Secure content distribution with distributed hardware
First Claim
Patent Images
1. A device comprising:
- a transcryption unit implemented, at least in part, in hardware, and configured to perform operations comprising;
establishing one or more first secure, authenticated communication channels with a hardware or software entity or entities capable of providing encrypted entertainment content and an encrypted signed policy associated with said encrypted entertainment content and governing usage rights of said encrypted entertainment content, said encrypted signed policy encrypted with a public key corresponding to a private key in the transcription unit;
receiving said encrypted entertainment content and said encrypted signed policy over said one or more first secure, authenticated communication channels;
decrypting said encrypted entertainment content to provide decrypted entertainment content;
decrypting said encrypted signed policy with the private key to provide a decrypted policy;
establishing a second secure, authenticated communication channel with a hardware graphics unit, hardware audio unit, or hardware device unit;
re-encrypting at least said decrypted entertainment content such that only said hardware graphics unit, hardware audio unit, or hardware device unit is permitted to decrypt at least said re-encrypted entertainment content;
receiving, over the second secure, authenticated communication channel, a request associated with the usage of the entertainment content from said hardware graphics unit, hardware audio unit, or hardware device unit;
sending, over the second secure, authenticated communication channel, said re-encrypted entertainment content to said hardware graphics unit, hardware audio unit, or hardware device unit;
determining whether the entertainment content has been utilized based, at least in part, on said received request associated with the usage of the entertainment content, wherein utilizing the entertainment content comprises at least one of;
copying the entertainment content;
orplaying the entertainment content;
andresponsive to determining the entertainment content has been utilized;
generating at least one indication of the utilization of said encrypted entertainment content; and
updating said decrypted policy to reflect the utilization of said encrypted entertainment content.
2 Assignments
0 Petitions
Accused Products
Abstract
This document describes tools capable of securely distributing entertainment content among and using distributed hardware. These tools may do so robustly by rebinding entertainment content between distributed hardware units. The tools, for example, may distribute content protection in hardware between a policy unit, a transcryption unit, a graphics processing unit, and a playback unit. By so doing the tools enable, among other things, users to select from many graphics cards rather than rely on the graphics capabilities of an integrated (e.g., SOC) hardware solution.
-
Citations
19 Claims
-
1. A device comprising:
a transcryption unit implemented, at least in part, in hardware, and configured to perform operations comprising; establishing one or more first secure, authenticated communication channels with a hardware or software entity or entities capable of providing encrypted entertainment content and an encrypted signed policy associated with said encrypted entertainment content and governing usage rights of said encrypted entertainment content, said encrypted signed policy encrypted with a public key corresponding to a private key in the transcription unit; receiving said encrypted entertainment content and said encrypted signed policy over said one or more first secure, authenticated communication channels; decrypting said encrypted entertainment content to provide decrypted entertainment content; decrypting said encrypted signed policy with the private key to provide a decrypted policy; establishing a second secure, authenticated communication channel with a hardware graphics unit, hardware audio unit, or hardware device unit; re-encrypting at least said decrypted entertainment content such that only said hardware graphics unit, hardware audio unit, or hardware device unit is permitted to decrypt at least said re-encrypted entertainment content; receiving, over the second secure, authenticated communication channel, a request associated with the usage of the entertainment content from said hardware graphics unit, hardware audio unit, or hardware device unit; sending, over the second secure, authenticated communication channel, said re-encrypted entertainment content to said hardware graphics unit, hardware audio unit, or hardware device unit; determining whether the entertainment content has been utilized based, at least in part, on said received request associated with the usage of the entertainment content, wherein utilizing the entertainment content comprises at least one of; copying the entertainment content;
orplaying the entertainment content; and responsive to determining the entertainment content has been utilized; generating at least one indication of the utilization of said encrypted entertainment content; and updating said decrypted policy to reflect the utilization of said encrypted entertainment content. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. A method comprising:
-
establishing a secure, authenticated communication channel between distributed hardware units, the distributed hardware units comprising a transcryption unit and a graphics or audio unit effective to enable the transcryption unit to securely provide and the graphics or audio unit to securely receive entertainment content and associated policy with a hardware-based level of security, the graphics or audio unit further configured to; decrypt the entertainment content and associated policy; and mix the entertainment content with audio or video from other sources; establishing a second secure, authenticated communication channel between said graphics or audio unit and an output device capable of rendering the entertainment content and mixed entertainment content; receiving, over the second secure, authenticated communication channel, a request associated with the usage of the entertainment content from said graphics or audio unit; determining, with the transcryption unit, whether the entertainment content has been utilized based, at least in part, on said received request associated with the usage of the entertainment content, wherein utilizing the entertainment content comprises at least one of; copying the entertainment content;
orplaying the entertainment content; and responsive to determining the entertainment content has been utilized; generating, using the transcryption unit, at least one indication of the utilization of said encrypted entertainment content; and updating, using the transcryption unit, said associated policy to reflect the utilization of said encrypted entertainment content. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. One or more computer-readable storage memories comprising processor-executable instructions which, responsive to execution by at least one processor, are configured to enable a device to:
-
establish a secure, authenticated communication channel between distributed hardware units, the distributed hardware units comprising a transcryption unit and a graphics or audio unit effective to enable the transcryption unit to securely provide and the graphics or audio unit to securely receive entertainment content and associated policy with a hardware-based level of security, the graphics or audio unit further configured to; decrypt the entertainment content and associated policy; and mix the entertainment content with audio or video from other sources; establish a second secure, authenticated communication channel between said graphics or audio unit and an output device capable of rendering the entertainment content and mixed entertainment content; receiving, over the second secure, authenticated communication channel, a request associated with the usage of the entertainment content from said graphics or audio unit; determine whether the entertainment content has been utilized based, at least in part, on the received request associated with the usage of the entertainment content, wherein utilizing the entertainment content comprises at least one of; copying the entertainment content;
orplaying the entertainment content; and responsive to determining the entertainment content has been utilized; generate at least one indication of the utilization of said encrypted entertainment content; and update said associated policy to reflect the utilization of said encrypted entertainment content. - View Dependent Claims (18, 19)
-
Specification