EP1145242A3 - Recuperation d'une cle maitresse a partir d'un materiau publie enregistre - Google Patents

Recuperation d'une cle maitresse a partir d'un materiau publie enregistre

Info

Publication number
EP1145242A3
EP1145242A3 EP00965881A EP00965881A EP1145242A3 EP 1145242 A3 EP1145242 A3 EP 1145242A3 EP 00965881 A EP00965881 A EP 00965881A EP 00965881 A EP00965881 A EP 00965881A EP 1145242 A3 EP1145242 A3 EP 1145242A3
Authority
EP
European Patent Office
Prior art keywords
key
master key
encrypted
public
recording
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP00965881A
Other languages
German (de)
English (en)
Other versions
EP1145242A2 (fr
Inventor
Michael A. Epstein
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Koninklijke Philips NV
Original Assignee
Koninklijke Philips Electronics NV
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninklijke Philips Electronics NV filed Critical Koninklijke Philips Electronics NV
Publication of EP1145242A2 publication Critical patent/EP1145242A2/fr
Publication of EP1145242A3 publication Critical patent/EP1145242A3/fr
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F15/00Digital computers in general; Data processing equipment in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N5/00Details of television systems
    • H04N5/76Television signal recording
    • H04N5/91Television signal processing therefor
    • H04N5/913Television signal processing therefor for scrambling ; for copy protection
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/007Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
    • G06F2211/008Public Key, Asymmetric Key, Asymmetric Encryption
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2131Lost password, e.g. recovery of lost or forgotten passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N5/00Details of television systems
    • H04N5/76Television signal recording
    • H04N5/91Television signal processing therefor
    • H04N5/913Television signal processing therefor for scrambling ; for copy protection
    • H04N2005/91357Television signal processing therefor for scrambling ; for copy protection by modifying the video signal
    • H04N2005/91364Television signal processing therefor for scrambling ; for copy protection by modifying the video signal the video signal being scrambled

Definitions

  • This invention relates to the field of consumer electronics, and in particular to the recovery of published material that is recorded in an encrypted form.
  • Digital recordings have the unique property that copies of the content material have the same quality as the original. As such, the need for an effective copy protection scheme is particularly crucial for the protection of content material that is digitally recorded.
  • a number of protection schemes have been developed or proposed that record the content material in an encrypted form.
  • Other protection schemes have been developed or proposed that record an encrypted key that controls the playback, or rendering, of the content material.
  • a "smartcard" is used to decrypt the encrypted information.
  • the smartcard contains a master key that is used to encrypt and decrypt the content material or to encrypt or decrypt another key that controls the rendering of the content material.
  • the master key is contained within the recording or playback device, or within a content-access-module that is used to decrypt the content material.
  • a smartcard or content- access-module is typically preferred, so as to allow the use of alternative or replacement recording or playback devices.
  • a conventional method for alleviating the inconvenience and impact associated with the loss of a smartcard is to maintain a registry of each smartcard and its associated master key. Such a system, however, requires that the user have a means for identifying the particular smartcard after it is lost, or requires that the registry contain an identification of each user of each smartcard.
  • the content material is intended to be published for use by the general public.
  • This published material is encrypted to prevent it from being copied or used by persons other than those who have acquired the right to access the published material, and those who have acquired the right to access the material have no privacy rights or concerns regarding access to the material.
  • the encryption process inconveniences those who have acquired the right to access the published material.
  • the success of imposing the proposed encryption schemes for safeguarding copy protected published material will be highly dependent on the general public's acceptance of this inconvenience, and in particular, to any loss of value incurred due to a misplaced or defective decryption device.
  • This objective and others are achieved by including an encryption of a master key with each recording that contains encrypted published material that requires the master key for decryption and subsequent processing.
  • the master key is encrypted using a public key associated with a trusted authority. Should the smartcard be lost, or the decryption device become inoperative, any one of the recordings containing the encrypted master key is sent to the trusted authority for a retrieval of the master key.
  • the trusted authority uses the private key corresponding to the public key that was used to encrypt the master key to determine the master key.
  • the trusted authority is the vendor of the smartcard or other encryption decryption device, and provides a replacement smartcard or device containing the retrieved master key, typically for a fee, for subsequent use by the user to decrypt other recorded material in the user's collection.
  • FIG. 1 illustrates an example block diagram of a system for recording encrypted published material in accordance with this invention.
  • FIG. 2 illustrates an example flow diagram of a system for recording encrypted published material in accordance with this invention.
  • FIG. 3 illustrates an example flow diagram for the retrieval of a master key in accordance with this invention.
  • FIG. 1 illustrates an example block diagram of a system 100 for recording encrypted published material, such as audio content, audio-visual content, virtual-reality content, multi-media content, and the like, in accordance with this invention.
  • published material is used in the general sense of content material that is recorded by one party for distribution to other parties, typically the general public. That is, the encryption of the material is not to preserve the secrecy of the content material, but rather to preserve the copy and viewing rights to the published material.
  • An encryption device 110 receives the content material 101 and provides encrypted material to a recording device 130 for recording onto a medium 140.
  • the content material 101 is often communicated from a source, such as a "pay-per-view" broadcaster, in encrypted form and decrypted locally.
  • a source such as a "pay-per-view" broadcaster
  • this decryption stage is not illustrated in FIG. 1 and is not discussed further in this disclosure.
  • the encryption device 110 encrypts the content material using either a master key M 121 to produce an encryption E M (CM) 112, or a session key K to produce an encryption E (CM) 114.
  • the master key M 121 is intended to remain constant for all encryptions of the particular system 100, and is commonly provided by, for example, a smartcard, illustrated in FIG. 1 as an access device 120.
  • the access device 120 may be embodied within a separate access module, such as a set-top-box or other device.
  • the session key K may change for each particular content material, or each content material classification, and may contain, for example, a ticket or other item that identifies the display or copy rights to the content material.
  • the access device 120 that provides the master key M 121 also provides a public key P 122 that is associated with a trusted authority, such as the vendor of the access device 120.
  • the public key P 122 is part of a public-private key-pair, the private key of the key-pair being a secret kept at the trusted authority. An item that is encrypted using the public key of the key-pair can only feasibly be decrypted by the private key of the key-pair.
  • the encryption device 110 encrypts the master key M 121 using the public key P 122, and communicates the encrypted master key Ep(M) 111 to the recording device 130 for inclusion on the medium 140 with the encrypted content material E M (CM) 112 or E (CM) 114. If the encrypted content material is encoded using the session key K, the encryption device 110 also encrypts the session key K using the master key M, and provides an encrypted session key E M (K) 113 to the recording device 130 for inclusion on the medium 140 as well.
  • a playback device 150 communicates the encrypted material 111, 112 or 111, 113, 114 from the medium 140 to the decryption device 160.
  • the medium 140 may be any of a variety of recording mediums including magnetic tape, magnetic disks, laser disks, CDs, DVDs, and so on.
  • the playback device 150 is a co ⁇ esponding device for reading the material on the medium. If the medium 140 is a hard disk drive, for example, the playback device 150 may be a computer system that reads files that are stored on a hard disk drive.
  • the decryption device 160 can receive the master key from the access device 120, if required.
  • the decryption device 160 If the content material CM 101 is encrypted using the session key K, as E ⁇ (CM) 114, and the decryption device 160 is privy to the session key K, it does not need the master key M 121 to decrypt a copy 1 O of the content material CM 101. If, on the other hand, the decryption device 160 does not have direct access to session key K, or the content material CM 101 is encrypted using the master key M 121, as E M (CM) 112, the decryption device 160 receives the master key M 121 from the access device 120 and provides thereafter a copy 101' of the content material CM 101. This copy 101' of the content material CM 101 is provided to a conventional rendering device 170 for presentation to the user in a suitable form.
  • FIG. 2 illustrates an example flow diagram for recording encrypted content material in accordance with this invention, as may be effected by the encryption device 110 of FIG. 1.
  • the use of a session key K, and the encryption of the session key K using the master key M is not illustrated in FIG. 2; the details for adding this option will be evident to one of ordinary skill in the art in view of this disclosure.
  • the process commences upon receipt of the content material CM, at 210.
  • the encryption device 110 receives a master key M and a public key P, at 220, typically from an access device 120 in FIG. 1.
  • the encryption device 110 encrypts the master key M using the public key P, at 230, and records the encrypted master key Ep(M), at 240.
  • the content material is encrypted, at 250, using the master key M, and the encrypted content material E M (CM) is similarly recorded, at 260.
  • the recording of the encrypted master key Ep(M) and the encrypted content material E M (CM) is preferably stored on the same medium 140.
  • FIG. 3 illustrates an example flow diagram for the retrieval of a master key M in accordance with this invention.
  • FIG. 3 illustrates example actions that occur at a provider's locale and at a user's locale.
  • the provider provides a master key M and a public key P to the user, the master key M and public key P being typically provided on a smartcard that is used to facilitate the encryption of copy-protected material via a conforming system 350.
  • the master key M may be generated randomly on the smart card, and not known to the provider.
  • a conforming system 350 effects and enforces the encryption and copy protection in accordance with these standards.
  • the user Via the conforming system 350 that includes encryption, decryption, recording, and playback capabilities, the user is able to create a collection 360 of encrypted content material CM that conforms to the appropriate standards, and is able to decrypt and playback the encrypted content material CM, via the use of the provided master key M.
  • the provider provides the user with a replacement master key M, via the following process, illustrated in FIG. 3.
  • the user selects an individual encrypted recording 361 from the collection 360 and sends it to the provider.
  • a copy of the recording 361 can be sent, provided that the copy contains an unmodified copy of the encrypted master key Ep(M).
  • the provider decrypts the encrypted master key Ep(M), using the co ⁇ esponding private key p, at 320, and provides a replacement copy of the master key M and public key K, at 330, typically by sending the user a replacement smartcard in return for a servicing fee.
  • FIG. 4 illustrates an example block diagram of a system for providing a replacement access device 120' in accordance with this invention.
  • the playback device 410 accesses the encrypted recording 361 from the user's collection 360 of FIG. 3 to provide the encrypted master key Ep(M) to a decryption device 420.
  • the decryption device 420 uses the private key p 401 to decrypt the encrypted master key Ep(M) to provide the master key M.
  • a programming device loads the decrypted master key M, and the public key P co ⁇ esponding to the private key p 401 into the duplicate access device 120' that is sent back to the user, typically with the encrypted recording 361.
  • the foregoing merely illustrates the principles of the invention. It will thus be appreciated that those skilled in the art will be able to devise various a ⁇ angements which, although not explicitly described or shown herein, embody the principles of the invention and are thus within its spirit and scope.
  • controls may be incorporated into the process illustrated in FIG. 3 to assure that the number of copies of the master key M is limited.
  • a simple record of the number of times a master key M is provided can be maintained, and further copies of the master key M may be precluded.
  • providing each copy of the master key M can have an increasingly higher fee charged, or some other procedure employed, so as to make an unauthorized mass distribution of the same master key M economically infeasible, or highly inefficient.
  • the access device 120 may be a programmable device that is downloaded with a master key M upon activation. Thereafter, the aforementioned process of replacing the access device 120 may include the downloading of a copy of the master key M, based on a transmission of encrypted master key Ep(M) to the downloading entity.
  • Ep(M) encrypted master key

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing For Digital Recording And Reproducing (AREA)
  • Storage Device Security (AREA)
  • Television Signal Processing For Recording (AREA)

Abstract

Une forme cryptée d'une clé maîtresse est incluse dans chaque enregistrement de matériau publié crypté nécessitant la clé maîtresse pour le décryptage et les traitements ultérieurs. La clé maîtresse est cryptée au moyen d'une clé publique associée à une autorité désignée, généralement codée sur une carte à microprocesseur associée à chaque utilisateur autorisé. En cas de perte de la carte à microprocesseur, ou au cas où le dispositif de décryptage deviendrait inopérant, l'un des enregistrements contenant la clé maîtresse cryptée est envoyée à l'autorité désignée en vue d'une récupération de cette clé maîtresse. Pour déterminer la clé maîtresse, l'autorité désignée utilise la clé privée correspondant à la clé publique qui a été utilisée pour crypter la clé maîtresse. Selon une réalisation préférée, l'autorité désignée est le vendeur de la carte à microprocesseur ou d'un autre dispositif de cryptage/décryptage. Cette autorité fournit une carte à microprocesseur de remplacement ou un dispositif contenant la clé maîtresse récupérée, généralement contre rétribution, en vue d'une utilisation ultérieure par l'utilisateur pour décrypter un autre matériau enregistré de la collection de l'utilisateur.
EP00965881A 1999-09-03 2000-08-16 Recuperation d'une cle maitresse a partir d'un materiau publie enregistre Withdrawn EP1145242A3 (fr)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US38982599A 1999-09-03 1999-09-03
US389825 1999-09-03
PCT/EP2000/008054 WO2001018807A2 (fr) 1999-09-03 2000-08-16 Recuperation d'une cle maitresse a partir d'un materiau publie enregistre

Publications (2)

Publication Number Publication Date
EP1145242A2 EP1145242A2 (fr) 2001-10-17
EP1145242A3 true EP1145242A3 (fr) 2001-12-05

Family

ID=23539874

Family Applications (1)

Application Number Title Priority Date Filing Date
EP00965881A Withdrawn EP1145242A3 (fr) 1999-09-03 2000-08-16 Recuperation d'une cle maitresse a partir d'un materiau publie enregistre

Country Status (5)

Country Link
EP (1) EP1145242A3 (fr)
JP (1) JP2003509881A (fr)
KR (1) KR100748867B1 (fr)
CN (1) CN1327586A (fr)
WO (1) WO2001018807A2 (fr)

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20020049483A (ko) * 2000-12-19 2002-06-26 조충환 바이어스 타이어의 카카스 구조
JP2002245427A (ja) 2001-02-20 2002-08-30 Toshiba Corp Icカード、icカード端末装置およびicカード複製方法
FI114362B (fi) * 2001-12-12 2004-09-30 Setec Oy Menetelmä laitteen salaisen avaimen ottamiseksi käyttöön toisessa laitteessa
JP3978046B2 (ja) * 2002-02-25 2007-09-19 日本電信電話株式会社 ファイルアクセス制御方法、プログラム及び記憶媒体
US7861082B2 (en) 2002-05-24 2010-12-28 Pinder Howard G Validating client-receivers
EP1480371A1 (fr) * 2003-05-23 2004-11-24 Mediacrypt AG Dispositif et procédé pour le cryptage et le décryptage d'un bloc de données
CN1898623A (zh) * 2003-12-22 2007-01-17 皇家飞利浦电子股份有限公司 使用动态实体的软件执行保护
EP1700182B1 (fr) 2003-12-30 2009-06-17 Wibu-Systems AG Procede pour reconstituer un code d'autorisation
KR100994772B1 (ko) * 2004-01-10 2010-11-16 삼성전자주식회사 저장 매체의 데이터 복사 및 재생 방법
GB0400663D0 (en) * 2004-01-13 2004-02-11 Koninkl Philips Electronics Nv Secure data handling system, method and related apparatus
JP2005327235A (ja) 2004-04-13 2005-11-24 Hitachi Ltd 暗号化バックアップ方法および復号化リストア方法
WO2006003632A2 (fr) * 2004-07-02 2006-01-12 Philips Intellectual Property & Standards Gmbh Unite de securite et systeme de protection comprenant cette unite de securite ainsi que procede de protection de donnees
KR101366185B1 (ko) * 2004-08-12 2014-02-24 씨엠엘에이 엘엘씨 보안성을 향상시키는 순열 데이터 변환
US9277295B2 (en) 2006-06-16 2016-03-01 Cisco Technology, Inc. Securing media content using interchangeable encryption key
US9137480B2 (en) 2006-06-30 2015-09-15 Cisco Technology, Inc. Secure escrow and recovery of media device content keys

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5237610A (en) * 1990-02-01 1993-08-17 Scientific-Atlanta, Inc. Independent external security module for a digitally upgradeable television signal decoder
DE69634850T2 (de) * 1995-10-09 2006-05-18 Matsushita Electric Industrial Co., Ltd., Kadoma Informationsaufzeichnungsträger, informationswiedergabegerät und informationswiedergabeverfahren
US5857021A (en) * 1995-11-07 1999-01-05 Fujitsu Ltd. Security system for protecting information stored in portable storage media
AU8757398A (en) * 1997-07-15 1999-02-10 V-One Corporation File encryption with key recovery
EP0936812A1 (fr) * 1998-02-13 1999-08-18 CANAL+ Société Anonyme Procédé et appareil d'enregistrement de données numériques cryptées
US7162452B1 (en) * 1999-03-25 2007-01-09 Epstein Michael A Key distribution via a memory device

Also Published As

Publication number Publication date
EP1145242A2 (fr) 2001-10-17
WO2001018807A3 (fr) 2001-10-04
CN1327586A (zh) 2001-12-19
JP2003509881A (ja) 2003-03-11
KR100748867B1 (ko) 2007-08-13
WO2001018807A2 (fr) 2001-03-15
KR20010083940A (ko) 2001-09-03

Similar Documents

Publication Publication Date Title
CN1329909C (zh) 安全的单驱动器复制方法和设备
USRE42106E1 (en) Digital data file encryption apparatus and method and recording medium for recording digital data file encryption program thereon
EP1312087B1 (fr) Procede et dispositif de controle de la repartition et l'utilisation de travaux numeriques
EP1598822B1 (fr) Stockage securisé sur un support d'enregistrement dans un système de protection de contenu
US7325247B2 (en) Information management method using a recording medium with a secure area and a user-use area
JP4753473B2 (ja) メモリ装置による鍵配布
WO2001018807A2 (fr) Recuperation d'une cle maitresse a partir d'un materiau publie enregistre
CN1513265A (zh) 用于选择性地提供对一项利用控制字加密的业务的访问的设备和方法以及智能卡
EP1393317B1 (fr) Chiffrement et le déchiffrement de données sur un support d'enregistrement
TWI271618B (en) Apparatus and method for reading or writing user data
US8005758B2 (en) Encryption/decryption method and apparatus for controlling content use based on license information
KR101407139B1 (ko) 디지털 데이터의 기록 및 안전한 분배 방법과 액세스 장치및 레코더
US20090177712A1 (en) Digital data Recording device
US20040098601A1 (en) Secure local copy protection

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

AK Designated contracting states

Kind code of ref document: A2

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE

AX Request for extension of the european patent

Free format text: AL;LT;LV;MK;RO;SI

XX Miscellaneous (additional remarks)

Free format text: DERZEIT SIND DIE WIPO-PUBLIKATIONSDATEN A3 NICHT VERFUEGBAR.

PUAK Availability of information related to the publication of the international search report

Free format text: ORIGINAL CODE: 0009015

AK Designated contracting states

Kind code of ref document: A3

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE

AX Request for extension of the european patent

Free format text: AL;LT;LV;MK;RO;SI

17P Request for examination filed

Effective date: 20020404

RBV Designated contracting states (corrected)

Designated state(s): DE ES FR GB IT

GRAP Despatch of communication of intention to grant a patent

Free format text: ORIGINAL CODE: EPIDOSNIGR1

GRAS Grant fee paid

Free format text: ORIGINAL CODE: EPIDOSNIGR3

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20080219