Provisioning a computing system for digital rights management
First Claim
Patent Images
1. A system comprising:
- one or more computer-readable media;
computer-readable instructions on the one or more computer-readable media which, when executed;
provide a digital rights management (DRM) partition which, when created, comprises an empty operating environment that is to be provisioned with DRM software; and
wherein the DRM partition is configured to generate an attestation request to a network-accessible individualization service to initiate a provisioning process in which it receives the DRM software.
2 Assignments
0 Petitions
Accused Products
Abstract
Various embodiments utilize hardware-enforced boundaries to provide various aspects of digital rights management or DRM in an open computing environment. Against the backdrop of these hardware-enforced boundaries, DRM provisioning techniques are employed to provision such things as keys and DRM software code in a secure and robust way. Further, at least some embodiments utilize secure time provisioning techniques to provision time to the computing environment, as well as techniques that provide for tamper-resistant storage.
106 Citations
20 Claims
-
1. A system comprising:
-
one or more computer-readable media; computer-readable instructions on the one or more computer-readable media which, when executed; provide a digital rights management (DRM) partition which, when created, comprises an empty operating environment that is to be provisioned with DRM software; and wherein the DRM partition is configured to generate an attestation request to a network-accessible individualization service to initiate a provisioning process in which it receives the DRM software. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-implemented method comprising:
-
contacting a remote provisioning service that is configured to provision DRM functionality to one or more computing devices; receiving, from the remote provisioning service, encrypted content that is to be used to provision the DRM functionality on a computing device that performed said act of contacting; and using said encrypted content to provision DRM functionality on said computing device. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer implemented method comprising:
-
preparing, using a DRM partition, an attestation request that identifies at least the DRM partition; sending the attestation request to an individualization service that is configured to provision DRM software to the DRM partition; receiving, from the individualization service, an encrypted private key; storing the private key in a gated, hardware key storage; receiving encrypted DRM software from the individualization service; and storing the encrypted DRM software in a local storage. - View Dependent Claims (18, 19, 20)
-
Specification