Data processing system and method therefor
First Claim
1. A data providing system for distributing content data, comprising:
- a management apparatus that receives, via a network, content data, content key data, and usage control policy data from a data providing apparatus and that provides, via the network, to said data providing apparatus, a key file containing said content key data and the usage control policy data, the usage control policy data including operating rules for said content data, at least a part of said key file being encrypted;
said data providing apparatus that encrypts said content data using said content key data stored in said key file and that distributes, via the network, a secure container including said encrypted content data, said key file, and signature data of said data providing apparatus, to a data processing apparatus; and
said data processing apparatus that decrypts said secure container and said key file to obtain said content key data from said key file, that decrypts said encrypted content data based on the usage control policy data stored in said key file, and that stores said decrypted content data.
0 Assignments
0 Petitions
Accused Products
Abstract
A data providing system for distributing content data from a data providing apparatus to a data processing apparatus and managing said data providing apparatus and said processing apparatus by a management apparatus. In the system, the management apparatus is configured to provide a key file in which is stored content key data and usage control policy data indicating a content of rights, including permission conditions of the content data. At least a part of said key file is encrypted. The data providing apparatus is configured to provide the content data encrypted by using the content key data stored in the key file. The data processing apparatus is configured to decrypt the key file to obtain the content key data from the key file and determine handling of the content data based on the usage control policy data stored in the key file.
26 Citations
12 Claims
-
1. A data providing system for distributing content data, comprising:
-
a management apparatus that receives, via a network, content data, content key data, and usage control policy data from a data providing apparatus and that provides, via the network, to said data providing apparatus, a key file containing said content key data and the usage control policy data, the usage control policy data including operating rules for said content data, at least a part of said key file being encrypted; said data providing apparatus that encrypts said content data using said content key data stored in said key file and that distributes, via the network, a secure container including said encrypted content data, said key file, and signature data of said data providing apparatus, to a data processing apparatus; and said data processing apparatus that decrypts said secure container and said key file to obtain said content key data from said key file, that decrypts said encrypted content data based on the usage control policy data stored in said key file, and that stores said decrypted content data. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of distributing encrypted content data from a data providing apparatus to a data processing apparatus and managing said data providing apparatus and said data processing apparatus by a management apparatus, said method comprising the steps of:
-
receiving, at said management apparatus via a network, content data, content key data, and usage control policy data, from said data processing apparatus, and encrypting at least part of a key file containing said content key data and the usage control policy data, the usage control policy data including operating rules for said content data; encrypting, by said data providing apparatus, said content data using said content key data stored in said key file that is provided by said management apparatus via the network, and communicating, via the network, a secure container including said encrypted content data, said key file, and signature data of said data providing apparatus, from said data providing apparatus to said data processing apparatus; and decrypting, by said data processing apparatus, said secure container and said key file to obtain said content key data from said key file, decrypting said encrypted content data based on the usage control policy data stored in said key file, and storing said decrypted content data. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
Specification