Methods and systems for encoding and protecting data using digital signature and watermarking techniques

US 20050050332A1
Filed: 07/23/2004
Published: 03/03/2005
Est. Priority Date: 06/08/1999
Status: Active Grant

First Claim

Patent Images

1-46. -46. (cancelled).

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are provided for protecting and managing electronic data signals that are registered in accordance with a predefined encoding scheme, while allowing access to unregistered data signals. In one embodiment a relatively hard-to-remove, easy-to-detect, strong watermark is inserted in a data signal. The data signal is divided into a sequence of blocks, and a digital signature for each block is embedded in the signal via a watermark. The data signal is then stored and distributed on, e.g., a compact disc, a DVD, or the like. When a user attempts to access or use a portion of the data signal, the signal is checked for the presence of a watermark containing the digital signature for the desired portion of the signal. If the watermark is found, the digital signature is extracted and used to verify the authenticity of the desired portion of the signal. If the signature-containing watermark is not found, the signal is checked for the presence of the strong watermark. If the strong watermark is found, further use of the signal is inhibited, as the presence of the strong watermark, in combination with the absence or corruption of the signature-containing watermark, provides evidence that the signal has been improperly modified. If, on the other hand, the strong mark is not found, further use of the data signal can be allowed, as the absence of the strong mark indicates that the data signal was never registered with the signature-containing watermark.

Citations

82 Claims

1-46. -46. (cancelled).

47. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- encoding a digital file, the encoding including;
  
  inserting a first watermark into the file;
  
  inserting a plurality of signature-containing watermarks into the file, each signature-containing watermark containing the digital signature of at least a portion of the file; and
  
  decoding at least a portion of the encoded file, the decoding including;
  
  searching at least a portion of the encoded file for a first signature-containing watermark;
  
  if the first signature-containing watermark is found, retrieving a first digital signature from the first signature-containing watermark, and using the first digital signature to verify the authenticity of a portion of the encoded file to which the first digital signature corresponds;
  
  if the first signature-containing watermark is not found, searching the encoded file for the first watermark;
  
  if the first watermark is found, inhibiting at least one use of at least a portion of the file;
  
  if the first watermark is not found, permitting at least one use of at least a portion of the file;
  
  whereby the plurality of signature-containing watermarks are operable to facilitate detection of modifications to the encoded file, and the first watermark is operable to facilitate detection of removal of one or more of the signature-containing watermarks from the encoded file.
- View Dependent Claims (48, 49, 50, 51, 52)
- - 48. A computer program as in claim 47, in which inserting the plurality of signature-containing watermarks into the file includes:
    - generating a first watermarked segment by inserting a second signature-containing watermark into a first segment of the file;
      
      generating a first digital signature by encrypting a hash of at least a portion of the first watermarked segment; and
      
      generating a second watermarked segment by inserting the first signature-containing watermark into a second segment of the file, wherein the first signature-containing watermark contains the first digital signature.
  - 49. A computer program as in claim 48, in which the first signature-containing watermark further includes a multi-bit guess, and in which retrieving the first digital signature from the first signature-containing watermark and using the first digital signature to verify the authenticity of the portion of the encoded file to which the first digital signature corresponds further includes:
    - using the multi-bit guess to locate the portion of the first watermarked segment to which the first digital signature corresponds;
      
      hashing the portion of the first watermarked segment to which the first digital signature corresponds to obtain a first hash value;
      
      decrypting the first digital signature; and
      
      comparing the first hash value with at least part of the decrypted first digital signature.
  - 50. A computer program as in claim 48, in which the digital file comprises a series of multi-bit samples, and in which the first signature-containing watermark includes a quality indicator, the quality indicator specifying the number of bits in each multi-bit sample that should be considered when using the first digital signature to verify the authenticity of the portion of the encoded file to which the first digital signature corresponds.
  - 51. A computer program as in claim 47, in which inserting the first watermark into the file includes:
    - analyzing the file to identify a first set of mark holder candidates;
      
      using a key to select a sub-set of the first set of mark holder candidates into which to insert a predefined payload; and
      
      inserting the predefined payload into the selected sub-set of mark holder candidates.
  - 52. A computer program as in claim 51, in which searching the encoded file for the first watermark includes:
    - identifying a second set of mark holder candidates;
      
      generating a predefined number of random keys;
      
      using each random key to select a sub-set of the second set of mark holder candidates, and retrieving a payload from each selected sub-set;
      
      recording the payload retrieved from each selected sub-set;
      
      statistically analyzing the recorded payloads for randomness; and
      
      determining that the first watermark is present if the randomness is less than a predefined threshold.

53. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- inserting a first hidden code into a digital file;
  
  generating a plurality of modification-detection codes, each modification-detection code corresponding, at least in part, to at least one file segment; and
  
  inserting the plurality of modification-detection codes into the file, wherein the plurality of modification-detection codes can be used to detect modifications to the file segments to which they correspond, and wherein the first hidden code can be used to detect removal of one or more modification-detection codes from the file.
- View Dependent Claims (54, 55, 56, 57, 58, 59, 60, 61)
- - 54. A computer program as in claim 53, in which the first hidden code comprises a watermark.
  - 55. A computer program as in claim 54, in which the plurality of modification-detection codes are inserted into the file via a plurality of watermarks.
  - 56. A computer program as in claim 55, in which the watermark containing the first hidden code is more robust than the watermarks containing the plurality of modification-detection codes.
  - 57. A computer program as in claim 54, in which inserting the watermark includes:
    - analyzing the file to identify a set of mark holder candidates;
      
      using a key to select a sub-set of the set of mark holder candidates into which to insert a predefined payload; and
      
      inserting the predefined payload into the selected sub-set of mark holder candidates.
  - 58. A computer program as in claim 53, in which the plurality of modification-detection codes comprise a plurality of digital signatures.
  - 59. A computer program as in claim 53, in which the plurality of modification-detection codes comprise a signed progression of hash values.
  - 60. A computer program as in claim 53, in which the plurality of modification-detection codes comprises a plurality of hash values, and in which inserting the plurality of modification-detection codes into the file comprises:
    - concatenating a first group of modification-detection codes together to form a first combined modification-detection code;
      
      digitally signing the first combined modification-detection code; and
      
      inserting the signed first combined modification-detection code into the file.
  - 61. A computer program as in claim 60, further including instructions that, when executed by the processor, are operable to cause the computer system to perform actions comprising:
    - concatenating a second group of modification-detection codes to form a second combined modification-detection code;
      
      digitally signing the second combined modification-detection code; and
      
      inserting the signed second combined modification-detection code into the file.

62. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- inserting a first watermark into a first portion of a file of electronic data, the first watermark containing a payload that includes a digital signature for a second portion of the file; and
  
  inserting a second watermark into a third portion of the file, the second watermark containing a payload that includes a digital signature for the first portion of the file.
- View Dependent Claims (63)
- - 63. A computer program as in claim 62, in which the file of electronic data is selected from the group consisting of:
    - a file of digital audio data, a file of video data, a file of textual data, a file of multimedia data, a software program.

64. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- obtaining an authentication file associated with electronic data, the authentication file containing a plurality of hash values and a plurality of hints;
  
  using a hint to search a predefined portion of the data for a first portion of the data that potentially corresponds to a first one of the plurality of hash values;
  
  hashing the first portion of the data to obtain a hash of the first portion of data;
  
  comparing the hash of the first portion of the data with the first one of the plurality of hash values;
  
  if the hash of the first portion of the data is not equal to the first one of the plurality of hash values, using the hint to locate a second portion of the data that potentially corresponds to the first one of the plurality of hash values;
  
  hashing the second portion of the data to obtain a hash of the second portion of data; and
  
  comparing the hash of the second portion of the data with the first one of the plurality of hash values.

65. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- encoding an electronic file by applying a first content protection technique and a second content protection technique, whereby the encoded file includes at least a first detectable characteristic and a second detectable characteristic, the first detectable characteristic indicating the application of the first content protection technique and the second detectable characteristic indicating the application of the second content protection technique;
  
  storing the encoded file on a computer readable storage medium;
  
  loading at least a portion of the encoded file into system memory of a decoding device;
  
  checking the encoded file for the presence of the second detectable characteristic; and
  
  if the second detectable characteristic is not found, checking the encoded file for the presence of the first detectable characteristic and inhibiting at least one use of at least a portion of the encoded file if the first detectable characteristic is found.
- View Dependent Claims (66, 67, 68, 69, 70)
- - 66. A computer program as in claim 65, in which encoding the electronic file by applying a first content protection technique includes watermarking the electronic file using a strong watermarking algorithm.
  - 67. A computer program as in claim 66, in which watermarking the electronic file using a strong watermarking algorithm includes:
    - analyzing the electronic file to identify a set of mark holder candidates;
      
      using a key to select a sub-set of the set of mark holder candidates into which to insert a predefined payload; and
      
      inserting the predefined payload into the selected sub-set of mark holder candidates.
  - 68. A computer program as in claim 66, in which checking the encoded file for the presence of the first detectable characteristic includes:
    - identifying a set of mark holder candidates;
      
      generating a predefined number of random keys;
      
      using each random key to select a sub-set of mark holder candidates from which to retrieve a payload, and retrieving a payload from each selected sub-set of mark holder candidates;
      
      statistically analyzing the retrieved payloads for randomness; and
      
      determining that the first detectable characteristic is present if the randomness is less than a predefined threshold.
  - 69. A computer program as in claim 65, in which applying a second content protection technique includes inserting a plurality of signature-containing watermarks into the file.
  - 70. A computer program as in claim 69, in which inserting the plurality of signature-containing watermarks into the file includes:
    - generating a first watermarked segment by inserting a first signature-containing watermark into a first segment of the file;
      
      generating a first digital signature by encrypting a hash of at least a portion of the first watermarked segment; and
      
      generating a second watermarked segment by inserting a second signature-containing watermark into a second segment of the file, wherein the second signature-containing watermark includes the first digital signature.

71. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- generating a first watermarked segment by inserting a first watermark into a first segment of data;
  
  compressing the first watermarked segment using a predefined compression algorithm;
  
  decompressing the compressed first watermarked segment;
  
  generating a first signature by encrypting a hash of at least a portion of the decompressed first watermarked segment;
  
  generating a second watermarked segment by inserting a second watermark into a second segment of the data, wherein the second watermark includes the first signature;
  
  compressing the second watermarked segment using the predefined compression algorithm; and
  
  transmitting the compressed first watermarked segment and the compressed second watermarked segment to a computer readable storage medium.
- View Dependent Claims (72, 73, 74, 75)
- - 72. A computer program as in claim 71, in which the first watermark includes a signature of at least a portion of a previously-watermarked segment of the data.
  - 73. A computer program as in claim 71, further including instructions that, when executed by the processor, are operable to cause the computer system to perform actions comprising:
    - decompressing the compressed second watermarked segment;
      
      generating a second signature by encrypting a hash of at least a portion of the decompressed second watermarked segment;
      
      generating a third watermarked segment by inserting a third watermark into a third segment of the data, wherein the third watermark includes the second signature;
      
      compressing the third watermarked segment using the predefined compression algorithm; and
      
      transmitting the third watermarked segment to the computer readable storage medium.
  - 74. A computer program as in claim 71, further including instructions that, when executed by the processor, are operable to cause the computer system to perform actions comprising:
    - retrieving the first watermarked segment and the second watermarked segment from the computer readable storage medium;
      
      decompressing the first watermarked segment and the second watermarked segment;
      
      detecting the second watermark;
      
      extracting the first signature from the second watermark; and
      
      using the first signature to verify the authenticity of the portion of the decompressed first watermarked segment to which the first signature corresponds.
  - 75. A computer program as in claim 71, further including instructions that, when executed by the processor, are operable to cause the computer system to perform actions comprising:
    - inserting a strong watermark into the data, the strong watermark being operable to facilitate detection of removal of the first or second watermarks.

76. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- (a) receiving a request to use a file of electronic data in a predefined manner;
  
  (b) searching the file for a signature-containing watermark;
  
  (c) if the signature-containing watermark is found, extracting a digital signature from the signature-containing watermark;
  
  (i) performing an authenticity check on at least a portion of the file using the digital signature;
  
  (ii) granting the request to use the file in the predefined manner if the authenticity check is successful;
  
  (d) if the signature-containing watermark is not found, searching the file for a predefined watermark; and
  
  (e) if the predefined watermark is found, denying the request to use the file in the predefined manner.
- View Dependent Claims (77)
- - 77. A computer program as in claim 76, in which the predefined manner comprises moving the file or a copy thereof from one location to another.

78. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- receiving a request to use a file of electronic data in a predefined manner;
  
  retrieving at least one digital signature and at least one check value associated with the file;
  
  verifying the authenticity of the at least one check value using the digital signature;
  
  verifying the authenticity of at least a portion of the file using the at least one check value; and
  
  granting the request to use the file in the predefined manner.
- View Dependent Claims (79)
- - 79. A computer program as in claim 78, in which the at least one check value comprises one or more hash values, and in which verifying the authenticity of at least a portion of the file using the at least one check value includes:
    - hashing at least a portion of the file to obtain a first hash value; and
      
      comparing the first hash value to at least one of the one or more hash values.

80. A computer program embodied on a computer readable medium, the computer program comprising instructions that, when executed by a processor, are operable to cause a computer system to perform actions comprising:
- (a) creating an authentication file associated with a file of electronic data;
  
  (b) receiving a request at a first consumer system to use the file of electronic data in a predefined manner;
  
  (c) searching for the authentication file;
  
  (d) if the authentication file is found, using the authentication file to verify the authenticity of at least a portion of the file of electronic data;
  
  (e) if the authentication file is not found, searching the file of electronic data for a predefined watermark; and
  
  (f) granting the request to use the file of electronic data in the predefined manner.
- View Dependent Claims (81, 82)
- - 81. A computer program as in claim 80, further including instructions that, when executed by the processor, are operable to cause the computer system to perform actions comprising:
    - (a)(i) storing the authentication file at a networked server; and
      
      (b)(ii) sending a request for the authentication file to the networked server.
  - 82. A computer program as in claim 80, in which the authentication file comprises at least one digital signature and one or more hash values.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PLS IV, LLC (Pretium Partners, LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Boccon-Gibod, Gilles, Serret-Avila, Xavier

Granted Patent

US 6,961,854 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/176
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06T 1/0071   using multiple or alternati...

G11B 20/00086   Circuits for prevention of ...

G11B 20/00123   the record carrier being id...

G11B 20/00884   involving a watermark, i.e....

G11B 20/00898   based on a hash function

H04L 2209/608   Watermarking

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

H04N 1/32144   embedded in the image data,...

H04N 1/32208   involving changing the magn...

H04N 1/32283   Hashing

H04N 1/32288   Multiple embedding, e.g. co...

H04N 1/32293   Repeating the additional in...

H04N 1/32304   Embedding different sets of...

H04N 1/3232   Robust embedding or waterma...

H04N 19/00   Methods or arrangements for...

H04N 19/467   characterised by the embedd...

H04N 2005/91335   the copy protection signal ...

H04N 21/23892   involving embedding informa...

H04N 21/4627 : Rights management associate...

H04N 21/8358 : involving watermark protect...

H04N 2201/3235 : Checking or certification o...

H04N 5/913 : for scrambling ; for copy p...

H04N 7/162 : Authorising the user termin...

View All

Methods and systems for encoding and protecting data using digital signature and watermarking techniques

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

82 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for encoding and protecting data using digital signature and watermarking techniques

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

82 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links