US20040117440A1 - Media network environment - Google Patents
Media network environment Download PDFInfo
- Publication number
- US20040117440A1 US20040117440A1 US10/687,357 US68735703A US2004117440A1 US 20040117440 A1 US20040117440 A1 US 20040117440A1 US 68735703 A US68735703 A US 68735703A US 2004117440 A1 US2004117440 A1 US 2004117440A1
- Authority
- US
- United States
- Prior art keywords
- server
- client
- hub network
- license
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
- 238000000034 method Methods 0.000 abstract description 20
- 230000008859 change Effects 0.000 description 12
- 230000003287 optical effect Effects 0.000 description 11
- 230000008569 process Effects 0.000 description 10
- 238000012790 confirmation Methods 0.000 description 9
- 238000005516 engineering process Methods 0.000 description 8
- 238000013475 authorization Methods 0.000 description 7
- 230000007246 mechanism Effects 0.000 description 6
- 230000004044 response Effects 0.000 description 5
- 238000012546 transfer Methods 0.000 description 5
- 238000007726 management method Methods 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 238000009877 rendering Methods 0.000 description 3
- 230000009471 action Effects 0.000 description 2
- 230000008901 benefit Effects 0.000 description 2
- 230000001010 compromised effect Effects 0.000 description 2
- 238000004590 computer program Methods 0.000 description 2
- 238000012217 deletion Methods 0.000 description 2
- 230000037430 deletion Effects 0.000 description 2
- 230000002085 persistent effect Effects 0.000 description 2
- 238000012360 testing method Methods 0.000 description 2
- 230000001960 triggered effect Effects 0.000 description 2
- 241000699670 Mus sp. Species 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 239000012092 media component Substances 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000012552 review Methods 0.000 description 1
- 230000007704 transition Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/433—Content storage operation, e.g. storage operation in response to a pause request, caching operations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/23—Processing of content or additional data; Elementary server operations; Server middleware
- H04N21/234—Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs
- H04N21/2343—Processing of video elementary streams, e.g. splicing of video streams or manipulating encoded video stream scene graphs involving reformatting operations of video signals for distribution or compliance with end-user requests or end-user device requirements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/254—Management at additional data server, e.g. shopping server, rights management server
- H04N21/2543—Billing, e.g. for subscription services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/258—Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
- H04N21/25808—Management of client data
- H04N21/25816—Management of client data involving client authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/258—Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
- H04N21/25808—Management of client data
- H04N21/2585—Generation of a revocation list, e.g. of client devices involved in piracy acts
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/41—Structure of client; Structure of client peripherals
- H04N21/414—Specialised client platforms, e.g. receiver in car or embedded in a mobile appliance
- H04N21/41422—Specialised client platforms, e.g. receiver in car or embedded in a mobile appliance located in transportation means, e.g. personal vehicle
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/41—Structure of client; Structure of client peripherals
- H04N21/414—Specialised client platforms, e.g. receiver in car or embedded in a mobile appliance
- H04N21/4147—PVR [Personal Video Recorder]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/433—Content storage operation, e.g. storage operation in response to a pause request, caching operations
- H04N21/4331—Caching operations, e.g. of an advertisement for later insertion during playback
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/433—Content storage operation, e.g. storage operation in response to a pause request, caching operations
- H04N21/4334—Recording operations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
- H04N21/43615—Interfacing a Home Network, e.g. for connecting the client to a plurality of peripherals
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
- H04N21/43622—Interfacing an external recording device
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
- H04N21/4363—Adapting the video stream to a specific local network, e.g. a Bluetooth® network
- H04N21/43637—Adapting the video stream to a specific local network, e.g. a Bluetooth® network involving a wireless protocol, e.g. Bluetooth, RF or wireless LAN [IEEE 802.11]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
- H04N21/4367—Establishing a secure communication between the client and a peripheral device or smart card
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/44—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs
- H04N21/4402—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving reformatting operations of video signals for household redistribution, storage or real-time display
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/44—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs
- H04N21/4405—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving video stream decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/442—Monitoring of processes or resources, e.g. detecting the failure of a recording device, monitoring the downstream bandwidth, the number of times a movie has been viewed, the storage space available from the internal hard disk
- H04N21/44204—Monitoring of content usage, e.g. the number of times a movie has been viewed, copied or the amount which has been watched
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/442—Monitoring of processes or resources, e.g. detecting the failure of a recording device, monitoring the downstream bandwidth, the number of times a movie has been viewed, the storage space available from the internal hard disk
- H04N21/44231—Monitoring of peripheral device or external card, e.g. to detect processing problems in a handheld device or the failure of an external recording device
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/45—Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
- H04N21/462—Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
- H04N21/4627—Rights management associated to the content
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/60—Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client
- H04N21/63—Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
- H04N21/633—Control signals issued by server directed to the network components or client
- H04N21/6332—Control signals issued by server directed to the network components or client directed to client
- H04N21/6334—Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
- H04N21/63345—Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/80—Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
- H04N21/83—Generation or processing of protective or descriptive data associated with content; Content structuring
- H04N21/835—Generation of protective data, e.g. certificates
- H04N21/8355—Generation of protective data, e.g. certificates involving usage data, e.g. number of copies or viewings allowed
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N7/00—Television systems
- H04N7/16—Analogue secrecy systems; Analogue subscription systems
- H04N7/162—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
- H04N7/163—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing by receiver means only
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/101—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities
- G06F21/1012—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities to domains
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2803—Home automation networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2803—Home automation networks
- H04L12/2805—Home Audio Video Interoperability [HAVI] networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2803—Home automation networks
- H04L12/2807—Exchanging configuration information on appliance services in a home automation network
- H04L12/2812—Exchanging configuration information on appliance services in a home automation network describing content present in a home automation network, e.g. audio video content
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/101—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/50—Network service management, e.g. ensuring proper service fulfilment according to agreements
- H04L41/508—Network service management, e.g. ensuring proper service fulfilment according to agreements based on type of value added network service under agreement
- H04L41/509—Network service management, e.g. ensuring proper service fulfilment according to agreements based on type of value added network service under agreement wherein the managed service relates to media content delivery, e.g. audio, video or TV
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/104—Grouping of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/568—Storing data temporarily at an intermediate stage, e.g. caching
Definitions
- Audio and video media content such as music and movies
- digital forms such as in electronic files stored on optical storage (e.g., CDs and DVDs) or magnetic storage (e.g., hard disks).
- the digital content provides both high quality of reproduction and convenient access for users.
- Another benefit of digital content is that it is typically easy to create a high quality copy of the content. Users enjoy accessing the digital content through various devices in multiple locations.
- content owners are often concerned with uncontrolled and unauthorized copying and resulting potential problems, such as piracy.
- a network media environment includes: a first hub network including a first server and a first client, and said first server is connected to said first client; a second hub network including a second server and said first client, and said second server is connected to said first client, such that said first hub network and said second hub network overlap; wherein said first client stores first content bound to said first hub network and stores second content bound to said second hub network.
- a network media environment includes: a first hub network including a first server and a first client, and said first server is connected to said first client; a second hub network including a second server and said first client, and said second server is connected to said first client, such that said first hub network and said second hub network overlap; wherein said first server stores first content in a first source version of locked content data, said first server stores a first root license bound to said first hub network for said first source version, said second server stores second content in a second source version of locked content data, said second server stores a second root license bound to said second hub network for said second source version, said first client receives said first content streamed from said first source version by said first server, and said first client receives said second content streamed from said second source version by said second server.
- a network media environment includes: a first hub network including a first server; a second hub network including a second server and said first server, and said second server is connected to said first server, such that said first hub network and said second hub network overlap; wherein said first server stores a first license and a first version of locked content data, and said first version stores first content, said first server stores a second license and a second version of locked content data, and said second version stores second content, said first license is bound to said first hub network, and said second license is bound to said second hub network.
- a hub network includes: a server storing a root license and a source version of locked content data; a client connected to said server, and storing a first license, a first sub-copy version of locked content data, a second license, and a second sub-copy version of locked content data; wherein said source version of locked content data stores first content, said root license is bound to said hub network, said first sub-copy version stores said first content, said first license is bound to said hub network, said second sub-copy version stores second content, and said second license is bound to another hub network.
- FIGS. 1 - 16 illustrate one example of configuration and operation of one implementation of a media network environment.
- FIG. 17 shows a representation of one implementation of a media network environment.
- FIG. 18 shows a flowchart of one implementation of adding a device to a hub network as a member device.
- FIG. 19 shows a flowchart of one implementation of removing a device from a hub network as a member device.
- FIG. 20 shows a flowchart of one implementation of disconnecting a member device from a hub network.
- FIG. 21 shows a flowchart of one implementation of reconnecting a member device to a hub network.
- FIG. 22 shows a representation of one implementation of a discrete instance of content.
- FIG. 23 shows a representation of one implementation of a bound instance and a sub-copy.
- FIG. 24 shows a flowchart of one implementation of binding a discrete instance to a hub network.
- FIG. 25 shows a flowchart of one implementation of freeing a bound instance from a hub network.
- FIG. 26 shows a flowchart of one implementation of updating and refreshing a license.
- FIGS. 27 - 29 illustrate an example of disconnecting a device from a hub network and the operation of expiration periods.
- FIG. 30 shows a flowchart of one implementation of a client device presenting content data stored in a sub-copy on the client device.
- FIG. 31 shows a flowchart of one implementation of streaming content data from a bound instance on a server to a client.
- FIG. 32 shows a flowchart of one implementation of creating a sub-copy.
- the present invention provides methods and apparatus for managing devices and content in a network environment.
- a collection of devices is interconnected in a media network environment defining multiple hub networks of client-server relationships.
- a server provides access to content to clients by streaming content or sending copies to the clients.
- the server and clients work together to manage membership in the hub network, connection and disconnection with the hub network, content distribution in the hub network, and the state of content in the hub network.
- Content refers to the audio and/or video of an item of media, such as a movie or song.
- One item of content is one particular item of media, such as one movie.
- Content data refers to the data representing an item of content.
- An “instance” is a logical collection of data including the content data for an item of content. Accordingly, content data of an instance of content is, for example, moved and played (rendered).
- Play” and “present” refer to rendering and displaying the content data of an instance of content or otherwise presenting the content data according to the type of content (e.g., presenting audio and video for a movie or presenting audio for a song).
- “presenting an instance” refers to rendering and displaying the content data of an instance.
- a “license” refers to the data storing the permissions for using content data, such as whether content data is permitted to be played or copied by a device. Descriptions herein of what can and cannot be done with an instance or content data refer to permissions set by a license associated with the instance or content data, as appropriate.
- FIGS. 1 - 16 illustrate one example of configuration and operation of one implementation of a media network environment.
- a user Jim has established a home media network environment 100 including two devices: a PVR (personal video recorder) 105 connected to a television 110 .
- the PVR 105 is a media network compliant device, meaning that the PVR 105 operates according to the processes defined for a device that is a member of a hub network.
- the PVR 105 includes storage for storing copies of content (e.g., as electronic files stored on a hard disk) and is a server device.
- the PVR 105 is the server for a hub network and can provide content to client devices that are members in the hub network.
- the PVR 105 also defines a local environment (not shown).
- the local environment for the PVR 105 is defined as a physical area relative to the position of the PVR 105 (e.g., determined by round trip packet timing or GPS information).
- the PVR 105 is also a client device.
- the PVR 105 can render content directly or through a connected terminal device, such as through the connected television 110 .
- the PVR 105 is a member of a hub network as the server for the hub network and as a client in the hub network.
- the PVR 105 is marked with “HN 1 ” to indicate that the PVR 105 is a client device for hub network 1 (HN 1 ).
- the PVR 105 is also marked with “HN 1 *” to indicate that the PVR 105 is the server in HN 1 .
- the television 110 is not a media network compliant device, and so cannot become a member of a hub network.
- a non-compliant device can be a terminal device for a hub network, receiving data for presentation (e.g., displaying the video and outputting the audio for a movie), without storing the data for the content (beyond transiently).
- the PVR 105 renders content by outputting data for the content for presentation to the connected television 110 .
- the PVR 105 initially sets up the hub network HN 1 .
- the PVR 105 checks for other compliant devices connected to the PVR 105 .
- the PVR 105 authenticates a device, confirming the identity of the device, and authorizes an authenticated device, confirming that the device is a compliant device. If the PVR 105 does not authenticate and authorize a device, the PVR 105 does not add that device to the hub network HN 1 .
- the PVR 105 is the only compliant device.
- the PVR 105 adds itself to the hub network as the server and as a client.
- the television 110 is not a compliant device, and so the PVR 105 does not add the television 110 as a member.
- Jim has purchased movie A and movie B, and recorded television program C.
- Jim purchased movies A and B as electronic files downloaded from a network 115 connected to the PVR 105 .
- Jim recorded program C as an electronic file from a broadcast received by an integrated receiver of the PVR 105 .
- an instance that is compliant with hub network operation is in one of two exclusive states: discrete or bound.
- a discrete instance is independent of any hub network and can be played or presented through any compliant device (according to the license of the discrete instance).
- a compliant device cannot make a usable copy of a discrete instance.
- a discrete instance includes locked content data and a discrete license.
- the locked content data of the discrete instance is referred to as the “discrete version” of the locked content data.
- the locked content data is locked by being protected from unauthorized access, such as by encryption.
- a bound instance is bound to one hub network.
- the bound instance is one logical instance represented by locked content data and corresponding licenses stored on the server of the hub network and on zero or more of the clients of the hub network.
- the locked content data stored by the server is the source for copies of the content data in the hub network and is the “source version.” Copies of the source version content data are stored on clients and are “sub-copy versions” (though some or all of the data in the discrete version, the source version, and/or any of the sub-copy versions can be the same).
- a bound instance can only be played or presented through a compatible compliant device that is a member of that hub network. Members of that hub network can make sub-copies of the content data of a bound instance.
- a server device can change the state of a discrete instance from discrete to bound, disabling the discrete instance and enabling a bound instance.
- a disabled instance is rendered unusable (e.g., through deletion or encryption of the content data of the instance or disabling the license(s) for the instance).
- a server device can also change the state of a bound instance from bound to discrete, disabling the bound instance (including any corresponding sub-copies) and enabling a discrete instance.
- the server for a hub network manages root responsibility for a bound instance. Root responsibility includes issuing and managing the licenses for the content data of the bound instance in the hub network.
- the server holds a root license defining permissions for presenting the bound instance and for managing the content data and licenses of the bound instance in the hub network.
- a license is also created for the sub-copy from the root license.
- An instance of content that is not compliant with hub network operation is a non-compliant instance.
- a compliant device will play or copy a non-compliant instance according to whatever recognized copy control information may be associated with the instance.
- letter labels indicate the versions of locked content data of instances of content.
- the version of the locked content data and so also the state of the instance corresponding to the locked content data, is indicated by variations of the letter.
- Underlining indicates a discrete version of content.
- a discrete version of the movie A is indicated by “A”.
- An uppercase letter without underlining indicates a source version of locked content data, stored on a server.
- the source version of the movie A is indicated by “A”.
- a lowercase letter indicates a sub-copy version of locked content data.
- a sub-copy version of the movie A is indicated by “a”.
- the versions also have corresponding licenses (not shown in FIGS. 2 - 16 ): a discrete version has a discrete license, a source version has a root license, and a sub-copy version has a sub-copy license.
- Jim introduces the movies A and B to the hub network HN 1 through the PVR 105 by storing the discrete versions A and B in the PVR 105 .
- the PVR 105 also stores a discrete version C of the program C.
- Jim binds the discrete instances to the hub network HN 1 .
- the PVR 105 changes the state of the discrete instances for the discrete versions A, B, and C to be bound instances, and so creates source versions A, B, and C.
- the PVR 105 disables or deletes the discrete versions A, B, and C.
- Jim buys a car 120 that includes a compliant device.
- the car 120 is a server device (e.g., including storage) and a client device (e.g., including audio and video systems).
- the car 120 establishes a second hub network HN 2 , with the car 120 as the server (indicated by “HN 2 *”) and as a member client (indicated by “HN 2 ”).
- the car 120 defines a second local environment (not shown) based on relative distance from the car 120 (e.g., the car 120 includes components that determine round trip packet time or that provide GPS information defining the position of the car 120 ).
- the car 120 and the PVR 105 are physically close to one another and so the local environment of the car 120 is substantially coextensive with the local environment of the PVR 105 .
- Jim connects the two hub networks HN 1 and HN 2 .
- Each of the PVR 105 and the car 120 includes wireless network capability. Jim causes the PVR 105 and the car 120 to establish a wireless connection.
- the PVR 105 and the car 120 detect one another, each authenticates and authorizes the other to be added as member devices. Accordingly, the PVR 105 adds the car 120 as a member to the hub network HN 1 (indicated by the “HN 1 ” label added to the car 120 ), and the car 120 adds the PVR 105 as a member to the hub network HN 2 (indicated by the “HN 2 ” label added to the PVR 105 ).
- Jim introduces more content to the second hub network HN 2 .
- Jim buys a compliant instance of a movie X stored on an article of compliant media, such as a compliant optical disc.
- Compliant media operates according to the processes defined for content that can be ingested into (made bound) and freed from (made discrete) a hub network.
- compliant media allows an instance stored on the compliant media to be disabled and enabled according to changes in state of the instance (e.g., when changing between discrete and bound).
- compliant media is configured so that devices will not create a complete bit-by-bit copy of the data stored on the compliant media, without authorization.
- the instance stored on the compliant optical disc is compliant and has not been bound to any hub network yet, the instance is a discrete instance.
- Jim inserts the compliant optical disc into the server device of the car 120 and causes the car 120 to bind the discrete instance of the movie X to the hub network HN 2 .
- the car 120 creates a bound instance of the movie X and stores a source version of locked content data and root license as part of the bound instance in the storage of the car 120 and disables the discrete instance on the compliant optical disc (e.g., by storing data to the optical disc).
- the discrete version of the locked content data of the disabled instance cannot be played or presented on another device (as described below, in another implementation, when a discrete instance is bound to a hub network, the then-disabled discrete instance can still be played by member devices in the hub network to which the discrete instance was bound).
- the source version of the movie X is indicated by the “X” label added to the car 120 .
- the source version of the song Y is indicated by the “Y” label added to the car 120 .
- Jim accesses content through the hub networks. Jim decides to watch the movie X through the PVR 105 and connected television 110 . As a member device of the hub network HN 2 , the PVR 105 can access the movie X that is bound to the hub network HN 2 .
- the PVR 105 requests a copy of the movie X and the car 120 , as the server for the hub network HN 2 , provides a sub-copy version of the movie X to the PVR 105 .
- the PVR 105 stores the sub-copy version of the movie X (indicated by the “x” label added to the PVR 105 ) and presents the movie X through the connected television 110 .
- Jim also decides to listen to the song Y through the PVR 105 , and so the PVR 105 stores a sub-copy version of the song Y (indicated by the label “y” added to the PVR 105 ).
- the PVR 105 as the server for the hub network HN 1 , provides a sub-copy version of the movie A to the car 120 .
- the car 120 stores the sub-copy version of the movie A (indicated by the “a” label added to the car 120 ) and presents the movie A.
- Jim buys a television 125 that is a compliant device.
- the television 125 is a client device, but is not a server device. Accordingly, the television 125 does not form another hub network.
- Jim connects the television 125 to the hub networks HN 1 and HN 2 .
- the television 125 supports both wired connections and wireless connections.
- Jim causes the PVR 105 and the television 125 to establish a wired connection and causes the car 120 and the television 125 to establish a wireless connection.
- the PVR 105 detects the television 125
- the PVR 105 authenticates and authorizes the television 125 to be added as a member device.
- the PVR 105 adds the television 125 as a member to the hub network HN 1 (indicated by the “HN 1 ” label added to the television 125 ).
- the car 120 authenticates, authorizes, and adds the television 125 as a member to the hub network HN 2 (indicated by the “HN 2 ” label added to the television 125 ).
- Jim accesses content through the television 125 .
- Jim decides to watch the recorded program C through the television 125 .
- the television 125 can access the program C that is bound to the hub network HN 1 .
- the television 125 requests that the PVR 105 stream the program C to the television 125 .
- the PVR 105 streams the program C to the television 125 using the source version C (indicated by the dashed line labeled “c” between the PVR 105 and the television 125 ).
- the television 125 does not store a copy of the program C (other than transiently in the process of presenting the streamed program).
- Jim decides to watch the movie X through the television 125 , and so the car 120 streams the movie X to the television using the source version X (indicated by the dashed line labeled “x” between the car 120 and the television 125 ).
- Jim decides to free or unbind the song Y from the hub network HN 2 to make the song Y portable.
- Jim requests that the car 120 create a discrete instance of the song Y.
- the car 120 disables the bound instance of the song Y, disabling the source version and any sub-copy versions of the song Y (indicated by the removal of the label “y” from the PVR 105 and the label “Y” from the car 120 ).
- the car 120 creates a discrete instance of the song Y and stores a discrete version (indicated by the label “Y” added to the car 120 ) on compliant media (e.g., a compliant hard disk or a compliant recordable disc).
- compliant media e.g., a compliant hard disk or a compliant recordable disc.
- Jim removes the song Y from the hub network HN 2 .
- Jim connects a compliant portable storage device 130 (e.g., a removable memory card) to the car 120 .
- Jim moves the discrete version of the song Y from the car 120 to portable storage 130 (indicated by the “Y” label removed from the car 120 and added to the portable storage 130 ) and connects the portable storage 130 to a portable music player 135 .
- the portable music player 135 is a compliant device and is not a member of a hub network, but the player 135 can still play the song Y from the discrete version Y because the discrete instance for the discrete version Y is not bound to a hub network.
- Jim decides to unbind the movie B from the hub network HN 1 to give the movie B to a friend Sally.
- Jim requests that the car 120 create a discrete instance of the movie.
- the PVR 105 has the source version B and so the car 120 passes the request to the PVR 105 .
- the PVR 105 disables the bound instance of the movie B (indicated by the removal of the label “B” from the PVR 105 ).
- the PVR 105 creates a discrete instance including a discrete version B of the locked content data and moves the discrete version B to the car 120 (indicated by the label “B” added to the car 120 ).
- Jim drives the car 120 to his friend Sally's home.
- the car 120 leaves the media network environment 100 and enters Sally's media network environment 140 .
- the server device for a hub network monitors the member devices of the hub network and determines when a member device has left the local environment.
- the local environment for the PVR 105 and for the car 120 is defined by physical location.
- the car 120 leaves the car 120 leaves the local network environment of the PVR 105 , and the car 120 takes the local environment of the car 120 away from the PVR 105 and television 125 .
- the PVR 105 recognizes that the car 120 has left the local environment because the car 120 fails to report its physical location to the PVR 105 or when the car 120 reports a physical location to the PVR 105 that is outside the boundaries of the local environment 100 .
- the car 120 recognizes that the PVR 105 and the television 125 have “left” the local environment of the car 120 (i.e., by being left behind).
- the car 120 When the car 120 leaves, the car 120 creates a disconnection in the hub networks HN 1 and HN 2 .
- the car 120 monitors an expiration period for each of the sub-copy versions received through the hub network HN 1 .
- the period is a mechanism in the license for the sub-copy version for controlling how long a sub-copy version can be used without a connection between the client storing the sub-copy version and the server managing the bound instance.
- the period expires (e.g., as measured by a secure clock in the client)
- the disconnected client storing the sub-copy version disables the sub-copy version.
- the period is 15 days, (indicated by the “ ⁇ 15 ” superscript in the label “a ⁇ 15 ” of the car 120 ).
- the PVR 105 monitors the expiration period for sub-copy versions received through the hub network HN 2 (indicated by the “ ⁇ 15 ” superscript in the label “x ⁇ 15 ” of the PVR 105 ).
- Sally has a game console 145 and a connected television 150 .
- the game console 145 is a compliant device and is both a server device and a client device.
- the television 150 is not a compliant device, and serves as a terminal device for presenting content from the game console 145 .
- the game console 145 defines a hub network HN 3 and acts as the server for the hub network HN 3 (indicated by the label “HN 3 *” on game console 145 ) and as a client in the hub network HN 3 (indicated by the label “HN 3 ” on game console 145 ).
- the game console 145 defines a local environment (not shown).
- Movies L and M and song N are bound to the hub network HN 3 , and the game console 145 stores source versions of the movies L and M (indicated by labels “L” and “M” on game console 145 ) and a source version of the song N (indicated by label “N” on game console 145 ).
- Jim connects the car 120 to Sally's game console 145 and gives the discrete instance of the movie B to Sally.
- Jim and Sally do not cause the car 120 to join the hub network HN 3 as a member or cause the game console 145 to join the hub network HN 2 as a member.
- Jim causes the car 120 to move the discrete version from the car 120 to the game console (indicated by the removal of the label “B” from the car 120 ).
- Sally causes the game console 145 to bind the discrete instance of the movie B to the hub network HN 3 .
- the game console 145 disables the discrete instance of the movie B and creates a bound instance of the movie B, storing a source version and root license in the storage of the game console 145 (indicated by the label “B” added to the game console 145 ).
- the clocks of the car 120 and the PVR 105 are one day closer to the end of the expiration periods for the sub-copy versions a and x and so one day less remains before the periods expire (indicated by the labels changing to “a ⁇ 14 ” on the car 120 and “x ⁇ 14 ” on the PVR 105 ).
- Jim returns home in his car 120 .
- the car 120 disconnects from the game console 145 .
- the car 120 enters Jim's media network environment 100
- the car 120 connects to the PVR 105 and the television 125 .
- the car 120 has returned to the local environment of the PVR 105 and brought back the local environment of the car 120 to the PVR 105 and the television 125 .
- the PVR 105 resets the expiration period for the sub-copy version a of the movie A stored on the car 120 (indicated by changing the label “a ⁇ 14 ” to “a” on the car 120 ).
- the car 120 as the server for the hub network HN 2 , resets the expiration period for the sub-copy version x of the movie X stored on the PVR 105 (indicated by changing the label “x ⁇ 14 ” to “x” on the PVR 105 ).
- Jim was able to obtain instances of content and bind the instances in the hub networks of his home media network environment. Jim was able to present the content and make copies within the media network environment. When Jim freed instances of content from the media network environment, the instances were removed. In this way, Jim was able to use his content throughout the media network environment while the instances of content were bound in the media network environment, and then remove the instances of content when he wanted the content to leave the media network environment.
- FIGS. 17 - 33 illustrate the configuration and operation of hub networks in a media network environment.
- a media network environment includes one or more hub networks, each hub network having a respective local environment, some or all of which may overlap or be coextensive.
- the local environment is defined as a limited area such that a compliant device can determine whether the device is in or out of the local environment.
- one local environment can be defined in terms of physical location (e.g., by calculating the round trip time for packets to travel from server to client, or using geographical positioning data from a GPS system integral to the device), while another local environment is defined in terms of network addressing information (e.g., using IP address and/or subnet information) or logical area (e.g., evaluating network configuration using the number of gateways or routers traversed by a packet).
- a local environment is defined in terms relative to the server of the hub network (e.g., a 100 meter radius circle with the server at the center). As the conditions of the server change (e.g., the server moves), the local environment may also change. As discussed below, a compliant device can join a hub network while in the local environment of the hub network, and when the device leaves the local environment, the device is disconnected from the hub network (though the device may still be a member). If a device can still maintain a network connection (e.g., a wireless connection) even after leaving the local environment, the device is still treated as disconnected while outside the local environment.
- a network connection e.g., a wireless connection
- a media network environment includes one or more devices.
- a device is a self-contained software application, hardware component, or a combination thereof.
- one computer system can include multiple hardware and/or software devices.
- Each device in a media network environment is either a media network compliant device (a compliant device) or is not (a non-compliant device).
- a compliant device operates according to the rules defined for a media network environment and a hub network.
- a compliant device can be a member of a hub network, such as a server or a client device.
- a non-compliant device, such as a terminal device cannot be a member of a hub network in a media network environment.
- a non-compliant device can interact with a hub network, such as receiving content as output data from a hub network member device, as described below. However, a non-compliant device cannot decrypt and render a compliant copy of content.
- a hub network includes one or more member devices.
- Each member device in a hub network is a server, a client, or both.
- a member device can include server and client functionality in the same physical system.
- Each hub network has one server.
- Each client is connected to the server, directly or through networked connections. In this way, a hub network follows a hub and spoke or star topology with the server at the center.
- Multiple server devices can be members in the same hub network, with one server device acting as the server for the hub network and the additional server devices acting as clients of the hub network's server (through their client functionality).
- the server for a hub network is the focal point of the hub network and manages many aspects of the control of the hub network.
- a server manages root responsibility for bound instances of content and provides the content to client members in the hub network.
- a server stores the source version of the locked content data and the corresponding root license of a bound instance.
- a server provides a sub-copy version of locked content data for a bound instance to a client or streams data of a source version of locked content data to a client.
- a server manages instances, handles licensing, administers network membership, monitors connection and disconnection of devices to the hub network, and performs time administration.
- a server defines the local environment of the hub network.
- a server binds instances of content to a hub network by shifting the state of an instance from discrete (external to the hub network) to bound (internal to the hub network), and a server frees instances from a hub network by shifting the state of an instance from bound to discrete.
- the clients in a hub network play or present content data from instances of content (e.g., by decrypting and rendering content data stored in a version of the locked data of an instance).
- a client device receives a sub-copy version of locked content data and a sub-copy license for a bound instance from the server or receives streamed data from the server.
- a client device includes storage for storing sub-copy versions (a storage client device) or does not store sub-copy versions (a non-storage client device).
- a client device presents content data directly through integrated components or through a connected terminal device.
- a client device can also stream content data from a sub-copy version to another client device that is a member of the same hub network.
- a terminal device is for presentation of content and is not a member of a hub network.
- a terminal device is connected to a member device and receives data for presentation, such as output video and audio data.
- a terminal device may provide other functions as well for services apart from the media network environment.
- a media network environment includes two or more hub networks
- some or all of the hub networks may overlap.
- Two hub networks overlap when both of the hub networks include the same device or devices.
- a device belonging to two hub networks spans the hub networks and is a spanning device.
- a spanning device stores (or can store) content data for instances bound to each of the hub networks. Accordingly, the spanning device can present content bound to multiple respective hub networks (a bound instance is bound to only one hub network).
- a spanning device spans multiple hub networks only in the same local environment. In this case, if a device becomes a member of hub networks in different local environments, the device will only present content from the hub network to which the device has been most recently connected.
- a spanning device may span hub networks in different local environments and play content from any of the spanning device's hub networks (subject to license requirements, such as refreshing, as discussed below).
- the overlapping hub networks provide a flexible environment for managing the use and copying of content.
- Each server manages the devices and content in the server's hub network and each client operates in compliance with the rules of the hub network.
- a user can present, move, and copy content data through the media network environment in a convenient manner and at the same time the presentation, copying, and moving of the content data is controlled to reflect the licensing guidelines set for a licensing authority (e.g., by the content owner).
- the management of each hub network is grounded in the server of the hub network.
- FIG. 17 shows a representation of one implementation of a media network environment 1700 .
- the media network environment includes two overlapping hub networks HN 1 and HN 2 , with two respective and substantially coextensive local environments (not shown).
- the media network environment 1700 includes several devices: a server/client device 1705 connected to a terminal device 1710 , a server device 1715 , a storage client device 1720 , a non-storage client device 1725 , a storage device 1730 , and a player device 1735 .
- the server/client device 1705 , the server device 1715 , the storage client device 1720 , the non-storage client device 1725 , and the storage device 1730 are compliant devices.
- the terminal device 1710 and the player device 1735 are non-compliant devices.
- the server/client device 1705 and the server device 1715 are servers for respective hub networks.
- the server/client device 1705 acts as both a server and a client.
- the server device 1715 acts as a server, but not as a client (e.g., does not decrypt and render content).
- the terminal device 1710 is for presentation of content data from a connected device, such as a television.
- the terminal device 1710 does not store content data bound to the hub network.
- the storage client device 1720 and the non-storage client device 1725 are client devices. As client devices, the storage client device 1720 and the non-storage client device 1725 present content data through integrated media components (e.g., audio and video outputs). As noted above, the server/client device 1705 is also a client device but presents content data through the connected terminal device 1710 .
- the storage client device 1720 includes storage for storing sub-copy versions of content data.
- the storage client 1720 presents content data for sub-copy versions stored in the storage client 1720 or content data received as streaming data from a server (e.g., the server/client device 1705 ).
- the non-storage client 1725 does not store sub-copy versions of content data to present.
- the non-storage client 1725 presents content data received as streaming data from a server (e.g., the server device 1715 ).
- a server e.g., the server device 1715
- all client devices are non-storage clients devices. In this case, if a device has storage for bound content data, the device is a server or server/client device.
- the server/client device 1705 is the server for a hub network HN 1 , indicated by the “HN 1 *” label on the server/client 1705 .
- the server/client device 1705 and the storage client device 1720 are clients in the hub network HN 1 , indicated by the “HN 1 ” label.
- the terminal device 1710 is connected to the server/client device 1705 for presenting content data from the server/client device 1705 .
- the terminal device 1710 is not a member of the hub network HN 1 .
- the server device 1715 is the server for a hub network HN 2 , indicated by the “HN 2 *” label on the server device 1715 .
- the server/client device 1705 , the storage client device 1720 , and the non-storage client device 1725 are clients in the hub network HN 2 , indicated the by the “HN 2 ” label.
- the non-storage client device 1725 does not store sub-copy versions of content data, but instead receives streamed data from the server device 1715 , indicated by the dashed line from the server device 1715 to the non-storage client device 1725 .
- the two hub networks HN 1 and HN 2 are overlapping, defining an overlapping or overlaying hub and spoke architecture.
- the hub network HN 1 includes the server/client device 1705 and the storage client device 1720 .
- the hub network HN 2 includes the server/client device 1705 , the server device 1715 , the storage client device 1720 , and the non-storage client device 1725 .
- the server/client device 1705 and the storage client device 1720 are members of both hub networks HN 1 and HN 2 and so are spanning devices.
- the storage device 1730 is a compliant media device and the connected player device 1735 is a non-compliant device.
- the storage device 1730 and the player device 1735 are not members of the hub networks HN 1 and HN 2 .
- the storage device 1730 is a portable storage device including compliant media, such as a compliant flash memory card.
- the player device 1735 is a portable media player device, such as an MP3 player. In other environments, non-compliant devices that are not portable can be connected to one or more compliant devices.
- the storage device 1730 is connected to the server device 1715 (e.g., is inserted into a port) and so can exchange data with the server device 1715 . Accordingly, the storage device 1730 and the server device 1715 can exchange discrete instances.
- the storage device 1730 is connected to the player device 1735 and the player device 1735 can present non-compliant copies of content data stored in the storage device 1730 . Because the player device 1735 is a non-compliant device, the player device 1735 cannot play or present compliant content data stored on the storage device 1730 .
- the storage device 1730 cannot make usable copies from discrete instances stored on the storage device 1730 .
- a server manages the membership of devices in the hub network.
- the server adds and removes clients as members of the hub network.
- a server will only grant licenses to member devices.
- the server adds a client device as a member after verifying that the client device is a compliant device. If the server is also a client device, the server initially adds itself as a client automatically. In one implementation, the server is also considered a member. In another implementation, only clients are members. Once added as a member, a device is a member until the server removes the device as a member. The server removes a client device as a member upon request by a user or when conditions are met for revoking the membership.
- FIG. 18 shows a flowchart 1800 of one implementation of adding a device to a hub network as a member device, such as adding storage client 1720 to the hub network HN 1 in FIG. 17.
- a client device is connected to a hub network, block 1805 .
- the client can be connected directly to the server, through a wired or wireless connection, or can be connected indirectly to the server, such as through intervening network devices.
- the server will not add an unconnected device as a member (though see an alternative implementation described below using an intermediary device to add an unconnected device).
- the server detects the connected client device, block 1810 .
- a compliant device sends a message or connection notification to devices on the hub network indicating that the device is now connected to the hub network.
- the server periodically polls connected devices for new clients.
- the server authenticates the detected client device, block 1815 .
- the server sends a compliance confirmation request for information from the client device to establish whether the client device is a compliant device or not. For example, the server sends a confirmation request encrypted for a compliant device. If the client device does not respond properly or the server otherwise determines that the client device is not a compliant device, the authentication fails and the server will not add the client device as a member to the hub network.
- the server After confirming that the client device is a compliant device, the server sends an identification request for information from the client device identifying the client device.
- the server has a minimum set of identifying information required to authenticate the client device, such as a MAC address (Media Access Control address).
- a compliant device has a secure and unique device identifier for hub networks. If the client device does not respond or does not provide appropriate information, the authentication fails and the server will not add the client device as a member to the hub network. If the server authenticates the client device, the server checks a list of member devices to see if the authenticated client device is already in the list of member devices.
- the server does not need to add the client device as a member and informs the user that the device has reconnected.
- the server and client proceed as discussed below referring to FIG. 21 (discussing reconnection of a member device).
- the server adds the authenticated client device to a list of authenticated connected devices for the server's hub network.
- the server After successfully authenticating the client device, the server receives an add request to add the client device from a user, block 1820 .
- the server waits to proceed with adding a client device until the server receives an affirmative request from a user to add a specific client device.
- the server requests approval or confirmation from the user to add an authenticated device when the device is detected instead of waiting for a request from the user.
- the server waits to authenticate the client device until after receiving a request or approval to add the client.
- the server After receiving a request to add the client device, the server authorizes the client device, block 1825 .
- the client must be in the local environment of the hub network to be added.
- the server sends a local environment confirmation request for information from the client to establish whether the client device is in the local environment of the hub network.
- the server sends a test message and waits for a response from the client (e.g., pings the client). Based on the amount of time between sending the test message and receiving the response, the server determines whether the client is in the local environment (e.g., a round trip time below a threshold indicates a client is within the local environment).
- the server sends local environment information to the client device and the client device determines whether the client device is in the local environment or not. If the server does not establish that the client device is in the local environment of the hub network, the authorization fails and the server will not add the client device as a member to the hub network.
- the server also confirms that the client device is not on the server's revocation list before authorizing the client device.
- the revocation list indicates devices for which authorization has been revoked.
- the server adds the authorized client device to a list of authorized devices.
- the server After successfully authorizing the client device, the server confirms that the number of member devices in the hub network is below the member device limit, block 1830 .
- the server stores a device limit indicating the maximum number of member devices that the server will add as members to the hub network, such as 20 .
- the server also maintains a device count, incremented for each device added as a member. If the device count has already met the device limit, the server will not add the client device to the hub network as a member.
- the server does not maintain a device count or a device limit, and block 1830 is skipped.
- the device limit can be modified by request from a verified external authority.
- the server adds the client device as a member and a client of the hub network, block 1835 .
- the server sends an add confirmation message to the added client.
- the server also increments the device count by one.
- the server adds the client device to a list of members and a list of clients (or the same list).
- a server automatically attempts to add detected client devices upon detection, or uses a set of rules to determine when to attempt to add connected client devices.
- the server automatically attempts to authenticate and authorize detected client devices, but does not add an authenticated and authorized device as a member until after receiving a user request or approval.
- the server contacts a device registration server, such as through an external network connection.
- the device registration server indicates whether the client device is to be added to the hub network or not.
- the device registration server maintains information for hub networks and their member devices.
- the device registration server can use various criteria to determine whether to allow the client device to be added or not.
- the device registration server compares a threshold to how many hub networks to which the client device has already been added as a member.
- the device registration server compares the number of devices already added to the hub network to a second device limit, allowing the client device to be added if the device count is below the second device limit.
- the first device limit stored by the server acts as a limit for adding devices without external registration and the second device limit acts as a maximum for adding devices.
- the server always checks with the device registration server before adding a device (e.g., as though the first device limit were zero).
- an unconnected device or a device outside the local environment can be added as a member.
- an intermediary device acts as a “conduit” for membership.
- the server and the potential member client are either not connected or the client is not in the local environment of the server.
- the intermediary device is connected to both the server and client (e.g., directly, indirectly, or at different times such as when the intermediary device is a portable device moving between the server and client).
- the intermediary device requests permission from the server of a hub network to add the client to the hub network.
- the addition process works similarly to that described above, but instead of the server and client communicating directly, the intermediary device passes messages between the server and client, with communication to each respective device occurring in the local environment relative to that device.
- FIG. 19 shows a flowchart 1900 of one implementation of removing a device from a hub network as a member device, such as removing storage client 1720 from the hub network HN 1 in FIG. 17.
- the device is connected to the hub network and is a member of the hub network.
- the removal of a member client device is triggered, block 1905 .
- removal is triggered in two ways: by receiving a removal request from the user specifying the client device, or by the server determining that the authorization of the client device is to be revoked.
- the server determines that the client device is to be revoked when the server receives a revocation notification identifying the client or determines that the client device has circumvented or broken the rules of the hub network for compliant member devices, such as failing to disable a sub-copy version when the state of the bound instance is changed to discrete.
- the server also revokes the authorization for a device when the server determines that the security of the device has been compromised.
- the server disables the licenses for sub-copy versions of bound instances bound to the server's hub network for the client device to be removed, block 1910 .
- the server sends a disable request to the client indicating the sub-copy versions to be disabled and the client disables the corresponding licenses.
- the removed client device will not be able to receive a new license or be able to refresh an existing license for a bound instance bound to the hub network from which the client device was removed.
- a compliant client device automatically disables all licenses for sub-copy versions stored on the client and for bound instances bound to the hub network from which the client has been removed once the client has been removed. Removing a client from one hub network does not necessarily disable licenses for sub-copy versions for bound instances bound to another hub network.
- the server removes the client device as a member of the hub network, block 1915 .
- the server removes the client device from the list of member devices and decrements the member device count.
- a server maintains a revocation list of devices for which membership has been revoked.
- the server adds the device to the server's revocation list.
- a server will not add a client device as a member if the client device is included in the revocation list.
- a server publishes a revocation list to other devices when the revocation list is updated, such as to clients in the hub network, other servers, or a central database.
- the server updates one or more root licenses stored on the server to indicate that the client has been revoked.
- a server does not remove a disconnected client as a member until all of the licenses for sub-copies stored on the client have expired. As described below, when a device is disconnected, licenses from the disconnected hub network will eventually expire. The server waits to complete the removal of the disconnected device until all of those licenses have expired.
- the device can connect to the hub network.
- the device When a device leaves the local environment of a hub network, the device is disconnected from the hub network.
- the device When a device returns to the local environment, the device can reconnect to the hub network.
- the server proceeds to attempt to add the new device after receiving a request or approval from a user.
- FIG. 20 shows a flowchart 2000 of one implementation of disconnecting a member device from a hub network.
- a connected device becomes disconnected, block 2005 .
- a device can be disconnected in various ways. When a device leaves the local environment of a hub network, the device is disconnected from the hub network. When the physical connection (wireless or wired) between the device the hub network fails, the device is disconnected. For example, when the server and client can no longer exchange packets of data, the client and server are disconnected.
- the server determines whether a client is connected or not as needed (e.g., before acting based on the client being connected).
- the server periodically polls clients for connection and maintains a connected device list, and the client also periodically polls the server and recognizes when the client is disconnected.
- the device is disconnected.
- the server will not leave the local environment because the server takes the local environment with the server when the server physically moves.
- one or more clients of the hub network may not move and so may “leave” the local environment of the hub network as a result of the server's movement. In this case, the clients left behind are disconnected from the hub network as being outside the local environment.
- the client checks the expiration period for any licenses of sub-copy versions of bound instances bound to the hub network, block 2010 .
- the license for a sub-copy version includes an expiration period.
- the client sets an expiration time based on the expiration period of the license. For example, for a license with an expiration period of 15 days, the client sets the expiration time to be 15 days from the time when the client received the license.
- the client monitors how much time remains until the expiration time and when the expiration time has been reached using a secure clock.
- a client periodically refreshes the license by requesting a refreshed license from the server and resets the expiration period and time when the refreshed license is received.
- a disconnected client device cannot refresh the license because the client is not connected to the server. While the client is unable to refresh the license, the expiration time does not change and so the amount of time until the expiration time is reached continues to decrease. When the expiration time is reached, the expiration period has expired and the client disables the license. When the client can refresh the license again, the client enables the license and resets the expiration time.
- a client may be unable to refresh one license because the client is disconnected from the hub network for the license, but be able to refresh a second license because the client is still connected to a different hub network corresponding to the second license.
- the client disables the licenses with the expired periods, block 2015 .
- the client disables the license, disabling the corresponding sub-copy version.
- the client disables the sub-copy version in another way, as described below.
- the client periodically checks to see if the client has been reconnected to the hub network, block 2020 .
- the client checks for reconnection at the same time as requesting a refreshed license.
- the client does not need to periodically check for reconnection because the client quickly receives a signal indicating the reconnection, and so block 2020 may be skipped.
- the client follows the process shown in FIG. 21.
- FIG. 21 shows a flowchart 2100 of one implementation of reconnecting a member device to a hub network.
- the device is a member device that has been disconnected from a hub network.
- the device is then reconnected to the hub network, block 2105 .
- a device can be reconnected when the device is in the local environment of the hub network and the physical connection between the device the hub network is restored or established.
- the client periodically polls the server and recognizes when the client is reconnected.
- a device does not reconnect until requested to do so by a user.
- the server detects the reconnected device in the hub network, block 2110 .
- the client sends a reconnection notification to the server.
- the server periodically polls the hub network for newly connected or reconnected devices.
- the server authenticates the detected device and checks if the reconnected device is a member client of the hub network, block 2115 . As discussed above referring to block 1815 of FIG. 18, the server authenticates a device on connection to determine the identity of the device. The server maintains a list of member devices and so can recognize that a newly connected device is already a member of the hub network and does not need to be added again. In one implementation, the server confirms that the reconnected device is in the local environment of the hub network. In one implementation, the server also confirms that the reconnected device is not on a revocation list.
- the server After authenticating the device as a member device, the server refreshes licenses of the client, block 2120 .
- the server refreshes the licenses of sub-copy versions of content data stored on the client for bound instances bound to the server's hub network.
- the server does not refresh licenses for sub-copy versions for bound instances bound to other hub networks.
- the client requests that the licenses be refreshed once the client has successfully reconnected to the hub network.
- a server manages time administration for the hub network.
- Time administration includes relative time and absolute time management.
- the server manages time to enforce time-based limitations, such as in licenses for discrete or bound instances of content in the hub network.
- Clients also manage time internally, or with reference to the time administration of the server.
- a client receives a license for a sub-copy version from a licensing authority, the client synchronizes time information with the licensing authority before receiving the license.
- Servers and clients use secure mechanisms for managing time.
- the devices of a hub network use secure techniques for various operations, including, but not limited to: communicating data; placing requests; logging transactions for transaction history; providing and disabling licenses; authenticating, authorizing, disabling, and revoking devices; storing, making, and moving instances, copies and keys; maintaining metadata for instances and copies; and presenting and streaming content.
- the compliant devices periodically may renew the security processes from a central authority, or receive updates from a user or automated source.
- a client device renews security mechanisms before receiving a license, including mechanisms such as updating encryption keys, synchronizing the client's clock and time information with the server, exchanging and updating revocation lists, and renewing system security data and tools.
- a server can revoke a key if the server has determined the key has been compromised. In this case the server requests compliant devices disable the revoked key so that the revoked key will not be used to access secure media content.
- Devices in a media network environment present, copy, and move the content data for instances of content.
- an instance includes content data that is media data, such as audio and/or video data.
- the server for a hub network manages the state of bound instances of content in the hub network. The server directly changes the state of a bound instance and causes member clients in the hub network to take appropriate actions according to these state changes.
- An instance of content is either compliant or non-compliant.
- a compliant instance includes data encoded so that only compliant devices are to be able to decode and present the content data. Accordingly, non-compliant devices cannot present content data from a compliant instance.
- a compliant device (a server) can bind or free a compliant instance to or from a hub network.
- a non-compliant instance or copy of content is not encoded according to the requirements of a hub network and so a non-compliant device or a compliant device can present the content data of a non-compliant instance or copy (subject to other copy control mechanisms that may be present in the instance or copy).
- a compliant device will not bind a non-compliant instance or copy to a hub network, but can store non-compliant content in alternative forms.
- Each compliant instance of content in the hub network is in one of two exclusive states: discrete or bound.
- a discrete instance of content is not bound to any hub network and can be moved from one device to another, in or out of the hub network, using compliant media.
- a compliant device will not make a copy of a discrete instance (other than transiently in the course of presenting the content data).
- the discrete instance can be in various forms, such as one or more electronic files stored on complaint storage media (e.g., an optical disc), or one or more electronic files stored in storage of a compliant device (e.g., received by download through a network connection).
- Media storing a discrete instance of content is media network compliant media.
- Compliant media allows a server to modify the discrete instance as needed, such as to disable the discrete instance when binding the content to the hub network.
- compliant media is configured so that devices are not to be able to create a bit-by-bit copy of the data of any discrete instances stored on the compliant media.
- compliant media is or includes secure read/write storage media (e.g., a writable optical disc or read-only media with an attached or associated writable storage).
- the writable storage is remote from the media itself, such as a database. A compliant device will not create a copy of a discrete instance.
- FIG. 22 shows a representation of one implementation of a discrete instance 2205 .
- the discrete instance 2205 includes locked or secure content data (e.g., encrypted) 2210 .
- the locked content data of a discrete instance is also referred to as the discrete version of the locked content data of the discrete instance.
- the locked content data 2210 is the media content data of the discrete instance, such as audio or video data (e.g., a song, a television program, a movie).
- the locked content data is non-media data, such as executable software (e.g., a computer or video game).
- the locked content data 2210 is encrypted (e.g., using one or more cryptographic algorithms that are published and verified through public peer review).
- the locked content data 2210 is encrypted using a content encryption technique so that only compliant devices can decrypt the locked content data 2210 .
- Header information 2215 is associated with the locked content data.
- the header information includes meta-data such as a title identifier, an instance identifier (identifying the particular instance), encoding data (e.g., indicating the codec, resolution, and encoding entity used to encode the locked content data), and licensing authority data.
- the licensing authority data indicates an external licensing authority that can be accessed to obtain additional rights or licenses. Some implementations of discrete instances do not include licensing authority data (e.g., using whatever license is provided along with the locked content data). In another implementation, some or all of the header information 2215 is also encrypted or is included in the locked content data 2210 .
- the discrete instance 2205 includes a secure area 2220 of encrypted data.
- the data of the secure area 2220 is encrypted using a hub network encryption technique so that only compliant devices are to be able to decrypt the data of the secure area 2220 (e.g., using a key held by compliant devices).
- the secure area 2220 includes a key 2225 , a discrete license 2230 , and a revocation list 2235 .
- the key 2225 is for unlocking the locked content data 2210 .
- a compliant device holds a key for decrypting the secure area 2220 including the key 2225 (which was encrypted using hub network encryption), and uses the key 2225 to decrypt the locked content data 2210 (which was encrypted using content encryption).
- the discrete license 2230 holds the current license for the locked content data 2210 for the specific discrete instance 2205 .
- the license 2230 defines the set of permissions defined for the locked content data 2210 for the specific discrete instance 2205 , including presenting, copying, and moving as appropriate for a discrete instance (e.g., copying is not permitted).
- the license 2230 also indicates what types of licenses are available for a bound instance based on the discrete instance 2205 .
- the license 2230 includes a flag to indicate that the discrete instance 2205 is a discrete instance.
- the revocation list 2235 indicates devices for which authorization has been revoked. A compliant device maintains its own revocation list.
- a compliant device When a compliant device receives a discrete instance, the device adds to its revocation list any devices in the revocation list of the discrete instance that are not on the device's revocation list. A compliant device will not present or play a discrete instance if that device is listed in the device's revocation list. A compliant server will not bind a discrete instance if that server is listed in the server's revocation list. In another implementation, the discrete instance does not include a revocation list. In another implementation, components of the discrete instance are stored as multiple files.
- a bound instance is bound to a particular hub network and managed by the server of that hub network.
- Data of a bound instance is encrypted (at least in part) so that a non-compliant device or a device outside the bound hub network is not to be able to present or play the content data of the bound instance.
- the server managing the bound instance has root responsibility for the bound instance. Root responsibility includes issuing and managing the licenses for sub-copy versions of the locked content data of the bound instance.
- the server managing the bound instance also manages a source version of the locked content data of the bound instance. The server uses the source version for creating sub-copy versions of the locked content data in the hub network.
- the designated server is a local licensing authority for the sub-copy versions of that bound instance.
- the server can make sub-copy versions from the source version and provide the sub-copy versions to clients in the hub network.
- clients can also make sub-copy versions from the sub-copy versions stored by the clients, but the clients receiving the new sub-copy versions will need licenses from the server of the hub network to present the content.
- a client device can move a sub-copy version to another device in the hub network or to a device outside the hub network.
- a device receiving a sub-copy version from a different hub network (e.g., of which the device is not a member) needs to obtain a new license, such as from a licensing authority indicated by the sub-copy version.
- a compliant server will not move the root responsibility, and thus the bound instance, to another compliant server without first changing the state of the bound instance back to discrete.
- the server shifts the bound instance to a discrete instance and moves the discrete instance to the second server.
- the second server then shifts the received discrete instance to a bound instance, and so the second server then has root responsibility.
- the bound instance is then bound to a different hub network, that of the second server.
- the source version is not stored on the server for the hub network, but the server stores and administers the root license and remotely manages the source version.
- FIG. 23 shows a representation of one implementation of a bound instance 2300 , including components stored on a server 2305 and on a client 2350 .
- the bound instance 2300 is similar in structure to the discrete instance 2205 in FIG. 22, but can include data stored on a server and data stored on zero or more of the clients in the hub network.
- the server components 2305 include: locked content data 2310 , header information 2315 , and a secure area 2320 that includes a key 2325 , a root license 2330 , and a revocation list 2335 .
- the locked content data 2310 in the server components 2305 is the source version of the locked content data of the bound instance 2300 .
- the server uses the source version for making sub-copy versions of the locked content data (e.g., locked content data 2310 discussed below).
- the source version is the highest resolution version of the content in the hub network. If different devices request different resolution copies, those copies can be made from the source version.
- the licensing authority data of the header information 2315 indicates an external licensing authority (e.g., the same authority as that indicated by the discrete instance upon which the bound instance is based) and the server as a local licensing authority. Some implementations of bound instances do not include absolute licensing authority data (e.g., using whatever license is provided along with the locked content data).
- the root license 2330 indicates the set of permissions defined for the specific locked content data 2310 , including presenting, copying, and moving as appropriate for a bound instance (e.g., moving is not permitted, but creating and providing sub-copy versions to other devices is permitted).
- the root license 2330 is cryptographically bound to the specific server.
- the root license 2330 defines what types of licenses are available for sub-copies in the hub network.
- the root license 2330 includes a flag to indicate that the bound instance 2305 is a bound instance.
- the root license is different depending on whether the server is a server device or a server/client device.
- the revocation list indicates devices for which authorization has been revoked.
- a compliant device maintains its own revocation list (e.g., a server maintains a server or device revocation list, a client maintains a client revocation list).
- a server receives a bound instance, the server adds to its revocation list any devices in the revocation list(s) of the bound instance that are not on the server's revocation list.
- a compliant server device will not present or play a bound instance if that device is listed in the server's revocation list.
- a compliant server will not unbind (make discrete) a bound instance if that server is listed in the server's revocation list.
- a compliant server will not provide a sub-copy version or a license to a device that is listed in the server's revocation list. In another implementation, a compliant server will provide a sub-copy version to a device listed in the revocation list, but will not provide a license to that device.
- the components stored on a client 2350 are similar to those stored on a server 2305 , but the license is different.
- the client components 2350 include: locked content data 2355 , header information 2360 , and a secure area 2365 that includes a key 2370 , a sub-copy license 2375 , and a revocation list 2380 .
- the licensing authority data of the header information 2360 indicates an external licensing authority (e.g., the same authority that indicated by the discrete instance upon which the bound instance is based) and the server corresponding to the bound instance as a local licensing authority. As noted above, some implementations of bound instances do not include licensing authority data.
- the sub-copy license 2375 indicates the set of permissions defined for the specific locked content data 2355 according to the root license of the corresponding bound instance, including rules for presenting the content such as any time restrictions.
- the sub-copy license 2375 is cryptographically bound to the specific client.
- the sub-copy license 2375 includes an expiration period for when the client is unable to refresh the license, as discussed below.
- a client device maintains a revocation list and updates the revocation list according to the revocation list 2380 .
- a compliant client device will not present or play a sub-copy version if that device is listed in the client's revocation list. In one implementation, a compliant device also will not provide a sub-copy to a device that is listed in the client's revocation list.
- the locked content data and the secure areas of a bound instance are encrypted using different techniques.
- the locked content data (the source version and any sub-copy versions) is encrypted using a content encryption technique.
- the secure areas are encrypted using a hub network encryption technique.
- a compliant device holds a hub network key for decrypting the secure area including the key (which was encrypted using hub network encryption), and uses the decrypted key from the secure area to decrypt the locked content data (which was encrypted using content encryption).
- locked content data and a license (or the entire secure area) of a bound instance can be managed and distributed separately.
- the locked content of a discrete instance can be distributed separately.
- a compliant device will not present locked content data without first obtaining a valid license.
- Devices can distribute locked content data outside the hub network, but recipients will still need new licenses.
- an intermediary device can act as a conduit for refreshing a license of a disconnected member device outside the local environment of the hub network by passing a license from the server to the disconnected client, as described below.
- Multiple discrete instances of the same content are treated as distinct discrete instances and are unrelated. Similarly, if multiple discrete instances of the same content are bound to a hub network each creates a distinct bound instance.
- the server recognizes when multiple discrete instances of the same content are present (e.g., through identifying information in the content or header information), and the licensing information for the instances allows the bound instances to be treated as related. For example, if multiple related instances are present, freeing one related instance need not disable locked content data for the remaining related bound instances.
- an instance or copy of content can be in a third state as well: unrestricted.
- Unrestricted instances and copies can be moved, copied, and played in and out of a hub network.
- a compliant device will not change the state of an unrestricted instance to bound or discrete.
- the server checks for copy control information and adds the content as a bound instance if the server identifies controlled states (defining the root license according to the copy control information). If a user requests adding an instance that does not include any detected copy controls or media network environment information (e.g., is not a discrete or bound instance), the device can add the content as an unrestricted instance.
- two content items A and B are bound to the hub network HN 1 .
- the server/client device 1705 stores a source version of locked content data, indicated by the “A” and “B” labels.
- the storage client device 1720 stores a sub-copy version of locked content data for each of the two content items A and B, indicated by the “a” and “b” labels.
- the server device 1715 stores a source version of content X, indicated by the “X” label.
- the server/client device 1705 and the storage client device 1720 each store a sub-copy version for the content item X, indicated by the “x” label.
- the server device 1715 also stores a discrete version of locked content data for a discrete instance of content Y, indicated by the “Y” label.
- the storage device 1730 stores a discrete version of content Z, indicated by the “Z” label.
- a server manages the state of compliant instances of content in the hub network.
- a server binds an instance to a hub network by changing the state of a discrete instance to bound.
- a server removes or frees an instance from a hub network by changing the state of the bound instance to discrete and disabling the corresponding locked content data in the hub network.
- FIG. 24 shows a flowchart 2400 of one implementation of binding a discrete instance to a hub network.
- the server receives the discrete instance, block 2405 .
- the discrete instance can be in various forms on compliant media, such as an electronic file (or files) stored on compliant storage media (e.g., optical disc), or an electronic file (or filed) stored in storage of the server (e.g., received by download through a network connection).
- the server does not yet make a copy of the discrete instance, because the server will not make copies of discrete instances that are not being bound to the hub network (though a server may make a copy of the locked content data of a discrete instance).
- the server receives a request from a user to bind the discrete instance to the hub network, block 2410 .
- the server waits for a request from the user.
- the server sends a query to the user when the server receives the discrete instance, querying whether the server should bind the discrete instance to the hub network.
- the server disables the discrete instance block 2415 .
- the server disables the discrete instance by disabling the license for the discrete instance.
- the server disables the discrete instance by setting a flag in the data of the discrete instance, so that a compliant device will not present the discrete instance.
- the server disables the discrete instance by encrypting some or all of the discrete instance with a key private to the server.
- the server disables the discrete instance by registering the discrete instance as being disabled with a central database or authority (e.g., with which devices check before presenting or playing content data).
- the discrete instance is only partially disabled such that devices that are members of the hub network to which the disabled discrete instance has been bound can present or play the discrete instance as a sub-copy. If the server cannot disable the discrete instance, the server does not bind the discrete instance to the hub network.
- the server creates a bound instance from the discrete instance, block 2420 .
- the server copies the discrete instance, including copying the locked content data, header information including the licensing authority information, the key to unlock the locked content data, the discrete license, and the revocation list (if present).
- the server stores the copy of the locked content data as the source version of the locked content data for the bound instance.
- the server modifies the discrete license to be a root license as appropriate to manage the bound instance, rather than the discrete instance.
- the server does not copy the discrete license and instead generates a new root license using the discrete license.
- the server also or instead contacts an external licensing authority indicated by the licensing authority information to update or generate the root license.
- the root license does not store licensing information pertaining to presentation permissions for the server.
- the server disables the discrete instance by deleting some or all of the discrete instance. In this case, the server first establishes the bound instance of the discrete instance before deleting the discrete instance.
- the server converts the discrete instance into a bound instance. In this case, the server does not make a copy of the discrete instance. Instead, the server changes the licensing authority information and the license as appropriate to indicate that the discrete instance is now a bound instance.
- the server confirms that the server is allowed to bind the discrete instance before disabling the discrete instance and creating a bound instance.
- the server confirms that the license of the discrete instance permits the server to bind the discrete instance.
- the server also confirms that the server is not on the server's revocation list.
- the server also confirms that there is a proper watermark in the locked content data of the discrete instance. If the server does not successfully confirm that binding the discrete instance is allowed, the server does not bind the discrete instance.
- the server records the broadcast information and stores it as bound content and establishes the root.
- the server creates the root license automatically.
- the server uses information in the broadcast to define the root license or uses licensing authority information in the broadcast information to contact an external licensing authority to obtain a license to build the root license.
- a server records content from a broadcast as a discrete instance.
- the broadcast information includes the key, licensing authority information and licensing information to build the discrete copy.
- the server records the broadcast information and stores it as bound content and establishes the root.
- the server uses licensing authority information in the broadcast information to contact an external licensing authority to obtain a license to build the root copy.
- the server encrypts the media content of the broadcast information according to any copy control information provided by the broadcast.
- FIG. 25 shows a flowchart 2500 of one implementation of freeing a copy of content from a hub network, making the content discrete (“discretification”). Initially, the bound instance is stored on the server and any clients storing sub-copy versions of the content.
- the server receives a request from a user to free the bound instance from the hub network and create a discrete instance, block 2505 .
- the server waits for a request from the user.
- the server sends a query to the user when the server receives a request for an action that is not available for a bound instance, such as moving the bound instance off the hub network. In this case, the query asks whether the server should free the bound instance from the hub network and create a discrete instance.
- the server After the server receives the discrete request, the server causes the clients of the hub network to disable sub-copy versions of the corresponding bound instance, block 2515 .
- the server sends a disable request to each of the members of the hub network, specifying for which bound instance sub-copy versions are to be disabled.
- the server sends the disable request to members that have sub-copy versions of the bound instance (e.g., as indicated through licenses sent to the clients).
- the clients receiving the disable request disable all sub-copy versions corresponding to the bound instance. By disabling a sub-copy version, compliant devices will not present or play the disabled sub-copy version.
- a client disables a sub-copy version by disabling the license for the sub-copy version.
- a client deletes a sub-copy version to be disabled.
- a client disables a sub-copy version by setting a flag in the data of the sub-copy version, so that a compliant device will not present the sub-copy version.
- a client disables a sub-copy version by encrypting the sub-copy version with a key private to the client.
- a client disables a sub-copy version by registering the bound instance as being disabled with a central database or authority (e.g., with which devices check before presenting or playing a sub-copy version). If a client is disconnected from the hub network at this time, the server generates a request to disable the corresponding sub-copy version when the client device reconnects to the hub network.
- the server disables the source version, block 2515 .
- the server disables the source version similarly to the server disabling a discrete instance or a client disabling a sub-copy version, such as by disabling the root license for the bound instance.
- the server makes a discrete instance from the bound instance, block 2520 .
- the server copies the bound instance, including copying the source version of the locked content data, header information including the licensing authority information, the key to unlock the locked content data, the root license, and the revocation list (if present).
- the server stores the discrete instance on internal storage or on external compliant media (e.g., according to the discrete request from the user).
- the server modifies the root license as appropriate for a discrete instance, rather than a bound instance.
- the server does not copy the root license and instead generates a new discrete license using the root license.
- the server also or instead contacts an external licensing authority indicated by the licensing authority information to update or generate the discrete license.
- the server before creating the discrete instance on external compliant media, the server confirms that compliant media is available to store the new discrete instance. If compliant media is not available, the server can create a discrete instance on internal storage or the server can create a non-compliant copy using an approved recording technology (e.g., as approved by the root license or by the configuration of the hub network). In one implementation, examples of approved recording technologies include 4C or D-VHS.
- approved recording technologies include 4C or D-VHS.
- the server will not make a discrete instance on external storage.
- the user can request the creation of a non-compliant copy from a discrete instance regardless of the presence of compliant media (though approved recording technology is still needed).
- the server converts a bound instance to a discrete instance.
- the server does not need to make a copy of the bound instance. Instead, the server changes the licensing authority information and the license as appropriate to indicate that the bound instance is now a discrete instance.
- a storage client device can also change the state of a bound instance to discrete.
- the client device informs the server and the server disables the source versions and all remaining sub-copy versions (e.g., by sending disable requests to the other clients).
- the storage client device requests all member devices of the hub network to disable sub-copy versions of the content (subject to the license of the storage client device).
- the client device includes functionality to change the state of the bound instance to discrete.
- the server will not free a bound instance that includes time-restricted usage rules in the licensing information. In this case, if the server receives a request to shift the bound instance to a discrete instance, the server declines the request and the bound instance, with corresponding sub-copy versions, remains enabled.
- the server confirms that the server is allowed to free the bound instance before disabling the bound instance and creating a discrete instance.
- the server confirms that the root license of the bound instance permits the server to free the bound instance.
- the server also confirms that the server is not on the server's revocation list. If the server does not successfully confirm that freeing the bound instance is allowed, the server does not free the bound instance.
- a server manages the licenses of sub-copy versions for bound instances bound to the server's hub network.
- the server when a server binds an instance of content to a hub network, the server creates a bound instance having a root license.
- the server with the root license for the bound instance is the local licensing authority for that bound instance in the hub network and the server uses the root license to control the licensing of all the sub-copy versions for that bound instance in the hub network.
- a compliant device uses a license to use locked content data of an instance of content, such as to present, copy, or move the locked content data.
- the license indicates the set of permissions defined for specific locked content data.
- the license permissions indicate permissions for presenting, copying, and moving the locked content data according to type (e.g., discrete instance, bound instance).
- a license can also indicate conditions for permission, such as based on time (e.g., a time limit for a rental), geography (e.g., region codes), user identity (e.g., a password).
- a license can be changed or updated through interaction with the licensing authority (e.g., additional payment for sell-through of a rental).
- a compliant device will not present locked content data without a current, valid, and enabled license.
- a compliant device requests a new license or confirms the license for locked content data when the compliant device first uses the locked content data.
- a server only provides licenses to member clients of the server's hub network that are in the local environment of the hub network.
- a server will provide a license to a member client that is disconnected and/or outside the local environment of the hub network using an intermediary device (e.g., another client device).
- the intermediary device acts as a “conduit” for the license (similar to adding a remote device as a member as described above).
- the server and the client are either not connected or the client is not in the local environment of the server.
- the intermediary device is connected to both the server and client (e.g., directly, indirectly, or at different times such as when the intermediary device is a portable device moving between the server and client).
- the intermediary device passes information between the server and client, and eventually passes a license from the server to the client (if the server grants a license to the client).
- a client device can extend its license to another member client of the same hub network if both devices are in the same local environment at the time of the transfer.
- the extended license is the same as (or more restrictive than) the license held by the extending client device, so the extending client will not expand the permissions of the license.
- the receiving client refreshes the license upon receipt. After the extension, both the extending client and the receiving client have a license.
- the license for a sub-copy version of a bound instance has an expiration period.
- the client sets an expiration time according to the expiration period of the license and the current time of the client's secure clock. For example, for license with an expiration period of 15 days, the client would set the expiration time to be 15 days from when the license was received.
- the license expires.
- a client refreshes the license for each of the sub-copy versions stored by the client periodically by contacting the server storing the root license for the sub-copy version. When the license is refreshed, the client resets the expiration time according to the expiration period of the refreshed license.
- a client While the license is not refreshed, the expiration time remains the same and so the remaining time in the expiration period until the expiration time is reached continues to decrease.
- a client also refreshes all of its licenses for sub-copy versions corresponding to a hub network when the client reconnects to that hub network.
- FIG. 26 shows a flowchart 2600 of one implementation of updating and refreshing a license.
- the client stores a sub-copy version of locked content data for a bound instance.
- the license for the sub-copy version is bound to a particular hub network and so the server for the hub network manages the bound instance corresponding to the sub-copy version stored by the client.
- the client receives the license for the sub-copy version
- the client set the expiration time for the license according to the expiration period and the time of the client's clock.
- the client's clock is a secure clock and advances at a regular rate. If the client did not receive an enabled license with the sub-copy, the client requests a new or refreshed license upon receipt of the sub-copy.
- the client requests a refreshed license from the server, block 2605 .
- the client sends a refresh request to the server for the hub network to which the bound instance of the sub-copy version is bound.
- the client sends a refresh request to the server periodically, such as once every minute or hour.
- the server or user can adjust the frequency for clients to request refreshed licenses.
- the client requests synchronization of time from the server before or in addition to requesting the refreshed license.
- the server receives the request and confirms the client is properly configured to receive a refreshed license, block 2610 .
- the server confirms that the client is connected and in the local environment of the hub network (e.g., by pinging the client). If the client is not connected or not in the local environment, the server does not send a refreshed license.
- the server also confirms that the client has the proper security software and data (e.g., a key). If the client does not have the proper security software and data, the server sends the client a security update including updated software and data. If the server cannot send the client the security update, the server does not send the client a refreshed license. If the server does not receive the refresh request, the server does not send a refreshed license to the client.
- the server After confirming the client, the server confirms the license for the client, block 2615 .
- the server confirms that the client is not on the server's revocation list.
- the server and the client also exchange and update revocation lists before the server sends a new license to the client. If the client is on the server's revocation list, the server does not send a refreshed license.
- the server determines whether a license is still available for the client by checking the root license. If the root license indicates that a license is available for the client, the server sends a refreshed license to the client.
- the refreshed license is not necessarily the same license as that stored in the client.
- the server can update aspects of the client's license by sending a different license as the refreshed license.
- the server periodically requests license updates from an external licensing authority and updates the root license accordingly.
- the root license indicates different licensing permissions according to changing criteria, such as time, payment, or client status.
- the server creates a new license using the root license.
- the server does not send a refreshed license to the client.
- a license is not available if the root license indicates that the license for the content is no longer valid due to a change in circumstances (e.g., a time period has expired for a rental, or a subscription fee has not been paid).
- the server also checks with an external licensing authority for some or all refresh requests.
- the server sends a message to the client explaining the reason for not sending the refreshed license.
- the server does not send a refreshed license, but instead sends a message or flag indicating whether the license is able to be refreshed or not, and any changes to the license.
- the client determines whether the server sent a refreshed license or not, block 2620 . If the client is disconnected from the server, the server will not respond to the refresh request and so the client will not receive a refreshed license. In another implementation, the client first checks for any response from the server. In another implementation, the client does not send a refresh request if the client is disconnected from the hub network and proceeds as though a refreshed license had not been received. If the server is unavailable or disabled, the server will not send a refreshed license. As discussed above, if the server does not successfully confirm the client or the license, the client is not permitted to receive a refreshed license and the server does not send a refreshed license.
- the client If the client receives the refreshed license, the client refreshes the license, block 2625 .
- the client replaces the stored license with the refreshed license.
- the expiration time is reset back to the maximum of the expiration period.
- the client determines whether the license has expired or not, block 2630 .
- the license has expired when the expiration period has passed without receiving a refreshed license.
- the license expires when the client's clock indicates that the expiration time has been reached.
- different mechanisms can be used to determine when the expiration period has expired, such as a decrementing timer.
- the client disables the license, block 2635 .
- the client disables the license so that the client and other compliant devices will not present that sub-copy version.
- the client disables the sub-copy version in another way instead or as well, such as encrypting the sub-copy version or deleting the sub-copy version.
- the client When the next period for requesting a refreshed license occurs, the client returns to block 2605 .
- the client may determine that the license has expired independently of requesting a refreshed license (e.g., when the expiration time is between requests for a refreshed license).
- the client if a client does not receive a refreshed license from a server, the client requests a refreshed or new license from an external license authority.
- the server is the local licensing authority defined by the licensing authority information in the header information of the sub-copy version.
- the licensing authority information might also indicate an external licensing authority, such as a central server connected to the client through a network (e.g., the Internet).
- the client requests a license from the external authority when the server is unavailable, or when the client is not a member of the server's hub network and needs a new license.
- the licensing authority information indicates a hierarchy of authorities (e.g., local, regional, national, and absolute).
- FIGS. 27 - 29 illustrate an example of disconnecting a device from a hub network and the operation of expiration periods.
- the first media network environment 2700 includes four devices: a server/client device 2705 connected to a terminal device 2710 (for presenting content), a server device 2715 , and a client device 2720 .
- the server/client device 2705 is the server for a hub network HN 1 , indicated by the “HN 1 *” label.
- the server/client device 2705 and the client device 2720 are clients in the hub network HN 1 , indicated by the “HN 1 ” label.
- the server device 2715 is a server for a hub network HN 2 , indicated by the “HN 2 *” label.
- the server/client device 2705 and the client device 2720 are clients in the hub network HN 2 , indicated by the “HN 2 ” label.
- Two content items A and B are bound to the hub network HN 1 .
- the server/client device 2705 stores a source version and manages root responsibility for each of the two content items A and B, indicated by the “A” and “B” labels.
- the client device 2720 stores a sub-copy version for each of the two content items A and B, indicated by the “a” and “b” labels.
- the server device 2715 stores a source version and manages root responsibility for the content item X, indicated by the “X” label.
- the server/client device 2705 and the client device 2720 each store a sub-copy version for the content item X, indicated by the “x” label.
- the server device 2715 also stores a discrete version of the content item Y, indicated by the “Y” label.
- the second media network environment 2750 includes one device: a server/client device 2755 .
- the server/client device 2755 is the server for a hub network HN 3 , indicated by the “HN 3 *” label.
- the server/client device 2755 is a client in the hub network HN 3 , indicated by the “HN 3 ” label.
- One content item M is bound to the hub network HN 3 .
- the server/client device 2755 stores a source version and manages root responsibility for the content item M, indicated by the “M” label.
- the server/client device 2705 moves to the second media network environment 2750 and becomes a member of the hub network HN 3 as a client, indicated by the “HN 3 ” label.
- the server/client device 2705 is still a client in both of the hub networks HN 1 and HN 2 , indicated by the “HN 1 ” and “HN 2 ” labels.
- the server/client device 2705 receives a sub-copy version of the content item M, indicated by the “m” label.
- the server/client device 2755 joins the hub network HN 1 as a client, indicated by the “HN 1 ” label.
- the server/client device 2755 receives a sub-copy version for each of the content items A and B, indicated by the “a” and “b” labels.
- the server/client 2705 has taken the local environment for the hub network HN 1 to the second media network environment 2750 .
- the client device 2720 is no longer in the local environment of the hub network HN 1 and so the client device 2720 is disconnected from the hub network HN 1 .
- the client device 2720 cannot refresh the licenses for the sub-copy versions a and b of the content items A and B and so the expiration times for the sub-copy versions a and b will not be reset, indicated by the “a ⁇ 15 ” and “b ⁇ 15 ” labels.
- the server/client device 2705 when the server/client device 2705 leaves the media network environment 2700 , the server/client device 2705 becomes disconnected from the hub network HN 2 because the server/client device 2705 has left the local environment of the hub network HN 2 . Being disconnected, the server/client device 2705 cannot refresh the licenses for the sub-copy version x of the content item X and so the expiration time for the sub-copy version x will not be reset, indicated by the “x ⁇ 15 ” label. However, the server/client device 2705 has become a member of the hub network HN 3 and the hub network HN 3 is in a different local environment than the hub network HN 2 .
- the client when a spanning device is a member of two hub networks that are in different local environments, the client will only present sub-copy versions from the hub network to which the device has been most recently connected, in this case the hub network HN 3 (and the hub network HN 1 because the server/client device is the server for the hub network HN 1 ). Accordingly, the sub-copy version x for the content item X is temporarily disabled until the server/client device 2705 is again connected to the hub network HN 2 , indicated by the “x ⁇ 15 ” label (strikethrough).
- the spanning device client does not temporarily disable sub-copy versions from remote hub networks and continues to monitor the expiration period for the sub-copy versions that are not being refreshed, as described above.
- the server/client device 2705 has returned to the first media network environment 2700 and connected to the server device 2715 and the client device 2720 , reconnecting to the hub network HN 2 .
- the client/server device 2705 can refresh the license for the sub-copy version x and the client device 2720 can refresh the licenses for the sub-copy versions a and b, indicated by the removal of the superscripts.
- the server/client device 2705 By the server/client device 2705 leaving the second media network environment 2750 , the server/client device 2705 is disconnected from the hub network HN 3 and the server/client device 2755 is disconnected from the hub network HN 1 . As a result, the server/client device 2705 cannot refresh the license for the sub-copy version m so the expiration time is not reset and the sub-copy version m is temporarily disabled, as indicated by the “m ⁇ 15 ” label. The server/client device 2755 cannot refresh the licenses for the sub-copy versions a and b so the expiration times are not reset, indicated by the “a ⁇ 15 ” and “b ⁇ 15 ” labels.
- a client device presents or plays content.
- Some client devices include integrated presentation components and present content data directly.
- Some client devices present content data through a connected device, such as a terminal device.
- Some clients present content data in either or both ways.
- a storage client device presents content data stored in a sub-copy on the client device or in content data streamed from the server.
- a non-storage client device presents content data streamed from the server.
- the dashed line from the server device 1715 to the non-storage client 1725 indicates streaming content data from the server device 1715 to the non-storage client 1725 .
- presented content data includes output controls to control unauthorized copying (e.g., data or processing to prevent or inhibit copying of the output data).
- Some servers include server and client functionality and this kind of server will present content similarly to a client.
- FIG. 30 shows a flowchart 3000 of one implementation of a client device presenting content data stored in a sub-copy version on the client device.
- the client device is a storage client device and stores a sub-copy version of the locked content data to be presented.
- the client receives a request to present the content, block 3005 .
- the request is from a user and indicates an item of content. In another implementation, the request is from another device or is automated.
- the client confirms that the license permits presenting the sub-copy version, block 3010 .
- the license may change or be updated as the license is refreshed, so the client checks the license before presenting the sub-copy version. If the license is not current, is not valid, or is disabled, the client will not present the sub-copy version. In one implementation, if the client does not have a current, valid, and enabled license, the client requests a new license from the server and the server refers to the root license of the corresponding bound instance. If the server declines this request (e.g., because the client is not entitled to a new license), the client will not present the sub-copy version.
- the client also confirms that the client is not on any revocation list available to the client, block 3015 . If the client is on a revocation list, the client will not present the sub-copy version.
- the client After successfully confirming the license and the revocation list, the client presents the content data of the sub-copy version, block 3020 .
- the client presents the content of the sub-copy version by decrypting the locked content data to generate output data and outputting the output data to integrated presentation components, external presentation components, or a terminal device.
- a compliant device presents content data from a discrete instance in a similar way.
- a server including client functionality presents content data in a similar way.
- a server device and a client device coexist on the same physical device and so the server relies on the resident client to present content.
- FIG. 31 shows a flowchart 3100 of one implementation of streaming content data from a server to a client. Initially, a server creates a bound instance of content and a client device is connected to the server.
- the client receives a request to present the content, block 3105 .
- the request is from a user and indicates an item of content.
- the request is from another device or is automated.
- the client sends a streaming request to the server managing the bound instance indicated by the present request.
- the server receives the present request and the request also indicates the client device to present the content.
- the server confirms that the root license permits presenting the content data by streaming to the indicated client, block 3110 .
- the license may change or be updated as the license is refreshed, so the server checks the license before streaming the content data from the source version of that bound instance. If the license is not current, is not valid, or is disabled, the server will not stream the content data. The server will not stream the content data to clients that are not members of the hub network.
- the server also confirms that the client is not on a revocation list available to the server, block 3115 . If the client is on an available revocation list, the server will not stream the content data.
- the server After successfully confirming the license and revocation lists, the server streams the content data from the source version of that bound instance to the client, block 3120 . In one implementation, the server streams the locked content data of the source version to the client.
- the client As the client receives the streaming content data, the client presents the content data, block 3125 .
- the client does not store the streaming content data (other than transiently in the process of presenting the content data).
- the client presents the content data by outputting content data to integrated presentation components, external presentation components, or a terminal device.
- the server encrypts the locked content data (e.g., using an encryption technique for streaming data) and streams the encrypted locked content data to the client.
- the client decrypts the encrypted locked content data to obtain the locked content data and then decrypts the locked content data to obtain output data.
- the client presents the output data.
- different combinations of encryption and decryption between the server and client can be used.
- the server can decrypt the locked content data to obtain output data and then encrypt the output data.
- the server then streams the encrypted output data to the client and the client decrypts the encrypted output data.
- a compliant device can always output data to a connected terminal device because the terminal device will not store the received output data (other than transiently) and the connection and transmission to the terminal device is reasonably secure.
- a compliant device sends output data to a terminal device, that compliant device sends the same data to all terminal devices receiving data from the compliant device.
- a compliant device will stream discrete content to another compliant device, but the receiving device will not store any of the streamed content data (other than transiently in the process of presentation).
- a client device will not stream content data for a sub-copy version.
- a storage client device will stream content data for a sub-copy version to another member client.
- a compliant device can create a sub-copy version from a source version or copy a sub-copy version.
- a compliant device can freely provide a sub-copy version to another member of the hub network.
- a compliant device can provide a sub-copy version to a compliant device that is not a member of the hub network to which the bound instance is bound, but the non-member will need to obtain a new valid license before being able to present the content data of the sub-copy version.
- a compliant device can provide a sub-copy version to a non-compliant device, but the non-compliant device will not be able to present the locked content data of the sub-copy version.
- the non-compliant device can move the sub-copy version to a compliant device and that compliant device will be able to present the sub-copy version after obtaining a new valid license.
- a compliant device will not copy a discrete instance (other than in the process of shifting the instance from discrete to bound on the hub network). Similarly, a compliant device will not create a backup copy of a discrete instance.
- a compliant device can make a copy of the discrete version of the locked content data of a discrete instance (similar to a sub-copy version) and provide that copy to another device, but the receiving device will need to obtain a new valid license before being able to present the received copy of locked content data.
- a server will not move a source version and root responsibility to another server directly.
- a server converts the bound instance to a discrete instance, moves the discrete instance to another server, and the second server converts the discrete instance back to a bound instance, establishing a new root.
- a spanning device can facilitate the transfer of a discrete instance from one hub network to another by allowing a server to transfer a discrete instance through the spanning device to another compliant server.
- a server moves root responsibility directly to another compliant server that shares a common client device.
- a server will not move a source version or root responsibility to a client (unless the client is also a server).
- a compliant device can move a discrete instance using compliant media, secure transmission, or compliant recording technologies. As described above referring to creating a discrete instance from a bound instance, in one implementation, before moving the discrete instance to external media, the compliant device confirms that the external media is compliant media. If compliant media is not available, the compliant device can create a non-compliant copy on non-compliant media using an approved recording technology. Once the compliant device has created the non-compliant copy, the non-compliant copy will not be able to be bound again. Accordingly, the compliant device requests confirmation before creating the non-compliant copy. If external compliant media is not available and an approved recording technology is not available, the compliant device will not move the discrete instance to external storage.
- Compliant devices transport sub-copy versions to other compliant devices using a secure transmission.
- compliant devices can transport sub-copy versions (without licenses or keys) across non-secure connections as well.
- a compliant device can also use compliant physical media to transfer a sub-copy version to another compliant device, subject to the restrictions described herein.
- FIG. 32 shows a flowchart 3200 of one implementation of creating a sub-copy version of locked content data for a member client.
- a server manages a bound instance of content, storing a source version and root license for the bound instance.
- the server uses the source version for making sub-copy versions for the hub network.
- the server receives a request to create a sub-copy version, block 3205 .
- the request is from a user and indicates an item of content and a client to receive the sub-copy version.
- the copy request does not indicate a destination for the new sub-copy version (e.g., the copy request is followed by a request to move the new sub-copy version to a destination client).
- the request is from another device or is automated.
- a client receives the copy request and passes the request to the server.
- the copy request indicates a target resolution.
- the target resolution is different from the resolution of the source version (or sub-copy version being copied)
- a conversion can be performed using the source version as the highest resolution copy in the hub network (or sub-copy version being copied).
- the copy request indicates a target format.
- the server performs any transcoding as part of the copying process using the sub-copy version to be copied or the source version.
- target resolutions and formats can be converted and transcoded on demand by clients for presentation.
- the server confirms that the license permits providing a sub-copy version to the indicated client, block 3210 .
- the license may change or be updated as the license is refreshed, so the server checks the license before creating the sub-copy version. If the license is not valid or is disabled, the server will not create the sub-copy version. As described below, in another implementation, the server does not confirm the license before making a sub-copy version. Instead, the server checks the license when creating a new license for the sub-copy version.
- the server also confirms that the client is not on the server's revocation list, block 3215 . If the client is on the revocation list, the server will not create the sub-copy version.
- the server After successfully confirming the license and the revocation list, the server creates the sub-copy version, block 3220 .
- the server creates a new sub-copy version from the source version, storing the new sub-copy version on the server. Referring to FIG. 23, the server creates a sub-copy version 2355 from a source version 2310 .
- the server also copies the header information including the licensing authority information.
- the server does not copy the root license, the key for unlocking the locked content data, or the revocation list of the source version.
- the server creates a new sub-copy license for the sub-copy version according to the root license. However, the license for a new sub-copy version is initially disabled.
- the recipient client will contact the server to refresh the license and receive a new license specific to the new sub-copy version.
- the server provides an enabled license with the new sub-copy version.
- the server provides the key for unlocking the sub-copy version and a revocation list based on the server's revocation list when the server provides a license to the client.
- the server moves the new sub-copy version to the destination client, block 3225 .
- the server sends another copy of the new sub-copy version and any accompanying data (e.g., license) to the client and deletes the first new sub-copy version on the server.
- the client receives and stores the new sub-copy version.
- the server creates the new sub-copy version directly on the client, and so skips block 3225 .
- the server creates and provides the sub-copy license later in response to a request for a new license from the client.
- the root license allows a limited number of sub-copy versions to be made.
- the server maintains a count of the number of sub-copy versions made (e.g., by counting the number of times sub-copy licenses have been made from the root license), storing the copy count in the root license. If the limit has been reached, the server will not make another sub-copy version from the source version of the bound instance.
- the copy count can be reduced by deleting or disabling sub-copy versions in the hub network if the server is informed of the deletion or disablement.
- a client is only allowed to have a certain number of licenses.
- the client determines if the client's limit on licenses has been exceeded. If so, the client disables the license for the new sub-copy version until some other license is disabled to bring the number of licenses below the limit again.
- a storage client device can also make copies of a sub-copy version stored on the client.
- the storage client device makes a sub-copy version as described above for the server referring to FIG. 32.
- a request to move a sub-copy version is handled in a similar way.
- a server or client receives the request and confirms that the license allows the sub-copy version to be moved to the indicated client.
- the server or client confirms that the indicated client is not on the server or client's revocation list. If the confirmation is successful, the server or client moves the sub-copy version and any corresponding data (e.g., license) to the indicated client.
- clients can move and copy sub-copy versions without confirmation, but will not move or copy licenses.
- a server can create and distribute sub-copy versions without first confirming the root license and revocation list.
- servers and clients can distribute sub-copy versions to compliant and non-compliant devices without restrictions.
- a non-compliant device will not be able to present the locked content data, but can pass the sub-copy version to a compliant device.
- a recipient compliant device will obtain a license (e.g., as indicated by licensing authority information in the header of the sub-copy version) before being able to present the locked content data of the sub-copy version.
- a client can move a copy of a license to provide the license to a disconnected member client.
- a server or client When a server or client provides a sub-copy version to a compliant device that is not a member of the hub network, the server or client does not provide a valid license with the sub-copy version. The recipient later obtains a valid license using the licensing authority information stored in the sub-copy version. In this way, a compliant device can distribute a sub-copy version to other hub networks.
- a local environment is defined in absolute terms, such as a 100 meter radius circle with the center at a defined geographical point.
- media may be restricted to being used at a particular physical location, such as confidential documents being limited to a specific building.
- hub networks are not restricted by local environment. In this case, a device is unable to refresh a license when the device is unable to communicate with the server (e.g., the physical or network connection is broken).
- each of the server/client device 1705 , the server device 1715 , the storage client device 1720 , and the non-storage client device 1725 includes one or more computers executing software implementing the client and server operations discussed above.
- each computer includes one or more processors, one or more data-storage components (e.g., volatile or non-volatile memory modules and persistent optical and magnetic storage devices, such as hard and floppy disk drives, CD-ROM drives, and magnetic tape drives), one or more input devices (e.g., mice and keyboards), and one or more output devices (e.g., display consoles and printers).
- processors e.g., central processing units (CPUsable programmable read-only memory
- data-storage components e.g., volatile or non-volatile memory modules and persistent optical and magnetic storage devices, such as hard and floppy disk drives, CD-ROM drives, and magnetic tape drives
- input devices e.g., mice and keyboards
- output devices e.g., display consoles and printers.
- the computers are included within consumer electronic devices.
- the computer programs include executable code that is usually stored in a persistent storage medium and then copied into memory at run-time.
- the processor executes the code by retrieving program instructions from memory in a prescribed order.
- the computer receives data from the input and/or storage devices, performs operations on the data, and then delivers the resulting data to the output and/or storage devices.
Landscapes
- Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Multimedia (AREA)
- Databases & Information Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Graphics (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Automation & Control Theory (AREA)
- Technology Law (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
Description
- This application claims the benefit of U.S. Provisional Patent Application No. 60/434,774, filed Dec. 17, 2002, and U.S. Provisional Patent Application No. 60/471,823, filed May 20, 2003, the disclosures of which are incorporated herein by reference.
- Audio and video media content, such as music and movies, is becoming increasingly available in various digital forms, such as in electronic files stored on optical storage (e.g., CDs and DVDs) or magnetic storage (e.g., hard disks). The digital content provides both high quality of reproduction and convenient access for users. Another benefit of digital content is that it is typically easy to create a high quality copy of the content. Users enjoy accessing the digital content through various devices in multiple locations. However, content owners are often concerned with uncontrolled and unauthorized copying and resulting potential problems, such as piracy.
- The present disclosure provides methods and apparatus for managing devices and content in a network environment. In one implementation, a network media environment includes: a first hub network including a first server and a first client, and said first server is connected to said first client; a second hub network including a second server and said first client, and said second server is connected to said first client, such that said first hub network and said second hub network overlap; wherein said first client stores first content bound to said first hub network and stores second content bound to said second hub network.
- In another implementation, a network media environment includes: a first hub network including a first server and a first client, and said first server is connected to said first client; a second hub network including a second server and said first client, and said second server is connected to said first client, such that said first hub network and said second hub network overlap; wherein said first server stores first content in a first source version of locked content data, said first server stores a first root license bound to said first hub network for said first source version, said second server stores second content in a second source version of locked content data, said second server stores a second root license bound to said second hub network for said second source version, said first client receives said first content streamed from said first source version by said first server, and said first client receives said second content streamed from said second source version by said second server.
- In another implementation, a network media environment includes: a first hub network including a first server; a second hub network including a second server and said first server, and said second server is connected to said first server, such that said first hub network and said second hub network overlap; wherein said first server stores a first license and a first version of locked content data, and said first version stores first content, said first server stores a second license and a second version of locked content data, and said second version stores second content, said first license is bound to said first hub network, and said second license is bound to said second hub network.
- In another implementation, a hub network includes: a server storing a root license and a source version of locked content data; a client connected to said server, and storing a first license, a first sub-copy version of locked content data, a second license, and a second sub-copy version of locked content data; wherein said source version of locked content data stores first content, said root license is bound to said hub network, said first sub-copy version stores said first content, said first license is bound to said hub network, said second sub-copy version stores second content, and said second license is bound to another hub network.
- FIGS.1-16 illustrate one example of configuration and operation of one implementation of a media network environment.
- FIG. 17 shows a representation of one implementation of a media network environment.
- FIG. 18 shows a flowchart of one implementation of adding a device to a hub network as a member device.
- FIG. 19 shows a flowchart of one implementation of removing a device from a hub network as a member device.
- FIG. 20 shows a flowchart of one implementation of disconnecting a member device from a hub network.
- FIG. 21 shows a flowchart of one implementation of reconnecting a member device to a hub network.
- FIG. 22 shows a representation of one implementation of a discrete instance of content.
- FIG. 23 shows a representation of one implementation of a bound instance and a sub-copy.
- FIG. 24 shows a flowchart of one implementation of binding a discrete instance to a hub network.
- FIG. 25 shows a flowchart of one implementation of freeing a bound instance from a hub network.
- FIG. 26 shows a flowchart of one implementation of updating and refreshing a license.
- FIGS.27-29 illustrate an example of disconnecting a device from a hub network and the operation of expiration periods.
- FIG. 30 shows a flowchart of one implementation of a client device presenting content data stored in a sub-copy on the client device.
- FIG. 31 shows a flowchart of one implementation of streaming content data from a bound instance on a server to a client.
- FIG. 32 shows a flowchart of one implementation of creating a sub-copy.
- The present invention provides methods and apparatus for managing devices and content in a network environment. In one implementation, a collection of devices is interconnected in a media network environment defining multiple hub networks of client-server relationships. In a hub network, a server provides access to content to clients by streaming content or sending copies to the clients. The server and clients work together to manage membership in the hub network, connection and disconnection with the hub network, content distribution in the hub network, and the state of content in the hub network.
- In general, the following terms are used herein with the following meanings. “Content” refers to the audio and/or video of an item of media, such as a movie or song. One item of content is one particular item of media, such as one movie. “Content data” refers to the data representing an item of content. An “instance” is a logical collection of data including the content data for an item of content. Accordingly, content data of an instance of content is, for example, moved and played (rendered). “Play” and “present” refer to rendering and displaying the content data of an instance of content or otherwise presenting the content data according to the type of content (e.g., presenting audio and video for a movie or presenting audio for a song). Similarly, “presenting an instance” refers to rendering and displaying the content data of an instance. A “license” refers to the data storing the permissions for using content data, such as whether content data is permitted to be played or copied by a device. Descriptions herein of what can and cannot be done with an instance or content data refer to permissions set by a license associated with the instance or content data, as appropriate.
- FIGS.1-16 illustrate one example of configuration and operation of one implementation of a media network environment.
- In FIG. 1, a user Jim has established a home
media network environment 100 including two devices: a PVR (personal video recorder) 105 connected to atelevision 110. The PVR 105 is a media network compliant device, meaning that the PVR 105 operates according to the processes defined for a device that is a member of a hub network. The PVR 105 includes storage for storing copies of content (e.g., as electronic files stored on a hard disk) and is a server device. As a server device, thePVR 105 is the server for a hub network and can provide content to client devices that are members in the hub network. As a server, thePVR 105 also defines a local environment (not shown). - In this example, the local environment for the
PVR 105 is defined as a physical area relative to the position of the PVR 105 (e.g., determined by round trip packet timing or GPS information). The PVR 105 is also a client device. As a client device, the PVR 105 can render content directly or through a connected terminal device, such as through the connectedtelevision 110. As both a client and server device, thePVR 105 is a member of a hub network as the server for the hub network and as a client in the hub network. In FIG. 1, thePVR 105 is marked with “HN1” to indicate that thePVR 105 is a client device for hub network 1 (HN1). The PVR 105 is also marked with “HN1*” to indicate that thePVR 105 is the server in HN1. - The
television 110 is not a media network compliant device, and so cannot become a member of a hub network. However, a non-compliant device can be a terminal device for a hub network, receiving data for presentation (e.g., displaying the video and outputting the audio for a movie), without storing the data for the content (beyond transiently). Accordingly, the PVR 105 renders content by outputting data for the content for presentation to the connectedtelevision 110. - As a server device, the
PVR 105 initially sets up the hub network HN1. ThePVR 105 checks for other compliant devices connected to thePVR 105. Before adding a device as a member to the hub network HN1, thePVR 105 authenticates a device, confirming the identity of the device, and authorizes an authenticated device, confirming that the device is a compliant device. If thePVR 105 does not authenticate and authorize a device, thePVR 105 does not add that device to the hub network HN1. In FIG. 1, thePVR 105 is the only compliant device. ThePVR 105 adds itself to the hub network as the server and as a client. Thetelevision 110 is not a compliant device, and so thePVR 105 does not add thetelevision 110 as a member. - In FIG. 2, Jim has purchased movie A and movie B, and recorded television program C. In this example, Jim purchased movies A and B as electronic files downloaded from a
network 115 connected to thePVR 105. Jim recorded program C as an electronic file from a broadcast received by an integrated receiver of thePVR 105. - As discussed below, an instance that is compliant with hub network operation is in one of two exclusive states: discrete or bound. A discrete instance is independent of any hub network and can be played or presented through any compliant device (according to the license of the discrete instance). However, a compliant device cannot make a usable copy of a discrete instance. A discrete instance includes locked content data and a discrete license. The locked content data of the discrete instance is referred to as the “discrete version” of the locked content data. The locked content data is locked by being protected from unauthorized access, such as by encryption. A bound instance is bound to one hub network. The bound instance is one logical instance represented by locked content data and corresponding licenses stored on the server of the hub network and on zero or more of the clients of the hub network. The locked content data stored by the server is the source for copies of the content data in the hub network and is the “source version.” Copies of the source version content data are stored on clients and are “sub-copy versions” (though some or all of the data in the discrete version, the source version, and/or any of the sub-copy versions can be the same). A bound instance can only be played or presented through a compatible compliant device that is a member of that hub network. Members of that hub network can make sub-copies of the content data of a bound instance.
- A server device can change the state of a discrete instance from discrete to bound, disabling the discrete instance and enabling a bound instance. A disabled instance is rendered unusable (e.g., through deletion or encryption of the content data of the instance or disabling the license(s) for the instance). A server device can also change the state of a bound instance from bound to discrete, disabling the bound instance (including any corresponding sub-copies) and enabling a discrete instance. In addition, the server for a hub network manages root responsibility for a bound instance. Root responsibility includes issuing and managing the licenses for the content data of the bound instance in the hub network. Accordingly, the server holds a root license defining permissions for presenting the bound instance and for managing the content data and licenses of the bound instance in the hub network. When a new sub-copy is created, a license is also created for the sub-copy from the root license. An instance of content that is not compliant with hub network operation is a non-compliant instance. A compliant device will play or copy a non-compliant instance according to whatever recognized copy control information may be associated with the instance.
- In FIGS.2-16, letter labels indicate the versions of locked content data of instances of content. The version of the locked content data, and so also the state of the instance corresponding to the locked content data, is indicated by variations of the letter. Underlining indicates a discrete version of content. For example, a discrete version of the movie A is indicated by “A”. An uppercase letter without underlining indicates a source version of locked content data, stored on a server. For example, the source version of the movie A is indicated by “A”. A lowercase letter indicates a sub-copy version of locked content data. For example, a sub-copy version of the movie A is indicated by “a”. The versions also have corresponding licenses (not shown in FIGS. 2-16): a discrete version has a discrete license, a source version has a root license, and a sub-copy version has a sub-copy license.
- Returning to FIG. 2, Jim introduces the movies A and B to the hub network HN1 through the
PVR 105 by storing the discrete versions A and B in thePVR 105. ThePVR 105 also stores a discrete version C of the program C. - In FIG. 3, Jim binds the discrete instances to the hub network HN1. The
PVR 105 changes the state of the discrete instances for the discrete versions A, B, and C to be bound instances, and so creates source versions A, B, and C. ThePVR 105 disables or deletes the discrete versions A, B, and C. - In FIG. 4, Jim buys a
car 120 that includes a compliant device. Thecar 120 is a server device (e.g., including storage) and a client device (e.g., including audio and video systems). Thecar 120 establishes a second hub network HN2, with thecar 120 as the server (indicated by “HN2*”) and as a member client (indicated by “HN2”). Thecar 120 defines a second local environment (not shown) based on relative distance from the car 120 (e.g., thecar 120 includes components that determine round trip packet time or that provide GPS information defining the position of the car 120). In FIG. 4, thecar 120 and thePVR 105 are physically close to one another and so the local environment of thecar 120 is substantially coextensive with the local environment of thePVR 105. - In FIG. 5, Jim connects the two hub networks HN1 and HN2. Each of the
PVR 105 and thecar 120 includes wireless network capability. Jim causes thePVR 105 and thecar 120 to establish a wireless connection. When thePVR 105 and thecar 120 detect one another, each authenticates and authorizes the other to be added as member devices. Accordingly, thePVR 105 adds thecar 120 as a member to the hub network HN1 (indicated by the “HN1” label added to the car 120), and thecar 120 adds thePVR 105 as a member to the hub network HN2 (indicated by the “HN2” label added to the PVR 105). - In FIG. 6, Jim introduces more content to the second hub network HN2. Jim buys a compliant instance of a movie X stored on an article of compliant media, such as a compliant optical disc. Compliant media operates according to the processes defined for content that can be ingested into (made bound) and freed from (made discrete) a hub network. In particular, compliant media allows an instance stored on the compliant media to be disabled and enabled according to changes in state of the instance (e.g., when changing between discrete and bound). In addition, compliant media is configured so that devices will not create a complete bit-by-bit copy of the data stored on the compliant media, without authorization. Because the instance stored on the compliant optical disc is compliant and has not been bound to any hub network yet, the instance is a discrete instance. Jim inserts the compliant optical disc into the server device of the
car 120 and causes thecar 120 to bind the discrete instance of the movie X to the hub network HN2. Thecar 120 creates a bound instance of the movie X and stores a source version of locked content data and root license as part of the bound instance in the storage of thecar 120 and disables the discrete instance on the compliant optical disc (e.g., by storing data to the optical disc). After the discrete instance on the compliant optical disc has been disabled, the discrete version of the locked content data of the disabled instance cannot be played or presented on another device (as described below, in another implementation, when a discrete instance is bound to a hub network, the then-disabled discrete instance can still be played by member devices in the hub network to which the discrete instance was bound). In FIG. 6, the source version of the movie X is indicated by the “X” label added to thecar 120. Similarly, Jim purchases and downloads a compliant instance of a song Y fromnetwork 115 and causes the car to bind the instance to the hub network HN2. In FIG. 6, the source version of the song Y is indicated by the “Y” label added to thecar 120. - In FIG. 7, Jim accesses content through the hub networks. Jim decides to watch the movie X through the
PVR 105 andconnected television 110. As a member device of the hub network HN2, thePVR 105 can access the movie X that is bound to the hub network HN2. ThePVR 105 requests a copy of the movie X and thecar 120, as the server for the hub network HN2, provides a sub-copy version of the movie X to thePVR 105. ThePVR 105 stores the sub-copy version of the movie X (indicated by the “x” label added to the PVR 105) and presents the movie X through theconnected television 110. Similarly, Jim also decides to listen to the song Y through thePVR 105, and so thePVR 105 stores a sub-copy version of the song Y (indicated by the label “y” added to the PVR 105). - Jim later decides to watch the movie A through the
car 120. ThePVR 105, as the server for the hub network HN1, provides a sub-copy version of the movie A to thecar 120. Thecar 120 stores the sub-copy version of the movie A (indicated by the “a” label added to the car 120) and presents the movie A. - In FIG. 8, Jim buys a
television 125 that is a compliant device. Thetelevision 125 is a client device, but is not a server device. Accordingly, thetelevision 125 does not form another hub network. - In FIG. 9, Jim connects the
television 125 to the hub networks HN1 and HN2. Thetelevision 125 supports both wired connections and wireless connections. Jim causes thePVR 105 and thetelevision 125 to establish a wired connection and causes thecar 120 and thetelevision 125 to establish a wireless connection. When thePVR 105 detects thetelevision 125, thePVR 105 authenticates and authorizes thetelevision 125 to be added as a member device. Accordingly, thePVR 105 adds thetelevision 125 as a member to the hub network HN1 (indicated by the “HN1” label added to the television 125). Similarly, thecar 120 authenticates, authorizes, and adds thetelevision 125 as a member to the hub network HN2 (indicated by the “HN2” label added to the television 125). - In FIG. 10, Jim accesses content through the
television 125. Jim decides to watch the recorded program C through thetelevision 125. As a member device of the hub network HN1, thetelevision 125 can access the program C that is bound to the hub network HN1. Thetelevision 125 requests that thePVR 105 stream the program C to thetelevision 125. ThePVR 105 streams the program C to thetelevision 125 using the source version C (indicated by the dashed line labeled “c” between thePVR 105 and the television 125). Thetelevision 125 does not store a copy of the program C (other than transiently in the process of presenting the streamed program). Similarly, Jim decides to watch the movie X through thetelevision 125, and so thecar 120 streams the movie X to the television using the source version X (indicated by the dashed line labeled “x” between thecar 120 and the television 125). - In FIG. 11, Jim decides to free or unbind the song Y from the hub network HN2 to make the song Y portable. Jim requests that the
car 120 create a discrete instance of the song Y. Thecar 120 disables the bound instance of the song Y, disabling the source version and any sub-copy versions of the song Y (indicated by the removal of the label “y” from thePVR 105 and the label “Y” from the car 120). Thecar 120 creates a discrete instance of the song Y and stores a discrete version (indicated by the label “Y” added to the car 120) on compliant media (e.g., a compliant hard disk or a compliant recordable disc). - In FIG. 12, Jim removes the song Y from the hub network HN2. Jim connects a compliant portable storage device 130 (e.g., a removable memory card) to the
car 120. Jim moves the discrete version of the song Y from thecar 120 to portable storage 130 (indicated by the “Y” label removed from thecar 120 and added to the portable storage 130) and connects theportable storage 130 to aportable music player 135. Theportable music player 135 is a compliant device and is not a member of a hub network, but theplayer 135 can still play the song Y from the discrete version Y because the discrete instance for the discrete version Y is not bound to a hub network. - In FIG. 13, Jim decides to unbind the movie B from the hub network HN1 to give the movie B to a friend Sally. Jim requests that the
car 120 create a discrete instance of the movie. ThePVR 105 has the source version B and so thecar 120 passes the request to thePVR 105. ThePVR 105 disables the bound instance of the movie B (indicated by the removal of the label “B” from the PVR 105). ThePVR 105 creates a discrete instance including a discrete version B of the locked content data and moves the discrete version B to the car 120 (indicated by the label “B” added to the car 120). - In FIG. 14, Jim drives the
car 120 to his friend Sally's home. When Jim drives away from his home, thecar 120 leaves themedia network environment 100 and enters Sally'smedia network environment 140. In one implementation, the server device for a hub network monitors the member devices of the hub network and determines when a member device has left the local environment. As discussed above, in this example, the local environment for thePVR 105 and for thecar 120 is defined by physical location. When thecar 120 leaves, thecar 120 leaves the local network environment of thePVR 105, and thecar 120 takes the local environment of thecar 120 away from thePVR 105 andtelevision 125. As the server of the hub network HN1, thePVR 105 recognizes that thecar 120 has left the local environment because thecar 120 fails to report its physical location to thePVR 105 or when thecar 120 reports a physical location to thePVR 105 that is outside the boundaries of thelocal environment 100. Similarly, as the server of the hub network HN2, thecar 120 recognizes that thePVR 105 and thetelevision 125 have “left” the local environment of the car 120 (i.e., by being left behind). - When the
car 120 leaves, thecar 120 creates a disconnection in the hub networks HN1 and HN2. As a client in the hub network HN1, thecar 120 monitors an expiration period for each of the sub-copy versions received through the hub network HN1. The period is a mechanism in the license for the sub-copy version for controlling how long a sub-copy version can be used without a connection between the client storing the sub-copy version and the server managing the bound instance. When the period expires (e.g., as measured by a secure clock in the client), the disconnected client storing the sub-copy version disables the sub-copy version. In this example, the period is 15 days, (indicated by the “−15” superscript in the label “a−15” of the car 120). Similarly, as a client in the hub network HN2, thePVR 105 monitors the expiration period for sub-copy versions received through the hub network HN2 (indicated by the “−15” superscript in the label “x−15” of the PVR 105). - In Sally's
media network environment 140, Sally has agame console 145 and aconnected television 150. Thegame console 145 is a compliant device and is both a server device and a client device. Thetelevision 150 is not a compliant device, and serves as a terminal device for presenting content from thegame console 145. Thegame console 145 defines a hub network HN3 and acts as the server for the hub network HN3 (indicated by the label “HN3*” on game console 145) and as a client in the hub network HN3 (indicated by the label “HN3” on game console 145). As a server for a hub network, thegame console 145 defines a local environment (not shown). Movies L and M and song N are bound to the hub network HN3, and thegame console 145 stores source versions of the movies L and M (indicated by labels “L” and “M” on game console 145) and a source version of the song N (indicated by label “N” on game console 145). - In FIG. 15, the next day, Jim connects the
car 120 to Sally'sgame console 145 and gives the discrete instance of the movie B to Sally. Jim and Sally do not cause thecar 120 to join the hub network HN3 as a member or cause thegame console 145 to join the hub network HN2 as a member. To give the discrete instance of the movie B to Sally, Jim causes thecar 120 to move the discrete version from thecar 120 to the game console (indicated by the removal of the label “B” from the car 120). Sally causes thegame console 145 to bind the discrete instance of the movie B to the hub network HN3. Thegame console 145 disables the discrete instance of the movie B and creates a bound instance of the movie B, storing a source version and root license in the storage of the game console 145 (indicated by the label “B” added to the game console 145). - Because it is the next day, and the
car 120 has not reconnected to the hub networks HN1 or HN2, the clocks of thecar 120 and thePVR 105 are one day closer to the end of the expiration periods for the sub-copy versions a and x and so one day less remains before the periods expire (indicated by the labels changing to “a−14” on thecar 120 and “x−14” on the PVR 105). - In FIG. 16, Jim returns home in his
car 120. When thecar 120 leaves, thecar 120 disconnects from thegame console 145. When thecar 120 enters Jim'smedia network environment 100, thecar 120 connects to thePVR 105 and thetelevision 125. Thecar 120 has returned to the local environment of thePVR 105 and brought back the local environment of thecar 120 to thePVR 105 and thetelevision 125. When thecar 120 reconnects to thePVR 105, thePVR 105, as the server for the hub network HN1, resets the expiration period for the sub-copy version a of the movie A stored on the car 120 (indicated by changing the label “a−14” to “a” on the car 120). Similarly, thecar 120, as the server for the hub network HN2, resets the expiration period for the sub-copy version x of the movie X stored on the PVR 105 (indicated by changing the label “x−14” to “x” on the PVR 105). - In this example, Jim was able to obtain instances of content and bind the instances in the hub networks of his home media network environment. Jim was able to present the content and make copies within the media network environment. When Jim freed instances of content from the media network environment, the instances were removed. In this way, Jim was able to use his content throughout the media network environment while the instances of content were bound in the media network environment, and then remove the instances of content when he wanted the content to leave the media network environment.
- Configuration and Operation of Media Network Environments
- FIGS.17-33 illustrate the configuration and operation of hub networks in a media network environment.
- Network Configuration
- A media network environment includes one or more hub networks, each hub network having a respective local environment, some or all of which may overlap or be coextensive. The local environment is defined as a limited area such that a compliant device can determine whether the device is in or out of the local environment. For example, one local environment can be defined in terms of physical location (e.g., by calculating the round trip time for packets to travel from server to client, or using geographical positioning data from a GPS system integral to the device), while another local environment is defined in terms of network addressing information (e.g., using IP address and/or subnet information) or logical area (e.g., evaluating network configuration using the number of gateways or routers traversed by a packet). A local environment is defined in terms relative to the server of the hub network (e.g., a 100 meter radius circle with the server at the center). As the conditions of the server change (e.g., the server moves), the local environment may also change. As discussed below, a compliant device can join a hub network while in the local environment of the hub network, and when the device leaves the local environment, the device is disconnected from the hub network (though the device may still be a member). If a device can still maintain a network connection (e.g., a wireless connection) even after leaving the local environment, the device is still treated as disconnected while outside the local environment.
- A media network environment includes one or more devices. In one implementation, a device is a self-contained software application, hardware component, or a combination thereof. For example, one computer system can include multiple hardware and/or software devices. Each device in a media network environment is either a media network compliant device (a compliant device) or is not (a non-compliant device). A compliant device operates according to the rules defined for a media network environment and a hub network. A compliant device can be a member of a hub network, such as a server or a client device. A non-compliant device, such as a terminal device, cannot be a member of a hub network in a media network environment. A non-compliant device can interact with a hub network, such as receiving content as output data from a hub network member device, as described below. However, a non-compliant device cannot decrypt and render a compliant copy of content.
- A hub network includes one or more member devices. Each member device in a hub network is a server, a client, or both. For example, a member device can include server and client functionality in the same physical system. Each hub network has one server. Each client is connected to the server, directly or through networked connections. In this way, a hub network follows a hub and spoke or star topology with the server at the center. Multiple server devices can be members in the same hub network, with one server device acting as the server for the hub network and the additional server devices acting as clients of the hub network's server (through their client functionality).
- The server for a hub network is the focal point of the hub network and manages many aspects of the control of the hub network. A server manages root responsibility for bound instances of content and provides the content to client members in the hub network. A server stores the source version of the locked content data and the corresponding root license of a bound instance. A server provides a sub-copy version of locked content data for a bound instance to a client or streams data of a source version of locked content data to a client. A server manages instances, handles licensing, administers network membership, monitors connection and disconnection of devices to the hub network, and performs time administration. A server defines the local environment of the hub network. As discussed below, a server binds instances of content to a hub network by shifting the state of an instance from discrete (external to the hub network) to bound (internal to the hub network), and a server frees instances from a hub network by shifting the state of an instance from bound to discrete.
- The clients in a hub network play or present content data from instances of content (e.g., by decrypting and rendering content data stored in a version of the locked data of an instance). A client device receives a sub-copy version of locked content data and a sub-copy license for a bound instance from the server or receives streamed data from the server. A client device includes storage for storing sub-copy versions (a storage client device) or does not store sub-copy versions (a non-storage client device). A client device presents content data directly through integrated components or through a connected terminal device. In another implementation, a client device can also stream content data from a sub-copy version to another client device that is a member of the same hub network.
- A terminal device is for presentation of content and is not a member of a hub network. A terminal device is connected to a member device and receives data for presentation, such as output video and audio data. A terminal device may provide other functions as well for services apart from the media network environment.
- When a media network environment includes two or more hub networks, some or all of the hub networks may overlap. Two hub networks overlap when both of the hub networks include the same device or devices. A device belonging to two hub networks spans the hub networks and is a spanning device. A spanning device stores (or can store) content data for instances bound to each of the hub networks. Accordingly, the spanning device can present content bound to multiple respective hub networks (a bound instance is bound to only one hub network). In one implementation, however, a spanning device spans multiple hub networks only in the same local environment. In this case, if a device becomes a member of hub networks in different local environments, the device will only present content from the hub network to which the device has been most recently connected. In another implementation, a spanning device may span hub networks in different local environments and play content from any of the spanning device's hub networks (subject to license requirements, such as refreshing, as discussed below).
- The overlapping hub networks provide a flexible environment for managing the use and copying of content. Each server manages the devices and content in the server's hub network and each client operates in compliance with the rules of the hub network. As a result, a user can present, move, and copy content data through the media network environment in a convenient manner and at the same time the presentation, copying, and moving of the content data is controlled to reflect the licensing guidelines set for a licensing authority (e.g., by the content owner). In addition, the management of each hub network is grounded in the server of the hub network.
- FIG. 17 shows a representation of one implementation of a
media network environment 1700. The media network environment includes two overlapping hub networks HN1 and HN2, with two respective and substantially coextensive local environments (not shown). - The
media network environment 1700 includes several devices: a server/client device 1705 connected to aterminal device 1710, aserver device 1715, astorage client device 1720, anon-storage client device 1725, astorage device 1730, and aplayer device 1735. The server/client device 1705, theserver device 1715, thestorage client device 1720, thenon-storage client device 1725, and thestorage device 1730 are compliant devices. Theterminal device 1710 and theplayer device 1735 are non-compliant devices. - The server/
client device 1705 and theserver device 1715 are servers for respective hub networks. The server/client device 1705 acts as both a server and a client. Theserver device 1715 acts as a server, but not as a client (e.g., does not decrypt and render content). - The
terminal device 1710 is for presentation of content data from a connected device, such as a television. Theterminal device 1710 does not store content data bound to the hub network. - The
storage client device 1720 and thenon-storage client device 1725 are client devices. As client devices, thestorage client device 1720 and thenon-storage client device 1725 present content data through integrated media components (e.g., audio and video outputs). As noted above, the server/client device 1705 is also a client device but presents content data through theconnected terminal device 1710. Thestorage client device 1720 includes storage for storing sub-copy versions of content data. Thestorage client 1720 presents content data for sub-copy versions stored in thestorage client 1720 or content data received as streaming data from a server (e.g., the server/client device 1705). Thenon-storage client 1725 does not store sub-copy versions of content data to present. Thenon-storage client 1725 presents content data received as streaming data from a server (e.g., the server device 1715). In another implementation, all client devices are non-storage clients devices. In this case, if a device has storage for bound content data, the device is a server or server/client device. - The server/
client device 1705 is the server for a hub network HN1, indicated by the “HN1*” label on the server/client 1705. The server/client device 1705 and thestorage client device 1720 are clients in the hub network HN1, indicated by the “HN1” label. Theterminal device 1710 is connected to the server/client device 1705 for presenting content data from the server/client device 1705. Theterminal device 1710 is not a member of the hub network HN1. Theserver device 1715 is the server for a hub network HN2, indicated by the “HN2*” label on theserver device 1715. The server/client device 1705, thestorage client device 1720, and thenon-storage client device 1725 are clients in the hub network HN2, indicated the by the “HN2” label. Thenon-storage client device 1725 does not store sub-copy versions of content data, but instead receives streamed data from theserver device 1715, indicated by the dashed line from theserver device 1715 to thenon-storage client device 1725. - The two hub networks HN1 and HN2 are overlapping, defining an overlapping or overlaying hub and spoke architecture. The hub network HN1 includes the server/
client device 1705 and thestorage client device 1720. The hub network HN2 includes the server/client device 1705, theserver device 1715, thestorage client device 1720, and thenon-storage client device 1725. The server/client device 1705 and thestorage client device 1720 are members of both hub networks HN1 and HN2 and so are spanning devices. - The
storage device 1730 is a compliant media device and theconnected player device 1735 is a non-compliant device. Thestorage device 1730 and theplayer device 1735 are not members of the hub networks HN1 and HN2. Thestorage device 1730 is a portable storage device including compliant media, such as a compliant flash memory card. Theplayer device 1735 is a portable media player device, such as an MP3 player. In other environments, non-compliant devices that are not portable can be connected to one or more compliant devices. - The
storage device 1730 is connected to the server device 1715 (e.g., is inserted into a port) and so can exchange data with theserver device 1715. Accordingly, thestorage device 1730 and theserver device 1715 can exchange discrete instances. Thestorage device 1730 is connected to theplayer device 1735 and theplayer device 1735 can present non-compliant copies of content data stored in thestorage device 1730. Because theplayer device 1735 is a non-compliant device, theplayer device 1735 cannot play or present compliant content data stored on thestorage device 1730. Thestorage device 1730 cannot make usable copies from discrete instances stored on thestorage device 1730. - Hub Network Membership
- A server manages the membership of devices in the hub network. The server adds and removes clients as members of the hub network. A server will only grant licenses to member devices. Upon approval by a user, the server adds a client device as a member after verifying that the client device is a compliant device. If the server is also a client device, the server initially adds itself as a client automatically. In one implementation, the server is also considered a member. In another implementation, only clients are members. Once added as a member, a device is a member until the server removes the device as a member. The server removes a client device as a member upon request by a user or when conditions are met for revoking the membership.
- FIG. 18 shows a
flowchart 1800 of one implementation of adding a device to a hub network as a member device, such as addingstorage client 1720 to the hub network HN1 in FIG. 17. Initially, a client device is connected to a hub network,block 1805. The client can be connected directly to the server, through a wired or wireless connection, or can be connected indirectly to the server, such as through intervening network devices. The server will not add an unconnected device as a member (though see an alternative implementation described below using an intermediary device to add an unconnected device). - The server detects the connected client device,
block 1810. A compliant device sends a message or connection notification to devices on the hub network indicating that the device is now connected to the hub network. In another implementation, the server periodically polls connected devices for new clients. - The server authenticates the detected client device,
block 1815. The server sends a compliance confirmation request for information from the client device to establish whether the client device is a compliant device or not. For example, the server sends a confirmation request encrypted for a compliant device. If the client device does not respond properly or the server otherwise determines that the client device is not a compliant device, the authentication fails and the server will not add the client device as a member to the hub network. - After confirming that the client device is a compliant device, the server sends an identification request for information from the client device identifying the client device. The server has a minimum set of identifying information required to authenticate the client device, such as a MAC address (Media Access Control address). In one implementation, a compliant device has a secure and unique device identifier for hub networks. If the client device does not respond or does not provide appropriate information, the authentication fails and the server will not add the client device as a member to the hub network. If the server authenticates the client device, the server checks a list of member devices to see if the authenticated client device is already in the list of member devices. If so, the server does not need to add the client device as a member and informs the user that the device has reconnected. The server and client proceed as discussed below referring to FIG. 21 (discussing reconnection of a member device). In one implementation, the server adds the authenticated client device to a list of authenticated connected devices for the server's hub network.
- After successfully authenticating the client device, the server receives an add request to add the client device from a user,
block 1820. The server waits to proceed with adding a client device until the server receives an affirmative request from a user to add a specific client device. In another implementation, the server requests approval or confirmation from the user to add an authenticated device when the device is detected instead of waiting for a request from the user. In another implementation, the server waits to authenticate the client device until after receiving a request or approval to add the client. - After receiving a request to add the client device, the server authorizes the client device,
block 1825. In one implementation, the client must be in the local environment of the hub network to be added. The server sends a local environment confirmation request for information from the client to establish whether the client device is in the local environment of the hub network. In one implementation, the server sends a test message and waits for a response from the client (e.g., pings the client). Based on the amount of time between sending the test message and receiving the response, the server determines whether the client is in the local environment (e.g., a round trip time below a threshold indicates a client is within the local environment). In another implementation, the server sends local environment information to the client device and the client device determines whether the client device is in the local environment or not. If the server does not establish that the client device is in the local environment of the hub network, the authorization fails and the server will not add the client device as a member to the hub network. - In one implementation, the server also confirms that the client device is not on the server's revocation list before authorizing the client device. As described below, the revocation list indicates devices for which authorization has been revoked. In one implementation, the server adds the authorized client device to a list of authorized devices.
- After successfully authorizing the client device, the server confirms that the number of member devices in the hub network is below the member device limit,
block 1830. The server stores a device limit indicating the maximum number of member devices that the server will add as members to the hub network, such as 20. The server also maintains a device count, incremented for each device added as a member. If the device count has already met the device limit, the server will not add the client device to the hub network as a member. In an alternative implementation, the server does not maintain a device count or a device limit, andblock 1830 is skipped. In another implementation, the device limit can be modified by request from a verified external authority. - If the device count is below the device limit, the server adds the client device as a member and a client of the hub network,
block 1835. The server sends an add confirmation message to the added client. The server also increments the device count by one. In one implementation, the server adds the client device to a list of members and a list of clients (or the same list). Some or all of the lists of connected devices, authenticated devices, authorized devices, member devices, client devices, and revoked devices can be integrated or related (e.g., cross-indexed), or omitted. - In an alternative implementation, a server automatically attempts to add detected client devices upon detection, or uses a set of rules to determine when to attempt to add connected client devices. In another implementation, the server automatically attempts to authenticate and authorize detected client devices, but does not add an authenticated and authorized device as a member until after receiving a user request or approval.
- In another implementation, when the device count has reached the device limit and the server is attempting to add another device, the server contacts a device registration server, such as through an external network connection. The device registration server indicates whether the client device is to be added to the hub network or not. The device registration server maintains information for hub networks and their member devices. The device registration server can use various criteria to determine whether to allow the client device to be added or not. In one implementation, the device registration server compares a threshold to how many hub networks to which the client device has already been added as a member. In another implementation, the device registration server compares the number of devices already added to the hub network to a second device limit, allowing the client device to be added if the device count is below the second device limit. In this case, the first device limit stored by the server acts as a limit for adding devices without external registration and the second device limit acts as a maximum for adding devices. In another implementation, the server always checks with the device registration server before adding a device (e.g., as though the first device limit were zero).
- In another implementation, an unconnected device or a device outside the local environment can be added as a member. In this case, an intermediary device acts as a “conduit” for membership. The server and the potential member client are either not connected or the client is not in the local environment of the server. The intermediary device is connected to both the server and client (e.g., directly, indirectly, or at different times such as when the intermediary device is a portable device moving between the server and client). The intermediary device requests permission from the server of a hub network to add the client to the hub network. The addition process works similarly to that described above, but instead of the server and client communicating directly, the intermediary device passes messages between the server and client, with communication to each respective device occurring in the local environment relative to that device.
- FIG. 19 shows a
flowchart 1900 of one implementation of removing a device from a hub network as a member device, such as removingstorage client 1720 from the hub network HN1 in FIG. 17. Initially, the device is connected to the hub network and is a member of the hub network. The removal of a member client device is triggered,block 1905. In one implementation, removal is triggered in two ways: by receiving a removal request from the user specifying the client device, or by the server determining that the authorization of the client device is to be revoked. The server determines that the client device is to be revoked when the server receives a revocation notification identifying the client or determines that the client device has circumvented or broken the rules of the hub network for compliant member devices, such as failing to disable a sub-copy version when the state of the bound instance is changed to discrete. The server also revokes the authorization for a device when the server determines that the security of the device has been compromised. - The server disables the licenses for sub-copy versions of bound instances bound to the server's hub network for the client device to be removed,
block 1910. The server sends a disable request to the client indicating the sub-copy versions to be disabled and the client disables the corresponding licenses. In addition, the removed client device will not be able to receive a new license or be able to refresh an existing license for a bound instance bound to the hub network from which the client device was removed. In one implementation, a compliant client device automatically disables all licenses for sub-copy versions stored on the client and for bound instances bound to the hub network from which the client has been removed once the client has been removed. Removing a client from one hub network does not necessarily disable licenses for sub-copy versions for bound instances bound to another hub network. - The server removes the client device as a member of the hub network,
block 1915. The server removes the client device from the list of member devices and decrements the member device count. A server maintains a revocation list of devices for which membership has been revoked. When a server removes a device for revocation, the server adds the device to the server's revocation list. A server will not add a client device as a member if the client device is included in the revocation list. In one implementation, a server publishes a revocation list to other devices when the revocation list is updated, such as to clients in the hub network, other servers, or a central database. In another implementation, the server updates one or more root licenses stored on the server to indicate that the client has been revoked. - In one implementation, a server does not remove a disconnected client as a member until all of the licenses for sub-copies stored on the client have expired. As described below, when a device is disconnected, licenses from the disconnected hub network will eventually expire. The server waits to complete the removal of the disconnected device until all of those licenses have expired.
- Device Disconnection and Reconnection
- When a device enters the local environment of a hub network, the device can connect to the hub network. When a device leaves the local environment of a hub network, the device is disconnected from the hub network. When a device returns to the local environment, the device can reconnect to the hub network. As discussed above, when a compliant non-member is connected or reconnected to the hub network, the server proceeds to attempt to add the new device after receiving a request or approval from a user.
- FIG. 20 shows a
flowchart 2000 of one implementation of disconnecting a member device from a hub network. Initially, a connected device becomes disconnected,block 2005. A device can be disconnected in various ways. When a device leaves the local environment of a hub network, the device is disconnected from the hub network. When the physical connection (wireless or wired) between the device the hub network fails, the device is disconnected. For example, when the server and client can no longer exchange packets of data, the client and server are disconnected. In one implementation, the server determines whether a client is connected or not as needed (e.g., before acting based on the client being connected). In another implementation, the server periodically polls clients for connection and maintains a connected device list, and the client also periodically polls the server and recognizes when the client is disconnected. In another implementation, when a user affirmatively requests that a device be disconnected, the device is disconnected. - Because the local environment is defined relative to the position of the server (e.g., within 100 meters of the server), the server will not leave the local environment because the server takes the local environment with the server when the server physically moves. However, when the server moves, one or more clients of the hub network may not move and so may “leave” the local environment of the hub network as a result of the server's movement. In this case, the clients left behind are disconnected from the hub network as being outside the local environment.
- The client checks the expiration period for any licenses of sub-copy versions of bound instances bound to the hub network,
block 2010. As discussed below, the license for a sub-copy version includes an expiration period. When the client receives the license, the client sets an expiration time based on the expiration period of the license. For example, for a license with an expiration period of 15 days, the client sets the expiration time to be 15 days from the time when the client received the license. The client monitors how much time remains until the expiration time and when the expiration time has been reached using a secure clock. A client periodically refreshes the license by requesting a refreshed license from the server and resets the expiration period and time when the refreshed license is received. A disconnected client device cannot refresh the license because the client is not connected to the server. While the client is unable to refresh the license, the expiration time does not change and so the amount of time until the expiration time is reached continues to decrease. When the expiration time is reached, the expiration period has expired and the client disables the license. When the client can refresh the license again, the client enables the license and resets the expiration time. A client may be unable to refresh one license because the client is disconnected from the hub network for the license, but be able to refresh a second license because the client is still connected to a different hub network corresponding to the second license. - If any of the expiration periods have expired, the client disables the licenses with the expired periods,
block 2015. The client disables the license, disabling the corresponding sub-copy version. In another implementation, the client disables the sub-copy version in another way, as described below. - The client periodically checks to see if the client has been reconnected to the hub network,
block 2020. In one implementation, the client checks for reconnection at the same time as requesting a refreshed license. In some configurations, such as for one implementation using a wired connection, the client does not need to periodically check for reconnection because the client quickly receives a signal indicating the reconnection, and so block 2020 may be skipped. When the client is reconnected to the hub network, the client follows the process shown in FIG. 21. - FIG. 21 shows a
flowchart 2100 of one implementation of reconnecting a member device to a hub network. Initially, the device is a member device that has been disconnected from a hub network. The device is then reconnected to the hub network,block 2105. A device can be reconnected when the device is in the local environment of the hub network and the physical connection between the device the hub network is restored or established. In one implementation, the client periodically polls the server and recognizes when the client is reconnected. In one implementation, a device does not reconnect until requested to do so by a user. - The server detects the reconnected device in the hub network,
block 2110. In one implementation, the client sends a reconnection notification to the server. As discussed above referring to block 1810 of FIG. 18, in another implementation, the server periodically polls the hub network for newly connected or reconnected devices. - The server authenticates the detected device and checks if the reconnected device is a member client of the hub network,
block 2115. As discussed above referring to block 1815 of FIG. 18, the server authenticates a device on connection to determine the identity of the device. The server maintains a list of member devices and so can recognize that a newly connected device is already a member of the hub network and does not need to be added again. In one implementation, the server confirms that the reconnected device is in the local environment of the hub network. In one implementation, the server also confirms that the reconnected device is not on a revocation list. - After authenticating the device as a member device, the server refreshes licenses of the client,
block 2120. The server refreshes the licenses of sub-copy versions of content data stored on the client for bound instances bound to the server's hub network. The server does not refresh licenses for sub-copy versions for bound instances bound to other hub networks. Alternatively, the client requests that the licenses be refreshed once the client has successfully reconnected to the hub network. - Time Administration
- A server manages time administration for the hub network. Time administration includes relative time and absolute time management. The server manages time to enforce time-based limitations, such as in licenses for discrete or bound instances of content in the hub network. Clients also manage time internally, or with reference to the time administration of the server. When a client receives a license for a sub-copy version from a licensing authority, the client synchronizes time information with the licensing authority before receiving the license. Servers and clients use secure mechanisms for managing time.
- Security
- In one implementation, the devices of a hub network use secure techniques for various operations, including, but not limited to: communicating data; placing requests; logging transactions for transaction history; providing and disabling licenses; authenticating, authorizing, disabling, and revoking devices; storing, making, and moving instances, copies and keys; maintaining metadata for instances and copies; and presenting and streaming content. The compliant devices periodically may renew the security processes from a central authority, or receive updates from a user or automated source. A client device renews security mechanisms before receiving a license, including mechanisms such as updating encryption keys, synchronizing the client's clock and time information with the server, exchanging and updating revocation lists, and renewing system security data and tools. In one implementation, a server can revoke a key if the server has determined the key has been compromised. In this case the server requests compliant devices disable the revoked key so that the revoked key will not be used to access secure media content.
- Content Management
- Devices in a media network environment present, copy, and move the content data for instances of content. As discussed above, an instance includes content data that is media data, such as audio and/or video data. As discussed above, the server for a hub network manages the state of bound instances of content in the hub network. The server directly changes the state of a bound instance and causes member clients in the hub network to take appropriate actions according to these state changes.
- An instance of content is either compliant or non-compliant. A compliant instance includes data encoded so that only compliant devices are to be able to decode and present the content data. Accordingly, non-compliant devices cannot present content data from a compliant instance. A compliant device (a server) can bind or free a compliant instance to or from a hub network.
- A non-compliant instance or copy of content is not encoded according to the requirements of a hub network and so a non-compliant device or a compliant device can present the content data of a non-compliant instance or copy (subject to other copy control mechanisms that may be present in the instance or copy). A compliant device will not bind a non-compliant instance or copy to a hub network, but can store non-compliant content in alternative forms.
- Content States
- Each compliant instance of content in the hub network is in one of two exclusive states: discrete or bound. A discrete instance of content is not bound to any hub network and can be moved from one device to another, in or out of the hub network, using compliant media. A compliant device will not make a copy of a discrete instance (other than transiently in the course of presenting the content data). The discrete instance can be in various forms, such as one or more electronic files stored on complaint storage media (e.g., an optical disc), or one or more electronic files stored in storage of a compliant device (e.g., received by download through a network connection). Media storing a discrete instance of content is media network compliant media. Compliant media allows a server to modify the discrete instance as needed, such as to disable the discrete instance when binding the content to the hub network. In addition, compliant media is configured so that devices are not to be able to create a bit-by-bit copy of the data of any discrete instances stored on the compliant media. Accordingly, compliant media is or includes secure read/write storage media (e.g., a writable optical disc or read-only media with an attached or associated writable storage). In one implementation, the writable storage is remote from the media itself, such as a database. A compliant device will not create a copy of a discrete instance.
- FIG. 22 shows a representation of one implementation of a
discrete instance 2205. Thediscrete instance 2205 includes locked or secure content data (e.g., encrypted) 2210. The locked content data of a discrete instance is also referred to as the discrete version of the locked content data of the discrete instance. The lockedcontent data 2210 is the media content data of the discrete instance, such as audio or video data (e.g., a song, a television program, a movie). In an alternative implementation, the locked content data is non-media data, such as executable software (e.g., a computer or video game). The lockedcontent data 2210 is encrypted (e.g., using one or more cryptographic algorithms that are published and verified through public peer review). The lockedcontent data 2210 is encrypted using a content encryption technique so that only compliant devices can decrypt the lockedcontent data 2210.Header information 2215 is associated with the locked content data. The header information includes meta-data such as a title identifier, an instance identifier (identifying the particular instance), encoding data (e.g., indicating the codec, resolution, and encoding entity used to encode the locked content data), and licensing authority data. The licensing authority data indicates an external licensing authority that can be accessed to obtain additional rights or licenses. Some implementations of discrete instances do not include licensing authority data (e.g., using whatever license is provided along with the locked content data). In another implementation, some or all of theheader information 2215 is also encrypted or is included in the lockedcontent data 2210. Thediscrete instance 2205 includes asecure area 2220 of encrypted data. The data of thesecure area 2220 is encrypted using a hub network encryption technique so that only compliant devices are to be able to decrypt the data of the secure area 2220 (e.g., using a key held by compliant devices). Thesecure area 2220 includes a key 2225, adiscrete license 2230, and arevocation list 2235. The key 2225 is for unlocking the lockedcontent data 2210. In one example, a compliant device holds a key for decrypting thesecure area 2220 including the key 2225 (which was encrypted using hub network encryption), and uses the key 2225 to decrypt the locked content data 2210 (which was encrypted using content encryption). Thediscrete license 2230 holds the current license for the lockedcontent data 2210 for the specificdiscrete instance 2205. Thelicense 2230 defines the set of permissions defined for the lockedcontent data 2210 for the specificdiscrete instance 2205, including presenting, copying, and moving as appropriate for a discrete instance (e.g., copying is not permitted). Thelicense 2230 also indicates what types of licenses are available for a bound instance based on thediscrete instance 2205. In one implementation, thelicense 2230 includes a flag to indicate that thediscrete instance 2205 is a discrete instance. Therevocation list 2235 indicates devices for which authorization has been revoked. A compliant device maintains its own revocation list. When a compliant device receives a discrete instance, the device adds to its revocation list any devices in the revocation list of the discrete instance that are not on the device's revocation list. A compliant device will not present or play a discrete instance if that device is listed in the device's revocation list. A compliant server will not bind a discrete instance if that server is listed in the server's revocation list. In another implementation, the discrete instance does not include a revocation list. In another implementation, components of the discrete instance are stored as multiple files. - A bound instance is bound to a particular hub network and managed by the server of that hub network. Data of a bound instance is encrypted (at least in part) so that a non-compliant device or a device outside the bound hub network is not to be able to present or play the content data of the bound instance. The server managing the bound instance has root responsibility for the bound instance. Root responsibility includes issuing and managing the licenses for sub-copy versions of the locked content data of the bound instance. The server managing the bound instance also manages a source version of the locked content data of the bound instance. The server uses the source version for creating sub-copy versions of the locked content data in the hub network. The designated server is a local licensing authority for the sub-copy versions of that bound instance. The server can make sub-copy versions from the source version and provide the sub-copy versions to clients in the hub network. In one implementation, clients can also make sub-copy versions from the sub-copy versions stored by the clients, but the clients receiving the new sub-copy versions will need licenses from the server of the hub network to present the content. A client device can move a sub-copy version to another device in the hub network or to a device outside the hub network. A device receiving a sub-copy version from a different hub network (e.g., of which the device is not a member) needs to obtain a new license, such as from a licensing authority indicated by the sub-copy version. A compliant server will not move the root responsibility, and thus the bound instance, to another compliant server without first changing the state of the bound instance back to discrete. To transfer root responsibility to another server, the server shifts the bound instance to a discrete instance and moves the discrete instance to the second server. The second server then shifts the received discrete instance to a bound instance, and so the second server then has root responsibility. In this case, the bound instance is then bound to a different hub network, that of the second server. In another implementation, the source version is not stored on the server for the hub network, but the server stores and administers the root license and remotely manages the source version.
- FIG. 23 shows a representation of one implementation of a bound
instance 2300, including components stored on aserver 2305 and on aclient 2350. The boundinstance 2300 is similar in structure to thediscrete instance 2205 in FIG. 22, but can include data stored on a server and data stored on zero or more of the clients in the hub network. Theserver components 2305 include: lockedcontent data 2310,header information 2315, and asecure area 2320 that includes a key 2325, aroot license 2330, and arevocation list 2335. The lockedcontent data 2310 in theserver components 2305 is the source version of the locked content data of the boundinstance 2300. The server uses the source version for making sub-copy versions of the locked content data (e.g., lockedcontent data 2310 discussed below). The source version is the highest resolution version of the content in the hub network. If different devices request different resolution copies, those copies can be made from the source version. The licensing authority data of theheader information 2315 indicates an external licensing authority (e.g., the same authority as that indicated by the discrete instance upon which the bound instance is based) and the server as a local licensing authority. Some implementations of bound instances do not include absolute licensing authority data (e.g., using whatever license is provided along with the locked content data). Theroot license 2330 indicates the set of permissions defined for the specific lockedcontent data 2310, including presenting, copying, and moving as appropriate for a bound instance (e.g., moving is not permitted, but creating and providing sub-copy versions to other devices is permitted). Theroot license 2330 is cryptographically bound to the specific server. Theroot license 2330 defines what types of licenses are available for sub-copies in the hub network. In one implementation, theroot license 2330 includes a flag to indicate that the boundinstance 2305 is a bound instance. In one implementation, the root license is different depending on whether the server is a server device or a server/client device. The revocation list indicates devices for which authorization has been revoked. As noted above, a compliant device maintains its own revocation list (e.g., a server maintains a server or device revocation list, a client maintains a client revocation list). When a server receives a bound instance, the server adds to its revocation list any devices in the revocation list(s) of the bound instance that are not on the server's revocation list. A compliant server device will not present or play a bound instance if that device is listed in the server's revocation list. A compliant server will not unbind (make discrete) a bound instance if that server is listed in the server's revocation list. A compliant server will not provide a sub-copy version or a license to a device that is listed in the server's revocation list. In another implementation, a compliant server will provide a sub-copy version to a device listed in the revocation list, but will not provide a license to that device. - The components stored on a
client 2350 are similar to those stored on aserver 2305, but the license is different. Theclient components 2350 include: lockedcontent data 2355,header information 2360, and asecure area 2365 that includes a key 2370, asub-copy license 2375, and arevocation list 2380. The licensing authority data of theheader information 2360 indicates an external licensing authority (e.g., the same authority that indicated by the discrete instance upon which the bound instance is based) and the server corresponding to the bound instance as a local licensing authority. As noted above, some implementations of bound instances do not include licensing authority data. Thesub-copy license 2375 indicates the set of permissions defined for the specific lockedcontent data 2355 according to the root license of the corresponding bound instance, including rules for presenting the content such as any time restrictions. Thesub-copy license 2375 is cryptographically bound to the specific client. Thesub-copy license 2375 includes an expiration period for when the client is unable to refresh the license, as discussed below. As discussed above, a client device maintains a revocation list and updates the revocation list according to therevocation list 2380. A compliant client device will not present or play a sub-copy version if that device is listed in the client's revocation list. In one implementation, a compliant device also will not provide a sub-copy to a device that is listed in the client's revocation list. - In one implementation, similar to the discrete instance, the locked content data and the secure areas of a bound instance are encrypted using different techniques. The locked content data (the source version and any sub-copy versions) is encrypted using a content encryption technique. The secure areas are encrypted using a hub network encryption technique. In one example, a compliant device holds a hub network key for decrypting the secure area including the key (which was encrypted using hub network encryption), and uses the decrypted key from the secure area to decrypt the locked content data (which was encrypted using content encryption).
- In another implementation, locked content data and a license (or the entire secure area) of a bound instance can be managed and distributed separately. Similarly, the locked content of a discrete instance can be distributed separately. In this case, a compliant device will not present locked content data without first obtaining a valid license. Devices can distribute locked content data outside the hub network, but recipients will still need new licenses. In addition, in this way, an intermediary device can act as a conduit for refreshing a license of a disconnected member device outside the local environment of the hub network by passing a license from the server to the disconnected client, as described below.
- Multiple discrete instances of the same content are treated as distinct discrete instances and are unrelated. Similarly, if multiple discrete instances of the same content are bound to a hub network each creates a distinct bound instance. In another implementation, the server recognizes when multiple discrete instances of the same content are present (e.g., through identifying information in the content or header information), and the licensing information for the instances allows the bound instances to be treated as related. For example, if multiple related instances are present, freeing one related instance need not disable locked content data for the remaining related bound instances.
- In another implementation, an instance or copy of content can be in a third state as well: unrestricted. Unrestricted instances and copies can be moved, copied, and played in and out of a hub network. A compliant device will not change the state of an unrestricted instance to bound or discrete. When a user requests that content be added to a hub network, the server checks for copy control information and adds the content as a bound instance if the server identifies controlled states (defining the root license according to the copy control information). If a user requests adding an instance that does not include any detected copy controls or media network environment information (e.g., is not a discrete or bound instance), the device can add the content as an unrestricted instance.
- Returning to FIG. 17, two content items A and B are bound to the hub network HN1. For the bound instances of each of the two items of content A and B, the server/
client device 1705 stores a source version of locked content data, indicated by the “A” and “B” labels. Thestorage client device 1720 stores a sub-copy version of locked content data for each of the two content items A and B, indicated by the “a” and “b” labels. - One content item X is bound to the hub network HN2. The
server device 1715 stores a source version of content X, indicated by the “X” label. The server/client device 1705 and thestorage client device 1720 each store a sub-copy version for the content item X, indicated by the “x” label. Theserver device 1715 also stores a discrete version of locked content data for a discrete instance of content Y, indicated by the “Y” label. - The
storage device 1730 stores a discrete version of content Z, indicated by the “Z” label. - Content State Transitions
- A server manages the state of compliant instances of content in the hub network. A server binds an instance to a hub network by changing the state of a discrete instance to bound. A server removes or frees an instance from a hub network by changing the state of the bound instance to discrete and disabling the corresponding locked content data in the hub network.
- FIG. 24 shows a
flowchart 2400 of one implementation of binding a discrete instance to a hub network. Initially, the server receives the discrete instance,block 2405. As discussed above, the discrete instance can be in various forms on compliant media, such as an electronic file (or files) stored on compliant storage media (e.g., optical disc), or an electronic file (or filed) stored in storage of the server (e.g., received by download through a network connection). The server does not yet make a copy of the discrete instance, because the server will not make copies of discrete instances that are not being bound to the hub network (though a server may make a copy of the locked content data of a discrete instance). - The server receives a request from a user to bind the discrete instance to the hub network,
block 2410. In one implementation, the server waits for a request from the user. In another implementation, the server sends a query to the user when the server receives the discrete instance, querying whether the server should bind the discrete instance to the hub network. - After the server receives the bind request, the server disables the
discrete instance block 2415. By disabling the discrete instance, compliant devices will not present or play the discrete instance. In one implementation, the server disables the discrete instance by disabling the license for the discrete instance. In another implementation, the server disables the discrete instance by setting a flag in the data of the discrete instance, so that a compliant device will not present the discrete instance. In another implementation, the server disables the discrete instance by encrypting some or all of the discrete instance with a key private to the server. In another implementation, the server disables the discrete instance by registering the discrete instance as being disabled with a central database or authority (e.g., with which devices check before presenting or playing content data). In another implementation, the discrete instance is only partially disabled such that devices that are members of the hub network to which the disabled discrete instance has been bound can present or play the discrete instance as a sub-copy. If the server cannot disable the discrete instance, the server does not bind the discrete instance to the hub network. - The server creates a bound instance from the discrete instance,
block 2420. The server copies the discrete instance, including copying the locked content data, header information including the licensing authority information, the key to unlock the locked content data, the discrete license, and the revocation list (if present). The server stores the copy of the locked content data as the source version of the locked content data for the bound instance. The server modifies the discrete license to be a root license as appropriate to manage the bound instance, rather than the discrete instance. Alternatively, the server does not copy the discrete license and instead generates a new root license using the discrete license. In another implementation, the server also or instead contacts an external licensing authority indicated by the licensing authority information to update or generate the root license. In one implementation, if the server is not a server/client device and so does not present content, the root license does not store licensing information pertaining to presentation permissions for the server. - In an alternative implementation, the server disables the discrete instance by deleting some or all of the discrete instance. In this case, the server first establishes the bound instance of the discrete instance before deleting the discrete instance.
- In another implementation, the server converts the discrete instance into a bound instance. In this case, the server does not make a copy of the discrete instance. Instead, the server changes the licensing authority information and the license as appropriate to indicate that the discrete instance is now a bound instance.
- In one implementation, the server confirms that the server is allowed to bind the discrete instance before disabling the discrete instance and creating a bound instance. The server confirms that the license of the discrete instance permits the server to bind the discrete instance. The server also confirms that the server is not on the server's revocation list. In another implementation, the server also confirms that there is a proper watermark in the locked content data of the discrete instance. If the server does not successfully confirm that binding the discrete instance is allowed, the server does not bind the discrete instance.
- In one implementation, the server records the broadcast information and stores it as bound content and establishes the root. The server creates the root license automatically. In an alternative implementation the server uses information in the broadcast to define the root license or uses licensing authority information in the broadcast information to contact an external licensing authority to obtain a license to build the root license. In another implementation, a server records content from a broadcast as a discrete instance. In one implementation, the broadcast information includes the key, licensing authority information and licensing information to build the discrete copy. In another implementation, the server records the broadcast information and stores it as bound content and establishes the root. The server uses licensing authority information in the broadcast information to contact an external licensing authority to obtain a license to build the root copy. In one implementation, the server encrypts the media content of the broadcast information according to any copy control information provided by the broadcast.
- FIG. 25 shows a
flowchart 2500 of one implementation of freeing a copy of content from a hub network, making the content discrete (“discretification”). Initially, the bound instance is stored on the server and any clients storing sub-copy versions of the content. - The server receives a request from a user to free the bound instance from the hub network and create a discrete instance,
block 2505. In one implementation, the server waits for a request from the user. In another implementation, the server sends a query to the user when the server receives a request for an action that is not available for a bound instance, such as moving the bound instance off the hub network. In this case, the query asks whether the server should free the bound instance from the hub network and create a discrete instance. - After the server receives the discrete request, the server causes the clients of the hub network to disable sub-copy versions of the corresponding bound instance,
block 2515. The server sends a disable request to each of the members of the hub network, specifying for which bound instance sub-copy versions are to be disabled. Alternatively, the server sends the disable request to members that have sub-copy versions of the bound instance (e.g., as indicated through licenses sent to the clients). The clients receiving the disable request disable all sub-copy versions corresponding to the bound instance. By disabling a sub-copy version, compliant devices will not present or play the disabled sub-copy version. In one implementation, a client disables a sub-copy version by disabling the license for the sub-copy version. In another implementation, a client deletes a sub-copy version to be disabled. In another implementation, a client disables a sub-copy version by setting a flag in the data of the sub-copy version, so that a compliant device will not present the sub-copy version. In another implementation, a client disables a sub-copy version by encrypting the sub-copy version with a key private to the client. In another implementation, a client disables a sub-copy version by registering the bound instance as being disabled with a central database or authority (e.g., with which devices check before presenting or playing a sub-copy version). If a client is disconnected from the hub network at this time, the server generates a request to disable the corresponding sub-copy version when the client device reconnects to the hub network. - After the server disables the sub-copy versions, the server disables the source version,
block 2515. By disabling the source version, compliant devices will not present or play the source version. The server disables the source version similarly to the server disabling a discrete instance or a client disabling a sub-copy version, such as by disabling the root license for the bound instance. - The server makes a discrete instance from the bound instance,
block 2520. The server copies the bound instance, including copying the source version of the locked content data, header information including the licensing authority information, the key to unlock the locked content data, the root license, and the revocation list (if present). The server stores the discrete instance on internal storage or on external compliant media (e.g., according to the discrete request from the user). The server modifies the root license as appropriate for a discrete instance, rather than a bound instance. Alternatively, the server does not copy the root license and instead generates a new discrete license using the root license. In another implementation, the server also or instead contacts an external licensing authority indicated by the licensing authority information to update or generate the discrete license. - In one implementation, before creating the discrete instance on external compliant media, the server confirms that compliant media is available to store the new discrete instance. If compliant media is not available, the server can create a discrete instance on internal storage or the server can create a non-compliant copy using an approved recording technology (e.g., as approved by the root license or by the configuration of the hub network). In one implementation, examples of approved recording technologies include 4C or D-VHS. Once the server has created the non-compliant copy, the non-compliant copy will not be able to be bound again and the disabled sub-copies will not be able to be enabled (without purchasing a new license). Accordingly, the server requests confirmation before creating the non-compliant copy. If external compliant media is not available and an approved recording technology is not available, the server will not make a discrete instance on external storage. In one implementation, the user can request the creation of a non-compliant copy from a discrete instance regardless of the presence of compliant media (though approved recording technology is still needed).
- In another implementation, the server converts a bound instance to a discrete instance. In this case, the server does not need to make a copy of the bound instance. Instead, the server changes the licensing authority information and the license as appropriate to indicate that the bound instance is now a discrete instance.
- In another implementation, a storage client device can also change the state of a bound instance to discrete. In this case, the client device informs the server and the server disables the source versions and all remaining sub-copy versions (e.g., by sending disable requests to the other clients). In an alternative implementation, the storage client device requests all member devices of the hub network to disable sub-copy versions of the content (subject to the license of the storage client device). In one implementation, if a client device stores sub-copy versions or stores other locked content data, the client device includes functionality to change the state of the bound instance to discrete.
- In one implementation, the server will not free a bound instance that includes time-restricted usage rules in the licensing information. In this case, if the server receives a request to shift the bound instance to a discrete instance, the server declines the request and the bound instance, with corresponding sub-copy versions, remains enabled.
- In one implementation, the server confirms that the server is allowed to free the bound instance before disabling the bound instance and creating a discrete instance. The server confirms that the root license of the bound instance permits the server to free the bound instance. The server also confirms that the server is not on the server's revocation list. If the server does not successfully confirm that freeing the bound instance is allowed, the server does not free the bound instance.
- Content License Management
- A server manages the licenses of sub-copy versions for bound instances bound to the server's hub network. As noted above, when a server binds an instance of content to a hub network, the server creates a bound instance having a root license. The server with the root license for the bound instance is the local licensing authority for that bound instance in the hub network and the server uses the root license to control the licensing of all the sub-copy versions for that bound instance in the hub network.
- A compliant device uses a license to use locked content data of an instance of content, such as to present, copy, or move the locked content data. In one implementation, the license indicates the set of permissions defined for specific locked content data. The license permissions indicate permissions for presenting, copying, and moving the locked content data according to type (e.g., discrete instance, bound instance). A license can also indicate conditions for permission, such as based on time (e.g., a time limit for a rental), geography (e.g., region codes), user identity (e.g., a password). A license can be changed or updated through interaction with the licensing authority (e.g., additional payment for sell-through of a rental). A compliant device will not present locked content data without a current, valid, and enabled license. A compliant device requests a new license or confirms the license for locked content data when the compliant device first uses the locked content data. A server only provides licenses to member clients of the server's hub network that are in the local environment of the hub network.
- In another implementation, a server will provide a license to a member client that is disconnected and/or outside the local environment of the hub network using an intermediary device (e.g., another client device). The intermediary device acts as a “conduit” for the license (similar to adding a remote device as a member as described above). The server and the client are either not connected or the client is not in the local environment of the server. The intermediary device is connected to both the server and client (e.g., directly, indirectly, or at different times such as when the intermediary device is a portable device moving between the server and client). The intermediary device passes information between the server and client, and eventually passes a license from the server to the client (if the server grants a license to the client).
- In one implementation, a client device can extend its license to another member client of the same hub network if both devices are in the same local environment at the time of the transfer. The extended license is the same as (or more restrictive than) the license held by the extending client device, so the extending client will not expand the permissions of the license. The receiving client refreshes the license upon receipt. After the extension, both the extending client and the receiving client have a license.
- License Refreshing
- The license for a sub-copy version of a bound instance has an expiration period. When the license is received by a client, the client sets an expiration time according to the expiration period of the license and the current time of the client's secure clock. For example, for license with an expiration period of 15 days, the client would set the expiration time to be 15 days from when the license was received. When the clock indicates that the expiration time has been reached, the license expires. A client refreshes the license for each of the sub-copy versions stored by the client periodically by contacting the server storing the root license for the sub-copy version. When the license is refreshed, the client resets the expiration time according to the expiration period of the refreshed license. While the license is not refreshed, the expiration time remains the same and so the remaining time in the expiration period until the expiration time is reached continues to decrease. A client also refreshes all of its licenses for sub-copy versions corresponding to a hub network when the client reconnects to that hub network.
- FIG. 26 shows a
flowchart 2600 of one implementation of updating and refreshing a license. Initially, the client stores a sub-copy version of locked content data for a bound instance. The license for the sub-copy version is bound to a particular hub network and so the server for the hub network manages the bound instance corresponding to the sub-copy version stored by the client. When the client received the license for the sub-copy version, the client set the expiration time for the license according to the expiration period and the time of the client's clock. The client's clock is a secure clock and advances at a regular rate. If the client did not receive an enabled license with the sub-copy, the client requests a new or refreshed license upon receipt of the sub-copy. - The client requests a refreshed license from the server,
block 2605. The client sends a refresh request to the server for the hub network to which the bound instance of the sub-copy version is bound. The client sends a refresh request to the server periodically, such as once every minute or hour. In one implementation, the server or user can adjust the frequency for clients to request refreshed licenses. In one implementation, the client requests synchronization of time from the server before or in addition to requesting the refreshed license. - The server receives the request and confirms the client is properly configured to receive a refreshed license,
block 2610. The server confirms that the client is connected and in the local environment of the hub network (e.g., by pinging the client). If the client is not connected or not in the local environment, the server does not send a refreshed license. The server also confirms that the client has the proper security software and data (e.g., a key). If the client does not have the proper security software and data, the server sends the client a security update including updated software and data. If the server cannot send the client the security update, the server does not send the client a refreshed license. If the server does not receive the refresh request, the server does not send a refreshed license to the client. - After confirming the client, the server confirms the license for the client,
block 2615. The server confirms that the client is not on the server's revocation list. In one implementation, the server and the client also exchange and update revocation lists before the server sends a new license to the client. If the client is on the server's revocation list, the server does not send a refreshed license. The server determines whether a license is still available for the client by checking the root license. If the root license indicates that a license is available for the client, the server sends a refreshed license to the client. The refreshed license is not necessarily the same license as that stored in the client. The server can update aspects of the client's license by sending a different license as the refreshed license. For example, in one implementation, the server periodically requests license updates from an external licensing authority and updates the root license accordingly. In another implementation, the root license indicates different licensing permissions according to changing criteria, such as time, payment, or client status. As discussed below, in one implementation, when a new sub-copy version is created, the new sub-copy version has a disabled license and needs a new license specific to the new device. In response to the first refresh request for a new sub-copy version, the server creates a new license using the root license. - If the root license indicates that a license is not available for the client, the server does not send a refreshed license to the client. A license is not available if the root license indicates that the license for the content is no longer valid due to a change in circumstances (e.g., a time period has expired for a rental, or a subscription fee has not been paid). In one implementation, the server also checks with an external licensing authority for some or all refresh requests. In one implementation, the server sends a message to the client explaining the reason for not sending the refreshed license.
- In another implementation, the server does not send a refreshed license, but instead sends a message or flag indicating whether the license is able to be refreshed or not, and any changes to the license.
- The client determines whether the server sent a refreshed license or not, block2620. If the client is disconnected from the server, the server will not respond to the refresh request and so the client will not receive a refreshed license. In another implementation, the client first checks for any response from the server. In another implementation, the client does not send a refresh request if the client is disconnected from the hub network and proceeds as though a refreshed license had not been received. If the server is unavailable or disabled, the server will not send a refreshed license. As discussed above, if the server does not successfully confirm the client or the license, the client is not permitted to receive a refreshed license and the server does not send a refreshed license.
- If the client receives the refreshed license, the client refreshes the license,
block 2625. The client replaces the stored license with the refreshed license. The expiration time is reset back to the maximum of the expiration period. - If the client does not receive the refreshed license, the client determines whether the license has expired or not, block2630. The license has expired when the expiration period has passed without receiving a refreshed license. The license expires when the client's clock indicates that the expiration time has been reached. In other implementations, different mechanisms can be used to determine when the expiration period has expired, such as a decrementing timer.
- If the license has expired, the client disables the license,
block 2635. The client disables the license so that the client and other compliant devices will not present that sub-copy version. In one implementation, the client disables the sub-copy version in another way instead or as well, such as encrypting the sub-copy version or deleting the sub-copy version. - When the next period for requesting a refreshed license occurs, the client returns to block2605. In one implementation, the client may determine that the license has expired independently of requesting a refreshed license (e.g., when the expiration time is between requests for a refreshed license).
- In one implementation, if a client does not receive a refreshed license from a server, the client requests a refreshed or new license from an external license authority. As described above, the server is the local licensing authority defined by the licensing authority information in the header information of the sub-copy version. The licensing authority information might also indicate an external licensing authority, such as a central server connected to the client through a network (e.g., the Internet). In one implementation, the client requests a license from the external authority when the server is unavailable, or when the client is not a member of the server's hub network and needs a new license. In another implementation, the licensing authority information indicates a hierarchy of authorities (e.g., local, regional, national, and absolute).
- FIGS.27-29 illustrate an example of disconnecting a device from a hub network and the operation of expiration periods.
- In FIG. 27, two
media network environments media network environment 2700 includes four devices: a server/client device 2705 connected to a terminal device 2710 (for presenting content), aserver device 2715, and aclient device 2720. The server/client device 2705 is the server for a hub network HN1, indicated by the “HN1*” label. The server/client device 2705 and theclient device 2720 are clients in the hub network HN1, indicated by the “HN1” label. Theserver device 2715 is a server for a hub network HN2, indicated by the “HN2*” label. The server/client device 2705 and theclient device 2720 are clients in the hub network HN2, indicated by the “HN2” label. - Two content items A and B are bound to the hub network HN1. The server/
client device 2705 stores a source version and manages root responsibility for each of the two content items A and B, indicated by the “A” and “B” labels. Theclient device 2720 stores a sub-copy version for each of the two content items A and B, indicated by the “a” and “b” labels. - One content item X is bound to the hub network HN2. The
server device 2715 stores a source version and manages root responsibility for the content item X, indicated by the “X” label. The server/client device 2705 and theclient device 2720 each store a sub-copy version for the content item X, indicated by the “x” label. Theserver device 2715 also stores a discrete version of the content item Y, indicated by the “Y” label. - The second
media network environment 2750 includes one device: a server/client device 2755. The server/client device 2755 is the server for a hub network HN3, indicated by the “HN3*” label. The server/client device 2755 is a client in the hub network HN3, indicated by the “HN3” label. - One content item M is bound to the hub network HN3. The server/
client device 2755 stores a source version and manages root responsibility for the content item M, indicated by the “M” label. - In FIG. 28, the server/
client device 2705 moves to the secondmedia network environment 2750 and becomes a member of the hub network HN3 as a client, indicated by the “HN3” label. The server/client device 2705 is still a client in both of the hub networks HN1 and HN2, indicated by the “HN1” and “HN2” labels. The server/client device 2705 receives a sub-copy version of the content item M, indicated by the “m” label. The server/client device 2755 joins the hub network HN1 as a client, indicated by the “HN1” label. The server/client device 2755 receives a sub-copy version for each of the content items A and B, indicated by the “a” and “b” labels. - By moving to the second
media network environment 2750, the server/client 2705 has taken the local environment for the hub network HN1 to the secondmedia network environment 2750. As a result, theclient device 2720 is no longer in the local environment of the hub network HN1 and so theclient device 2720 is disconnected from the hub network HN1. Being disconnected, theclient device 2720 cannot refresh the licenses for the sub-copy versions a and b of the content items A and B and so the expiration times for the sub-copy versions a and b will not be reset, indicated by the “a−15” and “b−15” labels. - In addition, when the server/
client device 2705 leaves themedia network environment 2700, the server/client device 2705 becomes disconnected from the hub network HN2 because the server/client device 2705 has left the local environment of the hub network HN2. Being disconnected, the server/client device 2705 cannot refresh the licenses for the sub-copy version x of the content item X and so the expiration time for the sub-copy version x will not be reset, indicated by the “x−15” label. However, the server/client device 2705 has become a member of the hub network HN3 and the hub network HN3 is in a different local environment than the hub network HN2. As discussed above, in one implementation, when a spanning device is a member of two hub networks that are in different local environments, the client will only present sub-copy versions from the hub network to which the device has been most recently connected, in this case the hub network HN3 (and the hub network HN1 because the server/client device is the server for the hub network HN1). Accordingly, the sub-copy version x for the content item X is temporarily disabled until the server/client device 2705 is again connected to the hub network HN2, indicated by the “x−15” label (strikethrough). In an alternative implementation, the spanning device client does not temporarily disable sub-copy versions from remote hub networks and continues to monitor the expiration period for the sub-copy versions that are not being refreshed, as described above. - In FIG. 29, the server/
client device 2705 has returned to the firstmedia network environment 2700 and connected to theserver device 2715 and theclient device 2720, reconnecting to the hub network HN2. As a result, the client/server device 2705 can refresh the license for the sub-copy version x and theclient device 2720 can refresh the licenses for the sub-copy versions a and b, indicated by the removal of the superscripts. - By the server/
client device 2705 leaving the secondmedia network environment 2750, the server/client device 2705 is disconnected from the hub network HN3 and the server/client device 2755 is disconnected from the hub network HN1. As a result, the server/client device 2705 cannot refresh the license for the sub-copy version m so the expiration time is not reset and the sub-copy version m is temporarily disabled, as indicated by the “m−15” label. The server/client device 2755 cannot refresh the licenses for the sub-copy versions a and b so the expiration times are not reset, indicated by the “a−15” and “b−15” labels. - Content Presentation
- A client device presents or plays content. Some client devices include integrated presentation components and present content data directly. Some client devices present content data through a connected device, such as a terminal device. Some clients present content data in either or both ways. A storage client device presents content data stored in a sub-copy on the client device or in content data streamed from the server. A non-storage client device presents content data streamed from the server. Returning to FIG. 17, the dashed line from the
server device 1715 to thenon-storage client 1725 indicates streaming content data from theserver device 1715 to thenon-storage client 1725. In one implementation, presented content data includes output controls to control unauthorized copying (e.g., data or processing to prevent or inhibit copying of the output data). Some servers include server and client functionality and this kind of server will present content similarly to a client. - FIG. 30 shows a
flowchart 3000 of one implementation of a client device presenting content data stored in a sub-copy version on the client device. Initially, the client device is a storage client device and stores a sub-copy version of the locked content data to be presented. - The client receives a request to present the content,
block 3005. The request is from a user and indicates an item of content. In another implementation, the request is from another device or is automated. - The client confirms that the license permits presenting the sub-copy version,
block 3010. The license may change or be updated as the license is refreshed, so the client checks the license before presenting the sub-copy version. If the license is not current, is not valid, or is disabled, the client will not present the sub-copy version. In one implementation, if the client does not have a current, valid, and enabled license, the client requests a new license from the server and the server refers to the root license of the corresponding bound instance. If the server declines this request (e.g., because the client is not entitled to a new license), the client will not present the sub-copy version. - The client also confirms that the client is not on any revocation list available to the client,
block 3015. If the client is on a revocation list, the client will not present the sub-copy version. - After successfully confirming the license and the revocation list, the client presents the content data of the sub-copy version,
block 3020. The client presents the content of the sub-copy version by decrypting the locked content data to generate output data and outputting the output data to integrated presentation components, external presentation components, or a terminal device. - A compliant device presents content data from a discrete instance in a similar way.
- As noted above, a server including client functionality presents content data in a similar way. In another implementation, a server device and a client device coexist on the same physical device and so the server relies on the resident client to present content.
- FIG. 31 shows a
flowchart 3100 of one implementation of streaming content data from a server to a client. Initially, a server creates a bound instance of content and a client device is connected to the server. - The client receives a request to present the content,
block 3105. The request is from a user and indicates an item of content. In another implementation, the request is from another device or is automated. The client sends a streaming request to the server managing the bound instance indicated by the present request. In another implementation, the server receives the present request and the request also indicates the client device to present the content. - The server confirms that the root license permits presenting the content data by streaming to the indicated client,
block 3110. The license may change or be updated as the license is refreshed, so the server checks the license before streaming the content data from the source version of that bound instance. If the license is not current, is not valid, or is disabled, the server will not stream the content data. The server will not stream the content data to clients that are not members of the hub network. - The server also confirms that the client is not on a revocation list available to the server,
block 3115. If the client is on an available revocation list, the server will not stream the content data. - After successfully confirming the license and revocation lists, the server streams the content data from the source version of that bound instance to the client,
block 3120. In one implementation, the server streams the locked content data of the source version to the client. - As the client receives the streaming content data, the client presents the content data,
block 3125. The client does not store the streaming content data (other than transiently in the process of presenting the content data). The client presents the content data by outputting content data to integrated presentation components, external presentation components, or a terminal device. - In another implementation, the server encrypts the locked content data (e.g., using an encryption technique for streaming data) and streams the encrypted locked content data to the client. The client decrypts the encrypted locked content data to obtain the locked content data and then decrypts the locked content data to obtain output data. The client presents the output data. In alternative implementations, different combinations of encryption and decryption between the server and client can be used. For example, the server can decrypt the locked content data to obtain output data and then encrypt the output data. The server then streams the encrypted output data to the client and the client decrypts the encrypted output data.
- In one implementation, a compliant device can always output data to a connected terminal device because the terminal device will not store the received output data (other than transiently) and the connection and transmission to the terminal device is reasonably secure. In one implementation, when a compliant device sends output data to a terminal device, that compliant device sends the same data to all terminal devices receiving data from the compliant device.
- In one implementation, a compliant device will stream discrete content to another compliant device, but the receiving device will not store any of the streamed content data (other than transiently in the process of presentation).
- A client device will not stream content data for a sub-copy version. In another implementation, a storage client device will stream content data for a sub-copy version to another member client.
- Content Copying and Moving
- A compliant device can create a sub-copy version from a source version or copy a sub-copy version. A compliant device can freely provide a sub-copy version to another member of the hub network. A compliant device can provide a sub-copy version to a compliant device that is not a member of the hub network to which the bound instance is bound, but the non-member will need to obtain a new valid license before being able to present the content data of the sub-copy version. A compliant device can provide a sub-copy version to a non-compliant device, but the non-compliant device will not be able to present the locked content data of the sub-copy version. The non-compliant device can move the sub-copy version to a compliant device and that compliant device will be able to present the sub-copy version after obtaining a new valid license.
- A compliant device will not copy a discrete instance (other than in the process of shifting the instance from discrete to bound on the hub network). Similarly, a compliant device will not create a backup copy of a discrete instance. A compliant device can make a copy of the discrete version of the locked content data of a discrete instance (similar to a sub-copy version) and provide that copy to another device, but the receiving device will need to obtain a new valid license before being able to present the received copy of locked content data.
- A server will not move a source version and root responsibility to another server directly. In one implementation, to move root responsibility from one server to another, a server converts the bound instance to a discrete instance, moves the discrete instance to another server, and the second server converts the discrete instance back to a bound instance, establishing a new root. A spanning device can facilitate the transfer of a discrete instance from one hub network to another by allowing a server to transfer a discrete instance through the spanning device to another compliant server. In another implementation, a server moves root responsibility directly to another compliant server that shares a common client device.
- A server will not move a source version or root responsibility to a client (unless the client is also a server).
- A compliant device can move a discrete instance using compliant media, secure transmission, or compliant recording technologies. As described above referring to creating a discrete instance from a bound instance, in one implementation, before moving the discrete instance to external media, the compliant device confirms that the external media is compliant media. If compliant media is not available, the compliant device can create a non-compliant copy on non-compliant media using an approved recording technology. Once the compliant device has created the non-compliant copy, the non-compliant copy will not be able to be bound again. Accordingly, the compliant device requests confirmation before creating the non-compliant copy. If external compliant media is not available and an approved recording technology is not available, the compliant device will not move the discrete instance to external storage.
- Compliant devices transport sub-copy versions to other compliant devices using a secure transmission. In another implementation, compliant devices can transport sub-copy versions (without licenses or keys) across non-secure connections as well. A compliant device can also use compliant physical media to transfer a sub-copy version to another compliant device, subject to the restrictions described herein.
- FIG. 32 shows a
flowchart 3200 of one implementation of creating a sub-copy version of locked content data for a member client. Initially, a server manages a bound instance of content, storing a source version and root license for the bound instance. As discussed above, the server uses the source version for making sub-copy versions for the hub network. - The server receives a request to create a sub-copy version,
block 3205. The request is from a user and indicates an item of content and a client to receive the sub-copy version. Alternatively, the copy request does not indicate a destination for the new sub-copy version (e.g., the copy request is followed by a request to move the new sub-copy version to a destination client). In another implementation, the request is from another device or is automated. In another implementation, a client receives the copy request and passes the request to the server. In one implementation, the copy request indicates a target resolution. If the target resolution is different from the resolution of the source version (or sub-copy version being copied), a conversion can be performed using the source version as the highest resolution copy in the hub network (or sub-copy version being copied). In another implementation, the copy request indicates a target format. The server performs any transcoding as part of the copying process using the sub-copy version to be copied or the source version. Alternatively, target resolutions and formats can be converted and transcoded on demand by clients for presentation. - The server confirms that the license permits providing a sub-copy version to the indicated client,
block 3210. The license may change or be updated as the license is refreshed, so the server checks the license before creating the sub-copy version. If the license is not valid or is disabled, the server will not create the sub-copy version. As described below, in another implementation, the server does not confirm the license before making a sub-copy version. Instead, the server checks the license when creating a new license for the sub-copy version. - The server also confirms that the client is not on the server's revocation list,
block 3215. If the client is on the revocation list, the server will not create the sub-copy version. - After successfully confirming the license and the revocation list, the server creates the sub-copy version,
block 3220. The server creates a new sub-copy version from the source version, storing the new sub-copy version on the server. Referring to FIG. 23, the server creates asub-copy version 2355 from asource version 2310. The server also copies the header information including the licensing authority information. The server does not copy the root license, the key for unlocking the locked content data, or the revocation list of the source version. The server creates a new sub-copy license for the sub-copy version according to the root license. However, the license for a new sub-copy version is initially disabled. To enable the license or receive a new license, the recipient client will contact the server to refresh the license and receive a new license specific to the new sub-copy version. In one implementation, the server provides an enabled license with the new sub-copy version. The server provides the key for unlocking the sub-copy version and a revocation list based on the server's revocation list when the server provides a license to the client. - After creating a new sub-copy version, the server moves the new sub-copy version to the destination client,
block 3225. In one implementation, to move the new sub-copy version, the server sends another copy of the new sub-copy version and any accompanying data (e.g., license) to the client and deletes the first new sub-copy version on the server. The client receives and stores the new sub-copy version. In another implementation, the server creates the new sub-copy version directly on the client, and so skipsblock 3225. In another implementation, the server creates and provides the sub-copy license later in response to a request for a new license from the client. - In another implementation, the root license allows a limited number of sub-copy versions to be made. In this case the server maintains a count of the number of sub-copy versions made (e.g., by counting the number of times sub-copy licenses have been made from the root license), storing the copy count in the root license. If the limit has been reached, the server will not make another sub-copy version from the source version of the bound instance. The copy count can be reduced by deleting or disabling sub-copy versions in the hub network if the server is informed of the deletion or disablement.
- In another implementation, a client is only allowed to have a certain number of licenses. When a client receives a new sub-copy version and sub-copy license (by copying or moving), the client determines if the client's limit on licenses has been exceeded. If so, the client disables the license for the new sub-copy version until some other license is disabled to bring the number of licenses below the limit again.
- In one implementation, a storage client device can also make copies of a sub-copy version stored on the client. In this case, the storage client device makes a sub-copy version as described above for the server referring to FIG. 32.
- In one implementation, a request to move a sub-copy version is handled in a similar way. A server or client receives the request and confirms that the license allows the sub-copy version to be moved to the indicated client. The server or client confirms that the indicated client is not on the server or client's revocation list. If the confirmation is successful, the server or client moves the sub-copy version and any corresponding data (e.g., license) to the indicated client.
- In another implementation, clients can move and copy sub-copy versions without confirmation, but will not move or copy licenses. Similarly, a server can create and distribute sub-copy versions without first confirming the root license and revocation list. In this case, servers and clients can distribute sub-copy versions to compliant and non-compliant devices without restrictions. A non-compliant device will not be able to present the locked content data, but can pass the sub-copy version to a compliant device. A recipient compliant device will obtain a license (e.g., as indicated by licensing authority information in the header of the sub-copy version) before being able to present the locked content data of the sub-copy version. In another implementation, a client can move a copy of a license to provide the license to a disconnected member client.
- When a server or client provides a sub-copy version to a compliant device that is not a member of the hub network, the server or client does not provide a valid license with the sub-copy version. The recipient later obtains a valid license using the licensing authority information stored in the sub-copy version. In this way, a compliant device can distribute a sub-copy version to other hub networks.
- In an alternative implementation, a local environment is defined in absolute terms, such as a 100 meter radius circle with the center at a defined geographical point. For example, media may be restricted to being used at a particular physical location, such as confidential documents being limited to a specific building. As discussed above, when a device leaves the local environment, the device is disconnected from the hub network (though the device may still be a member). In this case, a server could be disconnected from its own hub network, and so none of the devices would be able to refresh the licenses for that hub network while the server was disconnected, including the server. In another alternative implementation, hub networks are not restricted by local environment. In this case, a device is unable to refresh a license when the device is unable to communicate with the server (e.g., the physical or network connection is broken).
- The various implementations of the invention are realized in electronic hardware, computer software, or combinations of these technologies. Most implementations include one or more computer programs executed by a programmable computer. For example, referring to FIG. 17, in one implementation, each of the server/
client device 1705, theserver device 1715, thestorage client device 1720, and thenon-storage client device 1725 includes one or more computers executing software implementing the client and server operations discussed above. In general, each computer includes one or more processors, one or more data-storage components (e.g., volatile or non-volatile memory modules and persistent optical and magnetic storage devices, such as hard and floppy disk drives, CD-ROM drives, and magnetic tape drives), one or more input devices (e.g., mice and keyboards), and one or more output devices (e.g., display consoles and printers). In some implementations, the computers are included within consumer electronic devices. - The computer programs include executable code that is usually stored in a persistent storage medium and then copied into memory at run-time. The processor executes the code by retrieving program instructions from memory in a prescribed order. When executing the program code, the computer receives data from the input and/or storage devices, performs operations on the data, and then delivers the resulting data to the output and/or storage devices.
- Various illustrative implementations of the present invention have been described. However, one of ordinary skill in the art will see that additional implementations are also possible and within the scope of the present invention. Some implementations include less than all of and/or variations of the aspects described above. For example, while the above description focuses on implementations using copies of content described as audio and/or video data, the copies can be of other types of data as well, such as numerical data or executable software code.
- Accordingly, the present invention is not limited to only those implementations described above.
Claims (21)
Priority Applications (29)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US10/687,357 US20040117440A1 (en) | 2002-12-17 | 2003-10-15 | Media network environment |
CN2009101612057A CN101635625B (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
KR1020077006070A KR100969721B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
KR1020057011362A KR101031161B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
CN2009101612108A CN101635725B (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
EP10185840A EP2290974A3 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
CN2009101612061A CN101635626B (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
EP10185811A EP2290973A3 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
PCT/US2003/040396 WO2004057872A1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
EP10185851A EP2290976A3 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
EP08020421A EP2028860B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
KR1020077006072A KR100956184B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
AU2003301067A AU2003301067A1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
CN200910161207A CN101778096A (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
JP2005502636A JP4637742B2 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in overlapping multi-server network environments |
KR1020077006071A KR100950354B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
KR1020097024713A KR100997569B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
EP10185817.3A EP2312848B1 (en) | 2002-12-17 | 2003-12-16 | Time bound entitlement for digital content distribution framework |
EP03813745A EP1579693B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
KR1020077006067A KR100969511B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
EP10185845A EP2290975A3 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
KR1020097025085A KR101014912B1 (en) | 2002-12-17 | 2003-12-16 | Method and apparatus for access control in an overlapping multiserver network environment |
DE60326279T DE60326279D1 (en) | 2002-12-17 | 2003-12-16 | METHOD AND DEVICE FOR ACCESS CONTROL IN A MULTIPLE NETWORKING ENVIRONMENT WITH OVERLAP |
JP2009290661A JP5301422B2 (en) | 2002-12-17 | 2009-12-22 | How to add clients in a hub network |
JP2009290662A JP5026501B2 (en) | 2002-12-17 | 2009-12-22 | Content status in the media network environment |
JP2009290664A JP5438494B2 (en) | 2002-12-17 | 2009-12-22 | Method for obtaining and granting license in hub network |
JP2009290663A JP5266198B2 (en) | 2002-12-17 | 2009-12-22 | Content access in media network environment |
JP2012250209A JP2013042554A (en) | 2002-12-17 | 2012-11-14 | Client deletion method, reconnection method, and disconnection method in hub network |
US14/451,304 US9813756B2 (en) | 2002-12-17 | 2014-08-04 | Media network environment |
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US43477402P | 2002-12-17 | 2002-12-17 | |
US47182303P | 2003-05-20 | 2003-05-20 | |
US10/687,357 US20040117440A1 (en) | 2002-12-17 | 2003-10-15 | Media network environment |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US14/451,304 Continuation US9813756B2 (en) | 2002-12-17 | 2014-08-04 | Media network environment |
Publications (1)
Publication Number | Publication Date |
---|---|
US20040117440A1 true US20040117440A1 (en) | 2004-06-17 |
Family
ID=32719155
Family Applications (8)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US10/687,357 Abandoned US20040117440A1 (en) | 2002-12-17 | 2003-10-15 | Media network environment |
US10/686,954 Expired - Fee Related US8230084B2 (en) | 2002-12-17 | 2003-10-15 | Network management in a media network environment |
US10/686,955 Abandoned US20040139022A1 (en) | 2002-12-17 | 2003-10-15 | Content states in a media network environment |
US10/686,686 Expired - Fee Related US7934263B2 (en) | 2002-12-17 | 2003-10-15 | License management in a media network environment |
US10/686,956 Expired - Fee Related US8011015B2 (en) | 2002-12-17 | 2003-10-15 | Content access in a media network environment |
US12/558,261 Expired - Lifetime US8589546B2 (en) | 2002-12-17 | 2009-09-11 | Network management in a media network environment |
US13/071,256 Expired - Fee Related US8191154B2 (en) | 2002-12-17 | 2011-03-24 | License management in a media network environment |
US14/451,304 Expired - Lifetime US9813756B2 (en) | 2002-12-17 | 2014-08-04 | Media network environment |
Family Applications After (7)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US10/686,954 Expired - Fee Related US8230084B2 (en) | 2002-12-17 | 2003-10-15 | Network management in a media network environment |
US10/686,955 Abandoned US20040139022A1 (en) | 2002-12-17 | 2003-10-15 | Content states in a media network environment |
US10/686,686 Expired - Fee Related US7934263B2 (en) | 2002-12-17 | 2003-10-15 | License management in a media network environment |
US10/686,956 Expired - Fee Related US8011015B2 (en) | 2002-12-17 | 2003-10-15 | Content access in a media network environment |
US12/558,261 Expired - Lifetime US8589546B2 (en) | 2002-12-17 | 2009-09-11 | Network management in a media network environment |
US13/071,256 Expired - Fee Related US8191154B2 (en) | 2002-12-17 | 2011-03-24 | License management in a media network environment |
US14/451,304 Expired - Lifetime US9813756B2 (en) | 2002-12-17 | 2014-08-04 | Media network environment |
Country Status (2)
Country | Link |
---|---|
US (8) | US20040117440A1 (en) |
JP (1) | JP2013042554A (en) |
Cited By (35)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050003433A1 (en) * | 1994-03-21 | 2005-01-06 | The Regents Of The University Of California | Recombinant neospora antigens and their uses |
WO2006102454A1 (en) | 2005-03-21 | 2006-09-28 | Marvell World Trade Ltd. | Network system for distributing protected content |
EP1708112A1 (en) | 2005-03-21 | 2006-10-04 | Marvell World Trade Ltd. | DVD system for distributing protected content |
WO2007041567A2 (en) | 2005-10-03 | 2007-04-12 | Realnetworks, Inc. | System and method for obtaining and sharing media content |
EP1774786A2 (en) * | 2004-07-23 | 2007-04-18 | Audiovox Corporation | Vehicle console capable of wireless reception and transmission of audio and video data |
US20070136205A1 (en) * | 2003-10-22 | 2007-06-14 | Koninklijke Phillips Electronics N.C. | Digital rights management unit for a digital rights management system |
US20070136440A1 (en) * | 2005-03-21 | 2007-06-14 | Sehat Sutardja | Network system for distributing protected content |
US20070217400A1 (en) * | 2006-03-17 | 2007-09-20 | Staples Mathew L | Audio distribution over internet protocol |
US20080069354A1 (en) * | 2004-07-15 | 2008-03-20 | Sony Corporation | Information Processing Device, Information Processing Method, and Computer Program |
EP1657857A3 (en) * | 2004-11-16 | 2008-05-28 | Samsung Electronics Co., Ltd. | Apparatus, system, and method for transmitting content in home network |
WO2008104544A2 (en) | 2007-02-26 | 2008-09-04 | The Technology Partnership Plc | A device for receiving digital broadcasts |
US20090044008A1 (en) * | 2007-08-06 | 2009-02-12 | Ji Hyun Lim | Drm system and method of managing drm content |
US20090245514A1 (en) * | 2007-11-30 | 2009-10-01 | Sony Corporation | Forensic decryption tools |
US20100111504A1 (en) * | 2008-11-03 | 2010-05-06 | At&T Intellectual Property I, L.P. | System and method for recording and distributing media content |
US20120278846A1 (en) * | 2011-04-26 | 2012-11-01 | Cox Communications, Inc. | Multiple Recording Devices Connected in a Home Network |
US20130298202A1 (en) * | 2012-05-03 | 2013-11-07 | Salesforce.Com, Inc. | Computer implemented methods and apparatus for providing permissions to users in an on-demand service environment |
US8682351B1 (en) | 2006-12-28 | 2014-03-25 | Marvell International Ltd. | Method and apparatus for locating a WLAN station based on a propagation delay of a signal |
US20140108804A1 (en) * | 2012-10-11 | 2014-04-17 | Sling Media Inc. | System and method for verifying the authenticity of an electronic device |
US20140258490A1 (en) * | 2013-03-11 | 2014-09-11 | Samsung Electronics Co., Ltd. | Communication method of administration node, requesting node, and normal node for deleting invalid content using content revocation list in content centric network |
TWI462549B (en) * | 2006-03-20 | 2014-11-21 | Marvell World Trade Ltd | Network system for distributing protected content |
US20150026258A1 (en) * | 2013-07-17 | 2015-01-22 | Electronics And Telecommunications Research Institute | Method and apparatus for determining participant discovery message period |
US20150271568A1 (en) * | 2004-05-19 | 2015-09-24 | Philip Drope | Multimedia network system with content importation, content exportation, and integrated content management |
US20160112213A1 (en) * | 2014-10-21 | 2016-04-21 | Electronics And Telecommunications Research Institute | Apparatus and methods for providing home network service |
US20160364553A1 (en) * | 2015-06-09 | 2016-12-15 | Intel Corporation | System, Apparatus And Method For Providing Protected Content In An Internet Of Things (IOT) Network |
EP3107304A4 (en) * | 2014-02-10 | 2017-09-20 | LG Electronics Inc. | Method and device for reproducing content |
US20180026956A1 (en) * | 2014-08-11 | 2018-01-25 | Document Dynamics, Llc | Environment-Aware Security Tokens |
US20180109851A1 (en) * | 2015-03-31 | 2018-04-19 | British Telecommunications Public Limited Company | Content playback management |
US20180115429A1 (en) * | 2011-06-17 | 2018-04-26 | Assa Abloy Ab | Revocation status using other credentials |
US10080047B1 (en) * | 2017-05-05 | 2018-09-18 | Wayne D. Lonstein | Methods for identifying, disrupting and monetizing the illegal sharing and viewing of digital and analog streaming content |
EP3399762A1 (en) * | 2017-05-02 | 2018-11-07 | Harman International Industries, Incorporated | Portable hub with digital video recorder |
US11088865B2 (en) * | 2017-08-03 | 2021-08-10 | Dartpoint Tech. Co., Ltd. | System, device and method for terminal product usable time management |
US11140432B2 (en) * | 2014-05-29 | 2021-10-05 | Time Warner Cable Enterprises Llc | Apparatus and methods for recording, accessing, and delivering packetized content |
CN113904776A (en) * | 2021-09-03 | 2022-01-07 | 联想(北京)有限公司 | Certificate management method, device and equipment and readable storage medium |
US11347785B2 (en) | 2005-08-05 | 2022-05-31 | Intel Corporation | System and method for automatically managing media content |
US11716440B2 (en) | 2017-05-02 | 2023-08-01 | Harman International Industries, Incorporated | Portable hub with digital video recorder |
Families Citing this family (131)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8577205B2 (en) | 1998-07-30 | 2013-11-05 | Tivo Inc. | Digital video recording system |
US7558472B2 (en) | 2000-08-22 | 2009-07-07 | Tivo Inc. | Multimedia signal processing system |
US8380041B2 (en) | 1998-07-30 | 2013-02-19 | Tivo Inc. | Transportable digital video recorder system |
US6233389B1 (en) | 1998-07-30 | 2001-05-15 | Tivo, Inc. | Multimedia time warping system |
DE60045248D1 (en) | 1999-09-20 | 2010-12-30 | Tivo Inc | CAPTION labeling |
WO2001065762A2 (en) * | 2000-03-02 | 2001-09-07 | Tivo, Inc. | Conditional access system and method for prevention of replay attacks |
US8171520B2 (en) * | 2000-03-02 | 2012-05-01 | Tivo Inc. | Method of sharing personal media using a digital recorder |
US8812850B2 (en) * | 2000-03-02 | 2014-08-19 | Tivo Inc. | Secure multimedia transfer system |
US8261315B2 (en) * | 2000-03-02 | 2012-09-04 | Tivo Inc. | Multicasting multimedia content distribution system |
US8127326B2 (en) | 2000-11-14 | 2012-02-28 | Claussen Paul J | Proximity detection using wireless connectivity in a communications system |
US7861272B2 (en) | 2000-11-14 | 2010-12-28 | Russ Samuel H | Networked subscriber television distribution |
US20030192047A1 (en) * | 2002-03-22 | 2003-10-09 | Gaul Michael A. | Exporting data from a digital home communication terminal to a client device |
US7516470B2 (en) * | 2002-08-02 | 2009-04-07 | Cisco Technology, Inc. | Locally-updated interactive program guide |
US7908625B2 (en) | 2002-10-02 | 2011-03-15 | Robertson Neil C | Networked multimedia system |
US7360235B2 (en) | 2002-10-04 | 2008-04-15 | Scientific-Atlanta, Inc. | Systems and methods for operating a peripheral record/playback device in a networked multimedia system |
US8046806B2 (en) | 2002-10-04 | 2011-10-25 | Wall William E | Multiroom point of deployment module |
US7203965B2 (en) * | 2002-12-17 | 2007-04-10 | Sony Corporation | System and method for home network content protection and copy management |
US20040117440A1 (en) | 2002-12-17 | 2004-06-17 | Singer Mitch Fredrick | Media network environment |
US8094640B2 (en) | 2003-01-15 | 2012-01-10 | Robertson Neil C | Full duplex wideband communications system for a local coaxial network |
US8151178B2 (en) * | 2003-06-18 | 2012-04-03 | G. W. Hannaway & Associates | Associative media architecture and platform |
US20050010531A1 (en) * | 2003-07-09 | 2005-01-13 | Kushalnagar Nandakishore R. | System and method for distributing digital rights management digital content in a controlled network ensuring digital rights |
US7559081B2 (en) * | 2003-09-18 | 2009-07-07 | Alcatel-Lucent Usa Inc. | Method and apparatus for authenticating a user at an access terminal |
US9564004B2 (en) | 2003-10-20 | 2017-02-07 | Igt | Closed-loop system for providing additional event participation to electronic video game customers |
US8151280B2 (en) * | 2003-10-27 | 2012-04-03 | Microsoft Corporation | Simple and dynamic configuration of network devices |
US7761921B2 (en) * | 2003-10-31 | 2010-07-20 | Caterpillar Inc | Method and system of enabling a software option on a remote machine |
US7489645B2 (en) | 2003-12-17 | 2009-02-10 | Microsoft Corporation | Mesh networks with end device recognition |
US7665126B2 (en) * | 2003-12-17 | 2010-02-16 | Microsoft Corporation | Mesh networks with exclusion capability |
US20050198398A1 (en) * | 2004-01-21 | 2005-09-08 | Bishop Thomas P. | Methods and systems for managing a network while physical components are being provisioned or de-provisioned |
JP4568537B2 (en) * | 2004-05-31 | 2010-10-27 | 株式会社ソニー・コンピュータエンタテインメント | Server device, content processing device, content processing system, content transmission method, content processing program, and recording medium |
US8713702B2 (en) * | 2004-06-21 | 2014-04-29 | Intel Corporation | Digital media content distribution |
JP4186886B2 (en) * | 2004-07-05 | 2008-11-26 | ソニー株式会社 | Server client system, information processing apparatus, information processing method, and computer program |
US7480803B1 (en) * | 2004-07-23 | 2009-01-20 | Sprint Communications Company L.P. | System and method for securing system content by automated device authentication |
JP4843208B2 (en) * | 2004-09-30 | 2011-12-21 | 株式会社東芝 | Digital content editing apparatus, digital content editing method, digital content editing program, and recording medium recording digital content editing program |
US7523488B2 (en) * | 2004-10-15 | 2009-04-21 | International Business Machines Corporation | Method for performing data access transformation with request authorization processing |
US20100325153A1 (en) * | 2009-06-17 | 2010-12-23 | Microsoft Corporation | Synchronized distributed media assets |
KR100772372B1 (en) * | 2004-11-16 | 2007-11-01 | 삼성전자주식회사 | Method and Apparatus for receiving a broadcast contents |
AU2005306361B2 (en) * | 2004-11-19 | 2011-02-10 | Tivo Inc. | Method and apparatus for secure transfer of previously broadcasted content |
AU2005306362C1 (en) * | 2004-11-19 | 2014-08-28 | Tivo Solutions Inc. | Method and apparatus for secure transfer and playback of multimedia content |
US9613491B2 (en) | 2004-12-16 | 2017-04-04 | Igt | Video gaming device having a system and method for completing wagers and purchases during the cash out process |
EP1849097A4 (en) * | 2005-02-07 | 2011-06-15 | Samsung Electronics Co Ltd | Method of generating usage rule information for broadcast channel |
KR100739702B1 (en) * | 2005-02-07 | 2007-07-13 | 삼성전자주식회사 | Method for generating usage rule information for broadcast channel |
US8538888B2 (en) | 2005-03-31 | 2013-09-17 | Sony Pictures Entertainment Inc. | Method for generating a secure copy of media data |
KR100717005B1 (en) * | 2005-04-06 | 2007-05-10 | 삼성전자주식회사 | Method and apparatus for determining revocation key, and method and apparatus for decrypting thereby |
JP4760101B2 (en) * | 2005-04-07 | 2011-08-31 | ソニー株式会社 | Content providing system, content reproducing apparatus, program, and content reproducing method |
US20070027815A1 (en) * | 2005-07-29 | 2007-02-01 | Symantec Corporation | Systems and methods for centralized subscription and license management in a small networking environment |
US20070033404A1 (en) * | 2005-08-04 | 2007-02-08 | Toshiba Corporation | System and method for the secure recognition of a network device |
US7876998B2 (en) * | 2005-10-05 | 2011-01-25 | Wall William E | DVD playback over multi-room by copying to HDD |
US20070079341A1 (en) | 2005-10-05 | 2007-04-05 | Scientific-Atlanta, Inc. | Dvd multi-room playback after headend conversation |
US20070118481A1 (en) * | 2005-11-22 | 2007-05-24 | Erik Bostrom | Method and apparatus for monitoring software usage |
KR20070059380A (en) * | 2005-12-06 | 2007-06-12 | 삼성전자주식회사 | Method and apparatus for implementing secure clock of device without internal power source |
US7941354B2 (en) * | 2005-12-16 | 2011-05-10 | Asset Intelligence, Llc | Method and system for lease of assets, such as trailers, storage devices and facilities |
US20100217976A1 (en) * | 2006-01-03 | 2010-08-26 | Samsung Electronics Co., Ltd. | Method and apparatus for importing content |
KR101676017B1 (en) * | 2009-04-30 | 2016-11-15 | 삼성전자주식회사 | Method and apparatus for importing content |
KR100924777B1 (en) * | 2006-01-03 | 2009-11-03 | 삼성전자주식회사 | Method and apparatus for generating license |
JP4564464B2 (en) * | 2006-01-05 | 2010-10-20 | 株式会社東芝 | Digital content playback apparatus, method and program |
US7818261B2 (en) * | 2006-01-18 | 2010-10-19 | Corbis Corporation | Method and system for managing licenses to content |
US20070179898A1 (en) * | 2006-02-02 | 2007-08-02 | General Instrument Corporation | Secure consumer distribution of content using subkeys for encryption and authentication |
KR20080106440A (en) * | 2006-04-05 | 2008-12-05 | 가부시키가이샤 훼이스 | Content providing system |
US8784196B2 (en) | 2006-04-13 | 2014-07-22 | Igt | Remote content management and resource sharing on a gaming machine and method of implementing same |
US8992304B2 (en) | 2006-04-13 | 2015-03-31 | Igt | Methods and systems for tracking an event of an externally controlled interface |
US8777737B2 (en) * | 2006-04-13 | 2014-07-15 | Igt | Method and apparatus for integrating remotely-hosted and locally rendered content on a gaming device |
US10026255B2 (en) | 2006-04-13 | 2018-07-17 | Igt | Presentation of remotely-hosted and locally rendered content for gaming systems |
US9028329B2 (en) | 2006-04-13 | 2015-05-12 | Igt | Integrating remotely-hosted and locally rendered content on a gaming device |
US8968077B2 (en) | 2006-04-13 | 2015-03-03 | Idt | Methods and systems for interfacing with a third-party application |
US8512139B2 (en) | 2006-04-13 | 2013-08-20 | Igt | Multi-layer display 3D server based portals |
US20080059123A1 (en) * | 2006-08-29 | 2008-03-06 | Microsoft Corporation | Management of host compliance evaluation |
US8966545B2 (en) * | 2006-09-07 | 2015-02-24 | Porto Vinci Ltd. Limited Liability Company | Connecting a legacy device into a home entertainment system using a wireless home entertainment hub |
US9386269B2 (en) * | 2006-09-07 | 2016-07-05 | Rateze Remote Mgmt Llc | Presentation of data on multiple display devices using a wireless hub |
US8935733B2 (en) * | 2006-09-07 | 2015-01-13 | Porto Vinci Ltd. Limited Liability Company | Data presentation using a wireless home entertainment hub |
US9233301B2 (en) | 2006-09-07 | 2016-01-12 | Rateze Remote Mgmt Llc | Control of data presentation from multiple sources using a wireless home entertainment hub |
US8607281B2 (en) | 2006-09-07 | 2013-12-10 | Porto Vinci Ltd. Limited Liability Company | Control of data presentation in multiple zones using a wireless home entertainment hub |
US9319741B2 (en) | 2006-09-07 | 2016-04-19 | Rateze Remote Mgmt Llc | Finding devices in an entertainment system |
US8291417B2 (en) * | 2006-09-08 | 2012-10-16 | Freescale Semiconductor, Inc. | Trace buffer with a processor |
US20090156303A1 (en) | 2006-11-10 | 2009-06-18 | Igt | Bonusing Architectures in a Gaming Environment |
US9311774B2 (en) | 2006-11-10 | 2016-04-12 | Igt | Gaming machine with externally controlled content display |
US9143734B2 (en) * | 2006-11-22 | 2015-09-22 | The Directv Group, Inc. | Method and system for providing content to a portable media player device and maintaining licensing rights |
US7475042B2 (en) * | 2006-12-15 | 2009-01-06 | Evandro Carvalho | Provision of protected content files via payment system |
US20080167128A1 (en) * | 2007-01-05 | 2008-07-10 | Microsoft Corporation | Television Viewing on Gaming Consoles |
US20080167127A1 (en) * | 2007-01-05 | 2008-07-10 | Microsoft Corporation | Integration of Media on Gaming Consoles |
US20080178152A1 (en) * | 2007-01-23 | 2008-07-24 | Rafal Przemyslaw Konik | Software Code Retention Management |
TWI504266B (en) | 2007-07-30 | 2015-10-11 | Broadcom Corp | Integrated circuit with conversion capability for portable media player |
US7961747B2 (en) * | 2007-07-30 | 2011-06-14 | Broadcom Corporation | Display device with conversion capability for portable media player |
US9009210B2 (en) * | 2007-08-15 | 2015-04-14 | Sony Corporation | Distribution of multimedia files using a transportation provider wireless device |
US8208947B2 (en) * | 2007-08-31 | 2012-06-26 | At&T Intellectual Property I, Lp | Apparatus and method for multimedia communication |
US9336369B2 (en) | 2007-09-28 | 2016-05-10 | Abbyy Development Llc | Methods of licensing software programs and protecting them from unauthorized use |
US9129098B2 (en) * | 2007-09-28 | 2015-09-08 | Abbyy Development Llc | Methods of protecting software programs from unauthorized use |
EP2056227B1 (en) | 2007-10-31 | 2016-02-24 | EchoStar Technologies L.L.C. | System and method for employing a controlled-modification current time value |
US8078651B2 (en) * | 2008-01-24 | 2011-12-13 | Oracle International Corporation | Match rules to identify duplicate records in inbound data |
US20090254553A1 (en) * | 2008-02-08 | 2009-10-08 | Corbis Corporation | Matching media for managing licenses to content |
CN101516131B (en) * | 2008-02-18 | 2012-04-04 | 华为技术有限公司 | Method, system and device for data synchronization |
JP5134998B2 (en) * | 2008-02-22 | 2013-01-30 | 株式会社東芝 | Copy restriction management apparatus and method and content storage apparatus |
ATE540371T1 (en) * | 2008-06-23 | 2012-01-15 | St Ericsson Sa | ELECTRONIC DEVICE AND METHOD FOR UPDATING SOFTWARE OR FIRMWARE OF AN ELECTRONIC DEVICE |
US8634703B1 (en) | 2008-08-12 | 2014-01-21 | Tivo Inc. | Real-time DVR usage and reporting system |
US8413256B2 (en) * | 2008-08-26 | 2013-04-02 | Cox Communications, Inc. | Content protection and digital rights management (DRM) |
KR101062184B1 (en) * | 2008-09-26 | 2011-09-05 | 삼성전자주식회사 | License renewal method and device for broadcasting channel |
US9883233B1 (en) | 2008-10-23 | 2018-01-30 | Tivo Solutions Inc. | Real-time audience measurement system |
US8818179B1 (en) | 2008-11-13 | 2014-08-26 | Tivo Inc. | Shared DVR programming via a web page |
US9113195B1 (en) | 2008-12-31 | 2015-08-18 | Tivo Inc. | Real-time DVR programming |
US9003512B2 (en) | 2009-01-16 | 2015-04-07 | Cox Communications, Inc. | Content protection management system |
US8438596B2 (en) | 2009-04-08 | 2013-05-07 | Tivo Inc. | Automatic contact information transmission system |
US20100275228A1 (en) * | 2009-04-28 | 2010-10-28 | Motorola, Inc. | Method and apparatus for delivering media content |
US20100324704A1 (en) * | 2009-06-17 | 2010-12-23 | Microsoft Corporation | Social graph playlist service |
US20100325205A1 (en) * | 2009-06-17 | 2010-12-23 | Microsoft Corporation | Event recommendation service |
KR20110000162A (en) * | 2009-06-26 | 2011-01-03 | 주식회사 넥슨 | System and method for providing online game using storage media |
US20110029435A1 (en) * | 2009-07-28 | 2011-02-03 | Ron Ronen | Systems and methods for distributing electronic content |
KR101601976B1 (en) * | 2009-08-18 | 2016-03-17 | 삼성전자주식회사 | System and method for managing digital rights management content |
US9313041B2 (en) * | 2009-09-02 | 2016-04-12 | Google Technology Holdings LLC | Network attached DVR storage |
KR101672454B1 (en) * | 2009-10-30 | 2016-11-04 | 삼성전자 주식회사 | Method and apparatus for managing content service in network based on content use history |
JP5454102B2 (en) * | 2009-11-25 | 2014-03-26 | 株式会社リコー | License update management apparatus, license management system, license update method, and program |
US8769614B1 (en) * | 2009-12-29 | 2014-07-01 | Akamai Technologies, Inc. | Security framework for HTTP streaming architecture |
JP5598115B2 (en) | 2010-06-24 | 2014-10-01 | ソニー株式会社 | Information processing apparatus, information processing method, and program |
US20120095877A1 (en) | 2010-10-19 | 2012-04-19 | Apple, Inc. | Application usage policy enforcement |
US8626718B2 (en) * | 2010-10-29 | 2014-01-07 | Verizon Patent And Licensing Inc. | Content caching based on refresh and expiration times |
US9437239B2 (en) | 2010-12-09 | 2016-09-06 | Solabyte Corporation | Electronic system for the protection and control of license transactions associated with the disablement of replicated read only media and its bound licensed content |
US9075964B2 (en) | 2010-12-09 | 2015-07-07 | Solabyte Corporation | Electronic system for the protection and control of license transactions associated with the alteration of replicated read only media and its bound licensed content |
US8510398B2 (en) | 2010-12-10 | 2013-08-13 | At&T Intellectual Property I, Lp | Apparatus and method for managing message communication |
JP2012160004A (en) * | 2011-01-31 | 2012-08-23 | Sony Computer Entertainment Inc | Method for providing content with identifier and id management device |
US9152771B2 (en) * | 2011-05-31 | 2015-10-06 | Qualcomm Incorporated | Apparatus and method of managing a licensable item |
US9009205B2 (en) * | 2011-08-15 | 2015-04-14 | International Business Machines Corporation | Activity-based block management of a clustered file system using client-side block maps |
US9524609B2 (en) | 2011-09-30 | 2016-12-20 | Igt | Gaming system, gaming device and method for utilizing mobile devices at a gaming establishment |
US9401065B2 (en) | 2011-09-30 | 2016-07-26 | Igt | System and method for remote rendering of content on an electronic gaming machine |
US9043435B2 (en) * | 2011-10-24 | 2015-05-26 | International Business Machines Corporation | Distributing licensed content across multiple devices |
US20140359655A1 (en) * | 2012-01-20 | 2014-12-04 | Thomson Licensing | In-flight entertainment system |
US9165332B2 (en) | 2012-01-27 | 2015-10-20 | Microsoft Technology Licensing, Llc | Application licensing using multiple forms of licensing |
US10893119B2 (en) | 2012-05-22 | 2021-01-12 | Verizon Patent And Licensing Inc. | Time-based data caching |
US9129469B2 (en) | 2012-09-11 | 2015-09-08 | Igt | Player driven game download to a gaming machine |
US8948038B1 (en) * | 2012-12-10 | 2015-02-03 | Google Inc. | Augmenting spectrum sharing using network measurements |
US9871820B2 (en) * | 2014-12-27 | 2018-01-16 | Intel Corporation | Technologies for managing network privileges based on physical presence |
US10055930B2 (en) | 2015-08-11 | 2018-08-21 | Igt | Gaming system and method for placing and redeeming sports bets |
JP7251540B2 (en) * | 2018-02-13 | 2023-04-04 | ソニーグループ株式会社 | Information processing device, information processing method, program, and electronic device |
US11363050B1 (en) | 2021-03-25 | 2022-06-14 | Bank Of America Corporation | Information security system and method for incompliance detection in data transmission |
Citations (68)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5805699A (en) * | 1996-05-20 | 1998-09-08 | Fujitsu Limited | Software copying system |
US5892900A (en) * | 1996-08-30 | 1999-04-06 | Intertrust Technologies Corp. | Systems and methods for secure transaction management and electronic rights protection |
US5915018A (en) * | 1996-11-05 | 1999-06-22 | Intel Corporation | Key management system for DVD copyright management |
US5918016A (en) * | 1997-06-10 | 1999-06-29 | Texas Instruments Incorporated | System with program for automating protocol assignments when newly connected to varing computer network configurations |
US6052780A (en) * | 1996-09-12 | 2000-04-18 | Open Security Solutions, Llc | Computer system and process for accessing an encrypted and self-decrypting digital information product while restricting access to decrypted digital information |
US6104677A (en) * | 1997-03-26 | 2000-08-15 | Sony Corporation | Recording medium recording apparatus and method and recording medium |
US6295360B1 (en) * | 1997-06-30 | 2001-09-25 | Macrovision Corporation | Method and apparatus to defeat composite video signal protection |
US6310956B1 (en) * | 1998-03-19 | 2001-10-30 | Hitachi, Ltd. | Copy protection apparatus and method |
US20010042043A1 (en) * | 1995-02-13 | 2001-11-15 | Intertrust Technologies Corp. | Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances |
US20010051928A1 (en) * | 2000-04-21 | 2001-12-13 | Moshe Brody | Protection of software by personalization, and an arrangement, method, and system therefor |
US20020003880A1 (en) * | 1997-11-20 | 2002-01-10 | Kabushiki Kaisha Toshiba | Copy protection apparatus and information recording medium used in this copy protection apparatus |
US20020013772A1 (en) * | 1999-03-27 | 2002-01-31 | Microsoft Corporation | Binding a digital license to a portable device or the like in a digital rights management (DRM) system and checking out / checking in the digital license to / from the portable device or the like |
US20020016919A1 (en) * | 1998-08-05 | 2002-02-07 | Hewlett-Packard Company | Media content protection utilizing public key cryptography |
US20020041686A1 (en) * | 2000-05-10 | 2002-04-11 | Pioneer Corporation | Copyright protecting method, recording method, recording apparatus, reproduction method and reproduction apparatus |
US20020069420A1 (en) * | 2000-04-07 | 2002-06-06 | Chris Russell | System and process for delivery of content over a network |
US20020073229A1 (en) * | 2000-10-19 | 2002-06-13 | Morihiko Hayashi | Wireless data transmitting and receiving system, server device, and server device controlling method |
US20020094207A1 (en) * | 2000-06-26 | 2002-07-18 | Xerox Corporation | Wireless interaction with memory associated with a replaceable module for office equipment |
US20020107803A1 (en) * | 1998-08-13 | 2002-08-08 | International Business Machines Corporation | Method and system of preventing unauthorized rerecording of multimedia content |
US20020107806A1 (en) * | 2001-02-02 | 2002-08-08 | Akio Higashi | Content usage management system and content usage management method |
US20020126842A1 (en) * | 2001-03-06 | 2002-09-12 | Hollar Mark A. | Enhanced copy protection of proprietary material employing multiple watermarks |
US20020141577A1 (en) * | 2001-03-29 | 2002-10-03 | Ripley Michael S. | Method and system for providing bus encryption based on cryptographic key exchange |
US20020152393A1 (en) * | 2001-01-09 | 2002-10-17 | Johannes Thoma | Secure extensible computing environment |
US20020157002A1 (en) * | 2001-04-18 | 2002-10-24 | Messerges Thomas S. | System and method for secure and convenient management of digital electronic content |
US20020174354A1 (en) * | 2001-03-12 | 2002-11-21 | Bel Hendrik Jan | Receiving device for securely storing a content item, and playback device |
US20020194010A1 (en) * | 2001-06-15 | 2002-12-19 | Bergler Peter M. | System and related methods for managing and enforcing software licenses |
US6530021B1 (en) * | 1998-07-20 | 2003-03-04 | Koninklijke Philips Electronics N.V. | Method and system for preventing unauthorized playback of broadcasted digital data streams |
US20030051153A1 (en) * | 2000-03-31 | 2003-03-13 | Jean-Pierre Andreaux | Device for reading, recording and restoring digital data in a copy-protection system for said data |
US20030084306A1 (en) * | 2001-06-27 | 2003-05-01 | Rajasekhar Abburi | Enforcement architecture and method for digital rights management system for roaming a license to a plurality of user devices |
US20030097655A1 (en) * | 2001-11-21 | 2003-05-22 | Novak Robert E. | System and method for providing conditional access to digital content |
US20030131252A1 (en) * | 1999-10-20 | 2003-07-10 | Barton James M. | Electronic content distribution and exchange system |
US20030135464A1 (en) * | 1999-12-09 | 2003-07-17 | International Business Machines Corporation | Digital content distribution using web broadcasting services |
US20030161473A1 (en) * | 2000-06-16 | 2003-08-28 | Fransdonk Robert W. | Method and system to securely distribute content via a network |
US20030167392A1 (en) * | 2000-06-16 | 2003-09-04 | Fransdonk Robert W. | Method and system to secure content for distribution via a network |
US20030187801A1 (en) * | 2002-03-26 | 2003-10-02 | Microsoft Corporation | Content revocation and license modification in a digital rights management (DRM) system on a computing device |
US20030198351A1 (en) * | 2002-04-18 | 2003-10-23 | International Business Machines Corporation | Method, system and program product for modifying content usage conditions during content distribution |
US20030204723A1 (en) * | 2002-04-30 | 2003-10-30 | Microsoft Corporation | Digital license with referral information |
US6665303B1 (en) * | 1998-01-05 | 2003-12-16 | Kabushiki Kaisha Toshiba | Scheme for realizing communications through external network from contents processing device connected to local network in home environment |
US20030236978A1 (en) * | 2002-06-24 | 2003-12-25 | Evans Glenn F. | Secure media path methods, systems, and architectures |
US20030236820A1 (en) * | 2001-10-24 | 2003-12-25 | Groove Networks, Inc. | Method and apparatus for managing a peer-to-peer collaboration system |
US20040039707A9 (en) * | 2000-11-22 | 2004-02-26 | Chris Ricci | Method for distributing and licensing digital media |
US20040078581A1 (en) * | 2002-10-21 | 2004-04-22 | Microsoft Corporation | Installation of black box for trusted component for digital rights management (DRM) on computing device |
US20040093372A1 (en) * | 2002-11-09 | 2004-05-13 | Microsoft Corporation | Challenge and response interaction between client and server computing devices |
US20040103297A1 (en) * | 2002-11-25 | 2004-05-27 | Hank Risan | Controlling interaction of deliverable electronic media |
US20040117483A1 (en) * | 2002-12-17 | 2004-06-17 | Singer Mitch Fredrick | License management in a media network environment |
US20040139027A1 (en) * | 2003-01-13 | 2004-07-15 | Sony Corporation | Real-time delivery of license for previously stored encrypted content |
US20040143736A1 (en) * | 2003-01-17 | 2004-07-22 | Cross David B. | File system operation and digital rights management (DRM) |
US20040168184A1 (en) * | 2002-12-04 | 2004-08-26 | Jan Steenkamp | Multiple content provider user interface |
US20040172533A1 (en) * | 2003-02-27 | 2004-09-02 | Microsoft Corporation | Tying a digital license to a user and tying the user to multiple computing devices in a digital rights management (DRM) sytem |
US6802003B1 (en) * | 2000-06-30 | 2004-10-05 | Intel Corporation | Method and apparatus for authenticating content |
US20050071375A1 (en) * | 2003-09-30 | 2005-03-31 | Phil Houghton | Wireless media player |
US20050273608A1 (en) * | 2002-07-26 | 2005-12-08 | Koninklijke Philips Electronics N.V. | Secure authenticated distance measurement |
US6986048B1 (en) * | 2000-01-24 | 2006-01-10 | Koninklijke Philips Electronics N.V. | Protecting content from illicit reproduction by proof of existence of a complete data set using security identifiers |
US20060031257A1 (en) * | 1999-10-05 | 2006-02-09 | Lipscomb Kenneth O | System and method for distributing media assets to user devices and managing user rights of the media assets |
US20060085349A1 (en) * | 2003-11-21 | 2006-04-20 | Realnetworks | System and method for caching data |
US7039801B2 (en) * | 2000-06-30 | 2006-05-02 | Microsoft Corporation | System and method for integrating secure and non-secure software objects |
US20060117379A1 (en) * | 2002-12-11 | 2006-06-01 | Bennett James D | Transcoding and data rights management in a mobile video network with STB as a hub |
US7058414B1 (en) * | 2000-05-26 | 2006-06-06 | Freescale Semiconductor, Inc. | Method and system for enabling device functions based on distance information |
US20060159109A1 (en) * | 2000-09-07 | 2006-07-20 | Sonic Solutions | Methods and systems for use in network management of content |
US20060242083A1 (en) * | 2003-02-27 | 2006-10-26 | Avaya Technology Corp. | Method and apparatus for license distribution |
US20070112948A1 (en) * | 2001-12-31 | 2007-05-17 | Christopher Uhlik | System for on-demand access to local area networks |
US7249107B2 (en) * | 2001-07-20 | 2007-07-24 | Microsoft Corporation | Redistribution of rights-managed content |
US20080085002A1 (en) * | 1999-04-13 | 2008-04-10 | Tl | Digital local network, notably digital home network, and method for creating and updating such a network |
US7376840B2 (en) * | 2002-09-30 | 2008-05-20 | Lucent Technologies, Inc. | Streamlined service subscription in distributed architectures |
US7421411B2 (en) * | 2001-07-06 | 2008-09-02 | Nokia Corporation | Digital rights management in a mobile communications environment |
US7437771B2 (en) * | 2004-04-19 | 2008-10-14 | Woodcock Washburn Llp | Rendering protected digital content within a network of computing devices or the like |
US7484103B2 (en) * | 2002-01-12 | 2009-01-27 | Je-Hak Woo | Method and system for the information protection of digital content |
US7483958B1 (en) * | 2001-03-26 | 2009-01-27 | Microsoft Corporation | Methods and apparatuses for sharing media content, libraries and playlists |
US7761467B2 (en) * | 2000-01-07 | 2010-07-20 | International Business Machines Corporation | Method and a system for certificate revocation list consolidation and access |
Family Cites Families (34)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7233948B1 (en) * | 1998-03-16 | 2007-06-19 | Intertrust Technologies Corp. | Methods and apparatus for persistent control and protection of content |
WO1999060568A1 (en) | 1998-05-20 | 1999-11-25 | Recording Industry Association Of America | Copy protection method using broken modulation rules |
US8175977B2 (en) * | 1998-12-28 | 2012-05-08 | Audible | License management for digital content |
US6463534B1 (en) * | 1999-03-26 | 2002-10-08 | Motorola, Inc. | Secure wireless electronic-commerce system with wireless network domain |
US20020019814A1 (en) * | 2001-03-01 | 2002-02-14 | Krishnamurthy Ganesan | Specifying rights in a digital rights license according to events |
US6920567B1 (en) * | 1999-04-07 | 2005-07-19 | Viatech Technologies Inc. | System and embedded license control mechanism for the creation and distribution of digital content files and enforcement of licensed use of the digital content files |
US7020704B1 (en) * | 1999-10-05 | 2006-03-28 | Lipscomb Kenneth O | System and method for distributing media assets to user devices via a portal synchronized by said user devices |
US7363361B2 (en) * | 2000-08-18 | 2008-04-22 | Akamai Technologies, Inc. | Secure content delivery system |
US6792113B1 (en) | 1999-12-20 | 2004-09-14 | Microsoft Corporation | Adaptable security mechanism for preventing unauthorized access of digital data |
US6754716B1 (en) * | 2000-02-11 | 2004-06-22 | Ensim Corporation | Restricting communication between network devices on a common network |
EP2276252A3 (en) | 2000-03-02 | 2015-05-06 | TiVo, Inc. | System and method for internet access to personal television service |
JP3749817B2 (en) | 2000-03-30 | 2006-03-01 | 株式会社東芝 | Transmitting apparatus and transmitting method thereof |
US20020026636A1 (en) * | 2000-06-15 | 2002-02-28 | Daniel Lecomte | Video interfacing and distribution system and method for delivering video programs |
EP1295208A1 (en) | 2000-06-30 | 2003-03-26 | Internap Network Services | Distributed network management system and method |
US7370364B2 (en) * | 2000-07-31 | 2008-05-06 | Ellacoya Networks, Inc. | Managing content resources |
US7010808B1 (en) * | 2000-08-25 | 2006-03-07 | Microsoft Corporation | Binding digital content to a portable storage device or the like in a digital rights management (DRM) system |
JP2002094500A (en) | 2000-09-20 | 2002-03-29 | Sanyo Electric Co Ltd | Data terminal device |
US20020114453A1 (en) * | 2001-02-21 | 2002-08-22 | Bartholet Thomas G. | System and method for secure cryptographic data transport and storage |
JP2002300162A (en) | 2001-04-03 | 2002-10-11 | Matsushita Electric Ind Co Ltd | Grouping device, grouping system, and grouping method |
US20030046382A1 (en) * | 2001-08-21 | 2003-03-06 | Sascha Nick | System and method for scalable multi-level remote diagnosis and predictive maintenance |
US20030071117A1 (en) * | 2001-10-16 | 2003-04-17 | Meade William K. | System and method for determining priority among multiple mobile computing devices to control an appliance |
US20030078891A1 (en) * | 2001-10-18 | 2003-04-24 | Capitant Patrice J. | Systems and methods for providing digital rights management compatibility |
US7487363B2 (en) * | 2001-10-18 | 2009-02-03 | Nokia Corporation | System and method for controlled copying and moving of content between devices and domains based on conditional encryption of content key depending on usage |
KR20040060950A (en) | 2001-10-29 | 2004-07-06 | 마츠시타 덴끼 산교 가부시키가이샤 | Apparatus of a baseline dvb-cpcm |
KR100461940B1 (en) | 2002-01-12 | 2004-12-14 | 주식회사 코어트러스트 | Method and system of the information protection for digital contents |
EP1492040A4 (en) * | 2002-03-29 | 2006-05-31 | Matsushita Electric Ind Co Ltd | Content reproduction apparatus and content reproduction control method |
US20030212905A1 (en) * | 2002-05-08 | 2003-11-13 | Sun Microsystems, Inc. | Method, computer product and network to regulate software licensure authentication in a computer network environment |
US7680743B2 (en) * | 2002-05-15 | 2010-03-16 | Microsoft Corporation | Software application protection by way of a digital rights management (DRM) system |
US7809813B2 (en) * | 2002-06-28 | 2010-10-05 | Microsoft Corporation | System and method for providing content-oriented services to content providers and content consumers |
KR100973862B1 (en) * | 2002-09-25 | 2010-08-03 | 파나소닉 주식회사 | Reproduction device, optical disc, recording medium, and reproduction method |
US20040117843A1 (en) * | 2002-12-11 | 2004-06-17 | Jeyhan Karaoguz | Media exchange network supporting local and remote personalized media overlay |
US7593530B2 (en) | 2002-12-11 | 2009-09-22 | Broadcom Corporation | Secure legacy media peripheral association with authentication in a media exchange network |
US7203965B2 (en) * | 2002-12-17 | 2007-04-10 | Sony Corporation | System and method for home network content protection and copy management |
US8365301B2 (en) * | 2005-02-22 | 2013-01-29 | Microsoft Corporation | Peer-to-peer network communication |
-
2003
- 2003-10-15 US US10/687,357 patent/US20040117440A1/en not_active Abandoned
- 2003-10-15 US US10/686,954 patent/US8230084B2/en not_active Expired - Fee Related
- 2003-10-15 US US10/686,955 patent/US20040139022A1/en not_active Abandoned
- 2003-10-15 US US10/686,686 patent/US7934263B2/en not_active Expired - Fee Related
- 2003-10-15 US US10/686,956 patent/US8011015B2/en not_active Expired - Fee Related
-
2009
- 2009-09-11 US US12/558,261 patent/US8589546B2/en not_active Expired - Lifetime
-
2011
- 2011-03-24 US US13/071,256 patent/US8191154B2/en not_active Expired - Fee Related
-
2012
- 2012-11-14 JP JP2012250209A patent/JP2013042554A/en active Pending
-
2014
- 2014-08-04 US US14/451,304 patent/US9813756B2/en not_active Expired - Lifetime
Patent Citations (76)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20010042043A1 (en) * | 1995-02-13 | 2001-11-15 | Intertrust Technologies Corp. | Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances |
US5805699A (en) * | 1996-05-20 | 1998-09-08 | Fujitsu Limited | Software copying system |
US5892900A (en) * | 1996-08-30 | 1999-04-06 | Intertrust Technologies Corp. | Systems and methods for secure transaction management and electronic rights protection |
US6052780A (en) * | 1996-09-12 | 2000-04-18 | Open Security Solutions, Llc | Computer system and process for accessing an encrypted and self-decrypting digital information product while restricting access to decrypted digital information |
US6185686B1 (en) * | 1996-09-12 | 2001-02-06 | Open Security Solutions, Llc | Computer system and process for accessing an encrypted and self-decrypting digital information product while restricting access to decrypted digital information |
US5915018A (en) * | 1996-11-05 | 1999-06-22 | Intel Corporation | Key management system for DVD copyright management |
US6104677A (en) * | 1997-03-26 | 2000-08-15 | Sony Corporation | Recording medium recording apparatus and method and recording medium |
US5918016A (en) * | 1997-06-10 | 1999-06-29 | Texas Instruments Incorporated | System with program for automating protocol assignments when newly connected to varing computer network configurations |
US6295360B1 (en) * | 1997-06-30 | 2001-09-25 | Macrovision Corporation | Method and apparatus to defeat composite video signal protection |
US6438692B2 (en) * | 1997-11-20 | 2002-08-20 | Kabushiki Kaisha Toshiba | Copy protection apparatus and information recording medium used in this copy protection apparatus |
US20020003880A1 (en) * | 1997-11-20 | 2002-01-10 | Kabushiki Kaisha Toshiba | Copy protection apparatus and information recording medium used in this copy protection apparatus |
US6665303B1 (en) * | 1998-01-05 | 2003-12-16 | Kabushiki Kaisha Toshiba | Scheme for realizing communications through external network from contents processing device connected to local network in home environment |
US20020046178A1 (en) * | 1998-03-19 | 2002-04-18 | Hitachi, Ltd. | Copy protection apparatus and method |
US6310956B1 (en) * | 1998-03-19 | 2001-10-30 | Hitachi, Ltd. | Copy protection apparatus and method |
US6530021B1 (en) * | 1998-07-20 | 2003-03-04 | Koninklijke Philips Electronics N.V. | Method and system for preventing unauthorized playback of broadcasted digital data streams |
US20020016919A1 (en) * | 1998-08-05 | 2002-02-07 | Hewlett-Packard Company | Media content protection utilizing public key cryptography |
US6550011B1 (en) * | 1998-08-05 | 2003-04-15 | Hewlett Packard Development Company, L.P. | Media content protection utilizing public key cryptography |
US20020107803A1 (en) * | 1998-08-13 | 2002-08-08 | International Business Machines Corporation | Method and system of preventing unauthorized rerecording of multimedia content |
US20020013772A1 (en) * | 1999-03-27 | 2002-01-31 | Microsoft Corporation | Binding a digital license to a portable device or the like in a digital rights management (DRM) system and checking out / checking in the digital license to / from the portable device or the like |
US7073063B2 (en) * | 1999-03-27 | 2006-07-04 | Microsoft Corporation | Binding a digital license to a portable device or the like in a digital rights management (DRM) system and checking out/checking in the digital license to/from the portable device or the like |
US20080085002A1 (en) * | 1999-04-13 | 2008-04-10 | Tl | Digital local network, notably digital home network, and method for creating and updating such a network |
US7346687B2 (en) * | 1999-10-05 | 2008-03-18 | Zapmedia Services, Inc. | GUI driving media playback device |
US20060031257A1 (en) * | 1999-10-05 | 2006-02-09 | Lipscomb Kenneth O | System and method for distributing media assets to user devices and managing user rights of the media assets |
US20030131252A1 (en) * | 1999-10-20 | 2003-07-10 | Barton James M. | Electronic content distribution and exchange system |
US20030135464A1 (en) * | 1999-12-09 | 2003-07-17 | International Business Machines Corporation | Digital content distribution using web broadcasting services |
US7761467B2 (en) * | 2000-01-07 | 2010-07-20 | International Business Machines Corporation | Method and a system for certificate revocation list consolidation and access |
US6986048B1 (en) * | 2000-01-24 | 2006-01-10 | Koninklijke Philips Electronics N.V. | Protecting content from illicit reproduction by proof of existence of a complete data set using security identifiers |
US20030051153A1 (en) * | 2000-03-31 | 2003-03-13 | Jean-Pierre Andreaux | Device for reading, recording and restoring digital data in a copy-protection system for said data |
US20020069420A1 (en) * | 2000-04-07 | 2002-06-06 | Chris Russell | System and process for delivery of content over a network |
US7024466B2 (en) * | 2000-04-07 | 2006-04-04 | Movielink, Llc | Network configured for delivery of content for download to a recipient |
US20010051928A1 (en) * | 2000-04-21 | 2001-12-13 | Moshe Brody | Protection of software by personalization, and an arrangement, method, and system therefor |
US20020041686A1 (en) * | 2000-05-10 | 2002-04-11 | Pioneer Corporation | Copyright protecting method, recording method, recording apparatus, reproduction method and reproduction apparatus |
US7058414B1 (en) * | 2000-05-26 | 2006-06-06 | Freescale Semiconductor, Inc. | Method and system for enabling device functions based on distance information |
US20030161473A1 (en) * | 2000-06-16 | 2003-08-28 | Fransdonk Robert W. | Method and system to securely distribute content via a network |
US20030167392A1 (en) * | 2000-06-16 | 2003-09-04 | Fransdonk Robert W. | Method and system to secure content for distribution via a network |
US20020094207A1 (en) * | 2000-06-26 | 2002-07-18 | Xerox Corporation | Wireless interaction with memory associated with a replaceable module for office equipment |
US6802003B1 (en) * | 2000-06-30 | 2004-10-05 | Intel Corporation | Method and apparatus for authenticating content |
US7039801B2 (en) * | 2000-06-30 | 2006-05-02 | Microsoft Corporation | System and method for integrating secure and non-secure software objects |
US20060159109A1 (en) * | 2000-09-07 | 2006-07-20 | Sonic Solutions | Methods and systems for use in network management of content |
US20020073229A1 (en) * | 2000-10-19 | 2002-06-13 | Morihiko Hayashi | Wireless data transmitting and receiving system, server device, and server device controlling method |
US20040039707A9 (en) * | 2000-11-22 | 2004-02-26 | Chris Ricci | Method for distributing and licensing digital media |
US20020152393A1 (en) * | 2001-01-09 | 2002-10-17 | Johannes Thoma | Secure extensible computing environment |
US20020107806A1 (en) * | 2001-02-02 | 2002-08-08 | Akio Higashi | Content usage management system and content usage management method |
US20020126842A1 (en) * | 2001-03-06 | 2002-09-12 | Hollar Mark A. | Enhanced copy protection of proprietary material employing multiple watermarks |
US20020174354A1 (en) * | 2001-03-12 | 2002-11-21 | Bel Hendrik Jan | Receiving device for securely storing a content item, and playback device |
US7483958B1 (en) * | 2001-03-26 | 2009-01-27 | Microsoft Corporation | Methods and apparatuses for sharing media content, libraries and playlists |
US20020141577A1 (en) * | 2001-03-29 | 2002-10-03 | Ripley Michael S. | Method and system for providing bus encryption based on cryptographic key exchange |
US20020157002A1 (en) * | 2001-04-18 | 2002-10-24 | Messerges Thomas S. | System and method for secure and convenient management of digital electronic content |
US20020194010A1 (en) * | 2001-06-15 | 2002-12-19 | Bergler Peter M. | System and related methods for managing and enforcing software licenses |
US7203966B2 (en) * | 2001-06-27 | 2007-04-10 | Microsoft Corporation | Enforcement architecture and method for digital rights management system for roaming a license to a plurality of user devices |
US20030084306A1 (en) * | 2001-06-27 | 2003-05-01 | Rajasekhar Abburi | Enforcement architecture and method for digital rights management system for roaming a license to a plurality of user devices |
US7421411B2 (en) * | 2001-07-06 | 2008-09-02 | Nokia Corporation | Digital rights management in a mobile communications environment |
US7249107B2 (en) * | 2001-07-20 | 2007-07-24 | Microsoft Corporation | Redistribution of rights-managed content |
US20030236820A1 (en) * | 2001-10-24 | 2003-12-25 | Groove Networks, Inc. | Method and apparatus for managing a peer-to-peer collaboration system |
US20030097655A1 (en) * | 2001-11-21 | 2003-05-22 | Novak Robert E. | System and method for providing conditional access to digital content |
US20070112948A1 (en) * | 2001-12-31 | 2007-05-17 | Christopher Uhlik | System for on-demand access to local area networks |
US7484103B2 (en) * | 2002-01-12 | 2009-01-27 | Je-Hak Woo | Method and system for the information protection of digital content |
US20030187801A1 (en) * | 2002-03-26 | 2003-10-02 | Microsoft Corporation | Content revocation and license modification in a digital rights management (DRM) system on a computing device |
US20030198351A1 (en) * | 2002-04-18 | 2003-10-23 | International Business Machines Corporation | Method, system and program product for modifying content usage conditions during content distribution |
US20030204723A1 (en) * | 2002-04-30 | 2003-10-30 | Microsoft Corporation | Digital license with referral information |
US20030236978A1 (en) * | 2002-06-24 | 2003-12-25 | Evans Glenn F. | Secure media path methods, systems, and architectures |
US20050273608A1 (en) * | 2002-07-26 | 2005-12-08 | Koninklijke Philips Electronics N.V. | Secure authenticated distance measurement |
US7376840B2 (en) * | 2002-09-30 | 2008-05-20 | Lucent Technologies, Inc. | Streamlined service subscription in distributed architectures |
US20040078581A1 (en) * | 2002-10-21 | 2004-04-22 | Microsoft Corporation | Installation of black box for trusted component for digital rights management (DRM) on computing device |
US20040093372A1 (en) * | 2002-11-09 | 2004-05-13 | Microsoft Corporation | Challenge and response interaction between client and server computing devices |
US20040103297A1 (en) * | 2002-11-25 | 2004-05-27 | Hank Risan | Controlling interaction of deliverable electronic media |
US20040168184A1 (en) * | 2002-12-04 | 2004-08-26 | Jan Steenkamp | Multiple content provider user interface |
US20060117379A1 (en) * | 2002-12-11 | 2006-06-01 | Bennett James D | Transcoding and data rights management in a mobile video network with STB as a hub |
US20040117483A1 (en) * | 2002-12-17 | 2004-06-17 | Singer Mitch Fredrick | License management in a media network environment |
US20040139027A1 (en) * | 2003-01-13 | 2004-07-15 | Sony Corporation | Real-time delivery of license for previously stored encrypted content |
US20040143736A1 (en) * | 2003-01-17 | 2004-07-22 | Cross David B. | File system operation and digital rights management (DRM) |
US20060242083A1 (en) * | 2003-02-27 | 2006-10-26 | Avaya Technology Corp. | Method and apparatus for license distribution |
US20040172533A1 (en) * | 2003-02-27 | 2004-09-02 | Microsoft Corporation | Tying a digital license to a user and tying the user to multiple computing devices in a digital rights management (DRM) sytem |
US20050071375A1 (en) * | 2003-09-30 | 2005-03-31 | Phil Houghton | Wireless media player |
US20060085349A1 (en) * | 2003-11-21 | 2006-04-20 | Realnetworks | System and method for caching data |
US7437771B2 (en) * | 2004-04-19 | 2008-10-14 | Woodcock Washburn Llp | Rendering protected digital content within a network of computing devices or the like |
Cited By (67)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050003433A1 (en) * | 1994-03-21 | 2005-01-06 | The Regents Of The University Of California | Recombinant neospora antigens and their uses |
US10448079B2 (en) | 2000-10-27 | 2019-10-15 | Voxx International Corporation | Vehicle console capable of wireless reception and transmission of audio and video data |
US9317241B2 (en) | 2000-10-27 | 2016-04-19 | Voxx International Corporation | Vehicle console capable of wireless reception and transmission of audio and video data |
US20070136205A1 (en) * | 2003-10-22 | 2007-06-14 | Koninklijke Phillips Electronics N.C. | Digital rights management unit for a digital rights management system |
US10127363B2 (en) | 2004-05-19 | 2018-11-13 | Digital Media Technologies, Inc. | Multimedia network system with content importation, content exportation, and integrated content management |
US20150271568A1 (en) * | 2004-05-19 | 2015-09-24 | Philip Drope | Multimedia network system with content importation, content exportation, and integrated content management |
US10528706B2 (en) | 2004-05-19 | 2020-01-07 | Philip Drope | Multimedia network system with content importation, content exportation, and integrated content management |
US9805174B2 (en) | 2004-05-19 | 2017-10-31 | Digital Media Technologies, Inc. | Multimedia network system with content importation, content exportation, and integrated content management |
US20080069354A1 (en) * | 2004-07-15 | 2008-03-20 | Sony Corporation | Information Processing Device, Information Processing Method, and Computer Program |
EP1774786A2 (en) * | 2004-07-23 | 2007-04-18 | Audiovox Corporation | Vehicle console capable of wireless reception and transmission of audio and video data |
EP1774786A4 (en) * | 2004-07-23 | 2010-08-18 | Audiovox Corp | Vehicle console capable of wireless reception and transmission of audio and video data |
EP1657857A3 (en) * | 2004-11-16 | 2008-05-28 | Samsung Electronics Co., Ltd. | Apparatus, system, and method for transmitting content in home network |
US9197434B2 (en) | 2005-03-21 | 2015-11-24 | Marvell World Trade Ltd. | Network system for distributing protected content |
EP1708112A1 (en) | 2005-03-21 | 2006-10-04 | Marvell World Trade Ltd. | DVD system for distributing protected content |
WO2006102454A1 (en) | 2005-03-21 | 2006-09-28 | Marvell World Trade Ltd. | Network system for distributing protected content |
US20070198689A1 (en) * | 2005-03-21 | 2007-08-23 | Sehat Sutardja | Network system for distributing protected content |
US20070162573A1 (en) * | 2005-03-21 | 2007-07-12 | Sehat Sutardja | Network system for distributing protected content |
US8683080B2 (en) | 2005-03-21 | 2014-03-25 | Marvell World Trade Ltd. | Network system for distributing protected content |
EP1708111A1 (en) * | 2005-03-21 | 2006-10-04 | Marvell World Trade Ltd. | Network system for distributing protected content |
US9046596B1 (en) | 2005-03-21 | 2015-06-02 | Marvell International Ltd. | Systems and methods for determining a distance between a first device and a second device in a network |
US20070136440A1 (en) * | 2005-03-21 | 2007-06-14 | Sehat Sutardja | Network system for distributing protected content |
US7991887B2 (en) | 2005-03-21 | 2011-08-02 | Marvell World Trade Ltd. | Network system for distributing protected content |
US11347785B2 (en) | 2005-08-05 | 2022-05-31 | Intel Corporation | System and method for automatically managing media content |
US11544313B2 (en) | 2005-08-05 | 2023-01-03 | Intel Corporation | System and method for transferring playlists |
WO2007041567A2 (en) | 2005-10-03 | 2007-04-12 | Realnetworks, Inc. | System and method for obtaining and sharing media content |
EP1955278B1 (en) * | 2005-10-03 | 2018-11-21 | Intel Corporation | System and method for obtaining and sharing media content |
US20070217400A1 (en) * | 2006-03-17 | 2007-09-20 | Staples Mathew L | Audio distribution over internet protocol |
TWI462549B (en) * | 2006-03-20 | 2014-11-21 | Marvell World Trade Ltd | Network system for distributing protected content |
US8682351B1 (en) | 2006-12-28 | 2014-03-25 | Marvell International Ltd. | Method and apparatus for locating a WLAN station based on a propagation delay of a signal |
US20100107260A1 (en) * | 2007-02-26 | 2010-04-29 | The Technology Partnership Plc | Device for receiving digital broadcasts |
WO2008104544A3 (en) * | 2007-02-26 | 2008-12-18 | The Technology Partnership Plc | A device for receiving digital broadcasts |
WO2008104544A2 (en) | 2007-02-26 | 2008-09-04 | The Technology Partnership Plc | A device for receiving digital broadcasts |
EP2026231A1 (en) * | 2007-08-06 | 2009-02-18 | Hyundai Motor Company | DRM system and method of managing DRM content |
US20090044008A1 (en) * | 2007-08-06 | 2009-02-12 | Ji Hyun Lim | Drm system and method of managing drm content |
US8953795B2 (en) * | 2007-11-30 | 2015-02-10 | Sony Corporation | Forensic decryption tools |
US20090245514A1 (en) * | 2007-11-30 | 2009-10-01 | Sony Corporation | Forensic decryption tools |
US20100111504A1 (en) * | 2008-11-03 | 2010-05-06 | At&T Intellectual Property I, L.P. | System and method for recording and distributing media content |
US9918036B2 (en) * | 2008-11-03 | 2018-03-13 | At&T Intellectual Property I, L.P. | System and method for recording and distributing media content |
US9788052B1 (en) | 2011-04-26 | 2017-10-10 | Cox Communications, Inc. | Multiple recording devices connected in a home network |
US9148691B2 (en) * | 2011-04-26 | 2015-09-29 | Cox Communications, Inc. | Multiple recording devices connected in a home network |
US20120278846A1 (en) * | 2011-04-26 | 2012-11-01 | Cox Communications, Inc. | Multiple Recording Devices Connected in a Home Network |
US10608828B2 (en) * | 2011-06-17 | 2020-03-31 | Assa Abloy Ab | Revocation status using other credentials |
US20180115429A1 (en) * | 2011-06-17 | 2018-04-26 | Assa Abloy Ab | Revocation status using other credentials |
US8973106B2 (en) * | 2012-05-03 | 2015-03-03 | Salesforce.Com, Inc. | Computer implemented methods and apparatus for providing permissions to users in an on-demand service environment |
US20130298202A1 (en) * | 2012-05-03 | 2013-11-07 | Salesforce.Com, Inc. | Computer implemented methods and apparatus for providing permissions to users in an on-demand service environment |
US20140108804A1 (en) * | 2012-10-11 | 2014-04-17 | Sling Media Inc. | System and method for verifying the authenticity of an electronic device |
US20140258490A1 (en) * | 2013-03-11 | 2014-09-11 | Samsung Electronics Co., Ltd. | Communication method of administration node, requesting node, and normal node for deleting invalid content using content revocation list in content centric network |
KR20140111485A (en) * | 2013-03-11 | 2014-09-19 | 삼성전자주식회사 | Communicaton method of administration node, requesting node and normal node deleting unvalid contents using contents revocation list in a contents centric network |
US9723103B2 (en) * | 2013-03-11 | 2017-08-01 | Samsung Electronics Co., Ltd. | Communication method of administration node, requesting node, and normal node for deleting invalid content using content revocation list in content centric network |
KR102063681B1 (en) * | 2013-03-11 | 2020-01-08 | 삼성전자주식회사 | Communicaton method of administration node, requesting node and normal node deleting unvalid contents using contents revocation list in a contents centric network |
US20150026258A1 (en) * | 2013-07-17 | 2015-01-22 | Electronics And Telecommunications Research Institute | Method and apparatus for determining participant discovery message period |
EP3107304A4 (en) * | 2014-02-10 | 2017-09-20 | LG Electronics Inc. | Method and device for reproducing content |
US11140432B2 (en) * | 2014-05-29 | 2021-10-05 | Time Warner Cable Enterprises Llc | Apparatus and methods for recording, accessing, and delivering packetized content |
US11792462B2 (en) | 2014-05-29 | 2023-10-17 | Time Warner Cable Enterprises Llc | Apparatus and methods for recording, accessing, and delivering packetized content |
US10122696B2 (en) * | 2014-08-11 | 2018-11-06 | Document Dynamics, Llc | Environment-aware security tokens |
US20180026956A1 (en) * | 2014-08-11 | 2018-01-25 | Document Dynamics, Llc | Environment-Aware Security Tokens |
US9749146B2 (en) * | 2014-10-21 | 2017-08-29 | Electronics And Telecommunications Research Institute | Apparatus and methods for providing home network service |
US20160112213A1 (en) * | 2014-10-21 | 2016-04-21 | Electronics And Telecommunications Research Institute | Apparatus and methods for providing home network service |
US20180109851A1 (en) * | 2015-03-31 | 2018-04-19 | British Telecommunications Public Limited Company | Content playback management |
US20160364553A1 (en) * | 2015-06-09 | 2016-12-15 | Intel Corporation | System, Apparatus And Method For Providing Protected Content In An Internet Of Things (IOT) Network |
US11716440B2 (en) | 2017-05-02 | 2023-08-01 | Harman International Industries, Incorporated | Portable hub with digital video recorder |
EP3399762A1 (en) * | 2017-05-02 | 2018-11-07 | Harman International Industries, Incorporated | Portable hub with digital video recorder |
US20180376185A1 (en) * | 2017-05-05 | 2018-12-27 | Wayne D. Lonstein | Methods for identifying, disrupting and monetizing the illegal sharing and viewing of digital and analog streaming content |
US10523986B2 (en) * | 2017-05-05 | 2019-12-31 | Wayne D. Lonstein | Methods for identifying, disrupting and monetizing the illegal sharing and viewing of digital and analog streaming content |
US10080047B1 (en) * | 2017-05-05 | 2018-09-18 | Wayne D. Lonstein | Methods for identifying, disrupting and monetizing the illegal sharing and viewing of digital and analog streaming content |
US11088865B2 (en) * | 2017-08-03 | 2021-08-10 | Dartpoint Tech. Co., Ltd. | System, device and method for terminal product usable time management |
CN113904776A (en) * | 2021-09-03 | 2022-01-07 | 联想(北京)有限公司 | Certificate management method, device and equipment and readable storage medium |
Also Published As
Publication number | Publication date |
---|---|
US8011015B2 (en) | 2011-08-30 |
US20140344870A1 (en) | 2014-11-20 |
US8230084B2 (en) | 2012-07-24 |
JP2013042554A (en) | 2013-02-28 |
US7934263B2 (en) | 2011-04-26 |
US8191154B2 (en) | 2012-05-29 |
US20100005172A1 (en) | 2010-01-07 |
US20040117484A1 (en) | 2004-06-17 |
US20040139022A1 (en) | 2004-07-15 |
US20040117619A1 (en) | 2004-06-17 |
US20110231941A1 (en) | 2011-09-22 |
US20040117483A1 (en) | 2004-06-17 |
US8589546B2 (en) | 2013-11-19 |
US9813756B2 (en) | 2017-11-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9813756B2 (en) | Media network environment | |
JP5438494B2 (en) | Method for obtaining and granting license in hub network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: SONY CORPORATION, JAPAN Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SINGER, MITCH F.;LAKAMP, BRIAN D.;REEL/FRAME:014617/0953 Effective date: 20031014 Owner name: SONY PICTURES ENTERTAINMENT INC., CALIFORNIA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SINGER, MITCH F.;LAKAMP, BRIAN D.;REEL/FRAME:014617/0953 Effective date: 20031014 |
|
STCB | Information on status: application discontinuation |
Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION |