US20090097645A1 - Playing control files for personal video recorders - Google Patents

Playing control files for personal video recorders Download PDF

Info

Publication number
US20090097645A1
US20090097645A1 US11/565,475 US56547506A US2009097645A1 US 20090097645 A1 US20090097645 A1 US 20090097645A1 US 56547506 A US56547506 A US 56547506A US 2009097645 A1 US2009097645 A1 US 2009097645A1
Authority
US
United States
Prior art keywords
policy
information
multimedia
program
video
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US11/565,475
Inventor
Scott C. Harris
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Harris Technology LLC
Original Assignee
Harris Technology LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Harris Technology LLC filed Critical Harris Technology LLC
Priority to US11/565,475 priority Critical patent/US20090097645A1/en
Assigned to HARRIS TECHNOLOGY, LLC reassignment HARRIS TECHNOLOGY, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: HARRIS, SCOTT C
Publication of US20090097645A1 publication Critical patent/US20090097645A1/en
Priority to US13/450,905 priority patent/US8689351B1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N5/00Details of television systems
    • H04N5/76Television signal recording
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4627Rights management associated to the content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/835Generation of protective data, e.g. certificates
    • H04N21/8355Generation of protective data, e.g. certificates involving usage data, e.g. number of copies or viewings allowed
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N5/00Details of television systems
    • H04N5/76Television signal recording
    • H04N5/91Television signal processing therefor
    • H04N5/913Television signal processing therefor for scrambling ; for copy protection

Definitions

  • the personal video recorder or digital video recorder also known as the home theater PC or HTPC, allows video programming to be copied from a broadcast medium, and played back later.
  • the programs are recorded digitally, and can be randomly selected during playback.
  • the present application teaches different components that are usable with personal video recorders.
  • One aspect teaches forming a portion of a recorded program that specifies management of the allowable ways to play the recorded program.
  • FIG. 1 shows a block diagram of the computer system
  • FIG. 2 shows a file system layout for a video
  • FIG. 3 shows a flowchart of the operation of forming a policy
  • FIG. 4 shows a flowchart of playing a file.
  • FIG. 1 A block diagram of the overall system is shown in FIG. 1 .
  • Content 100 is received into a personal video recorder 100 which can be any kind of computer-operated system that receives content, and stores it in some way in its associated storage and/or storage processes.
  • the content may be any kind of multimedia, including video, audio, or other similar program material.
  • PVR storage units 110 and 111 each of which may include a video tuner, control parts, as well as program guides that enables storing information.
  • the PVR storage units such as 110 , 111 store the received information as digital information on a digital storage medium such as a hard drive 112 .
  • a hard drive 112 There may be one or many hard drives 112 , either globally associated with individual PVR store units, or one individually associated with each PVR store unit.
  • the playing module 120 shows the PVR playing module, which receives information from the PVR store module, and formats the stored information for eventual display on a television or other viewing screen shown as 130 .
  • the playing module 120 may be associated with or separate from the storage unit(s).
  • a user interface 140 enables interacting with the storing modules 110 and the playing module 120 .
  • a hard drive stores a plurality of files which are managed by the file system.
  • the files generally take the form shown in FIG. 2 .
  • the multimedia portion, here video portion 200 of the file 199 includes the video and audio content that was recorded from the program source.
  • the video that is stored by the PVR storage unit is stored in an “encrypted” form.
  • the word encrypted is used herein to represent any kind of change to the video stream that prevents the video stream from being directly viewed on a player without changing the video stream according to the code that was used to change the original video stream.
  • the encrypted video used herein may be as simply encrypted as a bit shift. It may use a very simple encryption algorithm, such as the CSS algorithm that is used to encrypt the video that is stored on DVDs. It also may use a much more complex algorithm such as a public key algorithm or other.
  • the video 200 is also preferably compressed, with the compression typically being in MPEG-2 or MPEG-4 formats. Higher resolution information, such as high-definition information, may be more aggressively compressed.
  • the video file 199 also includes a header 205 which is typically unencrypted, and gives information about the video.
  • the header may have a file name and date, but it may also include the size, time length, and other information about the video obtained from the program guide information.
  • the video file 199 may also include a video certificate portion shown as 210 .
  • This is a special kind of video certificate, quite different than a conventional digital certificate.
  • a digital certificate is an electronic file that includes name, a serial number, expiration dates, a copy of the certificate holder's public key (used for encrypting messages and digital signatures), and a digital signature of the certificate-issuing authority so that a recipient can verify that the certificate is real.
  • Digital certificates may conform to the X.509 standard.
  • the video certificate 210 includes information that tells the player, of whatever form, “how” to decrypt the video, and the conditions under which the video can be decrypted.
  • the certificate may be in the form of an “if . . . then” statement.
  • the conditions may be in the form of the statement “if (the video is being played on network FX) then, provide the key and allow decrypting with decryption key XY”.
  • the certificate may itself use any kind of encryption technique to protect against surreptitious hacking.
  • the decryption code for the encrypted video 200 may itself be encrypted in a way that can only be received using some kind of secret code, or the like.
  • the video certificate 210 instructs how to decrypt the encrypted video, but has conditions which specify when the decryption key will be provided—e.g., only when decrypted video is being used in the way intended by the copyright holder.
  • the personal video recorder 100 may also store identifying information about the environment in which the program was recorded. It stores at the minimum information about the device 100 in which storage units 110 , 111 are included.
  • the environment may also include an identifier of the network 116 to which the storage unit is attached.
  • the network may be the network over which program information is obtained, for example.
  • the network identifier may include for example, Mac IDs of various devices attached to the network, or computer identifying indicia. It may be as simple as the network name or the owner name. Alternatively, it may be a detailed map of network characteristics.
  • the certificate 210 forms its conditional information the program owner's specifications.
  • the owner specifications may be received as part of the program guide over the network 116 , or may be embedded within the raw program data 99 that is eventually recorded.
  • the conditions may specify when it is proper for the video 200 to be played back by a player such as 120 , or any other player.
  • the player 120 may be included within the device 100 , but may also be a separate player.
  • player 120 may be in a different PVR that is on the same network. It may be in a different PVR that is on a different network, for example when the user is trying to stream the video to their own player such as an iPod or other kind of personal player.
  • the player 120 may also be a player that belongs to someone totally unrelated to the owner of the recorder 110 .
  • the certificate indicates when it is okay for a player 120 of any of those types to play the encrypted video.
  • the certificate also includes information from which the decryption key can be obtained, either the key itself, part of the key, or an encrypted version of the key.
  • Exemplary condition statements may allow certain kinds of players. For example, the certificate may say: “if the player is the same device that recorded the program, then playing is okay”.
  • the playing device 120 is owned by the same owner as the owner of the storage unit 110 , then the unit may indicate that playing is ok.
  • Some owners may allow the program to be streamed to a personal recorder. If the unit 100 is sold, the system may specify that the new owner can also play the programs.
  • the owner may play the program on unit 100 , or some other unit.
  • the owner may be identified for example by a biometric scan for example a fingerprint or other biometric type scan, or by a pin, or by a smartcard, or proximity of a cell phone.
  • a completely open copyright policy may be in place for example the kind of copyright policy that might be associated with the movie trailer, or with a commercial or the like.
  • the policy can also require testing of the play kernel that must be carried out before playing by the kernel is enabled. This may check for a hacked play kernel, for example.
  • the devices associated with the network may change over time when computers are turned on and off, and different devices are changed.
  • the network may be established as being the same network when 40% of the nodes on the network agree or some other percent less than 100%. When some percentage of the networks agree, the device may conclude that the networks are the same.
  • the video 200 can be considered as being made up of a number of bit parts shown as 201 , 202 , 203 , 204 . Each of these video parts may be considered a frame.
  • bit parts shown as 201 , 202 , 203 , 204 .
  • Each of these video parts may be considered a frame.
  • the keyframes may be at random areas in the video, or may be determined to occur whenever necessary. According to the present system, the only a portion of the video is encrypted.
  • one frame every second may be encrypted, or all the keyframes may be encrypted, or one out of every 10 keyframes may be encrypted.
  • This sufficiently distorts the video so that it can be watched in some form, but will not look distorted.
  • An advantage of this system is that it uses fewer resources are necessary for decrypting video frames. This means that stronger encryption can be used, making it more difficult to thwart the encryption of the file in the video portion 200 .
  • encrypted portions of the recorded portion are interspersed between unencrypted portions of the recorded portion.
  • the video may be encrypted using a combination of different encryption techniques, but only certain frames need to be decrypted in order to play.
  • FIGS. 3 and 4 illustrates a flowchart of operation.
  • FIG. 3 illustrates recording a file, which can be carried out in any of the multiple recording processes 110 , 111 , under control of the user interface 140 .
  • the program information is received. This can be received as over the air (OTA) programming, over cable, into a satellite, via Wimax or other network receiver, or in any other form.
  • OTA over the air
  • the record process 110 preferably operates such that it can not record any program without an associated policy.
  • the policy can be received over the network as part of the program guide information, or can be received as part of the program itself.
  • the policy can be in the form of “if, then” statements as described above, or other form.
  • an encryption key is generated, and specified parts of the original program are encrypted according to the encryption key.
  • the encryption key may be randomly generated, or may be generated based on characteristics received as part of the policy, or may be encoded based on a public key that is associated with the storage unit 110 . It may use a random seed or any other well-known encryption forms. Since in the preferred mode, only a part of the video is encrypted, the encryption may be extremely strong, since it can use significant computing resources. According to another mode, the entire video may be encrypted, using for example, a dedicated processor or process, e.g., using a processor 141 .
  • the information is stored as an encrypted file along with decryption information plus the policy.
  • the decryption information plus policy is formed as a certificate that is associated with the encrypted video information.
  • the decryption key plus policy forms information that must be used in order to decrypt the video.
  • only specified parts or layers of the video are encrypted, such that a reduced resolution or reduced quality version of the video can be played out without the decryption key. This may allow playing black and white or NTSC resolution without the decryption key.
  • the play kernel 400 receives a number of different kinds of information including a play ID 410 which may be a feature vector that indicates the parameters of the environment in which the play kernel 400 resides. These parameters may be any of the parameters described above, including network name, network characteristics, owner name, hardware characteristics, or any other characteristics of the play kernel.
  • the play ID may be for example a feature vector, where different aspects of the vector represent different characteristics of the player.
  • he play kernel also receives the certificate 420 which is the certificate that is stored along with the encrypted video.
  • the certificate may have an applet or other kind of executable code that tests the play kernel to determine if the play kernel will actually execute the policy required by the certificate. For example, this may test to determine if the player has been hacked, or if the player is an unauthorized play kernel, one which has been separately written to attempt to bypass the policy within the certificate. Failure to pass the test in the certificate may result in failure to play the characteristics.
  • Updates may also be downloaded at 430 .
  • the certificate may require updated security from the play kernel.
  • a secure download certificate at 430 may be carried out.
  • Another aspect may require Internet verification every specified amount of time, for example once a week.
  • the Internet verification may be for example via wireless, via wireless telephone, via Wimax, or via wireless network.
  • Each specified amount of time a test is run over the Internet to determine if the play kernel actually is executing specified policies. If the play kernel does not execute the specified policies, then the certificate is deactivated. Otherwise, the certificate is activated for a specified amount of time after which the certificate needs to be reactivated.
  • a play kernel can be used when the user is on a plane or somewhere where they cannot obtain Internet access. However, after a specified amount of time to player must be reactivated.
  • the video may then be decrypted at 450 and played using the decryption information contained within the certificate. If any parts of the test fail, then control passes to 445 which carries out a process according to the failure mode.
  • One process may simply show a black screen or an error screen with an indication that the certificate has failed.
  • Another part of the process may play a reduced quality video, for example only parts of the video, only those parts of the video that are unencrypted, or may play a cross fade between different frames within the video. In this way, the user can view some parts about the video, but not all of it.
  • a screen saver function may enable blanking the screen after a certain amount of time. However, this may lead to the problem that the user does not know that the TV is on.
  • a screen saver function is carried out which enables cross fading between keyframes in a loop at 460 .
  • keyframes for 10 or 20 seconds preceding the pause time, or keyframes requiring a specified amount of change between the pause time and some other amount of time may be collected.
  • a cross fade between the keyframes may be carried out at 460 , or a slide show between the keyframes may be carried out at 460 . This enables what is in effect a screen saving function so that the display screen is not harmed by the continuous frame.
  • One aspect involves determining the owner of the hardware that owns the playing hardware. For example, therefore, a user can own portable players such as an iPod, and can peer-network to their PVR at home, and download the copyrighted material for them to play later on the iPod. Assuming this policy is enabled by the certificate—then this same copyrighted material cannot be played on someone else's player. However, it can be played on the same owner's player. This in effect allows an owner to peer-network to their portable devices, or to their laptops and to be played thereon. However, it prevents that same information from being peer-networked to someone else's iPod or player.
  • the computers described herein may be any kind of computer, either general purpose, or some specific purpose computer such as a workstation.
  • the computer may be a Pentium class computer, running Windows XP or Linux, or may be a Macintosh computer.
  • the computer may also be a handheld computer, such as a PDA, cellphone, or laptop.
  • the programs may be written in C, or Java, Brew or any other programming language.
  • the programs may be resident on a storage medium, e.g., magnetic or optical, e.g. the computer hard drive, a removable disk or media such as a memory stick or SD media, or other removable medium.
  • the programs may also be run over a network, for example, with a server or other machine sending signals to the local machine, which allows the local machine to carry out the operations described herein.

Abstract

The certificate with specified conditions under which copyright did material can be played. Copyrighted material, such as videos are stored in a storage unit. They are stored along with a policy that indicates when the information can be played. The information can, for example be encrypted one stored, and the decryption key is available only when characteristics of the policy are met. When those characteristics are not met, the information can not be retrieved at all or only can be retrieved in some very limited format.

Description

    BACKGROUND
  • Storing a video program for later watching has been a desirable goal of many systems. In the original days of video, the video stream could only be watched if the watcher were available at precisely the time the video stream was being broadcast. Different kinds of media for storing video such as video discs and the like, were eventually invented so that a user could watch video on demand. Videocassette recorders, or VCRs then allowed video to be recorded for time shifting purposes. Even though these devices allowed watchers to fast-forward over the commercials, the U.S. Supreme Court nonetheless found that recording this kind of information for later viewing was in fact “fair use” of the broadcaster's copyright.
  • Technology has made more sophisticated devices available. For example, the personal video recorder or digital video recorder, also known as the home theater PC or HTPC, allows video programming to be copied from a broadcast medium, and played back later. The programs are recorded digitally, and can be randomly selected during playback.
  • With the advent of digital television, the broadcasters and other copyright holders have become increasingly concerned that the personal video recorder can obtain a raw digital version of the transmitted program and use that raw digital information to circumvent the copyright. Different suggestions have emerged for dealing with the copyright issue, but most of these end up putting significant restrictions on the eventual viewing.
    • SUMMARY
  • The present application teaches different components that are usable with personal video recorders. One aspect teaches forming a portion of a recorded program that specifies management of the allowable ways to play the recorded program.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • These and other aspects will now be described with reference to the accompanying drawings, wherein:
  • FIG. 1 shows a block diagram of the computer system;
  • FIG. 2 shows a file system layout for a video;
  • FIG. 3 shows a flowchart of the operation of forming a policy; and
  • FIG. 4 shows a flowchart of playing a file.
    •  DETAILED DESCRIPTION
  • A block diagram of the overall system is shown in FIG. 1. Content 100 is received into a personal video recorder 100 which can be any kind of computer-operated system that receives content, and stores it in some way in its associated storage and/or storage processes. The content may be any kind of multimedia, including video, audio, or other similar program material.
  • 100 shows two PVR storage units 110 and 111, each of which may include a video tuner, control parts, as well as program guides that enables storing information. As well known in the art, there may be multiple different store modules, which enables the unit to record multiple different streams of information at the same time, for example recording from multiple different channels. The PVR storage units such as 110, 111 store the received information as digital information on a digital storage medium such as a hard drive 112. There may be one or many hard drives 112, either globally associated with individual PVR store units, or one individually associated with each PVR store unit.
  • 120 shows the PVR playing module, which receives information from the PVR store module, and formats the stored information for eventual display on a television or other viewing screen shown as 130. The playing module 120 may be associated with or separate from the storage unit(s).
  • A user interface 140 enables interacting with the storing modules 110 and the playing module 120.
  • In the embodiment, a hard drive stores a plurality of files which are managed by the file system. The files generally take the form shown in FIG. 2. The multimedia portion, here video portion 200 of the file 199 includes the video and audio content that was recorded from the program source.
  • In the embodiment, the video that is stored by the PVR storage unit is stored in an “encrypted” form. The word encrypted is used herein to represent any kind of change to the video stream that prevents the video stream from being directly viewed on a player without changing the video stream according to the code that was used to change the original video stream. The encrypted video used herein may be as simply encrypted as a bit shift. It may use a very simple encryption algorithm, such as the CSS algorithm that is used to encrypt the video that is stored on DVDs. It also may use a much more complex algorithm such as a public key algorithm or other.
  • The video 200 is also preferably compressed, with the compression typically being in MPEG-2 or MPEG-4 formats. Higher resolution information, such as high-definition information, may be more aggressively compressed.
  • The video file 199 also includes a header 205 which is typically unencrypted, and gives information about the video. For example, the header may have a file name and date, but it may also include the size, time length, and other information about the video obtained from the program guide information.
  • The video file 199 may also include a video certificate portion shown as 210. This is a special kind of video certificate, quite different than a conventional digital certificate. A digital certificate is an electronic file that includes name, a serial number, expiration dates, a copy of the certificate holder's public key (used for encrypting messages and digital signatures), and a digital signature of the certificate-issuing authority so that a recipient can verify that the certificate is real. Digital certificates may conform to the X.509 standard.
  • The video certificate 210 includes information that tells the player, of whatever form, “how” to decrypt the video, and the conditions under which the video can be decrypted. For example, the certificate may be in the form of an “if . . . then” statement. As an example, the conditions may be in the form of the statement “if (the video is being played on network FX) then, provide the key and allow decrypting with decryption key XY”.
  • The certificate may itself use any kind of encryption technique to protect against surreptitious hacking. For example, the decryption code for the encrypted video 200 may itself be encrypted in a way that can only be received using some kind of secret code, or the like.
  • In any case, the video certificate 210 instructs how to decrypt the encrypted video, but has conditions which specify when the decryption key will be provided—e.g., only when decrypted video is being used in the way intended by the copyright holder.
  • The personal video recorder 100 may also store identifying information about the environment in which the program was recorded. It stores at the minimum information about the device 100 in which storage units 110, 111 are included. The environment may also include an identifier of the network 116 to which the storage unit is attached. The network may be the network over which program information is obtained, for example. The network identifier may include for example, Mac IDs of various devices attached to the network, or computer identifying indicia. It may be as simple as the network name or the owner name. Alternatively, it may be a detailed map of network characteristics.
  • The certificate 210 forms its conditional information the program owner's specifications. The owner specifications may be received as part of the program guide over the network 116, or may be embedded within the raw program data 99 that is eventually recorded. The conditions may specify when it is proper for the video 200 to be played back by a player such as 120, or any other player. Note that the player 120 may be included within the device 100, but may also be a separate player. For example, player 120 may be in a different PVR that is on the same network. It may be in a different PVR that is on a different network, for example when the user is trying to stream the video to their own player such as an iPod or other kind of personal player. The player 120 may also be a player that belongs to someone totally unrelated to the owner of the recorder 110.
  • The certificate indicates when it is okay for a player 120 of any of those types to play the encrypted video.
  • The certificate also includes information from which the decryption key can be obtained, either the key itself, part of the key, or an encrypted version of the key. Exemplary condition statements may allow certain kinds of players. For example, the certificate may say: “if the player is the same device that recorded the program, then playing is okay”.
  • If the player is associated with a different TV on the same household (presumably connected to the same network or a network to which the device has wire connectivity) then playing is okay.
  • If the playing device 120 is owned by the same owner as the owner of the storage unit 110, then the unit may indicate that playing is ok.
  • Some owners may allow the program to be streamed to a personal recorder. If the unit 100 is sold, the system may specify that the new owner can also play the programs.
  • The owner may play the program on unit 100, or some other unit. The owner may be identified for example by a biometric scan for example a fingerprint or other biometric type scan, or by a pin, or by a smartcard, or proximity of a cell phone.
  • In addition, a completely open copyright policy may be in place for example the kind of copyright policy that might be associated with the movie trailer, or with a commercial or the like.
  • The policy can also require testing of the play kernel that must be carried out before playing by the kernel is enabled. This may check for a hacked play kernel, for example.
  • Also, when monitoring networks, it should be understood that the devices associated with the network may change over time when computers are turned on and off, and different devices are changed. The network may be established as being the same network when 40% of the nodes on the network agree or some other percent less than 100%. When some percentage of the networks agree, the device may conclude that the networks are the same.
  • According to an embodiment, some, but not all, of the video is encrypted. The video 200 can be considered as being made up of a number of bit parts shown as 201, 202, 203, 204. Each of these video parts may be considered a frame. In the context of a compressed video sequence, there may be some frames that are more important than others. These more important frames are often called “keyframes” that is frames where the video scene is either completely reconstructed, or where a substantial portion of the video is reconstructed. The keyframes may be at random areas in the video, or may be determined to occur whenever necessary. According to the present system, the only a portion of the video is encrypted. For example, one frame every second may be encrypted, or all the keyframes may be encrypted, or one out of every 10 keyframes may be encrypted. This sufficiently distorts the video so that it can be watched in some form, but will not look distorted. An advantage of this system, however, is that it uses fewer resources are necessary for decrypting video frames. This means that stronger encryption can be used, making it more difficult to thwart the encryption of the file in the video portion 200. Moreover, in this way, encrypted portions of the recorded portion are interspersed between unencrypted portions of the recorded portion.
  • In one embodiment, the video may be encrypted using a combination of different encryption techniques, but only certain frames need to be decrypted in order to play.
  • FIGS. 3 and 4 illustrates a flowchart of operation. FIG. 3 illustrates recording a file, which can be carried out in any of the multiple recording processes 110, 111, under control of the user interface 140. At 300, the program information is received. This can be received as over the air (OTA) programming, over cable, into a satellite, via Wimax or other network receiver, or in any other form. As part of receiving the program, the system must also obtain a policy. The record process 110 preferably operates such that it can not record any program without an associated policy. The policy can be received over the network as part of the program guide information, or can be received as part of the program itself. The policy can be in the form of “if, then” statements as described above, or other form.
  • At 310, an encryption key is generated, and specified parts of the original program are encrypted according to the encryption key. The encryption key may be randomly generated, or may be generated based on characteristics received as part of the policy, or may be encoded based on a public key that is associated with the storage unit 110. It may use a random seed or any other well-known encryption forms. Since in the preferred mode, only a part of the video is encrypted, the encryption may be extremely strong, since it can use significant computing resources. According to another mode, the entire video may be encrypted, using for example, a dedicated processor or process, e.g., using a processor 141.
  • At 315, the information is stored as an encrypted file along with decryption information plus the policy. The decryption information plus policy is formed as a certificate that is associated with the encrypted video information. The decryption key plus policy forms information that must be used in order to decrypt the video.
  • According to another embodiment, only specified parts or layers of the video are encrypted, such that a reduced resolution or reduced quality version of the video can be played out without the decryption key. This may allow playing black and white or NTSC resolution without the decryption key.
  • A flowchart of the player operation is shown in FIG. 4. The play kernel 400 receives a number of different kinds of information including a play ID 410 which may be a feature vector that indicates the parameters of the environment in which the play kernel 400 resides. These parameters may be any of the parameters described above, including network name, network characteristics, owner name, hardware characteristics, or any other characteristics of the play kernel. The play ID may be for example a feature vector, where different aspects of the vector represent different characteristics of the player. he play kernel also receives the certificate 420 which is the certificate that is stored along with the encrypted video. As part of receiving the certificate, the certificate may have an applet or other kind of executable code that tests the play kernel to determine if the play kernel will actually execute the policy required by the certificate. For example, this may test to determine if the player has been hacked, or if the player is an unauthorized play kernel, one which has been separately written to attempt to bypass the policy within the certificate. Failure to pass the test in the certificate may result in failure to play the characteristics.
  • Updates may also be downloaded at 430. For example, the certificate may require updated security from the play kernel. A secure download certificate at 430 may be carried out.
  • Another aspect may require Internet verification every specified amount of time, for example once a week. The Internet verification may be for example via wireless, via wireless telephone, via Wimax, or via wireless network. Each specified amount of time, a test is run over the Internet to determine if the play kernel actually is executing specified policies. If the play kernel does not execute the specified policies, then the certificate is deactivated. Otherwise, the certificate is activated for a specified amount of time after which the certificate needs to be reactivated.
  • In this way, a play kernel can be used when the user is on a plane or somewhere where they cannot obtain Internet access. However, after a specified amount of time to player must be reactivated.
  • When all of the characteristics of the play car are found to be okay at 440, the video may then be decrypted at 450 and played using the decryption information contained within the certificate. If any parts of the test fail, then control passes to 445 which carries out a process according to the failure mode. One process may simply show a black screen or an error screen with an indication that the certificate has failed. Another part of the process may play a reduced quality video, for example only parts of the video, only those parts of the video that are unencrypted, or may play a cross fade between different frames within the video. In this way, the user can view some parts about the video, but not all of it.
  • Conventional PVRs enable a pause function, and one problem is that the paused frame may stay on the screen forever. A screen saver function may enable blanking the screen after a certain amount of time. However, this may lead to the problem that the user does not know that the TV is on.
  • In this embodiment, a screen saver function is carried out which enables cross fading between keyframes in a loop at 460. For example, keyframes for 10 or 20 seconds preceding the pause time, or keyframes requiring a specified amount of change between the pause time and some other amount of time, may be collected. A cross fade between the keyframes may be carried out at 460, or a slide show between the keyframes may be carried out at 460. This enables what is in effect a screen saving function so that the display screen is not harmed by the continuous frame.
  • One aspect involves determining the owner of the hardware that owns the playing hardware. For example, therefore, a user can own portable players such as an iPod, and can peer-network to their PVR at home, and download the copyrighted material for them to play later on the iPod. Assuming this policy is enabled by the certificate—then this same copyrighted material cannot be played on someone else's player. However, it can be played on the same owner's player. This in effect allows an owner to peer-network to their portable devices, or to their laptops and to be played thereon. However, it prevents that same information from being peer-networked to someone else's iPod or player.
  • The above has described storage of video, but the same techniques can be used for storing and retrieving other information, such as music. For example, only parts of the music may be encrypted, only specified parts of the music may be played when the policy is not met, or the music may be played at a significantly reduced resolution.
  • The general structure and techniques, and more specific embodiments which can be used to effect different ways of carrying out the more general goals are described herein.
  • Although only a few embodiments have been disclosed in detail above, other embodiments are possible and the inventor intend these to be encompassed within this specification. The specification describes specific examples to accomplish a more general goal that may be accomplished in another way. This disclosure is intended to be exemplary, and the claims are intended to cover any modification or alternative which might be predictable to a person having ordinary skill in the art. For example, other forms of media can be recorded and handled in this way.
  • Also, the inventor intends that only those claims which use the words “means for” are intended to be interpreted under 35 USC 112, sixth paragraph. Moreover, no limitations from the specification are intended to be read into any claims, unless those limitations are expressly included in the claims. The computers described herein may be any kind of computer, either general purpose, or some specific purpose computer such as a workstation. The computer may be a Pentium class computer, running Windows XP or Linux, or may be a Macintosh computer. The computer may also be a handheld computer, such as a PDA, cellphone, or laptop.
  • The programs may be written in C, or Java, Brew or any other programming language. The programs may be resident on a storage medium, e.g., magnetic or optical, e.g. the computer hard drive, a removable disk or media such as a memory stick or SD media, or other removable medium. The programs may also be run over a network, for example, with a server or other machine sending signals to the local machine, which allows the local machine to carry out the operations described herein.
  • Where a specific numerical value is mentioned herein, it should be considered that the value may be increased or decreased by 20%, while still staying within the teachings of the present application, unless some different range is specifically mentioned.

Claims (24)

1. A method, comprising:
recording a multimedia program on to a recording medium; and
encrypting only a portion of the recorded program on the recording medium in a way that less than all of the recorded program is encrypted on the recording medium and so that encrypted portions of the recorded portion are interspersed between unencrypted portions of the recorded portion.
2. A method as in claim 1, further comprising storing the decryption code on the recording medium.
3. A method as in claim 2, further comprising storing a policy on the recording medium, which policy indicates when the decryption code can be provided to a player for the recorded program.
4. A method as in claim 3, wherein the policy includes information about different environments within which the recorded program can be played.
5. A method as in claim 4, wherein the environments include an owner name representing an owner of playing modules that can play the recorded program.
6. A method as in claim 5, wherein the environments include network characteristics that characterize a network within which the recording program can be played.
7. A method as in claim 6, wherein said policy specifies that a network characteristic must match some, but not all, characteristics of a current network.
8. A method as in claim 1, wherein said multimedia program is a video program.
9. A method as in claim 3, wherein said policy uses a biometric indicative of an authorized user.
10. A method, comprising:
Accessing stored multimedia programming and a stored policy indicating conditions under which the multimedia when the video programming can be played; and
allowing the video programming to be played by a play module based on the policy.
11. A method as in claim 10, wherein the multimedia programming includes a video file, and further comprising storing the policy along with the video file.
12. A method as in claim 10, wherein said multimedia programming is stored in a way that prevents it from being directly played and said policy provides information for allowing playing of the programming.
13. A method as in claim 12, wherein said changing comprises encrypting the multimedia program, and wherein the policy is associated with information for decrypting the encrypted multimedia program.
14. A method as in claim 10, wherein the policy specifies an owner name that represents an owner of a playing module that is authorized to play the recorded program.
15. A method as in claim 10, wherein the policy specifies characteristics of a network connected to a playing module that is authorized to play the recorded program.
16. A method as in claim 15, wherein said allowing comprises allowing the program to be played when some, but not all, of the network characteristics agree with the characteristics specified in said policy.
17. A method as in claim 10, wherein said policy includes specifications for a test of a play module, and said allowing comprises allowing the module to play only when the playing module passes the test.
18. A method as in claim 10, further comprising allowing download of updated characteristics to change the policy.
19. A method as in claim 10, wherein said policy stores information indicative of a biometric of an authorized player, and allows playing by the play module when an obtained biometric matches the stored biometric.
20. A system, comprising:
A multimedia storage unit that stores multimedia information for playing, and stores policy information indicative of conditions under which the multimedia information can be played.
21. A system as in claim 20, wherein at least part of said multimedia information is stored in a changed format that can not be directly played without changing, and said storage unit stores change information indicative of how to play said multimedia information, and provides said change information only under conditions that are based on said policy information.
22. A system as in claim 21, wherein said changed format is an encrypted format.
23. A system as in claim 20, wherein said policy information includes conditions that are specified by a copyright holder.
24. A system as in claim 21, wherein only discrete parts of the multimedia information is stored in the changed format.
US11/565,475 2006-11-30 2006-11-30 Playing control files for personal video recorders Abandoned US20090097645A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US11/565,475 US20090097645A1 (en) 2006-11-30 2006-11-30 Playing control files for personal video recorders
US13/450,905 US8689351B1 (en) 2006-11-30 2012-04-19 Playing control files for personal video recorders

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US11/565,475 US20090097645A1 (en) 2006-11-30 2006-11-30 Playing control files for personal video recorders

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US13/450,905 Continuation US8689351B1 (en) 2006-11-30 2012-04-19 Playing control files for personal video recorders

Publications (1)

Publication Number Publication Date
US20090097645A1 true US20090097645A1 (en) 2009-04-16

Family

ID=40566527

Family Applications (2)

Application Number Title Priority Date Filing Date
US11/565,475 Abandoned US20090097645A1 (en) 2006-11-30 2006-11-30 Playing control files for personal video recorders
US13/450,905 Expired - Fee Related US8689351B1 (en) 2006-11-30 2012-04-19 Playing control files for personal video recorders

Family Applications After (1)

Application Number Title Priority Date Filing Date
US13/450,905 Expired - Fee Related US8689351B1 (en) 2006-11-30 2012-04-19 Playing control files for personal video recorders

Country Status (1)

Country Link
US (2) US20090097645A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120105897A1 (en) * 2010-10-29 2012-05-03 Konica Minolta Business Technologies, Inc. Printing system
WO2013070313A1 (en) * 2011-11-10 2013-05-16 Sony Corporation Network-based revocation, compliance and keying of copy protection systems

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010042043A1 (en) * 1995-02-13 2001-11-15 Intertrust Technologies Corp. Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances
US20030021412A1 (en) * 2001-06-06 2003-01-30 Candelore Brant L. Partial encryption and PID mapping
US20030212824A1 (en) * 2002-04-30 2003-11-13 Fujitsu Limited Environment setting device, environment setting program storage medium, information processing device and environment setting method
US20040028227A1 (en) * 2002-08-08 2004-02-12 Yu Hong Heather Partial encryption of stream-formatted media
US20050086532A1 (en) * 2003-10-21 2005-04-21 International Business Machines Corporation System and method for securely removing content or a device from a content-protected home network
US20050192902A1 (en) * 2003-12-05 2005-09-01 Motion Picture Association Of America Digital rights management using multiple independent parameters
US6963858B2 (en) * 2001-05-31 2005-11-08 Contentguard Holdings, Inc. Method and apparatus for assigning consequential rights to documents and documents having such rights
US20050251690A1 (en) * 2004-04-09 2005-11-10 Sony Corporation Content sharing system, content reproduction apparatus, content recording apparatus, group management server, program, and content reproduction controlling method
US20060048224A1 (en) * 2004-08-30 2006-03-02 Encryptx Corporation Method and apparatus for automatically detecting sensitive information, applying policies based on a structured taxonomy and dynamically enforcing and reporting on the protection of sensitive data through a software permission wrapper
US7171558B1 (en) * 2000-09-22 2007-01-30 International Business Machines Corporation Transparent digital rights management for extendible content viewers
US20070106682A1 (en) * 2005-11-09 2007-05-10 Microsoft Corporation Independent Computation Environment and Data Protection

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020174430A1 (en) * 2001-02-21 2002-11-21 Ellis Michael D. Systems and methods for interactive program guides with personal video recording features
US7318236B2 (en) * 2003-02-27 2008-01-08 Microsoft Corporation Tying a digital license to a user and tying the user to multiple computing devices in a digital rights management (DRM) system
JP2005353210A (en) * 2004-06-11 2005-12-22 Sony Corp Data processor and data processing method, program and program recording medium, and data recording medium
US7337147B2 (en) * 2005-06-30 2008-02-26 Microsoft Corporation Dynamic digital content licensing

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010042043A1 (en) * 1995-02-13 2001-11-15 Intertrust Technologies Corp. Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances
US7171558B1 (en) * 2000-09-22 2007-01-30 International Business Machines Corporation Transparent digital rights management for extendible content viewers
US6963858B2 (en) * 2001-05-31 2005-11-08 Contentguard Holdings, Inc. Method and apparatus for assigning consequential rights to documents and documents having such rights
US20030021412A1 (en) * 2001-06-06 2003-01-30 Candelore Brant L. Partial encryption and PID mapping
US20030212824A1 (en) * 2002-04-30 2003-11-13 Fujitsu Limited Environment setting device, environment setting program storage medium, information processing device and environment setting method
US20040028227A1 (en) * 2002-08-08 2004-02-12 Yu Hong Heather Partial encryption of stream-formatted media
US20050086532A1 (en) * 2003-10-21 2005-04-21 International Business Machines Corporation System and method for securely removing content or a device from a content-protected home network
US20050192902A1 (en) * 2003-12-05 2005-09-01 Motion Picture Association Of America Digital rights management using multiple independent parameters
US20050251690A1 (en) * 2004-04-09 2005-11-10 Sony Corporation Content sharing system, content reproduction apparatus, content recording apparatus, group management server, program, and content reproduction controlling method
US20060048224A1 (en) * 2004-08-30 2006-03-02 Encryptx Corporation Method and apparatus for automatically detecting sensitive information, applying policies based on a structured taxonomy and dynamically enforcing and reporting on the protection of sensitive data through a software permission wrapper
US20070106682A1 (en) * 2005-11-09 2007-05-10 Microsoft Corporation Independent Computation Environment and Data Protection

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120105897A1 (en) * 2010-10-29 2012-05-03 Konica Minolta Business Technologies, Inc. Printing system
US8780375B2 (en) * 2010-10-29 2014-07-15 Konica Minolta Business Technologies, Inc. Printing system
WO2013070313A1 (en) * 2011-11-10 2013-05-16 Sony Corporation Network-based revocation, compliance and keying of copy protection systems
CN103201717A (en) * 2011-11-10 2013-07-10 索尼公司 Network-based revocation, compliance and keying of copy protection systems
US9032494B2 (en) * 2011-11-10 2015-05-12 Sony Corporation Network-based revocation, compliance and keying of copy protection systems

Also Published As

Publication number Publication date
US8689351B1 (en) 2014-04-01

Similar Documents

Publication Publication Date Title
KR100749947B1 (en) System, method and apparatus for securely providing content viewable on a secure device
US7356143B2 (en) System, method, and apparatus for securely providing content viewable on a secure device
US8234217B2 (en) Method and system for selectively providing access to content
US8270811B2 (en) Information management method, information playback apparatus, and information management apparatus
US20080101604A1 (en) Self-protecting digital content
US20040073954A1 (en) Method of protecting recorded multimedia content against unauthorized duplication
US20070239948A1 (en) Data processor
JPWO2005122165A1 (en) Recording apparatus and recording method
JP2006501764A (en) Content playback apparatus and trick mode playback system
US7715558B2 (en) Encrypted-content recording medium, playback apparatus, and playback method
US20070244827A1 (en) Method for Securing a Hard Drive and Preventing Cloning or Tampering Attacks
JP5296327B2 (en) Method and program for playing broadcast program content
US7502294B2 (en) Information recording and playback apparatus, content management method, and content management program capable of preventing illegal copying of content
JP2007164377A5 (en)
US8438651B2 (en) Data reproducing method, data recording/ reproducing apparatus and data transmitting method
JP2007164377A (en) Data processor and data processing method
US20050165689A1 (en) Allowing recording based on regions
US8689351B1 (en) Playing control files for personal video recorders
US20060077812A1 (en) Player/recorder, contents playing back method and contents recording method
JP2006195973A (en) Data processing apparatus
KR100745280B1 (en) Safe apparatus and method for broadcasting contents
JP2004205723A (en) Digital information recording device, digital information reproducing device, digital information recording/reproducing device, digital information recording method, digital information reproducing method, and digital information recording/reproducing method
JP2012160944A (en) Key information management system, recorder/reproducer, and key information management device
JP2005332092A (en) Content processing system, content video-recording system, content reproduction device, content processing method, and computer program
JP5522644B2 (en) Digital content transmission / reception system and digital content transmission / reception method

Legal Events

Date Code Title Description
AS Assignment

Owner name: "DURABLE" HUNKE & JOCHHEIM GMBH KG, GERMANY

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:HORST-WERNER MAIER-HUNKE;REEL/FRAME:017498/0592

Effective date: 20060111

AS Assignment

Owner name: HARRIS TECHNOLOGY, LLC, CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:HARRIS, SCOTT C;REEL/FRAME:022050/0298

Effective date: 20090101

Owner name: HARRIS TECHNOLOGY, LLC,CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:HARRIS, SCOTT C;REEL/FRAME:022050/0298

Effective date: 20090101

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION