DRM provider interoperability
First Claim
1. A system, comprising:
- a network device associated with a content provider, having one or more processors configured to perform actions, including;
establishing a trust relationship using a cryptographic protocol with a content decryption module (CDM) provider'"'"'s network device for a version of a CDM and the network device associated with the content provider;
when information is received from a client device indicating that the client device supports at least the version of the CDM;
determining for which of the supported CDMs the network device has an established trust relationship with a corresponding CDM provider;
using the established trust relationships for the supported CDMs, accessing a public key associated with the version of the CDM supported by the client device; and
encrypting a license using the accessed public key, the license protecting access to media content; and
when it is determined that no information is received from the client device indicating the client device supports at least the version of the CDM;
using trust relationships established between the network device and a plurality of different CDM providers to access respective public keys associated with CDMs from the plurality of different CDM providers,encrypting the license with each of the accessed public keys to generate a plurality of encrypted licenses, andproviding each of the encrypted licenses to the client device; and
the client device, comprising;
a plurality of CDMs, wherein one of the plurality of CDMs is the version of the CDM, and wherein the version of the CDM performs actions, including;
receiving from the network device, the encrypted license;
determining an integrity of the version of the CDM and a media player against tampering;
in response to determining that the integrity of the version of the CDM and the media player is confirmed, decrypting the license using a private key associated with the public key, and using the decrypted license to enable access to media content protected by the license; and
in response to determining that the integrity of the version of the media player is not confirmed, denying access to the private key for decryption of the license and access to the media content protected by the license.
2 Assignments
0 Petitions
Accused Products
Abstract
Embodiments are directed towards providing interoperability by establishing a trust relationship between a provider of a media player usable by a consumer and a content provider. A trust relationship is verified through using a public-private key certification authority. When a request for content is received from a consumer, the request might indicate what content protection mechanisms are available in the consumer'"'"'s device. When a trust relationship is determined to exist between the content provider and the media player providers, the content provider encrypts a license separately for each of a plurality of different content protection mechanisms available at the consumer'"'"'s device. The encrypted licenses are provided to the consumer'"'"'s device, where the media player may be selected to play the content based on a self integrity check the media player may perform, and its ability to use a private key associated with a corresponding public key to decrypt the license.
-
Citations
20 Claims
-
1. A system, comprising:
a network device associated with a content provider, having one or more processors configured to perform actions, including; establishing a trust relationship using a cryptographic protocol with a content decryption module (CDM) provider'"'"'s network device for a version of a CDM and the network device associated with the content provider; when information is received from a client device indicating that the client device supports at least the version of the CDM; determining for which of the supported CDMs the network device has an established trust relationship with a corresponding CDM provider; using the established trust relationships for the supported CDMs, accessing a public key associated with the version of the CDM supported by the client device; and encrypting a license using the accessed public key, the license protecting access to media content; and when it is determined that no information is received from the client device indicating the client device supports at least the version of the CDM; using trust relationships established between the network device and a plurality of different CDM providers to access respective public keys associated with CDMs from the plurality of different CDM providers, encrypting the license with each of the accessed public keys to generate a plurality of encrypted licenses, and providing each of the encrypted licenses to the client device; and the client device, comprising; a plurality of CDMs, wherein one of the plurality of CDMs is the version of the CDM, and wherein the version of the CDM performs actions, including; receiving from the network device, the encrypted license; determining an integrity of the version of the CDM and a media player against tampering; in response to determining that the integrity of the version of the CDM and the media player is confirmed, decrypting the license using a private key associated with the public key, and using the decrypted license to enable access to media content protected by the license; and in response to determining that the integrity of the version of the media player is not confirmed, denying access to the private key for decryption of the license and access to the media content protected by the license. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. A network device, comprising:
-
a memory for storing protected content; and one or more processors that perform actions, including; establishing a trust relationship cryptographically with a network device associated with a content decryption module (CDM) provider for a version of a CDM and the network device, wherein the network device is associated with a provider of the protected content; when information is received from a client device indicating that the client device supports at least the version of the CDM; determining for which of the supported CDMs the network device has an established trust relationship with a corresponding CDM provider; using the established trust relationships for the supported CDMs, accessing a public key associated with the version of the CDM; encrypting a license/decryption key to access content using the accessed public key; and providing the encrypted license/decryption key to a client device having at least the version of CDM, wherein the version of the CDM is configured to access a protected private key corresponding to the public key, decrypt the encrypted license/decryption key using the private key, and enable access to the content, based in part on an integrity of the client device including the integrity of at least the version of the CDM, the integrity being determined by at least the version of the CDM; and when it is determined that no information is received from the client device indicating the client device supports at least the version of the CDM; using trust relationships established between the network device and a plurality of different CDM providers to access respective public keys associated with CDMs from the plurality of different CDM providers, encrypting the license/decryption key with each of the accessed public keys to generate a plurality of encrypted licenses/decryption keys, and providing each of the encrypted licenses/decryption keys to the client device. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. An apparatus comprising a non-transitory computer readable medium, having computer-executable instructions stored thereon, that in response to execution by a computing device, cause the computing device to perform operations, comprising:
-
establishing a trust relationship over a network using a cryptographic mechanism with a network device associated with a content decryption module (CDM) provider for a version of a CDM and the computing device that is associated with a content provider; when information is received from a client device indicating that the client device supports at least the version of the CDM; determining for which of the supported CDMs the network device has an established trust relationship with a corresponding CDM provider; using the established trust relationships for the supported CDMs, accessing a public key associated with the version of the CDM; encrypting a license/decryption key to access content using the accessed public key; and providing the encrypted license/decryption key to a client device having at least the version of CDM, wherein the version of the CDM is configured to access a protected private key corresponding to the public key, decrypt the encrypted license/decryption key using the private key, and enable access to the content, based in part on an integrity of the client device from tampering including the version of the CDM, the integrity being determined by the version of the CDM; and when it is determined that no information is received from the client device indicating the client device supports at least the version of the CDM; using trust relationships established between the network device and a plurality of different CDM providers to access respective public keys associated with CDMs from the plurality of different CDM providers, encrypting the license/decryption key with each of the accessed public keys to generate a plurality of encrypted licenses/decryption keys, and providing each of the encrypted licenses/decryption keys to the client device. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification