Method and system for conducting transactions between repositories
First Claim
1. In a system for controlling the use of digital works in accordance with usage rights associated with the digital work, a method for establishing a secure communications channel between a first repository and a second repository using a repository transaction protocol, said method comprising:
- generating from the first repository a registration identifier and registration message including an identification certificate, and an identifier of a master repository that encrypted the identification certificate;
receiving the registration message at a second repository and verifying the identity of the first repository by verifying the identification certificate;
validating the authenticity of the first repository;
exchanging messages containing at least one session key between the first and second repositories, said session key to be used in communications during a session between the first and second repository; and
conducting a usage transaction related to a digital work between the first repository and the second repository using the session keys.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for establishing a secure communications channel between a first repository and a second repository using a repository transaction protocol. A registration identifier and registration message including an identification certificate, and an identifier of a master repository that encrypted the identification certificate are generated by the first repository. The registration identifier and message are sent to the second repository and the identity of the first repository by is verified by verifying the identification certificate. Messages containing at least one session key are exchanged between the first and second repositories and a usage transactions related to a digital work are conducted between the first repository and the second repository using the session keys.
-
Citations
64 Claims
-
1. In a system for controlling the use of digital works in accordance with usage rights associated with the digital work, a method for establishing a secure communications channel between a first repository and a second repository using a repository transaction protocol, said method comprising:
-
generating from the first repository a registration identifier and registration message including an identification certificate, and an identifier of a master repository that encrypted the identification certificate;
receiving the registration message at a second repository and verifying the identity of the first repository by verifying the identification certificate;
validating the authenticity of the first repository;
exchanging messages containing at least one session key between the first and second repositories, said session key to be used in communications during a session between the first and second repository; and
conducting a usage transaction related to a digital work between the first repository and the second repository using the session keys. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. In a system for controlling the use of digital works in accordance with usage rights associated with the digital work, an apparatus for establishing a secure communications channel between a first repository and a second repository using a repository transaction protocol, said method comprising:
-
means for generating from the first repository a registration identifier and registration message including an identification certificate, and an identifier of a master repository that encrypted the identification certificate;
means for receiving the registration message at a second repository and verifying the identity of the first repository by verifying the identification certificate;
means for validating the authenticity of the first repository;
means for exchanging messages containing at least one session key between the first and second repositories, said session key to be used in communications during a session between the first and second repository; and
means for conducting a usage transaction related to a digital work between the first repository and the second repository using the session keys. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64)
-
Specification