System and methods for secure transaction management and electronics rights protection

US 8,543,842 B2
Filed: 05/23/2006
Issued: 09/24/2013
Est. Priority Date: 02/13/1995
Status: Expired due to Fees

First Claim

Patent Images

1. A method comprising:

creating an electronic document at a first user'"'"'s electronic appliance;

at the first user'"'"'s electronic appliance, securely associating first rule-based control information with the electronic document, the control information indicating that the electronic document may be used only by one or more designated users and only in one or more authorized ways, the control information being configured to be enforced by one or both of tamper-resistant software and hardware;

distributing the electronic document and the first control information to a second user'"'"'s electronic appliance, the second user'"'"'s electronic appliance comprising one or both of tamper-resistant software or hardware configured to govern use of electronic documents in accordance with the first control information;

determining that the second user is one of said one or more designated users;

receiving a request at the first user'"'"'s electronic appliance from the second user'"'"'s electronic appliance, the request seeking a modification to the first control information, and providing second control information that alters the one or more authorized ways in which the electronic document may be used; and

sending a modified set of control information based on the first and the second control information to the second user'"'"'s electronic appliance in response to the request;

wherein the second user'"'"'s electronic appliance is configured to securely enable the second user to make at least one use of the electronic document in accordance with the modified set of control information.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for secure transaction management and electronic rights protection. Electronic appliances such as computers equipped in accordance with the present invention help to ensure that information is accessed and used only in authorized ways, and maintain the integrity, availability, and/or confidentiality of the information. Such electronic appliances provide a distributed virtual distribution environment (VDE) that may enforce a secure chain of handling and control, for example, to control and/or meter or otherwise monitor use of electronically stored or disseminated information. Such a virtual distribution environment may be used to protect rights of various participants in electronic commerce and other electronic or electronic-facilitated transactions. Distributed and other operating systems, environments and architectures, such as, for example, those using tamper-resistant hardware-based processors, may establish security at each node. These techniques may be used to support an all-electronic information distribution, for example, utilizing the “electronic highway.”

618 Citations

24 Claims

1. A method comprising:
- creating an electronic document at a first user'"'"'s electronic appliance;
  
  at the first user'"'"'s electronic appliance, securely associating first rule-based control information with the electronic document, the control information indicating that the electronic document may be used only by one or more designated users and only in one or more authorized ways, the control information being configured to be enforced by one or both of tamper-resistant software and hardware;
  
  distributing the electronic document and the first control information to a second user'"'"'s electronic appliance, the second user'"'"'s electronic appliance comprising one or both of tamper-resistant software or hardware configured to govern use of electronic documents in accordance with the first control information;
  
  determining that the second user is one of said one or more designated users;
  
  receiving a request at the first user'"'"'s electronic appliance from the second user'"'"'s electronic appliance, the request seeking a modification to the first control information, and providing second control information that alters the one or more authorized ways in which the electronic document may be used; and
  
  sending a modified set of control information based on the first and the second control information to the second user'"'"'s electronic appliance in response to the request;
  
  wherein the second user'"'"'s electronic appliance is configured to securely enable the second user to make at least one use of the electronic document in accordance with the modified set of control information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, in which the modified set of control information indicates that the electronic document may be used by a set of designated users that differs at least in part from the one or more designated users.
  - 3. The method of claim 1, in which the one or more designated users comprise a group of users, and in which the first control information identifies the group of users.
  - 4. The method of claim 1, in which the first control information includes a requirement that a return receipt be sent to the first user from a recipient of the electronic document, the method further comprising:
    - receiving a return receipt from the second user'"'"'s electronic appliance at the first user'"'"'s electronic appliance in accordance with the first control information.
  - 5. The method of claim 1, in which the first control information specifies one or more auditing requirements.
  - 6. The method of claim 5, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication of how the electronic document has been used.
  - 7. The method of claim 5, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication if the electronic document has been printed by the recipient.
  - 8. The method of claim 5, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication if the electronic document has been viewed by the recipient.
  - 9. The method of claim 5, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication if the electronic document has been edited by the recipient.
  - 10. The method of claim 1, in which the first control information specifies that certain or all information in the electronic document may be extracted by an authorized recipient.
  - 11. The method of claim 1, in which the first control information specifies that the electronic document may be redistributed by an authorized recipient.
  - 12. The method of claim 1, in which the at least one use comprises viewing the electronic document.
  - 13. The method of claim 1, in which the at least one use comprises printing, copying, extracting text from, or embedding text within the electronic document.
  - 14. The method of claim 1, in which the first control information is configured to govern at least two of the following uses of the electronic document:
    - viewing the electronic document, printing the electronic document, copying the electronic document, or modifying the electronic document.

15. A method performed at a first user'"'"'s electronic appliance, the method comprising:
- creating an electronic document;
  
  associating rule-based first control information with the electronic document, the first control information indicating that the electronic document may be used only by one or more designated users and only in one or more authorized ways, the first control information being configured to be enforced by one or both of tamper-resistant software and hardware to govern use of the electronic document;
  
  determining that a second user is one of said one or more designated users;
  
  distributing the electronic document and the first control information to the second user'"'"'s electronic appliance;
  
  receiving a request from the second user'"'"'s electronic appliance, the request seeking a modification to the first control information and providing additional control information configured to authorize at least one additional use of the electronic document not authorized by the first control information; and
  
  sending a modified set of control information based on the first and the additional control information to the second user'"'"'s electronic appliance in response to the request.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The method of claim 15, in which the first control information includes a requirement that a return receipt be sent to the first user from a recipient of the electronic document, the method further comprising:
    - receiving a return receipt from the second user'"'"'s electronic appliance in accordance with the first control information.
  - 17. The method of claim 15, in which the first control information specifies one or more auditing requirements, the method further comprising:
    - receiving auditing information generated at the second user'"'"'s electronic appliance in compliance with the auditing requirements.
  - 18. The method of claim 17, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication of how the electronic document has been used.
  - 19. The method of claim 17, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication if the electronic document has been printed by the recipient.
  - 20. The method of claim 17, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication if the electronic document has been viewed by the recipient.
  - 21. The method of claim 17, in which the one or more auditing requirements include a requirement that a recipient of the electronic document send an indication if the electronic document has been edited by the recipient.

22. A method comprising:
- creating an electronic document at a first user'"'"'s electronic appliance;
  
  at the first user'"'"'s electronic appliance, securely associating rule-based first control information with the electronic document, the control information indicating that the electronic document may be used only in one or more authorized ways, the control information being configured to be enforced by one or both of tamper-resistant software and hardware;
  
  distributing the electronic document and the first control information to a second user'"'"'s electronic appliance;
  
  receiving a request at the first user'"'"'s electronic appliance from the second user'"'"'s electronic appliance, the request seeking a modification to the first control information, and providing second control information that alters the one or more authorized ways in which the electronic document may be used; and
  
  sending a modified set of control information based on the first and the second control information in response to the request;
  
  wherein the second user'"'"'s electronic appliance includes one or both of tamper-resistant software and hardware that is configured to securely enable the second user to make at least one use of the electronic document in accordance with the modified set of control information.
- View Dependent Claims (23, 24)
- - 23. The method of claim 22, in which, the one or more authorized ways comprises at least two of the following:
    - viewing the electronic document, printing the electronic document, copying the electronic document, or modifying the electronic document.
  - 24. The method of claim 22, in which the first control information specifies that the electronic document may be redistributed by an authorized recipient.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Ginter, Karl L., Shear, Victor H., Spahn, Francis J., Van Wie, David M.
Primary Examiner(s)
Pwu, Jeffrey
Assistant Examiner(s)
Anderson, Michael D

Application Number

US11/440,141
Publication Number

US 20060224903A1
Time in Patent Office

2,681 Days
Field of Search

380/225
US Class Current

713/194
CPC Class Codes

G06F 21/109   by using specially-adapted ...

G06F 21/16   Program or content traceabi...

G06F 21/31   User authentication

G06F 21/33   using certificates

G06F 21/6209   to a single file or object,...

G06F 21/71   to assure secure computing ...

G06F 21/86   Secure or tamper-resistant ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2135   Metering

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2151   Time stamp

G06Q 10/087   Inventory or stock manageme...

G06Q 20/02   involving a neutral party, ...

G06Q 20/023   the neutral party being a c...

G06Q 20/04   Payment circuits

G06Q 20/085   involving remote charge det...

G06Q 20/10   specially adapted for elect...

G06Q 20/102   Bill distribution or payments

G06Q 20/12   specially adapted for elect...

G06Q 20/123 : Shopping for digital content

G06Q 20/1235 : with control of digital rig...

G06Q 20/14 : specially adapted for billi...

G06Q 20/24 : Credit schemes, i.e. "pay a...

G06Q 20/306 : using TV related infrastruc...

G06Q 20/308 : using the Internet of Things

G06Q 2220/16 : Copy protection or prevention

G06Q 30/0273 : Determination of fees for a...

G06Q 30/0283 : Price estimation or determi...

G06Q 30/06 : Buying, selling or leasing ...

G06Q 30/0601 : Electronic shopping [e-shop...

G06Q 30/0609 : Buyer or seller confidence ...

G06Q 40/02 : Banking, e.g. interest calc...

G06Q 40/04 : Trading; Exchange, e.g. sto...

G06Q 40/12 : Accounting

G06Q 50/184 : Intellectual property manag...

G06Q 50/188 : Electronic negotiation

G06T 1/0021 : Image watermarking

G07F 9/026 : for alarm, monitoring and a...

H04L 2209/56 : Financial cryptography, e.g...

H04L 2209/60 : Digital content management,...

H04L 2463/101 : applying security measures ...

H04L 2463/102 : applying security measure f...

H04L 2463/103 : applying security measure f...

H04L 63/02 : for separating internal fro...

H04L 63/04 : for providing a confidentia...

H04L 63/0428 : wherein the data content is...

H04L 63/0435 : wherein the sending and rec...

H04L 63/0442 : wherein the sending and rec...

H04L 63/08 : for authentication of entit...

H04L 63/0823 : using certificates cryptogr...

H04L 63/083 : using passwords cryptograph...

H04L 63/10 : for controlling access to d...

H04L 63/12 : Applying verification of th...

H04L 63/123 : received data contents, e.g...

H04L 63/16 : Implementing security featu...

H04L 63/168 : above the transport layer

H04L 63/20 : for managing network securi...

H04L 9/006 : involving public key infras...

H04L 9/0819 : Key transport or distributi...

H04L 9/0838 : Key agreement, i.e. key est...

H04L 9/0861 : Generation of secret inform...

H04L 9/3218 : using proof of knowledge, e...

H04L 9/3247 : involving digital signatures

H04L 9/3263 : involving certificates, e.g...

H04N 2005/91364 : the video signal being scra...

H04N 21/2347 : involving video stream encr...

H04N 21/23476 : by partially encrypting, e....

H04N 21/235 : Processing of additional da...

H04N 21/2362 : Generation or processing of...

H04N 21/2541 : Rights Management protectin...

H04N 21/2543 : Billing , e.g. for subscrip...

H04N 21/2547 : Third Party Billing, e.g. b...

H04N 21/25875 : involving end-user authenti...

H04N 21/4143 : embedded in a Personal Comp...

H04N 21/42646 : for reading from or writing...

H04N 21/4325 : by playing back content fro...

H04N 21/4345 : Extraction or processing of...

H04N 21/435 : Processing of additional da...

H04N 21/4405 : involving video stream decr...

H04N 21/44204 : Monitoring of content usage...

H04N 21/443 : OS processes, e.g. booting ...

H04N 21/4627 : Rights management associate...

H04N 21/4753 : for user identification, e....

H04N 21/6581 : Reference data, e.g. a movi...

H04N 21/8166 : involving executable data, ...

H04N 21/835 : Generation of protective da...

H04N 21/8355 : involving usage data, e.g. ...

H04N 21/83555 : using a structured language...

H04N 21/8358 : involving watermark protect...

H04N 5/913 : for scrambling ; for copy p...

H04N 7/162 : Authorising the user termin...

H04N 7/163 : by receiver means only

H04N 7/17309 : Transmission or handling of...

View All

System and methods for secure transaction management and electronics rights protection

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

618 Citations

24 Claims

Specification

Use Cases

Quick Links

Others

System and methods for secure transaction management and electronics rights protection

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

618 Citations

24 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others