Method and apparatus for recording/playing back information
First Claim
1. An information recording apparatus for recording information onto a recording medium, said apparatus comprising:
- storage means for storing a device node key (DNK) set that includes one or more leaf keys and a plurality of node keys, the one or more leaf keys being associated with one or more leaves such that a unique one of the one or more leaf keys is associated with a particular one of the one or more leaves, the plurality of node keys being associated with a plurality of nodes such that a respective one of the plurality of node keys is associated with a specific one of the plurality of nodes, the plurality of nodes and the one or more leaves being arranged according to a hierarchical tree structure having a plurality of levels, the one or more leaves being further associated with one or more information recording apparatuses such that a given one of the one or more leaves is associated with an individual one of the one or more information recording apparatuses; and
cryptographic means for encrypting content data to be stored in the recording medium, said cryptographic means including;
means for producing a first encryption key (Kst) by encrypting, using a second encryption key (Kcon), a value uniquely assigned to a specific data playback apparatus that is to play back the content data,means for producing encrypted data Enc(Kst, DATA) by encrypting the content data using the first encryption key (Kst),means for producing encrypted key data by encrypting the second encryption key (Kcon) using a selected one of at least a portion of the plurality of node keys located along at least one path within the hierarchical tree structure, the at least portion of the plurality of node keys being stored in an enabling key block (EKB) and being encrypted such that each one of the at least portion of the plurality of node keys is encrypted using at least another one of the at least portion of the plurality of node keys that is located at a lower level along the at least one path than the one of the at least portion of the plurality of node keys or using one of the one or more leaf keys, andmeans for storing a data file including the encrypted data, the encrypted key data, and the enabling key block (EKB) into the recording medium.
1 Assignment
0 Petitions
Accused Products
Abstract
A data processing apparatus extracts a root key by decrypting an enabling key block. The data processing apparatus then produces a content key on the basis of a random number and encrypts the content key using the root key. Furthermore, the data processing apparatus encrypts an ID of the data processing apparatus using the produced content key thereby producing a storage key. The data processing apparatus then produces encrypted content by encrypting a content using the storage key. Furthermore, the data processing apparatus stores the encrypted content together with the data produced by encrypting the content by the root key into a removable storage medium.
The content, stored into the removable storage medium in the above-described manner, can be played back only by a specific limited device.
-
Citations
30 Claims
-
1. An information recording apparatus for recording information onto a recording medium, said apparatus comprising:
-
storage means for storing a device node key (DNK) set that includes one or more leaf keys and a plurality of node keys, the one or more leaf keys being associated with one or more leaves such that a unique one of the one or more leaf keys is associated with a particular one of the one or more leaves, the plurality of node keys being associated with a plurality of nodes such that a respective one of the plurality of node keys is associated with a specific one of the plurality of nodes, the plurality of nodes and the one or more leaves being arranged according to a hierarchical tree structure having a plurality of levels, the one or more leaves being further associated with one or more information recording apparatuses such that a given one of the one or more leaves is associated with an individual one of the one or more information recording apparatuses; and cryptographic means for encrypting content data to be stored in the recording medium, said cryptographic means including; means for producing a first encryption key (Kst) by encrypting, using a second encryption key (Kcon), a value uniquely assigned to a specific data playback apparatus that is to play back the content data, means for producing encrypted data Enc(Kst, DATA) by encrypting the content data using the first encryption key (Kst), means for producing encrypted key data by encrypting the second encryption key (Kcon) using a selected one of at least a portion of the plurality of node keys located along at least one path within the hierarchical tree structure, the at least portion of the plurality of node keys being stored in an enabling key block (EKB) and being encrypted such that each one of the at least portion of the plurality of node keys is encrypted using at least another one of the at least portion of the plurality of node keys that is located at a lower level along the at least one path than the one of the at least portion of the plurality of node keys or using one of the one or more leaf keys, and means for storing a data file including the encrypted data, the encrypted key data, and the enabling key block (EKB) into the recording medium. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An information playback apparatus for playing back data stored in a storage medium, said apparatus comprising:
-
storage means for storing a device node key (DNK) set that includes one or more leaf keys and a plurality of node keys, the one or more leaf keys being associated with one or more leaves such that a unique one of the one or more leaf keys is associated with a particular one of the one or more leaves, the plurality of node keys being associated with a plurality of nodes such that a respective one of the plurality of node keys is associated with a specific one of the plurality of nodes, the plurality of nodes and the one or more leaves being arranged according to a hierarchical tree structure having a plurality of levels, the one or more leaves being further associated with one or more information recording apparatuses such that a given one of the one or more leaves is associated with an individual one of the one or more information recording apparatuses; and cryptographic means for decrypting content data stored in the storage medium, including; means for acquiring, by decrypting an enabling key block (EKB) stored in the storage medium using the device node key (DNK) set, a selected one of at least a portion of the plurality of node keys located along at least one path within the hierarchical tree structure, the at least portion of the plurality of node keys being stored in the enabling key block (EKB) and being encrypted such that each one of the at least portion of the plurality of node keys is encrypted using at least another one of the at least portion of the plurality node keys that is located at a lower level along the at least one path than the one of the at least portion of the plurality of node keys or using one of the one or more leaf keys, means for acquiring a second decryption key (Kcon) by decrypting encrypted key data using the selected one of the at least a portion of the plurality of node keys, means for producing a first decryption key (Kst) by encrypting a value uniquely assigned to the information playback apparatus using the second decryption key (Kcon), and means for decrypting encrypted data Enc(Kst, DATA) stored in the storage medium using the first decryption key (Kst) to obtain the content data. - View Dependent Claims (11, 12, 13, 14)
-
-
15. In an information recording apparatus, a method of recording information into a recording medium, said method comprising:
-
storing a device node key (DNK) set that includes one or more leaf keys and a plurality of node keys, the one or more leaf keys being associated with one or more leaves such that a unique one of the one or more leaf keys is associated with a particular one of the one or more leaves, the plurality of node keys being associated with a plurality of nodes such that a respective one of the plurality of node keys is associated with a specific one of the plurality of nodes, the plurality of nodes and the one or more leaves being arranged according to a hierarchical tree structure having a plurality of levels, the one or more leaves being further associated with one or more information recording apparatuses such that a given one of the one or more leaves is associated with an individual one of the one or more information recording apparatuses; producing a first encryption key (Kst) by encrypting, using a second encryption key (Kcon), a value uniquely assigned to a specific data playback apparatus that is to play back the content data; producing encrypted data Enc(Kst, DATA) by encrypting the content data using the first encryption key (Kst); producing encrypted key data by encrypting the second encryption key (Kcon) using a selected one of at least a portion of the plurality of node keys located along at least one path within the hierarchical tree structure, the at least portion of the plurality of node keys being stored in an enabling key block (EKB) and being encrypted such that each one of the at least portion of the plurality of node keys is encrypted using at least another one of the at least portion of the plurality of node keys that is located at a lower level along the at least one path than the one of the at least portion of the plurality of node keys or using one of the one or more leaf keys; storing a data file including the encrypted data, the encrypted key data, and the enabling key block (EKB) into the recording medium. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. In an information playback apparatus, a method of playing back data stored in a storage medium, said method comprising:
storing a device node key (DNK) set that includes one or more leaf keys and a plurality of node keys, the one or more leaf keys being associated with one or more leaves such that a unique one of the one or more leaf keys is associated with a particular one of the one or more leaves, the plurality of node keys being associated with a plurality of nodes such that a respective one of the plurality of node keys is associated with a specific one of the plurality of nodes, the plurality of nodes and the one or more leaves being arranged according to a hierarchical tree structure having a plurality of levels, the one or more leaves being further associated with one or more information recording apparatuses such that a given one of the one or more leaves is associated with an individual one of the one or more the information playback apparatus is a unique telephone number of the information playback apparatus or is unique identification data associated with the information playback apparatus. - View Dependent Claims (25, 26, 27, 28)
-
29. A processor having a program for carrying out, in an information recording apparatus, a method of recording information into a recording information recording apparatuses;
-
acquiring, by decrypting an enabling key block (EKB) stored in the storage medium using the device node key (DNK) set, a selected one of at least a portion of the plurality of node keys located along at least one path within the hierarchical tree structure, the at least portion of the plurality of node keys being stored in the enabling key block (EKB) and being encrypted such that each one of the at least portion of the plurality of node keys is encrypted using at least another one of the at least portion of the plurality node keys that is located at a lower level along the at least one path than the one of the at least portion of the plurality of node keys or using one of the one or more leaf keys; acquiring a second decryption key (Kcon) by decrypting encrypted key data using the selected one of the at least a portion of the plurality of node keys; producing a first decryption key (Kst) by encrypting a value uniquely assigned to the information playback apparatus using the second decryption key (Kcon); and decrypting encrypted data Enc(Kst, DATA) stored in the storage medium using the first decryption key (Kst) to obtain the content data.
-
-
30. A processor having a program for carrying out, in an information playback apparatus, a method of playing back data stored in a storage medium, said method comprising:
-
storing a device node key (DNK) set that includes one or more leaf keys and a plurality of node keys, the one or more leaf keys being associated with one or more leaves such that a unique one of the one or more leaf keys is associated with a particular one of the one or more leaves, the plurality of node keys being associated with a plurality of nodes such that a respective one of the plurality of node keys is associated with a specific one of the plurality of nodes, the plurality of nodes and the one or more leaves being arranged according to a hierarchical tree structure having a plurality of levels, the one or more leaves being further associated with one or more information recording apparatuses such that a given one of the one or more leaves is associated with an individual one of the one or more information recording apparatuses; acquiring, by decrypting an enabling key block (EKB) stored in the storage medium using the device node key (DNK) set, a selected one of at least a portion of the plurality of node keys located along at least one path within the hierarchical tree structure, the at least portion of the plurality of node keys being stored in the enabling key block (EKB) and being encrypted such that each one of the at least portion of the plurality of node keys is encrypted using at least another one of the at least portion of the plurality node keys that is located at a lower level along the at least one path than the one of the at least portion of the plurality of node keys or using one of the one or more leaf keys; acquiring second decryption key (Kcon) by decrypting encrypted key data using the selected one of the at least a portion of the plurality of node keys; producing a first decryption key (Kst) by encrypting a value uniquely assigned to the information playback apparatus using the second decryption key (Kcon); and decrypting encrypted data Enc(Kst, DATA) stored in the storage medium using the first decryption key (Kst) to obtain the content data.
-
Specification