Method for ensuring content protection and subscription compliance
First Claim
1. A computer-implemented method for securely transmitting multicast data, comprising:
- encrypting at least one title T with at least title key KT; and
encrypting the title key KT with at least one channel-unique key Kcu using at least one encryption function S to render a multicast data channel encrypted as SKcu(KT), SKT(T), wherein the channel-unique key Kcu is the result of a combination of a channel key Kc and a session key Ks, wherein the session key Ks is encrypted with at least a first encryption scheme BRs1 to render a session key block, further comprising providing at least one player with device keys Kd to activate the player and providing the player with the channel key Kc and the session key block, wherein the player can determine the session key Ks from the session key block using the device keys Kd further comprising periodically refreshing the channel key Kc to enforce subscriptions, wherein a new channel key Kc′
is encrypted with at least a second encryption scheme BRs2 and wherein the encryption scheme BRs2 includes;
assigning each player in a group of players respective private information Iu;
partitioning players not in a revoked set R into disjoint subsets Si1, . . . Sim having associated subset keys Li1, . . . Lim; and
encrypting the session key Ks with the subset keys Li1, . . . Lim to render m encrypted versions of the session key Ks.
0 Assignments
0 Petitions
Accused Products
Abstract
A method for enforcing compliance in both the copy protect domain and service subscription domain for streamed multicast data. Each content is encrypted with a title key that itself is encrypted with a channel unique key which is a hash of a session key and a channel key. A compliant player is given the channel key upon registration for a subscription service (representing subscription protection) and is also given device keys upon activation (representing copy protection) for decrypting the session key. Consequently, the channel unique key can be obtained (and, hence, the content decrypted) only by a player that is compliant with both copy protection rules and subscription rules. The channel key can be refreshed periodically as subscriptions change or expire.
24 Citations
13 Claims
-
1. A computer-implemented method for securely transmitting multicast data, comprising:
-
encrypting at least one title T with at least title key KT; and encrypting the title key KT with at least one channel-unique key Kcu using at least one encryption function S to render a multicast data channel encrypted as SKcu(KT), SKT(T), wherein the channel-unique key Kcu is the result of a combination of a channel key Kc and a session key Ks, wherein the session key Ks is encrypted with at least a first encryption scheme BRs1 to render a session key block, further comprising providing at least one player with device keys Kd to activate the player and providing the player with the channel key Kc and the session key block, wherein the player can determine the session key Ks from the session key block using the device keys Kd further comprising periodically refreshing the channel key Kc to enforce subscriptions, wherein a new channel key Kc′
is encrypted with at least a second encryption scheme BRs2 and wherein the encryption scheme BRs2 includes;assigning each player in a group of players respective private information Iu; partitioning players not in a revoked set R into disjoint subsets Si1, . . . Sim having associated subset keys Li1, . . . Lim; and encrypting the session key Ks with the subset keys Li1, . . . Lim to render m encrypted versions of the session key Ks. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
Specification