Method and apparatus for secure key delivery for decrypting bulk digital content files at an unsecure site
First Claim
1. A method comprising:
- a server computing device encrypting each of a plurality of digital content documents with a corresponding key to generate corresponding encrypted document content for each of the plurality of digital content documents;
the server computing device computing for each digital content document a document identifier that is computed from, but cannot be derived solely from, each digital content document'"'"'s corresponding encrypted document content, wherein the computing for each digital content document a document identifier further includes using a text string embedded in program code in the server computing device;
the server computing device creating a key pair list of document identifier and decryption key pairs;
the server computing device assembling each digital content document'"'"'s corresponding encrypted document content and the key pair list into a distribution archive file; and
the server computing device encrypting the distribution archive file with a scheduled key unique to the distribution archive file.
4 Assignments
0 Petitions
Accused Products
Abstract
Rather than downloading each content document on demand from the publisher location to the user site, at the publisher location, each content document is encrypted and then multiple encrypted documents are assembled into a distribution archive that is itself encrypted with a scheduled key. The distribution archive is then downloaded into a content server at the user site. When the content server receives the distribution archive, it decrypts the archive file and unpacks the encrypted documents. The scheduled key used to decrypt an archive file is included with an archive file that was sent previously to the user site in accordance with the subscription service. The scheduled key to decrypt the first archive file sent to the user is sent from the publisher to the user over a communication channel different from the communication channel used to send the archive file from the publisher to the user.
-
Citations
11 Claims
-
1. A method comprising:
-
a server computing device encrypting each of a plurality of digital content documents with a corresponding key to generate corresponding encrypted document content for each of the plurality of digital content documents; the server computing device computing for each digital content document a document identifier that is computed from, but cannot be derived solely from, each digital content document'"'"'s corresponding encrypted document content, wherein the computing for each digital content document a document identifier further includes using a text string embedded in program code in the server computing device; the server computing device creating a key pair list of document identifier and decryption key pairs; the server computing device assembling each digital content document'"'"'s corresponding encrypted document content and the key pair list into a distribution archive file; and the server computing device encrypting the distribution archive file with a scheduled key unique to the distribution archive file. - View Dependent Claims (2, 3, 4)
-
-
5. A non-transitory computer-readable medium having executable computer instructions stored therein, the instructions comprising:
-
instructions for encrypting each digital content document with a key to generate encrypted document content at a publishing site; instructions for computing each digital content document a document identifier that is computed from, but cannot derived solely from, the encrypted document content at the publishing site, wherein the instructions for computing for each digital content document a document identifier further includes using a text string embedded in program code in the publishing site; instructions for creating a list of document identifier and decryption key pairs at the publishing site; instructions for assembling the encrypted document content for each digital content document and the key pair list into a distribution archive file at the publishing site; instructions for encrypting the distribution archive file with a scheduled key unique to that distribution archive file at the publishing site and for placing the encrypted distribution file on a stream of distribution archive files from the publishing site to an unsecured site. - View Dependent Claims (6, 7)
-
-
8. An apparatus, comprising:
-
a server computing device; a memory device containing one or more programs which when executed, implementing operations of; encrypting each of a plurality of digital content documents with a corresponding key to generate corresponding encrypted document content for each of the plurality of digital content documents; computing for each digital content document a document identifier that is computed from, but cannot be derived solely from, each digital content document'"'"'s corresponding encrypted document content, wherein the computing for each digital content document a document identifier further includes using a text string embedded in program code in the server computing device; creating a key pair list of document identifier and decryption key pairs; assembling each digital content document'"'"'s corresponding encrypted document content and the key pair list into a distribution archive file; and encrypting the distribution archive file with a scheduled key unique to the distribution archive file. - View Dependent Claims (9, 10, 11)
-
Specification