Systems and methods for conditional access and digital rights management

US 20070294170A1
Filed: 06/02/2006
Published: 12/20/2007
Est. Priority Date: 06/02/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for encrypting digital media at a first location, the method comprising:

generating a first encrypted digital media content by performing encryption of a digital media content with a first encryption key according to a first encryption scheme;

generating a second encrypted digital media content by performing encryption of said first encrypted digital media content with a second encryption key according to a second encryption scheme;

generating a first encrypted message, said first encrypted message comprising said first encryption key encrypted with a third encryption key; and

generating a second encrypted message, said second encrypted message comprising said second encryption key encrypted with said third encryption key.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Conditional access (CA) and digital rights management (DRM) in digital media delivery, processing, and storage systems. Methods and apparatuses are provided for managing digital rights under the protection of multiple CA and/or DRM systems. Some embodiments provide secure and robust methods for bridging multiple DRM systems in the digital media content distribution and playback systems. The present invention simplifies content delivery, conditional access, and digital rights management.

125 Citations

View as Search Results

48 Claims

1. A method for encrypting digital media at a first location, the method comprising:
- generating a first encrypted digital media content by performing encryption of a digital media content with a first encryption key according to a first encryption scheme;
  
  generating a second encrypted digital media content by performing encryption of said first encrypted digital media content with a second encryption key according to a second encryption scheme;
  
  generating a first encrypted message, said first encrypted message comprising said first encryption key encrypted with a third encryption key; and
  
  generating a second encrypted message, said second encrypted message comprising said second encryption key encrypted with said third encryption key.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein:
    - said first encryption scheme is different from said second encryption scheme.
  - 3. The method of claim 1, wherein:
    - said first encryption scheme comprises at least one of the following encryption algorithms;
      
      (a) DES, (b) 3DES, (c) AES, (d) M2, (e) M6, or (f) DVB-CSA; and
      
      said second encryption scheme comprises at least one of the following encryption algorithms;
      
      (a) DES, (b) 3DES, (c) AES, (d) M2, (e) M6, or (f) DVB-CSA.
  - 4. The method of claim 1, wherein:
    - said first encryption key is associated with a first digital rights management system;
      
      said second encryption key is associated with a second digital rights management system; and
      
      said third encryption key is associated with said second digital rights management system.
  - 5. The method of claim 4, wherein:
    - said first encryption key is a first control word associated with said first digital rights management system;
      
      said second encryption key is a second control word associated with said second digital rights management system; and
      
      said third encryption key is a service key associated with said second digital rights management system.
  - 6. The method of claim 1, the method further comprising:
    - sending to a second location said second encrypted digital media content.
  - 7. The method of claim 6, the method further comprising:
    - sending to said second location, in response to a request from said second location, said first encrypted message and said second encrypted message.

8. A method, to be used in a bridge between a first digital rights management system and a second digital rights management system, the method comprising:
- receiving a scrambled digital media content, said scrambled digital media content being encrypted with a first control word and a second control word;
  
  receiving a first encrypted message, said first encrypted message comprising said second control word encrypted with a first service key associated with the first digital rights management system; and
  
  generating a second encrypted message, said second encrypted message comprising said second control word encrypted with a second service key associated with the second digital rights management system.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, wherein:
    - said scrambled digital media content comprises data encrypted with said first control word, wherein said data is generated by encrypting a digital media content with said second control word.
  - 10. The method of claim 8, wherein said generating comprises:
    - decrypting said first encrypted message using said first service key; and
      
      generating said second encrypted message by encrypting said second control word with the second service key.
  - 11. The method of claim 8, the method further comprising:
    - receiving the first service key from the first digital rights management system; and
      
      obtaining the second service key for the second digital rights management system.
  - 12. The method of claim 11, wherein:
    - said obtaining is performed by receiving at the bridge the second service key through a communication medium.
  - 13. The method of claim 11, wherein:
    - said obtaining is performed by generating at the bridge the second service key.
  - 14. The method of claim 8, the method further comprising:
    - performing at least one of;
      
      (a) sending said scrambled digital media content and said second encrypted message;
      
      or(b) storing said scrambled digital media content and said second encrypted message.

15. A method, to be used in a digital rights management system, for decrypting an encrypted digital media, the method comprising:
- receiving an encrypted digital media content, the encrypted digital media content comprising encrypted data, said encrypted data being encrypted with a first encryption key according to a first encryption scheme, wherein said encrypted data is created by encrypting a digital media content with a second encryption key according to a second encryption scheme;
  
  receiving a first encrypted message, said first encrypted message comprising a first decryption key encrypted with a third encryption key, said first decryption key corresponding to said first encryption key;
  
  receiving a third decryption key corresponding to said third encryption key;
  
  generating the first decryption key by decrypting said first encrypted message using said third decryption key; and
  
  performing decryption of said encrypted digital media content using at least said first decryption key.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
- - 16. The method of claim 15, wherein:
    - said first encryption scheme is different from said second encryption scheme.
  - 17. The method of claim 15, wherein:
    - said first decryption key is substantially the same as said first encryption key, and said third decryption key is substantially the same as said third encryption key.
  - 18. The method of claim 15, further comprising:
    - receiving a second encrypted message, said second encrypted message comprising a second decryption key encrypted with said third encryption key, said second decryption key corresponding to said second encryption key;
      
      generating the second decryption key by decrypting said second encrypted message using said third decryption key; and
      
      performing decryption of said encrypted data using at least said second decryption key.
  - 19. The method of claim 15, further comprising:
    - receiving a second encrypted message, said second encrypted message comprising a second decryption key encrypted with said third encryption key, said second decryption key corresponding to said second encryption key;
      
      decrypting said second encrypted message using said third decryption key;
      
      obtaining a fourth encryption key; and
      
      encrypting said second decryption key with said fourth encryption key.
  - 20. The method of claim 19, wherein:
    - said obtaining is performed by receiving said fourth encryption key through a communication medium.
  - 21. The method of claim 19, wherein:
    - said obtaining is performed by generating said fourth encryption key.
  - 22. The method of claim 15, further comprising:
    - receiving a third encrypted message, said third encrypted message comprising a second decryption key encrypted with a fourth encryption key, said second decryption key corresponding to said second encryption key;
      
      receiving a fourth decryption key corresponding to said fourth encryption key;
      
      generating the second decryption key by decrypting said third encrypted message using said fourth decryption key; and
      
      performing decryption of said encrypted data using at least said second decryption key.

23. An apparatus for encrypting digital media, the apparatus comprising:
- a processor;
  
  a memory coupled with said processor, said memory having contained therein sequences of instructions which, when executed by said processor, cause said processor to perform;
  
  generating a first encrypted digital media content by performing encryption of a digital media content with a first encryption key;
  
  generating a second encrypted digital media content by performing encryption of said first encrypted digital media content with a second encryption key;
  
  generating a first encrypted message, said first encrypted message comprising said first encryption key encrypted with a third encryption key; and
  
  generating a second encrypted message, said second encrypted message comprising said second encryption key encrypted with said third encryption key.
- View Dependent Claims (24, 25)
- - 24. The apparatus of claim 23, wherein:
    - said first encryption scheme is different from said second encryption scheme.
  - 25. The apparatus of claim 23, wherein:
    - said first encryption key is a first control word associated with a first digital rights management system;
      
      said second encryption key is a second control word associated with a second digital rights management system; and
      
      said third encryption key is a service key associated with said second digital rights management system.

26. An apparatus, to be used in a bridge between a first digital rights management system and a second digital right management system, the apparatus comprising:
- a processor;
  
  a memory coupled with said processor, said memory having contained therein sequences of instructions which, when executed by said processor, cause said processor to perform;
  
  receiving a scrambled digital media content, said scrambled digital media content being encrypted with a first control word and a second control word;
  
  receiving a first encrypted message, said first encrypted message comprising said second control word encrypted with a first service key associated with the first digital rights management system; and
  
  generating a second encrypted message, said second encrypted message comprising said second control word encrypted with a second service key associated with the second digital rights management system.
- View Dependent Claims (27, 28)
- - 27. The apparatus of claim 26, wherein:
    - said scrambled digital media content comprises data encrypted with said first control word, wherein said data is generated by encrypting a digital media content with said second control word.
  - 28. The apparatus of claim 26, wherein said generating comprises:
    - decrypting said first encrypted message using said first service key; and
      
      generating said second encrypted message by encrypting said second control word with the second service key.

29. An apparatus, to be used in a digital rights management system, for decrypting an encrypted digital media, the apparatus comprising:
- a processor;
  
  a memory coupled with said processor, said memory having contained therein sequences of instructions which, when executed by said processor, cause said processor to perform a method, the method comprising;
  
  receiving an encrypted digital media content, the encrypted digital media content comprising encrypted data, said encrypted data being encrypted with a first encryption key according to a first encryption scheme, wherein said encrypted data is created by encrypting a digital media content with a second encryption key according to a second encryption scheme;
  
  receiving a first encrypted message, said first encrypted message comprising a first decryption key encrypted with a third encryption key, said first decryption key corresponding to said first encryption key;
  
  receiving a third decryption key corresponding to said third encryption key;
  
  generating the first decryption key by decrypting said first encrypted message using said third decryption key; and
  
  performing decryption of said encrypted digital media content using at least said first decryption key.
- View Dependent Claims (30, 31, 32, 33, 34)
- - 30. The apparatus of claim 29, wherein the method further comprising:
    - receiving a second encrypted message, said second encrypted message comprising a second decryption key encrypted with said third encryption key, said second decryption key corresponding to said second encryption key;
      
      generating the second decryption key by decrypting said second encrypted message using said third decryption key; and
      
      performing decryption of said encrypted data using at least said second decryption key.
  - 31. The apparatus of claim 29, wherein the method further comprising:
    - receiving a second encrypted message, said second encrypted message comprising a second decryption key encrypted with said third encryption key, said second decryption key corresponding to said second encryption key;
      
      decrypting said second encrypted message using said third decryption key;
      
      obtaining a fourth encryption key; and
      
      encrypting said second decryption key with said fourth encryption key.
  - 32. The method of claim 31, wherein:
    - said obtaining is performed by receiving said fourth encryption key through a communication medium.
  - 33. The method of claim 31, wherein:
    - said obtaining is performed by generating said fourth encryption key.
  - 34. The apparatus of claim 29, wherein the method further comprising:
    - receiving a third encrypted message, said third encrypted message comprising a second decryption key encrypted with a fourth encryption key, said second decryption key corresponding to said second encryption key;
      
      receiving a fourth decryption key corresponding to said fourth encryption key;
      
      generating the second decryption key by decrypting said third encrypted message using said fourth decryption key; and
      
      performing decryption of said encrypted data using at least said second decryption key.

35. A machine readable medium, the machine readable medium containing machine executable program instructions for encrypting digital media which, when executed by a data processing system, causes the data processing system to perform a method comprising:
- generating a first encrypted digital media content by performing encryption of a digital media content with a first encryption key;
  
  generating a second encrypted digital media content by performing encryption of said first encrypted digital media content with a second encryption key;
  
  generating a first encrypted message, said first encrypted message comprising said first encryption key encrypted with a third encryption key; and
  
  generating a second encrypted message, said second encrypted message comprising said second encryption key encrypted with said third encryption key.
- View Dependent Claims (36, 37)
- - 36. The machine readable medium of claim 35, wherein:
    - said first encryption scheme is different from said second encryption scheme.
  - 37. The machine readable medium of claim 35, wherein:
    - said first encryption key is a first control word associated with a first digital rights management system;
      
      said second encryption key is a second control word associated with a second digital rights management system; and
      
      said third encryption key is a service key associated with said second digital rights management system.

38. A machine readable medium containing machine executable program instructions which, when executed by a data processing system, cause the data processing system to perform a method, the method to be used in a bridge between a first digital rights management system and a second digital right management system, the method comprising:
- receiving a scrambled digital media content, said scrambled digital media content being encrypted with a first control word and a second control word;
  
  receiving a first encrypted message, said first encrypted message comprising said second control word encrypted with a first service key associated with the first digital rights management system; and
  
  generating a second encrypted message, said second encrypted message comprising said second control word encrypted with a second service key associated with the second digital rights management system.
- View Dependent Claims (39, 40, 41)
- - 39. The machine readable medium of claim 38, wherein:
    - said scrambled digital media content comprises data encrypted with said first control word, wherein said data is generated by encrypting a digital media content with said second control word.
  - 40. The machine readable medium of claim 38, wherein said generating comprises:
    - decrypting said first encrypted message using said first service key; and
      
      generating said second encrypted message by encrypting said second control word with the second service key.
  - 41. The machine readable medium of claim 38, wherein:
    - the machine executable program instructions are obfuscated.

42. A machine readable medium containing machine executable program instructions which, when executed by a data processing system, cause the data processing system to perform a method, the method to be used in a digital rights management system, for decrypting an encrypted digital media, the method performing:
- receiving an encrypted digital media content, the encrypted digital media content comprising encrypted data, said encrypted data being encrypted with a first encryption key according to a first encryption scheme, wherein said encrypted data is created by encrypting a digital media content with a second encryption key according to a second encryption scheme;
  
  receiving a first encrypted message, said first encrypted message comprising a first decryption key encrypted with a third encryption key, said first decryption key corresponding to said first encryption key;
  
  receiving a third decryption key corresponding to said third encryption key;
  
  generating the first decryption key by decrypting said first encrypted message using said third decryption key; and
  
  performing decryption of said encrypted digital media content using at least said first decryption key.
- View Dependent Claims (43, 44, 45, 46, 47, 48)
- - 43. The machine readable medium of claim 42, wherein the method further comprising:
    - receiving a second encrypted message, said second encrypted message comprising a second decryption key encrypted with said third encryption key, said second decryption key corresponding to said second encryption key;
      
      generating the second decryption key by decrypting said second encrypted message using said third decryption key; and
      
      performing decryption of said encrypted data using at least said second decryption key.
  - 44. The machine readable medium of claim 42, wherein the method further comprising:
    - receiving a second encrypted message, said second encrypted message comprising a second decryption key encrypted with said third encryption key, said second decryption key corresponding to said second encryption key;
      
      decrypting said second encrypted message using said third decryption key;
      
      obtaining a fourth encryption key; and
      
      encrypting said second decryption key with said fourth encryption key.
  - 45. The method of claim 44, wherein:
    - said obtaining is performed by receiving said fourth encryption key through a communication medium.
  - 46. The method of claim 44, wherein:
    - said obtaining is performed by generating said fourth encryption key.
  - 47. The machine readable medium of claim 42, wherein the method further comprising:
    - receiving a third encrypted message, said third encrypted message comprising a second decryption key encrypted with a fourth encryption key, said second decryption key corresponding to said second encryption key;
      
      receiving a fourth decryption key corresponding to said fourth encryption key;
      
      generating the second decryption key by decrypting said third encrypted message using said fourth decryption key; and
      
      performing decryption of said encrypted data using at least said second decryption key.
  - 48. The machine readable medium of claim 42, wherein:
    - the machine executable program instructions are obfuscated.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Digital Keystone Incorporated
Original Assignee
Digital Keystone Incorporated
Inventors
Vantalon, Luc, Siccardo, Paolo L.

Application Number

US11/446,427
Publication Number

US 20070294170A1
Time in Patent Office

Days
Field of Search
US Class Current

705/50
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/6236   between heterogeneous systems

G06F 2221/2105   Dual mode as a secondary as...

H04N 2005/91364   the video signal being scra...

H04N 21/4623   Processing of entitlement m...

H04N 21/4627   Rights management associate...

H04N 5/913   for scrambling ; for copy p...

H04N 7/163   by receiver means only

Systems and methods for conditional access and digital rights management

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

125 Citations

48 Claims

Specification

Use Cases

Quick Links

Others

Systems and methods for conditional access and digital rights management

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

125 Citations

48 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others