System and method for using DRM to control conditional access to broadband digital content
First Claim
Patent Images
1. A method for protecting broadcast digital content comprising:
- encrypting digital content with a first key;
encrypting the first key with a second key;
broadcasting the encrypted first key;
broadcasting the encrypted digital content in a number of segments;
protecting the second key and assigning rights to the second key;
transmitting, via a protected voucher, the protected second key and the assigned rights to a mobile terminal over at least one of a number of networks; and
transmitting a protected executable application to the mobile terminal, wherein the protected executable application governs key decryption, wherein the protected executable application enforces the assigned rights, and wherein the second key decrypts the protected executable application.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method is disclosed for providing DRM in a broadcast environment. In accordance with the embodiment, a DRM system distributes encrypted service keys over the mobile telephone network to a mobile terminal. The mobile terminal receives the encrypted service key and uses it to decrypt encrypted content keys received from a DVB set top box. The decrypted content keys are sent to the set box over local link where they are used to decrypt encrypted broadcast content. A power management technique for mobile receivers is also disclosed that enables the receiver hardware to power off during a portion of the rendering process.
29 Citations
15 Claims
-
1. A method for protecting broadcast digital content comprising:
-
encrypting digital content with a first key; encrypting the first key with a second key; broadcasting the encrypted first key; broadcasting the encrypted digital content in a number of segments; protecting the second key and assigning rights to the second key; transmitting, via a protected voucher, the protected second key and the assigned rights to a mobile terminal over at least one of a number of networks; and transmitting a protected executable application to the mobile terminal, wherein the protected executable application governs key decryption, wherein the protected executable application enforces the assigned rights, and wherein the second key decrypts the protected executable application. - View Dependent Claims (2, 3)
-
-
4. A method for protecting broadcast digital content comprising:
-
encrypting digital content with a first key; encrypting the first key with a second key; broadcasting the encrypted digital content in a number of segments, wherein each segment is broadcast in less time than is required to render the encrypted digital content contained in the segment; protecting the second key and assigning rights to the second key; transmitting, via a protected voucher, the protected second key and the assigned rights to a mobile terminal over a mobile network; and transmitting a protected executable application to the mobile terminal, wherein the protected executable application governs key decryption, wherein the protected executable application enforces the assigned rights, and wherein the second key decrypts the protected executable application.
-
-
5. A method for viewing protected digital content comprising:
-
receiving and buffering a broadcasted segment of encrypted digital content and an encrypted first key with a broadcast receiver of a mobile terminal and turning off the broadcast receiver after the segment is received; receiving, via a protected voucher, a protected second key and assigned rights at the mobile terminal over a mobile network; receiving a protected executable application, wherein the protected executable application governs key decryption, wherein the protected executable application enforces the assigned rights, and wherein the second key decrypts the protected executable application; decrypting the encrypted first key with the protected second key in accordance with the assigned rights; decrypting the broadcast segment of encrypted digital content with the decrypted first key; rendering the digital content; and turning the broadcast receiver back on after a predetermined period. - View Dependent Claims (6, 7, 8, 9)
-
-
10. A system for protecting digital video broadcast content comprising:
-
a mobile network; a computer connected to the mobile network; a mobile terminal connected to the mobile network; wherein the mobile terminal comprises a content receiving device and content rendering device; wherein the content receiving device is programmed to receive one-way content transmissions containing a plurality of segments of encrypted digital content and at least one encrypted first key; wherein the computer is programmed to protect a second key, create assigned rights identifying allowed uses of the second key, and send the protected second key, the assigned rights, and a protected executable application to the mobile terminal over the mobile network, wherein the protected executable application governs key decryption, wherein the protected executable application enforces the assigned rights, and wherein the protected second key and the assigned rights are sent via a protected voucher; wherein the mobile terminal is programmed to use the protected second key in accordance with the assigned rights to decrypt the encrypted first key, and the content receiving device is further programmed to decrypt the encrypted digital content with the decrypted first key; wherein the mobile terminal is programmed to turn off the content reception device after receiving a first segment of encrypted digital content, and then turning the content reception device on after a predetermined period of time to receive a second segment of encrypted digital content; wherein the rendering device renders the decrypted digital content; and wherein the second key decrypts the protected executable application.
-
-
11. A system for displaying protected digital content comprising:
-
a mobile network; a mobile terminal connected to the mobile network; the mobile terminal comprising a content receiving device capable of receiving broadcast content and a rendering device capable of rendering content; wherein the content receiving device is programmed to receive broadcast content transmissions containing segments of encrypted digital content, at least one encrypted first key, and a protected executable application, wherein the protected executable application governs key decryption, wherein the protected executable application enforces assigned rights, and wherein the content receiving device is further programmed to send the encrypted first key to the mobile terminal over a short range network; wherein the mobile terminal is programmed to use a protected second key in accordance with the assigned rights to decrypt the encrypted first key, and the content receiving device is further programmed to decrypt the encrypted digital content with the decrypted first key, wherein the mobile terminal receives the protected second key and the assigned rights via a protected voucher; wherein the mobile terminal is programmed to turn off the content reception device after receiving a first segment of encrypted digital content, and then turning the content reception device on after a predetermined period of time to receive a second segment of encrypted digital content; wherein the rendering device renders the decrypted digital content; and wherein the second key decrypts the protected executable application. - View Dependent Claims (12)
-
-
13. A system for displaying protected digital content comprising:
-
a mobile terminal; the mobile terminal comprising a content receiving device capable of receiving broadcast content and a rendering device capable of rendering content; wherein the content receiving device is programmed to receive broadcast content transmissions containing segments of encrypted digital content, at least one encrypted first key, and a protected executable application, wherein the protected executable application governs key decryption, wherein the protected executable application enforces assigned rights, and wherein the content receiving device is further programmed to communicate the encrypted first key to the mobile terminal; wherein the mobile terminal is programmed to use a protected second key in accordance with the assigned rights to decrypt the encrypted first key, and the content receiving device is further programmed to decrypt the encrypted digital content with the decrypted first key, wherein the mobile terminal receives the protected second key and the assigned rights in a protected voucher; wherein the mobile terminal is programmed to turn off the content reception device after receiving a first segment of encrypted digital content, and then turning the content reception device on after a predetermined period of time to receive a second segment of encrypted digital content; wherein at least one of the first keys is decrypted and then the encrypted digital content is decrypted and the rendering device renders the decrypted digital content; and wherein the second key decrypts the protected executable application.
-
-
14. An apparatus comprising:
-
a memory having program code stored therein; and a processor disposed in communication with the memory for carrying out instructions in accordance with the stored program code; wherein the processor, in accordance with the program code, is configured to; receive and buffer a broadcasted segment of encrypted digital content and an encrypted first key with a broadcast receiver of the apparatus and turn off the broadcast receiver after the segment is received; receive, via a protected voucher, a protected second key and assigned rights at the apparatus over a mobile network; receive a protected executable application, wherein the second key decrypts the protected executable application, wherein the protected executable application governs key decryption, and wherein the protected executable application enforces the assigned rights; decrypt the encrypted first key with the protected second key in accordance with the assigned rights; decrypt the broadcast segment of encrypted digital content with the decrypted first key; render the digital content; and turn the broadcast receiver back on after a predetermined period.
-
-
15. An article of manufacture comprising a computer readable medium containing program code that when executed causes an apparatus to perform:
-
receiving and buffering a broadcasted segment of encrypted digital content and an encrypted first key with a broadcast receiver of the apparatus and turning off the broadcast receiver after the segment is received; receiving, via a protected voucher, a protected second key and assigned rights at the apparatus over a mobile network; receiving a protected executable application, wherein the second key decrypts the protected executable application, wherein the protected executable application governs key decryption, and wherein the protected executable application enforces the assigned rights; decrypting the encrypted first key with the protected second key in accordance with the assigned rights; decrypting the broadcast segment of encrypted digital content with the decrypted first key; rendering the digital content; and turning the broadcast receiver back on after a predetermined period.
-
Specification