Digital rights management system transfer of content and distribution
DCFirst Claim
1. A kiosk for provisioning secure media content to a plurality of portable data storage devices, the kiosk comprising:
- a first data interface configured to communicate with a portable data storage device;
a second data interface configured to communicate, over a network, with a remote trusted server; and
a processor configured to;
obtain a unique identifier from the portable data storage device, wherein the unique identifier is specific to the portable data storage device and is concealed by the portable data storage device;
authenticate the portable data storage device, using at least the unique identifier, by communicating with the remote trusted server over the second data interface; and
in response to the authentication, provide to the portable data storage device an encrypted first media content and a corresponding access key.
10 Assignments
Litigations
0 Petitions
Accused Products
Abstract
The present invention relates to digital rights management (DRM) for content that may be downloaded and securely transferred from one storage to another storage. The storage may be a disk drive, or network attached storage. The storage performs cryptographic operations and provides a root of trust. The DRM system enables secure copying or transfer of content from one storage device to another storage device. In this embodiment, a trusted server that is authenticated and trusted by both storage devices brokers the transfer of content. The trusted server may be a separate entity of the DRM system or may be a component or function of an existing server of the DRM system. In another embodiment, the storage devices may transfer content in a peer-to-peer fashion. The transfer of content may be authorized and controlled based on a digital certificate associated with the content.
-
Citations
17 Claims
-
1. A kiosk for provisioning secure media content to a plurality of portable data storage devices, the kiosk comprising:
-
a first data interface configured to communicate with a portable data storage device; a second data interface configured to communicate, over a network, with a remote trusted server; and a processor configured to; obtain a unique identifier from the portable data storage device, wherein the unique identifier is specific to the portable data storage device and is concealed by the portable data storage device; authenticate the portable data storage device, using at least the unique identifier, by communicating with the remote trusted server over the second data interface; and in response to the authentication, provide to the portable data storage device an encrypted first media content and a corresponding access key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for provisioning secure media content to a plurality of portable data storage devices from a kiosk, the method comprising:
-
establishing communications with a portable data storage device over a first data interface; establishing communications with a remote trusted server via a second data interface over a network; obtaining a unique identifier from the portable data storage device, wherein the unique identifier is specific to the portable data storage device and is concealed by the portable data storage device; authenticating the portable data storage device, using at least the unique identifier, by communicating with the remote trusted server over the second data interface; and in response to the authentication, providing to the portable data storage device an encrypted first media content and a corresponding access key. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
Specification