METHOD AND SYSTEM FOR SECURELY DISTRIBUTING CONTENT
6 Assignments
0 Petitions
Accused Products
Abstract
A system for securely distributing content is provided. A distribution system includes a content server that distributes content to content clients via a communications link or a tangible medium. The distribution system uses passwords to encrypt and decrypt content and to control access to sensitive information stored on the content clients. The distribution system initially receives various passwords from a user and encrypts each password. Some of the encrypted passwords are “identification passwords” and others are “encryption passwords.” The identification passwords are used to control access to sensitive information stored on the content clients, and the encryption passwords are used to encrypt and decrypt content that is distributed to the content clients. The distribution system configures each content client to contain the identification passwords and encryption passwords in a secure folder.
-
Citations
96 Claims
-
1-45. -45. (canceled)
-
46. A method for configuring a computer system to securely launch applications, the method comprising:
configuring, by the distribution system a plurality of client computer systems, wherein the configuring of a client computer system comprises; creating a client-specific password based on at least one of a plurality of identification passwords and at least one persistent attribute of the client computer system; storing a copy of the client-specific password on the client computer system; creating an administrative account on the client computer system, the administrative account being accessible using the client-specific password; storing the plurality of identification passwords and a plurality of encryption keys in a secure folder of the client computer system, the secure folder being accessible via the administrative account; installing on the client computer system a startup application, the startup application programmed to; recreate the client-specific password based on the at least one of the identification passwords stored in the secure folder and the at least one persistent attribute of the client computer system, and launch other applications in the administrative account using the recreated client-specific password, the encryption keys stored in the secure folder being accessible to the other applications; and programming the client computer system so that at initialization of the client computer system the startup application is launched under the administrative account using the stored copy of the client-specific password. - View Dependent Claims (47, 48, 49, 50, 51, 52, 53)
-
54. A tangible computer-readable medium having stored thereon instructions for controlling a computer system to distribute content, the instructions comprising:
-
instructions for creating an administrative account on a content client; instructions for storing encryption keys in a secure folder of the content client, the secure folder being accessible via the administrative account; instructions for installing on the content client a startup application, the startup application programmed to launch a decryption application, the decryption application programmed to decrypt the encryption keys stored in the secure folder and to decrypt encrypted content sent to the content client using at least one of the decrypted encryption keys; and instructions for programming the content client so that at initialization of the content client the startup application is launched under the administrative account. - View Dependent Claims (55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66)
-
-
67. A system including a processor and memory for configuring a computer system to securely launch applications, the system comprising:
-
a password store configured to store identification passwords; a component configured to; create a client-specific password based on at least one of the identification passwords stored in the password store and at least one persistent attribute of the computer system; store a copy of the client-specific password on the computer system; create an administrative account on the computer system, the administrative account being accessible using the client-specific password; store the identification passwords in a secure folder of the computer system, is the secure folder being accessible via the administrative account; install on the computer system a startup application, the startup application programmed to; recreate the client-specific password based on the at least one of the identification passwords stored in the secure folder and the at least one persistent attribute of the computer system, and launch other applications in the administrative account using the recreated client-specific password, wherein data stored in the secure folder is accessible to the other applications; and program the computer system so that at initialization of the computer system the startup application is launched under the administrative account using the stored copy of the client-specific password, wherein the component is implemented as instructions stored in the memory and executed by the processor. - View Dependent Claims (68, 69, 70, 71, 72)
-
-
73. A tangible computer-readable medium having stored thereon instructions for controlling a computer system to distribute content, the instructions comprising:
-
instructions for creating an administrative account on a content client; instructions for storing encryption keys in a secure folder of the content client, the secure folder being accessible via the administrative account; instructions for installing on the content client a decryption application, the decryption application programmed to decrypt encrypted content sent to the content client using at least one of the encryption keys; and instructions for programming the content client so that at initialization of the content client the decryption application is launched under the administrative account. - View Dependent Claims (74, 75, 76, 77, 78, 79, 80, 81, 82, 83)
-
-
84. A client system including a processor and memory, the client system comprising:
-
an administrative account accessible with a client-specific password derived from an identification password and at least one persistent attribute of the client system; a secure folder accessible via the administrative account, the secure folder storing the identification password and a plurality of encryption keys; and a startup application programmed to; recreate the client-specific password based on the identification password stored in the secure folder and the at least one persistent attribute of the client system, and launch a decryption application in the administrative account using the recreated client-specific password, the encryption keys stored in the secure folder being accessible to the decryption application for decrypting content sent to the client system, wherein the client system is configured so that at initialization of the client system the startup application is launched under the administrative account, and wherein the administrative account, the secure folder, and the startup application are implemented as instructions stored in the memory and executed by the processor. - View Dependent Claims (85, 86)
-
-
87. A system for securely distributing content, the system comprising:
-
means for receiving a plurality of encryption keys and a plurality of identification passwords; means for configuring a plurality of content clients, the configuring of a content client comprising; means for creating a client-specific password based on at least one of the identification passwords and at least one persistent attribute of the content client; means for storing a copy of the client-specific password on the content client; means for creating an administrative account on the content client, the administrative account being accessible using the client-specific password; means for storing the identification passwords and the encryption keys in a secure folder of the content client, the secure folder being accessible via the administrative account; means for installing on the content client a startup application, the startup application programmed to; recreate the client-specific password based on the at least one of the identification passwords stored in the secure folder and the at least one persistent attribute of the content client; and launch other applications in the administrative account using the recreated client-specific password, wherein at least one of the launched applications is a decrypt content component, the decrypt content component programmed to decrypt content sent to the content client using at least one of the stored encryption keys; and means for programming the content client so that at initialization of the content client the startup application is launched under the administrative account using the stored copy of the client-specific password. - View Dependent Claims (88, 89, 90, 91, 92, 93, 94, 95, 96)
-
Specification