Securing media content using interchangeable encryption key
First Claim
1. A method for securing media content comprising:
- maintaining, by a server, a group key, wherein the group key is used to encrypt and decrypt content on at least one digital media recording device located remotely from the server;
associating, by the server, digital media recording devices with a customer account;
associating, by the server, the maintained group key to the associated customer account;
associating, by the server, a group record with the associated maintained group key;
associating, by the server, the associated group record with the customer account;
adding, by the server, a first digital media recording device to the associated group record with the maintained group key on the server, wherein adding the first media recording device comprises;
receiving, by the server, a request to add the first digital media device to the group record associated with the customer account;
receiving, by the server, an identification of the first digital media device and an identification of the group record;
creating, by the server, an entry for a record for the first digital media device in the received identified group record;
generating, by the server, a device record for the first digital media device using the created entry;
encrypting, by the server, the maintained group key with a public key of the first digital media recording device, wherein the public key is associated with a private device key of the first digital media recording device; and
signing, by the server, the encrypted maintained group key;
generating, by the server, a group key entitlement management message (EMM), wherein the EMM comprises private conditional access information about authority of the first digital recording media device to receive service; and
transmitting, by the server, the generated EMM to secure microprocessor of the first digital media recording device at a memory location on the secure microprocessor which cannot be accessed from outside of the secure microprocessor.
7 Assignments
0 Petitions
Accused Products
Abstract
An embodiment of a system for securing media content includes a digital media device comprising a memory associated with a secure element. The memory contains a private key and storage for at least one group key. The private key is used to decrypt transmissions from a remote access control system that are encrypted by a corresponding public key. The digital media device further comprises logic configured to respond to a first message received from the remote access control system encrypted by the public key and including a first group key, the logic responding to the first message by decrypting the first group key and storing the first group key in the memory of the secure element. The digital media device further comprises logic configured to decrypt a content key with the first group key. The content key is used to encrypt media content stored on a medium accessible by the digital media device.
254 Citations
19 Claims
-
1. A method for securing media content comprising:
-
maintaining, by a server, a group key, wherein the group key is used to encrypt and decrypt content on at least one digital media recording device located remotely from the server; associating, by the server, digital media recording devices with a customer account; associating, by the server, the maintained group key to the associated customer account; associating, by the server, a group record with the associated maintained group key; associating, by the server, the associated group record with the customer account; adding, by the server, a first digital media recording device to the associated group record with the maintained group key on the server, wherein adding the first media recording device comprises; receiving, by the server, a request to add the first digital media device to the group record associated with the customer account; receiving, by the server, an identification of the first digital media device and an identification of the group record; creating, by the server, an entry for a record for the first digital media device in the received identified group record; generating, by the server, a device record for the first digital media device using the created entry; encrypting, by the server, the maintained group key with a public key of the first digital media recording device, wherein the public key is associated with a private device key of the first digital media recording device; and signing, by the server, the encrypted maintained group key; generating, by the server, a group key entitlement management message (EMM), wherein the EMM comprises private conditional access information about authority of the first digital recording media device to receive service; and transmitting, by the server, the generated EMM to secure microprocessor of the first digital media recording device at a memory location on the secure microprocessor which cannot be accessed from outside of the secure microprocessor. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for securing media content comprising:
-
a processor, and a memory coupled to the processor storing instructions that when executed by the processor causes the processor to perform a method comprising; maintaining a group key, wherein the group key is used to encrypt and decrypt content on at least one digital media recording device located remotely from the server; associating digital media recording devices with a customer account; associating the maintained group key to the associated customer account; associating a group record with the associated maintained group key; associating the associated group record with the customer account; adding a first digital media recording device to the associated group record with the maintained group key on the server, wherein adding the first media recording device comprises; receiving a request to add the first digital media device to the group record associated with the customer account; receiving an identification of the first digital media device and an identification of the group record; creating an entry for a record for the first digital media device in the received identified group record; generating a device record for the first digital media device using the created entry; encrypting the maintained group key with a public key of the first digital media recording device, wherein the public key is associated with a private device key of the first digital media recording device; and signing the encrypted maintained group key; generating a group key entitlement management message (EMM), wherein the EMM comprises private conditional access information about the authority of the first digital recording media device to receive service; and transmitting the generated EMM to a secure microprocessor of the first digital media recording device at a memory location on the secure microprocessor which cannot be accessed from outside of the secure microprocessor.
-
-
9. A system for securing media content comprising:
-
a first digital media recording device; a server connected to the digital media device, wherein the server comprises a non-transitory medium containing instructions which when executed causes the server to perform the steps of; maintaining a group key, wherein the group key is used to encrypt and decrypt content on at least one digital media recording device located remotely from the server; associating digital media recording devices with a customer account; associating the maintained group key to the associated customer account; associating a group record with the maintained group key; associating the group record with the associated customer account; adding the first digital media recording device to the associated group record with the maintained group key on the server; receiving a request to add the first digital media device to the group record associated with the customer account; receiving an identification of the first digital media device and an identification of the group record; creating an entry for a record for the first digital media device in the received identified group record; generating a device record for the first digital media device using the created entry; encrypting the maintained group key with a public key of the first digital media recording device, wherein the public key is associated with a private device key of the first digital media recording device; signing the encrypted maintained group key; generating a group key entitlement management message (EMM), wherein the EMM comprises private conditional access information about the authority of the first digital recording media device to receive service; and transmitting the generated EMM to a secure microprocessor of the first digital media recording device at a memory location on the secure microprocessor which cannot be accessed from outside of the secure microprocessor. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification