| 发明名称 |
Digital rights management system and methods for accessing content from an intelligent storage |
| 摘要 |
The present invention relates to accessing content stored on a storage device and protecting the content with a digital rights management (DRM) scheme. The storage device may be a disk drive, or network attached storage. The storage device can perform cryptographic operations and provide a hardware root of trust. The DRM employs a binding key, a content key, and an access key. The binding key binds the content to the storage device and is based on a key concealed on the storage device. The binding key itself is not stored anywhere on the storage device. The content key is a key assigned to the content. The access key is determined based on a cryptographic combination of the content key and binding key. In one embodiment, the content is encrypted based on the access key and stored in encrypted form in the storage device. |
| 申请公布号 |
US8831217(B2) |
申请公布日期 |
2014.09.09 |
| 申请号 |
US201213460616 |
申请日期 |
2012.04.30 |
| 申请人 |
Western Digital Technologies, Inc. |
发明人 |
Blankenbeckler David L.;Ybarra Danny;Hesselink Lambertus |
| 分类号 |
H04N7/167;G06F12/14;G06F7/04;G06F21/00;G11B20/00;G06F21/71;G06F21/10 |
主分类号 |
H04N7/167 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A storage device configured to provide content to a player system for rendering of the content, said storage device comprising:
a storage medium comprising a user area that is accessible by the player system and a non-user area that is not accessible by the player system; and a controller comprising a cryptographic module providing a hardware root of trust and a secured memory, wherein the controller is configured to:
authenticate the player system;establish a secured communication channel with the player system based on the authentication;provide, to the player system, a first cryptographic key, wherein the first cryptographic key is unique to the storage device, the first cryptographic key based at least partly on defect information of the storage medium and cryptographic data stored on the non-user area;provide, to the player system, a second cryptographic key that is associated with the content, wherein the second cryptographic key is based at least partly on cryptographic data previously obtained, over a communication network, from an audit system distinct from the player system; andprovide, to the player system, the content in encrypted form from the user area of the storage medium,wherein the content is accessible based on a cryptographic combination of the first cryptographic key and the second cryptographic key. |
| 地址 |
Irvine CA US |
