Method and device for protecting information against unauthorised use

US 20040255136A1
Filed: 05/12/2004
Published: 12/16/2004
Est. Priority Date: 11/12/2001
Status: Abandoned Application

First Claim

Patent Images

1-64. -64. (Cancelled).

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Described are method and device for protecting information against unauthorized use. Information obtained by the user is encrypted using an asymmetrical cryptography method with a user'"'"'s key which is received by a distributor of information. The information is decoded before the use thereof with the aid of a private key of the user. Decryption may be carried out directly in a CPU of the user'"'"'s computer user so that the decrypted information does not exist outside the processor.

37 Citations

View as Search Results

133 Claims

1-64. -64. (Cancelled).

65. A method for protecting against an unauthorized use of information, comprising the steps of:
- obtaining by a Vendor a consumer public key;
  
  encrypting the information using an asymmetrical cryptography algorithm with the consumer public key;
  
  obtaining by the Consumer a consumer private key corresponding to the consumer public key; and
  
  immediately before use of the information by the Consumer, decrypting the information with the consumer private key, wherein when the information is not being used, the information is stored in a form encrypted with the consumer public key.
- View Dependent Claims (66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76)
- - 66. The method according to claim 65, wherein the step of obtaining the consumer public key is performed when the information is being acquired by the Consumer from the Vendor.
  - 67. The method according to claim 66, wherein the consumer public key is obtained from a digital signature when an acquisition order for the information is placed.
  - 68. The method according to claim 66, wherein the Vendor obtains the consumer public key from a key storage related to the Consumer.
  - 69. The method according to claim 65, further comprising the step of:
    - deleting the decrypted information after the use of the information by the Consumer
  - 70. The method according to claim 65, wherein the information includes a first portion and at least one second portion and wherein when the first portion is decrypted immediately before its use, the at least one second portion remains encrypted.
  - 71. The method according to claim 70, wherein the first portion is deleted after being used.
  - 72. The method according to claim 66, wherein the Vendor obtains the consumer public key from a digital certificate, the digital certificate confirming an identity of the Consumer.
  - 73. The method according to claim 72, wherein the Vendor checks if the digital certificate at least one of is valid and was not revoked.
  - 74. The method according to claim 65, wherein a program is executed on an equipment of the Consumer, the executed program checking if the consumer private key was revoked before the use of the encrypted information.
  - 75. The method according to claim 65, further comprising the step of:
    - generating by the Vendor the consumer public key and the consumer private key.
  - 76. The method according to claim 75, further comprising the step of:
    - providing by the Vendor the consumer private key to the Consumer.

77. A method for protection against an unauthorized duplication of information, comprising the steps of:
- obtaining by a Vendor a consumer public key;
  
  generating by the Vendor a random key for an asymmetrical cryptography algorithm;
  
  encrypting the information using the asymmetrical cryptography algorithm and the random key;
  
  encrypting the random key using the asymmetrical cryptography algorithm and the consumer public key;
  
  obtaining by the Consumer a consumer private key corresponding to the consumer public key;
  
  decrypting the encrypted random key obtained by the Consumer from the Vendor using (a) a further asymmetrical cryptography algorithm corresponding to the asymmetrical cryptography algorithm and (b) the consumer private key, wherein the random key is decrypted immediately before use of the information by the Consumer, and wherein when the information is not being used, the random key is stored in a form decrypted using the consumer public key; and
  
  decrypting by the Consumer the information obtained from the Vendor using the further asymmetrical cryptography algorithm and the decrypted random key.
- View Dependent Claims (78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91)
- - 78. The method according to claim 77, wherein the consumer public key is provided when information is being acquired by the Consumer from the Vendor.
  - 79. The method according to claim 78, wherein the consumer public key is provided from a digital signature when an acquisition order is placed.
  - 80. The method according to claim 77, wherein the Vendor obtains the consumer public key from a key storage related to the Customer.
  - 81. The method according to claim 77, further comprising the step of:
    - after the decrypted information is used, destroying the decrypted information.
  - 82. The method according to claim 77, wherein the information includes a first portion and at least one second portion and wherein when the first portion is decrypted immediately before its use, the at least one second portion remains encrypted.
  - 83. The method according to claim 82, wherein a first random key is utilized for an encryption of a first of the at least one second portion and a second random key is utilized for an encryption of a second of the at least one second portion, the first key being different from the second key.
  - 84. The method according to claim 77, wherein the decrypted random key is destroyed after being used for decryption of the encrypted information.
  - 85. The method according to claim 82, wherein the decrypted first portion is destroyed after being used.
  - 86. The method according to claim 77, wherein the Vendor obtains the consumer public key from a digital certificate, the digital certificate confirming an identity of the Consumer.
  - 87. The method according to claim 86, wherein the Vendor checks if the digital certificate at least one of is valid and was not revoked.
  - 88. The method according to claim 77, wherein a program is executed on an equipment of the Consumer, the executed program checking if the consumer private key was revoked before the use of the encrypted information.
  - 89. The method according to claim 77, further comprising the step of:
    - generating by the Vendor the consumer public key and the consumer private key.
  - 90x. x. The method according to claim 89, further comprising the step of:
    - providing by the Vendor the consumer private key to the Consumer.
  - 91. The method according to claim 83, where the first and second random keys are deleted after decrypting of the first and second of the at least one second portions.

92. A system for protecting against an unauthorized duplication of information, comprising:
- a vendor arrangement obtaining a consumer public key and encrypting the information using an asymmetrical algorithm with the consumer public key; and
  
  a consumer arrangement obtaining a consumer private key corresponding to the consumer public key and decrypting the information, immediately before its use by the Consumer, using the asymmetrical algorithm with the consumer private key, wherein when the information is not being used, the consumer arrangement stores the information in a form encrypted with the consumer public key.
- View Dependent Claims (93, 94, 95, 96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108, 109)
- - 93. The system according to claim 92, wherein the consumer public key is provided when the information is being acquired.
  - 94. The system according to claim 93, wherein the consumer public key is obtained from a digital signature when an acquisition order for the information is placed.
  - 95. The system according to claim 93, wherein the consumer public key is transmitted via a computer network.
  - 96. The system according to claim 92, wherein the consumer public key is obtained from a key storage related to consumer'"'"'s information.
  - 97. The system according to claim 96, wherein the consumer public key is at least one of requested and acquired via a computer network.
  - 98. The system according to claim 92, wherein an acquisition order for purchasing of the information is transmitted via a computer network.
  - 99. The system according to claim 92, wherein the information is a software program which is executable by a CPU of the consumer arrangement, the program decrypting itself prior to the execution utilizing the consumer private key.
  - 100. The system according to claim 92, wherein the decrypted information is destroyed after being used.
  - 101. The system according to claim 92, wherein the information includes a first portion and at least one second portion and wherein when the first portion is decrypted immediately before its use, the at least one second portion remains encrypted.
  - 102. The system according to claim 101, wherein the decrypted first portion is destroyed after being used.
  - 103. The system according to claim 92, wherein the consumer arrangement includes a CPU and a memory, the information being stored in the memory and encrypted utilizing the public key, the CPU including a first module decrypting the information using the consumer private key prior to utilization of the information by a second module so that decrypted information does not exist outside the CPU.
  - 104. The system according to claim 92, wherein the consumer public key is obtained from a digital certificate, the digital certificate authenticating a consumer'"'"'s identity.
  - 105. The system according to claim 109, wherein the digital certificate is checked if it at least one is valid and was not revoked.
  - 106. The system according to claim 94, wherein the program, which is executable on the consumer arrangement prior to the utilization of the encrypted information, checks if the consumer private key was revoked.
  - 107. The system according to claim 92, wherein the consumer private and public keys are generated by a Vendor.
  - 108x. x. The system according to claim, 107, wherein the Vendor transmits the consumer private key is forwarded to Consumer.
  - 109. The system according to claim 99, wherein the program executed by the CPU does not have an access to reading of its decrypted executable code.

110. A system for protecting against unauthorized use of information, comprising:
- a vendor arrangement obtaining a consumer public key and generating a random key for a symmetrical cryptography algorithm, the vendor arrangement encrypting the information using the symmetrical cryptography algorithm and the random key and encrypting the random key using the symmetrical cryptography algorithm and the consumer public key; and
  
  a consumer arrangement obtaining a consumer private key corresponding to the consumer public key, the consumer arrangement decrypting the encrypted random key, immediately before use of the information, using an asymmetrical cryptography algorithm and the consumer private key, wherein when the information is not being used, the random key is stored in a form encrypted using the consumer public key, and wherein the consumer arrangement decrypts the information using the symmetrical cryptography algorithm and the decrypted random key.
- View Dependent Claims (111, 112, 113, 114, 115, 116, 117, 118, 119, 120, 121, 122, 123, 124, 125, 126, 127, 128, 129, 130, 131, 132, 133)
- - 111. The system according to claim 110, wherein the consumer public key is provided when the information is acquired.
  - 112. The system according to claim 111, wherein the consumer public key is provided from a digital signature when an acquisition order is placed.
  - 113. The system according to claim 111, wherein the consumer public key is transmitted via a computer network.
  - 114. The system according to claim 110, wherein the consumer public key is obtained from a key storage related to customer information.
  - 115. The system according to claim 114, wherein the consumer public key is at least one of (i) requested and (ii) obtained via a computer network.
  - 116. The system according to claim 110, wherein the information is transmitted via a computer network.
  - 117. The system according to claim 110, wherein the information is a program intended for an execution by a processor of the consumer arrangement, the program decrypting itself before the execution using the consumer private key.
  - 118. The system according to claim 110, wherein the decrypted information is deleted after being used.
  - 119. The system according to claim 110, wherein the information includes a first portion and at least one second portion, and wherein, when the first portion is decrypted immediately before its use, the at least one second portion remains encrypted.
  - 120. The system according to claim 119, wherein a first random key is utilized for an encryption of a first of the at least one second portion and a second random key is utilized for an encryption of a second of the at least one second portion, the first random key being different from the second random key.
  - 121. The system according to claim 110, wherein the random key is destroyed after being used for decrypting of the information.
  - 122. The system according to claim 119, wherein the first portion is destroyed after being used.
  - 123. The system according to claim 110, wherein the consumer arrangement includes a CPU and a memory, the information being stored in the memory and encrypted utilizing the random key, the CPU including a first module decrypting the information from the memory utilizing the random key prior to utilization of the information by a second module and the CPU so that the decrypted information does not exist outside of the CPU.
  - 124. The system according to claim 123, wherein the CPU includes a third module decrypting the random key utilizing the consumer private key prior to utilization of the random key in the second module so that the decrypted random key does not exist outside of the CPU.
  - 125. The system according to claim 117, wherein the program executable on the CPU does not have an access to reading its decrypted executable code.
  - 126. The system according to claim 117, wherein the executable program does not have an access to reading its decrypted random key.
  - 127. The system according to claim 110, wherein the consumer public key is obtained from a digital certificate which authenticates a consumer'"'"'s identity.
  - 128. The system according to claim 127, wherein a Vendor checks if the digital certificate at least one of is valid and was not revoked.
  - 129. The system according to claim 117, wherein the program, which is executable on the consumer arrangement prior to utilization of the encrypted information, checks if the consumer private key was revoked.
  - 130. The system according to claim 110, wherein the consumer private and public keys are generated by a Vendor.
  - 131x. x. The system according to claim 130, wherein the consumer private key is transmitted to a Consumer.
  - 132. The system according to claim 120, wherein the first and second random keys are destroyed after being used for decrypting the first and second of at least one second portions.
  - 133. The system according to claim 110, wherein the information includes at least one of a software program, audio data and video data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Alexey Borisovich Fadyushin
Original Assignee
Alexey Borisovich Fadyushin
Inventors
Fadyushin, Alexey Borisovich

Application Number

US10/495,507
Publication Number

US 20040255136A1
Time in Patent Office

Days
Field of Search
US Class Current

713/193
CPC Class Codes

G06F 21/101   by binding digital rights t...

G06F 21/16   Program or content traceabi...

G06F 21/6209   to a single file or object,...

Method and device for protecting information against unauthorised use

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

37 Citations

133 Claims

Specification

Solutions

Use Cases

Quick Links

Method and device for protecting information against unauthorised use

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

37 Citations

133 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links