Systems and Methods for Secure Transaction Management and Electronic Rights Protection

US 20100250935A1
Filed: 06/09/2010
Published: 09/30/2010
Est. Priority Date: 02/13/1995
Status: Active Grant

First Claim

Patent Images

1. A method of governing use of a piece of electronic content, the method comprising:

receiving an encrypted piece of electronic content;

receiving a first electronic object, the first electronic object being associated with the piece of electronic content, the first electronic object comprising one or more permissions specifying one or more permitted and/or prohibited usages of the piece of electronic content, the first electronic object further comprising an encrypted cryptographic key, the encrypted cryptographic key being adapted for, upon decryption, use in decrypting the piece of electronic content;

receiving a second electronic object, the second electronic object specifying one or more conditions associated with use of a group of electronic content, the group including, at least in part, the piece of electronic content; and

using tamper-resistant hardware and/or software to securely decrypt and make at least one use of the piece of electronic content in accordance with the first electronic object and the second electronic object, the hardware and/or software being resistant to tampering by a user thereof.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for secure transaction management and electronic rights protection. Electronic appliances such as computers equipped in accordance with the present invention help to ensure that information is accessed and used only in authorized ways, and maintain the integrity, availability, and/or confidentiality of the information. Such electronic appliances provide a distributed virtual distribution environment (VDE) that may enforce a secure chain of handling and control, for example, to control and/or meter or otherwise monitor use of electronically stored or disseminated information. Such a virtual distribution environment may be used to protect rights of various participants in electronic commerce and other electronic or electronic-facilitated transactions. Distributed and other operating systems, environments and architectures, such as, for example, those using tamper-resistant hardware-based processors, may establish security at each node. These techniques may be used to support an all-electronic information distribution, for example, utilizing the “electronic highway.”

110 Citations

View as Search Results

27 Claims

1. A method of governing use of a piece of electronic content, the method comprising:
- receiving an encrypted piece of electronic content;
  
  receiving a first electronic object, the first electronic object being associated with the piece of electronic content, the first electronic object comprising one or more permissions specifying one or more permitted and/or prohibited usages of the piece of electronic content, the first electronic object further comprising an encrypted cryptographic key, the encrypted cryptographic key being adapted for, upon decryption, use in decrypting the piece of electronic content;
  
  receiving a second electronic object, the second electronic object specifying one or more conditions associated with use of a group of electronic content, the group including, at least in part, the piece of electronic content; and
  
  using tamper-resistant hardware and/or software to securely decrypt and make at least one use of the piece of electronic content in accordance with the first electronic object and the second electronic object, the hardware and/or software being resistant to tampering by a user thereof.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, in which the first electronic object is received separately from the second electronic object.
  - 3. The method of claim 1, in which the first electronic object is received separately from the encrypted piece of electronic content.
  - 4. The method of claim 2, in which the first electronic object includes the encrypted piece of electronic content.
  - 5. The method of claim 1, further comprising:
    - using the tamper-resistant hardware and/or software to securely decrypt the encrypted cryptographic key using a cryptographic key securely stored in memory of an electronic appliance on which the tamper-resistant hardware and/or software is running.
  - 6. The method of claim 1, in which the one or more conditions comprise an expiration date after which at least one use of the group of electronic content is no longer permitted.
  - 7. The method of claim 6, in which the tamper-resistant hardware and/or software is operable to maintain a secure local measure of time.
  - 8. The method of claim 1, in which the one or more conditions comprise at least one condition selected from the group consisting of:
    - a condition relating to availability of credit from an authorized source;
      
      a condition relating to execution of one or more load modules within a predefined time period; and
      
      a condition relating to metering usage of the piece of electronic content.
  - 9. The method of claim 1, in which at least one of the permitted and/or prohibited usages is selected from the group consisting of:
    - displaying, printing, saving, extracting, embedding, and auditing usage of the piece of electronic content.
  - 10. The method of claim 1, in which the piece of electronic content is selected from the group consisting of:
    - a movie, an audio recording, a game, an electronic catalog, multimedia, training material, e-mail, a document, a software programming resource, and a database.
  - 11. The method of claim 6, in which the hardware and/or software is operable to maintain a secure local measure of time.

12. A computer-readable medium containing computer code tangibly embodied thereon that, when executed by an electronic appliance, is operable to cause an electronic appliance to perform steps comprising:
- receiving an encrypted piece of electronic content;
  
  receiving a first electronic object, the first electronic object being associated with the piece of electronic content, the first electronic object comprising one or more permissions specifying one or more permitted and/or prohibited usages of the piece of electronic content, the first electronic object further comprising an encrypted cryptographic key, the encrypted cryptographic key being adapted for, upon decryption, use in decrypting the piece of electronic content;
  
  receiving a second electronic object, the second electronic object specifying one or more conditions associated with use of a group of electronic content, the group including, at least in part, the piece of electronic content; and
  
  using tamper-resistant hardware and/or software to securely decrypt and make at least one use of the piece of electronic content in accordance with the first electronic object and the second electronic object, the hardware and/or software being resistant to tampering by a user thereof.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. The computer-readable medium of claim 12, in which the first electronic object is received separately from the second electronic object.
  - 14. The computer-readable medium of claim 12, in which the first electronic object is received separately from the encrypted piece of electronic content.
  - 15. The computer-readable medium of claim 12, further comprising computer code that, when executed by an electronic appliance, is operable to cause the electronic appliance to perform the step of:
    - using the tamper-resistant hardware and/or software to securely decrypt the encrypted cryptographic key using a cryptographic key securely stored in memory of the electronic appliance.
  - 16. The computer-readable medium of claim 12, in which the one or more conditions comprise an expiration date after which at least one use of the group of electronic content is no longer permitted.
  - 17. The computer-readable medium of claim 16, in which the tamper-resistant hardware and/or software is operable to maintain a secure local measure of time.
  - 18. The computer-readable medium of claim 12, in which the one or more conditions comprise at least one condition selected from the group consisting of:
    - a condition relating to availability of credit from an authorized source;
      
      a condition relating to execution of one or more load modules within a predefined time period; and
      
      a condition relating to metering usage of the piece of electronic content.
  - 19. The computer-readable medium of claim 12, in which at least one of the permitted and/or prohibited usages is selected from the group consisting of:
    - displaying, printing, saving, extracting, embedding, and auditing usage of the piece of electronic content.

20. A system comprising:
- means for receiving an encrypted piece of electronic content;
  
  means for receiving a first electronic object, the first electronic object being associated with the piece of electronic content, the first electronic object comprising one or more permissions specifying one or more permitted and/or prohibited usages of the piece of electronic content, the first electronic object further comprising an encrypted cryptographic key, the encrypted cryptographic key being adapted for, upon decryption, use in decrypting the piece of electronic content;
  
  means for receiving a second electronic object, the second electronic object specifying one or more conditions associated with use of a group of electronic content, the group including, at least in part, the piece of electronic content; and
  
  tamper-resistant hardware and/or software for securely decrypting and making at least one use of the piece of electronic content in accordance with the first electronic object and the second electronic object, the hardware and/or software being resistant to tampering by a user of the system.
- View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
- - 21. The system of claim 20, in which the first electronic object is received separately from the second electronic object.
  - 22. The system of claim 20, in which the first electronic object is received separately from the encrypted piece of electronic content.
  - 23. The system of claim 20, in which the tamper-resistant hardware and/or software is further operable to securely decrypt the encrypted cryptographic key using a cryptographic key securely stored in memory of the system.
  - 24. The system of claim 20, in which the one or more conditions comprise an expiration date after which at least one use of the group of electronic content is no longer permitted.
  - 25. The system of claim 20, in which the tamper-resistant hardware and/or software is operable to maintain a secure local measure of time.
  - 26. The system of claim 20, in which the one or more conditions comprise at least one condition selected from the group consisting of:
    - a condition relating to availability of credit from an authorized source;
      
      a condition relating to execution of one or more load modules within a predefined time period; and
      
      a condition relating to metering usage of the piece of electronic content.
  - 27. The system of claim 20, in which at least one of the permitted and/or prohibited usages is selected from the group consisting of:
    - displaying, printing, saving, extracting, embedding, and auditing usage of the piece of electronic content.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Ginter, Karl L., Spahn, Francis J., Shear, Victor H., Van Wie, David M.

Granted Patent

US 8,402,557 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

G06F 12/1408   by using cryptography for d...

G06F 21/10   Protecting distributed prog...

G06F 21/16   Program or content traceabi...

G06F 21/86   Secure or tamper-resistant ...

G06F 2211/007   Encryption, En-/decode, En-...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2115   Third party

G06F 2221/2135   Metering

G06F 2221/2151   Time stamp

G06Q 20/02   involving a neutral party, ...

G06Q 20/023   the neutral party being a c...

G06Q 20/04   Payment circuits

G06Q 20/12   specially adapted for elect...

G06Q 20/123   Shopping for digital content

G06Q 20/1235   with control of digital rig...

G06Q 20/24   Credit schemes, i.e. "pay a...

G06Q 20/389   Keeping log of transactions...

G06T 1/0021   Image watermarking

G07F 9/026   for alarm, monitoring and a...

H04L 12/14   Charging , metering or bill...

H04L 2463/101 : applying security measures ...

H04L 2463/102 : applying security measure f...

H04L 2463/103 : applying security measure f...

H04L 63/20 : for managing network securi...

H04N 21/2347 : involving video stream encr...

H04N 21/235 : Processing of additional da...

H04N 21/2362 : Generation or processing of...

H04N 21/2541 : Rights Management protectin...

H04N 21/2543 : Billing , e.g. for subscrip...

H04N 21/2547 : Third Party Billing, e.g. b...

H04N 21/25875 : involving end-user authenti...

H04N 21/4143 : embedded in a Personal Comp...

H04N 21/4345 : Extraction or processing of...

H04N 21/435 : Processing of additional da...

H04N 21/4405 : involving video stream decr...

H04N 21/44204 : Monitoring of content usage...

H04N 21/443 : OS processes, e.g. booting ...

H04N 21/4627 : Rights management associate...

H04N 21/4753 : for user identification, e....

H04N 21/6581 : Reference data, e.g. a movi...

H04N 21/8166 : involving executable data, ...

H04N 21/835 : Generation of protective da...

H04N 21/83555 : using a structured language...

H04N 21/8358 : involving watermark protect...

H04N 7/162 : Authorising the user termin...

H04N 7/17309 : Transmission or handling of...

View All

Systems and Methods for Secure Transaction Management and Electronic Rights Protection

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

110 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and Methods for Secure Transaction Management and Electronic Rights Protection

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

110 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links