Nothing Special   »   [go: up one dir, main page]

US20010013021A1 - Apparatus for data copyright management system - Google Patents

Apparatus for data copyright management system Download PDF

Info

Publication number
US20010013021A1
US20010013021A1 US09/768,287 US76828701A US2001013021A1 US 20010013021 A1 US20010013021 A1 US 20010013021A1 US 76828701 A US76828701 A US 76828701A US 2001013021 A1 US2001013021 A1 US 2001013021A1
Authority
US
United States
Prior art keywords
data
key
secret
copyright management
encrypted
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US09/768,287
Other versions
US6438694B2 (en
Inventor
Mokoto Saito
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Piracy Protection LLC
Xylon LLC
Original Assignee
Mitsubishi Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Family has litigation
First worldwide family litigation filed litigation Critical https://patents.darts-ip.com/?family=26546399&utm_source=google_patent&utm_medium=platform_link&utm_campaign=public_patent_search&patent=US20010013021(A1) "Global patent litigation dataset” by Darts-ip is licensed under a Creative Commons Attribution 4.0 International License.
Application filed by Mitsubishi Corp filed Critical Mitsubishi Corp
Priority to US09/768,287 priority Critical patent/US6438694B2/en
Publication of US20010013021A1 publication Critical patent/US20010013021A1/en
Priority to US10/105,262 priority patent/US8407782B2/en
Application granted granted Critical
Publication of US6438694B2 publication Critical patent/US6438694B2/en
Assigned to INTARSIA SOFTWARE LLC reassignment INTARSIA SOFTWARE LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: MITSUBISHI CORPORATION
Priority to US11/512,885 priority patent/US7986785B2/en
Priority to US11/512,695 priority patent/US9245260B2/en
Assigned to MITSUBISHI CORPORATION reassignment MITSUBISHI CORPORATION ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: MOMLKI, SHUNICHI, SAITO, MAKOTO
Assigned to MITSUBISHI CORPORATION reassignment MITSUBISHI CORPORATION ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: MOMIKI, SHUNICHI, SALTO, MAKOTO
Assigned to XYLON LLC reassignment XYLON LLC MERGER (SEE DOCUMENT FOR DETAILS). Assignors: INTARSIA SOFTWARE LLC
Anticipated expiration legal-status Critical
Assigned to LF CAPITAL PARTNERS, LLC reassignment LF CAPITAL PARTNERS, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: INTELLECTUAL VENTURES ASSETS 121 LLC
Assigned to PIRACY PROTECTION LLC reassignment PIRACY PROTECTION LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: LF CAPITAL PARTNERS, LLC
Expired - Lifetime legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/109Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by using specially-adapted hardware at the client
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • G06Q20/06Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • G06Q20/123Shopping for digital content
    • G06Q20/1235Shopping for digital content with control of digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/363Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06TIMAGE DATA PROCESSING OR GENERATION, IN GENERAL
    • G06T1/00General purpose image data processing
    • G06T1/0021Image watermarking
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0866Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means by active credit-cards adapted therefor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1016Devices or methods for securing the PIN and other transaction-data, e.g. by encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0464Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/23Processing of content or additional data; Elementary server operations; Server middleware
    • H04N21/234Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs
    • H04N21/2347Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs involving video stream encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • H04N21/2541Rights Management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/418External card to be used in combination with the client device, e.g. for conditional access
    • H04N21/4181External card to be used in combination with the client device, e.g. for conditional access for conditional access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/426Internal components of the client ; Characteristics thereof
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/433Content storage operation, e.g. storage operation in response to a pause request, caching operations
    • H04N21/4334Recording operations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs
    • H04N21/4405Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving video stream decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs
    • H04N21/4408Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving video stream encryption, e.g. re-encrypting a decrypted video stream for redistribution in a home network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4623Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4627Rights management associated to the content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/835Generation of protective data, e.g. certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/007Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/007Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
    • G06F2211/008Public Key, Asymmetric Key, Asymmetric Encryption
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption

Definitions

  • the present invention relates to an apparatus for displaying, storing, copying, editing or transferring digital data, and protecting digital data copyrights.
  • a picture signal e.g., a television signal
  • a computer By digitizing the picture signal, it is possible to handle a picture signal, e.g., a television signal, by a computer.
  • the technology of a “multimedia system” is an emerging technology of the future capable of simultaneously handling the data handled by computers and digitized picture data.
  • the inventors of the present invention proposed a system for copyright management, wherein a permit key is obtained from a key control center via a public telephone line in Japanese Patent Laid-Open No. 46419/1994 and Japanese Patent Laid-Open No. 141004/1994.
  • Japanese Patent Laid-Open No. 132916/1994 by the same inventors also discusses an apparatus for copyright management.
  • the same inventors proposed a system for managing a copyright of digital data in Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037) and Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747).
  • one who wants to view and listen to encrypted programs requests viewing from a control center via a communications line by using a communication device.
  • the control center sends a permit key to the requester, performs charging and collects a fee.
  • the requester After receiving the permit key, the requester sends the permit key to a receiver by using an on-line or off-line means. The receiver then decrypts the encrypted programs using the permit key.
  • the system disclosed in Japanese Patent Application No. 64889/1994 uses a program and copyright information for managing the copyright, in addition to the permit key, so that the copyright for display (including sound processes), storage, copying, editing, or transferring of the digital data in the database system, including real-time transmission of a digital picture, can be managed.
  • Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037) further discloses that data is supplied in encrypted form from a database, decrypted by a copyright management program when displayed or edited, and encrypted again when it is stored, copied or transferred. Also, the copyright management program, being encrypted, is decrypted by a permit key. The copyright management program thus decrypted performs encryption and decryption of copyright data, and when data is utilized other than for storage and display, copyright information including information about the user, being stored as a history in addition to the original copyright information, is disclosed.
  • Cryptography includes a secret-key cryptosystem and a public-key cryptosystem.
  • the secret-key cryptosystem is a cryptosystem using the same crypt key for encryption and decryption. While this cryptosystem requires only a short time for encryption or decryption, if the secret-key is found, the cryptogram may be cryptanalyzed.
  • the public-key cryptosystem is a cryptosystem in which a key for encryption is open to the public as a public-key, and a key for decryption is not open to the public.
  • the key for encryption is referred to as a public-key and the key for decryption is referred to as a private-key.
  • To use this cryptosystem it is necessary that the party transmitting information encrypts the information with the public-key of the party receiving the information. The party receiving the information decrypts the information with a private-key not open to the public. While this cryptosystem requires a relatively long time for encryption or decryption, the private-key cannot easily be found, and it is very difficult to cryptanalyze the cryptogram.
  • the cryptosystem used for the present invention uses a secret-key cryptosystem in which the same secret-key Ks is used for encryption and decryption, and a public-key cryptosystem in which a public-key Kb is used for encryption of plaintext data and a private-key Kv is used for decryption of a cryptogram.
  • FIG. 1 shows a structure of the data copyright management system disclosed in the Japanese Patent Application No. 237673/1994, (U.S. patent application Ser. No. 08/536,747) in which the apparatus for data copyright management system of the present invention can be used.
  • encrypted data is supplied via two-way communication in accordance with a request from the primary user 4 .
  • This system uses the secret-key cryptosystem and the public-key cryptosystem as a cryptosystem.
  • reference numeral 1 represents a database
  • 4 represents a primary user terminal
  • 5 represents a secondary user terminal
  • 6 represents a tertiary user terminal
  • 7 represents an n-order user terminal
  • reference numeral 3 represents a copyright management center
  • 8 - 10 represent a secondary copyright data, tertiary copyright data, and n-order copyright data, respectively, stored at the copyright management center 3
  • Reference numeral 2 represents a communication network such as a public telephone line offered by a communication enterprise or a CATV line offered by a cable television enterprise.
  • the database 1 , primary user terminal 4 , secondary user terminal 5 , tertiary user terminal 6 , n-order user terminal 7 , and copyright management center 3 are connected to the communication network 2 . They can also be connected each other.
  • a path shown by a broken line represents a path for encrypted data.
  • a path shown by a solid line represents a path of requests from each user terminal.
  • a path shown by a one-dot chain line represents a path through which a crypt key and authorization information corresponding to a utilization request for data are transferred.
  • a path shown by a two-dot chain line represents a path through which copyright information is transferred from the database or from one data element to a next-order data element within the copyright management center.
  • the database utilization software includes a program for decrypting an encrypted copyright management program in addition to normal communication software such as data communications protocols.
  • a primary user prepares primary-user authentication data Au 1 , a first public-key Kb 1 , a first private-key Kv 1 corresponding to the first public-key Kb 1 , a second public-key Kb 2 , and a second private-key Kv 2 corresponding to the second public-key Kb 2 .
  • the primary user accesses the database 1 from the primary user terminal 4 via the communication network 2 .
  • the database 1 receiving the primary-user authentication data Au 1 , first public-key Kb 1 and second public-key Kb 2 from the primary user, confirms the primary-user authentication data Au 1 and transfers the confirmed primary-user authentication data Au 1 to the copyright management center 3 as the primary user information Iu 1 .
  • the database 1 prepares two secret-keys, first secret-key Ks 1 and second secret-key Ks 2 .
  • the second secret-key Ks 2 is transferred to the copyright management center 3 .
  • the primary user retrieves the data menu and selects the data M.
  • the original copyright information Ic 0 of the selected data M is transmitted to the copyright management center 3 .
  • the primary user selects permit key Kp 1 corresponding to the required form of the usage such as viewing, storing, copying, editing and transferring of data.
  • Permit key Kp 1 is also transmitted to the copyright management center 3 .
  • the original data M 0 is read out of the database 1 in accordance with a request of the primary user.
  • the read original data M 0 is encrypted by the first secret-key Ks 1 :
  • the encrypted data Cm 0 ks 1 is provided with the unencrypted original copyright information Ic 0 .
  • the first secret-key Ks 1 is encrypted by the first public-key Kb 1 and the second secret-key Ks 2 is encrypted by the second public-key Kb 2 :
  • the copyright management program P may not always be encrypted by the second secret-key Ks 2 but it may be encrypted by any other proper crypt key.
  • the encrypted original data Cm 0 ks 1 , encrypted copyright management program Cpks 2 , and two encrypted secret-keys Cks 1 kb 1 and Cks 2 kb 2 are transferred to the primary user terminal 4 via the communication network 2 and charged, if necessary.
  • the primary user receiving the encrypted original data Cm 0 ks 1 , two encrypted secret-keys Cks 1 kb 1 and Cks 2 kb 2 , and encrypted copyright management program Cpks 2 from the database 1 decrypts the encrypted first secret-key Cks 1 kb 1 with the database utilization software using the first private-key Kv 1 corresponding to the first public-key Kb 1 :
  • Ks 1 D(Kv 1 , Cks 1 kb 1 ),
  • Ks 2 D(Kv 2 , Cks 2 kb 2 ).
  • the primary user decrypts the encrypted copyright management program Cpks 2 using the decrypted second secret-key Ks 2 :
  • the primary user decrypts the encrypted data Cm 0 ks 1 by the decrypted copyright management program P using the decrypted first secret-key Ks 1 :
  • M 0 D(Ks 1 , Cm 0 ks 1 )
  • the first private-key Kv 1 and second private-key Kv 2 are crypt keys prepared by the primary user but not open to others. Therefore, even if a third party obtains the data M, it is impossible to use the encrypted data M by decrypting it.
  • M D(Ks 2 , Cmks 2 ).
  • the decrypted second secret-key Ks 2 is thereafter used as a crypt key for encrypting/decrypting data when storing, copying, or transferring the data.
  • the first private-key Kv 1 and second private-key Kv 2 , the first secret-key Ks 1 and second secret-key Ks 2 , the data M, the copyright management program P, the original copyright information Ic 0 and copyright information Ic 1 , containing information about the primary user and the editing date and time, are stored in the primary user terminal 4 .
  • the encrypted data Cmks 2 is encrypted to be distributed. Since the copyright information label provides a clue to obtain the second secret-key Ks 2 which is the key for decryption, the second secret key Ks 2 cannot be obtained in the case where the copyright information label is removed from the encrypted data Cmks 2 .
  • the second secret-key Ks 2 is stored in the terminal 4 .
  • the second secret-key Ks 2 is disused in order to disable subsequent utilization of the data in the primary user terminal 4 .
  • the primary user who is going to copy the data M to the external recording medium 11 or transmit the data M via the communication network 2 must prepare the second secret-key Ks 2 to encrypt the data M by this second secret-key Ks 2 before copying or transmitting the data:
  • the unencrypted original copyright information Ic 0 and primary-user copyright information Ic 1 are added to the encrypted data Cmks 2 .
  • a secondary user Before using a database, a secondary user, similar to the primary user, prepares authentication data Au 2 for authenticating the secondary user, a third public-key Kb 3 , a third private-key Kv 3 corresponding to the third public-key Kb 3 , a fourth public-key Kb 4 , and a fourth private-key Kv 4 corresponding to the fourth public-key Kb 4 .
  • the secondary user who desires secondary utilization of the copied or transferred encrypted data Cmks 2 must designate the original data name or number to the copyright management center 3 in order to request secondary utilization from the secondary user terminal 5 via the communication network 2 .
  • the secondary user also transfers the third public-key Kb 3 and the fourth public-key Kb 4 , as well as the secondary user authentication data Au 2 , original copyright information Ic 0 and primary user copyright information Ic 1 .
  • the copyright management center 3 receiving the secondary utilization request from the secondary user confirms the secondary-user authentication data Au 2 , and transfers confirmed secondary-user authentication data Au 2 to the tertiary copyright data 9 as secondary user information.
  • the secondary copyright information Ic 1 of the primary user is transferred, the secondary copyright information Ic 1 is provided to the secondary copyright data 8 , and then, secondary copyright data 8 recognizes the secondary copyright information Ic 1 to be transferred to the tertiary copyright data 9 .
  • the secondary user selects permit key Kp 2 corresponding to the form of data usage such as viewing, storing, copying, editing and transferring of data.
  • Permit key Kp 2 corresponding to the selected usage is sent to the tertiary copyright data 9 .
  • the secondary copyright data 8 prepares a third secret-key Ks 3 .
  • the prepared third secret-key Ks 3 is transferred to and stored in the tertiary copyright data 9 .
  • the permit key Kp 2 , primary user copyright information Ic 1 , primary user information Iu 1 , original copyright information Ic 0 , secondary user information Iu 2 , and third secret-key Ks 3 are stored in the tertiary copyright data 9 .
  • the permit key Kp 2 , primary user copyright information Ic 1 , and primary user information Iu 1 are used for copyright royalties distribution.
  • the permit key Kp 2 , primary user information Iu 1 , original copyright information Ic 0 and second secret-key Ks 2 are read out of the secondary copyright data 8 .
  • the original copyright information Ic 0 is used for copyright royalties distribution.
  • the read second secret-key Ks 2 and third secret-key Ks 3 are encrypted by the third public-key Kb 3 and fourth public-key Kb 4 of the secondary user respectively:
  • the copyright management program P is encrypted by the third secret-key Ks 3 :
  • the encrypted copyright management program Cpks 3 , encrypted second secret-key Cks 2 kb 3 , and encrypted third secret-key Cks 3 kb 4 are transferred to the secondary user terminal 5 via the communication network 2 . In this case, charging is performed, if necessary.
  • the secondary user receiving two encrypted secret-keys, Cks 2 kb 3 and Cks 3 kb 4 , and the encrypted copyright management program Cpks 3 from the secondary copyright data 8 , and using the database utilization software decrypts the encrypted second secret-key Cks 2 kb 3 by the third private-key Kv 3 , and decrypts the encrypted third secret-key Cks 3 kb 4 by the fourth private-key Kv 4 corresponding to the fourth public-key Kb 4 :
  • Ks 2 D(Kv 3 , Cks 2 kb 3 )
  • Ks 3 D(Kv 4 , Cks 3 kb 4 ).
  • the encrypted copyright management program Cpks 3 is decrypted by the decrypted third secret-key Ks 3 :
  • M D(Ks 2 , Cmks 2 ).
  • the third private-key Kv 3 and the fourth private-key Kv 4 are prepared by the secondary user but not opened to others. Therefore, even if a third party obtains the encrypted data Cmks 2 , it is impossible to use the data by decrypting it.
  • the software includes not only normal communication software, such as a data communication protocols but also a program for decrypting a copyright management program by a first crypt-key, protection is necessary.
  • a first crypt-key K 1 , a second crypt-key K 2 , and a copyright management program P are transferred to each user in order to use data M. Each user keeps these keys and the program.
  • the copyright information label, the user information, the public-key and private-key in the public-key cryptosystem and the program containing the algorithm for generating the secret-key are stored when needed.
  • the simplest means to use is a flexible disk.
  • the flexible disk is easy to lose or alter.
  • a hard disk drive is also subject to loss or alteration of data, though it is more stable than the flexible disk.
  • the data copyright management unit 15 is configured as a computer system comprising a microprocessor (CPU) 16 , a local bus 17 of CPU 16 , read only memory (ROM) 18 connected to local bus 17 , and write/read memory (RAM) 19 , and wherein the local bus 17 is connected to system bus 22 of the microprocessor 21 of the user terminal 20 .
  • CPU microprocessor
  • ROM read only memory
  • RAM write/read memory
  • a communication unit (COMM) 23 which receives data from an external database and transfers data to the external database; a CD-ROM drive (CDRD) 24 which reads data provided by CD-ROM; a flexible disk drive (FDD) 25 which copies received or edited data to a flexible disk drive to provide the outside with such data, and a hard disc drive (HDD) 26 which stores data are connected to the system bus 22 in the user terminal 20 .
  • CD-ROM drive CD-ROM drive
  • FDD flexible disk drive
  • HDD hard disc drive
  • ROM and RAM or the like are connected to the system bus 22 of the user terminal. However, this is not shown in the figure.
  • ROM 18 of the data copyright management unit 15 Fixed information, such as software and user data, for utilizing the database is stored in ROM 18 of the data copyright management unit 15 .
  • a crypt-key and the copyright management program provided from the key control center or copyright management center are stored in RAM 19 .
  • the data copyright management unit 15 is implemented as monolithic IC, hybrid IC, an expansion board, an IC card, or a PC card.
  • the apparatus for data copyright management in the present invention is attached to the user terminal, which comprises a central processing unit, central processing unit bus, read only semiconductor memory, electrically erasable programmable read-only memory, and read/write memory.
  • the central processing unit read only semiconductor memory, electrically erasable programmable read-only memory, and read/write memory are connected to the central processing unit bus. Also, the system bus of a unit which utilizes the data can be connected to it.
  • a data copyright management system program, a crypt algorithm, and user information are stored in the read only semiconductor memory.
  • a second private-key, permit key, second secret-key, and copyright information are stored in the electrically erasable programmable read-only memory.
  • the first public-key, first private-key, second public-key, and first secret-key are transferred to the read/write memory during operation of the unit. If the copyright management program is provided from the outside, it is stored in the EEPROM. Otherwise, it is stored in ROM.
  • a monolithic IC As embodiments of the data copyright management apparatus, a monolithic IC, a hybrid IC, a thin IC card, a PC card, and a board for insertion may be used.
  • a data copyright management apparatus which, at the same time, can decrypt and re-encrypt the supplied encrypted data to perform copyright management and control.
  • data which was encrypted and provided is decrypted and re-encrypted by adding at least one microprocessor, and preferably two microprocessors, in addition to the microprocessor that controls the entire user terminal therein.
  • one microprocessor is added, one of the two microprocessors which include the microprocessor of the user and the added one, will decrypt data and the other will re-encrypt data.
  • a data copyright management apparatus is implemented as a multiprocessor configuration utilizing SCSI bus or PCI bus.
  • digital data includes graphic data, computer programs, digital audio data, still picture data of the JPEG standard, and motion-picture works of the MPEG standard. While the data applications comprising these data forms are utilized by using various apparatus, it is necessary that these apparatus also include the data copyright management function.
  • FIG. 1 is a block diagram of the data copyright management system of Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747).
  • FIG. 2 is a block diagram of the data copyright management apparatus of Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747).
  • FIG. 3 is a block diagram of the data copyright management apparatus of a first embodiment of the present invention.
  • FIG. 4 is a specific block diagram of the data copyright management apparatus of a first embodiment of the present invention.
  • FIG. 5 is a process flow chart of a data copyright management system related to the present invention.
  • FIG. 6 is a block diagram of the data copyright management system of Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747).
  • FIG. 7 is a flow chart of a general editing process for digital data.
  • FIG. 8 is a flow chart of an encrypted data editing process of the present invention.
  • FIG. 9 is a block diagram of the data copyright management apparatus of a second embodiment of the present invention.
  • FIG. 10 is a block diagram of the data copyright management apparatus of a third embodiment of the present invention.
  • FIG. 11 is a block diagram of the data copyright management apparatus of a fourth embodiment of the present invention.
  • FIG. 12 is a block diagram of the data copyright management apparatus of a fifth embodiment of the present invention.
  • FIG. 13 is a block diagram of the data copyright management apparatus of a sixth embodiment of the present invention.
  • FIG. 14 is a block diagram of the digital cash system as one example of use of the present invention.
  • FIG. 15 is a block diagram of the video conference system as one example of use of the present invention.
  • FIG. 3 A first embodiment of the data copyright management apparatus related to the present invention is shown in the block diagram of FIG. 3.
  • the data copyright management unit 30 includes electrically erasable programmable read-only memory (EEPROM) 31 in addition to the components of the data copyright management unit 15 described in Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747).
  • EEPROM electrically erasable programmable read-only memory
  • the data copyright management unit 30 is a computer system having CPU 16 and local bus 17 of CPU 16 , as well as ROM 18 , RAM 19 , and EEPROM 31 which are connected to local bus 17 , wherein local bus 17 is connected to the system bus 22 of the microprocessor 21 in the user terminal 20 .
  • communication unit (COMM) 23 which receives data from an external database and transfers data outside; CD-ROM drive (CDRD) 24 , which reads data provided by CD-ROM; a flexible disc drive (FDD) 25 , which copies data received or edited in order to supply it to the outside; and hard disk drive (HDD) 26 , which stores data, are connected to-the system bus 22 of the user terminal 20 .
  • CD-ROM drive (CDRD) 24 which reads data provided by CD-ROM
  • FDD flexible disc drive
  • HDD hard disk drive
  • ROM and RAM are connected to the system bus 22 of the user terminal. However, they are not shown in the figure.
  • a crypt-key K and copyright information Ic are stored in EEPROM 31 . Further, when the data copyright management program and cryptography program are supplied from outside, such as from a database, they are stored in EEPROM 31 , rather than in ROM 18 .
  • the data copyright management unit 30 performs the process of decryption or re-encryption, only the result of which is transferred to the user terminal 20 via local bus 17 and system bus 22 .
  • the data copyright management unit 30 is implemented as a monolithic IC, a hybrid IC, an expansion board, an IC card, or a PC card.
  • Fixed data such as a data copyright management program, a cryptography program based on a crypt algorithm, and user data are stored in ROM 18 of the data copyright management unit 30 in the first embodiment.
  • a decryption program, a re-encryption program, and a program for generating secret-keys based on a known secret-key algorithm may be stored in ROM 18 .
  • a crypt-key and copyright information are stored in EEPROM 31 . Also, when the copyright management program and the cryptography program are supplied from the outside, such as from a database, they are stored in EEPROM 31 , rather than ROM 18 . Still, the EEPROM is not necessarily required and may be omitted.
  • Either one of the first crypt-key or the second crypt-key supplied from the key control center or copyright management center, and the data copyright management system program are stored in RAM 19 .
  • information such as software and the user data required by MPU 46 in the user terminal 20 are supplied to the user terminal 20 by the software, and stored in RAM of the user terminal 20 .
  • RAM of the user terminal unit 20 either one of the first crypt-key or the second crypt-key supplied from the key control center or the copyright management center, and the data copyright management system program are stored in RAM of the user terminal unit 20 .
  • FIG. 4 The specific internal structure of the data copyright management unit 30 in FIG. 3 is shown in FIG. 4.
  • a microcomputer (CPU) 16 , read only semiconductor memory (ROM) 18 , write/read memory (RAM) 19 , and electrically erasable programmable read-only memory (EEPROM) 31 are enclosed in the data copyright management unit 30 , and are connected to microcomputer bus 17 of the microcomputer 16 .
  • the microcomputer bus 17 is further connected to system bus 22 of the user terminal 20 main body.
  • the data copyright management system program, crypt algorithm, and the user information are stored in the read only semiconductor memory 18 .
  • the electrically erasable programmable read-only memory 31 is divided internally into three areas. In the first area 35 , the first public-key Kb 1 , the first private-key Kv 1 , the second public-key Kb 2 , and the second private-key Kv 2 are stored.
  • the copyright management program P In the second area 36 , the copyright management program P, the first secret-key Ks 1 for use as a permit key for primary use (for example, as a view permit, store permit, copy permit, edit permit, or transfer permit), and the second secret key Ks 2 for use as a permit key for secondary use (for example, as a view permit, store permit, copy permit, edit permit or transfer permit) are stored.
  • the copyright management program P is not supplied from the outside, but preset in the user side, the copyright management program P is stored in the read only memory 18 , rather than in the second area 36 of the electrically erasable programmable read-only memory 31 .
  • an access control key and copyright information such as the original copyright information and the secondary copyright information are stored.
  • the inside of the write/read memory 19 is divided into three areas.
  • the first area 32 the first public-key Kb 1 , the first private-key Kv 1 , and the second public-key Kb 2 are stored during operation.
  • the first secret-key Ks 1 for use as a permit key in the primary utilization (for example, as a view permit, store permit, copy permit, edit permit, or transfer permit) is stored during operation.
  • an access control key is stored during operation.
  • the user terminal attached with the data copyright management apparatus is reliable since it performs all of the processes for utilizing data within the data copyright management unit related to the present invention, so that only the results are transferred to the user terminal for various utilization.
  • FIG. 5 is an example of data copyright management flow when encrypted data of a digital picture is compressed according to the JPEG or MPEG standard.
  • the flow is divided into transmitting side flow and receiving side flow with a transmit line in between.
  • the receiving side flow is further divided into display flow and storage flow.
  • the signal process on the transmitting side consists of a process of preparing a digital picture and a process of processing the digital picture prepared. In this process, if an original picture is the digital picture 41 , it proceeds to next process. If an original picture is an analog picture 40 , a digitizing process 42 is performed.
  • the digital picture is compressed ( 43 ) first according to a given standard such as JPEG or MPEG, then the compressed digital data is encrypted ( 44 ) using the first secret-key.
  • the picture data signal processed on the transmitting side is transmitted through transmission line 45 , such as a satellite broadcasting wave, terrestrial broadcasting wave, CATV wave, or public telephone line/ISDN line. Further, recording media such as a digital video tape, a digital video disk, or CD-ROM may be used as the transmission line.
  • the picture data transmitted to the receiving side is decrypted ( 46 ) first using the first secret key, then the compressed picture data is expanded ( 47 ) to be displayed ( 49 ).
  • the display is a digital data display unit, it is directly displayed, however, when it is an analog data display unit, it is converted to analog data 48 .
  • FIG. 6 shows an example of the data copyright management system disclosed in the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747). This system uses the secret-key system as a cryptosystem.
  • reference numeral 1 represents a database in which text data, binary data serving as a computer graphic display or a computer program, digital audio data, and digital picture data are stored by being encrypted.
  • Reference numeral 14 represents a space satellite such as a communications satellite or a broadcasting satellite.
  • Reference numeral 15 represents a data recorder such as a CD-ROM or a flexible disk.
  • Reference numeral 2 represents a communication network such as a public telephone line offered by a communication enterprise or a CATV line offered by a cable television enterprise.
  • Reference numeral 4 represents a primary user terminal.
  • Reference numeral 16 represents a key control center for managing a secret-key
  • reference numeral 17 represents a copyright management center for managing a data copyright.
  • Reference numerals 5 , 6 , and 7 represent a secondary user terminal, a tertiary user terminal, and n-order user terminal respectively.
  • Reference numerals 11 , 12 , and 13 represent a secondary disk, tertiary disk, and n-order disk serving as a recording medium such as a flexible disk or CD-ROM respectively.
  • the symbol “n” represents an optional integer. When “n” is larger than four, a corresponding user terminal and a corresponding disk are arranged between the tertiary user terminal 6 and the n-order user terminal 7 and between the tertiary disk 12 and the n-order disk 13 respectively.
  • the database 1 , key control center 16 , copyright management center 17 , primary user terminal 4 , secondary user terminal 5 , tertiary user terminal 6 , and n-order user terminal 7 are connected to the communication network 2 .
  • the path shown by a broken line is a path of encrypted data
  • a path shown by a solid line is a path of requests from each user terminal
  • a path shown by a one-dot chain line is a path through which authorization information corresponding to a utilization request and a secret-key are transferred.
  • the database utilization software includes not only normal communication software such as a data communication protocol, but also a program for running a copyright management program.
  • Original data M 0 of text data, binary data as a computer graphic display or computer program, digital audio data, or digital picture data stored in the database 1 or data recording medium 15 is supplied via one-way communication to the primary user terminal 4 via the communication network 2 , satellite 14 or recording medium 15 .
  • the data is encrypted with a first secret-key Ks 1 :
  • the data utilization includes not only displaying of data which is the most basic usage, but also storing, editing, copying, and transferring of the data.
  • a use permit key is prepared which corresponds to one or several forms of usage, and its management is executed by the copyright management program.
  • the data whose copyright is claimed is encrypted to be distributed. Only when the data is displayed or displayed for editing the data in a user terminal having a copyright treatment function, is the data decrypted to a plaintext format.
  • a primary user who desires primary utilization of the supplied encrypted data Cm 0 ks 1 requests for primary utilization of the encrypted original data Cm 0 ks 1 by designating the original data name or the original data number to the key control center 16 via the communication network 2 from the primary user terminal 4 .
  • the primary user must present information Iu 1 for the primary user to the key control center 16 .
  • the key control center 16 receiving the primary utilization request from the primary user terminal 4 , transfers first secret-key Ks 1 for decrypting the encrypted original data Cm 0 ks 1 obtained from the database 1 by the primary user and second secret-key Ks 2 for re-encrypting the decrypted original data M 0 or edited data M 1 from the original data, together with a copyright management program P via the communication network 2 to the primary user terminal 4 .
  • the encrypted original data Cm 0 ks 1 is decrypted by the first secret-key Ks 1 using the copyright management program P:
  • M 0 D(Ks 1 , Cm 0 ks 1 )
  • the data M which is the original data M 0 or edited data M 1
  • a memory or a built-in hard disk drive of the primary user terminal 4 only the primary user can use the data.
  • the data M is copied to the external recording medium 11 , such as a flexible disk, or transmitted to the secondary user terminal 5 via the communication network 2 , a copyright problem due to secondary utilization occurs.
  • the data M is encrypted by the second secret-key Ks 2 using the copyright management program P when the data M is stored, copied, or transferred. Thereafter, in the primary user terminal 4 , the data M is decrypted and encrypted by the second secret-key Ks 2 :
  • M D(Ks 2 , Cmks 2 ).
  • the data M is moved from the primary user terminal 4 to the secondary user terminal 5 by the external recording medium 11 or the communication network 2 .
  • the data M is copied to the external recording medium 11 or transmitted via the communication network 2 , it is encrypted by the second secret-key Ks 2 .
  • a secondary user who desires secondary utilization of the encrypted data Cmks 2 copied or transmitted from the primary user must designate the original data name or data number to the copyright management center 17 via the communication network 2 from the secondary user terminal 5 , and also present the secondary user information Iu 2 to the center 17 to request secondary utilization of the data Cmks 2 .
  • the secondary user further presents the unencrypted primary user information Iu 1 added to the encrypted data Cmks 2 in order to clarify the relationship with the primary user.
  • the copyright management center 17 confirms, in accordance with the presented primary user information Iu 1 , that the primary user has received a regrant of the second secret-key Ks 2 for secondary utilization of the data, and then, transfers the second secret-key Ks 2 serving as a decryption key and the third secret-key Ks 3 serving as an encryption/decryption key to the secondary user terminal 5 via the communication network 2 .
  • the encrypted data Cmks 2 is decrypted by the copyright management program P using the second secret-key Ks 2 .
  • the key control center 16 processes primary utilization requests
  • the copyright management center 17 processes secondary utilization requests. While the data M supplied to a primary user is encrypted by the first secret-key Ks 1 , the data M supplied to a secondary user is encrypted by the second secret-key Ks 2 . Moreover, the first secret-key Ks 1 and the second secret-key Ks 2 are transferred to the primary user as crypt keys from the key control center 16 .
  • the secondary user instead of the primary user, falsely issues a request for primary utilization to the key control center 16 , the first secret-key Ks 1 for decryption and the second secret-key Ks 2 for encryption/decryption are transferred to the secondary user.
  • the secondary user cannot decrypt the encrypted data Cmks 2 by using the first secret-key Ks 1 transferred as a decryption key.
  • the data M is encrypted by the copyright management program P using the third secret-key Ks 3 and thereafter, the data is decrypted and encrypted by the third secret-key Ks 3 :
  • M D(Ks 3 , Cmks 3 ).
  • the data M is moved from the secondary user terminal 5 to the tertiary user terminal 6 by the external recording medium 12 or by the communication network 2 .
  • the data M is copied to the external recording medium 12 or transferred via the communication network 2 , it is encrypted by the third secret-key Ks 3 .
  • the second secret-key Ks 2 and the third secret-key Ks 3 in the secondary user terminal 5 are disused.
  • the unencrypted secondary user information Iu 2 is added to the encrypted data Cmks 3 stored in the secondary user terminal 5 , and when the encrypted data Cmks 3 is transferred to a tertiary user, the secondary user information Iu 2 is also transferred.
  • a tertiary user who desires tertiary utilization of the encrypted data Cmks 3 copied or transmitted from the secondary user must designate the original data name or number to the copyright management center 17 from a tertiary user terminal 6 via the communication network 2 , and also present the tertiary user information Iu 3 to request tertiary utilization of the data. At this time, the tertiary user further presents the unencrypted secondary user information Iu 2 added to the encrypted data Cmks 3 in order to clarify the relationship with the secondary user.
  • the copyright management center 17 confirms that the secondary user has received a regrant of the third secret-key Ks 3 for preparation of tertiary utilization of data, in accordance with the presented secondary user information Iu 2 , and then transfers the third secret-key Ks 3 serving as a decryption key and fourth secret-key Ks 4 serving as an encryption/decryption key to the tertiary user terminal 6 via the communication network 2 .
  • the encrypted data Cmks 3 is decrypted using the third secret-key Ks 3 by the copyright management program P:
  • the data M supplied to the primary user is encrypted by the first secret-key Ks 1
  • the data M supplied to the secondary user is encrypted by the second secret-key Ks 2
  • the data M supplied to the tertiary user is encrypted by the third secret-key Ks 3 .
  • the second secret-key Ks 2 and the third secret-key Ks 3 are transferred to the tertiary user as a decryption key and an encryption/decryption key respectively.
  • the database 1 , key control center 16 , and copyright management center 17 are separately arranged. However, it is not always necessary to arrange them separately. It is also possible to set all of them or two of them integrally.
  • FIGS. 7 ( a ) and 7 ( b ) signal process flow in a data editing method of digital video or digital audio is shown.
  • An edit flow as generally processed is shown in 7 ( a ).
  • An edit flow which can avoid deterioration of signals is shown in 7 ( b ).
  • signals supplied as digital signals 61 are converted to analog signals ( 62 ).
  • the analog signals are then edited ( 63 ) while being displayed ( 64 ), and the edited analog signals are re-digitized ( 65 ) to be stored, copied, and transferred ( 66 ).
  • this process may be simple, it can not avoid the deterioration of signals since the signal is edited in analog form and re-digitized after completion of editing.
  • digital signals 61 are converted to analog signals ( 62 ) to be displayed. While the analog signals ( 62 ) are used in editing ( 63 ), the analog signals are used only for displaying ( 64 ) rather than for storing, copying, transferring.
  • Signals for storage, copy, and transfer are edited ( 67 ), copied, and transferred ( 66 ) in the form of digital signals 61 corresponding to signals displayed in analog.
  • FIGS. 8 ( a ) and 8 ( b ) illustrate flow examples when editing encrypted data to which a signal process of the data editing method of digital video or digital audio shown in FIGS. 7 ( a ) and 7 ( b ) is applied.
  • FIG. 8( a ) shows a simplified signal processing flow
  • FIG. 8( b ) shows a signal processing flow which allows sufficient copyright management.
  • M 0 D(Ks 1 , Cm 0 ks 1 ),
  • M 0 D(Ks 1 , Cm 0 ks 1 )
  • the encrypted data Cm 0 ks 1 is edited ( 73 ), lead by the decrypted data M 0 , and the original data M 0 for storage or the edited data M 1 are re-encrypted using the second secret-key:
  • the decrypted data are never stored, copied, or transferred since the data for storing, copying, transferring remain encrypted.
  • the data copyright management unit 15 of the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) shown in FIG. 2 and the data copyright management unit 30 of the present invention described in FIG. 3 can perform only one process of decryption of encrypted data or encryption of decrypted data.
  • decrypted or edited data is stored/copied/transferred, therefore, it is necessary to store data in the user terminal or RAM of the data copyright management apparatus to re-encrypt the stored data afterwards.
  • decrypted or edited data might be lost due to accident or misoperation. This also limits the volume of data that can be processed.
  • PCI Peripheral Component Interconnect
  • the PCI bus is a bus for external connection connected to a system bus of a personal computer via a PCI bridge.
  • the PCI bus allows implementation of a multiprocessor configuration.
  • FIG. 9 shows another embodiment of this invention, which is a configuration of data copyright management apparatus using a PCI bus and the same configuration of data copyright management unit 30 as shown in FIG. 3, that is, a computer configuration having a CPU 16 , a local bus 17 for the CPU 16 , and ROM 18 , RAM 19 , and EEPROM 31 connected to the local bus 17 .
  • a PCI bus 81 is connected to a system bus 22 for a microprocessor 21 via a PCI bridge 82 , and the local bus 17 for the CPU 16 of a data copyright management apparatus 80 is connected to the PCI bus 81 .
  • a communications device (COMM) 23 which receives data from external databases and transfers data to the external of the terminal
  • a CD-ROM drive (CDRD) 24 which reads data supplied on CD-ROM
  • a flexible disk drive (FDD) 25 which copies received or edited data to supply to the external of terminal
  • HDD hard disk drive
  • COMM 23 , CDRD 24 , FDD 25 , and HDD 26 may also be connected to the PCI bus 81 . While ROM, RAM etc., of course, are connected to the system bus 22 of the user terminal, these are not shown in FIG. 9.
  • a decryption task is performed by the MPU 21 of the user terminal 20 and a re-encryption task is performed by the CPU 16 of the data copyright management apparatus 80 at the same time, and vice versa. Since the configuration of the MPU 21 and CPU 16 in this embodiment is a multiprocessor configuration which performs parallel processing with a PCI bus, high processing speed can be achieved.
  • SCSI Small Computer System Interface
  • hard disk drives and CD-ROM drives.
  • Up to eight devices including the personal computer itself to which the SCSI is attached, can be connected to the SCSI, and a plurality of computers may be included in the eight devices. Each of these computers can play an equivalent role; in other words, the SCSI functions not only as an interface, but also as a multiprocessor bus.
  • yet another embodiment connects a data copyright management apparatus 85 to the system bus 22 of a user terminal 20 via SCSI 86 (hereinafter called the “SCSI bus,” for clear understanding) instead of the PCI bus 81 in the embodiment shown in FIG. 9.
  • SCSI bus SCSI
  • FIG. 10 shows a configuration block diagram of a data copyright management apparatus of this embodiment which uses the SCSI bus according to the present invention.
  • the configuration of the data copyright management apparatus 85 is the same as the data copyright management apparatus shown in FIG. 3; that is, the apparatus has a CPU 16 , a local bus 17 for the CPU 16 , and ROM 18 , RAM 19 , and EEPROM 31 connected to the local bus 17 .
  • an SCSI bus 86 which is controlled by an SCSI controller (SCSICONT) 87 , is connected to a system bus 22 for a microprocessor 21 of a user terminal 20 , and the local bus 17 for the CPU 16 of a data copyright management apparatus 85 is connected to this SCSI bus 86 .
  • SCSICONT SCSI controller
  • a communications device (COMM) 23 which receives data from external databases and transfers data external to the terminal
  • a CD-ROM drive (CDRD) 24 which reads data supplied on CD-ROM
  • a flexible disk drive (FDD) 25 which copies received or edited data to supply external to the terminal
  • hard disk drive (HDD) 26 used for storing data.
  • COMM 23 , CDRD 24 , FDD 25 , and HDD 26 may also be connected to the SCSI bus 86 . While ROM, RAM etc., of course, are connected to the system bus 22 of the user terminal, these are not shown in FIG. 10.
  • a decryption task is performed by the MPU 21 of the user terminal 20 , and a re-encryption task is performed by the CPU 16 of the data copyright management apparatus 85 at the same time, and vice versa. Since the configuration of the MPU 21 and CPU 16 in this embodiment is a multiprocessor configuration which performs parallel processing with an SCSI bus 86 , high processing speed can be achieved.
  • Data to be managed by the data copyright management apparatus of the present invention includes, in addition to text data, graphic data, computer programs, digital audio data, JPEG-based still picture data, and MPEG-based moving picture data.
  • the above-mentioned multiprocessor configuration of the data copyright management apparatus 80 of the embodiment shown in FIG. 9 and the data copyright management apparatus 85 of the embodiment shown in FIG. 10 is implemented by connecting the apparatus to the system bus 22 of the microprocessor 21 in the user terminal 20 via a PCI bus or a SCSI bus.
  • the MPU 21 of the user terminal 20 must also control the overall system.
  • data copyright management with encryption and re-encryption can be performed by the multiprocessor configuration using the MPU 21 and CPU 16 .
  • JPEG-still-picture-based moving picture data and MPEG1 or MPEG2-based moving picture data however, data copyright management by such configuration is considerably difficult to perform because a large amount of data must be processed quickly.
  • a multiprocessor system is configured by connecting a first data copyright management apparatus 80 and a second data copyright management apparatus 90 to a PCI bus 81 in the embodiment shown in FIG. 11.
  • the configuration of the second data copyright management apparatus 90 is the same as that of the first data copyright management apparatus 80 ; that is, the apparatus comprises a CPU 91 , a local bus 94 for the CPU 91 , and ROM 92 , RAM 93 , and EEPROM 95 connected to the local bus 94 .
  • the first data copyright management apparatus 80 decrypts encrypted data and the second data copyright management apparatus 90 re-encrypts decrypted data.
  • Fixed information such as software for utilizing databases and user data Iu, are stored in the ROM 18 of the first data copyright management apparatus 80 decrypting encrypted data.
  • SCSI or SCI may be used, and, if possible, the microprocessors may be connected to each other without using a bus.
  • a communications device 23 to which encrypted data is supplied and a CD-ROM drive 24 are connected to a local bus 17 of a data copyright management apparatus 97 for decryption, to prevent processing speed from being slowed.
  • the data copyright management apparatus 97 of the embodiment shown in FIG. 12 is a data copyright management apparatus for decryption, and its configuration is essentially the same as that of the data copyright management apparatus 30 of the embodiment shown in FIG. 3; that is, the computer system has a CPU 16 , a local bus 17 for CPU 16 , and ROM 18 , RAM 19 and EEPROM 31 connected to the local bus 17 , and a communication device COMM 23 and a CD-ROM drive CDRD 24 connected to the local bus 17 .
  • Fixed information such as a copyright management program P, a cryptography program Pe based on a crypt algorithm, and user data Iu, are stored in the ROM 18 .
  • Copyright information Ic is stored in the EEPROM 31 . If the copyright management program and cryptography program are supplied externally, such as from databases, those programs are stored in the EEPROM 31 , rather than in the ROM 18 .
  • a crypt-key Ks 1 for decryption and a data copyright management system program Ps supplied from a key control center or copyright management center are stored in the EEPROM 31 .
  • Encrypted data supplied from the COMM 23 or CDRD 24 is decrypted by the data copyright management apparatus 97 and transferred to a user terminal 95 .
  • FIG. 13 shows another embodiment of a data copyright management apparatus which is extended from the data copyright management apparatus 97 described with reference to FIG. 12.
  • the storage medium such as HDD 26 , for storing re-encrypted data
  • the storage medium such as HDD 26
  • the encrypted data must be transmitted by way of the system bus 22 of the user terminal 20 and the local bus 17 of the data copyright management unit 15 or data copyright management unit 30 , and consequently, processing speed can be slowed. This is true for a configuration in which those attached devices are connected to a PCI bus or SCSI bus.
  • the configuration of the data copyright management apparatus 101 for re-encryption in the embodiment shown in FIG. 13 is essentially the same as that of the data copyright management unit 30 shown in FIG. 3; that is, the computer system has a CPU 91 , a local bus 94 for the CPU 91 , and ROM 92 , RAM 93 and EEPROM 95 connected to the local bus 94 , and HDD 26 is connected to the local bus 94 .
  • Fixed information such as a copyright management program P, a cryptography program Pe based on a crypt algorithm, and user data Iu, are stored in the ROM 92 .
  • Copyright information is stored in the EEPROM 95 . If the copyright management program and cryptography program are supplied externally such as from databases, those programs are stored in the EEPROM 95 rather than the ROM 92 .
  • a crypt-key Ks 2 for re-encryption and a data copyright management system program Ps supplied from a key control center or copyright management center are stored in the EEPROM 95 .
  • Data re-encrypted by the copyright management apparatus 101 for re-encryption is stored in HDD 26 .
  • Digital data includes, in addition to text data, graphic data, computer programs, digital sound data, JPEG-based still picture data, and MPEG-based moving picture data.
  • a typical user terminal which utilizes copyrighted data is a computer apparatus such as a personal computer.
  • Other apparatus which utilize such data are receivers such as television sets, set-top boxes used with those receivers, digital recording apparatus such as digital video tape-recorders, digital video disk recorders, digital audio tapes (DAT) which store digital data, and personal digital assistants (PDA).
  • receivers such as television sets, set-top boxes used with those receivers
  • digital recording apparatus such as digital video tape-recorders, digital video disk recorders, digital audio tapes (DAT) which store digital data
  • DDA personal digital assistants
  • the data copyright management apparatus shown in FIG. 2 which is configured as an expansion board, IC card, or PC card and described in the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) or the data copyright management apparatus shown in FIG. 3 may be used by attaching it to a user terminal which is a computer, receiver, set-top box, digital recording medium, or PDA.
  • a data copyright management apparatus is factory-installed in the user terminal to eliminate labor and possible failure arising from the attachment of the apparatus.
  • a data copyright management apparatus is implemented in the form of a monolithic IC, hybrid IC, or built-in subboard and is incorporated in a user terminal such as computer apparatus or personal computers, or receivers such as television sets, set-top boxes used with those receivers, digital recording medium such as digital video tape recorders, digital video disk recorders, and digital audio tape (DAT) which store digital signals, or personal digital assistants (PDA).
  • a user terminal such as computer apparatus or personal computers, or receivers such as television sets, set-top boxes used with those receivers, digital recording medium such as digital video tape recorders, digital video disk recorders, and digital audio tape (DAT) which store digital signals, or personal digital assistants (PDA).
  • DAT digital audio tape
  • the apparatus for managing data copyright described above can be applied not only to the data utilization but also to the handling of the digital cash and video conference systems.
  • the digital cash system which has been proposed so far is based on a secret-key cryptosystem.
  • the encrypted digital cash data is transferred from a bank account or a cash service of a credit company, and is stored in the IC card so that a terminal device for input/output is used to make a payment.
  • the digital cash system which uses this IC card as an electronic cash-box can be used at any place such as shops or the like as long as the input/output terminal is installed. However, the system cannot be used at places such as homes or the like where no input/output terminal is installed.
  • any device can be used as the electronic cash-box which stores digital cash data, in addition to the IC card, as long as the device can store encrypted data and transmit the data to the party to which the payment is made.
  • a terminal which can be specifically used as the electronic cash-box, there are personal computers, intelligent television sets, portable telephone sets such as a personal information terminal, personal handy phone system (PHS), intelligent telephone sets, and PC cards or the like which have an input/output function.
  • PHS personal handy phone system
  • Trades in which such terminals are used as an electronic cash-box for a digital cash can be actualized by replacing, in the configuration of the data copyright management system, the database with a customer's bank, a first user terminal with a customer, the secondary user terminal with a retailer, the copyright control center with a retailer's bank, and a tertiary user terminal with a wholesaler or a maker.
  • reference numeral 111 represents a customer, reference numeral 112 a bank of the customer 111 , reference numeral 113 a retail shop, reference numeral 114 a bank of the retail shop 113 , reference numeral 115 a maker, reference numeral 116 a bank of the maker 115 , reference numeral 2 a communication network such as a public line provided by a communication enterprise or CATV line provided by a cable television enterprise.
  • Customer 111 , the customer's bank 112 , the retail shop 113 , the retail shop's bank 114 , the maker 115 , the maker's bank 116 can be mutually connected with the communication network 2 .
  • the customer 111 can use a credit company offering cashing service other than banks and he can also interpose an appropriate number of wholesalers between the retail shop and the maker.
  • reference numerals 117 and 118 are either IC cards or PC cards in which digital cash data is stored. The cards are used when the communication network is not used.
  • the broken line represents a path of encrypted digital cash data
  • the solid line represents a path of requests from the customer, the retail shop or the maker
  • the one-dot chain line represents a path of the secret-key from each bank.
  • first secret-key prepared by the customer's bank 112 the second secret-key generated by the customer, the third secret-key generated by the retail shop, and the fourth secret-key prepared by the maker are used as crypt keys.
  • Digital cash management program P for encrypting and decrypting the digital cash data is preliminarily distributed to the customer 111 and is stored in the user terminal. Further, it is possible to transfer the digital cash management program P together with data every time a trade with the bank is executed. Further, it is desirable to install the common digital cash management program P in all banks.
  • the customer 111 uses the user terminal to designate the amount of money via the communication network 2 to request to be drawn out from the account of the customer's bank 112 to the bank. At this time, the terminal presents customer information Ic of the customer 111 .
  • the customer's bank 112 which receives the customer's request for drawing out from the account selects or generates the first secret-key Ks 1 so that the digital cash data M 0 of the amount is encrypted by the first secret-key Ks 1 :
  • the first secret-key Ks 1 can be selected from what is preliminarily prepared by the customer's bank 112 , and also may be generated by presentation of the customer information Ic at the time of drawing by the customer using the digital cash management program P on the basis of the customer information Ic:
  • the first secret-key Ks 1 can be private for the customer 111 . At the same time, it is not necessary to transfer the first secret-key Ks 1 to the customer 111 so that the security of the system can be heightened.
  • the first secret-key Ks 1 can be generated on the basis of the bank information Ibs of the customer's bank 112 or on the basis of the bank information Ibs and the key generation data.
  • the customer 111 to which the encrypted digital cash data Cm 0 ks 1 and the first secret-key Ks 1 are transferred generates second secret-key Ks 2 according to any one or both of the customer information Ic and the first secret-key Ks 1 using the digital cash management program P, for example:
  • the customer 111 uses the first secret-key Ks 1 to decrypt the encrypted digital cash data Cm 0 ks 1 with the digital cash management program P:
  • M 0 D(Ks 1 , Cm 0 ks 1 ),
  • the customer 111 who wishes to buy an article from the retail shop 113 decrypts the encrypted digital cash data Cm 0 ks 2 which is stored in the user terminal as a cash-box by the digital cash management program P using the second secret-key Ks 2 :
  • M 0 D(Ks 2 , Cm 0 ks 2 ),
  • the residual amount digital cash data M 2 is encrypted by the second secret-key Ks 2 using the digital cash management program P:
  • the retail shop 113 to which the encrypted digital cash data Cm 1 ks 2 and the customer information Ic are transferred stores the transferred encrypted digital cash data Cm 1 ks 2 and customer information Ic in the user terminal and presents the customer information Ic to the retail shop's bank 114 via the communication network 2 for confirming the content to request the transmission of the second secret-key Ks 2 for decryption.
  • the retail shop's bank 114 which is requested by the retail shop 113 to transmit the second secret-key Ks 2 transmits the request for the transmission of the second secret-key Ks 2 and the customer information Ic to the customer's bank 112 .
  • the customer's bank 112 which is requested to transmit the second secret-key Ks 2 from the retail shop's bank 114 generates the second secret-key Ks 2 according to the customer information Ic by the digital cash management program P in the case where the second secret-key Ks 2 is based only on the customer information Ic, or generates the second secret-key Ks 2 according to the customer information Ic and the first secret-key Ks 1 by the digital cash management program P in the case where the second secret-key Ks 2 is based on the customer information Ic and the first secret-key Ks 1 , and transmits the generated second secret-key Ks 2 to the retail shop's bank 114 .
  • the retail shop 113 to which the second secret-key Ks 2 is transferred decrypts the encrypted digital cash data Cm 1 ks 2 by the second secret-key Ks 2 using the digital cash management program P:
  • M 1 D(Ks 2 , Cm 1 ks 2 )
  • the retail shop 111 can directly request the transfer of the second secret-key Ks 2 to the customer's bank 112 instead of the retail shop's bank 114 .
  • the customer information Ic is transferred to the retail shop's bank 114 together with the encrypted digital cash data Cm 1 ks 2 via the communication network 2 .
  • the retail shop's bank 114 to which the encrypted digital cash data Cm 1 ks 2 and the customer information Ic are transferred requests the transfer of the second secret-key Ks 2 to the customer's bank 112 by transmitting the customer information Ic.
  • the customer's bank 112 which is requested to transfer the second secret-key Ks 2 from the retail shop's bank 114 , generates the second secret-key Ks 2 according to the customer's information Ic by the digital cash management program P when the second secret-key Ks 2 is based only on the customer's information Ic, or generates the second secret-key Ks 2 according to the customer's information Ic and the first secret-key Ks 1 by the digital cash management program P when the second secret-key Ks 2 is based on the customer's information Ic and the first secret-key Ks 1 . Then the generated second secret-key Ks 2 is transferred to the retail shop's bank 114 .
  • the retail shop's bank 114 to which the second secret-key Ks 2 is transferred from the customer's bank 112 , decrypts the encrypted digital cash data Cm 1 ks 2 by the second secret-key Ks 2 using the digital cash management program P:
  • M 1 D(Ks 2 , Cm 1 ks 2 ),
  • the decrypted digital cash data M 1 is deposited in the bank account of the retail shop's bank 114 .
  • the retail shop 113 stocks products from the maker 115 or from the wholesaler which intervenes between the retail shop 113 and the maker 115 . Then the retail shop 113 sells the products to the customer 111 . Consequently, a trading form is present between the customer 111 and the retail shop 113 just as between the retail shop 113 and the maker 115 .
  • the digital cash is handled through banks.
  • information such as the processed amount of the digital cash, date, and the secret-key demanding party information with respect to the handling of the digital cash is stored in the customer's bank, the residual amount of digital cash and usage history, can be grasped.
  • digital cash is added by the customer's information which may be accompanied by digital signature. Therefore, the digital cash in the example can also have a function of a settlement system for cheques drawn by customers.
  • this system is applicable to various systems in international trade such as payment settlement of import/export by a negotiation by a draft using executed documents such as a letter of credit and a bill of lading.
  • the example is intended, when video conference participants perform secondary use, to secure the privacy of other participants and data security by using the aforementioned configuration of the data copyright management system.
  • This video conference data management system can be actualized, for example, by replacing the database in the data copyright management system configuration shown in FIG. 1 with a participant of the video conference, the first user terminal with another participant of the video conference, and the second user terminal with a non-participant of the video conference.
  • reference numeral 121 represents a participant as a host of the video conference, reference numeral 122 a participant of the video conference as a guest, reference numeral 123 a non-participant of the video conference as a user, reference numeral 124 a non-participant of the video conference as another user, reference numeral 2 a communication network such as a public telephone line provided by the communication enterprise and a CA television line provided by the cable television enterprise or the like.
  • the participant 121 of the video conference is connected to the participant 122 of the video conference via the communication network 2 .
  • the participant 122 of the video conference can be connected to the non-participant 123 of the video conference, and the non-participant 123 of the video conference to the non-participant 124 of the video conference, via the communication network 2 .
  • Reference numerals 125 and 126 represent a data recording medium.
  • the broken line represents a path of the encrypted video conference content
  • the solid line represents a path requesting the crypt key from the non-participants of the video conference 123 and 124 to the participant of the television conference 121
  • the one-dot chain line represents a path of crypt keys from the participant of the video conference 121 to the participant of the video conference 122 and the non-participants of the video conference 123 and 124 .
  • a video conference data management program P for encryption/decryption of the video conference data of the participant 121 including audio and picture is previously distributed to the video conference participant 122 and the video conference non-participants 123 and 124 , and is stored in each terminal.
  • This video conference data management program P may be transferred whenever a crypt-key is transferred.
  • a first secret-key prepared by the video conference participant 121 a first secret-key prepared by the video conference participant 121 , a second secret-key prepared by the video conference participant 122 , a third secret-key prepared by the video conference non-participant 123 and subsequent secret-keys prepared similarly are used as a crypt key.
  • the video conference participant 121 and the video conference participant 122 perform the video conference by transmitting audio, picture and data (referred to as video conference data on the whole) to each other, using each terminal via communication network 2 .
  • the video conference participant 121 Prior to the video conference, the video conference participant 121 generates or selects the first secret-key Ks 1 to transfer to the video conference participant 122 prior to the start of the video conference.
  • the video conference participant 122 receiving the first secret-key Ks 1 2 Q generates the second secret-key Ks 2 by the first secret-key Ks 1 using the video conference data management program P:
  • Ks 2 P(Ks 1 ).
  • the video conference participant 121 encrypts the video conference data M 0 with the first secret-key Ks 1 , in the video conference through the communication network 2 :
  • the video conference participant 122 who receives the video conference data Cm 0 ks 1 encrypted by the first secret-key Ks 1 decrypts the video conference data Cm 0 ks 1 by the first secret-key Ks 1 :
  • M 0 D(ks 1 , Cm 0 ks 1 )
  • the second secret-key Ks 2 is generated based on the first secret-key Ks 1 with the video conference data management program P:
  • Ks 2 P(Ks 1 ).
  • the decrypted video conference data M 0 is stored in the terminal of the participant 122 of the video conference, copied to the data record medium 125 , or transferred to the non-participant of the video conference via the communication network 2 , the data M is encrypted by the second secret-key Ks 2 using the video conference data management program P:
  • the encrypted data Cmks 2 is copied to the record medium 125 or supplied to the non-participant of the video conference via the communication network 2 , together with the video conference data name or the video conference data number.
  • the non-participant of the video conference 123 who obtains the encrypted data Cmks 2 makes a request to the participant 121 for the secondary use of the video conference data M from the terminal by specifying the name or number of the video conference data.
  • the participant 121 of the video conference who receives the request for the secondary use of the data M finds out the first secret-key Ks 1 according to the name or the number of the video conference data to generate the second secret-key Ks 2 based on the first secret-key Ks 1 :
  • the non-participant of video conference 123 who receives the second secret-key Ks 2 decrypts the encrypted data Cmks 2 by the second secret-key Ks 2 by using the video conference data management program P:
  • the video conference data M is stored in the terminal of the non-participant of the video conference 123 , copied to the record medium 126 , or transmitted to the non-participant of the video conference 124 , the video conference data M is encrypted by the second secret-key Ks 2 using the video conference data management program P:
  • the third secret-key Ks 3 may be generated on the basis of the second secret-key Ks 2 with the video conference data management program P:
  • Ks 3 P(Ks 2 )

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Multimedia (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Databases & Information Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Finance (AREA)
  • Software Systems (AREA)
  • Technology Law (AREA)
  • Storage Device Security (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

A data copyright management apparatus for handling data copyrights, and data of digital cash and video conference system is provided. The data copyright management apparatus comprises a CPU, ROM, EEPROM, and RAM. The ROM, EEPROM, and RAM are connected to the CPU bus, and a system bus of a device which utilizes the data can be connected to the CPU bus. A data copyright management system program, cryptographic algorithm, and user information are stored in the ROM, and a first public-key, a first private-key, a second public-key, a second private-key, a first secret-key, a second secret-key, and copyright information are stored in the EEPROM. The data copyright management apparatus may be configured in the form of a monolithic or hybrid IC, a thin IC card, PC card, insertion board, and further, may be incorporated in a computer, television set, set-top box, digital video tape recorder, digital video disk recorder, digital audio tape apparatus, or personal digital assistants, and the like.

Description

  • This application is a division of application Ser. No. 08/779,751, filed Jan. 10, 1997, which is a division of application Ser. No. 08/549,270, filed Oct. 27, 1995. The entire disclosure of prior application Ser. Nos. 08/779,751 and 08/549,270 is considered as being part of the disclosure of the present application and is hereby incorporated by reference herein. [0001]
    • BACKGROUND OF THE INVENTION
  • 1. Field of the Invention [0002]
  • The present invention relates to an apparatus for displaying, storing, copying, editing or transferring digital data, and protecting digital data copyrights. [0003]
  • 2. Background Art [0004]
  • In the information-oriented society of today, database systems are becoming wide spread in which it is possible to use various types of data which were stored independently in each computer in the past, by connecting computers via communication lines. [0005]
  • In such a database system, the information handled up to this point has been conventionally coded information that can be processed by a computer, and that contains a relatively small amount of information and monochrome binary data, such as facsimile information at most. It has not been possible to handle data containing a relatively large amount of information, such as data for natural pictures or animation. [0006]
  • With the rapid progress of digital processing technique for various electric signals, a technique is under development for digital processing of picture signals other than binary data, which had been handled only as analog signals in the past. [0007]
  • By digitizing the picture signal, it is possible to handle a picture signal, e.g., a television signal, by a computer. The technology of a “multimedia system” is an emerging technology of the future capable of simultaneously handling the data handled by computers and digitized picture data. [0008]
  • Because picture data contains an overwhelmingly large amount of information compared with character data and audio data, it is difficult to store or transfer or process the picture data by computer. For this reason, techniques for compressing or expanding picture data-have been developed. Further, several standards for compression/expansion of picture data have been established. For example, the following standards have been established as common standards: JPEG point Photographic image coding Experts Group) standards for still pictures, H.261 standards for video conferences, MPEG1 (Moving Picture image coding Experts Group 1) standards for picture accumulation, and MPEG2 standards for current television broadcasting and high definition television broadcasting. By using these new techniques, it is now possible to transmit digital picture data in real time. [0009]
  • For analog data, which has been widely used in the past, the control of copyrights during processing has not been an important issue because the quality of the analog data deteriorates each time the data is stored, copied, edited, or transferred. The editing of a copyrighted work produced according to the above operation has not been a large problem. However, the quality of digital data does not deteriorate when the data is repeatedly stored, copied, edited, or transferred. Therefore, the management and control of copyrights during processing of digital data is an important issue. [0010]
  • Up to now, there has been no adequate method for management and control of copyrights for digital data. They have been managed and controlled merely by copyright law or by contracts. In copyright law, only compensation for digital sound or picture recording devices has been prescribed. [0011]
  • It is possible not only to refer to the content of a database, but also to effectively utilize the data obtained from the database by storing, copying, or editing the data, and also transferring the edited data to the database with the edited data registered as new data. Further, it is possible to transfer edited data to other persons via a communication link or by a proper recording medium. [0012]
  • In a conventional database system, only character data is handled. However, in multimedia systems, sound data and picture data originally generated as analog data, are digitized and used as part of the database in addition to the other data in the database such as character data. [0013]
  • Under such circumstances, it is an important question to determine how to handle copyrights of the data in the database. However, there are no means in the prior art for copyright management and control of such actions as copying, editing, transferring, etc. of data. [0014]
  • Although data from “software with advertisement” or “free software” is generally available free of charge, it is copyrighted and its use may be restricted by the copyright depending on the way it is used. [0015]
  • The inventors of the present invention proposed a system for copyright management, wherein a permit key is obtained from a key control center via a public telephone line in Japanese Patent Laid-Open No. 46419/1994 and Japanese Patent Laid-Open No. 141004/1994. Japanese Patent Laid-Open No. 132916/1994 by the same inventors also discusses an apparatus for copyright management. Furthermore, the same inventors proposed a system for managing a copyright of digital data in Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037) and Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747). [0016]
  • In these systems and apparatus, one who wants to view and listen to encrypted programs requests viewing from a control center via a communications line by using a communication device. The control center sends a permit key to the requester, performs charging and collects a fee. [0017]
  • After receiving the permit key, the requester sends the permit key to a receiver by using an on-line or off-line means. The receiver then decrypts the encrypted programs using the permit key. [0018]
  • The system disclosed in Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037) uses a program and copyright information for managing the copyright, in addition to the permit key, so that the copyright for display (including sound processes), storage, copying, editing, or transferring of the digital data in the database system, including real-time transmission of a digital picture, can be managed. The program for managing the copyright watches and manages to prevent a user from using the digital data outside the conditions of the user's request or permission. [0019]
  • Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037) further discloses that data is supplied in encrypted form from a database, decrypted by a copyright management program when displayed or edited, and encrypted again when it is stored, copied or transferred. Also, the copyright management program, being encrypted, is decrypted by a permit key. The copyright management program thus decrypted performs encryption and decryption of copyright data, and when data is utilized other than for storage and display, copyright information including information about the user, being stored as a history in addition to the original copyright information, is disclosed. [0020]
  • A general description of cryptography is provided below. Cryptography includes a secret-key cryptosystem and a public-key cryptosystem. [0021]
  • The secret-key cryptosystem is a cryptosystem using the same crypt key for encryption and decryption. While this cryptosystem requires only a short time for encryption or decryption, if the secret-key is found, the cryptogram may be cryptanalyzed. [0022]
  • The public-key cryptosystem is a cryptosystem in which a key for encryption is open to the public as a public-key, and a key for decryption is not open to the public. The key for encryption is referred to as a public-key and the key for decryption is referred to as a private-key. To use this cryptosystem, it is necessary that the party transmitting information encrypts the information with the public-key of the party receiving the information. The party receiving the information decrypts the information with a private-key not open to the public. While this cryptosystem requires a relatively long time for encryption or decryption, the private-key cannot easily be found, and it is very difficult to cryptanalyze the cryptogram. [0023]
  • In cryptography, a case of encrypting a plaintext M with a crypt key K to obtain a cryptogram C is expressed as [0024]
  • C=E(K, M)
  • and a case of decrypting the cryptogram C with the crypt key K to obtain the plaintext M is expressed as [0025]
  • M=D(K, C).
  • The cryptosystem used for the present invention uses a secret-key cryptosystem in which the same secret-key Ks is used for encryption and decryption, and a public-key cryptosystem in which a public-key Kb is used for encryption of plaintext data and a private-key Kv is used for decryption of a cryptogram. [0026]
  • FIG. 1 shows a structure of the data copyright management system disclosed in the Japanese Patent Application No. 237673/1994, (U.S. patent application Ser. No. 08/536,747) in which the apparatus for data copyright management system of the present invention can be used. [0027]
  • In this system, encrypted data is supplied via two-way communication in accordance with a request from the [0028] primary user 4.
  • This system uses the secret-key cryptosystem and the public-key cryptosystem as a cryptosystem. [0029]
  • It will be obvious that this system can be applied when using a satellite broadcast, ground wave broadcast, CATV broadcast or a recording medium other than a database as the data supply means provided with advertisement requiring no charge or encryption. [0030]
  • In this system, [0031] reference numeral 1 represents a database, 4 represents a primary user terminal, 5 represents a secondary user terminal, 6 represents a tertiary user terminal, and 7 represents an n-order user terminal. Also, reference numeral 3 represents a copyright management center, 8-10 represent a secondary copyright data, tertiary copyright data, and n-order copyright data, respectively, stored at the copyright management center 3. Reference numeral 2 represents a communication network such as a public telephone line offered by a communication enterprise or a CATV line offered by a cable television enterprise.
  • In the above arrangement, the [0032] database 1, primary user terminal 4, secondary user terminal 5, tertiary user terminal 6, n-order user terminal 7, and copyright management center 3 are connected to the communication network 2. They can also be connected each other.
  • In FIG. 1, a path shown by a broken line represents a path for encrypted data. A path shown by a solid line represents a path of requests from each user terminal. A path shown by a one-dot chain line represents a path through which a crypt key and authorization information corresponding to a utilization request for data are transferred. A path shown by a two-dot chain line represents a path through which copyright information is transferred from the database or from one data element to a next-order data element within the copyright management center. [0033]
  • Each user who uses this system has previously been entered in the database system and has been provided with database utilization software. The database utilization software includes a program for decrypting an encrypted copyright management program in addition to normal communication software such as data communications protocols. [0034]
  • To use the [0035] database 1, a primary user prepares primary-user authentication data Au1, a first public-key Kb1, a first private-key Kv1 corresponding to the first public-key Kb1, a second public-key Kb2, and a second private-key Kv2 corresponding to the second public-key Kb2. The primary user accesses the database 1 from the primary user terminal 4 via the communication network 2.
  • The [0036] database 1, receiving the primary-user authentication data Au1, first public-key Kb1 and second public-key Kb2 from the primary user, confirms the primary-user authentication data Au1 and transfers the confirmed primary-user authentication data Au1 to the copyright management center 3 as the primary user information Iu1.
  • The [0037] database 1 prepares two secret-keys, first secret-key Ks1 and second secret-key Ks2. The second secret-key Ks2 is transferred to the copyright management center 3.
  • As the result of the above transfer, a permit key corresponding to primary utilization, the primary user information Iu[0038] 1, original copyright information Ic0 and the second secret-key Ks2 are stored in the copyright management center 3. In this case, the original copyright information Ic0 is used for copyright royalties distribution.
  • When a primary user who desires data utilization accesses the [0039] database 1 from the primary user terminal 4, a data menu is transferred to him. In this case, information for charges may be displayed together with the data menu.
  • When the data menu is transferred, the primary user retrieves the data menu and selects the data M. In this case, the original copyright information Ic[0040] 0 of the selected data M is transmitted to the copyright management center 3. The primary user selects permit key Kp1 corresponding to the required form of the usage such as viewing, storing, copying, editing and transferring of data. Permit key Kp1 is also transmitted to the copyright management center 3.
  • Because viewing and storing of data are the minimum required forms of use for the primary user, these forms of use may be excluded from the choices, thus offering only copying, editing and transferring as choices. [0041]
  • The original data M[0042] 0 is read out of the database 1 in accordance with a request of the primary user. The read original data M0 is encrypted by the first secret-key Ks1:
  • Cm0ks1=E(Ks1, M0).
  • The encrypted data Cm[0043] 0ks1 is provided with the unencrypted original copyright information Ic0.
  • The first secret-key Ks[0044] 1 is encrypted by the first public-key Kb1 and the second secret-key Ks2 is encrypted by the second public-key Kb2:
  • Cks1kb1=E(Kb1, Ks1)
  • Cks2kb2=E(Kb2, Ks2).
  • While the copyright management program P is also encrypted by the second secret-key Ks[0045] 2:
  • Cpks2=E(Ks2, P),
  • the copyright management program P may not always be encrypted by the second secret-key Ks[0046] 2 but it may be encrypted by any other proper crypt key.
  • The encrypted original data Cm[0047] 0ks1, encrypted copyright management program Cpks2, and two encrypted secret-keys Cks1kb1 and Cks2kb2 are transferred to the primary user terminal 4 via the communication network 2 and charged, if necessary.
  • It is possible to store the encrypted copyright management program Cpks[0048] 2 in means such as in a ROM in the user terminal 4 instead of supplying it from the database 1.
  • The primary user receiving the encrypted original data Cm[0049] 0ks1, two encrypted secret-keys Cks1kb1 and Cks2kb2, and encrypted copyright management program Cpks2 from the database 1 decrypts the encrypted first secret-key Cks1kb1 with the database utilization software using the first private-key Kv1 corresponding to the first public-key Kb1:
  • Ks1=D(Kv1, Cks1kb1),
  • and decrypts the encrypted second secret-key Cks[0050] 2kb2 using the second private-key Kv2 corresponding to the second public-key Kb2:
  • Ks2=D(Kv2, Cks2kb2).
  • The primary user decrypts the encrypted copyright management program Cpks[0051] 2 using the decrypted second secret-key Ks2:
  • P=D(Ks2, Cpks2).
  • Finally, the primary user decrypts the encrypted data Cm[0052] 0ks1 by the decrypted copyright management program P using the decrypted first secret-key Ks1:
  • M0=D(Ks1, Cm0ks1)
  • and uses the decrypted original data M[0053] 0 directly or data M1 as edited.
  • As described above, the first private-key Kv[0054] 1 and second private-key Kv2 are crypt keys prepared by the primary user but not open to others. Therefore, even if a third party obtains the data M, it is impossible to use the encrypted data M by decrypting it.
  • Thereafter, to store, copy, or transfer the data M as the original data M[0055] 0 or the edited data M1, it is encrypted and decrypted using the second secret-key Ks2:
  • Cmks2=E(Ks2, M)
  • M=D(Ks2, Cmks2).
  • The decrypted second secret-key Ks[0056] 2 is thereafter used as a crypt key for encrypting/decrypting data when storing, copying, or transferring the data.
  • The first private-key Kv[0057] 1 and second private-key Kv2, the first secret-key Ks1 and second secret-key Ks2, the data M, the copyright management program P, the original copyright information Ic0 and copyright information Ic1, containing information about the primary user and the editing date and time, are stored in the primary user terminal 4.
  • Further protection is provided by attaching the copyright information Ic[0058] 1 to the data as copyright information label, and adding the digital signature.
  • The encrypted data Cmks[0059] 2 is encrypted to be distributed. Since the copyright information label provides a clue to obtain the second secret-key Ks2 which is the key for decryption, the second secret key Ks2 cannot be obtained in the case where the copyright information label is removed from the encrypted data Cmks2.
  • When the encrypted data Cmks[0060] 2 is stored in the primary user terminal 4, the second secret-key Ks2 is stored in the terminal 4. However, when the encrypted data Cmks2 is not stored in the primary user terminal 4 but is copied to the recording medium 11 or transferred to the secondary user terminal 5 via the communication network 2, the second secret-key Ks2 is disused in order to disable subsequent utilization of the data in the primary user terminal 4.
  • In this case, it is possible to set a limitation for repetitions of copying or transferring of the data so that the second secret-key Ks[0061] 2 is not disused within limited repetitions of copying and transferring of the data.
  • The primary user who is going to copy the data M to the [0062] external recording medium 11 or transmit the data M via the communication network 2 must prepare the second secret-key Ks2 to encrypt the data M by this second secret-key Ks2 before copying or transmitting the data:
  • Cmks2=E(Ks2, M).
  • The unencrypted original copyright information Ic[0063] 0 and primary-user copyright information Ic1 are added to the encrypted data Cmks2.
  • Before using a database, a secondary user, similar to the primary user, prepares authentication data Au[0064] 2 for authenticating the secondary user, a third public-key Kb3, a third private-key Kv3 corresponding to the third public-key Kb3, a fourth public-key Kb4, and a fourth private-key Kv4 corresponding to the fourth public-key Kb4.
  • The secondary user who desires secondary utilization of the copied or transferred encrypted data Cmks[0065] 2 must designate the original data name or number to the copyright management center 3 in order to request secondary utilization from the secondary user terminal 5 via the communication network 2. In this time, the secondary user also transfers the third public-key Kb3 and the fourth public-key Kb4, as well as the secondary user authentication data Au2, original copyright information Ic0 and primary user copyright information Ic1.
  • The [0066] copyright management center 3 receiving the secondary utilization request from the secondary user confirms the secondary-user authentication data Au2, and transfers confirmed secondary-user authentication data Au2 to the tertiary copyright data 9 as secondary user information.
  • When the secondary copyright information Ic[0067] 1 of the primary user is transferred, the secondary copyright information Ic1 is provided to the secondary copyright data 8, and then, secondary copyright data 8 recognizes the secondary copyright information Ic1 to be transferred to the tertiary copyright data 9.
  • The secondary user selects permit key Kp[0068] 2 corresponding to the form of data usage such as viewing, storing, copying, editing and transferring of data. Permit key Kp2 corresponding to the selected usage is sent to the tertiary copyright data 9.
  • Because viewing and storing of data are the minimum required forms of use for the secondary user, these forms of use may be excluded from the choices, offering only copying, editing and transferring as the choices. [0069]
  • The [0070] secondary copyright data 8 prepares a third secret-key Ks3. The prepared third secret-key Ks3 is transferred to and stored in the tertiary copyright data 9.
  • As the result of the above transfer, the permit key Kp[0071] 2, primary user copyright information Ic1, primary user information Iu1, original copyright information Ic0, secondary user information Iu2, and third secret-key Ks3 are stored in the tertiary copyright data 9. The permit key Kp2, primary user copyright information Ic1, and primary user information Iu1 are used for copyright royalties distribution.
  • Hereafter similarly, permit key Kpn corresponding to n-order usage, copyright information for secondary exploitation right Icn-[0072] 1 of (n-1)-order user, primary user information Iu1, original copyright information Ic0, n-order user information Iun, and n-th secret-key Ksn are stored in n-order copyright data 10.
  • The permit key Kp[0073] 2, primary user information Iu1, original copyright information Ic0 and second secret-key Ks2 are read out of the secondary copyright data 8. The original copyright information Ic0 is used for copyright royalties distribution.
  • The read second secret-key Ks[0074] 2 and third secret-key Ks3 are encrypted by the third public-key Kb3 and fourth public-key Kb4 of the secondary user respectively:
  • Cks2kb3=E(Kb3, Ks2)
  • Cks3kb4=E(Kb4, Ks3).
  • The copyright management program P is encrypted by the third secret-key Ks[0075] 3:
  • Cpks3=E(Ks3, P).
  • The encrypted copyright management program Cpks[0076] 3, encrypted second secret-key Cks2kb3, and encrypted third secret-key Cks3kb4 are transferred to the secondary user terminal 5 via the communication network 2. In this case, charging is performed, if necessary.
  • The secondary user, receiving two encrypted secret-keys, Cks[0077] 2kb3 and Cks3kb4, and the encrypted copyright management program Cpks3 from the secondary copyright data 8, and using the database utilization software decrypts the encrypted second secret-key Cks2kb3 by the third private-key Kv3, and decrypts the encrypted third secret-key Cks3kb4 by the fourth private-key Kv4 corresponding to the fourth public-key Kb4:
  • Ks2=D(Kv3, Cks2kb3)
  • Ks3=D(Kv4, Cks3kb4).
  • The encrypted copyright management program Cpks[0078] 3 is decrypted by the decrypted third secret-key Ks3:
  • P=D(Ks3, Cpks3).
  • Then, the encrypted data Cmks[0079] 2 is decrypted for use by the decrypted second secret-key Ks2 using decrypted copyright management program P:
  • M=D(Ks2, Cmks2).
  • As described above, the third private-key Kv[0080] 3 and the fourth private-key Kv4 are prepared by the secondary user but not opened to others. Therefore, even if a third party obtains the encrypted data Cmks2, it is impossible to use the data by decrypting it.
  • Each user who uses the above-mentioned system must have previously been entered in the database system, and when entered in the system is provided with database software. [0081]
  • Because the software includes not only normal communication software, such as a data communication protocols but also a program for decrypting a copyright management program by a first crypt-key, protection is necessary. [0082]
  • A first crypt-key K[0083] 1, a second crypt-key K2, and a copyright management program P are transferred to each user in order to use data M. Each user keeps these keys and the program.
  • Further, the copyright information label, the user information, the public-key and private-key in the public-key cryptosystem and the program containing the algorithm for generating the secret-key are stored when needed. [0084]
  • For storing them, the simplest means to use is a flexible disk. However, the flexible disk is easy to lose or alter. [0085]
  • A hard disk drive is also subject to loss or alteration of data, though it is more stable than the flexible disk. [0086]
  • Recently, use of an IC card has spread in which an IC element is sealed in a card-like package. Particularly, standardization of a PC card with a microprocessor sealed inside has developed for PCMCIA cards and JEIDA cards. [0087]
  • The data copyright management apparatus proposed by the present inventors in the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) is described in FIG. 2. [0088]
  • The data [0089] copyright management unit 15 is configured as a computer system comprising a microprocessor (CPU) 16, a local bus 17 of CPU 16, read only memory (ROM) 18 connected to local bus 17, and write/read memory (RAM) 19, and wherein the local bus 17 is connected to system bus 22 of the microprocessor 21 of the user terminal 20.
  • Further, a communication unit (COMM) [0090] 23 which receives data from an external database and transfers data to the external database; a CD-ROM drive (CDRD) 24 which reads data provided by CD-ROM; a flexible disk drive (FDD) 25 which copies received or edited data to a flexible disk drive to provide the outside with such data, and a hard disc drive (HDD) 26 which stores data are connected to the system bus 22 in the user terminal 20.
  • As is typical, ROM and RAM or the like are connected to the [0091] system bus 22 of the user terminal. However, this is not shown in the figure.
  • Fixed information, such as software and user data, for utilizing the database is stored in [0092] ROM 18 of the data copyright management unit 15. A crypt-key and the copyright management program provided from the key control center or copyright management center are stored in RAM 19.
  • The process of decryption and re-encryption are performed by the data [0093] copyright management unit 15, only the results of which are transferred to the user terminal 20 via the local bus 17 and the system bus 21 of the user terminal.
  • The data [0094] copyright management unit 15 is implemented as monolithic IC, hybrid IC, an expansion board, an IC card, or a PC card.
    • SUMMARY OF THE INVENTION
  • In the present application, apparatus for a data copyright management system, resulting from the further implementation of the apparatus used with the user terminal proposed in the Japanese Patent Application No. 237673/1994, (U.S. patent application Ser. No. 08/536,747) is proposed. [0095]
  • The apparatus for data copyright management in the present invention is attached to the user terminal, which comprises a central processing unit, central processing unit bus, read only semiconductor memory, electrically erasable programmable read-only memory, and read/write memory. [0096]
  • The central processing unit, read only semiconductor memory, electrically erasable programmable read-only memory, and read/write memory are connected to the central processing unit bus. Also, the system bus of a unit which utilizes the data can be connected to it. A data copyright management system program, a crypt algorithm, and user information are stored in the read only semiconductor memory. A second private-key, permit key, second secret-key, and copyright information are stored in the electrically erasable programmable read-only memory. The first public-key, first private-key, second public-key, and first secret-key are transferred to the read/write memory during operation of the unit. If the copyright management program is provided from the outside, it is stored in the EEPROM. Otherwise, it is stored in ROM. [0097]
  • As embodiments of the data copyright management apparatus, a monolithic IC, a hybrid IC, a thin IC card, a PC card, and a board for insertion may be used. [0098]
  • In the data copyright management system described above as a Japanese Patent Application, while the obtained encrypted data is decrypted for displaying/editing, the obtained or edited data is re-encrypted to store/copy/transfer, so that no unauthorized use of the data is allowed. [0099]
  • Accordingly, in the apparatus used in the data copyright management system of the present invention, re-encryption of data, as well as decryption of data should be performed concurrently. However, the data copyright management apparatus described in the Japanese Patent Application can perform only one process of either data decryption or data re-encryption at the same time. [0100]
  • Thus, in the present application, a data copyright management apparatus is proposed which, at the same time, can decrypt and re-encrypt the supplied encrypted data to perform copyright management and control. [0101]
  • For this purpose, data which was encrypted and provided is decrypted and re-encrypted by adding at least one microprocessor, and preferably two microprocessors, in addition to the microprocessor that controls the entire user terminal therein. When one microprocessor is added, one of the two microprocessors which include the microprocessor of the user and the added one, will decrypt data and the other will re-encrypt data. [0102]
  • When two microprocessors are added, one of the added microprocessors will decrypt data, another microprocessor will re-encrypt data, and the third microprocessor of the user terminal will control the entire operation. [0103]
  • Although the added microprocessors may be connected to the system bus of the microprocessor in the user terminal, this configuration may not allow a multiprocessor configuration to operate plural microprocessors concurrently. Therefore, in the present application, a data copyright management apparatus is implemented as a multiprocessor configuration utilizing SCSI bus or PCI bus. [0104]
  • Other than character data, digital data includes graphic data, computer programs, digital audio data, still picture data of the JPEG standard, and motion-picture works of the MPEG standard. While the data applications comprising these data forms are utilized by using various apparatus, it is necessary that these apparatus also include the data copyright management function. [0105]
  • Thus, in the present application, it is proposed that, as a form of use, these data copyright management apparatus and the data copyright management apparatus described in the prior application be incorporated in various systems. [0106]
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 is a block diagram of the data copyright management system of Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747). [0107]
  • FIG. 2 is a block diagram of the data copyright management apparatus of Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747). [0108]
  • FIG. 3 is a block diagram of the data copyright management apparatus of a first embodiment of the present invention. [0109]
  • FIG. 4 is a specific block diagram of the data copyright management apparatus of a first embodiment of the present invention. [0110]
  • FIG. 5 is a process flow chart of a data copyright management system related to the present invention. [0111]
  • FIG. 6 is a block diagram of the data copyright management system of Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747). [0112]
  • FIG. 7 is a flow chart of a general editing process for digital data. [0113]
  • FIG. 8 is a flow chart of an encrypted data editing process of the present invention. [0114]
  • FIG. 9 is a block diagram of the data copyright management apparatus of a second embodiment of the present invention. [0115]
  • FIG. 10 is a block diagram of the data copyright management apparatus of a third embodiment of the present invention. [0116]
  • FIG. 11 is a block diagram of the data copyright management apparatus of a fourth embodiment of the present invention. [0117]
  • FIG. 12 is a block diagram of the data copyright management apparatus of a fifth embodiment of the present invention. [0118]
  • FIG. 13 is a block diagram of the data copyright management apparatus of a sixth embodiment of the present invention. [0119]
  • FIG. 14 is a block diagram of the digital cash system as one example of use of the present invention. [0120]
  • FIG. 15 is a block diagram of the video conference system as one example of use of the present invention. [0121]
    • DETAILED DESCRIPTION
  • The detailed embodiments of the present invention are described below with reference to the drawings. [0122]
  • A first embodiment of the data copyright management apparatus related to the present invention is shown in the block diagram of FIG. 3. [0123]
  • The data [0124] copyright management unit 30 includes electrically erasable programmable read-only memory (EEPROM) 31 in addition to the components of the data copyright management unit 15 described in Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747).
  • The data [0125] copyright management unit 30 is a computer system having CPU 16 and local bus 17 of CPU 16, as well as ROM 18, RAM 19, and EEPROM 31 which are connected to local bus 17, wherein local bus 17 is connected to the system bus 22 of the microprocessor 21 in the user terminal 20.
  • Further, communication unit (COMM) [0126] 23, which receives data from an external database and transfers data outside; CD-ROM drive (CDRD) 24, which reads data provided by CD-ROM; a flexible disc drive (FDD) 25, which copies data received or edited in order to supply it to the outside; and hard disk drive (HDD) 26, which stores data, are connected to-the system bus 22 of the user terminal 20.
  • ROM and RAM are connected to the [0127] system bus 22 of the user terminal. However, they are not shown in the figure.
  • Fixed information such as a data copyright management program P, a cryptography program Pe based on a crypt algorithm, and user data Iu are stored in [0128] ROM 18.
  • A crypt-key K and copyright information Ic are stored in [0129] EEPROM 31. Further, when the data copyright management program and cryptography program are supplied from outside, such as from a database, they are stored in EEPROM 31, rather than in ROM 18.
  • The data [0130] copyright management unit 30 performs the process of decryption or re-encryption, only the result of which is transferred to the user terminal 20 via local bus 17 and system bus 22.
  • The data [0131] copyright management unit 30 is implemented as a monolithic IC, a hybrid IC, an expansion board, an IC card, or a PC card.
  • Fixed data such as a data copyright management program, a cryptography program based on a crypt algorithm, and user data are stored in [0132] ROM 18 of the data copyright management unit 30 in the first embodiment.
  • Further, a decryption program, a re-encryption program, and a program for generating secret-keys based on a known secret-key algorithm may be stored in [0133] ROM 18.
  • A crypt-key and copyright information are stored in [0134] EEPROM 31. Also, when the copyright management program and the cryptography program are supplied from the outside, such as from a database, they are stored in EEPROM 31, rather than ROM 18. Still, the EEPROM is not necessarily required and may be omitted.
  • Either one of the first crypt-key or the second crypt-key supplied from the key control center or copyright management center, and the data copyright management system program are stored in [0135] RAM 19. However, information such as software and the user data required by MPU 46 in the user terminal 20 are supplied to the user terminal 20 by the software, and stored in RAM of the user terminal 20. Besides either one of the first crypt-key or the second crypt-key supplied from the key control center or the copyright management center, and the data copyright management system program are stored in RAM of the user terminal unit 20.
  • The process of decryption and re-encryption are shared by [0136] MPU 46 of the main body of the user terminal 20 and CPU 16 of the data copyright management unit 30; one re-encrypts data and the other decrypts data, and only the processed results of the data copyright management unit 30 are transferred to the user terminal.
  • The specific internal structure of the data [0137] copyright management unit 30 in FIG. 3 is shown in FIG. 4.
  • A microcomputer (CPU) [0138] 16, read only semiconductor memory (ROM) 18, write/read memory (RAM) 19, and electrically erasable programmable read-only memory (EEPROM) 31 are enclosed in the data copyright management unit 30, and are connected to microcomputer bus 17 of the microcomputer 16. The microcomputer bus 17 is further connected to system bus 22 of the user terminal 20 main body.
  • The data copyright management system program, crypt algorithm, and the user information are stored in the read only [0139] semiconductor memory 18.
  • The electrically erasable programmable read-[0140] only memory 31 is divided internally into three areas. In the first area 35, the first public-key Kb1, the first private-key Kv1, the second public-key Kb2, and the second private-key Kv2 are stored.
  • In the [0141] second area 36, the copyright management program P, the first secret-key Ks1 for use as a permit key for primary use (for example, as a view permit, store permit, copy permit, edit permit, or transfer permit), and the second secret key Ks2 for use as a permit key for secondary use (for example, as a view permit, store permit, copy permit, edit permit or transfer permit) are stored. However, in some cases where the copyright management program P is not supplied from the outside, but preset in the user side, the copyright management program P is stored in the read only memory 18, rather than in the second area 36 of the electrically erasable programmable read-only memory 31.
  • In the [0142] third area 37, an access control key and copyright information such as the original copyright information and the secondary copyright information are stored.
  • As in the case of the electrically erasable programmable read-[0143] only memory 31, the inside of the write/read memory 19 is divided into three areas. In the first area 32, the first public-key Kb1, the first private-key Kv1, and the second public-key Kb2 are stored during operation. In the second area 33, the first secret-key Ks1 for use as a permit key in the primary utilization (for example, as a view permit, store permit, copy permit, edit permit, or transfer permit) is stored during operation. In the third area 34, an access control key is stored during operation.
  • The user terminal attached with the data copyright management apparatus is reliable since it performs all of the processes for utilizing data within the data copyright management unit related to the present invention, so that only the results are transferred to the user terminal for various utilization. [0144]
  • When picture data containing large amounts of information is transferred/received, original data is transmitted after being compressed to reduce the amount of data. The compressed data is expanded after reception to utilize it. In this case, the data copyright may be managed by encryption. [0145]
  • FIG. 5 is an example of data copyright management flow when encrypted data of a digital picture is compressed according to the JPEG or MPEG standard. The flow is divided into transmitting side flow and receiving side flow with a transmit line in between. The receiving side flow is further divided into display flow and storage flow. [0146]
  • The signal process on the transmitting side consists of a process of preparing a digital picture and a process of processing the digital picture prepared. In this process, if an original picture is the digital picture [0147] 41, it proceeds to next process. If an original picture is an analog picture 40, a digitizing process 42 is performed.
  • The digital picture is compressed ([0148] 43) first according to a given standard such as JPEG or MPEG, then the compressed digital data is encrypted (44) using the first secret-key.
  • The picture data signal processed on the transmitting side is transmitted through [0149] transmission line 45, such as a satellite broadcasting wave, terrestrial broadcasting wave, CATV wave, or public telephone line/ISDN line. Further, recording media such as a digital video tape, a digital video disk, or CD-ROM may be used as the transmission line.
  • Thus, the picture data transmitted to the receiving side is decrypted ([0150] 46) first using the first secret key, then the compressed picture data is expanded (47) to be displayed (49). When the display is a digital data display unit, it is directly displayed, however, when it is an analog data display unit, it is converted to analog data 48.
  • When data is stored in hard disk, flexible disk, optical magnetic disk, writable video disk or the like, it is stored after being re-encrypted ([0151] 50) using the second secret key.
  • In redisplaying the picture data that has been re-encrypted and stored, it is re-decrypted ([0152] 52) using the second secret key and displayed (49). If the display unit is a digital data display unit, it is directly displayed. However, if it is an analog data display unit, it is converted to analog data (48).
  • For data compression/expansion means and the transmission path, appropriate ones compatible with the data are used. [0153]
  • FIG. 6 shows an example of the data copyright management system disclosed in the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747). This system uses the secret-key system as a cryptosystem. [0154]
  • In the case of this system, [0155] reference numeral 1 represents a database in which text data, binary data serving as a computer graphic display or a computer program, digital audio data, and digital picture data are stored by being encrypted. Reference numeral 14 represents a space satellite such as a communications satellite or a broadcasting satellite. Reference numeral 15 represents a data recorder such as a CD-ROM or a flexible disk. Reference numeral 2 represents a communication network such as a public telephone line offered by a communication enterprise or a CATV line offered by a cable television enterprise. Reference numeral 4 represents a primary user terminal. Reference numeral 16 represents a key control center for managing a secret-key, and reference numeral 17 represents a copyright management center for managing a data copyright.
  • [0156] Reference numerals 5, 6, and 7 represent a secondary user terminal, a tertiary user terminal, and n-order user terminal respectively. Reference numerals 11, 12, and 13 represent a secondary disk, tertiary disk, and n-order disk serving as a recording medium such as a flexible disk or CD-ROM respectively. The symbol “n” represents an optional integer. When “n” is larger than four, a corresponding user terminal and a corresponding disk are arranged between the tertiary user terminal 6 and the n-order user terminal 7 and between the tertiary disk 12 and the n-order disk 13 respectively.
  • In the above arrangement, the [0157] database 1, key control center 16, copyright management center 17, primary user terminal 4, secondary user terminal 5, tertiary user terminal 6, and n-order user terminal 7 are connected to the communication network 2.
  • In FIG. 6, the path shown by a broken line is a path of encrypted data; a path shown by a solid line is a path of requests from each user terminal; and a path shown by a one-dot chain line is a path through which authorization information corresponding to a utilization request and a secret-key are transferred. [0158]
  • Each user who uses this system has been previously entered in the database system. When the user is entered in the system, database utilization software is provided to the user. The database utilization software includes not only normal communication software such as a data communication protocol, but also a program for running a copyright management program. [0159]
  • Original data M[0160] 0 of text data, binary data as a computer graphic display or computer program, digital audio data, or digital picture data stored in the database 1 or data recording medium 15 is supplied via one-way communication to the primary user terminal 4 via the communication network 2, satellite 14 or recording medium 15. In this case, the data is encrypted with a first secret-key Ks1:
  • Cm0ks1=E(Ks1, M0).
  • Even if data is provided with advertisement to be offered free of charge, encryption is necessary in order to protect the copyright. [0161]
  • It is disclosed in the Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037) that the data utilization includes not only displaying of data which is the most basic usage, but also storing, editing, copying, and transferring of the data. A use permit key is prepared which corresponds to one or several forms of usage, and its management is executed by the copyright management program. [0162]
  • Moreover, it is described there that data is encrypted again by the copyright management program for uses such as storing, copying, editing and transferring of the data other than displaying of the data and displaying for editing the data. [0163]
  • In other words, the data whose copyright is claimed is encrypted to be distributed. Only when the data is displayed or displayed for editing the data in a user terminal having a copyright treatment function, is the data decrypted to a plaintext format. [0164]
  • This system disclosed in Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) uses the method described in the Japanese Patent Application No. 64889/1994 (U.S. patent application Ser. No. 08/416,037). [0165]
  • A primary user who desires primary utilization of the supplied encrypted data Cm[0166] 0ks1 requests for primary utilization of the encrypted original data Cm0ks1 by designating the original data name or the original data number to the key control center 16 via the communication network 2 from the primary user terminal 4. In this case, the primary user must present information Iu1 for the primary user to the key control center 16.
  • The [0167] key control center 16, receiving the primary utilization request from the primary user terminal 4, transfers first secret-key Ks1 for decrypting the encrypted original data Cm0ks1 obtained from the database 1 by the primary user and second secret-key Ks2 for re-encrypting the decrypted original data M0 or edited data M1 from the original data, together with a copyright management program P via the communication network 2 to the primary user terminal 4.
  • In the [0168] primary user terminal 4, receiving the first secret-key Ks1 as a decryption key and the second secret-key Ks2 as an encryption/decryption key, the encrypted original data Cm0ks1 is decrypted by the first secret-key Ks1 using the copyright management program P:
  • M0=D(Ks1, Cm0ks1)
  • to use the decrypted original data M[0169] 0 directly or data M1 as edited.
  • When the data M, which is the original data M[0170] 0 or edited data M1, is stored in a memory or a built-in hard disk drive of the primary user terminal 4, only the primary user can use the data. However, when the data M is copied to the external recording medium 11, such as a flexible disk, or transmitted to the secondary user terminal 5 via the communication network 2, a copyright problem due to secondary utilization occurs.
  • When the original data M[0171] 0 obtained by the primary user is directly copied and supplied to a secondary user, the copyright of the primary user is not effected on the data M0 because the original data M0 is not modified at all. However, when the primary user produces new data M1 by editing the obtained data M0 or by using means such as combination with other data, the copyright of the primary user, i.e., secondary exploitation right occurring from secondarily utilizing original data, is effected on the data M1.
  • Similarly, when a secondary user produces new data M[0172] 2 by editing the original data M0 or edited data M1 obtained from the primary user, or by means such as combination with other data, the copyright of the secondary user, i.e., secondary exploitation right of the secondary user, is also effected.
  • In this system, to deal with the copyright problem, the data M is encrypted by the second secret-key Ks[0173] 2 using the copyright management program P when the data M is stored, copied, or transferred. Thereafter, in the primary user terminal 4, the data M is decrypted and encrypted by the second secret-key Ks2:
  • Cmks2=E(Ks2, M)
  • M=D(Ks2, Cmks2).
  • It is free in principle for the primary user to display and edit data to obtain edited data. In this case, however, it is possible to limit the repetitions of the operation by the copyright management program. [0174]
  • When the data M is copied to the [0175] external recording medium 11 or transmitted via the communication network 2, the first secret-key Ks1 and the second secret-key Ks2 in the primary user terminal 4 are disused by the copyright management program P. Therefore, when reusing the data M, the primary user makes a request for utilization of the data M to the key control center 16 to again obtain the second secret-key Ks2.
  • The fact that the user receives the regrant of the second secret-key Ks[0176] 2 represents secondary utilization of data in which the data M has been copied to the external recording medium 11 or transferred to the secondary user terminal 5 via the communication network 2. Therefore, this fact is entered in the copyright management center 17 from the key control center 16, and subsequent secondary utilization becomes possible.
  • The data M is moved from the [0177] primary user terminal 4 to the secondary user terminal 5 by the external recording medium 11 or the communication network 2. When the data M is copied to the external recording medium 11 or transmitted via the communication network 2, it is encrypted by the second secret-key Ks2.
  • When the data M is copied to the [0178] external recording medium 11 or transmitted via the communication network 2, the first secret-key Ks1 and the second secret-key Ks2 in the primary user terminal 4 are disused. At this time, unencrypted primary user information Iu1 is added to the encrypted data Cmks2 stored in the primary user terminal 4 and when the encrypted data Cmks2 is transferred to the secondary user, the primary user information Iu1 is also transferred.
  • A secondary user who desires secondary utilization of the encrypted data Cmks[0179] 2 copied or transmitted from the primary user must designate the original data name or data number to the copyright management center 17 via the communication network 2 from the secondary user terminal 5, and also present the secondary user information Iu2 to the center 17 to request secondary utilization of the data Cmks2. In this time, the secondary user further presents the unencrypted primary user information Iu1 added to the encrypted data Cmks2 in order to clarify the relationship with the primary user.
  • The [0180] copyright management center 17 confirms, in accordance with the presented primary user information Iu1, that the primary user has received a regrant of the second secret-key Ks2 for secondary utilization of the data, and then, transfers the second secret-key Ks2 serving as a decryption key and the third secret-key Ks3 serving as an encryption/decryption key to the secondary user terminal 5 via the communication network 2.
  • In the [0181] secondary user terminal 5 receiving the second secret-key Ks2 and the third secret-key Ks3, the encrypted data Cmks2 is decrypted by the copyright management program P using the second secret-key Ks2.
  • M=D(Ks2, Cmks2)
  • and is secondarily utilized, e.g. displayed or edited. [0182]
  • In this system, the [0183] key control center 16 processes primary utilization requests, and the copyright management center 17 processes secondary utilization requests. While the data M supplied to a primary user is encrypted by the first secret-key Ks1, the data M supplied to a secondary user is encrypted by the second secret-key Ks2. Moreover, the first secret-key Ks1 and the second secret-key Ks2 are transferred to the primary user as crypt keys from the key control center 16.
  • Therefore, if the secondary user, instead of the primary user, falsely issues a request for primary utilization to the [0184] key control center 16, the first secret-key Ks1 for decryption and the second secret-key Ks2 for encryption/decryption are transferred to the secondary user. However, the secondary user cannot decrypt the encrypted data Cmks2 by using the first secret-key Ks1 transferred as a decryption key.
  • Therefore, it is impossible to falsely issue a request for data utilization. Thus, not only the original copyright of data but also the copyright of the primary user on the data is protected. [0185]
  • When storing, copying, or transferring of the data M, other than displaying and displaying for editing is performed in the [0186] secondary user terminal 5, the data M is encrypted by the copyright management program P using the third secret-key Ks3 and thereafter, the data is decrypted and encrypted by the third secret-key Ks3:
  • Cmks3=E(Ks3, M)
  • M=D(Ks3, Cmks3).
  • It is free in principle for the secondary user to display and edit data to obtain the edited data M[0187] 2. In this case, it is possible to limit the repetitions of the operation by the copyright management program P.
  • When the data M is copied to the [0188] external recording medium 12 or transmitted via the communication network 2, the second secret-key Ks2 and the third secret-key Ks3 in the secondary user terminal 5 are disused by the copyright management program P. Therefore, when reusing the data M, the secondary user makes a request for the utilization of the data to the copyright management center 17 to again obtain the third secret-key Ks3.
  • The fact that the secondary user receives a regrant of the third secret-key Ks[0189] 3 represents secondary utilization of data in which the data M has been copied to the external recording medium 12 or transmitted to the tertiary user terminal 6 via the communication network 2. Therefore, this fact is entered in the copyright management center 17 and allows subsequent data use.
  • The data M is moved from the [0190] secondary user terminal 5 to the tertiary user terminal 6 by the external recording medium 12 or by the communication network 2. When the data M is copied to the external recording medium 12 or transferred via the communication network 2, it is encrypted by the third secret-key Ks3.
  • When the data M is copied to the [0191] external recording medium 12 or transmitted to the tertiary user terminal 6 via the communication network 2, the second secret-key Ks2 and the third secret-key Ks3 in the secondary user terminal 5 are disused. In this case, the unencrypted secondary user information Iu2 is added to the encrypted data Cmks3 stored in the secondary user terminal 5, and when the encrypted data Cmks3 is transferred to a tertiary user, the secondary user information Iu2 is also transferred.
  • In adding each user information to data, there are two cases: a case in which all information is added to data whenever it is copied or transmitted and another in which the history updated whenever the data is copied or transmitted is stored in the copyright management center. [0192]
  • A tertiary user who desires tertiary utilization of the encrypted data Cmks[0193] 3 copied or transmitted from the secondary user must designate the original data name or number to the copyright management center 17 from a tertiary user terminal 6 via the communication network 2, and also present the tertiary user information Iu3 to request tertiary utilization of the data. At this time, the tertiary user further presents the unencrypted secondary user information Iu2 added to the encrypted data Cmks3 in order to clarify the relationship with the secondary user.
  • The [0194] copyright management center 17 confirms that the secondary user has received a regrant of the third secret-key Ks3 for preparation of tertiary utilization of data, in accordance with the presented secondary user information Iu2, and then transfers the third secret-key Ks3 serving as a decryption key and fourth secret-key Ks4 serving as an encryption/decryption key to the tertiary user terminal 6 via the communication network 2.
  • In the [0195] tertiary user terminal 6 receiving the third secret-key Ks3 and the fourth secret-key Ks4, the encrypted data Cmks3 is decrypted using the third secret-key Ks3 by the copyright management program P:
  • M=D(Ks3, Cmks3)
  • and is tertiarily utilized, e.g. displayed or edited. [0196]
  • In this system, the data M supplied to the primary user is encrypted by the first secret-key Ks[0197] 1, and the data M supplied to the secondary user is encrypted by the second secret-key Ks2, and the data M supplied to the tertiary user is encrypted by the third secret-key Ks3.
  • Therefore, if the tertiary user, instead of the primary user, falsely issues a request for primary utilization from the [0198] key control center 16, the first secret-key Ks1 for decryption and the second secret-key Ks2 for encryption/decryption are transferred to the tertiary user. However, it is impossible to decrypt the encrypted data Cmks3 by the first secret-key Ks1 transferred as a decryption key. Moreover, if the tertiary user, instead of the secondary user, falsely issues a request for secondary utilization to the copyright management center 17, the second secret-key Ks2 and the third secret-key Ks3 are transferred to the tertiary user as a decryption key and an encryption/decryption key respectively. However, it is impossible to decrypt the encrypted data CmKs3 by the second secret-key Ks2 transferred as a decryption key.
  • Therefore, it is impossible to falsely issue a request for data utilization. As a result, not only the original copyright of the data, but also the copyrights of the primary and secondary users on the data are protected. The same procedure is applied to quaternary and subsequent utilization. [0199]
  • In the above described system, the [0200] database 1, key control center 16, and copyright management center 17 are separately arranged. However, it is not always necessary to arrange them separately. It is also possible to set all of them or two of them integrally.
  • Moreover, it is also possible for the primary user to issue a request for a regrant of the second secret-key not to the [0201] key control center 16 but to the copyright management center 17.
  • In FIGS. [0202] 7(a) and 7(b), signal process flow in a data editing method of digital video or digital audio is shown. An edit flow as generally processed is shown in 7(a). An edit flow which can avoid deterioration of signals is shown in 7(b).
  • In the edit flow shown in [0203] 7(a), signals supplied as digital signals 61 are converted to analog signals (62). The analog signals are then edited (63) while being displayed (64), and the edited analog signals are re-digitized (65) to be stored, copied, and transferred (66).
  • Though this process may be simple, it can not avoid the deterioration of signals since the signal is edited in analog form and re-digitized after completion of editing. [0204]
  • In the edit flow shown in [0205] 7(b), digital signals 61 are converted to analog signals (62) to be displayed. While the analog signals (62) are used in editing (63), the analog signals are used only for displaying (64) rather than for storing, copying, transferring.
  • Signals for storage, copy, and transfer are edited ([0206] 67), copied, and transferred (66) in the form of digital signals 61 corresponding to signals displayed in analog.
  • In the case of this edit flow, there is no deterioration of signals since digital signals which are stored, copied, and transferred are never converted to analog signals. [0207]
  • FIGS. [0208] 8(a) and 8(b) illustrate flow examples when editing encrypted data to which a signal process of the data editing method of digital video or digital audio shown in FIGS. 7(a) and 7(b) is applied. FIG. 8(a) shows a simplified signal processing flow, and FIG. 8(b) shows a signal processing flow which allows sufficient copyright management.
  • In the signal processing flow shown in [0209] 8(a), the original data (71) Cm0ks1, encrypted using the first secret-key Ks1 and supplied, is initially decrypted (72) using the first secret key Ks1:
  • M0=D(Ks1, Cm0ks1),
  • and the decrypted data M[0210] 0 is then edited (73) while being displayed (74). The data M1 completed editing is re-encrypted (75) using the second secret key Ks2:
  • Cm1ks2=E(Ks2, M1)
  • and stored, copied, and transferred ([0211] 76).
  • Though the process may be simple, copyright can not be properly managed since there is a possibility that the decrypted data might be stored, copied, or transferred due to the data editing process in decrypted form. [0212]
  • On the other hand, in the signal processing flow shown in [0213] 8(b), the original data (71) Cm0ks1, encrypted using the first secret key Ks1, is decrypted (72) using the first secret-key Ks1:
  • M0=D(Ks1, Cm0ks1)
  • and the decrypted data M[0214] 0 is displayed (74).
  • Meanwhile, the encrypted data Cm[0215] 0ks1 is edited (73), lead by the decrypted data M0, and the original data M0 for storage or the edited data M1 are re-encrypted using the second secret-key:
  • Cm0ks2=E(Ks2, M0)
  • Cm1ks2=E(Ks2, M1),
  • and the encrypted data Cm[0216] 0ks2 or Cm1ks2 is stored, copied, and transferred (76).
  • Without being decrypted corresponding to the decrypted and displayed data, it is edited ([0217] 77) in the encrypted form, and the editing program and the data still encrypted are used to store, copy or transfer (76).
  • In this signal processing flow, the decrypted data are never stored, copied, or transferred since the data for storing, copying, transferring remain encrypted. [0218]
  • In the data copyright management system which utilizes the data copyright management apparatus of the present invention, when data is decrypted for use when the obtained encrypted data are displayed/edited, data copyright is managed by encrypting data when obtained or edited data is stored/copied/transferred. [0219]
  • However, the data [0220] copyright management unit 15 of the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) shown in FIG. 2 and the data copyright management unit 30 of the present invention described in FIG. 3 can perform only one process of decryption of encrypted data or encryption of decrypted data. When decrypted or edited data is stored/copied/transferred, therefore, it is necessary to store data in the user terminal or RAM of the data copyright management apparatus to re-encrypt the stored data afterwards. Thus, there is a possibility that decrypted or edited data might be lost due to accident or misoperation. This also limits the volume of data that can be processed.
  • With the exception of some high-class MPU, general MPU used in personal computers does not take into account the multiprocessor configuration which allows concurrent operation of plural microcomputers. Therefore, plural operations can not be performed at the same time, although accessory units are connected to the system bus of the personal computer. [0221]
  • Accordingly, to connect the data [0222] copyright management unit 15 shown in FIG. 2 or the data copyright management unit 30 shown in FIG. 3 to the system bus 22 of the user terminal 20 does not provides multiprocessor function that enables concurrent operation of MPU 21 or 46 and CPU 16, and the processes of decryption of encrypted data and re-encryption of decrypted data are performed alternately, not concurrently. Thus, a large amount of data can not be processed since the data to be encrypted and decrypted is limited by the capacity of RAM. Further, it is impossible to increase the processing speed, even if the amount of data is not large.
  • On the other hand, in the data copyright management system described in the Japanese Patent Application, encrypted data that is obtained is decrypted to use for displaying or editing, and when the obtained or edited data is stored, copied, or transferred, it is re-encrypted to prevent unauthorized use of the data. Therefore, it is desirable that the apparatus in the data copyright management system of the present invention perform not only decryption but also re-encryption of data at the same time. [0223]
  • Recently, a PCI (Peripheral Component Interconnect) bus has attracted attention as a means for implementing a multiprocessor configuration of a typical personal computer. [0224]
  • The PCI bus is a bus for external connection connected to a system bus of a personal computer via a PCI bridge. The PCI bus allows implementation of a multiprocessor configuration. [0225]
  • FIG. 9 shows another embodiment of this invention, which is a configuration of data copyright management apparatus using a PCI bus and the same configuration of data [0226] copyright management unit 30 as shown in FIG. 3, that is, a computer configuration having a CPU 16, a local bus 17 for the CPU 16, and ROM 18, RAM 19, and EEPROM 31 connected to the local bus 17.
  • In a [0227] user terminal 20, a PCI bus 81 is connected to a system bus 22 for a microprocessor 21 via a PCI bridge 82, and the local bus 17 for the CPU 16 of a data copyright management apparatus 80 is connected to the PCI bus 81. Also connected to the system bus 22 of the user terminal 20 are a communications device (COMM) 23 which receives data from external databases and transfers data to the external of the terminal, a CD-ROM drive (CDRD) 24 which reads data supplied on CD-ROM, a flexible disk drive (FDD) 25 which copies received or edited data to supply to the external of terminal, and hard disk drive (HDD) 26 used for storing data. COMM 23, CDRD 24, FDD 25, and HDD 26 may also be connected to the PCI bus 81. While ROM, RAM etc., of course, are connected to the system bus 22 of the user terminal, these are not shown in FIG. 9.
  • Configurations and operations of other parts are the same as the embodiment shown in FIG. 3, and further explanation of them will be omitted. [0228]
  • A decryption task is performed by the [0229] MPU 21 of the user terminal 20 and a re-encryption task is performed by the CPU 16 of the data copyright management apparatus 80 at the same time, and vice versa. Since the configuration of the MPU21 and CPU 16 in this embodiment is a multiprocessor configuration which performs parallel processing with a PCI bus, high processing speed can be achieved.
  • Other typical means for attaching external devices to a personal computer include SCSI (Small Computer System Interface), which is used for the connection of an external storage medium such as hard disk drives and CD-ROM drives. [0230]
  • Up to eight devices, including the personal computer itself to which the SCSI is attached, can be connected to the SCSI, and a plurality of computers may be included in the eight devices. Each of these computers can play an equivalent role; in other words, the SCSI functions not only as an interface, but also as a multiprocessor bus. [0231]
  • Taking advantage of this function of the SCSI, yet another embodiment connects a data [0232] copyright management apparatus 85 to the system bus 22 of a user terminal 20 via SCSI 86 (hereinafter called the “SCSI bus,” for clear understanding) instead of the PCI bus 81 in the embodiment shown in FIG. 9.
  • FIG. 10 shows a configuration block diagram of a data copyright management apparatus of this embodiment which uses the SCSI bus according to the present invention. [0233]
  • In FIG. 10, the configuration of the data [0234] copyright management apparatus 85 is the same as the data copyright management apparatus shown in FIG. 3; that is, the apparatus has a CPU 16, a local bus 17 for the CPU 16, and ROM 18, RAM 19, and EEPROM 31 connected to the local bus 17.
  • On the other hand, an [0235] SCSI bus 86, which is controlled by an SCSI controller (SCSICONT) 87, is connected to a system bus 22 for a microprocessor 21 of a user terminal 20, and the local bus 17 for the CPU 16 of a data copyright management apparatus 85 is connected to this SCSI bus 86.
  • Also connected to the [0236] system bus 22 of the user terminal 20 are a communications device (COMM) 23 which receives data from external databases and transfers data external to the terminal, a CD-ROM drive (CDRD) 24 which reads data supplied on CD-ROM, a flexible disk drive (FDD) 25 which copies received or edited data to supply external to the terminal, and hard disk drive (HDD) 26 used for storing data. COMM 23, CDRD 24, FDD 25, and HDD 26 may also be connected to the SCSI bus 86. While ROM, RAM etc., of course, are connected to the system bus 22 of the user terminal, these are not shown in FIG. 10.
  • Configurations and operations of other parts are the same as the embodiment shown in FIG. 3, and further explanation of them will be omitted. [0237]
  • A decryption task is performed by the [0238] MPU 21 of the user terminal 20, and a re-encryption task is performed by the CPU 16 of the data copyright management apparatus 85 at the same time, and vice versa. Since the configuration of the MPU 21 and CPU 16 in this embodiment is a multiprocessor configuration which performs parallel processing with an SCSI bus 86, high processing speed can be achieved.
  • Other means for implementing a multiprocessor configuration, such as SCI (Scaleable Coherent Interface), may be used, and, if possible, the microprocessors may be connected with each other without using a bus. [0239]
  • Data to be managed by the data copyright management apparatus of the present invention includes, in addition to text data, graphic data, computer programs, digital audio data, JPEG-based still picture data, and MPEG-based moving picture data. [0240]
  • The above-mentioned multiprocessor configuration of the data [0241] copyright management apparatus 80 of the embodiment shown in FIG. 9 and the data copyright management apparatus 85 of the embodiment shown in FIG. 10 is implemented by connecting the apparatus to the system bus 22 of the microprocessor 21 in the user terminal 20 via a PCI bus or a SCSI bus. In such a multiprocessor configuration, the MPU 21 of the user terminal 20 must also control the overall system. For relatively slow-speed and small data such as text data and graphic data, data copyright management with encryption and re-encryption can be performed by the multiprocessor configuration using the MPU 21 and CPU 16. For JPEG-still-picture-based moving picture data and MPEG1 or MPEG2-based moving picture data, however, data copyright management by such configuration is considerably difficult to perform because a large amount of data must be processed quickly.
  • To deal with this problem, a multiprocessor system is configured by connecting a first data [0242] copyright management apparatus 80 and a second data copyright management apparatus 90 to a PCI bus 81 in the embodiment shown in FIG. 11.
  • The configuration of the second data [0243] copyright management apparatus 90 is the same as that of the first data copyright management apparatus 80; that is, the apparatus comprises a CPU 91, a local bus 94 for the CPU 91, and ROM 92, RAM 93, and EEPROM 95 connected to the local bus 94.
  • In this embodiment, the first data [0244] copyright management apparatus 80 decrypts encrypted data and the second data copyright management apparatus 90 re-encrypts decrypted data.
  • Fixed information, such as software for utilizing databases and user data Iu, are stored in the [0245] ROM 18 of the first data copyright management apparatus 80 decrypting encrypted data. A first crypt-key Ks1 for decryption and data copyright management system program Ps supplied by a key control center or copyright management center are stored in the EEPROM 31.
  • Similarly, fixed information, such as software for utilizing databases and user data, are stored in the [0246] ROM 92 of the second data copyright management apparatus 90 re-encrypting decrypted data, and a second crypt-key Ks2 and data copyright management system program Ps supplied by a key control center or copyright management center are stored in the EEPROM 95.
  • In this multiprocessor configuration, SCSI or SCI may be used, and, if possible, the microprocessors may be connected to each other without using a bus. [0247]
  • In the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) shown in FIG. 2 and in the embodiment of the present invention described with reference to FIG. 3, the communications device (COMM) [0248] 23, to which encrypted data is supplied, and the CD-ROM drive (CDRD) 24 are connected to the system bus of the user terminal 20. To decrypt encrypted data, therefore, the encrypted data must be transmitted by way of the system bus of the user terminal 20 and the local bus of the data copyright management apparatus, and consequently, the processing speed can be slowed. This is true for a configuration in which those attached devices are connected to a PCI bus or SCSI bus.
  • In another embodiment of the present invention shown in FIG. 12, a [0249] communications device 23 to which encrypted data is supplied and a CD-ROM drive 24 are connected to a local bus 17 of a data copyright management apparatus 97 for decryption, to prevent processing speed from being slowed.
  • The data [0250] copyright management apparatus 97 of the embodiment shown in FIG. 12 is a data copyright management apparatus for decryption, and its configuration is essentially the same as that of the data copyright management apparatus 30 of the embodiment shown in FIG. 3; that is, the computer system has a CPU 16, a local bus 17 for CPU 16, and ROM 18, RAM 19 and EEPROM 31 connected to the local bus 17, and a communication device COMM 23 and a CD-ROM drive CDRD 24 connected to the local bus 17.
  • Fixed information, such as a copyright management program P, a cryptography program Pe based on a crypt algorithm, and user data Iu, are stored in the [0251] ROM 18.
  • Copyright information Ic is stored in the [0252] EEPROM 31. If the copyright management program and cryptography program are supplied externally, such as from databases, those programs are stored in the EEPROM 31, rather than in the ROM 18.
  • A crypt-key Ks[0253] 1 for decryption and a data copyright management system program Ps supplied from a key control center or copyright management center are stored in the EEPROM 31.
  • Encrypted data supplied from the [0254] COMM 23 or CDRD 24 is decrypted by the data copyright management apparatus 97 and transferred to a user terminal 95.
  • While the above-mentioned data [0255] copyright management apparatus 80 and 90 of the embodiment (shown in FIG. 11) are described as being configured separately, these apparatus, of course, can be configured as a unit.
  • FIG. 13 shows another embodiment of a data copyright management apparatus which is extended from the data [0256] copyright management apparatus 97 described with reference to FIG. 12.
  • In the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) shown in FIG. 2 and the embodiment described with reference to FIG. 3, the storage medium, such as [0257] HDD 26, for storing re-encrypted data, are connected to the system bus 22 of the user terminal 20. To store re-encrypted data, therefore, the encrypted data must be transmitted by way of the system bus 22 of the user terminal 20 and the local bus 17 of the data copyright management unit 15 or data copyright management unit 30, and consequently, processing speed can be slowed. This is true for a configuration in which those attached devices are connected to a PCI bus or SCSI bus.
  • In the data [0258] copyright management apparatus 100 of the embodiment shown in FIG. 13, in addition to the communications device COMM 23 and the CD-ROM drive CDRD 24 connected to the local bus 17 in the data copyright management apparatus 97 for decryption in the embodiment shown in FIG. 12, storage devices such as HDD 26 for storing re-encrypted data are connected to the local bus 94 of the data copyright management apparatus 101 for re-encryption.
  • The configuration of the data [0259] copyright management apparatus 101 for re-encryption in the embodiment shown in FIG. 13 is essentially the same as that of the data copyright management unit 30 shown in FIG. 3; that is, the computer system has a CPU 91, a local bus 94 for the CPU 91, and ROM 92, RAM 93 and EEPROM 95 connected to the local bus 94, and HDD 26 is connected to the local bus 94.
  • Fixed information, such as a copyright management program P, a cryptography program Pe based on a crypt algorithm, and user data Iu, are stored in the [0260] ROM 92.
  • Copyright information is stored in the [0261] EEPROM 95. If the copyright management program and cryptography program are supplied externally such as from databases, those programs are stored in the EEPROM 95 rather than the ROM 92. A crypt-key Ks2 for re-encryption and a data copyright management system program Ps supplied from a key control center or copyright management center are stored in the EEPROM 95. Data re-encrypted by the copyright management apparatus 101 for re-encryption is stored in HDD 26.
  • While the above-mentioned data [0262] copyright management apparatus 100 and 101 of the embodiment shown in FIG. 13 are described as being configured separately, these apparatus, of course, can be configured as a unit.
  • Digital data includes, in addition to text data, graphic data, computer programs, digital sound data, JPEG-based still picture data, and MPEG-based moving picture data. [0263]
  • A typical user terminal which utilizes copyrighted data is a computer apparatus such as a personal computer. Other apparatus which utilize such data are receivers such as television sets, set-top boxes used with those receivers, digital recording apparatus such as digital video tape-recorders, digital video disk recorders, digital audio tapes (DAT) which store digital data, and personal digital assistants (PDA). [0264]
  • The data copyright management apparatus shown in FIG. 2 which is configured as an expansion board, IC card, or PC card and described in the Japanese Patent Application No. 237673/1994 (U.S. patent application Ser. No. 08/536,747) or the data copyright management apparatus shown in FIG. 3 may be used by attaching it to a user terminal which is a computer, receiver, set-top box, digital recording medium, or PDA. However, it is desirable that a data copyright management apparatus is factory-installed in the user terminal to eliminate labor and possible failure arising from the attachment of the apparatus. [0265]
  • To accomplish this, in each embodiment of the present invention, a data copyright management apparatus is implemented in the form of a monolithic IC, hybrid IC, or built-in subboard and is incorporated in a user terminal such as computer apparatus or personal computers, or receivers such as television sets, set-top boxes used with those receivers, digital recording medium such as digital video tape recorders, digital video disk recorders, and digital audio tape (DAT) which store digital signals, or personal digital assistants (PDA). [0266]
  • Further, the apparatus for managing data copyright described above can be applied not only to the data utilization but also to the handling of the digital cash and video conference systems. [0267]
  • The digital cash system which has been proposed so far is based on a secret-key cryptosystem. The encrypted digital cash data is transferred from a bank account or a cash service of a credit company, and is stored in the IC card so that a terminal device for input/output is used to make a payment. The digital cash system which uses this IC card as an electronic cash-box can be used at any place such as shops or the like as long as the input/output terminal is installed. However, the system cannot be used at places such as homes or the like where no input/output terminal is installed. [0268]
  • Since the digital cash is encrypted data, any device can be used as the electronic cash-box which stores digital cash data, in addition to the IC card, as long as the device can store encrypted data and transmit the data to the party to which the payment is made. As a terminal which can be specifically used as the electronic cash-box, there are personal computers, intelligent television sets, portable telephone sets such as a personal information terminal, personal handy phone system (PHS), intelligent telephone sets, and PC cards or the like which have an input/output function. [0269]
  • Trades in which such terminals are used as an electronic cash-box for a digital cash can be actualized by replacing, in the configuration of the data copyright management system, the database with a customer's bank, a first user terminal with a customer, the secondary user terminal with a retailer, the copyright control center with a retailer's bank, and a tertiary user terminal with a wholesaler or a maker. [0270]
  • An example of the trading system will be explained in FIG. 14 in which the digital cash is transferred via a communication network. [0271]
  • The example uses the configuration of the data copyright management system shown in FIG. 1. In FIG. 14, [0272] reference numeral 111 represents a customer, reference numeral 112 a bank of the customer 111, reference numeral 113 a retail shop, reference numeral 114 a bank of the retail shop 113, reference numeral 115 a maker, reference numeral 116 a bank of the maker 115, reference numeral 2 a communication network such as a public line provided by a communication enterprise or CATV line provided by a cable television enterprise. Customer 111, the customer's bank 112, the retail shop 113, the retail shop's bank 114, the maker 115, the maker's bank 116 can be mutually connected with the communication network 2. In this system, the customer 111 can use a credit company offering cashing service other than banks and he can also interpose an appropriate number of wholesalers between the retail shop and the maker.
  • In addition, [0273] reference numerals 117 and 118 are either IC cards or PC cards in which digital cash data is stored. The cards are used when the communication network is not used.
  • Incidentally, in FIG. 14, the broken line represents a path of encrypted digital cash data, the solid line represents a path of requests from the customer, the retail shop or the maker, and the one-dot chain line represents a path of the secret-key from each bank. [0274]
  • In this example, first secret-key prepared by the customer's [0275] bank 112, the second secret-key generated by the customer, the third secret-key generated by the retail shop, and the fourth secret-key prepared by the maker are used as crypt keys.
  • Further, while the customer's [0276] bank 112, the retail shop's bank 114, and the maker's bank 116 are explained as separate entities, these can be considered as a financial system as a whole.
  • Digital cash management program P for encrypting and decrypting the digital cash data is preliminarily distributed to the [0277] customer 111 and is stored in the user terminal. Further, it is possible to transfer the digital cash management program P together with data every time a trade with the bank is executed. Further, it is desirable to install the common digital cash management program P in all banks.
  • The [0278] customer 111 uses the user terminal to designate the amount of money via the communication network 2 to request to be drawn out from the account of the customer's bank 112 to the bank. At this time, the terminal presents customer information Ic of the customer 111.
  • The customer's [0279] bank 112 which receives the customer's request for drawing out from the account selects or generates the first secret-key Ks1 so that the digital cash data M0 of the amount is encrypted by the first secret-key Ks1:
  • Cm0ks1=E(Ks1, M0)
  • and the encrypted digital cash data Cm[0280] 0ks1 and the first secret-key Ks1 for a decrypting key are transferred to the customer 111, and the customer information Ic and the first secret-key Ks1 are stored.
  • In this case, the first secret-key Ks[0281] 1 can be selected from what is preliminarily prepared by the customer's bank 112, and also may be generated by presentation of the customer information Ic at the time of drawing by the customer using the digital cash management program P on the basis of the customer information Ic:
  • Ks1=P(Ic).
  • Through this means, the first secret-key Ks[0282] 1 can be private for the customer 111. At the same time, it is not necessary to transfer the first secret-key Ks1 to the customer 111 so that the security of the system can be heightened.
  • Further, the first secret-key Ks[0283] 1 can be generated on the basis of the bank information Ibs of the customer's bank 112 or on the basis of the bank information Ibs and the key generation data.
  • The [0284] customer 111 to which the encrypted digital cash data Cm0ks1 and the first secret-key Ks1 are transferred generates second secret-key Ks2 according to any one or both of the customer information Ic and the first secret-key Ks1 using the digital cash management program P, for example:
  • Ks2=P(Ic),
  • and the generated second secret-key Ks[0285] 2 is stored in the user terminal.
  • Further, the [0286] customer 111 uses the first secret-key Ks1 to decrypt the encrypted digital cash data Cm0ks1 with the digital cash management program P:
  • M0=D(Ks1, Cm0ks1),
  • and the content is confirmed. When the decrypted digital cash data M[0287] 0 whose content is confirmed is stored in the user terminal as a cash-box, it is encrypted by the generated second secret-key Ks2 using the digital cash management program P:
  • Cm0Ks2=E(Ks2, M0).
  • The first secret-key Ks[0288] 1 is disused at this time.
  • The [0289] customer 111 who wishes to buy an article from the retail shop 113 decrypts the encrypted digital cash data Cm0ks2 which is stored in the user terminal as a cash-box by the digital cash management program P using the second secret-key Ks2:
  • M0=D(Ks2, Cm0ks2),
  • and the digital cash data M[0290] 1 which corresponds to the necessary amount of money is encrypted by the second secret-key ks2 using the digital cash management program P:
  • Cm1ks2=E(Ks2, M1),
  • and then payment is made by transmitting the encrypted digital cash data Cm[0291] 1ks2 to the user terminal as a cash-box of retail shop 113 via communication network 2. At this time, the customer information Ic is also transmitted to the user terminal of retail shop 113.
  • Further, the residual amount digital cash data M[0292] 2 is encrypted by the second secret-key Ks2 using the digital cash management program P:
  • Cm2ks2=E(Ks2, M2)
  • and stored in the user terminal of [0293] customer 111.
  • The [0294] retail shop 113 to which the encrypted digital cash data Cm1ks2 and the customer information Ic are transferred stores the transferred encrypted digital cash data Cm1ks2 and customer information Ic in the user terminal and presents the customer information Ic to the retail shop's bank 114 via the communication network 2 for confirming the content to request the transmission of the second secret-key Ks2 for decryption.
  • The retail shop's [0295] bank 114 which is requested by the retail shop 113 to transmit the second secret-key Ks2 transmits the request for the transmission of the second secret-key Ks2 and the customer information Ic to the customer's bank 112.
  • The customer's [0296] bank 112 which is requested to transmit the second secret-key Ks2 from the retail shop's bank 114 generates the second secret-key Ks2 according to the customer information Ic by the digital cash management program P in the case where the second secret-key Ks2 is based only on the customer information Ic, or generates the second secret-key Ks2 according to the customer information Ic and the first secret-key Ks1 by the digital cash management program P in the case where the second secret-key Ks2 is based on the customer information Ic and the first secret-key Ks1, and transmits the generated second secret-key Ks2 to the retail shop's bank 114.
  • The retail shop's [0297] bank 114 to which the second secret-key Ks2 is transmitted from the customer's bank 112 transmits the second secret-key Ks2 to the retail shop 113 via the communication network 2.
  • The [0298] retail shop 113 to which the second secret-key Ks2 is transferred decrypts the encrypted digital cash data Cm1ks2 by the second secret-key Ks2 using the digital cash management program P:
  • M1=D(Ks2, Cm1ks2)
  • and, after confirming the amount of money, forwards the article to the [0299] customer 111.
  • Incidentally, in this case, the [0300] retail shop 111 can directly request the transfer of the second secret-key Ks2 to the customer's bank 112 instead of the retail shop's bank 114.
  • In case where the digital cash received by the [0301] retail shop 113 is deposited in the account of the retail shop's bank 114, the customer information Ic is transferred to the retail shop's bank 114 together with the encrypted digital cash data Cm1ks2 via the communication network 2.
  • The retail shop's [0302] bank 114 to which the encrypted digital cash data Cm1ks2 and the customer information Ic are transferred requests the transfer of the second secret-key Ks2 to the customer's bank 112 by transmitting the customer information Ic.
  • The customer's [0303] bank 112, which is requested to transfer the second secret-key Ks2 from the retail shop's bank 114, generates the second secret-key Ks2 according to the customer's information Ic by the digital cash management program P when the second secret-key Ks2 is based only on the customer's information Ic, or generates the second secret-key Ks2 according to the customer's information Ic and the first secret-key Ks1 by the digital cash management program P when the second secret-key Ks2 is based on the customer's information Ic and the first secret-key Ks1. Then the generated second secret-key Ks2 is transferred to the retail shop's bank 114.
  • The retail shop's [0304] bank 114, to which the second secret-key Ks2 is transferred from the customer's bank 112, decrypts the encrypted digital cash data Cm1ks2 by the second secret-key Ks2 using the digital cash management program P:
  • M1=D(Ks2, Cm1ks2),
  • and the decrypted digital cash data M[0305] 1 is deposited in the bank account of the retail shop's bank 114.
  • In the general trade system, the [0306] retail shop 113 stocks products from the maker 115 or from the wholesaler which intervenes between the retail shop 113 and the maker 115. Then the retail shop 113 sells the products to the customer 111. Consequently, a trading form is present between the customer 111 and the retail shop 113 just as between the retail shop 113 and the maker 115.
  • The handling of the digital cash between the [0307] retail shop 113 and the maker 115 is not basically different from the handling of the digital cash which is carried out between the customer 111 and the retail shop 113. Therefore, the explanation there will be omitted for the sake of clarity.
  • In this digital cash system, the digital cash is handled through banks. As information such as the processed amount of the digital cash, date, and the secret-key demanding party information with respect to the handling of the digital cash is stored in the customer's bank, the residual amount of digital cash and usage history, can be grasped. [0308]
  • Even in the case where the user terminal (which is an electronic cash-box storing the digital cash data) cannot be used owing to the loss or the breakage, it is possible to reissue the digital cash on the basis of the residual amount and usage history kept in the customer's bank. [0309]
  • It is desirable to add a digital signature to the digital cash data to heighten the security of the digital cash. [0310]
  • In this example, digital cash is added by the customer's information which may be accompanied by digital signature. Therefore, the digital cash in the example can also have a function of a settlement system for cheques drawn by customers. [0311]
  • Also, this system is applicable to various systems in international trade such as payment settlement of import/export by a negotiation by a draft using executed documents such as a letter of credit and a bill of lading. [0312]
  • In a video conference system, a television picture has been added to the conventional voice telephone set. Recently, the video conference system has advanced to the point where a computer system is incorporated into the video conference system so that the quality of the voice and the picture are improved, and data on computers can be handled at the same time as the voice and the picture. [0313]
  • Under these circumstances, security against the violation of the user's privacy and the data leakage due to eavesdropping by persons other than the participants of the conference are protected by the cryptosystem using a secret-key. [0314]
  • However, since the conference content obtained by the participants themselves are decrypted, in the case where participants themselves store the content of the conference and sometimes edit the content, and further, use for secondary usage such as distribution to the persons other than the participants of the conference, the privacy of other participants of the video conference and data security remains unprotected. [0315]
  • In particular, advancements in the compression technology of the transmission data and increases in the volume of the data storage medium means, it will be possible to copy all of the content of the video conference to the data storage medium, or to transmit it via a network. [0316]
  • In view of the circumstances, the example is intended, when video conference participants perform secondary use, to secure the privacy of other participants and data security by using the aforementioned configuration of the data copyright management system. [0317]
  • This video conference data management system can be actualized, for example, by replacing the database in the data copyright management system configuration shown in FIG. 1 with a participant of the video conference, the first user terminal with another participant of the video conference, and the second user terminal with a non-participant of the video conference. [0318]
  • An example will be explained by using FIG. 15. Referring to FIG. 15, [0319] reference numeral 121 represents a participant as a host of the video conference, reference numeral 122 a participant of the video conference as a guest, reference numeral 123 a non-participant of the video conference as a user, reference numeral 124 a non-participant of the video conference as another user, reference numeral 2 a communication network such as a public telephone line provided by the communication enterprise and a CA television line provided by the cable television enterprise or the like. The participant 121 of the video conference is connected to the participant 122 of the video conference via the communication network 2. Further, the participant 122 of the video conference can be connected to the non-participant 123 of the video conference, and the non-participant 123 of the video conference to the non-participant 124 of the video conference, via the communication network 2. Reference numerals 125 and 126 represent a data recording medium.
  • Referring to FIG. 15, the broken line represents a path of the encrypted video conference content, the solid line represents a path requesting the crypt key from the non-participants of the [0320] video conference 123 and 124 to the participant of the television conference 121, and the one-dot chain line represents a path of crypt keys from the participant of the video conference 121 to the participant of the video conference 122 and the non-participants of the video conference 123 and 124.
  • In this example, a video conference data management system is described here protecting only the data security and privacy of [0321] video conference participant 121 to simplify the explanation. It is of course also possible to protect for data security and privacy of video conference participant 122.
  • A video conference data management program P for encryption/decryption of the video conference data of the [0322] participant 121 including audio and picture is previously distributed to the video conference participant 122 and the video conference non-participants 123 and 124, and is stored in each terminal. This video conference data management program P may be transferred whenever a crypt-key is transferred.
  • In this example, further, a first secret-key prepared by the [0323] video conference participant 121, a second secret-key prepared by the video conference participant 122, a third secret-key prepared by the video conference non-participant 123 and subsequent secret-keys prepared similarly are used as a crypt key.
  • The [0324] video conference participant 121 and the video conference participant 122 perform the video conference by transmitting audio, picture and data (referred to as video conference data on the whole) to each other, using each terminal via communication network 2. Prior to the video conference, the video conference participant 121 generates or selects the first secret-key Ks1 to transfer to the video conference participant 122 prior to the start of the video conference.
  • The [0325] video conference participant 122 receiving the first secret-key Ks1 2Q generates the second secret-key Ks2 by the first secret-key Ks1 using the video conference data management program P:
  • Ks2=P(Ks1).
  • The generated second secret-key Ks[0326] 2 is stored in the terminal.
  • The [0327] video conference participant 121 encrypts the video conference data M0 with the first secret-key Ks1, in the video conference through the communication network 2:
  • Cm0ks1=E(Ks1, M0)
  • and transfers the encrypted video conference data Cm[0328] 0ks1 to the video conference participant 122.
  • The [0329] video conference participant 122 who receives the video conference data Cm0ks1 encrypted by the first secret-key Ks1 decrypts the video conference data Cm0ks1 by the first secret-key Ks1:
  • M0=D(ks1, Cm0ks1)
  • and uses decrypted video conference data M[0330] 0.
  • Further, the second secret-key Ks[0331] 2 is generated based on the first secret-key Ks1 with the video conference data management program P:
  • Ks2=P(Ks1).
  • In the case where the decrypted video conference data M[0332] 0 is stored in the terminal of the participant 122 of the video conference, copied to the data record medium 125, or transferred to the non-participant of the video conference via the communication network 2, the data M is encrypted by the second secret-key Ks2 using the video conference data management program P:
  • Cmks2=E(Ks2, M).
  • The encrypted data Cmks[0333] 2 is copied to the record medium 125 or supplied to the non-participant of the video conference via the communication network 2, together with the video conference data name or the video conference data number.
  • The non-participant of the [0334] video conference 123 who obtains the encrypted data Cmks2 makes a request to the participant 121 for the secondary use of the video conference data M from the terminal by specifying the name or number of the video conference data.
  • The [0335] participant 121 of the video conference who receives the request for the secondary use of the data M finds out the first secret-key Ks1 according to the name or the number of the video conference data to generate the second secret-key Ks2 based on the first secret-key Ks1:
  • Ks2=P(Ks1)
  • and supplies the generated second secret-key Ks[0336] 2 to the non-participant of the video conference 123.
  • The non-participant of [0337] video conference 123 who receives the second secret-key Ks2 decrypts the encrypted data Cmks2 by the second secret-key Ks2 by using the video conference data management program P:
  • M=D(Ks2, Cmks2)
  • and then uses decrypted video conference data M. [0338]
  • In the case where the video conference data M is stored in the terminal of the non-participant of the [0339] video conference 123, copied to the record medium 126, or transmitted to the non-participant of the video conference 124, the video conference data M is encrypted by the second secret-key Ks2 using the video conference data management program P:
  • Cmks2=E(Ks2, M).
  • Incidentally, the third secret-key Ks[0340] 3 may be generated on the basis of the second secret-key Ks2 with the video conference data management program P:
  • Ks3=P(Ks2),
  • and the data M can be encrypted with the video conference data management program P by this generated third secret-key Ks[0341] 3:
  • Cmks3=E(Ks3, M).

Claims (8)

What I claim is:
1. A data copyright management apparatus, comprising:
decryption means which decrypts encrypted copyrighted digital data by using a first crypt key; and
encryption means which encrypts said copyrighted digital data thus decrypted, by using a second crypt key.
2. A data copyright management apparatus according to
claim 1
, further comprising at least one means to implement displaying of said decrypted copyrighted digital data; processing of said decrypted copyrighted digital data; and editing said decrypted copyrighted digital data.
3. A data copyright management apparatus according to
claim 1
, further comprising at least one means to implement storing of said decrypted copyrighted digital data; copying of said decrypted copyrighted digital data; and transferring said decrypted copyrighted digital data.
4. A data copyright management apparatus according to
claim 1
, comprising a central processing unit, a central processing unit bus, a read-only semiconductor memory, electrically erasable programmable memory, and read/write memory;
wherein,
said central processing unit, said read-only semiconductor memory, said electrically erasable programmable memory, and read/write memory are connected to said central processing unit bus, and a system bus of a user terminal is able to be connected to said central processing unit bus;
a data copyright management system program, a copyright management program, crypt algorithm and user information are stored in said read-only semiconductor memory; and
a crypt key is stored in said electrically erasable programmable memory.
5. A data copyright management apparatus according to
claim 4
, which is configured in the form of an IC.
6. A data copyright management apparatus according to
claim 4
, which is configured in the form of an IC card.
7. A data copyright management apparatus according to
claim 4
, which is configured in the form of a PC card.
8. A data copyright management apparatus according to
claim 4
, which is configured in the form of an insertion board.
US09/768,287 1994-10-27 2001-01-25 Apparatus for data copyright management system Expired - Lifetime US6438694B2 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
US09/768,287 US6438694B2 (en) 1994-10-27 2001-01-25 Apparatus for data copyright management system
US10/105,262 US8407782B2 (en) 1994-10-27 2002-03-26 Data copyright management
US11/512,885 US7986785B2 (en) 1994-10-27 2006-08-29 Data management
US11/512,695 US9245260B2 (en) 1994-10-27 2006-08-29 Data copyright management

Applications Claiming Priority (8)

Application Number Priority Date Filing Date Title
JP6-264200 1994-10-27
JP26420094 1994-10-27
JP29983594 1994-12-02
JP6-299835 1994-12-02
US54927095A 1995-10-27 1995-10-27
US08/779,751 US5867579A (en) 1994-10-27 1997-01-10 Apparatus for data copyright management system
US9787798A 1998-06-15 1998-06-15
US09/768,287 US6438694B2 (en) 1994-10-27 2001-01-25 Apparatus for data copyright management system

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US9787798A Continuation 1994-10-27 1998-06-15

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US10/105,262 Continuation US8407782B2 (en) 1994-10-27 2002-03-26 Data copyright management

Publications (2)

Publication Number Publication Date
US20010013021A1 true US20010013021A1 (en) 2001-08-09
US6438694B2 US6438694B2 (en) 2002-08-20

Family

ID=26546399

Family Applications (7)

Application Number Title Priority Date Filing Date
US08/779,751 Expired - Lifetime US5867579A (en) 1994-10-27 1997-01-10 Apparatus for data copyright management system
US08/882,909 Expired - Lifetime US6128605A (en) 1994-10-27 1997-06-26 Apparatus for data copyright management system
US09/375,000 Expired - Lifetime US6408390B1 (en) 1994-10-27 1999-08-16 Apparatus for data copyright management system
US09/768,287 Expired - Lifetime US6438694B2 (en) 1994-10-27 2001-01-25 Apparatus for data copyright management system
US10/105,262 Expired - Fee Related US8407782B2 (en) 1994-10-27 2002-03-26 Data copyright management
US11/512,885 Expired - Fee Related US7986785B2 (en) 1994-10-27 2006-08-29 Data management
US11/512,695 Expired - Fee Related US9245260B2 (en) 1994-10-27 2006-08-29 Data copyright management

Family Applications Before (3)

Application Number Title Priority Date Filing Date
US08/779,751 Expired - Lifetime US5867579A (en) 1994-10-27 1997-01-10 Apparatus for data copyright management system
US08/882,909 Expired - Lifetime US6128605A (en) 1994-10-27 1997-06-26 Apparatus for data copyright management system
US09/375,000 Expired - Lifetime US6408390B1 (en) 1994-10-27 1999-08-16 Apparatus for data copyright management system

Family Applications After (3)

Application Number Title Priority Date Filing Date
US10/105,262 Expired - Fee Related US8407782B2 (en) 1994-10-27 2002-03-26 Data copyright management
US11/512,885 Expired - Fee Related US7986785B2 (en) 1994-10-27 2006-08-29 Data management
US11/512,695 Expired - Fee Related US9245260B2 (en) 1994-10-27 2006-08-29 Data copyright management

Country Status (4)

Country Link
US (7) US5867579A (en)
EP (1) EP0715241B1 (en)
JP (2) JPH08287014A (en)
DE (1) DE69532434T2 (en)

Cited By (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020120574A1 (en) * 2000-10-17 2002-08-29 Tadashi Ezaki Content receiving apparatus and method, storage medium, and server
US20030108199A1 (en) * 2001-12-11 2003-06-12 Pinder Howard G. Encrypting received content
US20030145336A1 (en) * 2000-12-18 2003-07-31 Natsume Matsuzaki Encryption transmission system
US20040039932A1 (en) * 2002-08-23 2004-02-26 Gidon Elazar Apparatus, system and method for securing digital documents in a digital appliance
US20050243364A1 (en) * 2004-04-28 2005-11-03 Canon Kabushiki Kaisha Image processing system
US20060010500A1 (en) * 2004-02-03 2006-01-12 Gidon Elazar Protection of digital data content
US20060104190A1 (en) * 2004-11-12 2006-05-18 Babinski James P Secure optical media storage
US20060156033A1 (en) * 2002-11-27 2006-07-13 Koninklijke Philips Electronics N.V. Chip integrated protection means
US20060200855A1 (en) * 2005-03-07 2006-09-07 Willis Taun E Electronic verification systems
US20070233910A1 (en) * 2003-03-27 2007-10-04 Sandisk Il Ltd. Data Storage Device With Full Access By All Users
US20090182919A1 (en) * 2005-12-08 2009-07-16 Robert Chin-Tse Chang Media Card Command Pass Through Methods
US7565680B1 (en) * 2000-06-30 2009-07-21 Comcast Ip Holdings I, Llc Advanced set top terminal having a video call feature
US7869591B1 (en) * 2001-03-23 2011-01-11 Nagel Robert H System and method for secure three-party communications
US7979700B2 (en) 2002-08-23 2011-07-12 Sandisk Corporation Apparatus, system and method for securing digital documents in a digital appliance
US8839005B2 (en) 2006-09-13 2014-09-16 Sandisk Technologies Inc. Apparatus for transferring licensed digital content between users
US9032154B2 (en) 2007-12-13 2015-05-12 Sandisk Technologies Inc. Integration of secure data transfer applications for generic IO devices
US10943273B2 (en) 2003-02-05 2021-03-09 The Hoffberg Family Trust 2004-1 System and method for determining contingent relevance
USRE49334E1 (en) 2005-10-04 2022-12-13 Hoffberg Family Trust 2 Multifactorial optimization system and method

Families Citing this family (194)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6850252B1 (en) * 1999-10-05 2005-02-01 Steven M. Hoffberg Intelligent electronic appliance system and method
US6400996B1 (en) 1999-02-01 2002-06-04 Steven M. Hoffberg Adaptive pattern recognition based control system and method
US8352400B2 (en) 1991-12-23 2013-01-08 Hoffberg Steven M Adaptive pattern recognition based controller apparatus and method and human-factored interface therefore
US6418424B1 (en) 1991-12-23 2002-07-09 Steven M. Hoffberg Ergonomic man-machine interface incorporating adaptive pattern recognition based control system
US10361802B1 (en) 1999-02-01 2019-07-23 Blanding Hovenweep, Llc Adaptive pattern recognition based control system and method
US7036019B1 (en) 1994-04-01 2006-04-25 Intarsia Software Llc Method for controlling database copyrights
US6744894B1 (en) 1994-04-01 2004-06-01 Mitsubishi Corporation Data management system
JPH07271865A (en) 1994-04-01 1995-10-20 Mitsubishi Corp Method for managing copyright of data base
US5805706A (en) * 1996-04-17 1998-09-08 Intel Corporation Apparatus and method for re-encrypting data without unsecured exposure of its non-encrypted format
US7302415B1 (en) * 1994-09-30 2007-11-27 Intarsia Llc Data copyright management system
US6741991B2 (en) 1994-09-30 2004-05-25 Mitsubishi Corporation Data management system
DE69532434T2 (en) * 1994-10-27 2004-11-11 Mitsubishi Corp. Device for file copyright management system
US6424715B1 (en) 1994-10-27 2002-07-23 Mitsubishi Corporation Digital content management system and apparatus
US6789197B1 (en) 1994-10-27 2004-09-07 Mitsubishi Corporation Apparatus for data copyright management system
EP1691316A1 (en) 1994-10-27 2006-08-16 Intarsia Software LLC Data copyright management system
JP2008090849A (en) * 1994-10-27 2008-04-17 Intarsia Software Llc Data copyright management apparatus
JPH08263438A (en) 1994-11-23 1996-10-11 Xerox Corp Distribution and use control system of digital work and access control method to digital work
US6182218B1 (en) 1994-12-13 2001-01-30 Mitsubishi Corporation Digital content management system using electronic watermark
JPH0922352A (en) * 1995-07-07 1997-01-21 Mitsubishi Electric Corp Copyright managing device
US8595502B2 (en) 1995-09-29 2013-11-26 Intarsia Software Llc Data management system
KR100254029B1 (en) * 1995-10-09 2000-04-15 모리시타 요이찌 Data transmission apparatus and data transmission method
US7801817B2 (en) 1995-10-27 2010-09-21 Makoto Saito Digital content management system and apparatus
TW346571B (en) * 1996-02-06 1998-12-01 Matsushita Electric Ind Co Ltd Data reception apparatus, data transmission apparatus, information processing system, data reception method
JPH1021144A (en) * 1996-07-03 1998-01-23 Hitachi Ltd Digital writing work distributing system and illegal copy detecting method
US6938165B2 (en) * 1996-09-03 2005-08-30 Hitachi, Ltd. Program writable IC card and method thereof
JPH1079000A (en) * 1996-09-03 1998-03-24 Hitachi Ltd Program writable ic card
US5983351A (en) * 1996-10-16 1999-11-09 Intellectual Protocols, L.L.C. Web site copyright registration system and method
JP3506582B2 (en) * 1997-03-28 2004-03-15 沖電気工業株式会社 Electronic money system
FR2762111B1 (en) * 1997-04-09 1999-06-18 Telediffusion Fse METHOD AND SYSTEM FOR PROTECTING AGAINST ILLEGAL COPYING AND USE OF A COMPUTER FILE
EP1653463A1 (en) 1997-05-13 2006-05-03 Kabushiki Kaisha Toshiba License information copying method and apparatus, license information moving method
JPH10326287A (en) * 1997-05-23 1998-12-08 Mitsubishi Corp System and device for digital content management
JP4053628B2 (en) * 1997-06-13 2008-02-27 インターシア ソフトウェア エルエルシー Digital content management system using digital watermark
US6236727B1 (en) * 1997-06-24 2001-05-22 International Business Machines Corporation Apparatus, method and computer program product for protecting copyright data within a computer system
JP3588536B2 (en) * 1997-07-11 2004-11-10 株式会社東芝 Unauthorized data copy prevention apparatus and method
US6674858B1 (en) * 1997-12-10 2004-01-06 Hitachi, Ltd. Receiving device, recording and reproducing device and receiving/recording-reproducing system for digital broadcast signal
JPH11176091A (en) * 1997-12-15 1999-07-02 Hitachi Ltd Digital information input output device, receiving device, recording device, and reproducing device
US6141753A (en) * 1998-02-10 2000-10-31 Fraunhofer Gesellschaft Secure distribution of digital representations
IL124595A (en) 1998-05-21 2009-09-01 Yossef Tsuria Anti-piracy system
JPH11341566A (en) * 1998-05-27 1999-12-10 Nec Corp Information providing system, its charging method and recording medium with its control program recorded
CN1146235C (en) * 1998-07-17 2004-04-14 汤姆森许可公司 Conditional access system for broadcast digital TV.
JP3951464B2 (en) * 1998-07-28 2007-08-01 株式会社日立製作所 Digital signal processor
US6226618B1 (en) * 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
JP4763866B2 (en) 1998-10-15 2011-08-31 インターシア ソフトウェア エルエルシー Method and apparatus for protecting digital data by double re-encryption
US6519700B1 (en) * 1998-10-23 2003-02-11 Contentguard Holdings, Inc. Self-protecting documents
IL126988A0 (en) * 1998-11-10 1999-09-22 Elad Barkan Marking system and method
JP2000181803A (en) 1998-12-18 2000-06-30 Fujitsu Ltd Electronic data keeping device with key management function and method therefor
AU3343400A (en) * 1999-01-06 2000-07-24 Digital Video Express, L.P. Digital content distribution system and method
US7904187B2 (en) 1999-02-01 2011-03-08 Hoffberg Steven M Internet appliance system and method
US7373521B1 (en) * 1999-02-17 2008-05-13 Sony Corporation Semiconductor IC, information processing method, information processing device, and program storage medium
US6578203B1 (en) 1999-03-08 2003-06-10 Tazwell L. Anderson, Jr. Audio/video signal distribution system for head mounted displays
SE9900887L (en) * 1999-03-12 2000-09-13 Business Security encryption device
KR100320183B1 (en) 1999-03-17 2002-01-10 구자홍 File encryption apparatus for digital data player
US6697489B1 (en) * 1999-03-30 2004-02-24 Sony Corporation Method and apparatus for securing control words
JP4238410B2 (en) * 1999-04-09 2009-03-18 ソニー株式会社 Information processing system
GB9909362D0 (en) 1999-04-23 1999-06-16 Pace Micro Tech Plc Memory database system for encrypted progarmme material
GB9909590D0 (en) * 1999-04-26 1999-06-23 Telepathic Ind Ltd Mechanism for securing reliable evidence from computers and listening devices
DE19923250A1 (en) * 1999-05-20 2000-11-23 Beta Res Gmbh Data distribution security system stores data encrypted with individual key prevents unauthorized distribution
JP3685382B2 (en) * 1999-05-25 2005-08-17 日本ビクター株式会社 Video information recording device
US7210160B2 (en) 1999-05-28 2007-04-24 Immersion Entertainment, L.L.C. Audio/video programming and charging system and method
EP1056014A1 (en) * 1999-05-28 2000-11-29 Hewlett-Packard Company System for providing a trustworthy user interface
US20020057364A1 (en) * 1999-05-28 2002-05-16 Anderson Tazwell L. Electronic handheld audio/video receiver and listening/viewing device
AU6789200A (en) * 1999-08-19 2001-03-13 Suresh K. Jasrasaria System and method for secure distribution and on-line electronic usage management
US6885748B1 (en) * 1999-10-23 2005-04-26 Contentguard Holdings, Inc. System and method for protection of digital works
US7039614B1 (en) * 1999-11-09 2006-05-02 Sony Corporation Method for simulcrypting scrambled data to a plurality of conditional access devices
FR2801751B1 (en) 1999-11-30 2002-01-18 St Microelectronics Sa ELECTRONIC SAFETY COMPONENT
US7188088B2 (en) * 1999-12-07 2007-03-06 Matsushita Electric Industrial Co., Ltd. Video editing apparatus, video editing method, and recording medium
MXPA02006214A (en) * 1999-12-23 2003-01-28 Gen Instrument Corp Dualmode processor.
US6990464B1 (en) * 2000-01-11 2006-01-24 Ncr Corporation Apparatus, system and method for electronic book distribution
JP2001209722A (en) * 2000-01-28 2001-08-03 Mitsubishi Electric Corp Digital contents charging system through network
JP4656350B2 (en) * 2000-03-15 2011-03-23 ソニー株式会社 Digital signal receiving apparatus and digital signal display method
US7010635B1 (en) * 2000-03-21 2006-03-07 Ricoh Co., Ltd Method and apparatus for using a person digital assistant to interface with a communication station
CN1217509C (en) 2000-03-30 2005-08-31 三洋电机株式会社 Content data storage
US7200230B2 (en) * 2000-04-06 2007-04-03 Macrovision Corporation System and method for controlling and enforcing access rights to encrypted media
ATE268533T1 (en) * 2000-04-17 2004-06-15 Nagravision Sa SYSTEM AND METHOD FOR SECURE DATA TRANSMISSION
WO2001091365A1 (en) * 2000-05-22 2001-11-29 Sanyo Electric Co., Ltd. Data distribution system
TW569130B (en) * 2000-05-29 2004-01-01 Sony Corp Data providing device and method, data processing device and method and program storage media
US7457414B1 (en) * 2000-07-21 2008-11-25 The Directv Group, Inc. Super encrypted storage and retrieval of media programs with smartcard generated keys
US8140859B1 (en) * 2000-07-21 2012-03-20 The Directv Group, Inc. Secure storage and replay of media programs using a hard-paired receiver and storage device
US7117250B1 (en) * 2000-08-01 2006-10-03 Enreach Technology, Inc. Method and system for providing a dynamic media distribution infrastructure
JP2002062880A (en) * 2000-08-17 2002-02-28 Sony Corp Contents reproducer
US7051211B1 (en) * 2000-08-21 2006-05-23 International Business Machines Corporation Secure software distribution and installation
US7412605B2 (en) 2000-08-28 2008-08-12 Contentguard Holdings, Inc. Method and apparatus for variable encryption of data
JP2002093047A (en) * 2000-09-20 2002-03-29 Sony Corp Data recording medium, data recording device and method, data output device and method, data display method, content data as well as data reproducing device and method
US7606898B1 (en) 2000-10-24 2009-10-20 Microsoft Corporation System and method for distributed management of shared computers
JP2002158654A (en) * 2000-11-17 2002-05-31 Hitachi Ltd Information processor, display device, digital contents distribution system and digital contents distribution/ output method
JP2002158985A (en) * 2000-11-17 2002-05-31 Hitachi Ltd Digital contents distribution system, digital contents distributing method, digital contents distributor, information processor, and digital contents recording medium
JP4300705B2 (en) * 2000-12-05 2009-07-22 ソニー株式会社 Data transfer system, data transfer device, data transfer method, and recording medium
US20020083346A1 (en) * 2000-12-21 2002-06-27 Rowlands Jonathan L. Method of local data distribution preserving rights of a remote party
JP4752113B2 (en) * 2001-01-16 2011-08-17 ソニー株式会社 Electronic device and signal transmission method
JP2002229621A (en) * 2001-01-31 2002-08-16 Toshiba Corp Hardware managing device
US20020131590A1 (en) * 2001-02-02 2002-09-19 Henson Kevin M. Key matrix methodology
US8098820B2 (en) 2001-03-14 2012-01-17 Thomson Licensing Conditional access system for broadcast digital television
AU2002254440B2 (en) * 2001-03-29 2008-02-07 Cpa Software Limited Internet-based patent and trademark application management system
US20020152262A1 (en) * 2001-04-17 2002-10-17 Jed Arkin Method and system for preventing the infringement of intellectual property rights
US20020152261A1 (en) * 2001-04-17 2002-10-17 Jed Arkin Method and system for preventing the infringement of intellectual property rights
US7774408B2 (en) * 2001-04-23 2010-08-10 Foundationip, Llc Methods, systems, and emails to link emails to matters and organizations
US7653631B1 (en) 2001-05-10 2010-01-26 Foundationip, Llc Method for synchronizing information in multiple case management systems
US6895503B2 (en) 2001-05-31 2005-05-17 Contentguard Holdings, Inc. Method and apparatus for hierarchical assignment of rights to documents and documents having such rights
GB2376313A (en) * 2001-06-04 2002-12-11 Hewlett Packard Co Indicating to a user if they are connected to a trusted computer platform
WO2003009285A2 (en) * 2001-07-19 2003-01-30 Koninklijke Philips Electronics N.V. Apparatus and method for reproducing user data
JP3870734B2 (en) * 2001-07-31 2007-01-24 ソニー株式会社 Recording medium reproducing apparatus and method, and recording / reproducing apparatus
JP2003069948A (en) * 2001-08-28 2003-03-07 Sony Corp Apparatus and system for image processing
SG120868A1 (en) * 2001-08-28 2006-04-26 Seagate Technology Llc Data storage device security method and apparatus
US20030046568A1 (en) * 2001-09-06 2003-03-06 Riddick Christopher J. Media protection system and method and hardware decryption module used therein
US20030056106A1 (en) * 2001-09-07 2003-03-20 Wang Sheng E. Encryption system for preventing data from being copied illegally and method of the same
US7409562B2 (en) * 2001-09-21 2008-08-05 The Directv Group, Inc. Method and apparatus for encrypting media programs for later purchase and viewing
JP2003132622A (en) * 2001-10-22 2003-05-09 Victor Co Of Japan Ltd Recording device, reproducing device and recording medium
KR100879652B1 (en) * 2001-10-29 2009-01-20 시게이트 테크놀로지 엘엘씨 System and method for protecting a peripheral device against hot plug attacks
KR20030039445A (en) * 2001-11-13 2003-05-22 삼성전자주식회사 Transmitting/receiving apparatus of video signal
EP1320006A1 (en) * 2001-12-12 2003-06-18 Canal+ Technologies Société Anonyme Processing data
US7137553B2 (en) * 2001-12-31 2006-11-21 Digital Data Research Company Security clearance card, system and method of reading a security clearance card
US7065651B2 (en) * 2002-01-16 2006-06-20 Microsoft Corporation Secure video card methods and systems
JPWO2003067486A1 (en) * 2002-02-04 2005-06-02 良貴 蘆田 Content management system for web links
US7174017B2 (en) * 2002-03-04 2007-02-06 Lenovo Singapore Pte, Ltd Decryption system for encrypted audio
US20030172273A1 (en) * 2002-03-05 2003-09-11 Sjoblom Hans Method for controlling the distribution of data
US20030202776A1 (en) * 2002-04-24 2003-10-30 Kendall Scott Allan Continuous digital recording through channel changes with user selectable buffer erase
AU2003247388A1 (en) * 2002-05-20 2003-12-12 Smarte Solutions, Inc. Cd media anti-piracy generation and management system and process
US7206940B2 (en) * 2002-06-24 2007-04-17 Microsoft Corporation Methods and systems providing per pixel security and functionality
US8155314B2 (en) 2002-06-24 2012-04-10 Microsoft Corporation Systems and methods for securing video card output
JP2004030799A (en) * 2002-06-26 2004-01-29 Victor Co Of Japan Ltd Method and equipment for recording text data and audio disk, computer program and playback equipment of audio disk
US7340778B2 (en) * 2002-07-24 2008-03-04 Macrovision Corporation Method and apparatus for ensuring the copy protection of digital data
CN1679273A (en) * 2002-08-08 2005-10-05 M-系统快闪盘开拓者公司 Integrated circuit for digital rights management
AU2003275466A1 (en) * 2002-10-07 2004-05-04 Immersion Entertainment, Llc System and method for providing event spectators with audio/video signals pertaining to remote events
JP2004133087A (en) 2002-10-09 2004-04-30 Sony Corp Block encryption method and block encryption circuit
JP4349788B2 (en) * 2002-10-31 2009-10-21 パナソニック株式会社 Semiconductor integrated circuit device
US7724907B2 (en) 2002-11-05 2010-05-25 Sony Corporation Mechanism for protecting the transfer of digital content
US8572408B2 (en) 2002-11-05 2013-10-29 Sony Corporation Digital rights management of a digital device
US7293178B2 (en) * 2002-12-09 2007-11-06 Microsoft Corporation Methods and systems for maintaining an encrypted video memory subsystem
US20040199400A1 (en) * 2002-12-17 2004-10-07 Lundberg Steven W. Internet-based patent and trademark application management system
JP3928561B2 (en) * 2003-01-23 2007-06-13 ソニー株式会社 Content distribution system, information processing apparatus or information processing method, and computer program
JP4470373B2 (en) * 2003-02-14 2010-06-02 ソニー株式会社 Authentication processing apparatus and security processing method
US8122106B2 (en) 2003-03-06 2012-02-21 Microsoft Corporation Integrating design, deployment, and management phases for systems
US7689676B2 (en) 2003-03-06 2010-03-30 Microsoft Corporation Model-based policy application
US7890543B2 (en) 2003-03-06 2011-02-15 Microsoft Corporation Architecture for distributed computing system and automated design, deployment, and management of distributed applications
DE602004007116T2 (en) * 2003-03-14 2008-02-28 Koninklijke Philips Electronics N.V. PROTECTED RETRO CHANNEL DIGGENTLY MANAGED BY DIGITAL RIGHTS DONGLE
JP4729839B2 (en) * 2003-05-20 2011-07-20 株式会社日立製作所 IC card
US20040254662A1 (en) * 2003-05-27 2004-12-16 Cook, Charles H. Encoded system for recording music and the like
TW200509637A (en) * 2003-07-14 2005-03-01 Nagravision Sa Method to create and manage a local network
US7593687B2 (en) * 2003-10-07 2009-09-22 Immersion Entertainment, Llc System and method for providing event spectators with audio/video signals pertaining to remote events
US7562230B2 (en) * 2003-10-14 2009-07-14 Intel Corporation Data security
US20050138387A1 (en) * 2003-12-19 2005-06-23 Lam Wai T. System and method for authorizing software use
US7778422B2 (en) * 2004-02-27 2010-08-17 Microsoft Corporation Security associations for devices
US20050246529A1 (en) 2004-04-30 2005-11-03 Microsoft Corporation Isolated persistent identity storage for authentication of computing devies
US20050280705A1 (en) * 2004-05-20 2005-12-22 Immersion Entertainment Portable receiver device
US8363835B2 (en) * 2004-07-21 2013-01-29 Sanyo Electric Co., Ltd. Method for transmission/reception of contents usage right information in encrypted form, and device thereof
US8166565B1 (en) * 2004-07-29 2012-04-24 Parallels IP Holdings GmbH Encryption and access method and system for peer-to-peer distributed file storage
US20070288713A1 (en) * 2004-08-26 2007-12-13 Hiroshi Sugimoto Data Recording/Reproducing Device and Method
JP4738785B2 (en) * 2004-09-30 2011-08-03 フェリカネットワークス株式会社 Information processing system and information processing apparatus
US7711965B2 (en) * 2004-10-20 2010-05-04 Intel Corporation Data security
US20060130154A1 (en) * 2004-11-30 2006-06-15 Wai Lam Method and system for protecting and verifying stored data
US20060190471A1 (en) * 2005-02-18 2006-08-24 Lundberg Steven W Auto-filing of watch results in IP management system
US20060190495A1 (en) * 2005-02-18 2006-08-24 Lundberg Steven W System and method for purging messages in a legal information system
US20060190449A1 (en) * 2005-02-18 2006-08-24 Lundberg Steven W System and method for prior art cross citation
US20060190541A1 (en) * 2005-02-18 2006-08-24 Lundberg Steven W System and method for public and private messages in an information management system
US20060206345A1 (en) * 2005-02-18 2006-09-14 Lundberg Steven W System and method for obtaining and disseminating secured on-line data
US20060230113A1 (en) * 2005-03-21 2006-10-12 Lundberg Steven W System and method for billing in a professional services information management system
US20060212471A1 (en) * 2005-03-21 2006-09-21 Lundberg Steven W System and method for intellectual property information management using configurable activities
US20060212788A1 (en) * 2005-03-21 2006-09-21 Lundberg Steven W Systems and methods for activity management using independent docket items
US20060212480A1 (en) * 2005-03-21 2006-09-21 Lundberg Steven W System and method for matter clusters in an IP management system
US20060212302A1 (en) * 2005-03-21 2006-09-21 Lundberg Steven W System and method for a user interface in an IP management system
US20060212402A1 (en) * 2005-03-21 2006-09-21 Lundberg Steven W System and method for export control of technical documents
JP4667108B2 (en) 2005-04-11 2011-04-06 パナソニック株式会社 Data processing device
EP1877424A4 (en) * 2005-04-11 2010-09-29 Pharmagap Inc Inhibitors of protein kinases and uses thereof
US8489728B2 (en) 2005-04-15 2013-07-16 Microsoft Corporation Model-based system monitoring
US7797147B2 (en) 2005-04-15 2010-09-14 Microsoft Corporation Model-based system monitoring
US7802144B2 (en) 2005-04-15 2010-09-21 Microsoft Corporation Model-based system monitoring
US8549513B2 (en) 2005-06-29 2013-10-01 Microsoft Corporation Model-based virtual system provisioning
US9325944B2 (en) * 2005-08-11 2016-04-26 The Directv Group, Inc. Secure delivery of program content via a removable storage medium
US7941309B2 (en) 2005-11-02 2011-05-10 Microsoft Corporation Modeling IT operations/policies
US8479186B2 (en) * 2005-12-22 2013-07-02 Sandisk Technologies Inc. Method for program code execution with memory storage controller participation
US8484632B2 (en) * 2005-12-22 2013-07-09 Sandisk Technologies Inc. System for program code execution with memory storage controller participation
US7499552B2 (en) * 2006-01-11 2009-03-03 International Business Machines Corporation Cipher method and system for verifying a decryption of an encrypted user data key
US20070169201A1 (en) * 2006-01-17 2007-07-19 Walker Glenn A Satellite digital audio radio receiver with playback capability
US8775319B2 (en) 2006-05-15 2014-07-08 The Directv Group, Inc. Secure content transfer systems and methods to operate the same
JP4843531B2 (en) * 2006-09-29 2011-12-21 富士通株式会社 Encryption conversion apparatus, encryption conversion method, and encryption conversion program
US8135761B2 (en) 2007-12-10 2012-03-13 Realnetworks, Inc. System and method for automatically creating a media archive from content on a recording medium
US8582954B2 (en) 2007-12-10 2013-11-12 Intel Corporation System and method for automatically creating a media archive from content on a recording medium
US8555087B2 (en) * 2008-06-19 2013-10-08 Intel Corporation Systems and methods for content playback and recording
JP2008263644A (en) * 2008-06-23 2008-10-30 Mitsubishi Corp Key management method, and key management apparatus
CN101848049A (en) * 2010-03-18 2010-09-29 鸿富锦精密工业(深圳)有限公司 Information service system based on digital broadcasting
JP2010193506A (en) * 2010-04-14 2010-09-02 Intarsia Software Llc Data content distribution system
US8885013B2 (en) 2010-05-12 2014-11-11 Blue Jeans Network, Inc. Systems and methods for novel interactions with participants in videoconference meetings
US9124757B2 (en) 2010-10-04 2015-09-01 Blue Jeans Networks, Inc. Systems and methods for error resilient scheme for low latency H.264 video coding
US9300705B2 (en) 2011-05-11 2016-03-29 Blue Jeans Network Methods and systems for interfacing heterogeneous endpoints and web-based media sources in a video conference
US9369673B2 (en) 2011-05-11 2016-06-14 Blue Jeans Network Methods and systems for using a mobile device to join a video conference endpoint into a video conference
JP5367039B2 (en) 2011-09-30 2013-12-11 株式会社東芝 Server apparatus and program
CN103561286A (en) * 2013-11-05 2014-02-05 中国联合网络通信集团有限公司 Method, device and system for medium distribution
US10027640B2 (en) 2015-09-22 2018-07-17 Qualcomm Incorporated Secure data re-encryption
CN107809677B (en) * 2017-11-07 2020-04-21 四川长虹电器股份有限公司 System and method for presetting Widevine keys in batches in television
CN108536783B (en) * 2018-03-29 2021-03-02 Oppo广东移动通信有限公司 Data processing method and device, terminal and computer readable storage medium
EP3881263A1 (en) * 2018-11-15 2021-09-22 Ravel Technologies Sarl Cryptographic anonymization for zero-knowledge advertising methods, apparatus, and system
CN111355921A (en) * 2020-04-13 2020-06-30 随锐科技集团股份有限公司 Video conference encryption method and system
US11574307B2 (en) 2020-08-06 2023-02-07 Bank Of America Corporation Three party authentication using quantum key distribution
US12019778B1 (en) * 2023-11-22 2024-06-25 Verkada Inc. Systems and methods to perform end to end encryption

Family Cites Families (333)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4104721A (en) * 1976-12-30 1978-08-01 International Business Machines Corporation Hierarchical security mechanism for dynamically assigning security levels to object programs
US4225884A (en) 1977-02-14 1980-09-30 Telease, Inc. Method and system for subscription television billing and access
US4168396A (en) 1977-10-31 1979-09-18 Best Robert M Microprocessor for executing enciphered programs
US4278837A (en) 1977-10-31 1981-07-14 Best Robert M Crypto microprocessor for executing enciphered programs
US4408203A (en) * 1978-01-09 1983-10-04 Mastercard International, Inc. Security system for electronic funds transfer system
JPS54105533A (en) 1978-02-07 1979-08-18 Canon Inc Power drive device of camera
US4352952A (en) * 1978-06-12 1982-10-05 Motorola Inc. Data security module
CA1155518A (en) 1979-02-20 1983-10-18 William S.H. Cheung Encoding of information
DE2908265A1 (en) * 1979-03-02 1980-09-11 Hoechst Ag METHOD FOR PRODUCING EARTH ALKALINE SALTS OF ALKYLBENZENE SULPHONIC ACIDS
US4465901A (en) 1979-06-04 1984-08-14 Best Robert M Crypto microprocessor that executes enciphered programs
US4862268A (en) 1980-03-31 1989-08-29 General Instrument Corporation Addressable cable television control system with video format data transmission
US4386233A (en) 1980-09-29 1983-05-31 Smid Miles E Crytographic key notarization methods and apparatus
US4578530A (en) 1981-06-26 1986-03-25 Visa U.S.A., Inc. End-to-end encryption system and method of operation
US4423287A (en) 1981-06-26 1983-12-27 Visa U.S.A., Inc. End-to-end encryption system and method of operation
USRE33189E (en) 1981-11-19 1990-03-27 Communications Satellite Corporation Security system for SSTV encryption
JPS58116571A (en) 1981-12-29 1983-07-11 富士通株式会社 Instruction coding method for microcomputer and microcomputer used for execution thereof
US4500750A (en) 1981-12-30 1985-02-19 International Business Machines Corporation Cryptographic application for interbank verification
US4458109A (en) 1982-02-05 1984-07-03 Siemens Corporation Method and apparatus providing registered mail features in an electronic communication system
JPS58169000U (en) 1982-05-10 1983-11-11 岳洋燈機工業株式会社 navigational aid
JPS58175414U (en) 1982-05-19 1983-11-24 矢崎総業株式会社 Vehicle driving information record paper
US4567512A (en) 1982-08-19 1986-01-28 World Video Library, Inc. Recorded program communication system
JPS5948273A (en) 1982-09-13 1984-03-19 Toyota Motor Corp Bag form hemming member and device for producing the same
US4558176A (en) 1982-09-20 1985-12-10 Arnold Mark G Computer systems to inhibit unauthorized copying, unauthorized usage, and automated cracking of protected software
US5253294A (en) 1983-02-22 1993-10-12 At&T Bell Laboratories Secure transmission system
US4588991A (en) 1983-03-07 1986-05-13 Atalla Corporation File access security method and means
EP0121853A3 (en) * 1983-04-04 1988-01-13 BURROUGHS CORPORATION (a Delaware corporation) Data processing system having public encryption and private decryption keys
JPS59169000U (en) 1983-04-27 1984-11-12 日立照明株式会社 Lighting equipment switching device
US4623918A (en) 1983-05-02 1986-11-18 Teleglobe Pay-Tv System, Inc. Pay television system utilizing multi-frequency passive filters
US4613901A (en) 1983-05-27 1986-09-23 M/A-Com Linkabit, Inc. Signal encryption and distribution system for controlling scrambling and selective remote descrambling of television signals
US6912284B1 (en) 1983-06-13 2005-06-28 The United States Of America As Represented By The National Security Agency Self-Authenticating cryptographic apparatus
US4736422A (en) 1983-06-30 1988-04-05 Independent Broadcasting Authority Encrypted broadcast television system
GB2143352A (en) 1983-07-15 1985-02-06 Philips Electronic Associated Authorising coded signals
US4536647A (en) 1983-07-15 1985-08-20 Atalla Corporation Pocket banking terminal, method and system
JPS60102038U (en) 1983-12-20 1985-07-11 トラスト・トレ−デイング株式会社 training equipment
NL8520023A (en) 1984-02-23 1986-01-02 American Telephone & Telegraph METHOD AND DEVICE FOR SUBSCRIBER TRANSMISSION.
EP0158167A3 (en) 1984-03-21 1988-05-18 Atalla Corporation Document security system, method and apparatus
JPH0646419Y2 (en) 1984-04-28 1994-11-30 タイガー魔法瓶株式会社 Boiling type electric hot water storage container
US4791565A (en) 1984-06-20 1988-12-13 Effective Security Systems, Inc. Apparatus for controlling the use of computer software
US4751732A (en) 1984-07-06 1988-06-14 Kabushiki Kaisha Toshiba Broadcasting system
US4890319A (en) * 1984-09-21 1989-12-26 Scientific-Atlantic, Inc. Method for controlling copying of protected information transmitted over a communications link
US4829569A (en) 1984-09-21 1989-05-09 Scientific-Atlanta, Inc. Communication of individual messages to subscribers in a subscription television system
JP2546983B2 (en) 1984-10-11 1996-10-23 豊 塚本 Digital signature generation system
CA1238427A (en) * 1984-12-18 1988-06-21 Jonathan Oseas Code protection using cryptography
US4709266A (en) * 1985-01-14 1987-11-24 Oak Industries Inc. Satellite scrambling communication network using geographically separated uplinks
FR2580885B1 (en) 1985-04-19 1988-07-08 Radiotechnique SYSTEM FOR THE SECRET TRANSMISSION OF AUDIO SIGNALS, AND TELEVISION FOR RECEIVING SUCH SIGNALS
GB8524020D0 (en) 1985-09-30 1985-11-06 British Telecomm Electronic funds transfer
EP0341801A3 (en) 1985-10-29 1990-02-07 Payview Limited Video scrambling systems
US4710955A (en) 1985-11-25 1987-12-01 General Instrument Corporation Cable television system with two-way telephone communication path
US4852154A (en) 1986-02-04 1989-07-25 Pacific Bell Pay-per-view CATV system
US4864494A (en) 1986-03-21 1989-09-05 Computerized Data Ssytems For Mfg., Inc. Software usage authorization system with key for decrypting/re-encrypting/re-transmitting moving target security codes from protected software
JPS62169540U (en) 1986-04-16 1987-10-27
EP0243312B1 (en) 1986-04-18 1995-07-19 Nagra Plus S.A. Decoder for a pay television system
US4890321A (en) * 1986-07-08 1989-12-26 Scientific Atlanta, Inc. Communications format for a subscription television system permitting transmission of individual text messages to subscribers
US5319710A (en) 1986-08-22 1994-06-07 Tandem Computers Incorporated Method and means for combining and managing personal verification and message authentication encrytions for network transmission
US5010571A (en) 1986-09-10 1991-04-23 Titan Linkabit Corporation Metering retrieval of encrypted data stored in customer data retrieval terminal
US4799156A (en) 1986-10-01 1989-01-17 Strategic Processing Corporation Interactive market management system
US4759062A (en) 1986-10-06 1988-07-19 International Electronics Technology Corporation Arrangement for and method of protecting private security codes from unauthorized disclosure
US4827508A (en) 1986-10-14 1989-05-02 Personal Library Software, Inc. Database usage metering and protection system and method
US4977594A (en) 1986-10-14 1990-12-11 Electronic Publishing Resources, Inc. Database usage metering and protection system and method
US5155680A (en) 1986-10-24 1992-10-13 Signal Security Technologies Billing system for computing software
US4817140A (en) 1986-11-05 1989-03-28 International Business Machines Corp. Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor
US4796220A (en) 1986-12-15 1989-01-03 Pride Software Development Corp. Method of controlling the copying of software
GB8704882D0 (en) 1987-03-03 1987-04-08 Hewlett Packard Co Secure messaging systems
GB8704883D0 (en) 1987-03-03 1987-04-08 Hewlett Packard Co Secure information storage
DE3717261A1 (en) 1987-05-22 1987-11-19 Paul Bamberg Method for selecting television programmes by telephone
US4850017A (en) 1987-05-29 1989-07-18 International Business Machines Corp. Controlled use of cryptographic keys via generating station established control values
JPS6461782A (en) 1987-08-31 1989-03-08 Sharp Kk Coded record reproducer
JPS6441387U (en) 1987-09-08 1989-03-13
JPH0192833A (en) 1987-10-02 1989-04-12 Satoru Kubota Microprocessor including cipher translating circuit to prevent software from being illegally copied
US5390297A (en) 1987-11-10 1995-02-14 Auto-Trol Technology Corporation System for controlling the number of concurrent copies of a program in a network based on the number of available licenses
US5008853A (en) * 1987-12-02 1991-04-16 Xerox Corporation Representation of collaborative multi-user activities relative to shared structured data objects in a networked workstation environment
US5005200A (en) 1988-02-12 1991-04-02 Fischer Addison M Public key/signature cryptosystem with enhanced digital signature certification
US5003384A (en) 1988-04-01 1991-03-26 Scientific Atlanta, Inc. Set-top interface transactions in an impulse pay per view television system
US4864615A (en) 1988-05-27 1989-09-05 General Instrument Corporation Reproduction of secure keys by using distributed key generation data
US5113518A (en) 1988-06-03 1992-05-12 Durst Jr Robert T Method and system for preventing unauthorized use of software
US5007082A (en) 1988-08-03 1991-04-09 Kelly Services, Inc. Computer software encryption apparatus
US4995080A (en) 1988-08-04 1991-02-19 Zenith Electronics Corporation Television signal scrambling system and method
EP0354774B1 (en) 1988-08-11 1996-04-10 International Business Machines Corporation Data cryptography using control vectors
US4941176A (en) * 1988-08-11 1990-07-10 International Business Machines Corporation Secure management of keys using control vectors
EP0472521B1 (en) * 1988-08-16 1998-06-03 Cryptologics International Inc. Information distribution system
US5247575A (en) 1988-08-16 1993-09-21 Sprague Peter J Information distribution system
US4916737A (en) 1988-11-14 1990-04-10 Teleglobe Pay-Tv System, Inc. Secure anti-piracy encoded television system and method
US5008936A (en) 1988-12-09 1991-04-16 The Exchange System Limited Partnership Backup/restore technique in a microcomputer-based encryption system
US4919545A (en) * 1988-12-22 1990-04-24 Gte Laboratories Incorporated Distributed security procedure for intelligent networks
US4965568A (en) 1989-03-01 1990-10-23 Atalla Martin M Multilevel security apparatus and method with personal key
US5191611A (en) * 1989-04-03 1993-03-02 Lang Gerald S Method and apparatus for protecting material on storage media and for transferring material on storage media to various recipients
US4977595A (en) 1989-04-03 1990-12-11 Nippon Telegraph And Telephone Corporation Method and apparatus for implementing electronic cash
JPH02268092A (en) 1989-04-10 1990-11-01 Pioneer Electron Corp Catv system and catv terminal equipment
CA2053261A1 (en) 1989-04-28 1990-10-29 Gary D. Hornbuckle Method and apparatus for remotely controlling and monitoring the use of computer software
KR920701894A (en) * 1989-04-28 1992-08-12 브루스 마르쿠스 Remote control device of computer software and its protection method
EP0398645B1 (en) 1989-05-15 1997-08-06 International Business Machines Corporation System for controlling access privileges
US5077665A (en) * 1989-05-25 1991-12-31 Reuters Limited Distributed matching system
JP2606419B2 (en) 1989-08-07 1997-05-07 松下電器産業株式会社 Cryptographic communication system and cryptographic communication method
US5046093A (en) 1989-09-05 1991-09-03 General Instrument Corporation CATV subscriber apparatus with intelligent remote control
ZA907106B (en) 1989-10-06 1991-09-25 Net 1 Products Pty Ltd Funds transfer system
JP2874916B2 (en) 1989-11-21 1999-03-24 株式会社東芝 Portable encryption key storage device
FR2654851B1 (en) 1989-11-23 1992-03-27 Schlumberger Ind Sa METHOD AND SYSTEM FOR SECURE OPERATION OF SOFTWARE.
JPH03214834A (en) 1990-01-19 1991-09-20 Canon Inc Multi-medium network system
US5029207A (en) 1990-02-01 1991-07-02 Scientific-Atlanta, Inc. External security module for a television signal decoder
US5237610A (en) 1990-02-01 1993-08-17 Scientific-Atlanta, Inc. Independent external security module for a digitally upgradeable television signal decoder
JP3143108B2 (en) 1990-03-13 2001-03-07 株式会社日立製作所 File encryption method and file encryption system
DE69121444T2 (en) 1990-03-29 1997-03-13 Gte Laboratories Inc Monitoring system for the transmission of video signals
JPH03280861A (en) 1990-03-29 1991-12-11 Hiroaki Komatsu Apparatus for continuous boiling of small fishes
US5054064A (en) 1990-03-29 1991-10-01 Gte Laboratories Incorporated Video control system for recorded programs
JPH03282989A (en) 1990-03-30 1991-12-13 Tonen Corp Data storing method using memory card
JP2943815B2 (en) * 1990-04-06 1999-08-30 日本電子株式会社 Length measuring method in electron beam length measuring machine
GB9008362D0 (en) 1990-04-12 1990-06-13 Hackremco No 574 Limited Banking computer system
US5060262A (en) 1990-05-07 1991-10-22 Bevins Jr George L Video scrambling, audio masking and data transmission methods for wireless cable systems
US5036461A (en) * 1990-05-16 1991-07-30 Elliott John C Two-way authentication system between user's smart card and issuer-specific plug-in application modules in multi-issued transaction device
EP0459046A1 (en) 1990-05-31 1991-12-04 International Business Machines Corporation Computer software protection
US5204961A (en) 1990-06-25 1993-04-20 Digital Equipment Corporation Computer network operating with multilevel hierarchical security with selectable common trust realms and corresponding security protocols
US5091938B1 (en) 1990-08-06 1997-02-04 Nippon Denki Home Electronics Digital data cryptographic system
US5124984A (en) 1990-08-07 1992-06-23 Concord Communications, Inc. Access controller for local area network
US5224163A (en) * 1990-09-28 1993-06-29 Digital Equipment Corporation Method for delegating authorization from one entity to another through the use of session encryption keys
US5173939A (en) * 1990-09-28 1992-12-22 Digital Equipment Corporation Access control subsystem and method for distributed computer system using compound principals
US5220604A (en) * 1990-09-28 1993-06-15 Digital Equipment Corporation Method for performing group exclusion in hierarchical group structures
US5315657A (en) * 1990-09-28 1994-05-24 Digital Equipment Corporation Compound principals in access control lists
US5361091A (en) * 1990-09-28 1994-11-01 Inteletext Systems, Inc. Interactive home information system for distributing video picture information to television viewers over a fiber optic telephone system
US5227893A (en) 1990-10-31 1993-07-13 International Business Machines Corporation Pseudo-bar code control of image transmission
US5196840A (en) 1990-11-05 1993-03-23 International Business Machines Corporation Secure communications system for remotely located computers
US5103476A (en) * 1990-11-07 1992-04-07 Waite David P Secure system for activating personal computer software at remote locations
JPH04181282A (en) * 1990-11-16 1992-06-29 Hitachi Ltd Cryptographic system for file
IT1241339B (en) 1990-12-06 1994-01-10 Sisvel Spa SYSTEM FOR THE TRANSMISSION AND RECEPTION OF CODED TELEVISION SIGNALS.
JPH0799497B2 (en) * 1990-12-14 1995-10-25 インターナショナル・ビジネス・マシーンズ・コーポレイション Device and method for controlling the use of software
CA2096730C (en) 1990-12-24 1996-07-09 Jose Gutman Electronic wallet
US5142579A (en) 1991-01-29 1992-08-25 Anderson Walter M Public key cryptographic system and method
IL100866A (en) 1991-02-06 1995-10-31 Igen Inc Method and apparatus for magnetic microparticulate based luminescence assay including plurality of magnets
US5146497A (en) * 1991-02-27 1992-09-08 Motorola, Inc. Group rekey in a communication system
DE69227051T2 (en) 1991-02-27 1999-03-11 Canon K.K., Tokio/Tokyo Procedure for discovering incorrect overwriting of stored data
JP2546983Y2 (en) 1991-02-28 1997-09-03 三和シヤッター工業株式会社 Fixing structure of the fixture for the decorative mall in the door body
JP2781906B2 (en) * 1991-03-29 1998-07-30 パイオニア株式会社 CATV center device and program supply method in cable net
US5222137A (en) 1991-04-03 1993-06-22 Motorola, Inc. Dynamic encryption key selection for encrypted radio transmissions
US5504818A (en) * 1991-04-19 1996-04-02 Okano; Hirokazu Information processing system using error-correcting codes and cryptography
US5138659A (en) * 1991-05-02 1992-08-11 General Instrument Corporation Conversion of television signal formats with retention of common control data stream
US5551033A (en) 1991-05-17 1996-08-27 Zenith Data Systems Corporation Apparatus for maintaining one interrupt mask register in conformity with another in a manner invisible to an executing program
US5163096A (en) * 1991-06-06 1992-11-10 International Business Machines Corporation Storage protection utilizing public storage key control
US5224162A (en) 1991-06-14 1993-06-29 Nippon Telegraph And Telephone Corporation Electronic cash system
US5438508A (en) * 1991-06-28 1995-08-01 Digital Equipment Corporation License document interchange format for license management system
CA2045907C (en) * 1991-06-28 1998-12-15 Gerald B. Anderson A method for storing and retrieving annotations and redactions in final form documents
US5469571A (en) 1991-07-15 1995-11-21 Lynx Real-Time Systems, Inc. Operating system architecture using multiple priority light weight kernel task based interrupt handling
FR2681490B1 (en) 1991-09-12 1998-09-18 Gemplus Card Int PROCEDURE AND DEVICE FOR CERTIFICATION OF MESSAGES TRANSMITTED BY FAX
US5200999A (en) 1991-09-27 1993-04-06 International Business Machines Corporation Public key cryptosystem key management based on control vectors
US5201000A (en) 1991-09-27 1993-04-06 International Business Machines Corporation Method for generating public and private key pairs without using a passphrase
ES2129043T3 (en) 1991-10-03 1999-06-01 Thomson Multimedia Sa METHOD FOR CUSTOMIZING A DEVICE WITH A SMART CARD.
GB9121995D0 (en) * 1991-10-16 1991-11-27 Jonhig Ltd Value transfer system
JPH05122701A (en) 1991-10-25 1993-05-18 Canon Inc Charging information processing unit
US5453601A (en) 1991-11-15 1995-09-26 Citibank, N.A. Electronic-monetary system
US5157726A (en) 1991-12-19 1992-10-20 Xerox Corporation Document copy authentication
US5457540A (en) 1992-01-06 1995-10-10 Canon Kabushiki Kaisha Image processing method and apparatus in which identification information is added based on image density
US5428685A (en) 1992-01-22 1995-06-27 Fujitsu Limited IC memory card and method of protecting data therein
US5607411A (en) 1992-02-10 1997-03-04 Scott N. Heironimus Containment and treatment aspirator system and method
US5442706A (en) 1992-02-27 1995-08-15 Hughes Aircraft Company Secure mobile storage
JP3073590B2 (en) 1992-03-16 2000-08-07 富士通株式会社 Electronic data protection system, licensor's device and user's device
US5291598A (en) 1992-04-07 1994-03-01 Gregory Grundy Method and system for decentralized manufacture of copy-controlled software
US5313521A (en) * 1992-04-15 1994-05-17 Fujitsu Limited Key distribution protocol for file transfer in the local area network
JPH05298373A (en) 1992-04-24 1993-11-12 Olympus Optical Co Ltd Portable type information terminal equipment
JP2659896B2 (en) 1992-04-29 1997-09-30 インターナショナル・ビジネス・マシーンズ・コーポレイション Structured document copy management method and structured document copy management device
US5349662A (en) 1992-05-21 1994-09-20 International Business Machines Corporation Method of and apparatus for providing automatic detection of user activity
US5515538A (en) 1992-05-29 1996-05-07 Sun Microsystems, Inc. Apparatus and method for interrupt handling in a multi-threaded operating system kernel
US5353351A (en) * 1992-06-09 1994-10-04 At&T Bell Laboratories Secure teleconferencing
JPH0644755A (en) 1992-07-24 1994-02-18 Sony Corp Method for transmitting video signal and recorder therefor
US5367388A (en) 1992-07-27 1994-11-22 Scitex Corporation Ltd. Electronic separation scanner
JPH0646419A (en) 1992-07-27 1994-02-18 Lsi Japan Kk Tv charging system
JP3217137B2 (en) 1992-07-28 2001-10-09 株式会社日立製作所 Video signal recording device, playback device, and transmission device
JPH08504976A (en) * 1992-09-21 1996-05-28 ユニロック (シンガポール) プライベート リミテッド Software registration system
US5293422A (en) 1992-09-23 1994-03-08 Dynatek, Inc. Usage control system for computer software
JPH06132916A (en) 1992-10-15 1994-05-13 Mitsubishi Corp Receiving device
US5323464A (en) 1992-10-16 1994-06-21 International Business Machines Corporation Commercial data masking
US5319705A (en) * 1992-10-21 1994-06-07 International Business Machines Corporation Method and system for multimedia access control enablement
JPH06141004A (en) 1992-10-27 1994-05-20 Mitsubishi Corp Charging system
JPH06152587A (en) 1992-11-05 1994-05-31 Nippon Telegr & Teleph Corp <Ntt> Method and device for digital communication
FR2698510B1 (en) 1992-11-26 1994-12-23 Schlumberger Ind Sa Communication network.
US5270773A (en) 1992-11-27 1993-12-14 Xerox Corporation Image producing device with security to prevent disclosure of sensitive documents
US5341425A (en) 1992-12-02 1994-08-23 Scientific Atlanta, Inc. Methods and apparatus for uniquely encrypting data at a plurality of data transmission sites for transmission to a reception site
US5465299A (en) * 1992-12-03 1995-11-07 Hitachi, Ltd. Electronic document processing system and method of forming digital signature
US5986690A (en) 1992-12-09 1999-11-16 Discovery Communications, Inc. Electronic book selection and delivery system
US5579223A (en) * 1992-12-24 1996-11-26 Microsoft Corporation Method and system for incorporating modifications made to a computer program into a translated version of the computer program
US5355414A (en) 1993-01-21 1994-10-11 Ast Research, Inc. Computer security system
JPH06223041A (en) 1993-01-22 1994-08-12 Fujitsu Ltd Rarge-area environment user certification system
US6415271B1 (en) 1993-02-10 2002-07-02 Gm Network Limited Electronic cash eliminating payment risk
US5737536A (en) 1993-02-19 1998-04-07 Borland International, Inc. System and methods for optimized access in a multi-user environment
US5493728A (en) 1993-02-19 1996-02-20 Borland International, Inc. System and methods for optimized access in a multi-user environment
US5483658A (en) 1993-02-26 1996-01-09 Grube; Gary W. Detection of unauthorized use of software applications in processing devices
US5444782A (en) 1993-03-09 1995-08-22 Uunet Technologies, Inc. Computer network encryption/decryption device
JPH06264201A (en) 1993-03-15 1994-09-20 Nippon Steel Corp Production of electrode material for electrolytic capacitor
JPH06274397A (en) * 1993-03-24 1994-09-30 Toshiba Corp File control system
US5349643A (en) 1993-05-10 1994-09-20 International Business Machines Corporation System and method for secure initial program load for diskless workstations
US5649099A (en) * 1993-06-04 1997-07-15 Xerox Corporation Method for delegating access rights through executable access control program without delegating access rights not in a specification to any intermediary nor comprising server security
US5402492A (en) 1993-06-18 1995-03-28 Ast Research, Inc. Security system for a stand-alone computer
US5414772A (en) * 1993-06-23 1995-05-09 Gemplus Development System for improving the digital signature algorithm
US5455863A (en) 1993-06-29 1995-10-03 Motorola, Inc. Method and apparatus for efficient real-time authentication and encryption in a communication system
US5428606A (en) 1993-06-30 1995-06-27 Moskowitz; Scott A. Digital information commodities exchange
US5483598A (en) * 1993-07-01 1996-01-09 Digital Equipment Corp., Patent Law Group Message encryption using a hash function
US5442541A (en) * 1993-07-23 1995-08-15 Xerox Corporation Enabling features over common communication channel
US5715393A (en) 1993-08-16 1998-02-03 Motorola, Inc. Method for remote system process monitoring
US5400403A (en) * 1993-08-16 1995-03-21 Rsa Data Security, Inc. Abuse-resistant object distribution system and method
US5345508A (en) 1993-08-23 1994-09-06 Apple Computer, Inc. Method and apparatus for variable-overhead cached encryption
IL110891A (en) * 1993-09-14 1999-03-12 Spyrus System and method for data access control
US5347581A (en) * 1993-09-15 1994-09-13 Gemplus Developpement Verification process for a communication system
US5381480A (en) * 1993-09-20 1995-01-10 International Business Machines Corporation System for translating encrypted data
US5646992A (en) * 1993-09-23 1997-07-08 Digital Delivery, Inc. Assembly, distribution, and use of digital information
US5410602A (en) 1993-09-27 1995-04-25 Motorola, Inc. Method for key management of point-to-point communications
US5680452A (en) 1993-10-18 1997-10-21 Tecsec Inc. Distributed cryptographic object method
US5369702A (en) 1993-10-18 1994-11-29 Tecsec Incorporated Distributed cryptographic object method
CA2129075C (en) 1993-10-18 1999-04-20 Joseph J. Daniele Electronic copyright royalty accounting system using glyphs
US5343527A (en) * 1993-10-27 1994-08-30 International Business Machines Corporation Hybrid encryption method and system for protecting reusable software components
US5371794A (en) 1993-11-02 1994-12-06 Sun Microsystems, Inc. Method and apparatus for privacy and authentication in wireless networks
US5473691A (en) 1993-11-05 1995-12-05 Microsoft Corporation System and method for computer data transmission
US5841886A (en) 1993-11-18 1998-11-24 Digimarc Corporation Security system for photographic identification
CA2136919A1 (en) * 1993-12-09 1995-06-10 John Timothy Hember Local area network encryption decryption system
US5584023A (en) * 1993-12-27 1996-12-10 Hsu; Mike S. C. Computer system including a transparent and secure file transform mechanism
US5450493A (en) 1993-12-29 1995-09-12 At&T Corp. Secure communication method and apparatus
US5499340A (en) * 1994-01-12 1996-03-12 Isogon Corporation Method and apparatus for computer program usage monitoring
US5666411A (en) * 1994-01-13 1997-09-09 Mccarty; Johnnie C. System for computer software protection
CA2176032A1 (en) * 1994-01-13 1995-07-20 Bankers Trust Company Cryptographic system and method with key escrow feature
GB9400971D0 (en) 1994-01-19 1994-03-16 Mor Limited Method of and apparatus for manipulating digital data
US5509074A (en) * 1994-01-27 1996-04-16 At&T Corp. Method of protecting electronically published materials using cryptographic protocols
US5504816A (en) * 1994-02-02 1996-04-02 Gi Corporation Method and apparatus for controlling access to digital signals
US5553143A (en) * 1994-02-04 1996-09-03 Novell, Inc. Method and apparatus for electronic licensing
US5497420A (en) 1994-02-07 1996-03-05 Le Groupe Vide/ otron Lte/ e Cable TV system using passwords
US5530752A (en) * 1994-02-22 1996-06-25 Convex Computer Corporation Systems and methods for protecting software from unlicensed copying and use
US5511121A (en) 1994-02-23 1996-04-23 Bell Communications Research, Inc. Efficient electronic money
US5479514A (en) * 1994-02-23 1995-12-26 International Business Machines Corporation Method and apparatus for encrypted communication in data networks
US5835601A (en) 1994-03-15 1998-11-10 Kabushiki Kaisha Toshiba File editing system and shared file editing system with file content secrecy, file version management, and asynchronous editing
US5499298A (en) * 1994-03-17 1996-03-12 National University Of Singapore Controlled dissemination of digital information
US5535383A (en) 1994-03-17 1996-07-09 Sybase, Inc. Database system with methods for controlling object interaction by establishing database contracts between objects
US5553281A (en) 1994-03-21 1996-09-03 Visual F/X, Inc. Method for computer-assisted media processing
JPH07319691A (en) 1994-03-29 1995-12-08 Toshiba Corp Resource protective device, privilege protective device, software utilization method controller and software utilization method control system
JP3139910B2 (en) 1994-03-31 2001-03-05 株式会社日立製作所 Information receiving / recording / reproducing device and information receiving device
US6744894B1 (en) 1994-04-01 2004-06-01 Mitsubishi Corporation Data management system
JPH07271865A (en) 1994-04-01 1995-10-20 Mitsubishi Corp Method for managing copyright of data base
US5974141A (en) 1995-03-31 1999-10-26 Mitsubishi Corporation Data management system
US7036019B1 (en) * 1994-04-01 2006-04-25 Intarsia Software Llc Method for controlling database copyrights
JPH07283809A (en) 1994-04-08 1995-10-27 Mitsubishi Corp Ciphering key system
CA2143874C (en) 1994-04-25 2000-06-20 Thomas Edward Cooper Method and apparatus for enabling trial period use of software products: method and apparatus for utilizing a decryption stub
US5495533A (en) * 1994-04-29 1996-02-27 International Business Machines Corporation Personal key archive
US5504817A (en) * 1994-05-09 1996-04-02 Yeda Research And Development Co. Ltd. At The Weizmann Institute Of Science Method and apparatus for memory efficient variants of public key encryption and identification schemes for smart card applications
US5515441A (en) * 1994-05-12 1996-05-07 At&T Corp. Secure communication method and apparatus
US5805706A (en) * 1996-04-17 1998-09-08 Intel Corporation Apparatus and method for re-encrypting data without unsecured exposure of its non-encrypted format
US5475757A (en) * 1994-06-07 1995-12-12 At&T Corp. Secure data transmission method
US5577121A (en) * 1994-06-09 1996-11-19 Electronic Payment Services, Inc. Transaction system for integrated circuit cards
US5513260A (en) 1994-06-29 1996-04-30 Macrovision Corporation Method and apparatus for copy protection for various recording media
US5586036A (en) 1994-07-05 1996-12-17 Pitney Bowes Inc. Postage payment system with security for sensitive mailer data and enhanced carrier data functionality
US5574787A (en) 1994-07-25 1996-11-12 Ryan; John O. Apparatus and method for comprehensive copy protection for video platforms and unprotected source material
US5719938A (en) 1994-08-01 1998-02-17 Lucent Technologies Inc. Methods for providing secure access to shared information
US5557346A (en) 1994-08-11 1996-09-17 Trusted Information Systems, Inc. System and method for key escrow encryption
US6091835A (en) 1994-08-31 2000-07-18 Penop Limited Method and system for transcribing electronic affirmations
US5541994A (en) 1994-09-07 1996-07-30 Mytec Technologies Inc. Fingerprint controlled public key cryptographic system
JP3542088B2 (en) * 1994-09-09 2004-07-14 富士通株式会社 Data content utilization system
US5606609A (en) 1994-09-19 1997-02-25 Scientific-Atlanta Electronic document verification system and method
JPH08185448A (en) 1994-09-30 1996-07-16 Mitsubishi Corp System and device for managing data copyright
US6449717B1 (en) 1994-09-30 2002-09-10 Mitsubishi Corporation Data copyright management system
US6741991B2 (en) 1994-09-30 2004-05-25 Mitsubishi Corporation Data management system
US7302415B1 (en) 1994-09-30 2007-11-27 Intarsia Llc Data copyright management system
JPH08101867A (en) 1994-09-30 1996-04-16 Fujitsu Ltd Software use permission system
EP0704785B1 (en) 1994-09-30 2003-11-19 Mitsubishi Corporation Data copyright management system
US6002772A (en) 1995-09-29 1999-12-14 Mitsubishi Corporation Data management system
US5655961A (en) 1994-10-12 1997-08-12 Acres Gaming, Inc. Method for operating networked gaming devices
US5864683A (en) 1994-10-12 1999-01-26 Secure Computing Corporartion System for providing secure internetwork by connecting type enforcing secure computers to external network for limiting access to data based on user and process access rights
DE69532434T2 (en) 1994-10-27 2004-11-11 Mitsubishi Corp. Device for file copyright management system
EP1691316A1 (en) 1994-10-27 2006-08-16 Intarsia Software LLC Data copyright management system
US6789197B1 (en) 1994-10-27 2004-09-07 Mitsubishi Corporation Apparatus for data copyright management system
US6076077A (en) 1995-10-27 2000-06-13 Mitsubishi Corporation Data management system
US6424715B1 (en) 1994-10-27 2002-07-23 Mitsubishi Corporation Digital content management system and apparatus
US5586301A (en) 1994-11-09 1996-12-17 Ybm Technologies, Inc. Personal computer hard disk protection system
US5634012A (en) 1994-11-23 1997-05-27 Xerox Corporation System for controlling the distribution and use of digital works having a fee reporting mechanism
JPH08263438A (en) 1994-11-23 1996-10-11 Xerox Corp Distribution and use control system of digital work and access control method to digital work
AU4409396A (en) 1994-12-06 1996-06-26 Intel Corporation An improved method and apparatus for embedding a real-time multi-tasking kernel in a non-real-time operating system
DE69532028T2 (en) 1994-12-13 2004-06-24 Mitsubishi Corp. Encryption system for secure electronic transactions
US6182218B1 (en) 1994-12-13 2001-01-30 Mitsubishi Corporation Digital content management system using electronic watermark
US5646997A (en) 1994-12-14 1997-07-08 Barton; James M. Method and apparatus for embedding authentication information within digital data
US5485577A (en) 1994-12-16 1996-01-16 General Instrument Corporation Of Delaware Method and apparatus for incremental delivery of access rights
US5606613A (en) 1994-12-22 1997-02-25 Pitney Bowes Inc. Method for identifying a metering accounting vault to digital printer
US5771383A (en) 1994-12-27 1998-06-23 International Business Machines Corp. Shared memory support method and apparatus for a microkernel data processing system
US6360338B1 (en) 1995-01-24 2002-03-19 Compaq Computer Corporation Enhanced instrumentation software in fault tolerant systems
CN101359350B (en) 1995-02-13 2012-10-03 英特特拉斯特技术公司 Methods for secure transaction management and electronic rights protection
US5604800A (en) 1995-02-13 1997-02-18 Eta Technologies Corporation Personal access management system
US5642418A (en) 1995-02-21 1997-06-24 Bell Atlantic Network Services, Inc. Satellite television system and method
GB9503738D0 (en) 1995-02-24 1995-04-19 Int Computers Ltd Cryptographic key management
JPH08242229A (en) 1995-03-01 1996-09-17 Fujitsu Ltd State matching processing system for monitoring network
GB9504221D0 (en) 1995-03-02 1995-04-19 Mor Limited Method of and apparatus for manipulating digital data works
US5651064A (en) 1995-03-08 1997-07-22 544483 Alberta Ltd. System for preventing piracy of recorded media
US5553145A (en) 1995-03-21 1996-09-03 Micali; Silvia Simultaneous electronic transactions with visible trusted parties
KR0160685B1 (en) * 1995-03-31 1998-12-15 김광호 Card reader/writer controller of personal computer with illegal use prevention operation by chip-in card
JPH08328880A (en) 1995-05-31 1996-12-13 Mitsubishi Electric Corp Computer operation management system for operating system capable of simultaneous executing of plural application programs
JPH08329011A (en) 1995-06-02 1996-12-13 Mitsubishi Corp Data copyright management system
JPH0922352A (en) 1995-07-07 1997-01-21 Mitsubishi Electric Corp Copyright managing device
US6006328A (en) 1995-07-14 1999-12-21 Christopher N. Drake Computer software authentication, protection, and security system
US5765152A (en) 1995-10-13 1998-06-09 Trustees Of Dartmouth College System and method for managing copyrighted electronic media
US7801817B2 (en) 1995-10-27 2010-09-21 Makoto Saito Digital content management system and apparatus
US5689587A (en) 1996-02-09 1997-11-18 Massachusetts Institute Of Technology Method and apparatus for data hiding in images
TW313642B (en) 1996-06-11 1997-08-21 Ibm A uniform mechanism for using signed content
SG67354A1 (en) 1996-06-27 1999-09-21 Inst Of Systems Science Nation Computationally efficient method for trusted and dynamic digital objects dissemination
US5889868A (en) 1996-07-02 1999-03-30 The Dice Company Optimization methods for the insertion, protection, and detection of digital watermarks in digitized data
US6044367A (en) 1996-08-02 2000-03-28 Hewlett-Packard Company Distributed I/O store
US5848155A (en) 1996-09-04 1998-12-08 Nec Research Institute, Inc. Spread spectrum watermark for embedded signalling
US5765176A (en) 1996-09-06 1998-06-09 Xerox Corporation Performing document image management tasks using an iconic image having embedded encoded information
US5825892A (en) 1996-10-28 1998-10-20 International Business Machines Corporation Protecting images with an image watermark
US6519623B1 (en) 1996-10-31 2003-02-11 International Business Machines Corporation Generic semaphore for concurrent access by multiple operating systems
DE69807807T2 (en) 1997-01-27 2003-05-28 Koninkl Philips Electronics Nv METHOD AND DEVICE FOR TRANSMITTING CONTENT INFORMATION AND RELATED ADDITIONAL INFORMATION
US6026430A (en) 1997-03-24 2000-02-15 Butman; Ronald A. Dynamic client registry apparatus and method
JP3265241B2 (en) 1997-09-10 2002-03-11 シャープ株式会社 Rice cooker and high frequency heating device
US6377993B1 (en) 1997-09-26 2002-04-23 Mci Worldcom, Inc. Integrated proxy interface for web based data management reports
US6160891A (en) * 1997-10-20 2000-12-12 Sun Microsystems, Inc. Methods and apparatus for recovering keys
US7024681B1 (en) 1997-12-04 2006-04-04 Verizon Laboratories Inc. Method and apparatus for near video on demand
JPH11234264A (en) 1998-02-17 1999-08-27 Canon Inc Electronic papermarking system, electronic information distribution system using the same and storage medium
US6226618B1 (en) * 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
JP4763866B2 (en) 1998-10-15 2011-08-31 インターシア ソフトウェア エルエルシー Method and apparatus for protecting digital data by double re-encryption
JP3102417B2 (en) 1998-10-30 2000-10-23 富士ゼロックス株式会社 Image processing apparatus and image processing method
US6851053B1 (en) 1999-03-02 2005-02-01 Microsoft Corporation Multiparty conference authentication
US7711152B1 (en) 1999-04-30 2010-05-04 Davida George I System and method for authenticated and privacy preserving biometric identification systems
US6392351B1 (en) * 1999-05-03 2002-05-21 Evgeny V. Shun'ko Inductive RF plasma source with external discharge bridge
EP1076279A1 (en) 1999-08-13 2001-02-14 Hewlett-Packard Company Computer platforms and their methods of operation
JP4181282B2 (en) 1999-09-16 2008-11-12 株式会社東芝 Electronic currency terminal
US7213005B2 (en) 1999-12-09 2007-05-01 International Business Machines Corporation Digital content distribution using web broadcasting services
US6668324B1 (en) 1999-12-13 2003-12-23 Intel Corporation System and method for safeguarding data within a device
US6690459B2 (en) 2001-03-05 2004-02-10 Trex Enterprises, Corp. Method and apparatus for fiber alignment using light leaked from cladding
US6874089B2 (en) 2002-02-25 2005-03-29 Network Resonance, Inc. System, method and computer program product for guaranteeing electronic transactions
US8438392B2 (en) 2002-06-20 2013-05-07 Krimmeni Technologies, Inc. Method and system for control of code execution on a general purpose computing device and control of code execution in a recursive security protocol
US7337323B2 (en) 2002-09-20 2008-02-26 Safenet, Inc. Boot-up and hard drive protection using a USB-compliant token
US7484095B2 (en) 2003-01-16 2009-01-27 Sun Microsystems, Inc. System for communicating program data between a first device and a second device
US7363434B2 (en) 2003-03-18 2008-04-22 American Megatrends, Inc. Method, system, and computer-readable medium for updating memory devices in a multi-processor computer system
US7216238B2 (en) 2003-06-30 2007-05-08 Symbol Technologies, Inc. System and method for controlling usage of software on computing devices
JP4268844B2 (en) 2003-07-15 2009-05-27 Tdk株式会社 Manufacturing method of multilayer ceramic electronic component and multilayer ceramic electronic component
JP2006236193A (en) 2005-02-28 2006-09-07 Fujitsu Ltd Starting program execution method, device, storage medium and program
US7660063B2 (en) 2006-03-03 2010-02-09 International Business Machines Corporation Managing data storage media and multiple cartridge memories of a data storage cartridge
JP5056037B2 (en) 2007-02-06 2012-10-24 パナソニック株式会社 Induction heating rice cooker
JP5075597B2 (en) 2007-11-30 2012-11-21 株式会社神鋼環境ソリューション Purified water recovery device and purified water recovery method
JP5327693B2 (en) 2008-03-19 2013-10-30 Toto株式会社 Fuel cell system
JP5324936B2 (en) 2009-01-21 2013-10-23 サンデン株式会社 Variable capacity compressor and its minimum inclination setting method
JP5276476B2 (en) 2009-03-02 2013-08-28 株式会社神戸製鋼所 Aluminum alloy clad material
JP5316102B2 (en) 2009-03-09 2013-10-16 日産自動車株式会社 Control device for internal combustion engine
JP5334324B2 (en) 2010-03-17 2013-11-06 シャープ株式会社 Content distribution system, content distribution apparatus, content distribution method, program thereof, and content reproduction apparatus

Cited By (46)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8181218B2 (en) 2000-06-30 2012-05-15 Comcast Ip Holdings I, Llc Advanced set top terminal having a video call feature
US7565680B1 (en) * 2000-06-30 2009-07-21 Comcast Ip Holdings I, Llc Advanced set top terminal having a video call feature
US9106946B2 (en) 2000-06-30 2015-08-11 Comcast Ip Holdings I, Llc Advanced set top terminal having a video call feature
US20090271834A1 (en) * 2000-06-30 2009-10-29 Comcast Ip Holdings I, Llc Advanced Set Top Terminal Having a Video Call Feature
US20020120574A1 (en) * 2000-10-17 2002-08-29 Tadashi Ezaki Content receiving apparatus and method, storage medium, and server
US8312252B2 (en) 2000-10-17 2012-11-13 Sony Corporation Content receiving apparatus and method, storage medium, and server
US20050187880A1 (en) * 2000-10-17 2005-08-25 Sony Corporation Content receiving apparatus and method, storage medium, and server
US7035827B2 (en) * 2000-10-17 2006-04-25 Sony Corporation Content receiving apparatus and method, storage medium, and server
US7359511B2 (en) 2000-12-18 2008-04-15 Matsushita Electric Industrial Co., Ltd. Encryption transmission system
US20030145336A1 (en) * 2000-12-18 2003-07-31 Natsume Matsuzaki Encryption transmission system
US8904181B1 (en) 2001-03-23 2014-12-02 David P. Felsher System and method for secure three-party communications
US7869591B1 (en) * 2001-03-23 2011-01-11 Nagel Robert H System and method for secure three-party communications
US9419951B1 (en) 2001-03-23 2016-08-16 St. Luke Technologies, Llc System and method for secure three-party communications
EP1461894A4 (en) * 2001-12-11 2010-04-07 Scientific Atlanta Encrypting received content
EP1461894A1 (en) * 2001-12-11 2004-09-29 Scientific-Atlanta, Inc. Encrypting received content
US20030108199A1 (en) * 2001-12-11 2003-06-12 Pinder Howard G. Encrypting received content
WO2003050996A1 (en) 2001-12-11 2003-06-19 Scientific-Atlanta, Inc. Encrypting received content
US8312265B2 (en) 2001-12-11 2012-11-13 Pinder Howard G Encrypting received content
US9177116B2 (en) 2002-08-23 2015-11-03 Sandisk Technologies Inc. Protection of digital data content
US20040039932A1 (en) * 2002-08-23 2004-02-26 Gidon Elazar Apparatus, system and method for securing digital documents in a digital appliance
US8595488B2 (en) 2002-08-23 2013-11-26 Sandisk Technologies Inc. Apparatus, system and method for securing digital documents in a digital appliance
WO2004019191A2 (en) * 2002-08-23 2004-03-04 Mdrm, Inc. Apparatus, system and method for securing digital documents in a digital appliance
WO2004019191A3 (en) * 2002-08-23 2004-04-22 Mdrm Inc Apparatus, system and method for securing digital documents in a digital appliance
US20100095383A1 (en) * 2002-08-23 2010-04-15 Gidon Elazar Protection of Digital Data Content
US7979700B2 (en) 2002-08-23 2011-07-12 Sandisk Corporation Apparatus, system and method for securing digital documents in a digital appliance
US8266444B2 (en) 2002-11-27 2012-09-11 Entropic Communications, Inc. Chip integrated protection means
US8738930B2 (en) 2002-11-27 2014-05-27 Entropic Communications, Inc. Chip integrated protection means
US20060156033A1 (en) * 2002-11-27 2006-07-13 Koninklijke Philips Electronics N.V. Chip integrated protection means
US11790413B2 (en) 2003-02-05 2023-10-17 Hoffberg Family Trust 2 System and method for communication
US10943273B2 (en) 2003-02-05 2021-03-09 The Hoffberg Family Trust 2004-1 System and method for determining contingent relevance
US20070233910A1 (en) * 2003-03-27 2007-10-04 Sandisk Il Ltd. Data Storage Device With Full Access By All Users
US7793014B2 (en) 2003-03-27 2010-09-07 Sandisk Il Ltd. Data storage device with multi-access capabilities
US20060010500A1 (en) * 2004-02-03 2006-01-12 Gidon Elazar Protection of digital data content
US20050243364A1 (en) * 2004-04-28 2005-11-03 Canon Kabushiki Kaisha Image processing system
US8151366B2 (en) * 2004-11-12 2012-04-03 Cinram International Inc. Secure optical media storage
US20060104190A1 (en) * 2004-11-12 2006-05-18 Babinski James P Secure optical media storage
WO2006096862A2 (en) * 2005-03-07 2006-09-14 Willis, Taun, Eric Electronic verification systems
US20060200855A1 (en) * 2005-03-07 2006-09-07 Willis Taun E Electronic verification systems
WO2006096862A3 (en) * 2005-03-07 2007-12-21 Willis Taun Eric Electronic verification systems
US8813181B2 (en) 2005-03-07 2014-08-19 Taun Eric Willis Electronic verification systems
USRE49334E1 (en) 2005-10-04 2022-12-13 Hoffberg Family Trust 2 Multifactorial optimization system and method
US8417866B2 (en) 2005-12-08 2013-04-09 Sandisk Technologies Inc. Media card command pass through methods
US20090182919A1 (en) * 2005-12-08 2009-07-16 Robert Chin-Tse Chang Media Card Command Pass Through Methods
US8078788B2 (en) 2005-12-08 2011-12-13 Sandisk Technologies Inc. Media card command pass through methods
US8839005B2 (en) 2006-09-13 2014-09-16 Sandisk Technologies Inc. Apparatus for transferring licensed digital content between users
US9032154B2 (en) 2007-12-13 2015-05-12 Sandisk Technologies Inc. Integration of secure data transfer applications for generic IO devices

Also Published As

Publication number Publication date
US6438694B2 (en) 2002-08-20
US20020112173A1 (en) 2002-08-15
US6128605A (en) 2000-10-03
US5867579A (en) 1999-02-02
US9245260B2 (en) 2016-01-26
US20070079145A1 (en) 2007-04-05
US7986785B2 (en) 2011-07-26
EP0715241B1 (en) 2004-01-14
US6408390B1 (en) 2002-06-18
DE69532434D1 (en) 2004-02-19
DE69532434T2 (en) 2004-11-11
EP0715241A3 (en) 1999-02-03
EP0715241A2 (en) 1996-06-05
US8407782B2 (en) 2013-03-26
JPH08287014A (en) 1996-11-01
JP4944256B2 (en) 2012-05-30
US20130061062A9 (en) 2013-03-07
JP2011138522A (en) 2011-07-14
US20070088960A1 (en) 2007-04-19

Similar Documents

Publication Publication Date Title
US6438694B2 (en) Apparatus for data copyright management system
US6789197B1 (en) Apparatus for data copyright management system
US20030012385A1 (en) Data copyright management system
US6449717B1 (en) Data copyright management system
US20070038575A1 (en) Data copyright management system
US6002772A (en) Data management system
EP0752663B1 (en) Copyright control system
EP0709760B1 (en) Data copyright management system
US5784464A (en) System for and method of authenticating a client
JP3625983B2 (en) Data management system
US20020059238A1 (en) Data management system
EP0886409A2 (en) Information providing system
EP0878753A2 (en) Data content dealing system
JPH08185448A (en) System and device for managing data copyright
JPH088851A (en) Information distribution system and information distribution method
JP4431306B2 (en) Terminal device, video conference data management method, and program
JP4099461B2 (en) Data copyright management device
JP4030486B2 (en) Terminal device, digital cash management system
JP2006325246A (en) Digital cache management system
JP4512312B2 (en) Terminal device and program
JP2008090849A (en) Data copyright management apparatus

Legal Events

Date Code Title Description
STCF Information on status: patent grant

Free format text: PATENTED CASE

AS Assignment

Owner name: INTARSIA SOFTWARE LLC,NEVADA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:MITSUBISHI CORPORATION;REEL/FRAME:016630/0356

Effective date: 20050208

Owner name: INTARSIA SOFTWARE LLC, NEVADA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:MITSUBISHI CORPORATION;REEL/FRAME:016630/0356

Effective date: 20050208

FPAY Fee payment

Year of fee payment: 4

AS Assignment

Owner name: MITSUBISHI CORPORATION, JAPAN

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SAITO, MAKOTO;MOMLKI, SHUNICHI;REEL/FRAME:018313/0966

Effective date: 19950929

Owner name: MITSUBISHI CORPORATION, JAPAN

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SALTO, MAKOTO;MOMIKI, SHUNICHI;REEL/FRAME:018279/0605

Effective date: 19950929

FPAY Fee payment

Year of fee payment: 8

FPAY Fee payment

Year of fee payment: 12

AS Assignment

Owner name: XYLON LLC, NEVADA

Free format text: MERGER;ASSIGNOR:INTARSIA SOFTWARE LLC;REEL/FRAME:036743/0455

Effective date: 20150813

AS Assignment

Owner name: LF CAPITAL PARTNERS, LLC, FLORIDA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:INTELLECTUAL VENTURES ASSETS 121 LLC;REEL/FRAME:049425/0896

Effective date: 20181219

AS Assignment

Owner name: PIRACY PROTECTION LLC, DELAWARE

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:LF CAPITAL PARTNERS, LLC;REEL/FRAME:051364/0522

Effective date: 20190911