Data management

US 7,986,785 B2
Filed: 08/29/2006
Issued: 07/26/2011
Est. Priority Date: 10/27/1994
Status: Expired due to Fees

First Claim

Patent Images

1. A method, comprising:

a first computer system receiving an encrypted version of data;

the first computer system decrypting the encrypted version of the data using a first crypt key to produce decrypted data;

the first computer system editing the decrypted data to produce edited decrypted data;

the first computer system re-encrypting the edited decrypted data using a second crypt key to produce a re-encrypted version of the data, wherein the second crypt key is different from the first crypt key, and wherein one or both of the first crypt key and the second crypt key is a utilization permit key usable to authorize at least one, but not all, of a plurality of types of usages of data;

the first computer system attaching identification information to the re-encrypted version of the data, wherein the identification information is associated with a user identifier that is authorized to decrypt the re-encrypted version of the data; and

after the attaching the identification information, the first computer system transmitting the re-encrypted version of the data and the attached identification information to a second computer system via a communication network, wherein the identification information is usable to request a key to decrypt the re-encrypted version of the data.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of methods, apparatuses, devices, and/or systems for data copyright management are described.

Citations

24 Claims

1. A method, comprising:
- a first computer system receiving an encrypted version of data;
  
  the first computer system decrypting the encrypted version of the data using a first crypt key to produce decrypted data;
  
  the first computer system editing the decrypted data to produce edited decrypted data;
  
  the first computer system re-encrypting the edited decrypted data using a second crypt key to produce a re-encrypted version of the data, wherein the second crypt key is different from the first crypt key, and wherein one or both of the first crypt key and the second crypt key is a utilization permit key usable to authorize at least one, but not all, of a plurality of types of usages of data;
  
  the first computer system attaching identification information to the re-encrypted version of the data, wherein the identification information is associated with a user identifier that is authorized to decrypt the re-encrypted version of the data; and
  
  after the attaching the identification information, the first computer system transmitting the re-encrypted version of the data and the attached identification information to a second computer system via a communication network, wherein the identification information is usable to request a key to decrypt the re-encrypted version of the data.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method according to claim 1, wherein the identification information identifies a user of the first computer system, and wherein the re-encrypted version of the data is decryptable to reproduce the decrypted data.
  - 3. The method according to claim 2, further comprising:
    - the first computer system sending a key request to a key control server, wherein the request includes the identification information; and
      
      responsive to the request, the first computer system receiving the first crypt key and the second crypt key.
  - 4. The method according to claim 3,wherein the first crypt key and the second crypt key are single-use keys, wherein the decrypting is performed via a first processor during a first time period, wherein the re-encrypting is performed via a second processor during a second time period, and wherein the first time period and the second time period at least partially overlap.
  - 5. The method according to claim 1, wherein the plurality of types of usages includes two or more types of the following types of usages:
    - viewing data, storing data, copying data, editing data, and transferring data.

6. An article of manufacture including a computer-readable medium having stored thereon instructions that, in response to execution by a first computing device, cause the first computing device to perform operations comprising:
- receiving data, wherein the received data is encrypted;
  
  decrypting the received data using a decryption key to produce decrypted data;
  
  editing the decrypted data to produce edited decrypted data;
  
  re-encrypting the edited decrypted data using a re-encryption key to produce re-encrypted data, wherein the re-encryption key is different from the decryption key, and wherein one or both of the decryption key and the re-encryption key is a utilization permit key that is usable to authorize at least one, but not all, of a plurality of types of usages of data;
  
  appending identification information to the re-encrypted data, wherein the identification information is associated with a user identifier that is authorized decrypt the re-encrypted data; and
  
  transmitting the re-encrypted data and the appended identification information to a second computing device via a computer network, wherein the identification information is usable to request a key to decrypt the re-encrypted data.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14)
- - 7. The article of manufacture according to claim 6, wherein the article has a card-like package, and wherein the article includes at least first and second processors configured to decrypt and re-encrypt the data, and wherein the decrypting and the re-encrypting are performed during time periods that partially overlap.
  - 8. The article of manufacture according to claim 6, wherein the identification information identifies a user of the first computing device.
  - 9. The article of manufacture according to claim 6, wherein the operations further comprise:
    - sending a key request to a key control server, wherein the request includes the identification information; and
      
      responsive to the request, receiving the decryption key and the re-encryption key.
  - 10. The article of manufacture according to claim 9, wherein the decryption key and the re-encryption key are single use keys, and wherein the re-encrypted data is decryptable to reproduce the decrypted data.
  - 11. The article of manufacture according to claim 6, wherein the identification information includes a digital signature.
  - 12. The article of manufacture of claim 6, wherein the identification information includes copyright information.
  - 13. The article of manufacture of claim 6, wherein the identification information includes information relating to a user from which the data was received, or to a user to which the re-encrypted data is to be transferred.
  - 14. The article of manufacture of claim 6, further comprising at least one processor configured to execute the program instructions.

15. A computer system, comprising:
- one or more processors; and
  
  a memory, coupled to the one or more processors, storing program instructions executable by the computer system to cause the computer system to;
  
  decrypt encrypted data using a decryption key to produce decrypted data;
  
  edit the decrypted data to produce edited decrypted data;
  
  re-encrypt the edited decrypted data using a re-encryption key to produce re-encrypted data, wherein the re-encryption key is different from the decryption key, and wherein one or both of the decryption key and the re-encryption key is a utilization permit key that is usable to authorize at least one, but not all, of a plurality of types of usages of data;
  
  add identification information to the re-encrypted data, wherein the identification information is associated with a user identifier that is authorized to decrypt the re-encrypted data; and
  
  transfer the re-encrypted data and the added identification information to a receiving device via a computer network, wherein the identification information is usable by the receiving device to request a key to decrypt the re-encrypted data.
- View Dependent Claims (16, 17)
- - 16. The computer system of claim 15,wherein the identification information includes one or both of copyright information and a digital signature.
  - 17. The computer system of claim 15, wherein the program instructions are further executable by the computer system to cause the computer system to:
    - send a key request to a key control server, wherein the request includes the identification information; and
      
      responsive to the request, receive the decryption key and the re-encryption key.

18. A method, comprising:
- a computer system receiving an encrypted version of data;
  
  the computer system decrypting the received data using a decryption key to produce decrypted data;
  
  the computer system editing the decrypted data to produce edited decrypted data;
  
  the computer system re-encrypting the edited decrypted data using a re-encryption key to produce re-encrypted data, wherein the re-encryption key is different from the decryption key, and wherein one or both of the decryption key and the re-encryption key is a utilization permit key that is usable to authorize at least one, but not all, of a plurality of types of usages of data; and
  
  the computer system transmitting the re-encrypted data and identification information via a computer network to a receiving device, wherein the identification information is associated with a user identifier that is authorized to decrypt the re-encrypted data, and wherein the identification information is usable by the receiving device to obtain a key to decrypt the re-encrypted data.
- View Dependent Claims (19, 20, 21, 22, 23)
- - 19. The method of claim 18, further comprising:
    - sending a key request to a key control server, wherein the request includes the identification information; and
      
      responsive to the request, receiving the decryption key and the re-encryption key.
  - 20. The method of claim 18, wherein the identification information includes a digital signature.
  - 21. The method of claim 18, wherein the identification information includes copyright information.
  - 22. The method of claim 18, wherein the identification information includes information indicating a source from whom the encrypted data was received.
  - 23. The method of claim 18, wherein the identification information includes information indicating a recipient to whom the re-encrypted data is to be transferred.

24. An apparatus, comprising:
- means for decrypting encrypted data using a decryption key to produce decrypted data;
  
  means for editing the decrypted data to produce edited decrypted data;
  
  means re-encrypting the edited decrypted data using a re-encryption key to produce re-encrypted data, wherein the re-encryption key is different from the decryption key, and wherein one or both of the decryption key and the re-encryption key is a utilization permit key that is usable to authorize at least one, but not all, of a plurality of types of usages of data;
  
  means for adding identification information to the re-encrypted data, wherein the identification information is associated with a user identifier that is authorized to decrypt the re-encrypted data; and
  
  means for transmitting the re-encrypted data and the added identification information via a computer network to a receiving party, wherein the identification information is usable by the receiving party to request a key to decrypt the re-encrypted data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Piracy Protection LLC (LF Capital Partners, LLC)
Original Assignee
Intarsia Software LLC (Intellectual Ventures LLC)
Inventors
Saito, Makoto
Primary Examiner(s)
Song; Hosuk
Assistant Examiner(s)
TRUVAN, LEYNNA THANH

Application Number

US11/512,885
Publication Number

US 20070088960A1
Time in Patent Office

1,792 Days
Field of Search

726 2- 4, 726/6, 726/17, 726/18, 726/21, 726/27, 726/30, 380/228, 380/229, 380/277, 380/282, 380/285, 380 28- 30, 380/286, 709/203, 709/223, 709/225, 713/189, 713/193, 705/51, 705 57- 59
US Class Current

380/277
CPC Class Codes

G06F 21/109   by using specially-adapted ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2211/008   Public Key, Asymmetric Key,...

G06F 2221/2107   File encryption

G06Q 20/00   Payment architectures, sche...

G06Q 20/02   involving a neutral party, ...

G06Q 20/06   Private payment circuits, e...

G06Q 20/1235   with control of digital rig...

G06Q 20/363   with the personal data of a...

G06Q 20/3823   combining multiple encrypti...

G06Q 20/3829   involving key management

G06T 1/0021   Image watermarking

G07F 7/0866   by active credit-cards adap...

G07F 7/1016   Devices or methods for secu...

H04L 63/0442   wherein the sending and rec...

H04L 63/0464   using hop-by-hop encryption...

H04L 63/062   for key distribution, e.g. ...

H04L 63/126   the source of the received ...

H04N 21/2347   involving video stream encr...

H04N 21/2541   Rights Management protectin...

H04N 21/4181 : for conditional access

H04N 21/426 : Internal components of the ...

H04N 21/4334 : Recording operations record...

H04N 21/4405 : involving video stream decr...

H04N 21/4408 : involving video stream encr...

H04N 21/4623 : Processing of entitlement m...

H04N 21/4627 : Rights management associate...

H04N 21/835 : Generation of protective da...

H04N 7/1675 : Providing digital key or au...

View All

Data management

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Data management

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links