Systems and methods for secure transaction management and electronic rights protection

US 7,100,199 B2
Filed: 10/28/2003
Issued: 08/29/2006
Est. Priority Date: 02/13/1995
Status: Expired due to Fees

First Claim

Patent Images

1. A method for auditing access to, or other use of, a digital object at a first computer system, the method comprising:

obtaining a request to access or otherwise use the digital object;

granting the request to access or otherwise use the digital object in accordance with one or more rules associated with the digital object;

storing audit information relating to the access or other use of the digital object; and

determining that at least a predefined amount of audit information has been stored, and sending at least part of the stored audit information to another computer system remote from the first computer system.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for secure transaction management and electronic rights protection. Electronic appliances such as computers equipped in accordance with the present invention help to ensure that information is accessed and used only in authorized ways, and maintain the integrity, availability, and/or confidentiality of the information. Such electronic appliances provide a distributed virtual distribution environment (VDE) that may enforce a secure chain of handling and control, for example, to control and/or meter or otherwise monitor use of electronically stored or disseminated information. Such a virtual distribution environment may be used to protect rights of various participants in electronic commerce and other electronic or electronic-facilitated transactions. Distributed and other operating systems, environments and architectures, such as, for example, those using tamper-resistant hardware-based processors, may establish security at each node. These techniques may be used to support an all-electronic information distribution, for example, utilizing the “electronic highway.”

Citations

33 Claims

1. A method for auditing access to, or other use of, a digital object at a first computer system, the method comprising:
- obtaining a request to access or otherwise use the digital object;
  
  granting the request to access or otherwise use the digital object in accordance with one or more rules associated with the digital object;
  
  storing audit information relating to the access or other use of the digital object; and
  
  determining that at least a predefined amount of audit information has been stored, and sending at least part of the stored audit information to another computer system remote from the first computer system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
- - 2. The method of claim 1, in which at least one of the one or more rules includes an indication of a number of times that the digital object is allowed to be accessed or otherwise used.
  - 3. The method of claim 2, further comprising:
    - in response to obtaining the request to access or otherwise use the digital object, determining whether the request could be granted without exceeding the number of times that the digital object is allowed to be accessed or otherwise used.
  - 4. The method of claim 3, in which determining whether the request could be granted without exceeding the number of times that the digital object is allowed to be accessed or otherwise used includes:
    - accessing previously stored audit information, the previously stored audit information containing an indication of a number of times the digital object has been accessed or otherwise used.
  - 5. The method of claim 1, in which storing audit information relating to the access or other use of the digital object comprises creating an audit record containing information relating to the access or other use of the digital object, and storing the audit record in a database containing one or more other audit records, the one or more other audit records containing information relating to one or more other accesses or other uses of the digital object.
  - 6. The method of claim 5, in which determining that at least a predefined amount of audit information has been stored comprises determining that the database contains at least a predefined number of audit records.
  - 7. The method of claim 1, in which storing audit information relating to the access or other use of the digital object comprises creating an audit record containing information relating to the access or other use of the digital object, and storing the audit record in a database containing one or more other audit records, the one or more other audit records containing information relating to one or more other accesses or other uses of the digital object or one or more other digital objects.
  - 8. The method of claim 7, in which determining that at least a predefined amount of audit information has been stored comprises determining that the database contains at least a predefined number of audit records.
  - 9. The method of claim 1, in which storing audit information relating to the access or other use of the digital object comprises creating an audit record containing information relating to the access or other use of the digital object, and storing the audit record.
  - 10. The method of claim 9, in which determining that at least a predefined amount of audit information has been stored comprises determining that at least a predefined number of audit records have been stored.
  - 11. The method of claim 1, in which storing audit information relating to the access or other use of the digital object comprises updating previously stored audit information.
  - 12. The method of claim 11, in which determining that at least a predefined amount of audit information has been stored comprises determining that the previously stored audit information has been updated at least a predefined number of times.
  - 13. The method of claim 11, in which determining that at least a predefined amount of audit information has been stored comprises determining that the stored audit information exceeds a predefined size.
  - 14. The method of claim 1, in which the remote computer system comprises a clearinghouse.
  - 15. The method of claim 1, in which the remote computer system comprises a computer system associated with a creator of the digital object.
  - 16. The method of claim 1, in which the remote computer system Comprises a computer system associated with a distributor of the digital object.
  - 17. The method of claim 1, in which the digital object is encrypted, and in which granting the request to access or otherwise use the digital object comprises decrypting the digital object.
  - 18. The method of claim 1, in which the request to access or otherwise use the digital object comprises a request to open the digital object.
  - 19. The method of claim 1, in which the digital object comprises digitally recorded music, and in which the request to access or otherwise use the digital object comprises a request to play the music through one or more speakers.
  - 20. The method of claim 1, in which the digital object comprises digitally recorded video content, and in which the request to access or otherwise use the digital object comprises a request to play the video content.
  - 21. The method of claim 1, in which the digital object comprises textual content, and in which the request to access or otherwise use the digital object comprises a request to display at least part of the textual content on a computer screen.
  - 22. The method of claim 21, in which the audit information relating to the access or other use of the digital object comprises an indication of a quantity of textual content that was displayed.
  - 23. The method of claim 21, in which the audit information relating to the access or other use of the digital object comprises an indication of a length of time the textual content was displayed.
  - 24. The method of claim 1, in which the digital object comprises textual content, and in which the request to access or otherwise use the digital object comprises a request to print at least part of the textual content.
  - 25. The method of claim 1, further comprising:
    - deleting the stored audit information from the first computer system.
  - 26. The method of claim 1, further comprising:
    - receiving a communication from the remote computer system, the communication being operable to cause at least some functionality at the first computer system to be disabled.
  - 27. The method of claim 26, in which the communication from the remote computer system is sent in response to said remote computer system receiving said at least part of the stored audit information.
  - 28. The method of claim 1, further comprising:
    - receiving a communication from the remote computer system, the communication being operable to disable further use of the digital object at the first computer system.

29. A computer program product embodied on a computer readable medium, the computer program product including instructions that, when executed by a computer system, are operable to cause the computer system to perform actions comprising:
- obtaining a request to access or otherwise use a digital object;
  
  granting the request to access or otherwise use the digital object in accordance with one or more rules associated with the digital object;
  
  storing audit information relating to the access or other use of the digital object; and
  
  determining that at least a predefined amount of audit information has been stored, and sending at least part of the stored audit information to a remote computer system.
- View Dependent Claims (30, 31, 32, 33)
- - 30. The computer program product of claim 29, in which at least one of the one or more rules includes an indication of a number of times that the digital object is allowed to be accessed or otherwise used.
  - 31. The computer program product of claim 30, further including instructions operable to cause the computer system to perform actions comprising:
    - in response to obtaining the request to access or otherwise use the digital object, determining whether the request could be granted without exceeding the number of times that the digital object is allowed to be accessed or otherwise used.
  - 32. The computer program product of claim 31, in which determining whether the request could be granted without exceeding the number of times that the digital object is allowed to be accessed or otherwise used includes:
    - accessing previously stored audit information, the previously stored audit information containing an indication of a number of times the digital object has been accessed or otherwise used.
  - 33. The computer program product of claim 29, further including instructions operable to cause the computer system to perform actions comprising:
    - deleting the stored audit information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Ginter, Karl L., Spahn, Francis J., Shear, Victor H., Van Wie, David M.
Primary Examiner(s)
Darrow, Justin T.

Application Number

US10/696,659
Publication Number

US 20040103305A1
Time in Patent Office

1,036 Days
Field of Search

713/155, 713/165, 713/167, 713/189, 713/193, 713/200, 713/201, 380/230, 380/231, 380/233, 705/44, 705/51, 705/52, 705/53, 705/59, 707/9, 707/10, 709/226
US Class Current

726/4
CPC Class Codes

G06F 21/109   by using specially-adapted ...

G06F 21/16   Program or content traceabi...

G06F 21/31   User authentication

G06F 21/33   using certificates

G06F 21/6209   to a single file or object,...

G06F 21/71   to assure secure computing ...

G06F 21/86   Secure or tamper-resistant ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2135   Metering

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2151   Time stamp

G06Q 10/087   Inventory or stock manageme...

G06Q 20/02   involving a neutral party, ...

G06Q 20/023   the neutral party being a c...

G06Q 20/04   Payment circuits

G06Q 20/085   involving remote charge det...

G06Q 20/10   specially adapted for elect...

G06Q 20/102   Bill distribution or payments

G06Q 20/12   specially adapted for elect...

G06Q 20/123 : Shopping for digital content

G06Q 20/1235 : with control of digital rig...

G06Q 20/14 : specially adapted for billi...

G06Q 20/24 : Credit schemes, i.e. "pay a...

G06Q 20/306 : using TV related infrastruc...

G06Q 20/308 : using the Internet of Things

G06Q 2220/16 : Copy protection or prevention

G06Q 30/0273 : Determination of fees for a...

G06Q 30/0283 : Price estimation or determi...

G06Q 30/06 : Buying, selling or leasing ...

G06Q 30/0601 : Electronic shopping [e-shop...

G06Q 30/0609 : Buyer or seller confidence ...

G06Q 40/02 : Banking, e.g. interest calc...

G06Q 40/04 : Trading; Exchange, e.g. sto...

G06Q 40/12 : Accounting

G06Q 50/184 : Intellectual property manag...

G06Q 50/188 : Electronic negotiation

G06T 1/0021 : Image watermarking

G07F 9/026 : for alarm, monitoring and a...

H04L 2209/56 : Financial cryptography, e.g...

H04L 2209/60 : Digital content management,...

H04L 2463/101 : applying security measures ...

H04L 2463/102 : applying security measure f...

H04L 2463/103 : applying security measure f...

H04L 63/02 : for separating internal fro...

H04L 63/04 : for providing a confidentia...

H04L 63/0428 : wherein the data content is...

H04L 63/0435 : wherein the sending and rec...

H04L 63/0442 : wherein the sending and rec...

H04L 63/08 : for authentication of entit...

H04L 63/0823 : using certificates cryptogr...

H04L 63/083 : using passwords cryptograph...

H04L 63/10 : for controlling access to d...

H04L 63/12 : Applying verification of th...

H04L 63/123 : received data contents, e.g...

H04L 63/16 : Implementing security featu...

H04L 63/168 : above the transport layer

H04L 63/20 : for managing network securi...

H04L 9/006 : involving public key infras...

H04L 9/0819 : Key transport or distributi...

H04L 9/0838 : Key agreement, i.e. key est...

H04L 9/0861 : Generation of secret inform...

H04L 9/3218 : using proof of knowledge, e...

H04L 9/3247 : involving digital signatures

H04L 9/3263 : involving certificates, e.g...

H04N 2005/91364 : the video signal being scra...

H04N 21/2347 : involving video stream encr...

H04N 21/23476 : by partially encrypting, e....

H04N 21/235 : Processing of additional da...

H04N 21/2362 : Generation or processing of...

H04N 21/2541 : Rights Management protectin...

H04N 21/2543 : Billing , e.g. for subscrip...

H04N 21/2547 : Third Party Billing, e.g. b...

H04N 21/25875 : involving end-user authenti...

H04N 21/4143 : embedded in a Personal Comp...

H04N 21/42646 : for reading from or writing...

H04N 21/4325 : by playing back content fro...

H04N 21/4345 : Extraction or processing of...

H04N 21/435 : Processing of additional da...

H04N 21/4405 : involving video stream decr...

H04N 21/44204 : Monitoring of content usage...

H04N 21/443 : OS processes, e.g. booting ...

H04N 21/4627 : Rights management associate...

H04N 21/4753 : for user identification, e....

H04N 21/6581 : Reference data, e.g. a movi...

H04N 21/8166 : involving executable data, ...

H04N 21/835 : Generation of protective da...

H04N 21/8355 : involving usage data, e.g. ...

H04N 21/83555 : using a structured language...

H04N 21/8358 : involving watermark protect...

H04N 5/913 : for scrambling ; for copy p...

H04N 7/162 : Authorising the user termin...

H04N 7/163 : by receiver means only

H04N 7/17309 : Transmission or handling of...

View All

Systems and methods for secure transaction management and electronic rights protection

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

33 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for secure transaction management and electronic rights protection

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

33 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links