Systems and methods for secure transaction management and electronic rights protection

US 20090132815A1
Filed: 10/29/2007
Published: 05/21/2009
Est. Priority Date: 02/13/1995
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

sending, via an electronic network, a request for a piece of electronic content to a remote site;

receiving, via the electronic network, first information regarding a first location at which a first portion of the piece of electronic content is located and second information regarding a second location at which a second portion of the piece of electronic content is located;

obtaining, via the electronic network, the first portion from the first location in a first secure electronic container;

obtaining the second portion from the second location in a second secure electronic container; and

using the piece of electronic content in accordance with control information associated therewith.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for secure transaction management and electronic rights protection. Electronic appliances such as computers equipped in accordance with the present invention help to ensure that information is accessed and used only in authorized ways, and maintain the integrity, availability, and/or confidentiality of the information. Such electronic appliances provide a distributed virtual distribution environment (VDE) that may enforce a secure chain of handling and control, for example, to control and/or meter or otherwise monitor use of electronically stored or disseminated information. Such a virtual distribution environment may be used to protect rights of various participants in electronic commerce and other electronic or electronic-facilitated transactions. Distributed and other operating systems, environments and architectures, such as, for example, those using tamper-resistant hardware-based processors, may establish security at each node. These techniques may be used to support an all-electronic information distribution, for example, utilizing the “electronic highway.”

Citations

25 Claims

1. A method comprising:
- sending, via an electronic network, a request for a piece of electronic content to a remote site;
  
  receiving, via the electronic network, first information regarding a first location at which a first portion of the piece of electronic content is located and second information regarding a second location at which a second portion of the piece of electronic content is located;
  
  obtaining, via the electronic network, the first portion from the first location in a first secure electronic container;
  
  obtaining the second portion from the second location in a second secure electronic container; and
  
  using the piece of electronic content in accordance with control information associated therewith.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, further comprising:
    - combining the first portion and the second portion to form the piece of electronic content.
  - 3. The method of claim 2, further comprising:
    - downloading software from the remote site, the software being configured for use in performing the steps of obtaining the first portion, obtaining the second portion, and combining the first portion and the second portion.
  - 4. The method of claim 1, further comprising:
    - connecting to the remote site using browser software;
      
      providing authentication information to the remote site;
      
      browsing a content catalog, the content catalog including a reference to the first piece of electronic content.
  - 5. The method of claim 4, further comprising:
    - sending usage information to the remote site regarding use of the piece of electronic content.

6. A method performed by an electronic appliance, the method comprising:
- receiving a secure electronic container comprising one or more content objects;
  
  separately receiving first electronic control information configured for use in governing access to or other use of the one or more content objects, the first electronic control information comprising second control information specified by a first entity, and third control information specified by a second entity; and
  
  using tamper-resistant hardware and/or software to make use of at least one of the one or more content objects in accordance with the first electronic control information, wherein the tamper-resistant hardware and/or software is resistant to tampering by a user of the electronic appliance.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The method of claim 6, further comprising:
    - receiving fourth electronic control information, the fourth electronic control information configured for use in governing access to or other use of the one or more content objects, the fourth electronic control information being specified by a third entity; and
      
      selecting the first electronic control information over the fourth electronic control information to govern use of the one or more content objects.
  - 8. The method of claim 6, in which the first electronic control information comprises an electronic object including permission information and an encrypted first key, the first key being configured to decrypt at least one of the one or more content objects.
  - 9. The method of claim 8, in which a second key associated with the electronic appliance is configured for use in decrypting the first key.
  - 10. The method of claim 6, in which the second control information comprises information specifying a quantity-based usage limitation, and in which the third control information comprises a time-based usage limitation.

11. A method performed by a first electronic appliance, the method comprising:
- receiving first electronic control information configured for use in governing access to or other use of an electronic content object;
  
  determining that the first electronic control information permits modifications to the first electronic control information to be made;
  
  modifying the first electronic control information to yield second electronic control information; and
  
  sending the second electronic control information to a second electronic appliance, the second electronic appliance comprising tamper-resistant hardware and/or software for enabling use of the electronic content object in accordance with electronic control information, the tamper-resistant hardware and/or software being resistant to tampering by users of the second electronic appliance.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The method of claim 11, in which the first electronic control information comprises an electronic object including an encrypted first key, the first key being configured to decrypt the electronic content object, the method further comprising:
    - decrypting the first key using a second key associated with the first electronic appliance;
      
      encrypting the first key using a third key associated with the second electronic appliance and including the result in the second electronic control information.
  - 13. The method of claim 11, in which the step of determining that the first electronic control information permits modifications to the first electronic control information to be made comprises determining that the first electronic control information requires modifications to the first electronic control information to be made.
  - 14. The method of claim 12, in which the decrypting and encrypting steps are performed using a secure processing unit.
  - 15. The method of claim 11, in which the first control information includes a first limitation relating to usage of the electronic content object, and in which the second control information includes a second, more restrictive limitation relating to usage of the electronic content object.

16. A method performed by an electronic appliance, the method comprising:
- receiving an electronic content object;
  
  receiving electronic control information configured for use in governing access to or other use of the electronic content object, the electronic control information comprising a first key associated with a first auditor and a second key associated with a second auditor, the electronic control information requiring audit information to be collected regarding at least one use of the electronic content object;
  
  making the at least one use of the electronic content object in accordance with the control information;
  
  collecting audit information regarding the at least one use of the electronic content object;
  
  encrypting at least a first portion of the audit information using the first key; and
  
  encrypting at least a second portion of the audit information using the second key;
  
  wherein the electronic appliance comprises tamper-resistant hardware and/or software for governing use of the electronic content object in accordance with control information, the tamper-resistant hardware and/or software being resistant to tampering by users of the electronic appliance.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The method of claim 16, further comprising:
    - sending the encrypted first portion and the encrypted second portion to a first clearinghouse, the first clearinghouse being operable to send the encrypted first portion to the first auditor and the encrypted second portion to the second auditor.
  - 18. The method of claim 16, further comprising:
    - sending the encrypted first portion and the encrypted second portion to the first auditor, the first auditor being operable to send the encrypted second portion to the second auditor.
  - 19. The method of claim 16, further comprising:
    - receiving an acknowledgement that at least the first portion of the audit information was received by the first auditor; and
      
      deleting, compressing, and/or summarizing a copy of the first portion of the audit information.
  - 20. The method of claim 19, further comprising:
    - modifying control information to reflect receipt of the acknowledgement.

21. A method comprising:
- embedding, into an electronic container, a first piece of electronic content and first control information for use in governing access to or other use of the first piece of electronic content, the electronic container comprising at least a second piece of electronic content and second control information for use in governing access to or other use of the second piece of electronic content.
- View Dependent Claims (22, 23, 24, 25)
- - 22. The method of claim 21, further comprising:
    - embedding, into the electronic container, a third piece of electronic content and third control information for use in governing access to or other use of the third piece of electronic content.
  - 23. The method of claim 21, in which the electronic container comprises third control information for use in governing access to or other use of the first piece of electronic content and the second piece of electronic content.
  - 24. The method of claim 21, in which the first control information is configured to limit access to the first piece of electronic content to a first class of users.
  - 25. The method of claim 21, in which the first control information comprises control information associated with viewing the first piece of electronic content and control information associated with editing the first piece of electronic content.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Van Wie, David M., Ginter, Karl L., Spahn, Francis J., Shear, Victor H.

Granted Patent

US 8,006,087 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/164
CPC Class Codes

G06F 21/109   by using specially-adapted ...

G06F 21/16   Program or content traceabi...

G06F 21/31   User authentication

G06F 21/33   using certificates

G06F 21/6209   to a single file or object,...

G06F 21/71   to assure secure computing ...

G06F 21/86   Secure or tamper-resistant ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2135   Metering

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2151   Time stamp

G06Q 10/087   Inventory or stock manageme...

G06Q 20/02   involving a neutral party, ...

G06Q 20/023   the neutral party being a c...

G06Q 20/04   Payment circuits

G06Q 20/085   involving remote charge det...

G06Q 20/10   specially adapted for elect...

G06Q 20/102   Bill distribution or payments

G06Q 20/12   specially adapted for elect...

G06Q 20/123 : Shopping for digital content

G06Q 20/1235 : with control of digital rig...

G06Q 20/14 : specially adapted for billi...

G06Q 20/24 : Credit schemes, i.e. "pay a...

G06Q 20/306 : using TV related infrastruc...

G06Q 20/308 : using the Internet of Things

G06Q 2220/16 : Copy protection or prevention

G06Q 30/0273 : Determination of fees for a...

G06Q 30/0283 : Price estimation or determi...

G06Q 30/06 : Buying, selling or leasing ...

G06Q 30/0601 : Electronic shopping [e-shop...

G06Q 30/0609 : Buyer or seller confidence ...

G06Q 40/02 : Banking, e.g. interest calc...

G06Q 40/04 : Trading; Exchange, e.g. sto...

G06Q 40/12 : Accounting

G06Q 50/184 : Intellectual property manag...

G06Q 50/188 : Electronic negotiation

G06T 1/0021 : Image watermarking

G07F 9/026 : for alarm, monitoring and a...

H04L 2209/56 : Financial cryptography, e.g...

H04L 2209/60 : Digital content management,...

H04L 2463/101 : applying security measures ...

H04L 2463/102 : applying security measure f...

H04L 2463/103 : applying security measure f...

H04L 63/02 : for separating internal fro...

H04L 63/04 : for providing a confidentia...

H04L 63/0428 : wherein the data content is...

H04L 63/0435 : wherein the sending and rec...

H04L 63/0442 : wherein the sending and rec...

H04L 63/08 : for authentication of entit...

H04L 63/0823 : using certificates cryptogr...

H04L 63/083 : using passwords cryptograph...

H04L 63/10 : for controlling access to d...

H04L 63/12 : Applying verification of th...

H04L 63/123 : received data contents, e.g...

H04L 63/16 : Implementing security featu...

H04L 63/168 : above the transport layer

H04L 63/20 : for managing network securi...

H04L 9/006 : involving public key infras...

H04L 9/0819 : Key transport or distributi...

H04L 9/0838 : Key agreement, i.e. key est...

H04L 9/0861 : Generation of secret inform...

H04L 9/3218 : using proof of knowledge, e...

H04L 9/3247 : involving digital signatures

H04L 9/3263 : involving certificates, e.g...

H04N 2005/91364 : the video signal being scra...

H04N 21/2347 : involving video stream encr...

H04N 21/23476 : by partially encrypting, e....

H04N 21/235 : Processing of additional da...

H04N 21/2362 : Generation or processing of...

H04N 21/2541 : Rights Management protectin...

H04N 21/2543 : Billing , e.g. for subscrip...

H04N 21/2547 : Third Party Billing, e.g. b...

H04N 21/25875 : involving end-user authenti...

H04N 21/4143 : embedded in a Personal Comp...

H04N 21/42646 : for reading from or writing...

H04N 21/4325 : by playing back content fro...

H04N 21/4345 : Extraction or processing of...

H04N 21/435 : Processing of additional da...

H04N 21/4405 : involving video stream decr...

H04N 21/44204 : Monitoring of content usage...

H04N 21/443 : OS processes, e.g. booting ...

H04N 21/4627 : Rights management associate...

H04N 21/4753 : for user identification, e....

H04N 21/6581 : Reference data, e.g. a movi...

H04N 21/8166 : involving executable data, ...

H04N 21/835 : Generation of protective da...

H04N 21/8355 : involving usage data, e.g. ...

H04N 21/83555 : using a structured language...

H04N 21/8358 : involving watermark protect...

H04N 5/913 : for scrambling ; for copy p...

H04N 7/162 : Authorising the user termin...

H04N 7/163 : by receiver means only

H04N 7/17309 : Transmission or handling of...

View All

Systems and methods for secure transaction management and electronic rights protection

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for secure transaction management and electronic rights protection

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links