Digital rights management system and methods for provisioning content to an intelligent storage
First Claim
1. A computing system comprising:
- a data storage device storing encrypted media content and a content key that uniquely identifies the media content, the data storage device comprising a controller configured to generate a binding key that binds the encrypted content to the data storage device; and
a host subsystem comprising one or more processors configured to;
receive the binding key and the content key from the data storage device;
generate an access key based on the binding key and the content key;
receive the encrypted media content from the data storage device; and
decrypt the encrypted media content using the access key.
8 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to digital rights management (DRM) for content that downloaded and saved to a storage device. The storage may be a disk drive, or network attached storage. In addition, the storage device performs cryptographic operations and provides a root of trust. The DRM employs a binding key, a content key, and an access key. The binding key binds the content to a specific storage and is based on a key that is concealed on the storage. The binding key is not stored on the storage device with the content. The content key is a key that has been assigned to the content. The access key is determined based on a cryptographic combination of the content key and the binding key. In one embodiment, the content is provisioned based on the access key and stored in encrypted form in the storage device.
72 Citations
16 Claims
-
1. A computing system comprising:
-
a data storage device storing encrypted media content and a content key that uniquely identifies the media content, the data storage device comprising a controller configured to generate a binding key that binds the encrypted content to the data storage device; and a host subsystem comprising one or more processors configured to; receive the binding key and the content key from the data storage device; generate an access key based on the binding key and the content key; receive the encrypted media content from the data storage device; and decrypt the encrypted media content using the access key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of provisioning content to a storage device from a download site, said method comprising:
-
providing, to a remote download server, a binding key that binds media content from the download site to a data storage device; receiving, from the remote download server, an access key based on the binding key and a content key that uniquely identifies the media content; receiving, from the remote download server, the content key; storing the content key in a non-user area of the data storage device; receiving, from the remote download server, an encrypted version of the media content that is encrypted based on the access key; and storing the encrypted version of the media content in a user area of the data storage device. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification