Secure execution of downloaded software

US 7,350,081 B1
Filed: 10/06/2003
Issued: 03/25/2008
Est. Priority Date: 04/29/2002
Status: Expired due to Fees

First Claim

Patent Images

1. A method of securely distributing program instructions for execution in a single-chip secure cryptoprocessor that contains chip identifier data that distinguishes different cryptoprocessor units, encryption circuitry for encrypting said identifier, decryption circuitry for decrypting encrypted digital program instructions, writable program memory for storing decrypted instructions, and processor core for executing said decrypted instructions which are inaccessible from said secure cryptoprocessor chip from locations outside of said chip after fabrication of said chip is completed;

the method comprising;

(a) encrypting in a network server a first program of executable digital instructions under control of a first encryption key;

(b) transmitting said encrypted first program of digital instructions from said server to said cryptoprocessor;

(c) encrypting said chip identifier in said cryptoprocessor chip to produce an encrypted identifier;

(d) transmitting said encrypted identifier to said server;

(e) reencrypting in said server said chip identifier together with a decryption key corresponding to said first encryption key to produce at least one encrypted data block such that each bit in said encrypted data block is a complex function of every bit in said decryption key and every bit in said chip identifier;

(f) transmitting said data block to said cryptoprocessor chip;

(g) decrypting said encrypted data block in said cryptoprocessor chip to produce a decrypted identifier and said decryption key in said cryptoprocessor chip;

(h) decrypting said encrypted first program in said cryptoprocessor chip under control of said decryption key to produce executable digital instructions stored in said program memory; and

(i) executing said digital instructions in said processor core in said cryptoprocessor chip to generate output data if said decrypted identifier has a predetermined relationship with said chip identifier in said cryptoprocessor chip.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Proprietary programs for execution in game systems or other computers are downloaded from an Internet server in encrypted form to protect the programs from unauthorized use. The encrypted programs can be decrypted and executed only in a secure cryptoprocessor that initially ordered the software for download. Unlike DRM protected music, video, and text, decrypted program instructions need never be revealed to users. Each cryptoprocessor contains a unique chip identifier that is transmitted to the server in encrypted form to control encryption of a random session key that controls decryption of the downloaded programs. Hence, each copy of the encrypted software is encrypted differently. If the crypto processor is in a cartridge, it can be manually unplugged from one computer or game system and plugged into another system. Although some of the software may be non-encrypted and be executed and processed in conventional processor(s), this non-encrypted software would be useless without the decrypted program instructions executing in the cryptoprocessor.

Citations

16 Claims

1. A method of securely distributing program instructions for execution in a single-chip secure cryptoprocessor that contains chip identifier data that distinguishes different cryptoprocessor units, encryption circuitry for encrypting said identifier, decryption circuitry for decrypting encrypted digital program instructions, writable program memory for storing decrypted instructions, and processor core for executing said decrypted instructions which are inaccessible from said secure cryptoprocessor chip from locations outside of said chip after fabrication of said chip is completed;
- the method comprising;
  
  (a) encrypting in a network server a first program of executable digital instructions under control of a first encryption key;
  
  (b) transmitting said encrypted first program of digital instructions from said server to said cryptoprocessor;
  
  (c) encrypting said chip identifier in said cryptoprocessor chip to produce an encrypted identifier;
  
  (d) transmitting said encrypted identifier to said server;
  
  (e) reencrypting in said server said chip identifier together with a decryption key corresponding to said first encryption key to produce at least one encrypted data block such that each bit in said encrypted data block is a complex function of every bit in said decryption key and every bit in said chip identifier;
  
  (f) transmitting said data block to said cryptoprocessor chip;
  
  (g) decrypting said encrypted data block in said cryptoprocessor chip to produce a decrypted identifier and said decryption key in said cryptoprocessor chip;
  
  (h) decrypting said encrypted first program in said cryptoprocessor chip under control of said decryption key to produce executable digital instructions stored in said program memory; and
  
  (i) executing said digital instructions in said processor core in said cryptoprocessor chip to generate output data if said decrypted identifier has a predetermined relationship with said chip identifier in said cryptoprocessor chip.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, further comprising the steps of(j) generating a session key in said server;
    - (k) transmitting said session key in encrypted form to said cryptoprocessor;
      
      (l) decrypting said encrypted session key in said cryptoprocessor chip to produce a decrypted session key;
      
      (m) encrypting said chip identifier in said cryptoprocessor chip under control of said decrypted session key to produce said encrypted identifier; and
      
      (n) decrypting said encrypted identifier in said server under control of said session key to produce a decrypted identifier.
  - 3. The method of claim 1, wherein said cryptoprocessor chip is a component in a video game system and said output data generated by said cryptoprocessor is game data that is processed by a graphics co-processor in said game system that generates graphics data for display on a display device.
  - 4. The method of claim 1, wherein said cryptoprocessor chip is a component in a computer and said output data generated by said cryptoprocessor is address data that identifies memory locations of non-encrypted program instructions executed by a second processor in said computer.
  - 5. The method of claim 1, wherein said cryptoprocessor chip communicates with a second processor through a data transmission path that comprises wireless transmission.
  - 6. The method of claim 1, wherein said cryptoprocessor chip inhibits output of said executable digital instructions from said data memory to a location outside of said secure cryptoprocessor chip.
  - 7. The method of claim 1, wherein said output data generated by said cryptoprocessor contain instructions that are executed by a second processor.
  - 8. The method of claim 1, further comprising the step of downloading said encrypted first program of executable digital instructions and said encrypted data block through a retailer computer.

9. A computer readable data storage medium having stored thereon encrypted digital program instructions for execution in a single-chip secure cryptoprocessor that contains chip identifier data that distinguishes different cryptoprocessor units, encryption circuitry for encrypting said identifier, decryption circuitry for decrypting encrypted digital program instructions, writable program memory for storing decrypted instructions, and processor core for executing said decrypted instructions which are inaccessible from said secure cryptoprocessor chip from locations outside of said chip after fabrication of said chip is completed, wherein said cryptoprocessor chip performs the following:
- (a) encrypting said chip identifier in said cryptoprocessor chip to produce an encrypted identifier for transmission to a network server that encrypts and downloads a first program of executable digital instructions for use in said cryptoprocessor, wherein said server decrypts said encrypted identifier to produce a decrypted identifier, and wherein said server reencrypts said decrypted identifier together with a decryption key corresponding to said encrypted first program to produce at least one encrypted data block for transmission to said cryptoprocessor chip such that each bit in said encrypted data block is a complex function of every bit in said decryption key and every bit in said chip identifier;
  
  (b) decrypting said encrypted data block in said cryptoprocessor chip to produce a decryption key in said cryptoprocessor chip;
  
  (c) decrypting said encrypted first program in said cryptoprocessor chip under control of said decryption key to produce executable digital instructions stored in said program memory; and
  
  (d) executing said digital instructions in said processor core in said cryptoprocessor chip to generate output data if said decrypted identifier has a predetermined relationship with said chip identifier in said cryptoprocessor chip.
- View Dependent Claims (10, 11)
- - 10. The data storage medium of claim 9, further storing nonencrypted digital program instructions for execution in a second processor that processes said output data from said cryptoprocessor chip and generates second data that is processed by said cryptoprocessor chip.
  - 11. The data storage medium of claim 9, further storing said encrypted data block in said data storage medium.

12. A single-chip secure cryptoprocessor comprising:
- (a) non-volatile data memory storing chip identifier data that distinguishes different cryptoprocessor chips;
  
  (b) encryption circuitry for encrypting said chip identifier to produce an encrypted identifier for transmission to a network server;
  
  (c) wherein said server encrypts and downloads a first program of executable digital instructions for use in said cryptoprocessor, wherein said server decrypts said encrypted identifier to produce a decrypted identifier, and wherein said server reencrypts said decrypted identifier together with a digital decryption key corresponding to said encrypted first program to produce at least one encrypted data block for use in said cryptoprocessor chip such that each bit in said encrypted data block is a complex function of every bit in said decryption key and every bit in said chip identifier;
  
  (d) decryption circuitry for decrypting said encrypted data block to produce a decrypted key;
  
  (e) writable data memory for storing said decrypted key;
  
  (f) decryption circuitry for decrypting said first program under control of said decrypted key to produce executable digital decrypted instructions;
  
  (g) writable program memory for storing said decrypted instructions;
  
  (h) processor core for executing said decrypted instructions to produce output data if said decrypted identifier has a predetermined relationship with said chip identifier; and
  
  (i) wherein said data memory, encryption circuitry, decryption circuitry, processor core, program memory, and decrypted instructions are inaccessible from said secure cryptoprocessor chip from locations outside of said secure cryptoprocessor chip after fabrication of said chip is completed.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The cryptoprocessor chip of claim 12, wherein said cryptoprocessor chip communicates with a second processor through a data transmission link that comprises wireless transmission.
  - 14. The cryptoprocessor chip of claim 12, wherein said output data is processed by a second processor in one of the group comprising:
    - a video game system, a handheld game system, and a computer.
  - 15. The cryptoprocessor chip of claim 12, wherein said cryptoprocessor chip is a component in one of the group comprising:
    - a video game system, a handheld game system, and a computer.
  - 16. The cryptoprocessor chip of claim 12, wherein said writable program memory is non-volatile.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Robert M. Best
Original Assignee
Robert M. Best
Inventors
Best, Robert M.
Primary Examiner(s)
Barron, Gilberto
Assistant Examiner(s)
SAN JUAN, MARTINJERIKO P

Application Number

US10/679,971
Time in Patent Office

1,632 Days
Field of Search

463/43, 705/56
US Class Current

713/190
CPC Class Codes

G06F 21/1011 to devices

Secure execution of downloaded software

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Secure execution of downloaded software

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links