×

Key distribution system

  • US 8,396,222 B2
  • Filed: 03/03/2009
  • Issued: 03/12/2013
  • Est. Priority Date: 03/10/2008
  • Status: Expired due to Fees
First Claim
Patent Images

1. A key distribution system for controlling access to content by a plurality of rendering devices, comprising computer processing machinery including:

  • an epoch processing machinery to provide a plurality of epochs, each of the epochs including a plurality of service key periods;

    a service key processing machinery to provide a plurality of service keys so that, for each one of the epochs, a batch of the service keys is provided for employment in decryption of the content for a plurality of services across the service key periods of the one epoch such that a different one of the service keys in the batch is valid for each different combination of the services and the service key periods;

    a group processing machinery to provide a plurality of group keys for each of the epochs such that;

    for each of the epochs, each of the rendering devices is assigned one of the group keys such that more than one of the rendering devices may be assigned a same one of the group keys;

    for each of the epochs, the assignment of the group keys groups together the rendering devices having the same one group key, thereby defining a plurality of groups;

    each of the service keys is valid across all the groups; and

    in different ones of the epochs, the rendering devices are grouped differently thereby facilitating traitor tracing;

    a period master key processing machinery to provide for each one of the service key periods in the one epoch a different period master key;

    an encryption processing machinery to encrypt, for each of the epochs, each of the service keys, in the batch of the service keys with each of the group keys, such that each of the service keys is individually encrypted with a different one of the group keys yielding a plurality of group-key-encrypted service keys from each of the service keys the encryption processing machinery being configured to further encrypt each one of the group-key-encrypted service keys using the period master key of the one service key period; and

    a delivery processing machinery to;

    (a) distribute to the rendering devices for each one of the epochs, the group-key-encrypted service keys for the batch of the service keys and the group keys of the one epoch; and

    (b) for each one of the service key periods, distribute the period master key for the one service key period to the rendering devices during the service key period immediately prior to the one service key period.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×