-20 2023-09-12 北京奇艺世纪科技有限公司 一种数据处理方法及相关设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1998058306A1 (fr) * 1997-06-17 1998-12-23 Shopnow.Com Inc. Procede et system permettant d'introduire sans risque des informations electroniques dans une application d'achat en direct
WO2002067548A1 (fr) * 2001-02-21 2002-08-29 Rpk New Zealand Limited Systeme de gestion de cles de multimedias chiffres
US20040184616A1 (en) * 2003-03-18 2004-09-23 Widevine Technologies, Inc. System, method, and apparatus for securely providing content viewable on a secure device
EP1693731A1 (fr) * 2001-07-06 2006-08-23 Nokia Corporation Administration des droits numériques dans un environnement de communications mobiles

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3216607B2 (ja) * 1998-07-29 2001-10-09 日本電気株式会社 デジタル著作物流通システム及び方法、デジタル著作物再生装置及び方法、並びに記録媒体
US6871276B1 (en) 2000-04-05 2005-03-22 Microsoft Corporation Controlled-content recoverable blinded certificates
BR0206506A (pt) * 2001-01-17 2003-10-21 Contentguard Holdings Inc Processo e aparelho para gerenciar direitos de uso de conteúdo digital
US20020157002A1 (en) * 2001-04-18 2002-10-24 Messerges Thomas S. System and method for secure and convenient management of digital electronic content
EP1323018A4 (fr) 2001-06-07 2004-07-07 Contentguard Holdings Inc Systeme de distribution de contenu protege
JP2003008563A (ja) * 2001-06-21 2003-01-10 Sony Corp コンテンツ配信システム、コンテンツ配信方法、およびデータ処理装置、データ処理方法、並びにプログラム
US7421411B2 (en) * 2001-07-06 2008-09-02 Nokia Corporation Digital rights management in a mobile communications environment
US7191332B1 (en) 2003-05-20 2007-03-13 Sprint Communications Company L.P. Digital rights management for multicasting content distribution
US7320140B1 (en) 2003-06-16 2008-01-15 Adobe Systems Incorporated Modifying digital rights
US7363499B2 (en) 2003-09-18 2008-04-22 Sun Microsystems, Inc. Blinded encryption and decryption
US7477749B2 (en) * 2004-05-12 2009-01-13 Nokia Corporation Integrity protection of streamed content
JP4639698B2 (ja) * 2004-09-02 2011-02-23 ソニー株式会社 データ処理システム及びデータ処理方法
KR101496424B1 (ko) * 2004-10-08 2015-02-27 코닌클리케 필립스 엔.브이. Drm 시스템을 위한 사용자 기반 콘텐트 키 암호화
JP4740574B2 (ja) * 2004-10-21 2011-08-03 日本放送協会 ライセンス情報生成装置及びそのプログラム、配信コンテンツ生成装置及びそのプログラム、コンテンツ復号装置及びそのプログラム、並びに、コンテンツ復号方法
US20070022306A1 (en) 2005-07-25 2007-01-25 Lindsley Brett L Method and apparatus for providing protected digital content
JP4733497B2 (ja) * 2005-10-25 2011-07-27 日本放送協会 コンテンツ配信装置、ライセンス発行装置、課金装置およびコンテンツ視聴端末、ならびに、ライセンス要求生成プログラム、ライセンス生成プログラムおよび課金プログラム
JP2007174395A (ja) * 2005-12-22 2007-07-05 Canon Inc 画像処理装置およびその方法
JP2008015622A (ja) * 2006-07-03 2008-01-24 Sony Corp 著作権保護記憶媒体、情報記録装置及び情報記録方法、並びに情報再生装置及び情報再生方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1998058306A1 (fr) * 1997-06-17 1998-12-23 Shopnow.Com Inc. Procede et system permettant d'introduire sans risque des informations electroniques dans une application d'achat en direct
WO2002067548A1 (fr) * 2001-02-21 2002-08-29 Rpk New Zealand Limited Systeme de gestion de cles de multimedias chiffres
EP1693731A1 (fr) * 2001-07-06 2006-08-23 Nokia Corporation Administration des droits numériques dans un environnement de communications mobiles
US20040184616A1 (en) * 2003-03-18 2004-09-23 Widevine Technologies, Inc. System, method, and apparatus for securely providing content viewable on a secure device

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120090034A1 (en) * 2010-10-12 2012-04-12 Samsung Electronics Co., Ltd. Method and apparatus for downloading drm module
US9117055B2 (en) * 2010-10-12 2015-08-25 Samsung Electronics Co., Ltd Method and apparatus for downloading DRM module
KR101944800B1 (ko) * 2010-10-12 2019-02-07 삼성전자주식회사 Drm 모듈 다운로드 방법 및 장치
WO2014032707A1 (fr) * 2012-08-29 2014-03-06 Siemens Convergence Creators Gmbh Procédé et système d'attribution de contenus d'informations
US9682778B2 (en) 2012-08-29 2017-06-20 Siemens Convergence Creators Gmbh Method and system for assigning information contents

Also Published As

Publication number Publication date
JP2012509536A (ja) 2012-04-19
BRPI0916119B1 (pt) 2020-05-05
MX2011005255A (es) 2011-05-31
KR20110084538A (ko) 2011-07-25
CN102224506A (zh) 2011-10-19
JP5872289B2 (ja) 2016-03-01
BRPI0916119A2 (pt) 2015-11-03
RU2011124962A (ru) 2012-12-27
US20110219236A1 (en) 2011-09-08
CN102224506B (zh) 2014-12-24
RU2530296C2 (ru) 2014-10-10
KR101696447B1 (ko) 2017-01-13
EP2359291A1 (fr) 2011-08-24
EP2359291B1 (fr) 2016-08-17
US8489885B2 (en) 2013-07-16

Similar Documents

Publication Publication Date Title
US8489885B2 (en) Method and device for managing digital content
JP4672317B2 (ja) デジタル権利管理システム
KR100971854B1 (ko) 보안 서버 키 동작을 제공하기 위한 시스템 및 방법
US8831228B1 (en) System and method for decentralized management of keys and policies
RU2332704C2 (ru) Публикация цифрового содержания в определенном пространстве, таком как организация, в соответствии с системой цифрового управления правами (цуп)
JP5196883B2 (ja) 情報セキュリティ装置および情報セキュリティシステム
US20110185179A1 (en) System And Method For Digital Rights Management With A Lightweight Digital Watermarking Component
JP4863178B2 (ja) 論理パーティションを用いて、暗号化されたコンテンツを管理するためのシステムおよび方法
JP2018506939A (ja) ドメインネームサービスを介するプライベートキーの安全な委任された配信
CN102938759B (zh) 加密裁决服务器及其使用方法
WO2006077222A1 (fr) Systeme et procede de manipulation securisee et pratique d'informations d'etat de liaison cryptographique
CN101103591A (zh) 在装置之间移动版权对象的方法以及基于移动方法和装置使用内容对象的方法和装置
EP3455763B1 (fr) Gestion de droits numériques destinée au partage de contenu numérique anonyme
JP2013115522A (ja) リンク・アクセスの制御方法、プログラム及びシステム
US9124422B2 (en) System and method for digital rights management with secure application-content binding
JP4335156B2 (ja) 可搬記録媒体による秘密鍵管理システム
EP2827265A1 (fr) Protection de contenu partagé dans un réseau
Davidson et al. Content sharing schemes in DRM systems with enhanced performance and privacy preservation
JP2006332735A (ja) 暗号変換装置、暗号変換方法及びプログラム
Sun et al. A Trust Distributed DRM System Using Smart Cards
Choudhary Strategic issues in implementing electronic-ID services: prescriptions for managers

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200980146394.9

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09787376

Country of ref document: EP

Kind code of ref document: A1

REEP Request for entry into the european phase

Ref document number: 2009787376

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2009787376

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2011536971

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 13129139

Country of ref document: US

WWE Wipo information: entry into national phase

Ref document number: MX/A/2011/005255

Country of ref document: MX

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 4168/CHENP/2011

Country of ref document: IN

ENP Entry into the national phase

Ref document number: 20117013768

Country of ref document: KR

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: 2011124962

Country of ref document: RU

ENP Entry into the national phase

Ref document number: PI0916119

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20110517