Network Security System
First Claim
1. A system for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the system comprising a plurality of operationally connected elements including:
- a content storage medium to store the encrypted content therein;
a decryption input disseminator including;
a secret share distribution module to distribute a plurality of secret shares to the other devices;
a decryption input accumulator including;
a secret share receive module to receive at least some of the secret shares from the other devices; and
a secret reconstruction module to form a content decryption input from the at least some secret shares received by the secret share receive module;
a content decryption module to;
receive the encrypted content from the content storage medium and the content decryption input from the secret reconstruction module; and
decrypt the encrypted content using the content decryption input thereby rendering decrypted content; and
a content consumer to use the decrypted content decrypted by the content decryption module,wherein the secret shares distributed to the other devices are in an encrypted format for at least one of decryption by the consuming device and the other devices.
6 Assignments
0 Petitions
Accused Products
Abstract
A system for restricting access to encrypted content stored in a consuming device (12) which is part of a network (10) including other devices (14), the system including a content storage medium to store the encrypted content, a secret-share distribution module to distribute secret-shares to the other devices (14), a secret-share receive module to receive the secret-shares from the other devices (14), a secret reconstruction module to form a content decryption input from the secret-shares received by the secret-share receive module, a content decryption module to receive the encrypted content from the content storage medium and the content decryption input from the secret reconstruction module and decrypt the encrypted content using the content decryption input thereby rendering decrypted content, and a content consumer to use the decrypted content, wherein the secret shares distributed to the other devices (14) are in an encrypted format for decryption by the consuming device (12) or the other devices (14).
120 Citations
24 Claims
-
1. A system for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the system comprising a plurality of operationally connected elements including:
-
a content storage medium to store the encrypted content therein; a decryption input disseminator including; a secret share distribution module to distribute a plurality of secret shares to the other devices; a decryption input accumulator including; a secret share receive module to receive at least some of the secret shares from the other devices; and a secret reconstruction module to form a content decryption input from the at least some secret shares received by the secret share receive module; a content decryption module to; receive the encrypted content from the content storage medium and the content decryption input from the secret reconstruction module; and decrypt the encrypted content using the content decryption input thereby rendering decrypted content; and a content consumer to use the decrypted content decrypted by the content decryption module, wherein the secret shares distributed to the other devices are in an encrypted format for at least one of decryption by the consuming device and the other devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the system comprising a plurality of operationally connected elements including:
-
a secret share splitting module to split a content decryption input into a plurality of secret shares; a secret share encryption module to encrypt the secret shares thereby rendering encrypted secret shares; and a broadcast module to broadcast;
the encrypted content to the consuming device; and
the encrypted secret shares to at least one of the consuming device and the other devices. - View Dependent Claims (17, 18, 19, 20)
-
-
21. A method for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the method comprising:
-
storing the encrypted content therein; distributing a plurality of secret shares to the other devices; receiving at least some of the secret shares from the other devices; forming a content decryption input from the at least some secret shares; decrypting the encrypted content using the content decryption input thereby rendering decrypted content; and using the decrypted content decrypted, wherein the secret shares distributed to the other devices are in an encrypted format for at least one of decryption by the consuming device and the other devices.
-
-
22. A method for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the method comprising:
-
splitting a content decryption input into a plurality of secret shares; encrypting the secret shares thereby rendering encrypted secret shares; and broadcasting the encrypted secret shares to at least one of the consuming device and the other devices.
-
-
23. A system for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the system comprising a plurality of operationally connected elements including:
-
means for storing the encrypted content therein; means for distributing a plurality of secret shares to the other devices; means for receiving at least some of the secret shares from the other devices; means for forming a content decryption input from the at least some secret shares received by the secret share receive module; means for receiving the encrypted content from the content storage medium and the content decryption input from the secret reconstruction module; means for decrypting the encrypted content using the content decryption input thereby rendering decrypted content; and means for using the decrypted content decrypted by the content decryption module, wherein the secret shares distributed to the other devices are in an encrypted format for at least one of decryption by the consuming device and the other devices.
-
-
24. A system for restricting access to encrypted content stored in a consuming device which is part of a network including other devices, the system comprising a plurality of operationally connected elements including:
-
means for splitting a content decryption input into a plurality of secret shares; means for encrypting the secret shares thereby rendering encrypted secret shares; and means for broadcasting;
the encrypted content to the consuming device; and
the encrypted secret shares to at least one of the consuming device and the other devices.
-
Specification