Method and system for securely distributing computer software products
First Claim
1. A system including a server computer coupled to one or more client computers over a communications network, the system comprising:
- a customer database storing user information, the user information comprising a user identifier (ID), and a content database storing a plurality of software product titles, the customer database and content database embodied in at least one memory, the at least one memory coupled to the communications network;
a distribution module programmed to distribute a software product from the plurality of software product titles to a user of a client computer of the one or more client computers upon request of the user, each software product being encrypted using a title public key;
an encryption module programmed to encrypt a title private key for the software product using a first layer of encryption based on the user ID and a second layer of encryption based on a client computer identifier to create multi-layer encryption of the title private key, the multi-layer encryption using key pairs exchanged between both the server computer and the client computer; and
a decryption module programmed to receive the multi-layer encryption of the title private key and, before gaining access to the title private key, decrypting each layer associated with the user ID and the client computer identifier to then allow use of the title private key for decryption of the software product that was encrypted using the title public key, such that decryption of the software product allows access to the software product.
3 Assignments
0 Petitions
Accused Products
Abstract
A product distribution and payment system for limited use or otherwise restricted digital software products. Digital content data comprising a software product to be rented is made available to customers through a detachable local storage medium, such as a DVD or CD-ROM disc, or over a network connection. The product digital content is capable of being accessed and played back through a computer or game console at the customer site. The software product may comprise a limited use product that is restricted in the number of plays or duration of use. The customer is allowed to download and purchase the product using his computer or playback console. The product purchase information is encoded and transmitted to the content distributor. When the preset time or number of plays has elapsed the software program is frozen and access to the program is not allowed. In one embodiment of the present invention, a two-way, public key/private key encryption system is implemented to transmit the product and usage information between the server providing the software product and the customer computer system.
-
Citations
10 Claims
-
1. A system including a server computer coupled to one or more client computers over a communications network, the system comprising:
-
a customer database storing user information, the user information comprising a user identifier (ID), and a content database storing a plurality of software product titles, the customer database and content database embodied in at least one memory, the at least one memory coupled to the communications network; a distribution module programmed to distribute a software product from the plurality of software product titles to a user of a client computer of the one or more client computers upon request of the user, each software product being encrypted using a title public key; an encryption module programmed to encrypt a title private key for the software product using a first layer of encryption based on the user ID and a second layer of encryption based on a client computer identifier to create multi-layer encryption of the title private key, the multi-layer encryption using key pairs exchanged between both the server computer and the client computer; and a decryption module programmed to receive the multi-layer encryption of the title private key and, before gaining access to the title private key, decrypting each layer associated with the user ID and the client computer identifier to then allow use of the title private key for decryption of the software product that was encrypted using the title public key, such that decryption of the software product allows access to the software product. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system including a server computer networked to one or more client computers over a communications network, the system comprising:
-
a customer database storing user information, the user information comprising a user identifier (ID), and a content database storing a plurality of software product titles, the customer database and content database embodied in at least one memory, the at least one memory coupled to the communications network; a distribution module programmed to distribute a software product from the plurality of software product titles to a user of a client computer upon request of the user, each software product being initially encrypted using a title public key; an encryption module programmed to encrypt a title private key for the software product using a first layer of encryption based on the user ID and a second layer of encryption based on a client computer identifier to create multi-layer encryption of the title private key that is initially encrypted, wherein the software product is encrypted with the title public key and is in turn encrypted using a public key/private key encryption system that defines the multi-layer encryption; and a decryption module programmed to receive the multi-layer encryption of the title private key and, before gaining access to the title private key, decrypting each layer associated with the user ID and the client computer identifier to then allow use of the title private key for final decryption of the software product that was initially encrypted using the title public key, such that decryption of the software product allows access to the software product. - View Dependent Claims (8, 9, 10)
-
Specification