DIGITAL RIGHTS MANAGMENET USING ATTRIBUTE-BASED ENCRYPTION
First Claim
1. A data provider (1) for use in a digital rights management system, comprisinga data protector (2) for protecting data (20), using attribute-based encryption, in dependence on an access policy over a plurality of attributes;
- anda license issuer (3) for issuing a license (17) comprising a representation of a set of usage rights (18), wherein the set of usage rights (18) is associated (19) with the data (20), for granting the usage rights (18) in respect of the data (20) to a plurality of entities (10) having attributes satisfying the access policy.
1 Assignment
0 Petitions
Accused Products
Abstract
A data provider (1) for use in a digital rights management system comprises a data protector (2) for protecting data (20), using attribute-based encryption, in dependence on an access policy over a plurality of attributes. A license issuer (3) issues a license (17) comprising a representation of a set of usage rights (18), wherein the set of usage rights (18) is associated (19) with the data (20), for granting the usage rights (18) in respect of the data (20) to a plurality of entities (10) having attributes satisfying the access policy. A data receiver (10) comprises a data access subsystem (11) for accessing data, using attribute-based decryption, in dependence on a decryption key (16) associated with a set of attributes. The data receiver (10) further comprises a usage constraining subsystem (12) for constraining the access to the data (20), based on a license (17) comprising a representation of a set of usage rights (18) associated (19) with the data.
-
Citations
15 Claims
-
1. A data provider (1) for use in a digital rights management system, comprising
a data protector (2) for protecting data (20), using attribute-based encryption, in dependence on an access policy over a plurality of attributes; - and
a license issuer (3) for issuing a license (17) comprising a representation of a set of usage rights (18), wherein the set of usage rights (18) is associated (19) with the data (20), for granting the usage rights (18) in respect of the data (20) to a plurality of entities (10) having attributes satisfying the access policy. - View Dependent Claims (2, 3, 4, 5, 6, 10, 11)
- and
-
7. A data receiver (10) for use in a digital rights management system, comprising
a data access subsystem (11) for accessing data, using attribute-based decryption, in dependence on a decryption key (16) associated with a set of attributes; - and
a usage-constraining subsystem (12) for constraining the access to the data (20), based on a license (17) comprising a representation of a set of usage rights (18) associated (19) with the data. - View Dependent Claims (8, 9, 12)
- and
-
13. A method of providing data for use in a digital rights management system, comprising
protecting (201) data, using attribute-based encryption, in dependence on an access policy over a plurality of attributes; - and
issuing (202) a license comprising a representation of a set of usage rights, wherein the set of usage rights is associated with the data, for granting the usage rights in respect of the data to a plurality of entities having attributes satisfying the access policy. - View Dependent Claims (15)
- and
-
14. A method of receiving data for use in a digital rights management system, comprising
accessing (301) data, using attribute-based decryption, in dependence on a decryption key associated with a set of attributes; - and
constraining (302) the access to at least part of the data, based on a license comprising a representation of a set of usage rights associated with the data.
- and
Specification