SYSTEMS AND METHODS FOR CONDITIONAL ACCESS AND DIGITAL RIGHTS MANAGEMENT
Conditional access (CA) and digital rights management (DRM) in digital media delivery, processing, and storage systems. Methods and apparatuses are provided for managing digital rights under the protection of multiple CA and/or DRM systems. Some embodiments provide secure and robust methods for bridging multiple DRM systems in the digital media content distribution and playback systems. The present invention simplifies content repurposing, after it has been bridged to a secondary DRM system, but still under the control of the original DRM system.
Latest DIGITAL KEYSTONE, INC. Patents:
This application is a continuation of co-pending U.S. application Ser. No. 11/823,194 filed on Jun. 26, 2007.
BACKGROUND OF THE INVENTION1. Field of the Invention
The present invention generally relates to digital media delivery and management systems. More particularly, the present invention pertains to systems for digital rights management.
2. Description of the Related Art
Digital media usually refers to some form of electronic media that can be manipulated by digital processing systems in one way or another. Unlike analog media, digital media is typically transmitted, stored, and/or processed in digital forms, e.g., in binary formats.
Use of digital media has been gaining popularity over the last few decades partly due to their technical advantages over the analog counterpart, such as robustness over noise, and partly due to the wide availability of various digital information processing systems such as personal computers and CD or DVD players. Digital media are generally easier to process and/or manage and they are often considered to have higher perceptual qualities. Digital broadcasting has also been gradually gaining momentum in the cable and satellite television or radio industries. Moreover, terrestrial digital television (DTV) broadcasting has been tentatively scheduled to supersede analog television by early 2009 in the United States.
The better processing capability of digital media is, however, also one of the downsides of using digital media. For example, digital media, or more precisely digital data associated with digital media, can be reproduced indefinitely without any loss of quality, often with no or very little cost. Furthermore, it can be easily altered or modified or copied in part or in whole without any accountability. This has been a hindrance to wide-scale adoption of digital media in many potential application areas. This is especially true for copyrighted media, or media that otherwise need to be protected for transmission, access, or reproduction. In many cases, the user needs special rights or permissions in order to be able to perform certain tasks or operations associated with a digital media. This is often referred as digital rights. The term digital rights sometimes refers to legal rights associated with the digital media. It sometimes refers to technical rights or capabilities, and it may not necessarily coincide with the rights' holder's legal rights.
A digital rights management (DRM) system manages digital rights and also rights of other types of media. Many digital media publishers and vendors use DRM systems to protect copyrighted or otherwise access-controlled materials. Typical DRM systems use various technical measures to identify, describe, analyze, valuate, trade, monitor, and track digital rights. For example, DRM systems often use copy protection measures to control and/or restrict the use and access of digital media content. In the commercial context, DRM provides a method to control any duplication and dissemination of digital media so that appropriate fees can be collected, for example, for each copy or for each performance of the media content.
A typical DRM system uses encryption and decryption software for this purpose along with other software or hardware based security measures. For example, HD DVD and Blue-ray movies are encrypted, or scrambled, using Advanced Access Content System (AACS). The data on the medium is encrypted, in addition to being compressed or encoded in MPEG-4 format, and it may only be decrypted and viewed using one or more valid decryption keys. In a typical DRM scheme, a DRM server wraps the digital content through encryption according to applicable policies.
Once the digital media is delivered, a DRM client unwraps the content and makes it accessible to the user in accordance with his or her rights. DRM clients may include desktop PCs, handhold devices, set-top boxes, mobile phones and other portable devices as well as other dedicated digital media players (e.g., for music, movies, etc.) and television and radio sets. The digital rights are typically distributed to clients separately from the wrapped media content. They can be distributed at the time of the content distribution, or they can be dynamically accessed later when needed, for example, at the time of storage or playback.
In the cable industry, and in other related industries such as satellite broadcasting, media is protected by conditional access (CA) systems. CA refers to a technique for limiting the access of protected content to authorized users. In a typical CA system such as those used in the cable television industry, the scrambled media content is delivered along with a decryption key called a control word (CW). The control word is embedded in an encrypted message called ECM (entitlement control message), which can be decrypted using another key called a service key (SK). The service key is delivered to the user in a different message called EMM (entitlement management message), and it may be decrypted using a user-specific decryption key, or user key (UK), which is typically associated with a client device, either at hardware or firmware level, such as a “smartcard”. The lifetime of each key varies depending on the purpose, and it varies from application to application. Typically, the lifetime of CW is much shorter (on the order of 0.1 second for live video stream) than that of SK, which is, for example, on the order of a month or so for a subscription channel in the cable television. SK and CW can also be associated with a particular media, for example, a movie title for pay-per-view. The UK is usually permanent, but can be replaced by providing a new smartcard to the user. Typical CA systems also have the ability to “revoke” UKs from unauthorized devices. It should be noted that a CW is not generally user specific. Using the (subscriber-specific) SK, the system can securely broadcast other common information, such as the CWs or the media content, to subscribers simultaneously without having to broadcast a different program for each of the subscribers.
The digital media content (e.g., video and audio signals) of one program, typically in the MPEG-2 or MPEG-4 format in the case of cable television, is sometimes multiplexed together with those of other programs for transmission so that multiple programs appear to be transmitted simultaneously. A CA system scrambles the digital form of programs and transmits the entitlement control messages and the entitlement management messages with the digital form of programs for broadcast either within the multiplex (e.g., for satellite) or through an out-of-band channel (e.g., for cable).
Content encryption is typically done using symmetric key cryptography, while key encryption is typically done using public key/private key cryptography. In symmetric key cryptography, the same or essentially equivalent keys are used to both encrypt and decrypt the data. In the asymmetric or public key cryptography, different but related keys are used to encrypt and decrypt the data. Public keys may be derived from the corresponding private keys in certain cryptographic schemes, but not vice versa. In general, encryption/decryption schemes based on symmetric key cryptography are less expensive than those using asymmetric key cryptography in terms of computational requirements.
Typically, a client device such as a set-top box (STB) at the receiving end descrambles the data stream and decodes the MPEG-2 data for viewing. A tuner portion of the STB receives the incoming signal, demodulates it and reconstitutes the transport stream, which contains multiple packets of information. The set-top box can de-multiplex the entitlement management messages and entitlement control messages and the media content. The data (e.g., service key and control word) contained in the entitlement management message and entitlement control message are used to descramble the encrypted programming content. The set-top box then decodes the MPEG data and renders the content for viewing.
It should be noted that encryption and decryption keys are symbolically represented by locks and keys, respectively, in
Although
With respect to
In the scenario shown in
In typical conditional access of a primary security system (e.g., digital TV or satellite TV), the control word, which is a global key, needs to change frequently (e.g., once every 0.1 second) to avoid key-sharing attack. However, to locally protect the recorded and stored content with a DRM system, a control word that is unique to the access control device does not need to change as frequently. For example, an entire recorded movie may be rescrambled using only one control word. It should be noted that different CA systems and DRM systems may have entirely different implementations of EMMs and ECMs but have similar or same descramblers for content protection (e.g., according to the ATSC Standard).
Multiple digital rights management systems can be used for protection of digital media, e.g., at the same time or alternately depending on the contexts. For example, the digital media owners such as movie studios and media delivery services such as cable companies might utilize different and separate DRM systems for the same digital media, or for different parts of the same media. Similarly, the same cable television company (e.g. Comcast Corp. of Philadelphia, Pa.) may use different CA systems for different contexts or for different domains. Digital rights management can also be implemented in a hierarchical fashion or in multiple domains. This is illustrated in
This vulnerability can be protected by various bridge protection schemes, where an exemplary is schematically illustrated in
Some DRM systems can store content that are still protected by the operator CA system. In this mode, ready access to CA servers may be required to access protected digital media. For example, when the digital media is stored in a user's device, in order to play the stored media the user may need to obtain an access grant from the corresponding CA server, e.g., as a form of an ECM. The associated ECM, or a CW contained in the ECM, may also be downloaded at the time when the media content is delivered.
In some cases, a CA server may provide entitlement valid only at playback time. For example, the system can allow the user to record (scrambled) programs that the user is not entitled to use at the time of recording. After the user obtains the required rights (e.g., through purchase of pay-per-view service, or by upgrading a subscription package, etc.), the user can then play back the recorded information at later convenient time. As stated earlier, the descrambled content and/or decrypted keys may be rescrambled/encrypted using a different scheme, such as the one based on a DRM system, before it is stored in a storage device.
Further information about bridge protection system can be found in U.S. patent application Ser. No. 11/446,427, filed on Jun. 2, 2006 which application is incorporated herein by reference. The bridge protection schemes create certain problems for the end clients of the DRM system on how the inner DRM system will deal with the original DRM protection after the bridging has occurred. For example, a CA media under the CA rules may be stored in a client of a DRM system. The client normally has a subscription agreement with the DRM system, but typically does not deal directly with CA system, and therefore would have difficulty in changing the CA rules under the DRM system. For example, the content protected by the CA system may be restricted by the CA system's access rules so that it can be played for a limited period of time (e.g. only for one week) or may be played back only once or twice. The user may be forced, in this case to “upgrade” the service from the CA system to obtain greater access rights, but the user's (e.g. client) system is a DRM system which may not have all the necessary keys, etc. to obtain the upgrade.
SUMMARY OF THE DESCRIPTIONThe present invention pertains, in general, to methods and apparatuses for conditional access (CA) and digital rights management (DRM) in digital media delivery and management systems. According to an embodiment, systems and methods for conditional access and copy protection in multiple DRM and/or CA domains are provided. According to another embodiment, methods and apparatuses are provided for managing multiple DRM domains in the presence of one or more CA servers. Some embodiments provide methods and apparatuses for bridging multiple DRM systems, for bridging multiple CA systems, or for bridging a CA system and a DRM system, in the digital media content distribution systems. Some embodiments of the present invention also provide systems, methods, and apparatuses for managing digital rights in multiple DRM domains in the digital media content delivery and storage systems. Embodiments of the present invention may simplify digital media content delivery, conditional access, and digital rights management and provide for the ability to “upgrade” service from a first CA or DRM system after content has passed through a bridge and is now controlled by a second CA or DRM system.
According to an embodiment, a method is provided for a downstream DRM client to obtain new rights or license from an upgrade server for a digital media content previously acquired from a DRM bridge. The DRM bridge typically includes an original DRM client and a secondary DRM server; it receives media content from the original DRM system and adapts it to the secondary DRM system (e.g. from a secondary DRM server to a secondary DRM client). The rights and license translation in the bridge is performed in such a manner that a remote DRM upgrade server of the secondary DRM system, which has not been involved in the original translation can later issue a new or upgraded license for the same digital media content. The stored media content may be protected by encryption such as, for example, encryption with a control word, which also can be encrypted with a service key. An exemplary method comprises the secondary DRM upgrade server contacting the original DRM system to get authorized to issue new rights or license, and to use the receiving information to upgrade or issue new rights or license to a previously acquired media. The communication between the original DRM and the secondary DRM systems may or may not follow the path of the media content, e.g. passing through the bridge. The original DRM system can be the server that sent the media content across the bridge or can be another server, e.g. a billing server or an upgrade server for the original DRM system. And the upgrade server of the secondary DRM system can be the DRM server that originally issues the license (i.e. the bridge), or another independent DRM server.
In certain embodiments, the client from the secondary DRM system sends a request to the secondary DRM server to get a new license. The secondary DRM server then communicates with the original DRM system to get an authorization to issue new rights and then it transfers the response to the secondary DRM client. The response provides new rights or license for previously acquired media content, to enable the secondary DRM client to access the media according to its request. In some cases, the communication between the secondary DRM server and the original DRM system passes through the original DRM client, thus using the bridge (original DRM client/secondary DRM server bridge) to transmit information. The original DRM client then can communicate with the original DRM server.
In certain embodiments, the secondary DRM server contacts an upgrade server of the secondary DRM system prior to issuing a new license. In some cases, the communication between the secondary DRM server and the upgrade server passes through the original DRM client, thus using the bridge to transmit information. Communication with the upgrade server may be through the original DRM client. The DRM upgrade server then communicates with the original DRM server, or an original DRM billing server to receive a response.
In certain embodiments, the client from the secondary DRM system sends a request to an upgrade server of the secondary DRM system to get a new license. The upgrade server is typically available online to the DRM client, and can communicate with the original DRM system to upgrade the rights or license for the media content. The contacted original DRM system can be an original DRM billing system server, or the original DRM server which sends the media content. The response from the upgrade server can upgrade the media content license according to the client's request.
In at least one embodiment, systems and methods are provided for managing digital rights associated with digital media which are under the protection of multiple DRM systems, e.g. cascading bridges. Certain embodiments of the present invention also provide methods and apparatuses for bridging multiple DRM systems in the digital media content distribution and storage systems. In some embodiments, various methods are used to upgrade rights or license to a media content between a plurality of different DRM systems. The media content is stored in the secondary DRM system, preferably in the secondary DRM client, with the initial secondary DRM license from the DRM bridge.
According to some embodiments of the present invention, the following operations are performed: (a) Contacting, from a secondary digital rights management system, to an original digital rights management system to get authorized to issue a new license or rights for an already acquired media content, (b) Upgrading the license or rights, by the secondary digital rights management system with permission from the original digital rights management system and this upgrading typically occurs by transferring a response from the original digital rights management system to the secondary digital rights management system with regard to the license or rights. The operations according to certain embodiments address potential issues, such as enabling the original DRM to identify, from the secondary DRM system license, the owner and the type of media content so that the original DRM system can properly log and authorize the transaction, and also to securely issue a new license without requiring the original DRM system to re-issue the same media content to the secondary DRM client. For example, the operations according to certain embodiments provide a way to get the CA rules (or other DRM rules) from the original DRM system to the DRM client across the bridge. The media can be originated from a CA system (the original DRM system), where the subscriber and event information may be lost in the bridging and not known to the secondary DRM client. Or the service or content key may not be readable by the server because it is encrypted for use by only the secondary DRM client.
According to another embodiment of the present invention, a method is provided for a secondary DRM system remote server to upgrade the rights or license of a digital media content that were issued by a DRM bridge. The initial secondary DRM license may include additional information to allow the upgrade operation to be reconciled with the original DRM system. The method may comprise the following operations: (a) Sending a request from a DRM client of the secondary DRM system to a secondary DRM server for an upgrade right or license. In some embodiments, the upgrade request goes to the secondary DRM server that originally issued the license (i.e. bridge). In other embodiments, the request is sent to another independent secondary DRM server (b) Having the secondary DRM update server requesting authorization from the original DRM server using the additional information that have been added by the bridge, before completing the transaction. In some cases, when the secondary DRM update server is the DRM bridge, the request can be carried using the original DRM server return path. In some other cases, when the secondary DRM update server is a separate server, the request can be carried as a business to business transaction between two servers. (c) Upon authorization from the original DRM server, having the secondary DRM update server extract the service or content key from the additional information added by the bridge and generating a new license for the secondary DRM client using the same content key but with new rights.
In one embodiment, when the secondary DRM server in a bridge creates the initial secondary DRM license, it may add additional data (i.e. License Renewal Data) to or next to the license for enabling a later update: (a) information that identifies the preferred secondary DRM update server (e.g. URL), (b) information that can be used by the original DRM server to authorize the license update, including subscriber identification (e.g. subscriber ID), device identification (e.g. device ID), media identification (e.g. event ID), targeted DRM client information (e.g. client ID) and schedule information (e.g. Timestamp), and (c) information that is required by the DRM update server to retrieve the current service or content key of the media content. In one embodiment, a portion or the totality of the license renewal data is secured by the secondary DRM system. In another embodiment, a portion or the totality of the license renewal data is secured by the original DRM system. The License Renewal Data may be required to be stored along with the media content in the secondary DRM client, as part of the initial secondary DRM license or next to the secondary DRM license. The association of the encrypted media content with the matching license can be made with a set of clear index numbers that are quasi-unique in the domain of the secondary DRM system. In some embodiments, the information that identifies the preferred secondary DRM update server (e.g. URL) can also include all the other License Renewal data as arguments.
In some cases, the license update request from the secondary DRM client may require the original DRM server to directly or indirectly communicate to the secondary DRM client the multiple options available for the media content (i.e. further playback, unlimited persistence of the copy, burn to a DVD, . . . ) In some cases, the response is delivered to the client through a communication path which is different than the path of the client's request.
In some cases, the license update request from the secondary DRM client may instruct the secondary DRM update server to issue a new license for another device than the secondary DRM client. If the initial secondary DRM license is obsolete or is caused to be no longer valid then this operation corresponds to a registered move, if the initial secondary DRM license still remains valid, then this operation results in a registered content copy.
In some cases, the license update request from the secondary DRM client may instruct the secondary DRM update server to work with the DRM server of a third DRM system to issue a license for a client of the third DRM system. This operation results in a registered content bridge.
Many benefits are achieved by way of the present invention over conventional techniques. For example, the present invention may provide for the original DRM server to be involved in all transactions related to the media content it originally released, even if one or more bridging operations between DRM systems have been performed. The present invention gives control and rights to the original DRM system even when the content has been moved to devices normally out of control of that system. Typically, the originating DRM server does not need to be aware of particular details of how the downstream DRM servers are operated, it does not need to carry the certificates and revocation lists of the downstream DRM systems required to authenticate and revoke the downstream DRM clients, and it does not need to be approved, certified or comply with the robustness and compliance rules of the downstream DRM systems. In some embodiments of the present invention, secure bridging may be accomplished even when relevant DRM systems use different content scrambling schemes. Additionally, the invention may provide a process in which the media content is securely protected by at least one DRM system during bridging, e.g., by providing upgrading service for the content at the source DRM system. Depending upon the embodiment, one or more of these benefits may be achieved. These and other benefits will be described further throughout the present specification.
Therefore, as summarized herein, at least certain embodiments of the present invention provide, among other things, methods for performing an inverted DRM bridge operation where the initial secondary DRM license is required to be sent back to the original DRM server before being modified. Furthermore, some embodiments of the present invention allow for multiple repurposing of bridged media content including but not limited to, the ability to extend the playback rights, enable further copies to be made, export content to other devices and other DRM systems. All these transactions are conditioned on the approval of the original DRM server and as such guarantee the original rights owner to keep control of its assets across heterogeneous DRM ecosystems. For purposes of this description, CA systems are considered a form of DRM systems. It will be understood that the terms “upgrade” and “upgrading” include a change in a license or rights which may be considered a downgrade (e.g., the change restricts certain uses by a customer who reduced their subscription fees). These and other embodiments, features, aspects, and advantages of the present invention will be apparent from the accompanying drawings and from the detailed description and appended claims that follow.
The present invention is illustrated by way of example and not limitation in the figures of the accompanying drawings, in which like references indicate similar elements and in which:
The present invention will now be described more fully hereinafter with reference to the accompanying drawings, in which various exemplary embodiments of the invention are shown. This invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art. Likewise, for purposes of explanation, numerous specific details are set forth in the following description in order to provide a thorough understanding of the present invention. It will be evident, however, to one skilled in the art that the present invention may be practiced without these specific details. In other instances, well-known structures and devices are shown in block diagram form in order to avoid unnecessarily obscuring the present invention.
Reference throughout this specification to “one embodiment” or “an embodiment” means that a particular feature, structure, or characteristic described in connection with the embodiment is included in at least one embodiment of the invention. Thus, the appearances of the phrases “in one embodiment” or “in an embodiment” in various places throughout this specification are not necessarily all referring to the same embodiment. Furthermore, the particular features, structures, or characteristics may be combined in any suitable manner in one or more embodiment.
The present invention provides systems, methods, and apparatuses for conditional access and protection of digital media content. Embodiments of the present invention provide methods for managing digital rights under the protection of one or more conditional access (CA) and/or digital rights management (DRM) systems. According to some embodiments, systems and methods are provided for bridging multiple DRM systems in the digital media distribution and storage systems, providing communication between the multiple DRM systems so that a media content encrypted by an original DRM system can be assessed by a secondary DRM system. The media content is usually protected by encryption algorithms from the original DRM system, with the encryption reflecting certain rights or license of the media imposed by the original DRM system. The communication between DRM systems provides a secondary DRM system with access so that by passing a bridge or boundary between the two DRM systems, the original rights or license to the media content can then be converted into new rights and license of the secondary DRM system based on the terms and conditions applicable at the time of the bridge translation. However, there is often a need for the DRM bridge to be able to further update the secondary DRM system content license over time if the terms and conditions have changed. One example will be a CA system authorizing the playback of recorded media content under the protection of a secondary DRM system, only as long as the original CA subscription is maintained. In this case the original license issued by the DRM bridge may not allow any playback rights. The process consists of a request to the DRM bridge for an updated license authorizing playback by the secondary DRM system. Another example will be a CA system that would like to up-sell the right to perform certain operations on a piece of content (i.e. up-sell the right to burn the content to a recordable DVD) once the content has been viewed. The control across a bridge allows the original DRM system to seamlessly distribute media contents to a secondary DRM system without exposing the content to unauthorized uses. The control across a bridge further allows a client of a secondary DRM system to seamlessly access, e.g. upgrade rights or license, a media content provided by an original DRM system. In certain embodiments, the media content across a bridge is protected by both DRM systems, where the original DRM system provides old rights and license to the media content, and the secondary DRM system provides upgradeable access to the rights and license.
With reference now to
This is further illustrated in
When the digital media is passed from one DRM system to another DRM system, the media (and its associated keys) may be descrambled/decrypted using the keys from one DRM system (e.g., 552) and rescrambled/encrypted using the keys from the next DRM system (e.g., 556 and 560). In the examples illustrated in
Whenever the media crosses boundaries of different DRM systems, old rights or license are translated into equivalents rights and license for the local DRM based on the terms and conditions that are in force at the time of the transaction. Thus the present invention provides means and methodology for the local DRM client to contact the original DRM to upgrade later on the rights or license of the media. In the following, with reference to
Referring now to the following figures, various aspects of certain embodiments of the present invention are illustrated.
The present invention in certain embodiments, addresses the issue of how the DRM system will be authorized by the CA system to update the rights and the license of an already delivered piece of media content. Specifically, the bridge will need to include additional data (e.g. License Renewal Data) into the original DRM license, so that upon license update request, the data can be used to reconcile the transaction with the CA server and update the license applicable to the already delivered piece of media content. Upgrading rights and license also may mean providing new rights and license for media content without any previous rights or license.
The present invention discloses methods, in certain embodiments, to be able to modify or upgrade the original secondary DRM License long after it has been issued but still under the rules of the original CA server or DRM system. The CA media content is typically stored on the DRM client, together with the original secondary DRM License. Both content and license are related by the use of a common index. The index can be a pointer or a number attached to the content and license (e.g. subscriber ID and event ID), and thus can effectively identify the content and license of the media. The index can be used to find the DRM license to decrypt the content.
When the secondary DRM server, in the bridge, creates the original secondary DRM license, it also adds the License Renewal Data. In some embodiments, the License Renewal Data is part of the original secondary DRM License, in some other embodiments the data consists of an independent object that is cryptographically related with the original secondary DRM license and the encrypted content. The License Renewal Data is then stored, at the DRM client, along with the original secondary DRM license and the scrambled content. The License Renewal Data can include a subscriber ID, an event ID, and a service key. The secondary DRM client can pass the encrypted License Renewal Data back to the CA server through the secondary DRM upgrade server in order to get the new rights. The DRM client can also pass the encrypted License Renewal Data back to the CA server through the DRM server in the bridge.
In the bridging scheme of media transfer at least certain embodiments of, the present invention also provide solutions to consolidate billing statements when the updated rights require a new transaction, and to recover content even in the case when the secondary DRM client has crashed and may have lost some of its licenses.
Various exemplary methods according to embodiments of the present invention are now shown in
The upgrading service that the secondary DRM server can perform may include extending the lifetime of the license, enabling new rights such as additional copies, enabling new exports such as additional bridging, enabling move operations or restoration of all licenses for another machine. The operation of the secondary upgrade server can be silent or require a user dialog. In an exemplary silent operation, the upgrade server can retrieve stored information such as payment type, and perform the upgrade without a client dialog. In an exemplary dialog operation, the upgrade server prompts a dialog with the client, and receives needed information to perform the request.
The secondary DRM client then requests new rights or license, at 32, for example, as shown in
In some aspects, the original license is extracted and sent back to the original DRM system before being modified. The secondary DRM server, upon receiving authorization from the original DRM system, can extract the service or content key, and then generate a new license for the secondary DRM client using the same content key but with new rights.
With reference to
With reference to
Alternatively, instead of tracing back the response with the path of the request, the Original DRM Billing Server or the Original DRM Server, from 61A or 61B, can reply to the Original DRM Client in the Bridge, in 62A or 62B, respectively. The Original DRM Client in Bridge then can transmit the response across the bridge to the Secondary DRM Server, in 63A, which then transmits the response to the Secondary DRM Client, in 64. Thus in response to the request, in 60, the Secondary DRM Client receives a response, corresponding to the request for new rights or license to the media content, in 65.
With reference to
Alternatively, instead of tracing back the response with the path of the request, the Original DRM Billing Server or the Original DRM Server, from 72A or 72B, can reply to the Original DRM Client in the Bridge, in 73A or 73B, respectively. The Original DRM Client in Bridge then can transmit the response across the bridge to the Secondary DRM Server, in 74A, which then transmits the response to the Secondary DRM Client, in 75. Thus in response to the request, in 70, the Secondary DRM Client receives a response, corresponding to the request for new rights or license to the media content, in 76.
With reference now to figures,
In
In one embodiment, the DRM server 494 provides services to descramble/decrypt the cable TV broadcast. The decrypted/descrambled information is further protected by the DRM system so that the media content from the broadcast of the cable TV system can be used in an authorized way. When authorized, the content can be recorded and played back at any time on any device convenient to the user in accordance with the rights of the subscriber. For example, with a subscription to only one simultaneous use, a user may choose to use cable TV set-top box 454 to receive the broadcast and view the program on the TV 452, or use cable TV set-top box 456 to record the program on the associated storage for playing back at a different time, for example, using PDA 482, personal computer 484, or media player 488. In some embodiments, the media content and/or associated keys are protected by encrypting the data with encryption keys associated with the DRM system 494.
In
In an embodiment, one or more DRM servers are used to protect digital media which have been originally delivered by one or more servers, such as CA servers, which makes desirable to have bridges between the DRM systems to simplify content management, while enforcing digital rights management within both DRM systems. In one embodiment of the present invention, multiple DRM servers are physically in one data processing device with different software and smart cards for the processing of the messages of different CA systems. Further, a DRM server may be integrated with a bridge, a storage device (e.g., PDA 482, personal computer 484, media player 488), or combination of them. For example, the DRM system 492, which may be used in conjunction with a satellite TV CA server 446, may include a storage for recording media content, a interface between a satellite dish and a renderer for decoding the media content into standard video signals (for a television set and/or for a computer monitor).
As shown in
It will be apparent from this description that aspects of the present invention may be embodied, at least in part, in software. That is, the techniques may be carried out in a computer system or other data processing system in response to its processor, such as a microprocessor, executing sequences of instructions contained in a memory, such as ROM or RAM 506, mass storage, 508 or a remote storage device. In various embodiments, hardwired circuitry may be used in combination with software instructions to implement the present invention. Thus, the techniques are not limited to any specific combination of hardware circuitry and software or to any particular source for the instructions executed by the data processing system. In addition, throughout this disclosure, various functions and operations may be described as being performed by or caused by software codes to simplify the description. However, those skilled in the art will recognize what is meant by such expressions is that the functions result from execution of the code by a processor, such as the CPU unit 504.
There are various bridging schemes between the DRM systems according to the present invention.
Another bridge called simulcrypt is illustrated next with respect to
Referring now to
In some embodiments, a bridged DRM server delivers digital media through IP network using DTCP (Digital Transmission Content Protection) packets. DTCP is a standard for protecting digital rights during the transmission of digital media. The bridged DRM server creates DTCP packets with payload including digital media content and various keys, which may be encrypted or scrambled. This is illustrated in
In some embodiments of the present invention, different DRM systems may utilize different scrambling schemes. For example, the first scrambling 586 and the second scrambling 592 of
Turning now to
Thus, systems, methods, and apparatuses for managing digital rights in digital media delivery have been provided. Although the present invention has been described with reference to specific exemplary embodiments, it will be evident that various modifications and changes may be made to these embodiments without departing from the broader spirit and scope of the invention as set forth in the claims. Accordingly, the specification and drawings are to be regarded in an illustrative rather than a restrictive sense.
Claims
1-74. (canceled)
75. A non-transitory machine readable medium comprising machine executable program instructions which, when executed by a data processing system, cause the data processing system to perform a method for enabling future repurposing of a media originated from an original digital rights management system while passed through a bridge to be under the protection of a secondary digital rights management system, the method comprising:
- receiving and decrypting a media protected by the original digital rights management system and its associated license, by a client of the original digital rights management system in the bridge;
- encrypting and delivering the media protected by the secondary digital rights management system, by a server of the secondary digital rights management system in the bridge;
- creating and associating a secondary digital rights management license to the media protected by the secondary digital rights management system, based on the rights defined in the license of the original digital rights management system; and
- generating and appending to the media, license renewal data secured by the original digital rights management system for the purpose of enabling a future upgrade of the secondary digital rights management license by an upgrade server of the secondary digital rights management system.
76. The non-transitory machine readable medium of claim 75, wherein the bridge includes a client of the original digital rights management digital rights management system and the server of the secondary digital rights management system, and wherein the original digital rights management system comprises a conditional access system and wherein the upgrade server is different from the bridge.
77. The non-transitory machine readable medium of claim 75, wherein a portion of the license renewal data are not decryptable by the secondary digital rights management system, and wherein some of the license renewal data comprise at least one of data identifying a location of a preferred secondary digital rights management update server for a client of the second digital rights management system to send the license upgrade request, subscriber identification data, device identification data, media identification data, targeted digital rights management client data, schedule data, or data for a digital rights management update server to retrieve a key for the media.
78. The non-transitory machine readable medium of 75, wherein upgrading the secondary digital rights management license comprises at least one of extending a lifetime of the license, enabling new rights, enabling new exports, enabling move operation or restoration operation to another machine, or any combination thereof.
79. The non-transitory machine readable medium of claim 75, wherein a license upgrade by the secondary digital rights management system upgrade server is conditioned on an authorization from the original digital rights management system based on the appended license renewal data and a billing system that is configured to authorize the upgrading of the media access to the secondary digital rights management system.
80. The non-transitory machine readable medium of 75, wherein a location, in the license renewal data, of a preferred secondary digital rights management upgrade server for a client of the second digital rights management system to send a license upgrade request, identifies a remote upgrade server different from the bridge.
81. The non-transitory machine readable medium of 75, wherein the original digital rights management system comprises at least one of a server sending the media, and a separate billing or upgrade server of the original digital rights management system.
82. A method for enabling future repurposing a media originated from an original digital rights management system while passed through a bridge to be under the protection of a secondary digital rights management system, the method comprising:
- receiving and decrypting a media protected by the original digital rights management system and its associated license, by a client of the original digital rights management system in the bridge;
- encrypting and delivering the media protected by the secondary digital rights management system, by a server of the secondary digital rights management system in the bridge;
- creating and associating a secondary digital rights management license to the media protected by the secondary digital rights management system, based on the rights defined in the license of the original digital rights management system; and
- generating and appending to the media, license renewal data secured by the original digital rights management system for the purpose of enabling a future upgrade of the secondary digital rights management license by an upgrade server of the secondary digital rights management system.
83. The method of claim 82, wherein the bridge includes a client of the original digital rights management digital rights management system and the server of the secondary digital rights management system, and wherein the original digital rights management system comprises a conditional access system and wherein the upgrade server is different than the bridge.
84. The method of claim 82, wherein the license renewal data are not decryptable by the secondary digital rights management system, and wherein some of the license renewal data comprise at least one of data identifying a location of a preferred secondary digital rights management update server for a client of the second digital rights management system to send the license upgrade request, subscriber identification data, device identification data, media identification data, targeted digital rights management client data, schedule data, or data for a digital rights management update server to retrieve a key for the media.
85. The method of claim 82 wherein upgrading the secondary digital rights management license comprises at least one of extending a lifetime of the license, enabling new rights, enabling new exports, enabling move operation or restoration operation to another machine, or any combination thereof.
86. The method of claim 82, wherein a license upgrade by the secondary digital rights management system upgrade server is conditioned on an authorization from the original digital rights management system based on the appended license renewal data and a billing system that is configured to authorize the upgrading of the media access to the secondary digital rights management system.
87. The method of claim 82, wherein a location, in the license renewal data, of a preferred secondary digital rights management upgrade server for a client of the second digital rights management system to send a license upgrade request, identifies a remote upgrade server different from the bridge.
88. The method of claim 82 wherein the original digital rights management system for the communication comprises at least one of a server sending the media, and a separate billing or upgrade server of the original digital rights management system.
89. A non-transitory machine readable medium comprising machine executable program instructions which, when executed by a data processing system, cause the data processing system to perform a method for repurposing a media originated from an original digital rights management system and passed through a bridge to be under the protection of a secondary digital rights management system, the method comprising:
- receiving a license upgrade request, by a first server of the secondary digital rights management system, with license renewal data, wherein the license renewal data have been previously created and secured, through encryption and authentication by the original digital rights management system and have been previously added to the media by the bridge at the time the media was issued to the secondary digital rights management system;
- receiving, by the first server of the secondary digital rights management system, an authorization to upgrade the secondary digital rights management license, wherein the authorization is provided from the original digital rights management system based on the license renewal data; and
- upgrading, by the first server of the secondary digital rights management system, the secondary digital rights management license based on the authorization to provide upgraded rights to access the media from the secondary digital rights management system.
90. The non-transitory machine readable medium of claim 89, wherein the bridge comprises a client of the original digital rights management system and a second server of the secondary digital rights management system, and wherein the original digital rights management system comprises a conditional access system.
91. The non-transitory machine readable medium of claim 89, wherein the license renewal data are not decryptable by the secondary digital rights management system, and wherein some of the license renewal data comprise at least one of data identifying a location of a preferred secondary digital rights management update server for a client of the second digital rights management system to send the license upgrade request, subscriber identification data, device identification data, media identification data, targeted digital rights management client data, schedule data, or data for a digital rights management update server to retrieve a key for the media.
92. The non-transitory machine readable medium of 89, wherein upgrading the secondary digital rights management license comprises at least one of extending a lifetime of the license, enabling new rights, enabling new exports, enabling move operation or restoration operation to another machine, or any combination thereof.
93. The non-transitory machine readable medium of claim 89, wherein the authorization from the original digital rights management system is provided by a billing system that is configured to authorize the upgrading of the media for access in the secondary digital rights management system.
94. The non-transitory machine readable medium of 89 further comprising instructions which cause the data processing system to perform operations comprising sending, by the first server of the secondary digital rights management system, a request for the authorization comprising the license renewal data to the original digital rights management system, wherein the first server of the secondary digital rights management system is a remote upgrade server different from the bridge.
95. The non-transitory machine readable medium of 89, wherein the original digital rights management system comprises at least one of a server sending the media, and a separate billing or upgrade server of the original digital rights management system.
Type: Application
Filed: Jun 18, 2013
Publication Date: Feb 6, 2014
Applicant: DIGITAL KEYSTONE, INC. (MOUNTAIN VIEW, CA)
Inventors: Luc Vantalon (Los Altos, CA), Paolo Siccardo (Los Altos, CA)
Application Number: 13/921,137