US20070100764A1 - Method and system for providing DRM license - Google Patents

Method and system for providing DRM license Download PDF

Info

Publication number
US20070100764A1
US20070100764A1 US11/546,993 US54699306A US2007100764A1 US 20070100764 A1 US20070100764 A1 US 20070100764A1 US 54699306 A US54699306 A US 54699306A US 2007100764 A1 US2007100764 A1 US 2007100764A1
Authority
US
United States
Prior art keywords
rights
content
license
token
rights token
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US11/546,993
Inventor
Hyoung-shick Kim
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Samsung Electronics Co Ltd
Original Assignee
Samsung Electronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Samsung Electronics Co Ltd filed Critical Samsung Electronics Co Ltd
Priority to US11/546,993 priority Critical patent/US20070100764A1/en
Assigned to SAMSUNG ELECTRONICS CO., LTD. reassignment SAMSUNG ELECTRONICS CO., LTD. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: KIM, HYOUNG-SHICK
Publication of US20070100764A1 publication Critical patent/US20070100764A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F17/00Digital computing or data processing equipment or methods, specially adapted for specific functions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
    • H04L69/322Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • H04L9/3213Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2115Third party
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00137Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to contents recorded on or reproduced from a record carrier to authorised users
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00188Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to authorised devices recording or reproducing contents to/from a record carrier
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • G11B20/00485Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
    • G11B20/00492Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/00847Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction is defined by a licence file
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution
    • H04L2209/603Digital right managament [DRM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/101Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management

Definitions

  • Methods and systems consistent with the present invention relate to a digital rights management license and, more particularly, to binding a license of digital content using information about a path through which the license is transferred.
  • DRM digital rights management
  • DRM attempts to address these problems.
  • users are allowed to freely access encrypted digital content, but a license is needed to decrypt and execute the encrypted digital content. As a result, the digital content can be more effectively protected by using the DRM.
  • FIG. 1 is a view schematically illustrating a related art DRM.
  • DRM mainly covers digital content protected by encryption or scrambling (hereinafter referred to as “encrypted content” in FIG. 1 ) and licenses for access to encrypted digital content.
  • FIG. 1 there are a user 110 desiring to access digital content protected by DRM, a content issuer 120 providing the digital content, a license issuer 130 issuing licenses that include rights to access the digital content, and a certification authority 140 issuing certificates.
  • the user 110 can obtain desired digital content that is encrypted content protected by DRM.
  • the user 110 can obtain a license that can execute the encrypted content from the license issuer 130 .
  • the user 110 having the license can execute the encrypted content.
  • the certification authority 140 issues a certificate indicating that the content issuer 120 and the user 110 are rightful users.
  • the certificate can be stored in each device when the device is manufactured. However, the certificates issued from the certification authority 140 may be revoked before they expire. As described above, DRM can protect the profits of digital content producers or issuers to render help in activating the digital content industry.
  • Binding is a concept that limits the playback (or access) of digital content to a specified device or user through an encryption technique so that no device or user, except for the specified device or user, can play (or access) the content.
  • most related art DRM schemes bind a license (or digital content) to a content user, a player playing the content, a set of users using the content, a set of players, and others, using binding keys.
  • FIG. 2 illustrates digital content and a content issuer 210 issuing licenses for the digital content.
  • the subject providing digital content and the subject providing licenses may differ. However, for convenience in explanation, it is considered that the same subject provides both digital content and licenses.
  • the content issuer 210 may provide a DRM license by encrypting a content encryption key (CEK) using a binding key Ku for a set of users 220 using the content (S 201 ), encrypting the CEK using binding keys Ku_ 1 , Ku_ 2 , Ku_ 3 and Ku_ 4 for respective content users 222 , 224 , 226 and 228 using the content (S 202 ), encrypting the CEK using a binding key Kd for a set of players 230 using the content (S 203 ), or encrypting the CEK using biding keys Kd_ 1 , Kd_ 2 , Kd_ 3 , Kd_ 4 , Kd_ 5 and Kd_ 6 for respective players 231 , 232 , 233 , 234 , 235 and 236 using the content (S 204 ).
  • CEK indicates a key for encrypting the digital content.
  • the first to fourth content users 222 , 224 , 226 and 228 possess the first player 231 , third player 233 , fourth player 234 and sixth player 236 , respectively, and four content users 222 , 224 , 226 and 228 share the second player 232 and fifth player 235 .
  • the first content user 222 and the second content user 224 can use the content 215 through the first player 231 and the third player 233 since the first content user 222 and the second content user 224 possess the first player 231 and the third player 233 , respectively. This is contradictory to the requirement of the content issuer 210 .
  • the third content user 226 and the fourth content user 228 can use the content 215 through the second player 232 and the fifth player 235 since the third content user 226 and the fourth content user 228 share the second player 232 and the fifth player 235 , respectively. In the same manner, this result is contradictory to the requirement of the content issuer 210 .
  • the related art binding method follows a device biding method or a user biding method that considers only the subject using the license (e.g., a content user or a set of users using the content) or the object (e.g., a player playing the content or a set of players), and thus the use range of the digital content is limited.
  • the license e.g., a content user or a set of users using the content
  • the object e.g., a player playing the content or a set of players
  • the DRM system issuing DRM licenses on the content issuer side and the DRM system decrypting and playing encrypted content on the player side should be the same DRM system.
  • Exemplary embodiments of the present invention overcome the above disadvantages and other disadvantages not described above. Also, the present invention is not required to overcome the disadvantages described above, and an exemplary embodiment of the present invention may not overcome any of the problems described above.
  • the present invention provides a system and method which provide use ranges of digital content in diverse forms, without binding a license only to subjects using the license or objects, in a DRM environment.
  • the present invention also provides a method capable of using a DRM license even among different DRM systems.
  • a system for providing a DRM license includes a sink system which requests a license for content; a source system which generates and provides a first rights token including binding information related to the license, in accordance with the request; and a rights mediator which generates a second rights token that is usable in the sink system on the basis of the first rights token, and transmits the generated second rights token to the sink system; wherein the sink system provides the license for the content on the basis of the second rights token.
  • a method of providing a DRM license includes generating a first rights token including binding information related to a license for content; generating a second rights token, on the basis of the generated first rights token; and providing the license for the content on the basis of the generated second rights token.
  • FIG. 1 is a conceptual view schematically illustrating a related art DRM
  • FIG. 2 is a view illustrating a related art biding method
  • FIGS. 3A and 3B are views for explaining problems of a related art biding method
  • FIG. 4 is a view illustrating a system for providing a DRM license according to an exemplary embodiment of the present invention
  • FIG. 5 is a view illustrating the detailed construction of the DRM license providing system according to an exemplary embodiment of the present invention
  • FIG. 6 is a flowchart illustrating a method of providing a DRM license according to an exemplary embodiment of the present invention
  • FIG. 7 is a view illustrating the construction of a web service server according to an exemplary embodiment of the present invention.
  • FIG. 8 is a view illustrating the construction of a client according to an exemplary embodiment of the present invention.
  • FIGS. 9A and 9B are views illustrating systems for providing a DRM license according to an exemplary embodiment of the present invention.
  • These computer program instructions may also be stored in a computer usable or computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer usable or computer-readable memory produce an article of manufacture including instruction means that implement the function specified in the flowchart block or blocks.
  • the computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions that are executed on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart block or blocks.
  • each block of the flowchart illustrations may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that in some alternative implementations, the functions noted in the blocks may occur out of the order. For example, two blocks shown in succession may in fact be executed substantially concurrently or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved.
  • FIG. 4 is a view illustrating a system for providing a DRM license according to an exemplary embodiment of the present invention.
  • the system 400 for providing a DRM license includes a source system 500 , a sink system 700 , a rights mediator 600 , and a network 450 connecting the source system, the sink system and the rights mediator.
  • the source system 500 which is a system that transmits content, generates a DRM license and encrypted content.
  • the sink system 700 which is a system that receives and uses the content from the source system 500 , uses the DRM license and decrypts the encrypted content.
  • the sink system 700 may be divided into use subjects using the sink system 700 and use objects such as players.
  • the sink system 700 may be embodied by all audio/video (AV) players belonging to a user's home network, a specified mobile device, or a user's family.
  • AV audio/video
  • use subjects or use objects that embody the sink system 700 will be called “principals”.
  • the principals in the sink system 700 may be differently managed according to a model implementing the sink system 700 .
  • information related to a specified user may be stored in a PC, a smart card and a portable phone, or may be managed in the form of an account-password.
  • the rights mediator 600 is a system that converts or re-processes the DRM license provided from the source system 500 into the form of a DRM license that can be understood in the sink system 700 .
  • the sink system 700 cannot understand the DRM license generated from the source system 500 . Accordingly, it is advantageous to have a DRM license that can be understood by both the source system 500 and the sink system 700 , and for purposes of description, such a DRM license will be called a “rights token”.
  • the rights mediator 600 when the source system 500 generates and provides a plurality of rights tokens related to the encrypted content, the rights mediator 600 generates a rights token using the plurality of rights tokens and provides the generated rights token to the sink system 700 .
  • a rights token provided by the source system 500 is called a “sub-rights token”
  • a rights token generated by the rights mediator and provided to the sink system 700 is called a “main rights token”.
  • FIG. 5 is a view illustrating the detailed construction of the DRM license providing system according to an exemplary embodiment of the present invention.
  • the source system 500 manages a plurality of content 501 , 502 and 503 and DRM licenses for the respective content, and includes a web service server 550 generating the sub-rights tokens.
  • the sink system 700 includes a plurality of principals 701 , 702 , 703 , 704 and 705 and a client 750 receiving the main rights token through the rights mediator 600 .
  • the client 750 receives the encrypted content directly from the web service server 550 , the client 750 may also receive the content via the rights mediator 600 .
  • the respective principals constituting the sink system 750 may be constructed in the form of a topology that indicates the relations among the principals.
  • U 1 704 can play the content through D 1 701 and D 2 702 .
  • D 1 701 , D 2 702 and D 3 703 are constructed to belong to a domain managed by the client 750 .
  • the topology of the principals can be determined by edges connecting the respective principals.
  • FIG. 5 The operation of the respective elements illustrated in FIG. 5 will now be explained in detail with reference to a flowchart illustrated in FIG. 6 .
  • the web service server 550 When the client 750 requests a license for specified content to the web service server 550 , the web service server 550 performs an authentication to confirm whether the client 750 is a rightful client using a certificate, content purchase information of the sink system or the client's access information such as an internet protocol (IP) address, an account and a password (S 610 ).
  • IP internet protocol
  • the web service server 550 If it is confirmed that the client 750 is a rightful client, the web service server 550 generates and provides a sub-rights token for the requested content to the right mediator 600 (S 620 ).
  • the content requested by the client 750 may be encrypted by the web service server 550 to be provided to the client.
  • the sub-rights token includes binding information of the content requested by the client 750 and rights information of the requested content.
  • binding information is expressed as a specified principal.
  • the binding information can be expressed as path information among a plurality of principals, not by a single principal.
  • the path information is information about edges connecting the principals.
  • the web service server 550 can generate and provide a plurality of sub-rights tokens.
  • each sub-rights token includes the path information among the plurality of principals as the binding information. If the web service server 550 generates and provides the plurality of sub-rights tokens to the rights mediator 600 , the rights mediator 600 generates one main rights token by combining the plurality of sub-rights tokens, and then transmits the generated main rights token to the client 750 (S 630 ).
  • the main rights token includes relational information indicating relationships among binding information or rights information included in the respective sub-rights tokens, and through this relational information, operations among the respective binding information or rights information, such as difference set, set intersection and union, become possible.
  • the relational information between the first binding information included in the first sub-rights token and the second binding information included in the second sub-rights token indicates the set intersection, it can be understood that content playback rights are given to the principals belonging to a common path of the path information corresponding to the first binding information and the path information corresponding to the second binding information.
  • the relation information may be generated by the web service server 550 and then provided to the rights mediator 600 .
  • the client 750 can generates a topology for giving the content playback rights on the basis of the main rights token received from the rights mediator 600 (S 640 ).
  • a topology such as a tree structure, can be generated on the basis of the path information and the relation information.
  • the tree structure is only an example. Other topologies are also contemplated.
  • the client 750 can determine whether to access the license bound by principals that comprise the sink system 700 through the topology generated as above (S 650 ).
  • FIG. 7 is a view illustrating the construction of a web service server according to an exemplary embodiment of the present invention.
  • the web service server 550 includes an interface module 552 communicating with the client 750 or the rights mediator 600 , a license generation module 551 generating the sub-rights tokens for the content requested by the client 750 , a storage module 554 storing the content requested by the client 750 or the binding information for the requested content, and a control module 553 controlling the operation of the respective modules.
  • the modules used in exemplary embodiments of the present invention may include software or hardware elements, such as a field-programmable gate array (FPGA) or an application-specific integrated circuit (ASIC), to perform a specific function. Modules, however, are not defined as software or hardware. Modules may be configured in an addressable storage medium, or configured to reproduce one or more processors. Thus, a module may include, by way of example, components, such as software components, object-oriented software components, class components and task components, processes, functions, attributes, procedures, subroutines, segments of program code, drivers, firmware, microcode, circuitry, data, databases, data structures, tables, arrays, and variables. The functionality provided for in the components and modules may be combined into fewer components and modules or further separated into additional components and modules.
  • components such as software components, object-oriented software components, class components and task components, processes, functions, attributes, procedures, subroutines, segments of program code, drivers, firmware, microcode, circuitry, data, databases, data structures, tables, arrays, and variables.
  • the control module 553 searches the storage module 554 , encrypts the requested content, and transmits the encrypted content to the client 750 through the interface module 552 .
  • control module 553 provides the binding information stored in the storage module 554 to the license generation module 551 , and the license generation module 551 generates the sub-rights tokens by using the binding information and provides the generated sub-rights tokens to the control module.
  • the binding information may be expressed as the path information that indicates the relations among the plurality of principals.
  • the control module 553 transmits the generated sub-rights tokens to the rights mediator 600 through the interface model 552 .
  • FIG. 8 is a view illustrating the construction of a client according to an exemplary embodiment of the present invention.
  • the client 750 includes an interface module 751 communicating with the web service server 550 or the rights mediator 600 , a local DRM license generation module 754 converting the main rights token received from the rights mediator 600 into the form of a DRM license installed in the client 750 , an external device communication module 753 providing the main rights token to use subjects or use objects that constitute the sink system, and a control module 752 controlling the operation of the respective modules.
  • the control module 752 When, the interface module 751 receives the main rights token from the rights mediator 600 , the control module 752 generates a topology for giving the content playback rights on the basis of the main rights token. Then, the control module 752 determines whether to access the license bound by principals that constitute the sink system by using the generated topology, and on the basis of this, controls the local DRM license generation module 754 to generate the license that can be understood by the DRM license system installed in the client 750 .
  • control module 752 may provide the main rights token received from the rights mediator 600 through the external device communication module 753 to the use subject or the use object, or convert the main rights token into a license form suitable for the use subject or the use object.
  • FIG. 4 illustrates the DRM license providing system including one source system 500 and one sink system 700
  • the present invention is not limited thereto, and the DRM license providing system may include a plurality of source systems and a plurality of sink systems as illustrated in FIGS. 9A and 9B .
  • the rights mediator can generate one main rights token by combining the sub-rights tokens received from the respective source systems, and in this case, the generated main rights token includes information indicating relations among the source systems.
  • the use range of the digital content can be provided in diverse forms, and the DRM license can be used among different DRM systems.
  • the present inventive concept can satisfy the need of the content issuer desiring the use of the digital content in diverse forms.

Abstract

A system and method for providing a digital rights management (DRM) license are provided. The system includes a sink system which requests a license for content; a source system which generates and provides a first rights token including binding information related to the license, in accordance with the request; and a rights mediator which generates a second rights token on the basis of the first rights token, and transmits the generated second rights token to the sink system; wherein the sink system provides the license for the content on the basis of the second rights token. The method includes receiving a request for a license for content; generating a first rights token including binding information related to the license, in accordance with the request; generating a second rights token; and providing the license for the content on the basis of the generated second rights token.

Description

    CROSS-REFERENCE TO RELATED APPLICATIONS
  • This application claims priority from Korean Patent Application No. 10-2006-0086972 filed on Sep. 8, 2006 in the Korean Intellectual Property Office, and U.S. Provisional Patent Application No. 60/725,664 filed on Oct. 13, 2005 in the United States Patent and Trademark Office, the disclosures of which are incorporated herein by reference in their entirety.
    • BACKGROUND OF THE INVENTION
  • 1. Field of the Invention
  • Methods and systems consistent with the present invention relate to a digital rights management license and, more particularly, to binding a license of digital content using information about a path through which the license is transferred.
  • 2. Description of the Related Art
  • The growth of the Internet and the development of multimedia technology have led to a widespread distribution and accessibility of digital content. However, if there is no viable way to protect the rights of such digital content, the development of multimedia technology would also lead to an authorized distribution of the digital content.
  • In order to more effectively protect the rights of digital content, many research on digital rights management (DRM) are being carried out to be used in commercial services. Here, DRM denotes a software or hardware technology that limits the use of digital content only to a rightful user. Thus far, most DRMs include techniques related to licenses and digital content. The license generally includes a set of rights that can be performed with respect to the digital content and content keys capable of decrypting the related content.
  • Ironically, the need for DRM arises from the versatile and easily manageable characteristics of digital data. It is well known that digital content, unlike analog data, can be readily copied without loss, and reused, processed and distributed to third parties, but a large amount of cost, effort and time are required to produce the digital content. Thus, copying and distribution of digital content without permission hinder the development of the digital content industry in that the potential profits are not being fully realized, which has deterred the business sentiment in the industry.
  • Some efforts have been made to protect digital content. Conventionally, digital content protection has been focused on preventing an access to digital content without permission. For example, only the users who have paid charges are permitted to access the digital content. However, when a user who has paid the charges accesses the digital content and distributes it to a third party, the digital content can be used by the third party without paying the charges, which leads to a number of problems in commercializing the digital content service.
  • DRM attempts to address these problems. With the implementation of DRM, users are allowed to freely access encrypted digital content, but a license is needed to decrypt and execute the encrypted digital content. As a result, the digital content can be more effectively protected by using the DRM.
  • FIG. 1 is a view schematically illustrating a related art DRM. Here, DRM mainly covers digital content protected by encryption or scrambling (hereinafter referred to as “encrypted content” in FIG. 1) and licenses for access to encrypted digital content.
  • In FIG. 1, there are a user 110 desiring to access digital content protected by DRM, a content issuer 120 providing the digital content, a license issuer 130 issuing licenses that include rights to access the digital content, and a certification authority 140 issuing certificates.
  • From the content issuer 120, the user 110 can obtain desired digital content that is encrypted content protected by DRM. The user 110 can obtain a license that can execute the encrypted content from the license issuer 130. The user 110 having the license can execute the encrypted content.
  • The certification authority 140 issues a certificate indicating that the content issuer 120 and the user 110 are rightful users. The certificate can be stored in each device when the device is manufactured. However, the certificates issued from the certification authority 140 may be revoked before they expire. As described above, DRM can protect the profits of digital content producers or issuers to render help in activating the digital content industry.
  • Generally, in order to prevent a license (or digital content) from being used by an illegal device or user, it is bound to the device or user. “Binding” is a concept that limits the playback (or access) of digital content to a specified device or user through an encryption technique so that no device or user, except for the specified device or user, can play (or access) the content. As shown in FIG. 2, most related art DRM schemes bind a license (or digital content) to a content user, a player playing the content, a set of users using the content, a set of players, and others, using binding keys.
  • FIG. 2 illustrates digital content and a content issuer 210 issuing licenses for the digital content. The subject providing digital content and the subject providing licenses may differ. However, for convenience in explanation, it is considered that the same subject provides both digital content and licenses.
  • Referring to FIG. 2, the content issuer 210 may provide a DRM license by encrypting a content encryption key (CEK) using a binding key Ku for a set of users 220 using the content (S201), encrypting the CEK using binding keys Ku_1, Ku_2, Ku_3 and Ku_4 for respective content users 222, 224, 226 and 228 using the content (S202), encrypting the CEK using a binding key Kd for a set of players 230 using the content (S203), or encrypting the CEK using biding keys Kd_1, Kd_2, Kd_3, Kd_4, Kd_5 and Kd_6 for respective players 231, 232, 233, 234, 235 and 236 using the content (S204). In this case, CEK indicates a key for encrypting the digital content.
  • In the above-described binding structure, the content issuer 210 cannot be sufficiently reflected, which will now be explained with reference to FIGS. 3A and 3B.
  • Referring to FIG. 3A, it is assumed that the first to fourth content users 222, 224, 226 and 228 possess the first player 231, third player 233, fourth player 234 and sixth player 236, respectively, and four content users 222, 224, 226 and 228 share the second player 232 and fifth player 235.
  • In this case, if the content issuer 210 intends to limit the use of content 215 through the shared second player 232 and fifth player 235 only to the first content user 222 and second content user 224, such a requirement of the content issuer cannot be satisfied under the above-described binding structure.
  • Specifically, as shown in FIG. 3B, in the case in which the first content user 222 and the second content user 224 are in a single domain 330, and a DRM license is provided by encrypting the CEK using a binding key Ka for this domain S310, the first content user 222 and the second content user 224 can use the content 215 through the first player 231 and the third player 233 since the first content user 222 and the second content user 224 possess the first player 231 and the third player 233, respectively. This is contradictory to the requirement of the content issuer 210.
  • Also, in the case in which the second player 232 and the fifth player 235 are in a single domain 330, and a DRM license is provided by encrypting the CEK using a binding key Kb for this domain S320, the third content user 226 and the fourth content user 228 can use the content 215 through the second player 232 and the fifth player 235 since the third content user 226 and the fourth content user 228 share the second player 232 and the fifth player 235, respectively. In the same manner, this result is contradictory to the requirement of the content issuer 210.
  • As described above, the related art binding method follows a device biding method or a user biding method that considers only the subject using the license (e.g., a content user or a set of users using the content) or the object (e.g., a player playing the content or a set of players), and thus the use range of the digital content is limited.
  • In addition, according to the related art technique, the DRM system issuing DRM licenses on the content issuer side and the DRM system decrypting and playing encrypted content on the player side should be the same DRM system.
    • SUMMARY OF THE INVENTION
  • Exemplary embodiments of the present invention overcome the above disadvantages and other disadvantages not described above. Also, the present invention is not required to overcome the disadvantages described above, and an exemplary embodiment of the present invention may not overcome any of the problems described above.
  • The present invention provides a system and method which provide use ranges of digital content in diverse forms, without binding a license only to subjects using the license or objects, in a DRM environment.
  • The present invention also provides a method capable of using a DRM license even among different DRM systems.
  • According to an aspect of the present invention, there is provided a system for providing a DRM license. The system includes a sink system which requests a license for content; a source system which generates and provides a first rights token including binding information related to the license, in accordance with the request; and a rights mediator which generates a second rights token that is usable in the sink system on the basis of the first rights token, and transmits the generated second rights token to the sink system; wherein the sink system provides the license for the content on the basis of the second rights token.
  • According to another aspect of the present invention, there is provided a method of providing a DRM license. The method includes generating a first rights token including binding information related to a license for content; generating a second rights token, on the basis of the generated first rights token; and providing the license for the content on the basis of the generated second rights token.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • The above aspects of the present invention will become more apparent by describing in detail certain exemplary embodiments thereof with reference to the attached drawings, in which:
  • FIG. 1 is a conceptual view schematically illustrating a related art DRM;
  • FIG. 2 is a view illustrating a related art biding method;
  • FIGS. 3A and 3B are views for explaining problems of a related art biding method;
  • FIG. 4 is a view illustrating a system for providing a DRM license according to an exemplary embodiment of the present invention;
  • FIG. 5 is a view illustrating the detailed construction of the DRM license providing system according to an exemplary embodiment of the present invention;
  • FIG. 6 is a flowchart illustrating a method of providing a DRM license according to an exemplary embodiment of the present invention;
  • FIG. 7 is a view illustrating the construction of a web service server according to an exemplary embodiment of the present invention;
  • FIG. 8 is a view illustrating the construction of a client according to an exemplary embodiment of the present invention; and
  • FIGS. 9A and 9B are views illustrating systems for providing a DRM license according to an exemplary embodiment of the present invention.
    • DETAILED DESCRIPTION OF EXEMPLARY EMBODIMENTS OF THE INVENTION
  • Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. The aspects of the present invention and methods for achieving the aspects will be apparent by referring to exemplary embodiments to be described in detail with reference to the accompanying drawings. However, the present invention is not limited to the exemplary embodiments disclosed hereinafter, but can be implemented in diverse forms. The matters defined in the description, such as the detailed construction and elements, are nothing but specific details provided to assist those of ordinary skill in the art in a comprehensive understanding of the invention, and the present invention is only defined within the scope of the appended claims. In the entire description of exemplary embodiments of the present invention, the same drawing reference numerals are used for the same elements across various figures.
  • The present invention will now be described with reference to the accompanying drawings illustrating block diagrams and flowcharts for explaining a method and system for providing a DRM license according to exemplary embodiments of the present invention. It will be understood that each block of the flowchart illustrations, and combinations of blocks in the flowchart illustrations, can be implemented by computer program instructions. These computer program instructions can be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions, which are executed via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart block or blocks. These computer program instructions may also be stored in a computer usable or computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer usable or computer-readable memory produce an article of manufacture including instruction means that implement the function specified in the flowchart block or blocks. The computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions that are executed on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart block or blocks.
  • Also, each block of the flowchart illustrations may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that in some alternative implementations, the functions noted in the blocks may occur out of the order. For example, two blocks shown in succession may in fact be executed substantially concurrently or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved.
  • FIG. 4 is a view illustrating a system for providing a DRM license according to an exemplary embodiment of the present invention.
  • Referring to FIG. 4, the system 400 for providing a DRM license includes a source system 500, a sink system 700, a rights mediator 600, and a network 450 connecting the source system, the sink system and the rights mediator.
  • The source system 500, which is a system that transmits content, generates a DRM license and encrypted content.
  • The sink system 700, which is a system that receives and uses the content from the source system 500, uses the DRM license and decrypts the encrypted content. The sink system 700 may be divided into use subjects using the sink system 700 and use objects such as players. For example, the sink system 700 may be embodied by all audio/video (AV) players belonging to a user's home network, a specified mobile device, or a user's family. Hereinafter, use subjects or use objects that embody the sink system 700 will be called “principals”.
  • The principals in the sink system 700 may be differently managed according to a model implementing the sink system 700. For example, information related to a specified user may be stored in a PC, a smart card and a portable phone, or may be managed in the form of an account-password.
  • The rights mediator 600 is a system that converts or re-processes the DRM license provided from the source system 500 into the form of a DRM license that can be understood in the sink system 700.
  • For example, in the case in which the source system 500 is provided with an “A” DRM system and the sink system 700 is provided with a “B” DRM system, the sink system 700 cannot understand the DRM license generated from the source system 500. Accordingly, it is advantageous to have a DRM license that can be understood by both the source system 500 and the sink system 700, and for purposes of description, such a DRM license will be called a “rights token”.
  • Specifically, when the source system 500 generates and provides a plurality of rights tokens related to the encrypted content, the rights mediator 600 generates a rights token using the plurality of rights tokens and provides the generated rights token to the sink system 700. In this case, in order to discriminate between types of rights tokens, a rights token provided by the source system 500 is called a “sub-rights token”, and a rights token generated by the rights mediator and provided to the sink system 700 is called a “main rights token”.
  • FIG. 5 is a view illustrating the detailed construction of the DRM license providing system according to an exemplary embodiment of the present invention.
  • Referring to FIG. 5, the source system 500 manages a plurality of content 501, 502 and 503 and DRM licenses for the respective content, and includes a web service server 550 generating the sub-rights tokens. The sink system 700 includes a plurality of principals 701, 702, 703, 704 and 705 and a client 750 receiving the main rights token through the rights mediator 600. Although the client 750 receives the encrypted content directly from the web service server 550, the client 750 may also receive the content via the rights mediator 600.
  • In this case, the respective principals constituting the sink system 750 may be constructed in the form of a topology that indicates the relations among the principals. For example, referring to FIG. 5, on the assumption that U1 704 and U2 705 are use subjects and D1 701, D2 702 and D3 703 are use objects, U1 704 can play the content through D1 701 and D2 702. Also, D1 701, D2 702 and D3 703 are constructed to belong to a domain managed by the client 750. Accordingly, the topology of the principals can be determined by edges connecting the respective principals. When a principal A that indicates use subjects by a single edge is connected to a principal B that indicates use objects, if an arrow of the edge faces the principal, i.e., “A←B”, the principal A can also play content in principal B.
  • The operation of the respective elements illustrated in FIG. 5 will now be explained in detail with reference to a flowchart illustrated in FIG. 6.
  • When the client 750 requests a license for specified content to the web service server 550, the web service server 550 performs an authentication to confirm whether the client 750 is a rightful client using a certificate, content purchase information of the sink system or the client's access information such as an internet protocol (IP) address, an account and a password (S610).
  • If it is confirmed that the client 750 is a rightful client, the web service server 550 generates and provides a sub-rights token for the requested content to the right mediator 600 (S620). The content requested by the client 750 may be encrypted by the web service server 550 to be provided to the client.
  • In this case, the sub-rights token includes binding information of the content requested by the client 750 and rights information of the requested content. Conventionally, such binding information is expressed as a specified principal. In the present invention, the binding information can be expressed as path information among a plurality of principals, not by a single principal. The path information is information about edges connecting the principals.
  • In addition, the web service server 550 can generate and provide a plurality of sub-rights tokens. In this case, each sub-rights token includes the path information among the plurality of principals as the binding information. If the web service server 550 generates and provides the plurality of sub-rights tokens to the rights mediator 600, the rights mediator 600 generates one main rights token by combining the plurality of sub-rights tokens, and then transmits the generated main rights token to the client 750 (S630). In this case, the main rights token includes relational information indicating relationships among binding information or rights information included in the respective sub-rights tokens, and through this relational information, operations among the respective binding information or rights information, such as difference set, set intersection and union, become possible. For example, if the relational information between the first binding information included in the first sub-rights token and the second binding information included in the second sub-rights token indicates the set intersection, it can be understood that content playback rights are given to the principals belonging to a common path of the path information corresponding to the first binding information and the path information corresponding to the second binding information.
  • The relation information may be generated by the web service server 550 and then provided to the rights mediator 600.
  • The client 750 can generates a topology for giving the content playback rights on the basis of the main rights token received from the rights mediator 600 (S640).
  • That is, since the main rights token includes the path information about a plurality of paths and the relation information among the respective path information, a topology, such as a tree structure, can be generated on the basis of the path information and the relation information. The tree structure is only an example. Other topologies are also contemplated.
  • The client 750 can determine whether to access the license bound by principals that comprise the sink system 700 through the topology generated as above (S650).
  • FIG. 7 is a view illustrating the construction of a web service server according to an exemplary embodiment of the present invention.
  • Referring to FIG. 7, the web service server 550 according to an exemplary embodiment of the present invention includes an interface module 552 communicating with the client 750 or the rights mediator 600, a license generation module 551 generating the sub-rights tokens for the content requested by the client 750, a storage module 554 storing the content requested by the client 750 or the binding information for the requested content, and a control module 553 controlling the operation of the respective modules.
  • The modules used in exemplary embodiments of the present invention may include software or hardware elements, such as a field-programmable gate array (FPGA) or an application-specific integrated circuit (ASIC), to perform a specific function. Modules, however, are not defined as software or hardware. Modules may be configured in an addressable storage medium, or configured to reproduce one or more processors. Thus, a module may include, by way of example, components, such as software components, object-oriented software components, class components and task components, processes, functions, attributes, procedures, subroutines, segments of program code, drivers, firmware, microcode, circuitry, data, databases, data structures, tables, arrays, and variables. The functionality provided for in the components and modules may be combined into fewer components and modules or further separated into additional components and modules.
  • When the interface module 552 receives the request for the content, and the license request for the content from the client 750, the control module 553 searches the storage module 554, encrypts the requested content, and transmits the encrypted content to the client 750 through the interface module 552.
  • In addition, the control module 553 provides the binding information stored in the storage module 554 to the license generation module 551, and the license generation module 551 generates the sub-rights tokens by using the binding information and provides the generated sub-rights tokens to the control module. In this case, the binding information may be expressed as the path information that indicates the relations among the plurality of principals. The control module 553 transmits the generated sub-rights tokens to the rights mediator 600 through the interface model 552.
  • FIG. 8 is a view illustrating the construction of a client according to an exemplary embodiment of the present invention.
  • Referring to FIG. 8, the client 750 according to an exemplary embodiment of the present invention includes an interface module 751 communicating with the web service server 550 or the rights mediator 600, a local DRM license generation module 754 converting the main rights token received from the rights mediator 600 into the form of a DRM license installed in the client 750, an external device communication module 753 providing the main rights token to use subjects or use objects that constitute the sink system, and a control module 752 controlling the operation of the respective modules.
  • When, the interface module 751 receives the main rights token from the rights mediator 600, the control module 752 generates a topology for giving the content playback rights on the basis of the main rights token. Then, the control module 752 determines whether to access the license bound by principals that constitute the sink system by using the generated topology, and on the basis of this, controls the local DRM license generation module 754 to generate the license that can be understood by the DRM license system installed in the client 750.
  • In addition, the control module 752 may provide the main rights token received from the rights mediator 600 through the external device communication module 753 to the use subject or the use object, or convert the main rights token into a license form suitable for the use subject or the use object.
  • Although FIG. 4 illustrates the DRM license providing system including one source system 500 and one sink system 700, the present invention is not limited thereto, and the DRM license providing system may include a plurality of source systems and a plurality of sink systems as illustrated in FIGS. 9A and 9B.
  • If a plurality of source systems exist, the rights mediator can generate one main rights token by combining the sub-rights tokens received from the respective source systems, and in this case, the generated main rights token includes information indicating relations among the source systems.
  • As described above, according to exemplary embodiments of the present invention, the use range of the digital content can be provided in diverse forms, and the DRM license can be used among different DRM systems.
  • In addition, the present inventive concept can satisfy the need of the content issuer desiring the use of the digital content in diverse forms.
  • Exemplary embodiments of the present invention have been described with reference to the accompanying drawings. However, those skilled in the art will appreciate that many variations and modifications can be made to the disclosed exemplary embodiments without substantially departing from the principles of the present invention. Therefore, the disclosed exemplary embodiments of the invention are used in a generic and descriptive sense only and not for purposes of limitation.

Claims (15)

1. A system for providing a digital rights management (DRM) license, the system comprising:
a sink system which requests a license for content;
a source system which generates and provides a first rights token including binding information related to the license, in accordance with the request; and
a rights mediator which generates a second rights token on the basis of the first rights token, and transmits the generated second rights token to the sink system;
wherein the sink system provides the license for the content on the basis of the second rights token.
2. The system of claim 1, wherein the second rights token is usable in the sink system.
3. The system of claim 1, wherein the binding information comprises path information that indicates relationships among a plurality of principals to which the license is provided.
4. The system of claim 3, wherein each principal of the plurality of principals comprises use subjects which use the content and use objects which play the content.
5. The system of claim 1, wherein the sink system generates a topology for giving content playback rights on the basis of the second rights token, and provides the license by principals comprising the sink system on the basis of the generated topology.
6. The system of claim 1, wherein when the rights mediator receives first rights tokens from a plurality of source systems, the rights mediator generates the second rights token by combining the first rights tokens received from the respective source systems, and the second rights token includes information indicating relations among the respective source systems.
7. The system of claim 1, wherein the source system comprises a web service server which manages a plurality of content and a plurality of DRM licenses for the respective content, and generates the first rights token.
8. The system of claim 1, wherein the sink system comprises a client which receives the plurality of principals and the second rights token from the rights mediator.
9. A method of providing a digital rights management (DRM) license, the method comprising:
generating a first rights token including binding information related to a license for content;
generating a second rights token based on the generated first rights token; and
providing the license for the content on the basis of the generated second rights token.
10. The method of claim 9, further comprising receiving a request for the license for content, wherein the first rights token is generated in accordance with the request.
11. The method of claim 10, wherein the license for content is received from a sink system.
12. The method of claim 11, wherein the second rights token can be understood in the sink system.
13. The method of claim 9, wherein the binding information comprises path information that indicates relationships among a plurality of principals to which the license is provided.
14. The method of claim 13, wherein each principal of the plurality of principals comprises use subjects which use the content and use objects which play the content.
15. The method of claim 9, wherein the providing the license comprises:
generating a topology for granting content playback rights on the basis of the generated second rights token; and
providing the license by principals comprising a sink system on the basis of the generated topology.
US11/546,993 2005-10-13 2006-10-13 Method and system for providing DRM license Abandoned US20070100764A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US11/546,993 US20070100764A1 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US72566405P 2005-10-13 2005-10-13
KR1020060086972A KR20070041325A (en) 2005-10-13 2006-09-08 System and method for providing drm license
KR10-2006-0086972 2006-09-08
US11/546,993 US20070100764A1 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license

Publications (1)

Publication Number Publication Date
US20070100764A1 true US20070100764A1 (en) 2007-05-03

Family

ID=38018753

Family Applications (4)

Application Number Title Priority Date Filing Date
US11/580,110 Expired - Fee Related US8103593B2 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license
US11/546,993 Abandoned US20070100764A1 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license
US11/546,991 Expired - Fee Related US8805742B2 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license
US13/006,997 Abandoned US20110113350A1 (en) 2005-10-13 2011-01-14 Method, system and program product for building collaboration applications using multiple-peer user interface libraries

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US11/580,110 Expired - Fee Related US8103593B2 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license

Family Applications After (2)

Application Number Title Priority Date Filing Date
US11/546,991 Expired - Fee Related US8805742B2 (en) 2005-10-13 2006-10-13 Method and system for providing DRM license
US13/006,997 Abandoned US20110113350A1 (en) 2005-10-13 2011-01-14 Method, system and program product for building collaboration applications using multiple-peer user interface libraries

Country Status (5)

Country Link
US (4) US8103593B2 (en)
EP (5) EP2287770A3 (en)
JP (4) JP5209862B2 (en)
KR (5) KR100763193B1 (en)
CN (6) CN101330380B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090007240A1 (en) * 2007-06-26 2009-01-01 Luc Vantalon Systems and methods for conditional access and digital rights management
US20090199287A1 (en) * 2007-06-26 2009-08-06 Luc Vantalon Systems and methods for conditional access and digital rights management
US20090307254A1 (en) * 2008-06-04 2009-12-10 Microsoft Corporation Translating DRM System Requirements

Families Citing this family (47)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8316088B2 (en) * 2004-07-06 2012-11-20 Nokia Corporation Peer-to-peer engine for object sharing in communication devices
US20070038576A1 (en) * 2005-08-12 2007-02-15 Lg Electronics Inc. Method for moving rights object in digital rights management
KR100763193B1 (en) * 2005-10-13 2007-10-04 삼성전자주식회사 System and Method for providing DRM license
KR100834752B1 (en) * 2006-02-17 2008-06-05 삼성전자주식회사 Apparatus and method for transferring content license
CN101321056B (en) * 2007-06-06 2012-05-23 华为技术有限公司 Method, equipment and system for forwarding permission
KR20090004217A (en) * 2007-07-06 2009-01-12 현대자동차주식회사 The compatible system of digital-contents copyright
US20090037829A1 (en) * 2007-08-01 2009-02-05 Microsoft Corporation Framework to integrate web services with on-premise software
KR100930695B1 (en) * 2007-08-06 2009-12-09 현대자동차주식회사 DLM system and DRM contents management method
US8333114B2 (en) * 2007-11-26 2012-12-18 Tokyo Electron Limited Microstructure inspecting device, and microstructure inspecting method
US8819838B2 (en) * 2008-01-25 2014-08-26 Google Technology Holdings LLC Piracy prevention in digital rights management systems
US8321948B2 (en) * 2008-03-28 2012-11-27 Sap Ag Flexible appliance hosting with coordination of deployment, licensing and configuration
US9491184B2 (en) * 2008-04-04 2016-11-08 Samsung Electronics Co., Ltd. Method and apparatus for managing tokens for digital rights management
CN101282473B (en) * 2008-05-05 2010-10-13 国家广播电影电视总局广播科学研究院 Method for managing digital television copyright
RU2536379C2 (en) 2008-11-26 2014-12-20 Калгари Сайентифик Инк. Method and system for providing remote access to state of application programme
KR101041368B1 (en) 2009-03-19 2011-06-14 주식회사 코아로직 Method of Accessing License and Terminal using the method
EP2257026B1 (en) * 2009-05-29 2021-01-13 Alcatel Lucent System and method for accessing private digital content
US9275195B1 (en) * 2010-02-19 2016-03-01 Copyright Clearance Center, Inc. Intermediated rights management
US8726147B1 (en) * 2010-03-12 2014-05-13 Symantec Corporation Systems and methods for restoring web parts in content management systems
CN102859539B (en) * 2010-04-23 2016-06-01 日立麦克赛尔株式会社 Content reception apparatus and content delivering system
JP4909431B2 (en) * 2010-05-14 2012-04-04 株式会社エヌ・ティ・ティ・ドコモ License issuing system, client terminal, server, and license issuing method
GB201016084D0 (en) * 2010-09-24 2010-11-10 Pixelmags Inc Authorization method
US8613007B2 (en) * 2010-09-29 2013-12-17 Business Objects Software Limited Server independent deployment of plug-ins
US9741084B2 (en) 2011-01-04 2017-08-22 Calgary Scientific Inc. Method and system for providing remote access to data for display on a mobile device
US8738754B2 (en) * 2011-04-07 2014-05-27 International Business Machines Corporation Systems and methods for managing computing systems utilizing augmented reality
US9053482B2 (en) 2011-05-24 2015-06-09 Amazon Technologies, Inc. Service for managing digital content licenses
US9064276B2 (en) * 2011-05-24 2015-06-23 Amazon Technologies, Inc. Service for managing digital content resales
SG10201606764XA (en) 2011-08-15 2016-10-28 Calgary Scient Inc Non-invasive remote access to an application program
CN103959708B (en) 2011-09-30 2017-10-17 卡尔加里科学公司 Including the non-coupled application extension for shared and annotation the interactive digital top layer of the remote application that cooperates
CN104040946B (en) * 2011-11-23 2017-07-14 卡尔加里科学公司 For shared and meeting the method and system of the remote application that cooperates
US9032385B2 (en) 2011-12-28 2015-05-12 Lg Electronics Inc. Mobile terminal and control method thereof
US8923760B2 (en) * 2012-04-26 2014-12-30 Qualcomm Incorporated Orientational collaboration of data between multiple devices
US20130332854A1 (en) * 2012-06-10 2013-12-12 Apple Inc. Creating image streams and sharing the image streams across different devices
US20140047409A1 (en) * 2012-08-13 2014-02-13 Magnet Systems Inc. Enterprise application development tool
US20140149544A1 (en) * 2012-11-28 2014-05-29 Qualcomm Incorporated System and method for providing rights management services for network services
EP3005205B1 (en) 2013-05-27 2019-09-25 Telefonaktiebolaget LM Ericsson (publ) Distribution of licenses within the radius of a local device
US9213820B2 (en) * 2013-09-10 2015-12-15 Ebay Inc. Mobile authentication using a wearable device
CN104809364A (en) * 2014-01-24 2015-07-29 中辉世纪传媒发展有限公司 Method and device for processing of application program of digital rights management (DRM) client
CN104967770B (en) * 2014-05-14 2018-07-10 腾讯科技(北京)有限公司 Video capture method and device
US11294549B1 (en) * 2014-06-06 2022-04-05 Massachusetts Mutual Life Insurance Company Systems and methods for customizing sub-applications and dashboards in a digital huddle environment
US9846859B1 (en) 2014-06-06 2017-12-19 Massachusetts Mutual Life Insurance Company Systems and methods for remote huddle collaboration
US11270264B1 (en) 2014-06-06 2022-03-08 Massachusetts Mutual Life Insurance Company Systems and methods for remote huddle collaboration
TWI604314B (en) * 2014-12-24 2017-11-01 緯創資通股份有限公司 Method of connecting device adapted to interactive whiteboard system and host device thereof
EP3491562A1 (en) * 2016-10-27 2019-06-05 Google LLC Drm sharing and playback service specification selection
CN109246079B (en) * 2018-08-02 2021-09-24 网易乐得科技有限公司 Authority management method, system, medium and electronic device
CN112257104A (en) * 2020-10-10 2021-01-22 北京字跳网络技术有限公司 Authority control method and device and electronic equipment
CN113282965A (en) * 2021-05-20 2021-08-20 苏州棱镜七彩信息科技有限公司 Open source license and copyright information tampering detection method and system
US20230068410A1 (en) * 2021-08-24 2023-03-02 Figma, Inc. Integrated application platform to implement widgets

Citations (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5109413A (en) * 1986-11-05 1992-04-28 International Business Machines Corporation Manipulating rights-to-execute in connection with a software copy protection mechanism
US5367573A (en) * 1993-07-02 1994-11-22 Digital Equipment Corporation Signature data object
US5392351A (en) * 1992-03-16 1995-02-21 Fujitsu Limited Electronic data protection system
US5457746A (en) * 1993-09-14 1995-10-10 Spyrus, Inc. System and method for access control for portable data storage media
US5499298A (en) * 1994-03-17 1996-03-12 National University Of Singapore Controlled dissemination of digital information
US5502766A (en) * 1992-04-17 1996-03-26 Secure Computing Corporation Data enclave and trusted path system
US5629980A (en) * 1994-11-23 1997-05-13 Xerox Corporation System for controlling the distribution and use of digital works
US5673316A (en) * 1996-03-29 1997-09-30 International Business Machines Corporation Creation and distribution of cryptographic envelope
US5715403A (en) * 1994-11-23 1998-02-03 Xerox Corporation System for controlling the distribution and use of digital works having attached usage rights where the usage rights are defined by a usage rights grammar
US5765152A (en) * 1995-10-13 1998-06-09 Trustees Of Dartmouth College System and method for managing copyrighted electronic media
US5892900A (en) * 1996-08-30 1999-04-06 Intertrust Technologies Corp. Systems and methods for secure transaction management and electronic rights protection
US5933498A (en) * 1996-01-11 1999-08-03 Mrj, Inc. System for controlling access and distribution of digital property
US5982390A (en) * 1996-03-25 1999-11-09 Stan Stoneking Controlling personality manifestations by objects in a computer-assisted animation environment
US6006332A (en) * 1996-10-21 1999-12-21 Case Western Reserve University Rights management system for digital media
US6044469A (en) * 1997-08-29 2000-03-28 Preview Software Software publisher or distributor configurable software security mechanism
US6135646A (en) * 1993-10-22 2000-10-24 Corporation For National Research Initiatives System for uniquely and persistently identifying, managing, and tracking digital objects
US6219788B1 (en) * 1998-05-14 2001-04-17 International Business Machines Corporation Watchdog for trusted electronic content distributions
US6226618B1 (en) * 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
US6289455B1 (en) * 1999-09-02 2001-09-11 Crypotography Research, Inc. Method and apparatus for preventing piracy of digital content
US20020087476A1 (en) * 1997-07-15 2002-07-04 Pito Salas Method and apparatus for controlling access to a product
US6510513B1 (en) * 1999-01-13 2003-01-21 Microsoft Corporation Security services and policy enforcement for electronic data
US6580683B1 (en) * 1999-06-23 2003-06-17 Dataplay, Inc. Optical recording medium having a master data area and a writeable data area

Family Cites Families (60)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5689641A (en) * 1993-10-01 1997-11-18 Vicor, Inc. Multimedia collaboration system arrangement for routing compressed AV signal through a participant site without decompressing the AV signal
CA2683230C (en) * 1995-02-13 2013-08-27 Intertrust Technologies Corporation Systems and methods for secure transaction management and electronic rights protection
US6633924B1 (en) * 1997-10-02 2003-10-14 Charles Wu Object synchronization between objects stores on different computers
US6385596B1 (en) * 1998-02-06 2002-05-07 Liquid Audio, Inc. Secure online music distribution system
US7110984B1 (en) * 1998-08-13 2006-09-19 International Business Machines Corporation Updating usage conditions in lieu of download digital rights management protected content
US6463460B1 (en) * 1999-04-23 2002-10-08 The United States Of America As Represented By The Secretary Of The Navy Interactive communication system permitting increased collaboration between users
US7162528B1 (en) * 1998-11-23 2007-01-09 The United States Of America As Represented By The Secretary Of The Navy Collaborative environment implemented on a distributed computer network and software therefor
US6334141B1 (en) * 1999-02-02 2001-12-25 International Business Machines Corporation Distributed server for real-time collaboration
US7073063B2 (en) * 1999-03-27 2006-07-04 Microsoft Corporation Binding a digital license to a portable device or the like in a digital rights management (DRM) system and checking out/checking in the digital license to/from the portable device or the like
JP3471654B2 (en) * 1999-04-06 2003-12-02 富士通株式会社 License server, copyright holder system, user system, system, recording medium, and content use control method
US6763371B1 (en) * 1999-05-10 2004-07-13 Telefonaktiebolaget Lm Ericsson (Publ) Method and apparatus for collaborative communication in a communication network
US6983313B1 (en) * 1999-06-10 2006-01-03 Nokia Corporation Collaborative location server/system
JP3485253B2 (en) * 1999-06-18 2004-01-13 インターナショナル・ビジネス・マシーンズ・コーポレーション Information processing method, information terminal support server, storage medium for storing information processing program
AU2001239797A1 (en) * 2000-02-14 2001-08-27 Lockheed Martin Corporation Information access, collaboration and integration system and method
JP3490369B2 (en) * 2000-02-15 2004-01-26 インターナショナル・ビジネス・マシーンズ・コーポレーション Content information acquisition method, collaboration system and collaboration server
US20020152244A1 (en) * 2000-12-22 2002-10-17 International Business Machines Corporation Method and apparatus to dynamically create a customized user interface based on a document type definition
US20030009603A1 (en) * 2000-12-27 2003-01-09 Ruths Derek Augustus Samuel System and method for managing collaborative data representations
US7774279B2 (en) * 2001-05-31 2010-08-10 Contentguard Holdings, Inc. Rights offering and granting
US20030023685A1 (en) * 2001-04-17 2003-01-30 Cousins Downs Partnership Data processing system for mapping a collaborative reasoning process
US7103663B2 (en) * 2001-06-11 2006-09-05 Matsushita Electric Industrial Co., Ltd. License management server, license management system and usage restriction method
KR20040015714A (en) * 2001-07-17 2004-02-19 마쯔시다덴기산교 가부시키가이샤 Content usage device and network system, and license information acquisition method
JP3734461B2 (en) * 2001-08-08 2006-01-11 松下電器産業株式会社 License information converter
US7039562B1 (en) * 2001-10-12 2006-05-02 I2 Technologies Us, Inc. Graphical design and automatic generation of supply chain collaboration services capable of understanding supply chain semantics
US7487363B2 (en) * 2001-10-18 2009-02-03 Nokia Corporation System and method for controlled copying and moving of content between devices and domains based on conditional encryption of content key depending on usage
JP4477822B2 (en) * 2001-11-30 2010-06-09 パナソニック株式会社 Information converter
US20030126086A1 (en) * 2001-12-31 2003-07-03 General Instrument Corporation Methods and apparatus for digital rights management
US7080043B2 (en) * 2002-03-26 2006-07-18 Microsoft Corporation Content revocation and license modification in a digital rights management (DRM) system on a computing device
US20030198347A1 (en) * 2002-04-22 2003-10-23 Octalis Sa System for handling digital rights and keys in business-to-business applications, computer software program, computer software modules and software products therefore
WO2003096136A2 (en) * 2002-05-10 2003-11-20 Protexis Inc. System and method for multi-tiered license management and distribution using networked clearinghouses
KR100551892B1 (en) * 2002-06-21 2006-02-13 주식회사 케이티 License issuance apparatus and digital rights management system snd method using it
JP3749212B2 (en) * 2002-09-17 2006-02-22 富士通株式会社 LICENSE MANAGEMENT DEVICE, LICENSE MANAGEMENT METHOD, AND COMPUTER-READABLE RECORDING MEDIUM CONTAINING PROGRAM FOR CAUSING COMPUTER TO EXECUTE THE METHOD
JP4580655B2 (en) * 2003-01-14 2010-11-17 パナソニック株式会社 Content usage management system
EP1591912A1 (en) * 2003-01-14 2005-11-02 Matsushita Electric Industrial Co., Ltd. System, method, and program for using or managing content
JP2004303108A (en) * 2003-04-01 2004-10-28 Hitachi Ltd Terminal equipment with license moving function
JP2004303111A (en) * 2003-04-01 2004-10-28 Hitachi Ltd Portable terminal with license management function
AU2003230086A1 (en) * 2003-05-15 2004-12-03 Nokia Corporation Transferring content between digital rights management systems
JP2004348286A (en) * 2003-05-20 2004-12-09 Sony Corp Information processor, informed processing method, and information processing system
KR20040107602A (en) * 2003-06-05 2004-12-23 삼성전자주식회사 License Management System And Method for Playing Contents in Home Network
US7640506B2 (en) * 2003-06-27 2009-12-29 Microsoft Corporation Method and apparatus for viewing and managing collaboration data from within the context of a shared document
US20050044391A1 (en) * 2003-07-25 2005-02-24 Matsushita Electric Industrial Co., Ltd. Data processing apparatus and data distribution apparatus
KR100493904B1 (en) * 2003-09-18 2005-06-10 삼성전자주식회사 Method for DRM license supporting plural devices
CN100483296C (en) * 2003-10-22 2009-04-29 Nxp股份有限公司 Digital rights management unit for a digital rights management system
JP2005141414A (en) * 2003-11-05 2005-06-02 Sony Corp Information processing system, method, and apparatus
EP1702251A2 (en) * 2004-01-08 2006-09-20 Matsushita Electric Industries Co., Ltd. Content distribution system, license distribution method and terminal device
JP4732746B2 (en) * 2004-01-08 2011-07-27 パナソニック株式会社 Content distribution system, license distribution method, and terminal device
US7661101B2 (en) * 2004-01-15 2010-02-09 Parametric Technology Corporation Synchronous and asynchronous collaboration between heterogeneous applications
US7546641B2 (en) * 2004-02-13 2009-06-09 Microsoft Corporation Conditional access to digital rights management conversion
US8843413B2 (en) * 2004-02-13 2014-09-23 Microsoft Corporation Binding content to a domain
US7676846B2 (en) * 2004-02-13 2010-03-09 Microsoft Corporation Binding content to an entity
AU2005225847B2 (en) * 2004-03-26 2011-05-26 Adrea Llc Method of and system for generating an authorized domain
WO2005093583A1 (en) * 2004-03-29 2005-10-06 Matsushita Electric Industrial Co., Ltd. Right management device, terminal device, and right management system
US7552122B1 (en) * 2004-06-01 2009-06-23 Sanbolic, Inc. Methods and apparatus facilitating access to storage among multiple computers
US7546543B2 (en) * 2004-06-25 2009-06-09 Apple Inc. Widget authoring and editing environment
US20060080432A1 (en) * 2004-09-03 2006-04-13 Spataro Jared M Systems and methods for collaboration
KR100694064B1 (en) * 2004-10-08 2007-03-12 삼성전자주식회사 Method and Apparatus for converting DRM
US7634735B2 (en) * 2004-11-24 2009-12-15 Mccary David W Collaborative platform
FR2881596A1 (en) * 2005-01-28 2006-08-04 Thomson Licensing Sa METHOD FOR PROTECTING AUDIO AND / OR VIDEO DIGITAL CONTENTS AND ELECTRONIC DEVICES USING THE SAME
KR100506530B1 (en) * 2005-03-14 2005-08-03 삼성전자주식회사 Method for DRM license supporting plural devices
KR100763193B1 (en) * 2005-10-13 2007-10-04 삼성전자주식회사 System and Method for providing DRM license
US20080114693A1 (en) * 2006-11-14 2008-05-15 Fabrice Jogand-Coulomb Method for allowing content protected by a first DRM system to be accessed by a second DRM system

Patent Citations (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5109413A (en) * 1986-11-05 1992-04-28 International Business Machines Corporation Manipulating rights-to-execute in connection with a software copy protection mechanism
US5392351A (en) * 1992-03-16 1995-02-21 Fujitsu Limited Electronic data protection system
US5502766A (en) * 1992-04-17 1996-03-26 Secure Computing Corporation Data enclave and trusted path system
US5367573A (en) * 1993-07-02 1994-11-22 Digital Equipment Corporation Signature data object
US5457746A (en) * 1993-09-14 1995-10-10 Spyrus, Inc. System and method for access control for portable data storage media
US5703951A (en) * 1993-09-14 1997-12-30 Spyrus, Inc. System and method for access data control
US6135646A (en) * 1993-10-22 2000-10-24 Corporation For National Research Initiatives System for uniquely and persistently identifying, managing, and tracking digital objects
US5499298A (en) * 1994-03-17 1996-03-12 National University Of Singapore Controlled dissemination of digital information
US5629980A (en) * 1994-11-23 1997-05-13 Xerox Corporation System for controlling the distribution and use of digital works
US5715403A (en) * 1994-11-23 1998-02-03 Xerox Corporation System for controlling the distribution and use of digital works having attached usage rights where the usage rights are defined by a usage rights grammar
US5765152A (en) * 1995-10-13 1998-06-09 Trustees Of Dartmouth College System and method for managing copyrighted electronic media
US5933498A (en) * 1996-01-11 1999-08-03 Mrj, Inc. System for controlling access and distribution of digital property
US5982390A (en) * 1996-03-25 1999-11-09 Stan Stoneking Controlling personality manifestations by objects in a computer-assisted animation environment
US5673316A (en) * 1996-03-29 1997-09-30 International Business Machines Corporation Creation and distribution of cryptographic envelope
US5892900A (en) * 1996-08-30 1999-04-06 Intertrust Technologies Corp. Systems and methods for secure transaction management and electronic rights protection
US6006332A (en) * 1996-10-21 1999-12-21 Case Western Reserve University Rights management system for digital media
US20020087476A1 (en) * 1997-07-15 2002-07-04 Pito Salas Method and apparatus for controlling access to a product
US6044469A (en) * 1997-08-29 2000-03-28 Preview Software Software publisher or distributor configurable software security mechanism
US6219788B1 (en) * 1998-05-14 2001-04-17 International Business Machines Corporation Watchdog for trusted electronic content distributions
US6226618B1 (en) * 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
US6510513B1 (en) * 1999-01-13 2003-01-21 Microsoft Corporation Security services and policy enforcement for electronic data
US6580683B1 (en) * 1999-06-23 2003-06-17 Dataplay, Inc. Optical recording medium having a master data area and a writeable data area
US6289455B1 (en) * 1999-09-02 2001-09-11 Crypotography Research, Inc. Method and apparatus for preventing piracy of digital content

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090007240A1 (en) * 2007-06-26 2009-01-01 Luc Vantalon Systems and methods for conditional access and digital rights management
US20090199287A1 (en) * 2007-06-26 2009-08-06 Luc Vantalon Systems and methods for conditional access and digital rights management
US8474054B2 (en) 2007-06-26 2013-06-25 Digital Keystone, Inc. Systems and methods for conditional access and digital rights management
US20090307254A1 (en) * 2008-06-04 2009-12-10 Microsoft Corporation Translating DRM System Requirements
WO2009148957A3 (en) * 2008-06-04 2010-04-29 Microsoft Corporation Translating drm system requirements
CN102057380A (en) * 2008-06-04 2011-05-11 微软公司 Translating DRM system requirements
US8095518B2 (en) 2008-06-04 2012-01-10 Microsoft Corporation Translating DRM system requirements

Also Published As

Publication number Publication date
KR100763193B1 (en) 2007-10-04
KR20070041313A (en) 2007-04-18
CN100440237C (en) 2008-12-03
KR20070041325A (en) 2007-04-18
KR20080045667A (en) 2008-05-23
US20110113350A1 (en) 2011-05-12
KR20070041329A (en) 2007-04-18
US8805742B2 (en) 2014-08-12
CN101330380B (en) 2011-05-18
EP2287771A2 (en) 2011-02-23
KR101300816B1 (en) 2013-09-16
JP2011146051A (en) 2011-07-28
CN101330381A (en) 2008-12-24
CN1949239A (en) 2007-04-18
EP1775671A1 (en) 2007-04-18
EP2287770A3 (en) 2011-03-23
US20070100767A1 (en) 2007-05-03
JP4767810B2 (en) 2011-09-07
JP2007110730A (en) 2007-04-26
KR20120089228A (en) 2012-08-09
CN1949238A (en) 2007-04-18
US8103593B2 (en) 2012-01-24
JP5209862B2 (en) 2013-06-12
EP2287770A2 (en) 2011-02-23
CN101262336B (en) 2011-08-24
EP1775672A1 (en) 2007-04-18
JP2007109239A (en) 2007-04-26
EP1775670A1 (en) 2007-04-18
CN101330381B (en) 2012-02-08
JP4755059B2 (en) 2011-08-24
JP5361921B2 (en) 2013-12-04
CN101262336A (en) 2008-09-10
CN100446020C (en) 2008-12-24
CN1949237A (en) 2007-04-18
EP2287771A3 (en) 2011-03-30
US20070100763A1 (en) 2007-05-03
CN101330380A (en) 2008-12-24
JP2007109225A (en) 2007-04-26
KR101307413B1 (en) 2013-11-21
KR100781532B1 (en) 2007-12-03
CN100440236C (en) 2008-12-03

Similar Documents

Publication Publication Date Title
US8103593B2 (en) Method and system for providing DRM license
KR100971854B1 (en) Systems and methods for providing secure server key operations
KR101026607B1 (en) Issuing a publisher use license off-line in a digital rights managementdrm system
KR101143228B1 (en) Enrolling/sub-enrolling a digital rights management drm server into a dram architecture
KR100984440B1 (en) Publishing digital content within a defined universe such as an organization in accordance with a digital rights management(drm) system
JP4583046B2 (en) Linking a digital license with a user in a digital rights management (DRM) system, and binding a user with multiple computing devices
US8091137B2 (en) Transferring a data object between devices
JP2004246902A (en) Publishing of digital content by digital copyright administrative (drm) system within limited area such as organization
MX2007008542A (en) Method and device for consuming rights objects having inheritance structure.

Legal Events

Date Code Title Description
AS Assignment

Owner name: SAMSUNG ELECTRONICS CO., LTD., KOREA, REPUBLIC OF

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:KIM, HYOUNG-SHICK;REEL/FRAME:018417/0863

Effective date: 20061009

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION