Connection linked rights protection

US 20070162979A1
Filed: 11/19/2004
Published: 07/12/2007
Est. Priority Date: 12/04/2003
Status: Active Grant

First Claim

Patent Images

1. A method for performing digital right management in a network, the method comprising the steps of:

storing (251), in a first authorised device (211), a master right associated with a content, which master right controls what type of access the first authorised device has to said associated content;

deriving a subright from the master right, which subright controls what type of access a second authorised device (261) is given to said associated content;

distributing (271) the subright to said second authorised device, given that said second device complies with a predetermined distribution criterion associated with the master right.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention relates to a method and a system for performing digital rights management. The idea of the invention is that a master right associated with a content is stored at a first authorised device (211). An authorised device is a device which can be considered trusted and performs actions with contents according to the associated rights. These devices enforce rights that are bound to contents, and perform the security tasks of the DRM system employed. A subright is derived from the master right, which subright controls what type of access a second authorised device (261) is given to the associated content. Finally, the subright is distributed to the second authorised device, given that the second device complies with predetermined distribution criteria associated with the master right. The device distributing the subright authenticates the device which is to receive the subright, ensuring that the second device can be trusted.

35 Citations

View as Search Results

22 Claims

1. A method for performing digital right management in a network, the method comprising the steps of:
- storing (251), in a first authorised device (211), a master right associated with a content, which master right controls what type of access the first authorised device has to said associated content;
  
  deriving a subright from the master right, which subright controls what type of access a second authorised device (261) is given to said associated content;
  
  distributing (271) the subright to said second authorised device, given that said second device complies with a predetermined distribution criterion associated with the master right.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method according to claim 1, further comprising the step of measuring the distance (381) between the first authorised device (311) and the second authorised device (361), wherein said predetermined distribution criterion is that the distance between the first authorised device and the second authorised device shall be smaller than a maximum distribution distance.
  - 3. The method according to claim 1, further comprising the steps of:
    - measuring the distance (481) between the first authorised device (411) and the second authorised device (461); and
      
      allowing, by means of exercising the subright (462) which has been distributed to said second authorised device, the second authorised device access to the associated content if the distance between the first authorised device and the second authorised device is smaller than a maximum access distance.
  - 4. The method according to claim 1, further comprising the step of revoking (581) the subrights (522, 532, 542, 552, 562) derived from the master right (512) when said master right exits (571) the network (501).
  - 5. The method according to claim 1, wherein the first authorised device (511) and the second authorised device (521, 531, 541, 551, 561) are comprised in an authorised domain (501), and the size of the authorized domain is managed by the master right (512).
  - 6. The method according to claim 5, wherein said first authorised device (511) storing the master right (512) manages the authorised domain (501).
  - 7. The method according to any one of claim 5, wherein said predetermined distribution criterion is that the number of authorised devices (511, 521, 531, 541, 551, 561) or persons which are allowed in the authorised domain (501) shall be smaller than a maximum domain participant number.
  - 8. The method according to claim 1, wherein the control of the type of access that a second authorised device (261) is given to said associated content by a subright, and the predetermined distribution criteria associated with the master right, are set by a service provider (221).
  - 9. The method according to claim 1, wherein the control of the type of access that a second authorised device (261) is given to said associated content by a subright, and the predetermined distribution criteria associated with the master right, are set by the first authorised device (211).
  - 10. The method according to claim 1, wherein a content quality parameter is set in the subright, which parameter decides the quality with which said associated content can be rendered by the second authorised device.
  - 11. The method according to claim 1, wherein the second authorised device (461) further performs the step of:
    - contacting the first authorised device (411) storing the master right (412) before exercising the subright (462).

12. A system for performing digital right management, which system comprises:
- a first authorised device (211);
  
  a master right associated with a content; and
  
  a second authorised device (261);
  
  wherein said first authorised device stores (251) the master right associated with a content, derives a subright from the master right and distributes (271) the subright to said second authorised device (261), given that said second device complies with a predetermined distribution criterion associated with the master right; and
  
  wherein said master right controls what type of access the first authorised device has to said associated content and said subright controls what type of access the second authorised device has to said associated content.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The system according to claim 12, wherein the first authorised device (311) and the second authorised device (361) further comprise means (213, 263) for measuring the distance (381) between the first authorised device and the second authorised device;
    - wherein said predetermined distribution criterion is that the distance between the first authorised device and the second authorised device shall be smaller than a maximum distribution distance.
  - 14. The system according to claim 12, wherein the first authorised device (411) and the second authorised device (461) further comprise:
    - means (213, 263) for measuring the distance (481) between the first authorised device and the second authorised device; and
      
      means for allowing, by means of exercising the subright (462) which has been distributed to said second authorised device, the second authorised device access to the subright, which has been distributed to said second authorised device, and the associated content if the distance between the first authorised device and the second authorised device is smaller than a maximum access distance.
  - 15. The system according to claim 12, further comprising means (213, 263) for revoking the subrights (522, 532, 542, 552, 562) derived from the master right (512) when said master right exits (571) the network (501).
  - 16. The system according to claim 12, wherein the first authorised device (511) and the second authorised device (521, 531, 541, 551, 561) are comprised in an authorised domain (501), and the size of the authorized domain is managed by the master right (512).
  - 17. The system according to claim 16, wherein said first authorised device (511) storing the master right (512) manages the authorised domain (501).
  - 18. The system method according to claim 16, wherein said predetermined distribution criterion is that the number of authorised devices (511, 521, 531, 541, 551, 561) or persons which are allowed in the authorised domain (501) shall be smaller than a maximum domain participant number.
  - 19. The system according to claim 12, wherein the control of the type of access that a second authorised device (261) is given to said associated content by a subright, and the predetermined distribution criteria associated with the master right, are set by a service provider (221).
  - 20. The system according to claim 12, wherein the control of the type of access that a second authorised device (261) is given to said associated content by a subright, and the predetermined distribution criteria associated with the master right, are set by the first authorised device (211).
  - 21. The system according to claim 12, wherein a content quality parameter is set in the subright, which parameter decides the quality with which said associated content can be rendered by the second authorised device.
  - 22. The system according to claim 12, wherein the second authorised device (461) further comprise means (263) for contacting the first authorised device (411) storing the master right (412) before exercising the subright (462).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Koninklijke Philips N.V.
Original Assignee
Koninklijke Philips N.V.
Inventors
Li, Feng, Wei, Gongming, He, Darwin, You, Wenying, Luitjens, Steven, Fontijn, Wilhelmus, Kamperman, Franciscus Lucas, Lokhoff, Gerardus

Granted Patent

US 7,627,903 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/27
CPC Class Codes

G06F 21/1012 to domains

G06F 2221/2111 Location-sensitive, e.g. ge...

Connection linked rights protection

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

35 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Connection linked rights protection

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

35 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links