Downloadable security and protection methods and apparatus
First Claim
1. A computerized method for securely delivering a downloadable security module to a specific computerized client device, and thereafter securely providing digitally rendered content thereto, the computerized method comprising:
- providing a common software image to a plurality of computerized client devices, one of the plurality of computerized client devices comprising the specific computerized client device;
receiving credentials associated with a user account for the specific computerized client device;
causing verification of the received credentials;
responsive to successfully verifying the received credentials, delivering a device-specific software image for the specific computerized client device, the delivering of the device-specific software image comprising installing the device-specific software image via at least the common software image; and
responsive to subsequent requests for one or more digital content elements associated with the user account, delivering the one or more digital content elements to the device-specific software image executing on the specific computerized client device.
3 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus for control of data and content protection mechanisms across a network using a download delivery paradigm. In one embodiment, conditional access (CA), digital rights management (DRM), and trusted domain (TD) security policies are delivered, configured and enforced with respect to consumer premises equipment (CPE) within a cable television network. A trusted domain is established within the user'"'"'s premises within which content access, distribution, and reproduction can be controlled remotely by the network operator. The content may be distributed to secure or non-secure “output” domains consistent with the security policies enforced by secure CA, DRM, and TD clients running within the trusted domain. Legacy and retail CPE models are also supported. A network security architecture comprising an authentication proxy (AP), provisioning system (MPS), and conditional access system (CAS) is also disclosed, which can interface with a trusted authority (TA) for cryptographic element management and CPE/user device authentication.
397 Citations
20 Claims
-
1. A computerized method for securely delivering a downloadable security module to a specific computerized client device, and thereafter securely providing digitally rendered content thereto, the computerized method comprising:
-
providing a common software image to a plurality of computerized client devices, one of the plurality of computerized client devices comprising the specific computerized client device; receiving credentials associated with a user account for the specific computerized client device; causing verification of the received credentials; responsive to successfully verifying the received credentials, delivering a device-specific software image for the specific computerized client device, the delivering of the device-specific software image comprising installing the device-specific software image via at least the common software image; and responsive to subsequent requests for one or more digital content elements associated with the user account, delivering the one or more digital content elements to the device-specific software image executing on the specific computerized client device. - View Dependent Claims (2, 3, 4, 5, 6, 20)
-
-
7. Computerized network server apparatus configured to securely deliver a downloadable security module to a specific computerized client device, the network server apparatus comprising:
-
a network interface configured to enable communication with a plurality of computerized client devices; a processor apparatus in data communication with the network interface; and a non-transitory computer readable medium in data communication with the processor apparatus and comprising one or more instructions configured to, when executed by the processor apparatus, cause the computerized network server apparatus to; receive a request for the downloadable security module from a specific computerized client device executing a common software image; responsive to the received request, verify one or more credentials associated with a user account for the specific computerized client device; and based at least on successful verification of the one or more credentials, deliver a downloadable security module for the specific computerized client device; wherein the downloadable security module is configured to enable delivery of one or more digital content elements associated with the user account to the specific computerized client device. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. Computerized client device apparatus configured to securely receive a downloadable security module from a network server apparatus so as to enable receipt and rendering of secure digital content elements, the computerized client device apparatus comprising:
-
a network interface configured to enable communication; a processor apparatus in data communication with the network interface; and a non-transitory computer readable medium in data communication with the processor apparatus and comprising one or more instructions which are configured to, when executed by the processor apparatus, cause the computerized client device apparatus to; execute a common software image that enables access to a secure download system provided by the network server apparatus; securely download a security module and prevent access to the downloaded security module in any unprotected form; install the downloaded security module; and render one or more of the secure digital content elements via use of at least the installed downloaded security module. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification