System and methods for secure transaction management and electronic rights protection

US 20080034227A1
Filed: 08/20/2007
Published: 02/07/2008
Est. Priority Date: 02/13/1995
Status: Active Grant

First Claim

Patent Images

1. A rights management system for controlling the use of electronic content, the system comprising:

an electronic appliance, the electronic appliance comprising;

a secure processing unit, the secure processing unit comprising;

a tamper-resistant housing;

a processor; and

memory, the memory including at least one cryptographic key;

a computer readable medium operatively coupled to the secure processing unit and accessible by users of the electronic appliance, the computer readable medium including;

one or more electronic content items, the electronic content items being encrypted at least in part, and tamper-resistant software for managing the rights of one or more users of the electronic appliance to use the one or more electronic content items in accordance with one or more electronic permissions, the tamper-resistant software being operable to use, at least in part, the secure processing unit and the at least one cryptographic key to enable a user of the electronic appliance to use at least one of the electronic content items in accordance with the one or more electronic permissions;

wherein the tamper-resistant software is operable to impede users of the electronic appliance from circumventing the one or more electronic permissions.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for secure transaction management and electronic rights protection. Electronic appliances such as computers equipped in accordance with the present invention help to ensure that information is accessed and used only in authorized ways, and maintain the integrity, availability, and/or confidentiality of the information. Such electronic appliances provide a distributed virtual distribution environment (VDE) that may enforce a secure chain of handling and control, for example, to control and/or meter or otherwise monitor use of electronically stored or disseminated information. Such a virtual distribution environment may be used to protect rights of various participants in electronic commerce and other electronic or electronic-facilitated transactions. Distributed and other operating systems, environments and architectures, such as, for example, those using tamper-resistant hardware-based processors, may establish security at each node. These techniques may be used to support an all-electronic information distribution, for example, utilizing the “electronic highway.”

Citations

8 Claims

1. A rights management system for controlling the use of electronic content, the system comprising:
- an electronic appliance, the electronic appliance comprising;
  
  a secure processing unit, the secure processing unit comprising;
  
  a tamper-resistant housing;
  
  a processor; and
  
  memory, the memory including at least one cryptographic key;
  
  a computer readable medium operatively coupled to the secure processing unit and accessible by users of the electronic appliance, the computer readable medium including;
  
  one or more electronic content items, the electronic content items being encrypted at least in part, and tamper-resistant software for managing the rights of one or more users of the electronic appliance to use the one or more electronic content items in accordance with one or more electronic permissions, the tamper-resistant software being operable to use, at least in part, the secure processing unit and the at least one cryptographic key to enable a user of the electronic appliance to use at least one of the electronic content items in accordance with the one or more electronic permissions;
  
  wherein the tamper-resistant software is operable to impede users of the electronic appliance from circumventing the one or more electronic permissions.
- View Dependent Claims (2, 3, 4)
- - 2. The rights management system of claim 1, in which at least one of the one or more of the electronic permissions is electronically transmitted to the electronic appliance independently of an electronic content item to which the at least one of the one or more electronic permissions relates.
  - 3. The rights management system of claim 1, further comprising a central processing unit operatively coupled to the secure processing unit.
  - 4. The rights management system of claim 3, in which the secure processing unit is operable to decrypt, at least in part, the at least one content item.

5. A secure processing unit, the secure processing unit comprising:
- non-volatile memory, the non-volatile memory including at least one cryptographic key for use, at least in part, in decrypting a piece of electronic content in accordance with rules associated with the piece of electronic content;
  
  a processor; and
  
  a tamper-resistant housing, the tamper-resistant housing being operable to impede unauthorized access to the cryptographic key.
- View Dependent Claims (6, 7)
- - 6. The secure processing unit of claim 5, in which the non-volatile memory further includes at least one of said rules.
  - 7. The secure processing unit of claim 6, in which the non-volatile memory further includes programming for decrypting the piece of electronic content using the at least one cryptographic key.

8. A method comprising:
- receiving, at an electronic appliance, an electronic content item, the electronic content item being encrypted at least in part;
  
  storing the electronic content item in memory of the electronic appliance;
  
  receiving, at the electronic appliance, a rule specifying one or more permitted uses of the electronic content item;
  
  receiving, at the electronic appliance, a request to use the electronic content item;
  
  determining that the requested use of the electronic content item corresponds to a permitted use of the electronic content item specified in the rule; and
  
  using, at least in part, a decryption key to decrypt the electronic content item, the decryption key being stored in a secure processing unit contained in the electronic appliance.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Van Wie, David, Ginter, Karl, Spahn, Francis, Shear, Victor

Granted Patent

US 8,191,158 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/194
CPC Class Codes

G06F 12/1408   by using cryptography for d...

G06F 21/109   by using specially-adapted ...

G06F 21/16   Program or content traceabi...

G06F 21/31   User authentication

G06F 21/33   using certificates

G06F 21/86   Secure or tamper-resistant ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2115   Third party

G06F 2221/2135   Metering

G06F 2221/2151   Time stamp

G06Q 20/02   involving a neutral party, ...

G06Q 20/023   the neutral party being a c...

G06Q 20/04   Payment circuits

G06Q 20/12   specially adapted for elect...

G06Q 20/1235   with control of digital rig...

G06Q 20/24   Credit schemes, i.e. "pay a...

G06T 1/0021   Image watermarking

G07F 9/026   for alarm, monitoring and a...

H04L 2463/101   applying security measures ...

H04L 2463/102 : applying security measure f...

H04L 2463/103 : applying security measure f...

H04L 63/20 : for managing network securi...

H04N 21/2347 : involving video stream encr...

H04N 21/23476 : by partially encrypting, e....

H04N 21/235 : Processing of additional da...

H04N 21/2362 : Generation or processing of...

H04N 21/2541 : Rights Management protectin...

H04N 21/2543 : Billing , e.g. for subscrip...

H04N 21/2547 : Third Party Billing, e.g. b...

H04N 21/25875 : involving end-user authenti...

H04N 21/4143 : embedded in a Personal Comp...

H04N 21/4345 : Extraction or processing of...

H04N 21/435 : Processing of additional da...

H04N 21/4405 : involving video stream decr...

H04N 21/44204 : Monitoring of content usage...

H04N 21/443 : OS processes, e.g. booting ...

H04N 21/4627 : Rights management associate...

H04N 21/4753 : for user identification, e....

H04N 21/6581 : Reference data, e.g. a movi...

H04N 21/8166 : involving executable data, ...

H04N 21/835 : Generation of protective da...

H04N 21/8355 : involving usage data, e.g. ...

H04N 21/83555 : using a structured language...

H04N 21/8358 : involving watermark protect...

H04N 7/162 : Authorising the user termin...

H04N 7/17309 : Transmission or handling of...

View All

System and methods for secure transaction management and electronic rights protection

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

8 Claims

Specification

Solutions

Use Cases

Quick Links

System and methods for secure transaction management and electronic rights protection

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

8 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links