Data processing apparatus for digital copyrights management

US 20050185792A1
Filed: 09/20/2004
Published: 08/25/2005
Est. Priority Date: 02/25/2004
Status: Active Grant

First Claim

Patent Images

1. A data processing apparatus for distributing to a user terminal a terminal module that is a program for obtaining, using a public key infrastructure, license data used for decoding an encrypted digital content, comprising:

a storage device for storing an encryption key;

a generation device for encrypting, using the encryption key, a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate and generating encryption information; and

a transmission device including a decoding key for decoding the encryption information and decoding the encryption information after being activated on the user terminal, thereby transmitting to the user terminal a terminal module for obtaining both the public key certificate and the information about a private key and the encryption information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Data processing apparatus distributes a public key certificate and information about a private key to a user terminal as activation information separately from a terminal module. In the case where the public key certification is vulnerable, it transmits only the activation information again.

Citations

22 Claims

1. A data processing apparatus for distributing to a user terminal a terminal module that is a program for obtaining, using a public key infrastructure, license data used for decoding an encrypted digital content, comprising:
- a storage device for storing an encryption key;
  
  a generation device for encrypting, using the encryption key, a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate and generating encryption information; and
  
  a transmission device including a decoding key for decoding the encryption information and decoding the encryption information after being activated on the user terminal, thereby transmitting to the user terminal a terminal module for obtaining both the public key certificate and the information about a private key and the encryption information.

2. A data processing apparatus for receiving an access request for a digital content from a user terminal and for distributing license data used for accessing the digital content to the user terminal as a response, comprising:
- a storage device for storing a plurality of access control lists in which a user with access permission, permitted access pattern and license conditions are described which correspond to the digital content;
  
  a generation device for obtaining an access control list corresponding to a content identifier included in the access request and also corresponding to a user identifier of an applicant who transmits the access request, from the plurality of access control lists, and if there are a plurality of obtained access control lists, selecting one access control list from the plurality of obtained access control lists, thereby generating individual license data based on the selected access control list; and
  
  a transmission device transmitting the individual license data to the user terminal.

3. A data processing apparatus for transmitting an access request for a digital content to a license distribution apparatus and receiving license data for accessing the digital content as a response from the license distribution apparatus, comprising:
- a storage device including a plurality of access control lists in which both an access pattern permitted for the digital content and license conditions are described and information designating a selection processing, and storing the license data received from the license distribution apparatus; and
  
  a selection device implementing a selection processing designated by the license data and selecting one access control list from the plurality of access control lists.

4. A computer-readable storage medium storing a program for a computer which distributes to a user terminal a terminal module that is a program for obtaining, using a public key infrastructure, license data for decoding an encrypted digital content, wherein the program directs the computer to perform the following operations:
- encrypting, using the encryption key stored in the storage device, a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate and generating encryption information; and
  
  including a decoding key for decoding the encryption information and decoding the encryption information after being activated on the user terminal, thereby transmitting a terminal module for obtaining both the public key certificate and the information about a private key and the encryption information to the user terminal.

5. A computer-readable storage medium storing a program for a computer which obtains, using a public key infrastructure, license data for decoding an encrypted digital content from a license distribution apparatus, wherein the program directs the computer to perform the following operations:
- decoding encryption information stored in the storage device, using a decoding key included in the program and obtaining both a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate;
  
  obtaining, using the public key certificate, the license data from the license distribution apparatus by performing encryption communications and the information about a private key.

6. A computer-readable storage medium storing a program for a computer which receives an access request for a digital content from a user terminal and distributes license data for accessing the digital content to the user terminal as a response, wherein the program directs the computer to perform the following operations:
- obtaining an access control list corresponding to a content identifier included in the access request and also corresponding to a user identifier of an applicant who transmits the access request from a plurality of access control lists in which a user with access permission, a permitted access pattern and license conditions are described while corresponding to the digital content;
  
  if there are a plurality of obtained access control lists, selecting one access control list from the plurality of obtained access control lists; and
  
  generating individual license data based on the selected access control list.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The medium of claim 6, wherein the program directs the computer to further perform the following operations:
    - comparing a relative distinguished name that represents a part of a distinguished name of a public key certificate and that is described in a license domain subject list of the selected access control list and a distinguished name of a public key certificate possessed by the user terminal; and
      
      distributing the individual license data to the user terminal when a part of a distinguished name of a public key certificate possessed by the user terminal matches the relative distinguished name.
  - 8. The medium of claim 6, wherein the program directs the computer to further perform the following operations:
    - describing an identifier of a public key certificate in the individual license data to be distributed to the user terminal; and
      
      when an identifier described in the individual license data and an identifier stored in a portable storage medium correspond to one another, the user terminal stores the individual license data in the portable storage medium.
  - 9. The medium of claim 6, wherein the program directs the computer to further perform the following operations:
    - storing log data showing a content operation classification that is permitted for the user terminal by the individual license data when the individual license data is transmitted to the user terminal.
  - 10. The medium of claim 6, wherein the individual license data includes a plurality of license conditions and a plurality of decoding keys to access each of a plurality of digital contents.
  - 11. The medium of claim 6, wherein the program directs the computer to further perform the following operations:
    - comparing an authentic method of a user described in the individual license data and an authentic method in which the applicant has been already authenticated, and not-distributing the individual license data to the user terminal in a case where the authentic method described in the individual license data does not match the authenticated authentic method.

12. A computer-readable storage medium storing a program for a computer which transmits an access request for a digital content to a license distribution apparatus and receives an access request for a digital content from a user terminal as a response, wherein the program directs the computer to perform the following operations:
- including a plurality of access control lists in which both an access pattern permitted for the digital content and license conditions are described and also information designating a selection processing, and referring to license data received from the license distribution apparatus and stored in a storage device; and
  
  implementing a selection processing designated by the license data and selecting one access control list from the plurality of access control lists.
- View Dependent Claims (13)
- - 13. The storage medium according to claim 12, wherein the program directs the computer to further perform the following operations:
    - when a user accesses the digital content using the license data, to copy a part of the digital content and to put the copied part on a clipboard encrypting data of the copied part and putting the encrypted data on the clipboard; and
      
      when a person with permission implements a paste operation, decoding data of the copied part and pasting the decoded data.

14. A conveyance signal for conveying a program for a computer which distributes to a user terminal a terminal module that is a program for obtaining, using a public key infrastructure, license data used for decoding an encrypted digital content, wherein the program directs the computer to perform the following operations:
- encrypting a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate, using an encryption key stored in a storage device and generating encryption information; and
  
  including a decoding key for decoding the encryption information and decoding the encryption information after being activated on the user terminal, thereby transmitting a terminal module for obtaining both the public key certificate and the information about a private key, and the encryption information to the user terminal.

15. A conveyance signal for conveying a program for a computer which obtains, using a public key infrastructure, license data used for decoding an encrypted digital content from a license distribution apparatus wherein the program directs the computer to perform the following operations:
- decoding encryption information stored in a storage device, using a decoding key included in the program and obtaining a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for a public key of the public key certificate;
  
  obtaining the license data from the license distribution apparatus by performing encryption communications, using the public key certificate and the information about a private key.

16. A conveyance signal for conveying a program for a computer which receives an access request for a digital content from a user terminal and distributes license data used for accessing the digital content to the user terminal as a response, wherein the program directs the computer to perform the following operations:
- obtaining an access control list corresponding to a content identifier included in the access request and also corresponding to a user identifier of an applicant who transmits the access request from a plurality of access control lists stored in a storage device, in which a user with access permission, a permitted access pattern and license conditions are described while corresponding to the digital content;
  
  if there are a plurality of obtained access control lists, selecting one access control list from the plurality of obtained access control lists; and
  
  generating individual license data based on the selected access control list.

17. A conveyance signal for conveying a program for a computer which transmits an access request for a digital content to a license distribution apparatus and receives license data for accessing the digital content as a response from the license distribution, wherein the program directs the computer to perform the following operations:
- maintaining in a storage device a plurality of access control lists in which an access pattern and license conditions permitted for the digital content are described and information designating a selection method, and referring to license data that is received from the license distribution apparatus; and
  
  implementing a selection process designated by the license data and selecting one access control list from the plurality of access control lists.

18. A data processing method of distributing to a user terminal a terminal module that is a program for obtaining, using a public key infrastructure, license data used for decoding an encrypted digital content, said method comprising:
- encrypting, using an encryption key stored in a storage device, both a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate and generating encryption information; and
  
  including a decoding key for decoding the encryption information and decoding the encryption information after being activated on the user terminal, thereby transmitting to the user terminal a terminal module for obtaining both the public key certificate and the information about a private key and the encryption information.

19. A data processing method for receiving an access request for a digital content from a user terminal and distributing license data used for accessing the digital content to the user terminal as a response, comprising:
- obtaining an access control list corresponding to a content identifier included in the access request and also corresponding to a user identifier of an applicant who transmits the access request from a plurality of access control lists stored in a storage device, in which a user with access permission, a permitted access pattern and license conditions are described while corresponding to the digital content;
  
  if there are a plurality of obtained access control lists, selecting one access control list from the plurality of obtained access control lists; and
  
  generating individual license data based on the selected access control list.

20. A data processing apparatus for distributing to a user terminal a terminal module that is a program of obtaining, using a public key infrastructure, license data for decoding an encrypted digital content, said apparatus comprising:
- a storage device storing an encryption key;
  
  a generation device for encrypting, using the encryption key, a public key certificate necessary for encryption communications based on the public key infrastructure and information about a private key for the public key of the public key certificate and for generating encryption information; and
  
  a transmission device including a decoding key for decoding the encryption information and decoding the encryption information after being activated on the user terminal, and for transmitting a terminal module for obtaining both the public key certificate and the information about a private key and the encryption information to the user terminal.

21. A data processing apparatus for receiving an access request for a digital content from a user terminal and for distributing license data for accessing the digital content to the user terminal as a response, said apparatus comprising:
- a storage device storing a plurality of access control lists in which a user with access permission, a permitted access pattern and license conditions are described while corresponding to the digital content;
  
  a generation device for obtaining an access control list corresponding to a content identifier included in the access request and also corresponding to a user identifier of an applicant who transmits the access request, from the plurality of access control lists, and if there are a plurality of obtained access control lists, selecting one access control list from the plurality of obtained access control lists, thereby generating individual license data based on the selected access control list; and
  
  a transmission device for transmitting the individual license data to the user terminal.

22. A data processing apparatus for transmitting an access request for a digital content to a license distribution apparatus and receiving license data used for accessing the digital content as a response from the license distribution apparatus, said apparatus comprising:
- a storage device including a plurality of access control lists in which both an access pattern permitted for the digital content and license conditions are described and information designating a selection processing, and storing the license data received from the license distribution apparatus; and
  
  a selection device for implementing a selection process designated by the license data and selecting one access control list from the plurality of access control lists.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fujitsu Limited
Original Assignee
Fujitsu Limited
Inventors
Hatakeyama, Takahisa, Tanaka, Keishiro, Nagaoka, Teruyoshi, Yura, Masakazu, Tokutani, Takashi

Granted Patent

US 7,549,172 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/30
CPC Class Codes

H04L 2463/101   applying security measures ...

H04L 63/0442   wherein the sending and rec...

H04L 63/0823   using certificates cryptogr...

H04L 63/101   Access control lists [ACL]

Data processing apparatus for digital copyrights management

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Data processing apparatus for digital copyrights management

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links