Method and apparatus for securely distributing large digital video/data files with optimum security

US 7,209,559 B2
Filed: 04/29/2003
Issued: 04/24/2007
Est. Priority Date: 04/29/2002
Status: Active Grant

First Claim

Patent Images

1. A method for securely distributing a digital copy of a motion picture film from a Film Source Entity (FSE) to a Digital Cinema Theater (DCT) through a distribution center, comprising:

(a) generating a studio token at the distribution center, wherein the studio token comprises information utilized to generate a first key;

(b) distributing the studio token from the distribution center to the FSE, wherein;

(i) the studio token is unique for the FSE and cannot be used by another entity for decryption purposes;

(ii) the first key is generated at the FSE using a random number generated by a first random number generator and the studio token; and

(iii) the first key is used, by the FSE, to encrypt the digital copy of the motion picture film;

(c) generating a theater token at the distribution center, wherein;

(i) the theater token comprises information utilized by the DCT to generate a second key; and

(ii) the second key is used by the DCT to decrypt the digital copy of the motion picture film encrypted using the first key;

(d) distributing the theater token from the distribution center to the DCT;

(e) accepting a data file at the distribution center from the FSE, wherein the data file comprises;

(i) the digital copy of the motion picture film that has been encrypted according to the first key;

(ii) an authorization header generated at the FSE, wherein the authorization header provides information utilized to generate the second key;

(f) encrypting the data file at the distribution center according to a third key and adding a new header to the encrypted data file; and

(g) distributing the further encrypted data file from the distribution center to the DCT, wherein the DCT generates the second key using the theater token and the random number generated by a second random number generator using information provided by the authorization header.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, apparatus, and article of manufacture provide the ability to securely distribute digital media content from a first entity to a second entity through an intermediate entity. A studio token, comprising information utilized to generate a first key, is generated and distributed to the first entity. A theater token, comprising information utilized to generate a second key, is also generated and then distributed to the second entity. A data file is accepted from the first entity. The data file comprises the media content encrypted according to the first key generated from the studio token, and an authorization header that provides information utilized to generate the second key. The data file is further encrypted according to a third key wherein such further encryption comprises adding a new header to the encrypted media content. The encrypted data file is then distributed to the second entity.

Citations

22 Claims

1. A method for securely distributing a digital copy of a motion picture film from a Film Source Entity (FSE) to a Digital Cinema Theater (DCT) through a distribution center, comprising:
- (a) generating a studio token at the distribution center, wherein the studio token comprises information utilized to generate a first key;
  
  (b) distributing the studio token from the distribution center to the FSE, wherein;
  
  (i) the studio token is unique for the FSE and cannot be used by another entity for decryption purposes;
  
  (ii) the first key is generated at the FSE using a random number generated by a first random number generator and the studio token; and
  
  (iii) the first key is used, by the FSE, to encrypt the digital copy of the motion picture film;
  
  (c) generating a theater token at the distribution center, wherein;
  
  (i) the theater token comprises information utilized by the DCT to generate a second key; and
  
  (ii) the second key is used by the DCT to decrypt the digital copy of the motion picture film encrypted using the first key;
  
  (d) distributing the theater token from the distribution center to the DCT;
  
  (e) accepting a data file at the distribution center from the FSE, wherein the data file comprises;
  
  (i) the digital copy of the motion picture film that has been encrypted according to the first key;
  
  (ii) an authorization header generated at the FSE, wherein the authorization header provides information utilized to generate the second key;
  
  (f) encrypting the data file at the distribution center according to a third key and adding a new header to the encrypted data file; and
  
  (g) distributing the further encrypted data file from the distribution center to the DCT, wherein the DCT generates the second key using the theater token and the random number generated by a second random number generator using information provided by the authorization header.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein the studio token further comprises:
    - credentials;
      
      a name of the digital copy of the motion picture film; and
      
      expiration data.
  - 3. The method of claim 1, wherein the first key is a constructive key management (CKM) key.
  - 4. The method of claim 1, wherein the second key is a constructive key management (CKM) key.
  - 5. The method of claim 1, wherein the studio token further comprises information authorizing the FSE to generate the first key.
  - 6. The method of claim 1, wherein the theater token further comprises information authorizing the DCT to generate the second key.
  - 7. The method of claim 1, further comprising a dongle at the second entity authenticating a user.
  - 8. The method of claim 1, wherein the studio token is distributed to the FSE on a disk.
  - 9. The method of claim 1, wherein the first key is discarded subsequent to encrypting the digital copy of the motion picture film, and the second key is discarded subsequent to decrypting the digital copy of the motion picture film.
  - 10. The method of claim 1, wherein the new header masks information regarding the digital copy of motion picture film, the FSE, and the DCT.
  - 11. The method of claim 1, wherein the first key and second key are generated at a first location of the FSE and a second location of the DCT.

12. A system for securely distributing a digital copy of a motion picture film from a Film Source Entity (FSE) to a Digital Cinema Theater (DCT) through a distribution center, the system comprising:
- (a) a studio token, wherein;
  
  (i) the studio token is generated at the distribution center and comprises information utilized to generate a first key at the FSE; and
  
  (ii) the studio token is unique for the FSE and cannot be used by another entity for decryption purposes;
  
  (b) a theater token, wherein the theater token is generated at the distribution center and comprises information utilized to generate a second key at the DCT;
  
  (c) a data file comprising;
  
  (i) the digital copy of the motion picture film that has been encrypted, by the FSE, according to the first key generated from a random number generated using a first random number generator and the studio token;
  
  (ii) an authorization header, wherein the authorization header was generated at the FSE and provides information utilized to generate the second key;
  
  (d) the distribution center configured to;
  
  (i) distribute the studio token to the FSE;
  
  (ii) distribute the theater token to the DCT;
  
  (iii) accept a data file from the FSE(iv) further encrypt the data file according to a third key and add a new header to the encrypted data file; and
  
  (v) distribute the encrypted data file to the DCT; and
  
  (e) the DCT configured to;
  
  (i) generate the second key using the theater token and the random number generated by a second random number generator using information provided by the authorization header; and
  
  (ii) decrypt the digital copy of the motion picture film using the generated second key.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The system of claim 12, wherein the studio token further comprises:
    - credentials;
      
      a name of the digital copy of the motion picture film; and
      
      expiration data.
  - 14. The system of claim 12, wherein the first key is a constructive key management (CKM) key.
  - 15. The system of claim 12, wherein the second key is a constructive key management (CKM) key.
  - 16. The system of claim 12, wherein the studio token further comprises information authorizing the FSE to generate the first key.
  - 17. The system of claim 12, wherein the theater token further comprises information authorizing the DCT to generate the second key.
  - 18. The system of claim 12, further comprising the DCT configured to authenticate a user utilizing a dongle.
  - 19. The system of claim 12, wherein the studio token is distributed to the FSE on a disk.
  - 20. The system of claim 12, wherein the first key is discarded subsequent to encrypting the digital copy of the motion picture film, and the second key is discarded subsequent to decrypting the digital copy of the motion picture film.
  - 21. The system of claim 12, wherein the new header masks information regarding the digital copy of the motion picture film, the FSE, and the DCT.
  - 22. The system of claim 12, wherein the first key and second key are generated at a first location of the FSE and a second location of the DCT.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
The Boeing Co.
Original Assignee
The Boeing Co.
Inventors
Campanella, James C., Rodriguez, Ismael
Primary Examiner(s)
Barron, Gilberto
Assistant Examiner(s)
PERUNGAVOOR, VENKATANARAY

Application Number

US10/425,235
Publication Number

US 20030202661A1
Time in Patent Office

1,456 Days
Field of Search

380/228, 380/227, 713/171
US Class Current

380/228
CPC Class Codes

H04N 21/2541   Rights Management protectin...

H04N 21/26613   for generating or managing ...

H04N 21/4623   Processing of entitlement m...

H04N 21/6143   involving transmission via ...

H04N 21/6193   involving transmission via ...

H04N 21/63345   by transmitting keys key di...

H04N 21/8355   involving usage data, e.g. ...

H04N 7/1675   Providing digital key or au...

Method and apparatus for securely distributing large digital video/data files with optimum security

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for securely distributing large digital video/data files with optimum security

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links