| 发明名称 |
Digital rights management system and methods for provisioning content to an intelligent storage |
| 摘要 |
The present invention relates to digital rights management (DRM) for content that downloaded and saved to a storage device. The storage may be a disk drive, or network attached storage. In addition, the storage device performs cryptographic operations and provides a root of trust. The DRM employs a binding key, a content key, and an access key. The binding key binds the content to a specific storage and is based on a key that is concealed on the storage. The binding key is not stored on the storage device with the content. The content key is a key that has been assigned to the content. The access key is determined based on a cryptographic combination of the content key and the binding key. In one embodiment, the content is provisioned based on the access key and stored in encrypted form in the storage device. |
| 申请公布号 |
US8831218(B2) |
申请公布日期 |
2014.09.09 |
| 申请号 |
US201213460766 |
申请日期 |
2012.04.30 |
| 申请人 |
Western Digital Technologies, Inc. |
发明人 |
Blankenbeckler David L.;Ybarra Danny O.;Hesselink Lambertus |
| 分类号 |
H04N7/167;G06F12/14;G06F7/04;G06F21/00;G11B20/00;G06F21/71;G06F21/10 |
主分类号 |
H04N7/167 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A digital rights management system, said system comprising:
a storage device comprising a storage medium configured to store content and a storage device controller including a hardware cryptographic processor, wherein the hardware cryptographic processor is configured to generate and store a unique number, read defect information from the storage medium and perform cryptographic operations on the defect information to derive a defect number unique to the storage device, store the derived defect number on the storage medium, perform cryptographic operations on the unique number and the unique defect number to generate a binding key, and provide the binding key to a content download server; a content key server configured to provide content keys to a content download server; a content download server configured to perform cryptographic operations on at least a binding key received from a storage device and a content cryptographic key received from a content key server to generate an access key, encrypt at least a portion of a content with at least the content cryptographic key, provide the encrypted content to the storage device, provide the content key received from the content key server; and a media player configured to receive a binding key and a content key from the storage device, perform cryptographic operations on the binding key and content key to generate a content cryptographic key and decrypt the content from the storage device based on the content cryptographic key. |
| 地址 |
Irvine CA US |
