Method to authenticate a data processing apparatus having a recording device and apparatuses therefor

US 7,620,813 B2
Filed: 06/25/2004
Issued: 11/17/2009
Est. Priority Date: 06/26/2003
Status: Expired due to Fees

First Claim

Patent Images

1. An authentication method to ensure permissible recording of data to and/reproducing of data from a recording device of a data processing apparatus having a host to process data and the recording device to store and reproduce data processed or to be processed by the host, the method comprising:

allocating a host key to the host and a recording device key to the recording device, the host key and the recording device key being corresponding keys for asymmetric key encryption;

authenticating the recording device via the host using the host key;

authenticating the host via the recording device using the recording device key; and

performing recording of the data to and/or reproducing of the data from the recording device upon determining that the host and the recording device have authenticated each other.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus to authenticate a data processing apparatus having a recording device, according to which recording data to and restoring data from only an authenticated recording device can be performed. The authentication method to ensure legally recording of data to and/reproducing of data from a recording device in a data processing apparatus having a host to process data and the recording device to store and reproduce data processed or to be processed by the host, includes authenticating the recording device via the host; authenticating the host via the recording device; and performing recording of data to and/or reproducing of data from the recording device upon determining that the host and the recording device have authenticated each other. According to the authentication method, in a data processing apparatus having a recording device to record and/or store data, only when a host and the recording device authenticate each other, access to the recording device is permitted, that is, recording and/or restoring data is enabled such that illegal use of data or use of data by an unauthorized user can be prevented.

10 Citations

View as Search Results

38 Claims

1. An authentication method to ensure permissible recording of data to and/reproducing of data from a recording device of a data processing apparatus having a host to process data and the recording device to store and reproduce data processed or to be processed by the host, the method comprising:
- allocating a host key to the host and a recording device key to the recording device, the host key and the recording device key being corresponding keys for asymmetric key encryption;
  
  authenticating the recording device via the host using the host key;
  
  authenticating the host via the recording device using the recording device key; and
  
  performing recording of the data to and/or reproducing of the data from the recording device upon determining that the host and the recording device have authenticated each other.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method according to claim 1, wherein when the data processing apparatus is turned on during an initialization process, authentication is performed and once the host and the recording device authenticate each other, recording data to and/or reproducing data from the recording device is permitted until the data processing apparatus is turned off.
  - 3. The method according to claim 1, wherein authentication is performed when the data processing apparatus accesses the recording device to perform a recording and/or reproducing session.
  - 4. The method according to claim 1, wherein when the data processing apparatus and the recording device are first attached, one of a pair of keys in an inseparable relation is allocated to the host and the other to the recording device.
  - 5. The method according to claim 4, wherein the recording of the data to and reproducing of the data from the authenticated recording device can not be performed when the recording device is separated from the data processing device or when another recording device is used.
  - 6. The method according to claim 1, wherein the data processing apparatus is a set-top box having a recording device.
  - 7. The method according to claim 6, wherein the recording device is a hard disc drive (HDD).
  - 8. The method according to claim 6, wherein the recording device is a recordable optical recording device.
  - 9. The method according to claim 1, wherein the data processing apparatus receives VOD service data.
  - 10. The method according to claim 1, wherein the data processing apparatus is one of a PC, a digital television, a monitor, and a video processing apparatus that receives VOD service data.
  - 11. The authentication method according to claim 1, further comprising providing a VOD service provider to perform said allocating, authenticating the recording device, and authenticating the host.

12. A host-side authentication apparatus to authenticate a recording device of a data processing apparatus having a host to process data and the recording device to store and reproduce data processed or to be processed by the host, the host authentication apparatus comprising:
- a first encrypt module to encrypt a first variable using a host key allocated to the host to generate a first encrypted value;
  
  a first decrypt module to decrypt a second encrypted value provided by the recording device using the host key allocated to the host to generate a first decrypted value; and
  
  a host authentication controller to provide the first variable and the first encrypted value to the recording device and to receive a second variable and the second encrypted value provided by the recording device, the first variable and the first encrypted value being separate and distinct from each other,wherein the host authentication controller receives a response to authenticate the host as an authorized host from the recording device receiving the first variable and the first encrypted value, and provides a response to authenticate the recording device as an authorized recording device to the recording device, upon determining a condition that the second variable provided by the recording device is the same as the first decrypted value is satisfied,wherein the host key is one of a pair of corresponding keys for asymmetric key encryption.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. The apparatus according to claim 12, wherein authentication is performed during an initialization process performed when the data processing apparatus is turned on.
  - 14. The apparatus according to claim 12, wherein authentication is performed when the data processing apparatus accesses the recording device for a recording and/or reproducing session.
  - 15. The apparatus according to claim 12, wherein when the host and the recording device are first attached, the host key is allocated to the host and another one of the pair of corresponding keys is allocated to the recording device.
  - 16. The apparatus according to claim 12, further comprising:
    - a first random number generator which generates the first variable.
  - 17. The apparatus according to claim 12, wherein the data processing apparatus is one of a PC, a digital television, a monitor, or a video processing apparatus that receives VOD service data.

18. A recording device-side authentication apparatus to authenticate a host by the recording device of a data processing apparatus having the host to process data and the recording device to store and reproduce data processed or to be processed by the host, the recording device-side authentication apparatus comprising:
- a second encrypt module to encrypt a second variable using a recording device key allocated to the recording device to generate a second encrypted value;
  
  a second decrypt module to decrypt a first encrypted value provided by the host using the recording device key allocated to the recording device to generate a second decrypted value; and
  
  a recording device-side authentication controller to provide the second variable and the second encrypted value to the host and to receive a first variable and the first encrypted value provided by the host, the first variable and the first encrypted value being separate and distinct from each other,wherein the recording device-side authentication controller receives a response to authenticate the recording device as an authorized recording device from the host receiving the second variable and the second encrypted value, and provides a response to authenticate the host as an authorized host to the host upon determining that a condition that the first variable and the second decrypted value are the same is satisfied,wherein the recording device key is one of a pair of corresponding keys for asymmetric key encryption.
- View Dependent Claims (19, 20, 21, 22, 23)
- - 19. The apparatus according to claim 18, wherein authentication is performed during an initialization process performed when the data processing apparatus is turned on.
  - 20. The apparatus according to claim 18, wherein authentication is performed whenever the data processing apparatus accesses the recording device for a recording and/or reproducing session.
  - 21. The apparatus according to claim 18, wherein when the host and the recording device are first attached, the recording device key is allocated to the recording device and another one of the pair of corresponding keys is allocated to the host.
  - 22. The apparatus according to claim 18, further comprising:
    - a second random number generator which generates the second variable.
  - 23. The apparatus according to claim 18, wherein the data processing apparatus is one of a PC, a digital television, a monitor, or a video processing apparatus that receives VOD service data.

24. A recording device to store and reproduce data processed or to be processed by a host processing data, comprising:
- a second encrypt module to encrypt a second variable using a recording device key allocated to the recording device to generate a second encrypted value;
  
  a second decrypt module to decrypt a first encrypted value provided by the host using the recording device key allocated to the recording device to generate a second decrypted value; and
  
  a recording device-side authentication controller to provide the second variable and the second encrypted value to the host and to receive a first variable and the first encrypted value provided by the host, and receives a response to authenticate the recording device as an authorized recording device from the host receiving the second variable and the second encrypted value, and provides a response to authenticate the host as an authorized host to the host upon determining that a condition that the first variable and the second decrypted value are the same is satisfied, the first variable and the first encrypted value being separate and distinct from each other,wherein only when the recording device-side authentication controller authenticates the host, the recording device permits recording data from the host and/or reproducing data to the host, andwherein the recording device key is one of a pair of corresponding keys for asymmetric key encryption.
- View Dependent Claims (25, 26, 27, 28)
- - 25. The apparatus according to claim 24, wherein authentication is performed during an initialization process performed when the data processing apparatus is turned on.
  - 26. The apparatus according to claim 24, wherein authentication is performed whenever the data processing apparatus accesses the recording device for a recording and/or reproducing session.
  - 27. The apparatus according to claim 24, wherein when the host and the recording device are first attached, the recording device key is allocated to the recording device and another one of the pair of corresponding keys is allocated to the host.
  - 28. The apparatus according to claim 24, further comprising:
    - a second random number generator which generates the second variable.

29. A method to authenticate permissible recording and/or reproducing of data in a data processing apparatus having a host and a recording device, comprising:
- allocating a host key to the host and a recording device key to the recording device, the host key and the recording device key being corresponding keys for asymmetric key encryption;
  
  authenticating the recording device using the host key;
  
  authenticating the host using the recording device key; and
  
  recording data and/or reproducing upon authentication of the recording device and the host.
- View Dependent Claims (30, 31, 32, 33, 34, 35, 36)
- - 30. The method according to claim 29, wherein an encryption technique is used to authenticate the recording device and/or the host.
  - 31. The method according to claim 29, wherein the data processing apparatus is a set-top box having a recording device.
  - 32. The method according to claim 31, wherein the recording device is a hard disc drive (HDD).
  - 33. The method according to claim 32, further comprising:
    - assigning one key to the set-top box and assigning another key to the hard disk drive to allow the set-top box and the hard disk to authenticate each other.
  - 34. The method according to claim 29, wherein the recording of the data to and the reproducing of the data from the authenticated recording device can not be performed when the recording device is separated from the data processing device or when another recording device is used.
  - 35. The method according to claim 29, wherein the authentication operations are performed during an initialization process performed when the data processing apparatus is turned on.
  - 36. The apparatus according to claim 29, wherein authentication is performed when the data processing apparatus accesses the recording device for a recording and/or reproducing session.

37. A host-side authentication method to authenticate a recording device of a data processing apparatus having a host, comprising:
- generating a first random number via the host;
  
  encrypting the first random number to generate a first encrypted value;
  
  transmitting the first random number and the first encrypted value to the recording device, the first random number and the first encrypted value being separate and distinct from each other;
  
  receiving a second random number and a second encrypted value from the recording device;
  
  decrypting the second encrypted value to generate a first decrypted value; and
  
  authenticating the host upon determining that the second random number provided from the recording device is the same as the first decrypted value,wherein the encrypting and the decrypting use corresponding keys for asymmetric key encryption.

38. A host-side authentication apparatus to authenticate a recording device of a data processing apparatus having a host to process data and the recording device to store and reproduce data processed or to be processed by the host, the host authentication apparatus comprising:
- a first encrypt module to encrypt a first variable using a host key allocated to the host to generate a first encrypted value;
  
  a first decrypt module to decrypt a second encrypted value provided by the recording device using the host key allocated to the host to generate a first decrypted value; and
  
  a host authentication controller to provide the first variable and the first encrypted value to the recording device and to receive a second variable and the second encrypted value provided by the recording device, the first variable and the first encrypted value being separate and distinct from each other,wherein the host authentication controller receives a response to authenticate the host as an authorized host from the recording device receiving the first variable and the first encrypted value, and provides a response to authenticate the recording device as an authorized recording device to the recording device, upon determining a condition that the second variable provided by the recording device is the same as the first decrypted value is satisfied,the first variable and the first encrypted value are provided in a same operation, andthe second variable and the second encrypted value are provided in a same operation.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
Jeong, Seung-youl, Cho, Sung-yon, Park, Jong-lak, Sohn, Hak-yeol
Primary Examiner(s)
Vu; Kimyen
Assistant Examiner(s)
GYORFI, THOMAS A

Application Number

US10/875,677
Publication Number

US 20050021958A1
Time in Patent Office

1,971 Days
Field of Search

713/169, 713/189
US Class Current

713/169
CPC Class Codes

G11B 20/00086 Circuits for prevention of ...

Method to authenticate a data processing apparatus having a recording device and apparatuses therefor

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

10 Citations

38 Claims

Specification

Solutions

Use Cases

Quick Links

Method to authenticate a data processing apparatus having a recording device and apparatuses therefor

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

10 Citations

38 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links