Abstract: In a system, a server provides a digital signal processing function ƒ to an executing device in an obfuscated form. The function ƒ includes a function cascade of signal processing functions ƒi, 1?i?N (e.g., FC1(x)?ƒN? . . . ?ƒ1(x)). The server includes a processor for selecting a set of 2N invertible permutations pi, 1?i?2N; calculating a set of N functions gi, where gi is functionally equivalent to p2i?1?ƒi?p2i?1, for 1?i?N; and calculating a set of N?1 functions hi, where hi is functionally equivalent to p2i?1?1?p2i?2, for 2?i?N. The server equips the executing device with an execution device function cascade that includes yN?hN?yN?1?hN?1? . . . ?y1, where y1, . . . , yN are function parameters (e.g., ED1(y1, . . . , yN)?yN?hN?yN?1?hN?1? . . . ?y1), and provides the functions g1, . . . gN to the executing device. The executing device obtains the functions g1, . . .

Abstract: In a system, a server provides a digital signal processing function ƒ to an executing device in an obfuscated form. The function ƒ includes a function cascade of signal processing functions ƒi, 1?i?N (e.g., FC1(x)?ƒN? . . . ?ƒ1(x)). The server includes a processor for selecting a set of 2N invertible permutations pi, 1?i?2N; calculating a set of N functions gi, where gi is functionally equivalent to p2i?1?ƒi?p2i?1, for 1?i?N; and calculating a set of N?1 functions hi, where hi is functionally equivalent to p2i?1?1?p2i?2, for 2?i?N. The server equips the executing device with an execution device function cascade that includes yN?hN?yN?1?hN?1? . . . ?y1, where y1, . . . , yN are function parameters (e.g., ED1(y1, . . . , yN)?yN?hN?yN?1?hN?1? . . . ?y1), and provides the functions g1, . . . gN to the executing device. The executing device obtains the functions g1, . . .

Abstract: The invention relates to a device (250) and a method for key block based authentication. In order to overcome the problems of known devices and method for authentication and to allow for an effective key block and/or application revocation wherein it is ensured that valid and new revocation information reaches said device and is used for authentication, a device (250) for a key block based authentication is proposed comprising authentication means (252) for authenticating between said device (250) having revocation information (254) and an application unit to be authenticated having a key block (AKB) by means of said revocation information (254) and said key block (AKB), and internal trigger means (256) for triggering a process of renewing of said revocation information (254).

Abstract: The present invention relates to a system (70, 80) and a method for a key block based authentication comprising a plurality of drive units (3) comprising a plurality of subsets, wherein a drive unit (3) has a set of node keys (KNd) and an identifier (IDd) indicating the subsets said drive unit (3) is part of and wherein an application unit (1) has a key block (AKB).

Abstract: In order to efficiently prevent the save-and-restore attack on usage rights associated with digital work, these usage rights are protected by a hidden channel. In order to make it a difficult or expensive to manipulate the hidden channel, a device is proposed comprising: writing means (34) for writing on a record carrier (20) said digital work (DW) and attached usage right information (22) defining one or more conditions to be satisfied in order for the usage right to be exercised,—fingerprint extraction means (23) for deriving fingerprint data (24) from physically uncontrollable, changeable non-uniformities on said record carrier (20), and authentication means (25) for generating authentication data (26) from said fingerprint data (24) and said usage right information (22), said authentication data being provided for authenticating said usage right information, said writing means (34) being adapted for writing said authentication data (25) on said record carrier (20).

Abstract: A record carrier, recording device, read-out device and method is provided which provides a flexible security level to protect user data during transmission over a communication bus, also when the data is recorded on a record carrier such as a recordable optical disc. In accordance with the method, management information comprising encryption indication information indicating that user data stored in an associated sector of a record carrier, such as a recordable optical disk, is to be encrypted by a read-out device before being transmitted over a communication bus.

Abstract: The present invention relates to a method for a content provider of renewing the watermarking of theatrical content and for updating consumer devices to detect said renewed watermark, wherein a watermark is embedded in said theatrical content using at least a first watermark noise pattern. Renewing is performed by said content provider distributing at least a second watermark noise pattern, which is used for embedding and detecting said watermark in said theatrical content, to said consumer devices using a broadcast encryption technology. The invention further relates to a content provider system adapted to be used for renewing the watermarking of theatrical content and for updating consumer devices to detect said renewed watermark.

Abstract: The invention relates to a watermark generation method for generating watermarks to be embedded in digital media, where said watermark is generated by combining at least two watermark patterns from a set of watermark patterns. The set of watermark patterns are divided into at least two subsets of watermark patterns, and the subsets are hierarchically related and the watermark patterns in said watermark are directly related watermark patterns. Directly related means that the watermark patterns are related like parent and child in a hierarchical structure e.g. a tree structure. Further, the invention relates to an apparatus adapted to generate watermarks to be embedded in media.

Abstract: In summary, ROM marks (such as wobbles, lateral deviations in the spiral with lands and pits in an optical disc) are used on optical media to ensure consumer-grade copying devices cannot duplicate original media. An additional level of security is that the detection of the side channel information requires knowledge of a certain secret, which must be hidden well in authorized players. If the secret leaks, a professional pirate will be able to detect the ROM mark and duplicate the original medium with the side channel information intact. The present invention proposes that instead of a single ROM mark, many ROM marks are applied to a disc. Further, devices are divided into groups, and each group has the capability to only detect one mark from the group. This way, if a secret is obtained from a device, the disc can be duplicated, but only a limited number of devices will be able to use this disc. Creating a disc that can be played in any device requires the hacking of one device from every group.

Abstract: The present invention relates to a method and device for controlling distribution and use of a digital work stored together with an attached usage right information on a record carrier. The attached usage right information is encrypted or verified by using a hidden information which is changed at every change of said usage right information. The hidden information may be an encryption key used for encrypting the usage right information, or a checksum of a data block containing the usage right information. Thus, a “copy and restore attack” is not successful, since it will lead to a mismatch between the hidden information and the restored usage right information.

Abstract: In order to create a record carrier having a side-channel which cannot be copied with a channel-bit recorder, the record carrier (1) has a modulated spiral. By modulating one or more of the spiral parameters, like the channel bit length or the track pitch, a side-channel is created. If a record carrier having such a side-channel is copied using a channel-bit recorder, the information present in the side-channel is lost. The number of bits to be stored in the modulated spiral can be selected as desired; also the way in which the bits are present can be selected; the bits can e.g. can be stored in different bands (A,B,C,D) present on the record carrier, in which band the spiral parameter modulated can be kept constant.

Abstract: In a system (600), a server (610) provides a digital signal processing function ƒ to an executing device (620) in an obfuscated form. The function ƒ includes a function cascade of signal processing functions ƒ1, 1?i?N to formula (I). The server includes a processor (612) for selecting a set of 2N invertible permutations pi, 1?i?2N; calculating a set of N functions g, where g, is functionally equivalent to formula (II) for 1?i?; and calculating a set of N?1 functions h, where h, is functionally equivalent to formula (III) for 2?i?N. The server includes means (614) for equipping the executing device with an execution device function cascade that includes formula (IV), where y1, . . . , yN are function parameters to formula (V), and means (616) for providing the functions g1, . . . gN to the executing device. The executing device includes means (626) for obtaining the functions g1, . . .

Abstract: The invention relates to a method and an arrangement for recording an information signal with first copy protection information to a storage medium using recording means, the recording being performed according to first copy rules identified by the first copy protection information. The method comprises the steps of detecting said first copy protection information identifying said first copy rules, recording at least second copy protection information according to said detected first copy rules, said first and at least second copy protection information identifying a legality message to be interpreted by reading means, the at least second copy protection information changing within a predefined time interval after the change in said detected first copy rules according to an interpreting rule.

Abstract: This invention provides a method, proximity check server (203), system (200), and computer program product (207, 208) for determining the level of allowed communication between devices (201, 202) in e.g. a home network. By addition of one or more tamper-resistant devices, so-called proximity check server(s) (203,204), round-trip time measurements to estimate the distance between the devices are performed in order to determine the amount of communication allowed between these devices. In a specific embodiment, a single tamper-resistant proximity server computes the distance between communication devices that are implemented as trusted applications on open platforms.

Abstract: A method of and source device (410) for authorizing access to content (425) by a sink device (400) in accordance with usage rights, the content being stored on a storage medium (420) controlled by the source device. The revocation status of the sink device is verified using the most recently issued revocation information that is available if the usage rights need to be modified as part of the authorization of access to the content, and using revocation information associated with the content stored on the storage medium, preferably the revocation information stored on the storage medium, otherwise. The revocation information on the storage medium, or only the part relating to the sink device, is optionally updated to the most recently issued revocation information if the usage rights need to be modified. Preferably this is done only if the result of the verification is that the sink device has been revoked.

Abstract: Current legislation requires the possibility of encryption when storing television programmes received by broadcast. However, legacy playback apparatuses will not be able to play back such encrypted data in a regular way, but possibly in a wrong way. This may result in problems like damage of speakers. Therefore, the application intends to hide any of such possibly damaging streams by intentionally providing such streams with a wrong identification during the encryption process. The application provides among others a method and circuit for encryption and a method and circuit for decryption. The application is especially suitable for DVD recorders, but may also be employed for other video and/or audio recorders. The invention may even be used for encrypting non-audiovisual data.

Abstract: The invention relates to a record carrier having a data zone (7) and an initial zone (25) and comprising a main channel storing content and a side channel storing address information and data relevant for making recordings. It further relates to methods and devices for protecting content stored on a record carrier and for reading out protected content. To provide a record carrier with content protection information (20, 22, 24, 26, 28) stored on it, which can be used with legacy devices without causing confusion, which can substantially be produced without extra production steps and which can be easily read by common devices, it is proposed to store said content protection information (20, 22, 26, 28) for protection of said content in said side channel in said data zone (7).

Abstract: The present invention relates to a digital rights management system (40) for controlling access rights to copy protected content comprising an application unit (1, 21, 41) and a drive unit (3, 23, 43), to an application unit (1, 21, 41), to a drive unit (3, 23, 43) and to a corresponding digital rights management method.

Abstract: A transmitter provides receivers conditional access to data transmitted via a network. A content encryptor is used to encrypt the data under control of a same authorization key before it is transmitted to all receivers. The transmitter has a storage with a plurality of device keys. A further encryptor is used for producing a key block with a plurality of entries, where each entry is associated with a respective one of the device keys. At least some of the entries contain a representation of the authorization key encrypted with the associated device key. The transmitter transmits the same key block to all receivers. The receiver has a subset of the device keys. A first decryptor is used to retrieve the authorization key by decrypting at least one entry of the key block that is associated with one of the device keys of the receiver. A second decryptor is used for decrypting the data under control of the authorization key.

Abstract: An apparatus for reading or writing user data stored block-wise in encrypted form on a storage medium. The apparatus includes a command interface for receiving and interpreting a read (or write) command. The read command includes a user data information specifying which user data are to be read. A reader reads the user data and a related encryption indicator from a block of the storage medium. The encryption indicator indicates if said user data is encrypted or not. The reader further reads a related key data identifier specifying which key data to use for decrypting the user data if said encryption indicator indicates that said user data are encrypted. A decryptor decrypts the user data using the key data.