Secure Content Distribution with Distributed Hardware
First Claim
Patent Images
1. A hardware transcryption unit capable of:
- establishing one or more first secure, authenticated communication channels with a hardware or software entity or entities capable of providing encrypted entertainment content and a signed policy associated with said encrypted entertainment content and governing usage rights of said encrypted entertainment content;
receiving said encrypted entertainment content and said signed policy over said one or more first secure, authenticated communication channels;
decrypting said encrypted entertainment content to provide decrypted entertainment content and verifying that the signed policy has not been tampered with;
establishing a second secure, authenticated communication channel with a hardware graphics unit, hardware audio unit, or hardware device unit;
re-encrypting said decrypted entertainment content such that only said hardware graphics unit, hardware audio unit, or hardware device unit is capable of decrypting the re-encrypted entertainment content; and
providing, over the second secure, authenticated communication channel, said re-encrypted entertainment content to said hardware graphics unit, hardware audio unit, or hardware device unit.
2 Assignments
0 Petitions
Accused Products
Abstract
This document describes tools capable of securely distributing entertainment content among and using distributed hardware. These tools may do so robustly by rebinding entertainment content between distributed hardware units. The tools, for example, may distribute content protection in hardware between a policy unit, a transcryption unit, a graphics processing unit, and a playback unit. By so doing the tools enable, among other things, users to select from many graphics cards rather than rely on the graphics capabilities of an integrated (e.g., SOC) hardware solution.
48 Citations
20 Claims
-
1. A hardware transcryption unit capable of:
-
establishing one or more first secure, authenticated communication channels with a hardware or software entity or entities capable of providing encrypted entertainment content and a signed policy associated with said encrypted entertainment content and governing usage rights of said encrypted entertainment content; receiving said encrypted entertainment content and said signed policy over said one or more first secure, authenticated communication channels; decrypting said encrypted entertainment content to provide decrypted entertainment content and verifying that the signed policy has not been tampered with; establishing a second secure, authenticated communication channel with a hardware graphics unit, hardware audio unit, or hardware device unit; re-encrypting said decrypted entertainment content such that only said hardware graphics unit, hardware audio unit, or hardware device unit is capable of decrypting the re-encrypted entertainment content; and providing, over the second secure, authenticated communication channel, said re-encrypted entertainment content to said hardware graphics unit, hardware audio unit, or hardware device unit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
- 9. A method comprising establishing a secure, authenticated communication channel between distributed hardware units, the distributed hardware units comprising a transcryption unit and a graphics or audio unit effective to enable the transcryption unit to securely provide and the graphics or audio unit to securely receive entertainment content with a hardware-based level of security.
-
18. A hardware graphics card capable of:
-
establishing a first secure, authenticated communication channel with an entity capable of providing entertainment content; receiving encrypted entertainment across the first secure, authenticated communication channel; decrypting the encrypted entertainment content to provide decrypted entertainment content; receiving external data for rendering with the decrypted entertainment content; mixing said decrypted entertainment content with said external data to provide mixed entertainment content and external data; establishing a second secure, authenticated communication channel with a second entity capable of rendering content; and providing said mixed entertainment and external data to the second entity effective to enable said second entity to render the mixed entertainment content and external data. - View Dependent Claims (19, 20)
-
Specification