×

Data owner restricted secure key distribution

  • US 10,484,354 B2
  • Filed: 02/15/2017
  • Issued: 11/19/2019
  • Est. Priority Date: 02/15/2017
  • Status: Active Grant
First Claim
Patent Images

1. A content distribution system comprising:

  • a data owner device;

    a data producer device;

    a data consumer device;

    a content server; and

    a key server;

    the data owner device, operated by the data owner, is configured to issue an authentication token to the key server, wherein the authentication token includes one or more restrictions for a data consumer;

    the data consumer device, operated by the data consumer, is configured to download encrypted content from the content server, wherein the content server received the encrypted content from the data producer device and not the data owner device;

    the key server is configured to (1) receive, from the data producer device, encrypted data associated with at least one key and at least one initialization vector (IV) used to encrypt the content, wherein the content is owned by the data owner, (2) receive a request from the data consumer device for access to key data specific to the content, (3) perform an authentication check with the data consumer device to ensure the one or more restrictions are satisfied, and (4) download the key data to the data consumer device once the one or more restrictions are satisfied;

    the data consumer device is further configured to use the key data to decrypt the encrypted content; and

    wherein the one or more restrictions include an attestation requirement where a trustworthiness of a trusted execution environment (TEE) of the data consumer device is remotely attested between the key server and the data consumer device as follows;

    send, by the key server, an attest X with nonce Y message to the data consumer device, wherein the X is attestation that the data consumer device has the TEE and the Y is a random nonce value, wherein a digest value of X is known by the key server;

    retrieve, by the data consumer device, a digest value of X by concatenating X and Y;

    sign, by the data consumer device, the digest value of X by using a private key which is only available in the TEE; and

    send, by the data consumer device, the digest value of X, the nonce Y, a signature of the data consumer device, and an attestation certificate to the key server.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×