Encryption method and apparatus for use in digital distribution system
First Claim
1. A method to securely distribute media content with associated media information as part of a media package in a media distribution system, the method comprising the steps of:
- a) encrypting the media content prior to distribution and storing it as part of the media package so that it can be decrypted using a program key;
b) encrypting the program key using a first set of local hardware identifiers available on a first digital system and creating local decryption information that is used with the first set of local hardware identifiers to decrypt the encrypted program key;
c) storing the locally encrypted program key and local decryption information in the media package;
d) transferring the media package to an e-PVR in a second digital system with a second set of local hardware identifiers when presentation of the media content is requested by a user;
e) attempting to decrypt the locally encrypted program key using the local decryption information and the second set of local hardware identifiers; and
f) failing to decrypt the locally encrypted program key when first and second set of local identifiers is not the same and the first and second digital system is not the same, and succeeding when the first and second digital system is the same and the first and second hardware identifiers are the same, and when successful presenting the media content.
0 Assignments
0 Petitions
Accused Products
Abstract
A method to securely distribute media content such as Audio or Video with associated media information as part of a media package, in a media distribution system. The media content is encrypted and can be decrypted using a code, process or algorithm called a program key which is further encrypted and stored in the media package as one or both of a service encrypted program key or a locally encrypted program key. When a payment arrangement is not required the program key can be obtained by decrypting the locally encrypted program key, but when a payment arrangement is required, the locally encrypted program key cannot be decrypted or is not present and the service encrypted program key must be decrypted using a decryption message provided by a server after the payment arrangement is made. Media content, the locally encrypted program key and the service encrypted program key are re-encrypted periodically to ensure the security of the media package.
-
Citations
23 Claims
-
1. A method to securely distribute media content with associated media information as part of a media package in a media distribution system, the method comprising the steps of:
-
a) encrypting the media content prior to distribution and storing it as part of the media package so that it can be decrypted using a program key;
b) encrypting the program key using a first set of local hardware identifiers available on a first digital system and creating local decryption information that is used with the first set of local hardware identifiers to decrypt the encrypted program key;
c) storing the locally encrypted program key and local decryption information in the media package;
d) transferring the media package to an e-PVR in a second digital system with a second set of local hardware identifiers when presentation of the media content is requested by a user;
e) attempting to decrypt the locally encrypted program key using the local decryption information and the second set of local hardware identifiers; and
f) failing to decrypt the locally encrypted program key when first and second set of local identifiers is not the same and the first and second digital system is not the same, and succeeding when the first and second digital system is the same and the first and second hardware identifiers are the same, and when successful presenting the media content. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method to ensure the security of a media package which includes a first decryption information used to decrypt a first encrypted portion of media package, when distributed by a media distribution service and received and stored by an e-PVR by using communication with the media distribution system, the method comprising the steps of:
-
a) determining that a threshold has been reached;
b) selecting the first encrypted portion of media package;
c) sending a decryption request message including a least a portion of the media information to the distribution service and receiving a re-encryption message;
d) using the re-encryption message to re-encrypt the first encrypted portion of the media package with a new encryption process, thus creating a second encrypted portion of the media package;
e) storing the second encrypted portion of the media package in the media package on the storage device to replace the first encrypted portion of media package; and
f) replacing first decryption information with a second decryption information needed to decrypt the second encrypted portion of the media package. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A method to securely distribute media content with associated media information as part of a media package in a media distribution system, the method comprising the steps of:
-
a) encrypting the media content prior to distribution and storing it as part of the media package so that it can be decrypted using a program key;
b) encrypting the program key as a service encrypted program key so that the service encrypted program key can only be decrypted using a decryption message from a distribution service and storing the service encrypted program key as part of the media package;
c) receiving the media package by an e-PVR in response to a request by a user for presentation of the media content, the e-PVR being part of a first digital system and storing the media package;
d) decrypting the service encrypted program key revealing the program key and encrypting the program key as a locally encrypted program key so that the locally encrypted program key can only be decrypted by devices that are part of the first digital system and can only be decrypted within the parameters of associated digital rights rules and storing the locally encrypted program key and encrypted digital rights rules as part of the media package;
e) decrypting the locally encrypted program key when the media package is on the first digital system to reveal the program key; and
f) decrypting the service encrypted program key when the media package is on a second digital system to reveal the program key;
g) using the program key to decrypt and present media content. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method to securely distribute media content with associated media information as part of a media package in a media distribution system, the method comprising the steps of:
-
a) encrypting the media content prior to distribution and storing it as part of the media package;
b) creating a program key that is used to decrypt the media content;
c) encrypting the program key to create a service encrypted program key and creating service decryption information that is used with a decryption description to decrypt the encrypted program key, storing the service encrypted program key and service decryption information in the media package;
d) transferring the media package to a first e-PVR in a first digital system with a first set of local hardware identifiers when a user has requested presentation of the media content;
e) sending a decryption request message from the first e-PVR to a distribution service where the decryption request message includes the service decryption information and a payment method and if required, a payment by a user of the first e-PVR and receiving by the first e-PVR a decryption message sent from the distribution service;
f) using the decryption message by the first e-PVR to enable the decryption of the service encrypted program key revealing the program key;
g) encrypting the program key by the first e-PVR using the first set of local hardware identifiers to create a locally encrypted program key and creating local decryption information that is used with the first set of local hardware identifiers to decrypt the locally encrypted program key within the parameters of associated digital rights rules, storing the locally encrypted program key, local decryption information and encrypted digital rights rules in the media package;
h) transferring the media package to a second e-PVR on a second digital system with a second set of hardware identifiers;
i) selecting the media content for presentation by the second e-PVR and attempting to decrypt the locally encrypted program key using the local decryption information and the second set of local hardware identifiers;
j) failing to decrypt the locally encrypted program key when first and second set of local identifiers is not the same and the first and second digital system is not the same, and succeeding when the first and second digital system is the same and the first and second hardware identifiers are the same, and when successful presenting the media content. - View Dependent Claims (21)
-
-
22. A method to secure media content where the media content is recorded by a first e-PVR that is part of a first digital system to allow unlimited use on the first digital system and to prevent use by a second e-PVR that is part of a second digital system consisting of the steps of:
-
a) recording the media content by the first e-PVR and storing it as part of a media package;
b) encrypting the media content and creating a program key comprising at least a portion of decryption information required to decrypt the media content;
c) encrypting the program key so that it can be decrypted only by using information related to the first digital system and storing it in the media package as a local encrypted program key; and
d) transferring media package to another e-PVR in the same local digital system;
e) decrypting the locally encrypted program key to obtain program key using locally available information;
f) using the program key obtained to decrypt media content for presentation. - View Dependent Claims (23)
-
Specification