Secure digital content delivery system and method over a broadcast network
First Claim
1. A method for creating a secure transmission mechanism for a plurality of end user devices in a packet-based network, comprising:
- providing a plurality of packets;
securing said plurality of packets according to security information to form secured packets;
transmitting said security information to more than one end user device simultaneously through the packet-based network; and
multi-casting said secured packets to the plurality of end user devices.
9 Assignments
0 Petitions
Accused Products
Abstract
A system and a method for secure distribution of digital media content through a packet-based network such as the Internet. The security of the present invention does not require one-to-one key exchange, but rather enables keys, and/or information required in order to build the key, to be broadcast through the packet-based network. The digital media content is then also preferably broadcast, but cannot be accessed without the proper key. However, preferably only authorized end-user devices are able to access the digital media content, by receiving and/or being able to access the proper key. Thus, the present invention is useful for other types of networks in which digital media content is more easily broadcast rather than unicast, in addition to packet-based networks.
-
Citations
85 Claims
-
1. A method for creating a secure transmission mechanism for a plurality of end user devices in a packet-based network, comprising:
-
providing a plurality of packets;
securing said plurality of packets according to security information to form secured packets;
transmitting said security information to more than one end user device simultaneously through the packet-based network; and
multi-casting said secured packets to the plurality of end user devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55)
-
-
56. A method for producing a conditional access (CA) system for use in a packet-switched environment (packet CA system) from a CA system for use in a broadcast environment (broadcast CA system), the method comprising:
-
providing a broadcast CA system comprising at least one CA security characteristic;
providing a packet-switched data transmission system including a security subsystem having a plurality of packet-switched security characteristics; and
creating a mapping from the at least one CA security element to at least one of the plurality of packet-switched security elements, thereby producing a packet CA system. - View Dependent Claims (57, 58, 59, 60)
-
-
61. A packet-switched conditional access (CA) system for use with an end-user playback device, the CA system comprising:
-
a protected data receiver for receiving protected data protected with at least one key;
an ECM packet receiver for receiving at least one ECM packet from a packet-switching network; and
an ECM-based key generator for generating said at least one key from said at least one ECM packet. - View Dependent Claims (62, 63, 64)
-
-
65. A method for providing an entitlement control message (ECM) based conditional access (CA) system based on a packet-switching network comprising:
-
receiving a plurality of ECMs via the packet-switching network;
storing the plurality of received ECMs; and
choosing, from among the plurality of stored ECMs, an ECM for providing access to CA-protected data. - View Dependent Claims (66, 67, 68, 69, 70, 71)
-
-
72. A method for creating a secure transmission mechanism for a plurality of end user devices in a packet-based network, comprising:
-
encrypting a plurality of packets with a key to form encrypted packets, said key having associated key information for determining said key;
multi-casting said associated key information to the plurality of end user devices through the packet-based network, thereby obviating the need to send said associated key information to each end user device individually; and
multi-casting said encrypted packets to the plurality of end user devices to form the secure transmission mechanism. - View Dependent Claims (73, 74, 75)
-
-
76. A method for creating a secure transmission mechanism for a plurality of end user devices in a packet-based network, comprising:
multi-casting a plurality of secured packets and security information to the plurality of end user devices, thereby obviating the need for a one-to-one transmission of said security information to each end user device individually and thereby forming the secure transmission mechanism. - View Dependent Claims (77)
-
78. A system for multi-casting secure packets to a plurality of end user devices in a packet-based network, the secure packets being secured according to security information, comprising:
(a) a broadcast headend connected to the plurality of end user devices at least through the packet-based network, said broadcast headend transmitting the security information to more than one of the plurality of end user devices, thereby obviating the need to send the security information to each end user device individually, and said broadcast headend transmitting the secure packets to the plurality of end user devices, wherein at least one of the security information and the secure packets is transmitted through the packet-based network.
-
79. In a system for multi-casting secure packets to a plurality of end user devices in a packet-based network, the system comprising a broadcast headend connected to the plurality of end user devices at least through the packet-based network, providing a method for securing the packets, the method comprising:
-
securing the secure packets according to security information, transmitting the security information by the broadcast headend to more than one end user device simultaneously according to a multi-casting protocol; and
transmitting the secure packets by the broadcast headend to the plurality of end user devices;
wherein at least one of the security information and the secure packets is transmitted through the packet-based network. - View Dependent Claims (80)
-
-
81. A method for creating a secure transmission mechanism for a plurality of end user devices in an IP network, comprising:
-
providing a plurality of data units for transport through the IP network;
securing said plurality of data units according to security information to form secured data units;
transmitting said security information to more than one end user device simultaneously through the IP network; and
multi-casting said secured data units to the plurality of end user devices.
-
-
82. A method for creating a secure transmission mechanism for a plurality of end user devices in a network having a characteristic of being at least one of packet-based and IP, comprising:
-
providing a plurality of data units;
securing said plurality of data units according to a control word to form secured data units, said control word being generated from security information;
transmitting said security information to more than one end user device simultaneously through the network;
multi-casting said data units to the plurality of end user devices; and
generating said control word at each end user device with said security information.
-
-
83. A method for creating a secure transmission mechanism for a plurality of end user devices in an IP network, comprising:
-
providing a plurality of data units for transport through the IP network;
securing said plurality of data units according to security information to form secured data units;
transmitting said security information to more than one end user device simultaneously through the IP network;
transmitting an announcement according to SDP (session description protocol) of IPSEC to said end user devices for indicating an association between said security information and said secured data units, and multi-casting said secured data units to the plurality of end user devices. - View Dependent Claims (84, 85)
-
Specification