Systems, methods and apparatuses for the secure transmission and restricted use of media content
First Claim
1. A method for distributing media content for restricted use, comprising:
- receiving a request for the media content from a user device, the request comprising a content identifier identifying the media content, a user identifier identifying a user requesting the media content, a display device identifier identifying a display device coupled to the user device, a nonce and a requested time period for the media content;
determining that the user is authorized to receive the media content;
generating a first time duration restriction associated with the user and the media content, the first time duration restriction being generated based on the requested time period to represent a rental period of the media content to the display device;
generating, on a media distribution center, an association encryption envelope to hold the nonce and the first time duration restriction, wherein the association encryption envelope includes a symmetric key to encrypt the media content and the symmetric key is associated with a combination of the user identifier and the content identifier, and wherein the association encryption envelope further includes parameters regarding a maximum permissible error drift which, when approached, prompts the display device to seek a forced association;
encrypting the media content; and
transmitting the encrypted media content and the association encryption envelope to the user device.
2 Assignments
0 Petitions
Accused Products
Abstract
The systems, methods and apparatuses described herein permit encrypted media content to be displayed by an apparatus for a restricted time period. The apparatus may comprise a communication interface configured to couple to a controlling device to transmit a first nonce and to receive the encrypted media content and an association encryption envelope. The association encryption envelope may comprise at least a second nonce and a first time restriction expressed as a first time interval. The apparatus may further comprise a counter, a storage configured to store a value of the counter representing a time of when the first nonce is transmitted, and an engine configured to perform operations according to the first time restriction.
112 Citations
42 Claims
-
1. A method for distributing media content for restricted use, comprising:
-
receiving a request for the media content from a user device, the request comprising a content identifier identifying the media content, a user identifier identifying a user requesting the media content, a display device identifier identifying a display device coupled to the user device, a nonce and a requested time period for the media content; determining that the user is authorized to receive the media content; generating a first time duration restriction associated with the user and the media content, the first time duration restriction being generated based on the requested time period to represent a rental period of the media content to the display device; generating, on a media distribution center, an association encryption envelope to hold the nonce and the first time duration restriction, wherein the association encryption envelope includes a symmetric key to encrypt the media content and the symmetric key is associated with a combination of the user identifier and the content identifier, and wherein the association encryption envelope further includes parameters regarding a maximum permissible error drift which, when approached, prompts the display device to seek a forced association; encrypting the media content; and transmitting the encrypted media content and the association encryption envelope to the user device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for requesting media content for restricted use, comprising:
-
receiving user input indicating a desire for the media content; generating a request for the media content, the request comprising a content identifier identifying the media content, a user identifier identifying a user requesting the media content, a display device identifier identifying a display device coupled to the user device, a nonce received from the display device and a requested time period for the media content; transmitting the request to a media distribution center; receiving an association encryption envelope for the requested media content from the media distribution center, the association encryption envelope containing a time duration restriction representing a rental period of the requested media content to the display device, wherein the association encryption envelope is generated on the media distribution center and includes a symmetric key to encrypt the media content, and wherein the symmetric key is associated with a combination of the user identifier and the content identifier and wherein the association encryption envelope further includes parameters regarding a maximum permissible error drift which, when approached, prompts the display device to seek a forced association; and forwarding the received association encryption envelope to the display device. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method for receiving time restrictions on a device, comprising:
-
transmitting to a controlling device a first nonce; storing a counter value of a counter representing a time of when the first nonce is transmitted; receiving, from the controlling device, an association encryption envelope comprising at least a second nonce and a first time restriction expressed as a first time interval from the time when the first nonce is transmitted until an end time, wherein the association encryption envelope includes a symmetric key to encrypt a media content and the symmetric key is associated with a combination of a user identifier and a content identifier; performing operations on an encrypted media content in conformance to the first time restriction; and determining time intervals at which the display device seeks forced associations to stay within a drift requirement of a media distribution center for authorized media playback. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
-
-
28. A media distribution server, comprising:
-
a communication interface configured to receive a request for media content from a user device, wherein the request comprises a content identifier identifying the media content, a user identifier identifying a user requesting the media content, a display device identifier identifying a display device coupled to the user device, a nonce and a requested time period for the media content; a media content storage storing the media content; and a crypto engine coupled to the communication interface and the media content storage, the crypto engine configured to; obtain a symmetric key associated with the user and media content; retrieve the requested media content from the media content storage; encrypt the media content retrieved from the media content storage using the symmetric key when the user is authorized to receive the media content; generate a first time duration restriction associated with the user and the media content, the first time duration restriction being generated based on the requested time period to represent a rental period of the media content to the display device; generate an association encryption envelope to hold the symmetric key, the first time duration restriction and the nonce, wherein the symmetric key is associated with a combination of the user identifier and the content identifier, and wherein the association encryption envelope further includes parameters regarding a maximum permissible error drift which, when approached, prompts the display device to seek a forced association; obtain a public key associated with the display device; encrypt the association encryption envelope with the public key; and transmit the encrypted media content and the association encryption envelope to the user device via the communication interface. - View Dependent Claims (29, 30, 31, 32)
-
-
33. An apparatus, comprising:
-
a user input device to receive user input indicating a desire for media content; a computer processor configured to generate a request for the media content, the request comprising a content identifier identifying the media content, a user identifier identifying a user requesting the media content, a display device identifier identifying a display device coupled to the apparatus, a nonce received from the display device and a requested time period for the media content; and a communication interface configured to; transmit the request to a media distribution center; receive an association encryption envelope for the requested media content from the media distribution center, the association encryption envelope containing a time duration restriction representing a rental period of the requested media content to the display device, wherein the association encryption envelope is generated on the media distribution center and includes a symmetric key to encrypt the media content, and wherein the symmetric key is associated with a combination of the user identifier and the content identifier, and wherein the association encryption envelope further includes parameters regarding a maximum permissible error drift which, when approached, prompts the display device to seek a forced association; and forward the received association encryption envelope to the display device. - View Dependent Claims (34, 35, 36)
-
-
37. An apparatus, comprising:
-
a communication interface configured to couple to a controlling device to transmit a first nonce and to receive an association encryption envelope, the association encryption envelope comprising at least a second nonce and a first time restriction expressed as a first time interval, wherein the symmetric key is associated with a combination of a user identifier and a content identifier; a counter; a storage configured to store a value of the counter representing a time of when the first nonce is transmitted; and an engine configured to perform operations on an encrypted media content according to the first time restriction and determine time intervals at which the apparatus seeks forced associations to stay within a drift requirement of a media distribution center for authorized media playback. - View Dependent Claims (38, 39, 40, 41, 42)
-
Specification