Securing digital content system and method

US 8,402,558 B2
Filed: 06/10/2011
Issued: 03/19/2013
Est. Priority Date: 10/20/2003
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method for protecting electronic content, the method comprising the steps of:

sending a digital electronic container having a container identification to a client device, the digital electronic container containing content data arranged into data blocks encrypted using a symmetric keying technique, a predetermined data block storing a symmetric decryption key, and the predetermined data block and stored symmetric decryption key being encrypted using an asymmetric key technique;

storing an asymmetric decryption key associated with the digital electronic container in a registration database;

receiving client device footprint data from the client device;

combining the client device footprint data and the stored asymmetric decryption key to create a re-key value; and

sending the re-key value to the client device to re-key the predetermined data block at the client device thereby locking the content data to the client device.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method of encrypting digital content in a digital container and securely locking the encrypted content to a particular user and/or computer or other computing device is provided. The system uses a token-based authentication and authorization procedure and involves the use of an authentication/authorization server. This system provides a high level of encryption security equivalent to that provided by public key/asymmetric cryptography without the complexity and expense of the associated PKI infrastructure. The system enjoys the simplicity and ease of use of single key/symmetric cryptography without the risk inherent in passing unsecured hidden keys. The secured digital container when locked to a user or user'"'"'s device may not open or permit access to the contents if the digital container is transferred to another user'"'"'s device. The digital container provides a secure technique of distributing electronic content such as videos, text, data, photos, financial data, sales solicitations, or the like.

138 Citations

18 Claims

1. A computer-implemented method for protecting electronic content, the method comprising the steps of:
- sending a digital electronic container having a container identification to a client device, the digital electronic container containing content data arranged into data blocks encrypted using a symmetric keying technique, a predetermined data block storing a symmetric decryption key, and the predetermined data block and stored symmetric decryption key being encrypted using an asymmetric key technique;
  
  storing an asymmetric decryption key associated with the digital electronic container in a registration database;
  
  receiving client device footprint data from the client device;
  
  combining the client device footprint data and the stored asymmetric decryption key to create a re-key value; and
  
  sending the re-key value to the client device to re-key the predetermined data block at the client device thereby locking the content data to the client device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The computer-implemented method of claim 1, wherein all of the data blocks are encrypted using a symmetric key technique.
  - 3. The computer-implemented method of claim 1, wherein the step of sending a digital electronic container includes sending unencrypted data blocks.
  - 4. The computer-implemented method of claim 1, wherein the digital electronic container is configured with executable instructions that are configured to execute at the client device to combine the client device footprint data and the re-key value to create a fingerprint key, the fingerprint key for decrypting the predetermined data block thereby providing access to the symmetric decryption key.
  - 5. The computer-implemented method of claim 1, wherein the step of sending the re-key value to the client device includes sending the re-key value as part of a permission token.
  - 6. The computer-implemented method of claim 2, wherein the permission token includes a fingerprint key.
  - 7. The computer-implemented method of claim 1, wherein the step of receiving receives user input data and the step of combining produces a fingerprint key.
  - 8. The computer-implemented method of claim 7, wherein the user input data includes any one or more of:
    - financial data, account data, credit data, a social security number and identifying data.
  - 9. The computer-implemented method of claim 1, wherein the step of combining uses the container identifier to produce a fingerprint key.
  - 10. The computer-implemented method of claim 9, wherein the sending step sends the re-key value and the fingerprint key as part of a permission token.

11. A computer program product comprising computer executable instructions embodied on a computer readable storage device that when read and executed by a computer processor executes the following steps:
- sending a digital electronic container having a container identification to a client device, the digital electronic container containing content data arranged into data blocks encrypted using a symmetric keying technique, a predetermined data block storing a symmetric decryption key, and the predetermined data block being encrypted using an asymmetric key technique;
  
  storing an asymmetric decryption key associated with the digital electronic container in a registration database;
  
  receiving client device footprint data from the client device;
  
  combining the client device footprint data and the stored asymmetric decryption key to create a re-key value; and
  
  sending the re-key value to the client device to re-key the predetermined data block at the client device thereby locking the content data to the client device.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
- - 12. The computer-implemented method of claim 11, wherein all of the data blocks are encrypted using a symmetric key technique.
  - 13. The computer program product of claim 11, wherein the step of sending a digital electronic container includes sending unencrypted data blocks.
  - 14. The computer program product of claim 11, wherein the digital electronic container is configured with executable instructions that are configured to execute at the client device to combine the client device footprint data and the re-key value to create a fingerprint key, the fingerprint key for decrypting the predetermined data block thereby accessing the symmetric decryption key.
  - 15. The computer program product of claim 11, wherein the step of sending the re-key value to the client device includes sending the re-key value as part of a permission token.
  - 16. The computer program product of claim 11, wherein the permission token includes a fingerprint key.
  - 17. The computer program product of claim 11, wherein the step of receiving receives user input data and the step of combining produces a fingerprint key.
  - 18. The computer program product of claim 17, wherein the user input data includes any one or more of:
    - financial data, account data, credit data, a social security number and identifying data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Digital Reg of Texas, LLC (DRM Technologies LLC)
Original Assignee
Digital Reg of Texas, LLC (DRM Technologies LLC)
Inventors
Phillips, Eugene B. II, Ornstein, Seth
Primary Examiner(s)
Shiferaw, Eleni
Assistant Examiner(s)
CALLAHAN, PAUL E

Application Number

US13/157,993
Publication Number

US 20110246774A1
Time in Patent Office

648 Days
Field of Search

380/259, 380/281, 380/285, 705/57, 713/155, 713/160, 726/26, 726/30, 726/31
US Class Current

726/30
CPC Class Codes

G06F 21/602   Providing cryptographic fac...

G06F 21/6245   Protecting personal data, e...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/603   Digital right managament [DRM]

H04L 2463/101   applying security measures ...

H04L 63/0442   wherein the sending and rec...

H04L 63/045   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 9/0825   using asymmetric-key encryp...

H04L 9/0866   involving user or device id...

H04L 9/3213   using tickets or tokens, e....

H04L 9/3271   using challenge-response

Securing digital content system and method

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

138 Citations

18 Claims

Specification

Use Cases

Quick Links

Others

Securing digital content system and method

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

138 Citations

18 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others