Content protection system using biometric authentication

US 10,423,767 B2
Filed: 11/25/2014
Issued: 09/24/2019
Est. Priority Date: 12/27/2013
Status: Active Grant

First Claim

Patent Images

1. A device for secured distribution of multi-media content in a content protection system, comprising:

communication circuitry to at least transmit authentication data to, and receive multi-media content from, a multi-media content provider, wherein the multi-media content consists of video multi-media content and/or audio multi-media content;

biometric identification circuitry to sense biometric data from a user of the device;

content delivery circuitry to;

cause the biometric identification circuitry to sense the biometric data from the user in response to a request to retrieve the multi-media content from the multi-media content provider;

generate the authentication data based on the biometric data;

cause the communication circuitry to transmit the authentication data to the multi-media content provider to authenticate an account for the user with the multi-media content provider to enable receipt of the multi-media content by the device from the multi-media content provider, wherein the account for the user is created from a second device; and

receive the multi-media content from the multi-media content provider via the communication circuitry based on authentication of the account, in response to transmission and verification of the biometric data, to reduce a likelihood of unauthorized distribution of the multi-media content and to enable digital rights management of the multi-media content; and

system circuitry to provide a trusted execution environment to protect against unauthorized access to the biometric data,wherein the content delivery circuitry comprises at least one application verified as safe by the trusted execution environment in the device, the trusted execution environment including at least a secure memory space accessible to only applications verified as safe by the trusted execution environment, wherein the trusted execution environment includes a hardware-encrypted computation and storage area within memory circuitry.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present disclosure is directed to a content protection system using biometric authentication. In general, a user may be authenticated using sensed biometric data prior to receiving content from a content provider. An example device may comprise a biometric identification (BI) module and a content delivery (CD) module. The CD module may cause the BI module to sense biometric data from a user of the device. Authentication data may be generated based on the biometric data. In one embodiment, the authentication data may comprise a key generated from the biometric data. The authentication data may then be sent to the content provider, and upon authentication, the content provider may deliver the content to the device. The CD module may also be able to register new users with the content provider and/or allow users to purchase content not already licensed to the user.

19 Citations

23 Claims

1. A device for secured distribution of multi-media content in a content protection system, comprising:
- communication circuitry to at least transmit authentication data to, and receive multi-media content from, a multi-media content provider, wherein the multi-media content consists of video multi-media content and/or audio multi-media content;
  
  biometric identification circuitry to sense biometric data from a user of the device;
  
  content delivery circuitry to;
  
  cause the biometric identification circuitry to sense the biometric data from the user in response to a request to retrieve the multi-media content from the multi-media content provider;
  
  generate the authentication data based on the biometric data;
  
  cause the communication circuitry to transmit the authentication data to the multi-media content provider to authenticate an account for the user with the multi-media content provider to enable receipt of the multi-media content by the device from the multi-media content provider, wherein the account for the user is created from a second device; and
  
  receive the multi-media content from the multi-media content provider via the communication circuitry based on authentication of the account, in response to transmission and verification of the biometric data, to reduce a likelihood of unauthorized distribution of the multi-media content and to enable digital rights management of the multi-media content; and
  
  system circuitry to provide a trusted execution environment to protect against unauthorized access to the biometric data,wherein the content delivery circuitry comprises at least one application verified as safe by the trusted execution environment in the device, the trusted execution environment including at least a secure memory space accessible to only applications verified as safe by the trusted execution environment, wherein the trusted execution environment includes a hardware-encrypted computation and storage area within memory circuitry.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The device of claim 1, wherein the multi-media content provider is remote from the device, the multi-media content provider comprising at least one computing device accessible via a wide-area network.
  - 3. The device of claim 1, wherein the biometric identification circuitry is internal to the device or at least coupled to the device via the communication circuitry.
  - 4. The device of claim 1, wherein the content delivery circuitry is further to determine biometric sensors that are available in association with the biometric identification circuitry.
  - 5. The device of claim 4, wherein the content delivery circuitry is further to determine at least one preferred biometric sensor for use with the multi-media content provider based on the biometric sensors that were determined to be available in association with the biometric identification circuitry.
  - 6. The device of claim 1, wherein the content delivery circuitry being to generate the authentication data comprises the content delivery circuitry being to generate a key for authenticating the user based on the biometric data, the authentication data including at least the key, wherein the trusted execution environment to protect against unauthorized access to the authentication data.
  - 7. The device of claim 1, wherein the content delivery circuitry is further to:
    - determine if the user is registered with the multi-media content provider; and
      
      if it is determined that the user is not registered with the content provider, cause the multi-media content provider to register the user based on the authentication data.
  - 8. The device of claim 7, wherein the content delivery circuitry being to cause the multi-media content provider to register the user based on the authentication data comprises the content delivery circuitry being to cause the multi-media content provider to associate the authentication data with data identifying the device or replace the data identifying the device with the authentication data.
  - 9. The device of claim 1, wherein the content delivery circuitry is further to:
    - determine if the user has purchased the multi-media content;
      
      if it is determined that the user has not purchased the multi-media content, provide a user interface in the device allowing the user to purchase the multi-media content; and
      
      cause the multi-media content provider to associate the authentication data with the purchased multi-media content.

10. A method for securing distribution of multi-media content from a multi-media content provider to a plurality of devices, comprising:
- causing biometric data to be sensed from a user by a device in response to a request to retrieve multi-media content from a multi-media content provider, wherein the multi-media content consists of video multi-media content and/or audio multi-media content;
  
  generating authentication data based on the biometric data;
  
  causing the authentication data to be transmitted from the device to the multi-media content provider to authenticate an account for the user with the multi-media content provider to enable receipt of the multi-media content by the device from the multi-media content provider, wherein the account for the user is initiated from a second device;
  
  receiving the multi-media content at the device from the multi-media content provider based on authentication of the account, in response to transmission and verification of the biometric data, to reduce a likelihood of unauthorized distribution of the multi-media content and to enable digital rights management of the multi-media content;
  
  providing a trusted execution environment to protect against unauthorized access to the biometric data; and
  
  verifying at least one application as safe by the trusted execution environment, wherein the trusted execution environment includes at least a secure memory space accessible to applications verified as safe by the trusted execution environment, wherein the trusted execution environment includes a hardware-encrypted computation and storage area within memory circuitry.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The method of claim 10, further comprising:
    - determining biometric sensors that are available.
  - 12. The method of claim 11, further comprising:
    - determining at least one preferred biometric sensor for use with the multi-media content provider based on the biometric sensors that were determined to be available.
  - 13. The method of claim 10, wherein generating the authentication data comprises generating a key for authenticating the user based on the biometric data, the authentication data including at least the key.
  - 14. The method of claim 10, further comprising:
    - determining if the user is registered with the multi-media content provider; and
      
      if it is determined that the user is not registered with the multi-media content provider, causing the multi-media content provider to register the user based on the authentication data.
  - 15. The method of claim 14, wherein causing the multi-media content provider to register the user based on the authentication data comprises causing the multi-media content provider to associate the authentication data with data identifying the device or replace the data identifying the device with the authentication data.
  - 16. The method of claim 10, further comprising:
    - determining if the user has purchased the multi-media content;
      
      if it is determined that the user has not purchased the multi-media content, providing a user interface in the device allowing the user to purchase the multi-media content; and
      
      causing the multi-media content provider to associate the authentication data with the purchased multi-media content.

17. At least one non-transitory machine-readable storage medium having stored thereon, individually or in combination, instructions that when executed by one or more processors result in the following operations for securing distribution of multi-media content from a multi-media content provider to a plurality of devices, comprising:
- causing biometric data to be sensed from a user by a device in response to a request to retrieve multi-media content from a multi-media content provider, wherein the multi-media content consists of video multi-media content and/or audio multi-media content;
  
  generating authentication data based on the biometric data;
  
  causing the authentication data to be transmitted from the device to the multi-media content provider to authenticate an account for the user with the multi-media content provider to enable receipt of the multi-media content by the device from the multi-media content provider, wherein the account for the user is initiated from a second device;
  
  receiving the multi-media content at the device from the multi-media content provider based on authentication of the account, in response to transmission and verification of the biometric data, to reduce a likelihood of unauthorized distribution of the multi-media content and to enable digital rights management of the multi-media content;
  
  providing a trusted execution environment to protect against unauthorized access to the biometric data; and
  
  verifying at least one application as safe by the trusted execution environment, wherein the trusted execution environment includes at least a secure memory space accessible to applications verified as safe by the trusted execution environment, wherein the trusted execution environment includes a hardware-encrypted computation and storage area within memory circuitry.
- View Dependent Claims (18, 19, 20, 21, 22, 23)
- - 18. The at least one non-transitory machine-readable storage medium of claim 17, further comprising instructions that when executed by one or more processors result in the following operations comprising:
    - determining biometric sensors that are available.
  - 19. The at least one non-transitory machine-readable storage medium of claim 18, further comprising instructions that when executed by one or more processors result in the following operations comprising:
    - determining at least one preferred biometric sensor for use with the multi-media content provider based on the biometric sensors that were determined to be available.
  - 20. The at least one non-transitory machine-readable storage medium of claim 17, wherein generating the authentication data comprises generating a key for authenticating the user based on the biometric data, the authentication data including at least the key.
  - 21. The at least one non-transitory machine-readable storage medium of claim 17, further comprising instructions that when executed by one or more processors result in the following operations comprising:
    - determining if the user is registered with the multi-media content provider; and
      
      if it is determined that the user is not registered with the multi-media content provider, causing the multi-media content provider to register the user based on the authentication data.
  - 22. The at least one non-transitory machine-readable storage medium of claim 21, wherein causing the multi-media content provider to register the user based on the authentication data comprises causing the multi-media content provider to replace the data identifying the device with the authentication data.
  - 23. The at least one non-transitory machine-readable storage medium of claim 17, further comprising instructions that when executed by one or more processors result in the following operations comprising:
    - determining if the user has purchased the multi-media content;
      
      if it is determined that the user has not purchased the multi-media content, providing a user interface in the device allowing the user to purchase the multi-media content; and
      
      causing the multi-media content provider to associate the authentication data with the purchased multi-media content.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Parthasarathy, Sailaja, Vashishtha, Akshay, T Prabhu, Vignesh, Krishna, Rasik
Primary Examiner(s)
Thiaw, Catherine

Application Number

US15/100,554
Publication Number

US 20160300051A1
Time in Patent Office

1,764 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/10 Protecting distributed prog...

G06F 21/32 using biometric data, e.g. ...

Content protection system using biometric authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

19 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Content protection system using biometric authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links