Join
today

Boliven PRO is more than just patent search

  • Build and save lists using the powerful Lists feature
  • Analyze and download your search results
  • Share patent search results with your clients

Patents »

US6055314: System and method for secure purchase and delivery of video content programs

Share

Filing Information

Inventor(s) Terence R. Spies · Daniel R. Simon ·
Assignee(s) Microsoft Corporation ·
Attorney/Agent(s) Lee & Hayes, PLLC ·
Primary Examiner Harshad Patel ·
Assistant Examiner Robin Clark ·
Application Number US8620603
Filing date 03/22/1996
Issue date 04/25/2000
Predicted expiration date 03/22/2016
U.S. Classifications 380/21  · 380/10  ·
International Classifications H04N 7167  ·
Kind CodeA
International Classifications 38010;16;20;21;23;25 ·
74 Claims, No Drawings


Abstract

A system and method for secure purchase and delivery of video content programs over various distribution media, including distribution networks and digital video disks, includes an integrated circuit card (e.g., a smart card, PCMCIA card) which is configured to store decryption capabilities for related video programs. The decryption capabilities are initially kept in a secure store at a video merchant. When a purchaser orders a particular video program, the decryption capabilities for that program are downloaded to the IC card, either at the merchant premises or over a distribution network. The video content program is distributed in encrypted format via the distribution media to the purchaser. The IC card uses the decryption capabilities to at least partly decrypt the video content program without exposing the decryption capabilities.

Independent Claims | See all claims (74)

  1. 1. A video content delivery system comprising:a video content provider;a viewer computing unit located remotely from the video content provider;a distribution medium;a video encryption device at the video content provider to supply a video data stream in encrypted format on the distribution medium, the video encryption device encrypting the video data stream using a cryptographic program key; andan integrated circuit card compatibly couplable to, and interactive with, the viewer computing unit, the integrated circuit card having a memory to store an encrypted cryptographic program key, the integrated circuit card being configured to decrypt the encrypted cryptographic program key with decryption capabilities that are unique to the integrated circuit card, and to at least partly decrypt the video data stream on the distribution medium using the cryptographic program key.
  2. 9. An interactive entertainment network system comprising:a video content provider;a video storage medium located at the video content provider to store video content programs;multiple user interface units located at subscribers to the interactive entertainment network system, each user interface unit being operable in a video-on-demand mode to enable a user to select a video content program from the video content provider;an interactive distribution network interconnecting the video content provider and the user interface units;a video server located at the video content provider to supply the video content programs to the user interface units over the interactive distribution network in individual video data packets containing digital video data;multiple integrated circuit cards assigned to associated subscribers, each integrated circuit card being compatibly couplable to, and interactive with, one of the user interface units to form a video decryption device each of which has unique video decryption capabilities so that when the user selects a video content program, the video content provider transmits a cryptographic program key associated with the video content program selected by the user over the interactive distribution network to the video decryption device;the video server at the video content provider being configured to encrypt the video data packets for the video content program selected by the user using the cryptographic program key; andthe video decryption device being configured to decrypt the video data packets using the cryptographic program key.
  3. 17. A system for purchasing video content programs comprising:a merchant computing unit at a video merchant;a portable purchaser integrated circuit (IC) card which compatibly interfaces with the merchant computing unit; andthe merchant computing unit being configured to send decryption capabilities unique to both a selected video content program and to the purchaser IC card for use in decrypting the selected video content program.
  4. 23. An electronic entertainment system for purchasing video content programs comprising:a merchant computing unit at a video merchant;a purchaser computing unit located remotely from the video merchant;a distribution network interconnecting the merchant computing unit and the purchaser computing unit;a purchaser integrated circuit (IC) card compatibly couplable to, and interactive with, the purchaser computing unit, the purchaser IC card having a memory to store a credential containing a cryptographic exchange key;a video purchasing application executing on the purchaser computing unit to permit the purchaser to order a video content program from the video merchant, whereupon ordering a selected video content program, the purchaser IC card digitally signs an order to purchase the selected video content program to the video merchant along with the credential;the merchant computing unit being configured to authenticate the digitally signed order from the purchaser IC card to verify the purchaser IC card and to send a cryptographic program key unique to the selected video content program to the purchaser IC card for use in decrypting the selected video content program which will be transmitted over the distribution network in an encrypted format, the merchant computing unit further being configured to encrypt the cryptographic program key using the cryptographic exchange key of the purchaser.
  5. 27. An integrated circuit card for use in decryption of video content programs, the video content programs being supplied in encrypted format to a computing unit for display, the integrated circuit card being compatibly couplable to the computing unit, the integrated circuit card comprising:a processor;a memory to store an encrypted cryptographic program key; anda video decryption program executing on the processor to decrypt the encrypted cryptographic program key using decryption capabilities that are unique to the integrated circuit card, and to at least partly decrypt a video content program using the cryptographic program key when the integrated circuit card is coupled to the computing unit.
  6. 30. A video decryption device comprising:a computing unit configured to receive an encrypted video data stream and to output the video data stream in a decrypted format for display on a visual display; andan integrated circuit card compatibly couplable to the computing unit, the integrated circuit card comprising a memory to store an encrypted cryptographic program key and a processor programmed to decrypt the encrypted cryptographic program key using decryption capabilities that are unique to the integrated circuit card, and to at least partly decrypt the video data stream using the cryptographic program key when the integrated circuit card is coupled to the computing unit.
  7. 34. A method for delivering video content programs, the method comprising the following steps:encrypting a cryptographic program key;storing the encrypted cryptographic program key on a portable integrated circuit card that is associated with a viewer;coupling the integrated circuit card to a computing unit;forming a video data stream of the video content program;encrypting the video data stream using the cryptographic program key to yield an encrypted video data stream;distributing the encrypted video data stream via a distribution medium to the computing unit;decrypting the encrypted cryptographic program key with decryption capabilities that are unique to the integrated circuit card; anddecrypting the encrypted video data stream using the decrypted cryptographic program key stored on the integrated circuit card.
  8. 42. A method for decrypting a video data stream that is transmitted in encrypted format, the video data stream being formatted in individual packets of digital data where each packet is encrypted based upon a function of a cryptographic program key that is associated with the video data stream and a cryptographic packet key that is associated with each respective packet, the method comprising the following steps:storing the cryptographic program key on an integrated circuit card;compatibly coupling the integrated circuit card to a computing unit; anddecrypting each packet at the computing unit using a function of the program key and the packet key to reproduce the video data stream.
  9. 43. A method for purchasing video content programs from a video merchant, the method comprising the following steps:storing a pair of public and private cryptographic exchange keys and a pair of public and private cryptographic signing keys that are unique to the purchaser on an integrated circuit card;generating an order to purchase a video content program from the video merchant;digitally signing the order to purchase the video content program using the private signing key;sending the order and a credential of the purchaser to the video merchant, the credential including the public exchange key and the public signing key;authenticating the digitally signed order at the video merchant using the public signing key of the purchaser to verify the purchaser;encrypting a cryptographic program key unique to the video content program ordered by the purchaser using the public exchange key of the purchaser;sending the encrypted program key to the integrated circuit card;decrypting the program key at the integrated circuit card using the private exchange key; andstoring the program key on the integrated circuit card.
  10. 47. A method for secure purchase and delivery of video content programs, the method comprising the following steps:storing a cryptographic program key for a video content program at a first location;generating an order from a purchaser to purchase the video content program;sending the order to a video merchant;transferring the cryptographic program key to the purchaser;storing the cryptographic program key at a second location;encrypting the video data stream using the cryptographic program key to yield an encrypted video data stream;distributing the encrypted video data stream via a distribution medium to the purchaser; anddecrypting the encrypted video data stream at the purchaser using first and second expansion cryptographic functions, the first of which includes, and is a function of the cryptographic program key and at least one other key which is unique to the video data stream being decrypted.
  11. 54. A method for secure delivery of video content programs comprising:decrypting a first amount of an encrypted video data stream using a first cryptographic expansion function to yield an expanded first amount of data;decrypting a second amount of the encrypted video data stream using a second cryptographic expansion function to yield a second amount of data; andcombining the second amount of data with remaining encrypted data of the encrypted video data stream to produce a decrypted video data stream.
  12. 59. A method of delivering video content programs comprising:segmenting a video data stream into individual segments of digital video data;generating a cryptographic packet key for each segment;expanding each packet key according to a first cryptography function involving the packet key and a cryptographic program key to form an expanded key;producing an encrypted data set from each segment of digital video data using the associated expanded key according to a second cryptographic function;framing each encrypted data set within a packet;distributing both the packets and associated packet keys via a distribution medium to a computing unit;expanding each packet key according to the first cryptographic function involving the associated packet keys and the program key to reproduce the expanded key; anddecrypting each encrypted data set in each packet using the associated expanded key according to the second cryptographic function to reproduce the digital video data.
  13. 63. A video content delivery system comprising:a video content provider;a viewer computing unit located remotely from the video content provider;a distribution medium; a video encryption device at the video content provider to supply a video data stream in encrypted format on the distribution medium, the video encryption device encrypting the video data stream using a cryptographic program key;an integrated circuit card compatibly couplable to, and interactive with, the viewer computing unit, the integrated circuit card having a memory to store the cryptographic program key, the integrated circuit card being configured to at least partly decrypt the video data stream on the distribution medium using the cryptographic program key; andwherein the video encryption device configures the video data stream in individual packets of digital video data and encrypts each packet according to a function of a cryptographic packet key associated with each packet and the cryptographic program key.
  14. 65. An interactive entertainment network system comprising:a video content provider;a video storage medium located at the video content provider to store video content programs;multiple user interface units located at subscribers to the interactive entertainment network system, each user interface unit being operable in a video-on-demand mode to enable a user to select a video content program from the video content provider;an interactive distribution network interconnecting the video content provider and the user interface units;a video server located at the video content provider to supply the video content programs to the user interface units over the interactive distribution network in individual video data packets containing digital video data, wherein the video server generates a cryptographic packet key for each video data packet and encrypts the video data packet according to a function of the packet key and the program key;multiple integrated circuit cards assigned to associated subscribers, each integrated circuit card being compatibly couplable to, and interactive with, one of the user interface units to form a video decryption device so that when the user selects a video content program, the video content provider transmits a cryptographic program key associated with the video content program selected by the user over the interactive distribution network to the video decryption device;the video server at the video content provider being configured to encrypt the video data packets for the video content program selected by the user using the cryptographic program key; andthe video decryption device being configured to decrypt the video data packets using the cryptographic program key.
  15. 67. An interactive entertainment network system comprising:a video content provider;a video storage medium located at the video content provider to store video content programs;multiple user interface units located at subscribers to the interactive entertainment network system, each user interface unit being operable in a video-on-demand mode to enable a user to select a video content program from the video content provider;an interactive distribution network interconnecting the video content provider and the user interface units;a video server located at the video content provider to supply the video content programs to the user interface units over the interactive distribution network in individual video data packets containing digital video data, wherein the video server generates a cryptographic packet key for each video data packet, expands the packet key according to a first cryptography function involving the packet key and the program key to form an expanded key, and computes an encrypted data set from the digital video data using the expanded key according to a second cryptography function, the video data packet containing the encrypted data set;multiple integrated circuit cards assigned to associated subscribers, each integrated circuit card being compatibly couplable to, and interactive with, one of the user interface units to form a video decryption device so that when the user selects a video content program, the video content provider transmits a cryptographic program key associated with the video content program selected by the user over the interactive distribution network to the video decryption device;the video server at the video content provider being configured to encrypt the video data packets for the video content program selected by the user using the cryptographic program key; andthe video decryption device being configured to decrypt the video data packets using the cryptographic program key.
  16. 69. An integrated circuit card for use in decryption of video content programs, the video content programs being supplied in encrypted format to a computing unit for display, the integrated circuit card being compatibly couplable to the computing unit, the integrated circuit card comprising:a processor;a memory to store a cryptographic program key; anda video decryption program executing on the processor to at least partly decrypt a video content program using the cryptographic program key when the integrated circuit card is coupled to the computing unit, wherein the video content programs are supplied in individual packets of digital video data, each packet being encrypted using a packet key that is unique for each packet and the cryptographic program key, the video decryption program directing the processor to decrypt each packet using the cryptographic program key stored in the memory and the packet key supplied along with the packet.
  17. 70. A video decryption device comprising:a computing unit configured to receive an encrypted video data stream and to output the video data stream in a decrypted format for display on a visual display; andan integrated circuit card compatibly couplable to the computing unit, the integrated circuit card comprising a memory to store a cryptographic program key and a processor programmed to at least partly decrypt the video data stream using the cryptographic program key when the integrated circuit card is coupled to the computing unit, wherein:the video data stream comprises individual packets of digital video data, each packet being encrypted using an associated packet key that is unique for that packet and the cryptographic program key;the processor of the integrated circuit card being programmed to generate a decryption tool from each associated packet key and the cryptographic program key stored in the memory; andthe computing unit being configured to decrypt each packet using the decryption tool.
  18. 71. A method for delivering video content programs, the method comprising the following steps:supplying a cryptographic program key to a viewer;storing the cryptographic program key on a portable integrated circuit card that is associated with a viewer;coupling the integrated circuit card to a computing unit;forming a video data stream of the video content program into individual packets of digital video data;encrypting the video data stream using the cryptographic program key to yield an encrypted video data stream, the encrypting comprising encrypting each packet according to a function of both an associated cryptographic packet key and the cryptographic program key;distributing the encrypted video data stream via a distribution medium to the computing unit; anddecrypting the encrypted video data stream using the cryptographic program key stored on the integrated circuit card.
  19. 73. A method for delivering video content programs, the method comprising the following steps:supplying a cryptographic program key to a viewer;storing the cryptographic program key on a portable integrated circuit card that is associated with a viewer;coupling the integrated circuit card to a computing unit;forming a video data stream of the video content program;encrypting the video data stream using the cryptographic program key to yield an encrypted video data stream;distributing the encrypted video data stream via a distribution medium to the computing unit; anddecrypting the encrypted video data stream using the cryptographic program key stored on the integrated circuit card,wherein the supplying step comprises the following steps:segmenting the video data stream into individual segments of digital video data;said encrypting step comprises for each said segment the following steps:generating a cryptographic packet key;expanding the packet key according to a first cryptography function involving the packet key and the program key to form an expanded key;producing an encrypted data set from the segment of digital video data using the expanded key according to a second cryptography function; andframing the encrypted data set within a packet.

Referenced By

Document NumberAssigneeInventorsIssue/Pub Date
AU2001251322 MOVIELINK LLC SCHNABEL EVERTON ANTHONY et al. Jan 2006
DE10119656 MASCOM GMBH GRUBER HEINZ Oct 2002
DE10040854 INFINEON TECHNOLOGIES AG DIRSCHERL GERD et al. Mar 2002
ES2200671 SEMICONDUCTORES INVESTIGACION AVELLANO FERNANDEZ JOSE LUIS et al. Mar 2004
FR2812504 AT SKY LEROUX JEAN YVES et al. Feb 2002
FR2825877 CANAL PLUS TECHNOLOGIES DEROUET ODILE Dec 2002
FR2865592 VOGT NOEL VOGT NOEL Jul 2005
US6330426 Stephen J. Brown et al. Dec 2001
US6334216 Alcatel Ulrich Barth Dec 2001
EP1279277 Movielink, LLC BARNETT, Jeremy, Eli et al. Jan 2003
EP1220544 SHARP KABUSHIKI KAISHA Toshiteru Takano Jul 2002
EP1220487 SONY CORPORATION Kamiya, Shigeki, et al. Nov 2005
EP1389010 LOEWE OPTA GmbH Hopf, Reinhold Dipl.-Ing. (FH) Feb 2004
EP1404085 Broadcom Corporation Jeffrey Douglas Carr Nov 2006
EP1421789 NAGRA THOMSON LICENSING Odile DEROUET Oct 2009
EP1442351 Koninklijke Philips Electronics N.V. Declan P. KELLY et al. Jul 2008
US7463738 Nokia Corporation Naoaki Nii Dec 2008
US6941383 InterActual Technologies, Inc. Evgeniy M. Getsin et al. Sep 2005
US6973576 Margent Development, LLC John J. Giobbi Dec 2005
US6999948 Fujitsu Limited Masayuki Hatanaka et al. Feb 2006
US7076561 Music Choice Jeremy Rosenberg et al. Jul 2006
US7209893 Nokia Corporation Naoaki Nii Apr 2007
US7251833 International Business Machines Corporation Ephriam Feig et al. Jul 2007
US7292691 Sony Corporation Brant L. Candelore et al. Nov 2007
US7277549 Secure Data In Motion, Inc. Terry M. Olkin et al. Oct 2007
US7225458 The DirecTV Group, Inc. Peter M. Klauss et al. May 2007
US7392481 Sonic Solutions, a California corporation Greg Gewickey et al. Jun 2008
US7409702 Sony Corporation Adrean T. Cao Aug 2008
US7409562 The DIRECTV Group, Inc. Raynold M. Kahn et al. Aug 2008
US7480381 The DIRECTV Group, Inc. Raynold M. Kahn et al. Jan 2009
US7383446 Fujitsu Limited Masayuki Hatanaka et al. Jun 2008
US7457414 The DIRECTV Group, Inc. Raynold M. Kahn et al. Nov 2008
US7493375 QST Holding, LLC Paul L. Master et al. Feb 2009
US7508789 Data Innovation LLC Hark C. Chan Mar 2009
US7522554 Data Innovation LLC Hark C. Chan Apr 2009
US7609297 QST Holdings, Inc. Paul L. Master et al. Oct 2009
US7617973 Transaction Holdings Ltd., LLC David M. Barcelou Nov 2009
US6944621 InterActual Technologies, Inc. Todd R. Collart Sep 2005
US6968375 Health Hero Network, Inc. Stephen J. Brown Nov 2005
US7062045 CLWT, LLC Christopher J. Riddick et al. Jun 2006
US7127619 Sony Corporation Robert Allan Unger et al. Oct 2006
US7107246 eSignX Corporation Ynjiun P. Wang Sep 2006
US7151831 Sony Corporation Brant L. Candelore et al. Dec 2006
US7257308 Scientific-Atlanta, Inc. Harold J. Plourde, Jr. et al. Aug 2007
US7310668 Health Hero Network, Inc. Stephen J. Brown Dec 2007
US7302059 Sony Corporation Brant L. Candelore et al. Nov 2007
US7343491 Sony Corporation Takehiko Nakano Mar 2008
US7203311 The DirecTV Group, Inc. Raynold M. Kahn et al. Apr 2007
US7320030 Health Hero Network, Inc. Stephen J. Brown Jan 2008
US7284135 Microsoft Corporation Glenn F. Evans et al. Oct 2007
US7325043 Music Choice Jeremy C. Rosenberg et al. Jan 2008
US7340462 BERTRAND DOMINIQUE Dominique Bertrand Mar 2008
US7444306 VARBLE THOMAS BRYAN Thomas Bryan Varble Oct 2008
US7421411 Nokia Corporation Markku Kontio et al. Sep 2008
US7512810 Guardian Data Storage LLC Nicholas M. Ryan Mar 2009
US7516192 Health Hero Network, Inc. Stephen J. Brown Apr 2009
US7555539 Music Choice Jeremy C. Rosenberg et al. Jun 2009
US7590243 The DIRECTV Group, Inc. Raynold M. Kahn et al. Sep 2009
US7603313 Sony Corporation Tomoyuki Asano Oct 2009
US6385723 Mondex International Limited Timothy Philip Richards May 2002
US6453420 Research Investment Network, Inc. Todd R. Collart Sep 2002
US6665489 Research Investment Network, Inc. Todd R. Collart Dec 2003
US7065651 Microsoft Corporation Glenn F. Evans Jun 2006
US7151833 Sony Corporation Brant L. Candelore et al. Dec 2006
US7139398 Sony Corporation Brant L. Candelore et al. Nov 2006
US7302058 Sony Corporation Brant L. Candelore Nov 2007
US7188193 Sonic Solutions, a California corporation Evgeniy M Getsin et al. Mar 2007
US7269634 Sonic Solutions Evgeniy M. Getsin et al. Sep 2007
US7181758 Data Innovation, L.L.C. Hark C. Chan Feb 2007
US7272726 Microsoft Corporation Glenn F. Evans Sep 2007
US7297109 Health Hero Network, Inc. Stephen J. Brown Nov 2007
US7287168 Sony Corporation Brant L. Candelore et al. Oct 2007
US7286667 Sony Corporation Kim Annon Ryal Oct 2007
US7233669 Sony Corporation Brant L. Candelore Jun 2007
US7392167 Health Hero Network, Inc. Stephen J. Brown Jun 2008
US7415439 Nokia Corporation Markku Kontio et al. Aug 2008
US7418344 SanDisk Corporation Michael Holtzman et al. Aug 2008
US7380120 Guardian Data Storage, LLC Denis Jacques Paul Garcia May 2008
US7512173 QST Holdings, LLC Sharad Sambhwani et al. Mar 2009
US7555436 Health Hero Network, Inc. Stephen J. Brown Jun 2009
US6468160 Nintendo of America, Inc. Scott Eliott Oct 2002
US6681326 DIVA Systems Corporation Yong Ho Son et al. Jan 2004
US6712704 Nintendo of America Inc. Scott Eliott Mar 2004
US7080039 MARSH DAVID J David J Marsh Jul 2006
US7024466 Movielink, LLC Todd Avery Outten et al. Apr 2006
US7124303 Sony Corporation Brant L. Candelore et al. Oct 2006
US7257844 Marvell International Ltd. Ernest E. Woodward Aug 2007
US7277870 International Business Machines Corporation Magda Mourad et al. Oct 2007
US7305348 Health Hero Network, Inc. Stephen J. Brown Dec 2007
US7178106 Sonic Solutions, a California corporation Allan B. Lamkin et al. Feb 2007
US7299365 Microsoft Corporation Glenn F. Evans Nov 2007
US7263187 Sony Corporation Leo M. Pedlow, Jr. et al. Aug 2007
US7209560 British Telecommunications public limited company Ian R Fairman et al. Apr 2007
US7346558 Music Choice Jeremy Rosenberg Mar 2008
US7376233 Sony Corporation Brant L. Candelore et al. May 2008
US7325127 Secure Data In Motion, Inc. Terry M. Olkin et al. Jan 2008
US7472280 Proxense, LLC John J. Giobbi Dec 2008
US7404088 Proxense, LLC John J. Giobbi Jul 2008
US7505992 Sonic Solutions, a California corporation Todd R. Collart Mar 2009
US7505760 Nokia Corporation Leon Hurst et al. Mar 2009

Patent Family

The current document is not in a family.