Method, system, and data server for checking revocation of content device and transmitting data
First Claim
1. A method of checking revocation of a content device and transmitting data, the method comprising:
- receiving authentication information of a device requesting transmission of data, and authentication information of digital rights management (DRM) software that authorizes access of the data in the device;
checking revocation of the device and the DRM software, based on the received authentication information,wherein the checking of the revocation further comprises;
checking a device Certification Revocation List (CRL) related to a certificate of the device, where the CRL comprises a device identifier, a device public key, and a digital signature for the device and wherein the received authentication information of the device is compared with at least one of the device identifier, the device public key, and the digital signature for each of devices identified in the CRL; and
checking a software revocation list (SRL) separate from the CRL and related to a certificate of the DRM software, where the SRL comprises a software identifier, a software public key, and a digital signature for the DRM software and wherein the received authentication information of the DRM software is compared with at least one of the software identifier, the software public key, and the digital signature for each of the DRM software identified in the SRL;
authenticating the device based on the checking of the CRL;
authenticating the DRM software based on the separate checking of the SRL; and
transmitting the data to the device, when the device and the DRM software are not revoked and the authentication of the device and the DRM software succeeds.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of checking revocation of a device and software, and transmitting data to a secure device and secure software whose keys have not been leaked is provided. The method includes receiving authentication information of a device requesting transmission of data, and authentication information of software accessing the data in the device; checking revocation of the device and the software, based on the received authentication information; and transmitting the data to the software of the device, when the device and the software are not revoked as a result of the checking. By doing so, during transmission of data, such as content or a license, it is possible to check security of a device and software being executed in the device, so that the data can be more safely transmitted.
41 Citations
18 Claims
-
1. A method of checking revocation of a content device and transmitting data, the method comprising:
-
receiving authentication information of a device requesting transmission of data, and authentication information of digital rights management (DRM) software that authorizes access of the data in the device; checking revocation of the device and the DRM software, based on the received authentication information, wherein the checking of the revocation further comprises; checking a device Certification Revocation List (CRL) related to a certificate of the device, where the CRL comprises a device identifier, a device public key, and a digital signature for the device and wherein the received authentication information of the device is compared with at least one of the device identifier, the device public key, and the digital signature for each of devices identified in the CRL; and checking a software revocation list (SRL) separate from the CRL and related to a certificate of the DRM software, where the SRL comprises a software identifier, a software public key, and a digital signature for the DRM software and wherein the received authentication information of the DRM software is compared with at least one of the software identifier, the software public key, and the digital signature for each of the DRM software identified in the SRL; authenticating the device based on the checking of the CRL; authenticating the DRM software based on the separate checking of the SRL; and transmitting the data to the device, when the device and the DRM software are not revoked and the authentication of the device and the DRM software succeeds. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A transmission system, having a first device and a second device, which checks revocation of the first device and which transmits data to the first device, the transmission system comprising:
-
the first device which transmits a request signal of data transmission, authentication information of the first device, and authentication information of a digital rights management (DRM) software which authorizes access to the data in the first device; and the second device which receives the transmitted authentication information, authenticating the device and the DRM software, and as a result of checking the revocation of the first device and the DRM software and the authentication of the device and the DRM software, when the first device and the DRM software are not revoked and when the authentication of the device and the DRM software succeeds, transmits the data to the first device, wherein the checking of the revocation further comprises; checking a device Certification Revocation List (CRL) related to a the certificate of the first device, where the CRL comprises a device identifier, a device public key, and a digital signature for the device and wherein the received authentication information of the first device is compared with at least one of the device identifier, the device public key, and the digital signature for each of devices identified in the CRL; and checking a software revocation list (SRL) separate from the CRL and related to a certificate of the DRM software, where the SRL comprises a software identifier, a software public key, and a digital signature for the DRM software and wherein the received authentication information of the DRM software is compared with at least one of the software identifier, the software public key, and the digital signature for each of the DRM software identified in the SRL; wherein the authentication further comprises the second device authenticating the first device based on the checking the CRL, and wherein the second device authenticates the DRM software based on the separate checking of the SRL. - View Dependent Claims (11, 12, 13)
-
-
14. A data server for checking revocation of a content device and transmitting data, the data server comprising:
-
an authentication information reception unit configured to receive authentication information of a device requesting transmission of data, and authentication information of a digital rights management (DRM) software which authorizes access to the data in the device; a revocation verification unit configured to check revocation of the device and the DRM software, based on the received authentication information; and a data transmission unit configured to transmit the data to the device, when the device and the DRM software are not revoked as a result of the check, wherein the checking of the revocation further comprises; checking a device Certification Revocation List (CRL) related to a certificate of a device, where the CRL comprises a device identifier, a device public key, and a digital signature for the device and wherein the received authentication information of the device is compared with at least one of the device identifier, the device public key, and the digital signature for each of devices identified in the CRL; and checking a software revocation list (SRL) separate from the CRL and related to a certificate of the DRM software, where the SRL comprises a software identifier, a software public key, and a digital signature for the DRM software and wherein the received authentication information of the DRM software is compared with at least one of the software identifier, the software public key, and the digital signature for each of the DRM software identified in the SRL; wherein an authentication unit is configured to authenticate the device based on the checking the CRL and configured to authenticate the DRM software based on the separate checking of the SRL, and when the authentication of the device and the authentication of the DRM software succeeds, the data transmission unit transmits the data to the DRM software of the device for the authentication of the data by the DRM software, wherein the data server is configured to implement the authentication information reception unit, the revocation verification unit, the data transmission unit and the authentication unit. - View Dependent Claims (15, 16, 17)
-
-
18. A non-transitory computer readable recording medium having recorded thereon a program for executing a method of checking revocation of a content device and transmitting data, the method comprising:
-
receiving authentication information of a device requesting transmission of data, and authentication information of a digital right management (DRM) software accessing the data in the device; checking revocation of the device and the DRM software, based on the received authentication information, wherein the checking of the revocation further comprises; checking a device Certification Revocation List (CRL) related to at-he certificate of the device, where the CRL comprises a device identifier, a device public key, and a digital signature for the device and wherein the received authentication information of the device is compared with at least one of the device identifier, the device public key, and the digital signature for each of devices identified in the CRL; and checking a software revocation list (SRL) separate from the CRL and related to a certificate of the DRM software, where the SRL comprises a software identifier, a software public key, and a digital signature for the DRM software and wherein the received authentication information of the DRM software is compared with at least one of the software identifier, the software public key, and the digital signature for each of the DRM software identified in the SRL; authenticating the device based on the checking the CRL; authenticating the DRM software based on the separate checking of the SRL; and transmitting the data to the device, when the device and the DRM software are not revoked and the authentication of the device and the DRM software succeeds.
-
Specification