Encryption and data-protection for content on portable medium
First Claim
1. A method for encrypting content with copy protection for storage on a destination computer-readable medium, said method comprising:
- generating a medium key to be associated with a destination computer-readable medium;
encrypting the generated medium key with one or more public keys, each of the public keys corresponding to an end user device;
encrypting the content with a content key;
encrypting the content key with the medium key;
defining a medium identifier associated with the destination computer-readable medium and associating the defined medium identifier with the encrypted content; and
storing the encrypted content, encrypted content key, encrypted medium keys, and associated medium identifier to the destination computer-readable medium, wherein comparing the defined medium identifier with the medium identifier associated with the encrypted content prior to rendering the content provides copy protection for the content.
4 Assignments
0 Petitions
Accused Products
Abstract
A source generates a medium key (KM) and a media secret table including a plurality of entries, each entry including (KM) encrypted by a public key (PU-PD) of a plurality of devices, obtains the medium ID of a medium therefrom, generates a content key (KD) for a piece of content, encrypts the content with (KD) to result in (KD(content)), encrypts (KD) with (KM) to result in (KM(KD)), generates a package for the content including (KD(content)), (KM(KD)), the medium ID, and a signature based on at least the medium ID and verifiable with (KM), and copies the generated package and the media secret table to the medium. Thus, a device with the medium and a private key (PR-PD) corresponding to an entry of the media secret table can access and render the content.
121 Citations
35 Claims
-
1. A method for encrypting content with copy protection for storage on a destination computer-readable medium, said method comprising:
-
generating a medium key to be associated with a destination computer-readable medium;
encrypting the generated medium key with one or more public keys, each of the public keys corresponding to an end user device;
encrypting the content with a content key;
encrypting the content key with the medium key;
defining a medium identifier associated with the destination computer-readable medium and associating the defined medium identifier with the encrypted content; and
storing the encrypted content, encrypted content key, encrypted medium keys, and associated medium identifier to the destination computer-readable medium, wherein comparing the defined medium identifier with the medium identifier associated with the encrypted content prior to rendering the content provides copy protection for the content. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for decrypting copy protected content stored on a computer-readable medium for rendering by an end user device, said computer-readable medium storing a package including encrypted content, an encrypted content key, one or more medium keys each being encrypted by a public key associated with one of a plurality of end user devices, and a medium identifier, said end user device having a private key associated therewith, said method comprising:
-
calculating a medium key for the end user device from the encrypted medium keys as a function of the private key;
defining a medium identifier for the computer-readable medium;
comparing the defined medium identifier with the medium identifier stored in the package; and
if the defined medium identifier corresponds to the medium identifier stored in the package as a function of said comparing, decrypting the encrypted content key with the calculated medium key and decrypting the encrypted content with the decrypted content key. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. A system for recording content with copy protection onto a computer-readable medium, said system comprising:
-
a memory area for storing content, a medium identifier associated with the computer-readable medium, and one or more public keys each corresponding to an end user device, and one or more usage rules associated with the stored content; and
a processor configured to execute computer-executable instructions for;
generating a medium key to be associated with the computer-readable medium;
encrypting the generated medium key with each of the public keys stored in the memory area;
encrypting the content stored in the memory area with a content key;
encrypting the content key with the medium key; and
storing the encrypted content, the encrypted content key, the encrypted medium keys, and the associated medium identifier to the computer-readable medium. - View Dependent Claims (25, 26, 27)
-
-
28. A system for rendering copy protected content stored on a computer-readable medium by an end user device, said system comprising:
-
a memory area for storing a medium identifier associated with the computer-readable medium, encrypted content, a medium identifier associated with the encrypted content, an encrypted content key, one or more medium keys each encrypted by a public key associated with one of a plurality of end user devices, and a private key associated with the end user device; and
a processor configured to execute computer-executable instructions for;
calculating a medium key for the end user device from the encrypted medium keys stored in the memory area as a function of the private key;
comparing the medium identifier associated with the computer-readable medium with the medium identifier associated with the encrypted content; and
if the medium identifier associated with the computer-readable medium corresponds to the medium identifier associated with the encrypted content as a function of said comparing, decrypting the encrypted content key with the calculated medium key and decrypting the encrypted content with the decrypted content key. - View Dependent Claims (29, 30, 31, 32, 33)
-
-
34. One or more computer-readable media having computer-executable components for providing copy protection for content, said components being executable on an end user device, said components comprising:
-
an encryption component for encrypting the content by;
generating a medium key to be associated with a computer-readable medium;
encrypting the generated medium key with one or more public keys, each of the public keys corresponding to an end user device;
creating a media secret table for the content, said media secret table including the encrypted medium keys;
encrypting the content with a content key;
encrypting the content key with the medium key;
defining a medium identifier associated with the destination computer-readable medium and associating the defined medium identifier with the encrypted content; and
storing the encrypted content, encrypted content key, media secret table, and associated medium identifier as a group on the computer-readable medium; and
a decryption component for decrypting the content encrypted by the encryption component and enforcing copy protection by;
calculating the medium key for the end user device from the media secret table as a function of the private key;
determining a reference medium identifier for the computer-readable medium;
comparing the determined reference medium identifier with the medium identifier stored in the group; and
if the determined reference medium identifier corresponds to the medium identifier stored in the group as a function of said comparing, decrypting the encrypted content key with the calculated medium key and decrypting the encrypted content with the decrypted content key. - View Dependent Claims (35)
-
Specification