METHOD OF AUTHENTICATING AND REPRODUCING CONTENT USING PUBLIC BROADCAST ENCRYPTION AND APPARATUS THEREFOR

US 20090016537A1
Filed: 03/14/2008
Published: 01/15/2009
Est. Priority Date: 07/09/2007
Status: Abandoned Application

First Claim

Patent Images

1. A method of authenticating a first device and a second device using public broadcast encryption, the method comprising:

acquiring specific information of the second device from the second device;

transmitting data, containing the acquired specific information of the second device and specific information of the first device, by encrypting the data using a broadcast public key of a group to which the second device belongs; and

determining whether authenticating the first device succeeds by decrypting the encrypted data using a private key of the second device;

wherein, if the authenticating of the first device succeeds;

receiving the specific information of the first device, which is encrypted by a temporary common key generated using the decrypted data; and

authenticating the second device by decrypting the encrypted specific information of the first device using the temporary common key.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Provided are a method and apparatus for mutually authenticating devices in a group and reproducing content using public broadcast encryption. The method of authenticating a first device and a second device includes acquiring specific information of the second device from the second device, transmitting data, containing the acquired specific information of the second device and specific information of the first device, by encrypting the data using a broadcast public key of a group to which the second device belongs, and determining whether authentication of the first device succeeds by decrypting the encrypted data by using a private key of the second device. If authentication succeeds, receiving the specific information of the first device, which is encrypted by using a temporary common key by using the decrypted data, and authenticating the second device by decrypting the encrypted specific information of the first device by using the temporary common key.

26 Citations

View as Search Results

25 Claims

1. A method of authenticating a first device and a second device using public broadcast encryption, the method comprising:
- acquiring specific information of the second device from the second device;
  
  transmitting data, containing the acquired specific information of the second device and specific information of the first device, by encrypting the data using a broadcast public key of a group to which the second device belongs; and
  
  determining whether authenticating the first device succeeds by decrypting the encrypted data using a private key of the second device;
  
  wherein, if the authenticating of the first device succeeds;
  
  receiving the specific information of the first device, which is encrypted by a temporary common key generated using the decrypted data; and
  
  authenticating the second device by decrypting the encrypted specific information of the first device using the temporary common key.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the second device comprises content encrypted by a content encryption key and the content encryption key encrypted by a broadcast public key of a group, to which the first device belongs.
  - 3. The method of claim 2, wherein the temporary common key is generated from a key derivation function (KDF), which has the specific information of the first and second devices as input values.
  - 4. The method of claim 3, wherein the specific information of the first device is a serial number value of the first device or a first random number, and the specific information of the second device is a serial number value of the second device or a second random number.
  - 5. The method of claim 4, wherein the authenticating of the first device succeeds if a serial number value or a random value acquired by decrypting the encrypted data using the private key of the second device matches the serial number value of the second device or the second random value, and wherein the authenticating of the second device succeeds if a serial number value or a random value acquired by decrypting the encrypted specific information of the first device using the temporary common key matches the serial number value of the first device or the first random value.
  - 6. The method of claim 5, wherein the broadcast public key is acquired from a certificate which is acquired from a public directory server or acquired from the first or second device.
  - 7. The method of claim 6, wherein a structure of the certificate follows an X.509 certificate format and subject public key information field included in the certificate comprises subject broadcast public key information.

8. A method of reproducing content using public broadcast encryption, wherein a first device receives the content from a second device, the method comprising:
- acquiring specific information of the second device from the second device, which comprises content, encrypted by a content encryption key, and the content encryption key, encrypted by a broadcast public key of a group to which the first device belongs;
  
  transmitting first data, which contains the acquired specific information of the second device and specific information of the first device, by encrypting the first data by a broadcast public key of a group to which the second device belongs; and
  
  determining whether authenticating the first device succeeds by decrypting the first data by a private key of the second device;
  
  wherein, if the authenticating of the first device succeeds;
  
  receiving second data, which contains the specific information of the first device, re-encrypted by a temporary common key generated using the decrypted first data, and the encrypted content encryption key, and receiving the encrypted content;
  
  authenticating the second device by decrypting the second data by the temporary common key; and
  
  determining whether authenticating of the second device succeeds; and
  
  wherein, if the authenticating of the second device succeeds;
  
  re-decrypting the encrypted content encryption key included in the decrypted second data, by a private key of the first device; and
  
  decrypting the encrypted content using the decrypted content encryption key.
- View Dependent Claims (9, 10, 11, 12, 13, 25)
- - 9. The method of claim 8, wherein the temporary common key is generated from a key derivation function (KDF), which has the specific information of the first and second devices as input values.
  - 10. The method of claim 9, wherein the specific information of the first device is a serial number value of the first device, or a first random number, and the specific information of the second device is a serial number value of the second device or a second random number.
  - 11. The method of claim 10, wherein the authenticating of the first device succeeds if a serial number value or a random value acquired by decrypting the encrypted first data using the private key of the second device matches the serial number value of the second device or the second random value and wherein the authenticating of the second device succeeds if a serial number value or a random value acquired by decrypting the second data using the temporary common key matches the serial number value of the first device or the first random value.
  - 12. The method of claim 11, wherein the broadcast public key is acquired from a certificate which is acquired from a public directory server or acquired from the first or second device.
  - 13. The method of claim 12, wherein a structure of the certificate follows an X.509 certificate format and subject public key information field included in the certificate comprises subject broadcast public key information.
  - 25. A computer readable recording medium having recorded thereon a program for executing by a computer the method of claim 8.

14. An apparatus for authenticating a first device and a second device using public broadcast encryption, the apparatus comprising:
- a receiver which acquires specific information of the second device from the second device;
  
  an encryption unit which encrypts data, containing the acquired specific information of the second device and specific information of the first device, by using a broadcast public key of a group to which the second device belongs; and
  
  a transmitter which transmits the encrypted data,wherein if authenticating of the first device succeeds by decrypting the encrypted data by a private key of the second device, the receiver receives the specific information of the first device encrypted by a temporary common key,wherein the apparatus further comprises;
  
  a decryption unit which decrypts the encrypted specific information of the first device by using the temporary common key generated using the data; and
  
  an authenticator which authenticates the second device based on the decrypted specific information of the first device.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The apparatus of claim 14, wherein the second device comprises content, encrypted by a content encryption key, and the content encryption key, encrypted by a broadcast public key of a group to which the first device belongs.
  - 16. The apparatus of claim 15, wherein the temporary common key is generated from a key derivation function (KDF), which has the specific information of the first and second devices as input values.
  - 17. The apparatus of claim 16, wherein the specific information of the first device is a serial number value of the first device or a first random number, and the specific information of the second device is a serial number value of the second device or a second random number.
  - 18. The apparatus of claim 17, wherein the authenticator succeeds in authenticating the second device if a serial number value or a random value acquired by decrypting the encrypted specific information of the first device using the temporary common key matches the serial number value of the first device or the first random value.
  - 19. The apparatus of claim 18, wherein the broadcast public key is acquired from a public directory server or extracted from a certificate, which is acquired from the first or second device, wherein a structure of the certificate follows an X.509 certificate format.

20. An apparatus for reproducing content using public broadcast encryption, wherein a first device receives the content from a second device, the apparatus comprising:
- a receiver which acquires specific information of the second device from the second device, which comprises content, encrypted by a content encryption key, and the content encryption key, encrypted by a broadcast public key of a group to which the first device belongs;
  
  an encryption unit which encrypts first data, containing the acquired specific information of the second device and specific information of the first device, by using a broadcast public key of a group to which the second device belongs; and
  
  a transmitter which transmits the encrypted first data;
  
  wherein if the authenticating of the first device succeeds by decrypting the encrypted first data by a private key of the second device, the receiver receives second data, which contains the specific information of the first device, re-encrypted by a temporary common key generated using the decrypted first data, and the encrypted content encryption key, and the encrypted content,wherein the apparatus further comprises;
  
  a first decryption unit which decrypts the received second data by using the temporary common key; and
  
  an authenticator which authenticates the second device based on the decrypted specific information of the first device.wherein the first decryption unit comprises;
  
  a second decryption unit which re-decrypts the encrypted content encryption key included in the decrypted second data by using a private key of the first device, if authenticating of the second device succeeds; and
  
  a third decryption unit which decrypts the encrypted content by using the decrypted content encryption key.
- View Dependent Claims (21, 22, 23, 24)
- - 21. The apparatus of claim 20, wherein the temporary common key is generated from a key derivation function (KDF), which has the specific information of the first and second devices as input values.
  - 22. The apparatus of claim 21, wherein the specific information of the first device is a serial number value of the first device, or a first random number, and the specific information of the second device is a serial number value of the second device or a second random number.
  - 23. The apparatus of claim 22, wherein the authenticator succeeds in authenticating the second device if a serial number value or a random value acquired by decrypting the second data using the temporary common key matches the serial number value of the first device or the first random value of the first device.
  - 24. The apparatus of claim 23, wherein the broadcast public key is acquired from a public directory server or extracted from a certificate, which is acquired from the first or second device, wherein a structure of the certificate follows an X.509 certificate format.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
MOON, Ji-young, KIM, Myung-sun, JU, Hak-soo

Application Number

US12/048,656
Publication Number

US 20090016537A1
Time in Patent Office

Days
Field of Search
US Class Current

380/278
CPC Class Codes

H04H 60/15   on receiving information

H04H 60/23   using cryptography, e.g. en...

H04L 2209/601   Broadcast encryption

H04L 9/0825   using asymmetric-key encryp...

H04L 9/3228   One-time or temporary data,...

H04N 21/25816   involving client authentica...

H04N 21/43615   Interfacing a Home Network,...

H04N 21/4367   Establishing a secure commu...

H04N 21/4405   involving video stream decr...

H04N 21/4408   involving video stream encr...

METHOD OF AUTHENTICATING AND REPRODUCING CONTENT USING PUBLIC BROADCAST ENCRYPTION AND APPARATUS THEREFOR

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

26 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD OF AUTHENTICATING AND REPRODUCING CONTENT USING PUBLIC BROADCAST ENCRYPTION AND APPARATUS THEREFOR

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

26 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links