Secure digital data format and code enforced policy

US 7,627,753 B2
Filed: 03/19/2002
Issued: 12/01/2009
Est. Priority Date: 03/19/2002
Status: Expired due to Fees

First Claim

Patent Images

1. A method of securing digital data that are to be distributed for use on a computing device, comprising the steps of:

processing, by the securing system, the digital data to create a data digest that uniquely corresponds to the digital data, wherein the digital data comprise a plurality of sections;

including, by the securing system, the data digest in a header of the digital data, the including comprising including the plurality of section digests in the header;

including security policy information in the header of the digital data, wherein the security policy information controls use of the digital data on the computing device and comprises one or more of;

an indication of a geographic region in which the digital data are authorized to be used;

an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use, wherein the type of media is an optical storage disc;

a console system setting that must be in place prior to use of the digital data;

a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and

an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;

processing the header that includes the data digest to create a header digest that uniquely corresponds to the header, the processing comprising processing each of the plurality of sections to produce a plurality of section digests uniquely corresponding to the plurality of sections of the digital data;

encrypting the header digest with a private key, said private key having a corresponding public key that is provided when the digital data are to be used on the computing device; and

storing the digital data, the header of the digital data and the encrypted header digest for distribution to an end user, for use on the computing device.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Authenticity of digital data, security policies, and usage of game software are enforced on a game console. When the software is secured prior to distribution on media, a private key is used to encrypt a header digest that includes a digest of each section of the software and information specifying a region, a rating, and media type of the software. A hashing algorithm is applied to produce the digests. On the game console, a public key is used to decrypt the header digest for comparison to a hash of the header. A digest of each section of digital data is computed and compared to the corresponding digest in the header to authenticate the data. The console will not execute the software unless the parameters in the header information match those stored in the console and the computed digests for each section match those in the header on the medium.

28 Citations

View as Search Results

39 Claims

1. A method of securing digital data that are to be distributed for use on a computing device, comprising the steps of:
- processing, by the securing system, the digital data to create a data digest that uniquely corresponds to the digital data, wherein the digital data comprise a plurality of sections;
  
  including, by the securing system, the data digest in a header of the digital data, the including comprising including the plurality of section digests in the header;
  
  including security policy information in the header of the digital data, wherein the security policy information controls use of the digital data on the computing device and comprises one or more of;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use, wherein the type of media is an optical storage disc;
  
  a console system setting that must be in place prior to use of the digital data;
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;
  
  processing the header that includes the data digest to create a header digest that uniquely corresponds to the header, the processing comprising processing each of the plurality of sections to produce a plurality of section digests uniquely corresponding to the plurality of sections of the digital data;
  
  encrypting the header digest with a private key, said private key having a corresponding public key that is provided when the digital data are to be used on the computing device; and
  
  storing the digital data, the header of the digital data and the encrypted header digest for distribution to an end user, for use on the computing device.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein the steps of creating the data digest and the header digest each comprise the step of employing a hashing algorithm to produce the data digest and the header digest, respectively.
  - 3. The method of claim 1, wherein the one or more optical storage medium are usable by the computing device to run the digital data.
  - 4. The method of claim 1, wherein the step of distributing comprises at least one of the steps of:
    - storing the digital data with the encrypted header on a storage media usable by the computing device; and
      
      transmitting the digital data with the encrypted header over at least one of a wire and a wireless communication network, for use by the computing device.
  - 5. The method of claim 1, wherein the digital data comprise game software;
    - and wherein the computing device runs the game software to enable a game to be played by an end user.

6. A method for enabling use of digital data on a computing device, so as to ensure that the digital data have not been altered and so as to enforce policies regarding use of the digital data, said digital data being distributed along with a header and with an encrypted header digest for the digital data that was produced by encrypting the header digest with a private key, comprising the steps of:
- receiving, at the computing device, the digital data and the header of the digital data, the digital data comprising a plurality of sections, the header comprising;
  
  the encrypted header digest of the digital data,a plurality of session digests each uniquely corresponding to one of the plurality of sessions of the digital data that was produced prior to distribution of the digital data; and
  
  security policy information for controlling use of the digital data at the computing device, wherein the security policy information comprises at least one of;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use, wherein the type of media is an optical storage disc;
  
  a console system setting that must be in place prior to use of the digital data;
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;
  
  decrypting, at the computing device, the encrypted header digest with a public key that corresponds to the private key to recover the header digest;
  
  creating a confirming header digest of the header that was distributed with the digital data, said confirming header digest being produced using a method identical to that employed in producing the header digest that was encrypted;
  
  comparing the confirming header digest with the header digest that was recovered by decrypting;
  
  producing a confirming section digest for each of the plurality of sections in the digital data by processing each of the plurality of sections of the digital data with a procedure identical to that previously used to produce the corresponding section digest included in the header,comparing the confirming section digest for each of the plurality of sections with the corresponding section digest of the plurality of section digests in the header;
  
  determining whether the security policy information enables the digital data to be used on the computing device; and
  
  only enabling the digital data that were distributed along with the header and the encrypted header to be used on the computing device if;
  
  the confirming header digest is identical to the header digest that was recovered;
  
  the confirming section digest for said section is identical to the corresponding section digest for said section in the header; and
  
  the digital data is allowed for use on the computing device based on the security policy information.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The method of claim 6, wherein if the step of comparing results in enabling the digital data to be used on the computing device, and if the security policy information does not allow the digital data to be used on the computing device, precluding the digital data from use on the computing device.
  - 8. The method of claim 6, wherein the step of determining comprises the step of comparing the security information with a corresponding parameter that is set on the computing device, and if a result of the comparison confirms that the use is authorized, enabling the digital data to be used by the computing device, and if not, precluding the digital data from being used by the computing device.
  - 9. The method of claim 8, further comprising the step of enabling an authorized user to enter and store a setting for a parameter that defines a rating of the digital data that the authorized user permits to be used on the computing device.
  - 10. The method of claim 8, wherein the parameter is set before the computing device is provided to an end user.
  - 11. One or more computer readable storage media having stored thereon instructions that, when executed on a computing device having one or more processors, configure the computing device to implement the steps recited in claim 6.

12. A method of enforcing a secure policy on distributed digital data which are intended to be used on a computing device, the method comprising the steps of:
- (a)securing the digital data using the securing system prior to distribution by;
  
  determining a data digest for the digital data in accord with a predefined procedure that produces the data digest in a form uniquely related to the digital data;
  
  including the data digest in a header for the digital data;
  
  including, in the header of the digital data, security policy information for controlling use of the digital data on the computing device, wherein the security policy information comprises;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use, wherein the type of media is an optical storage disc;
  
  a rating that is based upon at least one characteristic of the digital data;
  
  a console system setting that must be in place prior to use of the digital data;
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;
  
  determining a header digest for the header that includes the data digest using the predefined procedure, said header digest being uniquely related to the header; and
  
  encrypting the header digest using a private key that is secret;
  
  (b) distributing, by the securing system, the encrypted header digest, the header having the security policy information, and the digital data;
  
  (c) prior to use of the digital data on the computing device, the computing device confirming an authenticity of the digital data by;
  
  decrypting the encrypted header digest using a public key that corresponds to the private key, to recover the header digest;
  
  determining a confirmation digest of the header using the predefined procedure;
  
  comparing the confirmation header digest of the header to the header digest that was recovered by the step of decrypting, to confirm whether the header that was distributed with the digital data was altered; and
  
  if not altered,determining a confirmation data digest of the digital data, corresponding to the data digest included in the header, using the predefined procedure; and
  
  comparing the confirmation data digest to the data digest included in the header, to confirm whether the digital data that were distributed have been altered after the step of securing;
  
  (d) determining that the security policy information from the header enables the digital data to be used on the computing device, the determining comprising the computing device comparing indication of one or more criteria included in the security policy information with state of one or more corresponding criteria on the computing device for a match; and
  
  (e) preventing the computing device from farther using the digital data if one or more of the following occurs;
  
  the confirmation header digest does not match the header digest that was recovered by the step of decrypting;
  
  the confirmation data digest does not match the data digest that was included in the header; and
  
  the security policy information does not enable the digital data for use on the computing device.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
- - 13. The method of claim 12, wherein the step of securing the digital data prior to distribution comprises the steps of:
    - including the security policy information as part of the header when the predefined procedure is applied to the header to determine the header digest.
  - 14. The method of claim 12, further comprising the step of enabling an authorized user to select the state of the one or more criteria on the computing device.
  - 15. The method of claim 12, wherein the one or more criteria on the computing device are stored in a memory of the computing device and are not accessible or alterable by a user of the computing device.
  - 16. The method of claim 12, wherein the predefined procedure comprises a hashing algorithm.
  - 17. The method of claim 12, wherein the digital data are divided into a plurality of sections;
    - and wherein the step of determining the data digest comprises the step of applying the predefined procedure to each section to produce a section digest for each section, all of said section digests together comprising the data digest.
  - 18. The method of claim 17, wherein the step of determining a confirmation data digest of the digital data comprises the step of applying the predefined procedure to each section to produce a confirming section digest for each section, all of said confirming section digests together comprising the confirming data digest.
  - 19. The method of claim 18, wherein the step of comparing the confirmation data digest to the data digest included in the header comprises the step of comparing each confirming section digest to its corresponding section digest in the header prior to using any digital data included therein.
  - 20. The method of claim 19, wherein the step of preventing the computing device from further using the digital data comprises the step of preventing the computing device from using the digital data included in any section for which the confirming section digest does not match its corresponding section digest in the header.
  - 21. One or more computer readable storage media having stored thereon instructions that, when executed on a computing device having one or more processors, configure the computing device to implement the steps recited in claim 12.

22. A method of enforcing a secure policy regarding use of digital data distributed for use on a computing device, the method comprising the steps of:
- including with the digital data that are distributed, information to be applied by the computing device to enforce the secure policy regarding use of the digital data by the computing device, and an encrypted digest uniquely derived from a portion of the digital data that includes the information, wherein the information comprises;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use;
  
  a rating based upon at least one characteristic of the digital data; and
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  the information further comprises one or more of;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  a console system setting that must be in place prior to use of the digital data; and
  
  an ejection control indication of whether the digital data should be trusted to permit removal of an optical storage disc upon which the digital data is stored;
  
  causing the computing device to decrypt the encrypted digest to recover the digest;
  
  creating a confirmation digest with the computing device by using an identical technique that was previously used to create the digest that was previously encrypted;
  
  comparing the confirmation digest with the digest that was decrypted; and
  
  if the confirmation digest matches the digest that was decrypted, using the information to enforce the secure policy regarding use of the digital data on the computing device, and if not, precluding use of the digital data on the computing device.
- View Dependent Claims (23, 24, 25, 26)
- - 23. The method of claim 22, wherein the rating relates to a secure policy providing parental control of the digital data that are used on the computing device, further comprising the step of enabling only an authorized user to set a specific rating limit on the computing device, said specific rating limit being stored on the computing device and not readily altered by any unauthorized user.
  - 24. The method of claim 23, wherein the specific rating limit corresponds to an age level rating that is compared to the rating indicated in the information, said digital data only being enabled for use on the computing device if the age level rating is not exceeded by the rating indicated by the information.
  - 25. The method of claim 22, wherein the computing device comprises a game console and wherein the digital data comprise game software that is executed on the computing device, if enabled, so that a player can play the game software.
  - 26. One or more computer readable storage media having stored thereon instructions that, when executed on a computing device having one or more processors, configure the computing device to implement the steps recited in claim 22.

27. A system for securing digital data so that a secure policy is enforced on the digital data to control its use on a computing device, the system comprising:
- a memory having stored thereon machine instructions; and
  
  a processor coupled to the memory, said processor executing the machine instructions, which configure the processor to carry out a plurality of functions, including;
  
  processing the digital data to create a data digest that uniquely corresponds to the digital data, wherein the digital data comprise a plurality of sections;
  
  including the data digest in a header of the digital data;
  
  processing each of the plurality of sections to produce a plurality of section digests uniquely corresponding to the plurality of sections of the digital data;
  
  including the plurality of section digests in the header;
  
  including, in the header of the digital data, information to be applied by the computing device to enforce the secure policy regarding use of the digital data by the computing device, wherein the information comprises one or more of;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use, wherein the type of media is an optical storage disc;
  
  a console system setting that must be in place prior to use of the digital data;
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;
  
  processing the header that includes the data digest to create a header digest that uniquely corresponds to the header; and
  
  encrypting the header digest with a private key to produce an encrypted header digest, said private key having a corresponding public key that is provided when the digital data are to be used on the computing device, producing secured digital data that include the digital data, the header, and the encrypted header digest for distribution and use on the computing device.
- View Dependent Claims (28, 29, 30, 31)
- - 28. The system of claim 27, wherein the machine instructions cause the processor to implement a hashing algorithm to produce the data digest and the header digest, respectively.
  - 29. The system of claim 27, wherein the information to be applied by the computing device to enforce the secure policy regarding use of the digital data by the computing device is included within the header from which the header digest is created.
  - 30. The system of claim 27, further comprising a removable non-volatile storage medium that is coupled to the processor, wherein the machine instructions further cause the processor to store the digital data with the encrypted header on the removable medium.
  - 31. The system of claim 27, wherein the machine instructions cause the processor to transmit the digital data with the encrypted header over at least one of a wire and a wireless communication network, for use by the computing device.

32. A system for authenticating digital data, so as to ensure that the digital data have not been altered and so as to enforce secure policies regarding use of the digital data, said digital data being distributed along with a header and with an encrypted header digest for the digital data that was produced by encrypting the header digest with a private key, the system comprising:
- a memory having stored thereon machine instructions; and
  
  a processor coupled to the memory, said processor executing the machine instructions, which configure the processor to carry out a plurality of functions, including;
  
  decrypting the encrypted header digest with a public key that corresponds to the private key, to recover the header digest having information to be applied by the system to enforce the secure policies regarding use of the digital data at the system, the digital data comprising a plurality of sections, the header including a plurality of session digests each uniquely corresponding to one of the plurality of sections of the digital data that was produced prior to distribution of the digital data, wherein the information comprises one or more of;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use, wherein the type of media is an optical storage disc;
  
  a console system setting that must be in place prior to use of the digital data;
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;
  
  creating a confirming header digest of the header that was distributed with the digital data, said confirming header digest being produced in accord with the machine instructions that carry out a method identical to that employed in producing the header digest that was encrypted;
  
  comparing the confirming header digest with the header digest that was recovered by decrypting;
  
  producing a confirming section digest for each of the plurality of sections by processing each of the plurality of sections of the digital data with a procedure identical to that previously used to produce the corresponding section digest in the header;
  
  comparing the confirming section digest for each of the plurality of sections with the corresponding section digest of the plurality of sections digests in the header;
  
  determining that the secure policies enable the digital data to be used on the system, the determining comprising comparing indication of one or more parameters included in the secure policies with state of one or more corresponding parameters on the system for a match; and
  
  only enabling the digital data to be used on the system if;
  
  the confirming header digest is identical to the header digest that was recovered;
  
  the confirming section digest for said section is identical to the corresponding section digest for said section included in the header; and
  
  the digital data is allowed for use on the system based on the secure policies.
- View Dependent Claims (33, 34, 35)
- - 33. The system of claim 32, wherein the one or more corresponding parameters on the system are set in the memory of the system.
  - 34. The system of claim 33, wherein the machine instructions enable an authorized user to enter and store a setting in the memory for a parameter that defines a rating of the digital data that the authorized user permits to be used on the system.
  - 35. The system of claim 33, wherein the one or more parameters on the system are set before the system is made available for use by an end user.

36. A system for enforcing a secure policy regarding use of digital data distributed for use on the system, said digital data including information to be applied by the system to enforce the secure policy regarding use of the digital data on the system and an encrypted digest, a digest that was encrypted to provide the encrypted digest being uniquely derived from a portion of the digital data that includes the information, comprising:
- a memory having stored thereon a plurality of machine instructions; and
  
  a processor coupled to the memory and which executes the machine instructions, configuring the processor to carry out the following functions;
  
  decrypting the encrypted digest to recover the digest having a plurality of parameters to be applied by the system to enforce the secure policy regarding use of the digital data at the system, wherein the plurality of parameters comprise;
  
  an indication of a geographic region in which the digital data are authorized to be used;
  
  an indication of a type of media from which the digital data are authorized to be loaded into the computing device for use;
  
  a rating that is based upon at least one characteristic of the digital data;
  
  a console system setting that must be in place prior to use of the digital data;
  
  a fault tolerance indication of whether the digital data can be trusted when certain system components are determined to be at fault; and
  
  an ejection control indication of whether the digital data can be trusted to permit removal of a portable medium upon which the digital data is stored;
  
  creating a confirmation digest, using an identical technique that was previously used to create the digest that was previously encrypted;
  
  comparing the confirmation digest with the digest that was decrypted; and
  
  if the confirmation digest matches the digest that was decrypted, using the information to enforce use of the digital data on the system in accord with the secure policy, and if not, precluding use of the digital data on the system, wherein the using the information to enforce use of the digital data on the system comprises comparing each of the plurality of parameters with a corresponding parameter on the system for a match.
- View Dependent Claims (37, 38, 39)
- - 37. The system of claim 36, wherein the rating relates to a secure policy providing parental control of the digital data that are used on the system, further comprising the step of enabling only an authorized user to set a specific rating limit on the system, said specific rating limit being stored in the memory and not readily altered by an unauthorized user.
  - 38. The system of claim 37, wherein the specific rating limit corresponds to an age level rating that is compared to the rating indicated in the information, said digital data only being enabled for use on the system if the age level rating is not exceeded by the rating indicated by the information.
  - 39. The system of claim 36, wherein the system comprises a game console and wherein the digital data comprise game software that is executed on the computing device, if enabled, so that a player can play the game software.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Sharpe, Tracy Clayton, Pirich, Christopher Michael, Thomason, Jonathan Gerald, Lange, Jonathan E., Asmi, Yasser B., Whitten, Jon Marcus Randall
Primary Examiner(s)
Smithers; Matthew B
Assistant Examiner(s)
Khoshnoodi; Nadia

Application Number

US10/101,999
Publication Number

US 20030182574A1
Time in Patent Office

2,814 Days
Field of Search

None
US Class Current

713/161
CPC Class Codes

A63F 13/12   involving interaction betwe...

A63F 13/30   Interconnection arrangement...

A63F 13/71   using secure communication ...

A63F 13/73   Authorising game programs o...

A63F 13/77   involving data related to g...

A63F 13/95   Storage media specially ada...

A63F 2300/401   Secure communication, e.g. ...

A63F 2300/532   using secure communication,...

G06F 21/51   at application loading time...

Secure digital data format and code enforced policy

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

28 Citations

39 Claims

Specification

Use Cases

Quick Links

Others

Secure digital data format and code enforced policy

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

28 Citations

39 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others