Content security layer providing long-term renewable security
First Claim
1. A computer-readable medium comprising:
- (a) encrypted digital video; and
(b) program logic for processing by an interpreter in a playback device, including;
(i) program logic configured to query said playback device to obtain the results of cryptographic computations performed by said playback device, where said cryptographic operations use one or more cryptographic key values unique to said player and not accessible by said program logic;
(ii) program logic configured to determine whether playback is authorized to proceed on said playback device by using said obtained results;
(iii) program logic configured to derive at least one video decryption key to enable playback of said video, if it is it determined that playback is authorized.
6 Assignments
0 Petitions
Accused Products
Abstract
In an exemplary embodiment, digital content is mastered as a combination of encrypted data and data processing operations that enable use in approved playback environments. Player devices having a processing environment compatible with the content'"'"'s data processing operations are able to decrypt and play the content. Players can also provide content with basic functions, such as loading data from media, performing network communications, determining playback environment configuration, controlling decryption/playback, and/or performing cryptographic operations using the player'"'"'s keys. These functions allow the content to implement and enforce its own security policies. If pirates compromise individual players or content titles, new content can be mastered with new security features that block the old attacks. A selective decryption capability can also be provided, enabling on-the-fly watermark insertion so that attacks can be traced back to a particular player. Features to enable migration from legacy formats are also provided.
49 Citations
25 Claims
-
1. A computer-readable medium comprising:
-
(a) encrypted digital video; and
(b) program logic for processing by an interpreter in a playback device, including;
(i) program logic configured to query said playback device to obtain the results of cryptographic computations performed by said playback device, where said cryptographic operations use one or more cryptographic key values unique to said player and not accessible by said program logic;
(ii) program logic configured to determine whether playback is authorized to proceed on said playback device by using said obtained results;
(iii) program logic configured to derive at least one video decryption key to enable playback of said video, if it is it determined that playback is authorized. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A device for playing encrypted digital content, comprising:
-
(a) an input interface usable to input said encrypted digital content and associated program logic;
(b) a memory usable to store inputs read from said interface;
(c) a processor usable to read data from said interface and to store data in said memory;
(d) an interpreter, implemented using software executable on said processor and configured to interpret program logic read from said interface and stored in said memory;
(e) a cryptographic module;
(i) having access to at least one cryptographic key; and
(ii) configured to perform cryptographic processing using said cryptographic key as directed by said program logic, such that said program logic can obtain the results of said cryptographic processing but cannot determine the value of said at least one key; and
(e) an output interface for outputting said digital content. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method for playing encrypted digital video, comprising the steps of:
-
(a) reading data from a medium, where said data incorporates processing instructions combined with encrypted video data;
(b) using an interpreter within a player device, performing said processing instructions;
(c) using a secret key accessible to said player device, cryptographically transforming said data received with said processing instructions, (d) returning the result of (c) to said processing instructions;
(e) using the result of said processing instructions to decrypt said encrypted video data; and
(f) outputting a representation of said decrypted video using an output interface. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A device for playing encrypted digital content, comprising:
-
(a) means for inputting said encrypted digital content and associated program logic from a removable digital medium;
(b) means for storing program logic read from said interface;
(c) means for interpreting said program logic;
(d) means for performing cryptographic processing using a secret key as directed by said program logic, whereby said program logic can obtain the results of said cryptographic processing, but cannot determine the value of said secret key; and
(e) means for outputting said digital content.
-
Specification