WO2004001745A1 - Enabling use of encrypted data - Google Patents

Enabling use of encrypted data Download PDF

Info

Publication number
WO2004001745A1
WO2004001745A1 PCT/GB2003/002707 GB0302707W WO2004001745A1 WO 2004001745 A1 WO2004001745 A1 WO 2004001745A1 GB 0302707 W GB0302707 W GB 0302707W WO 2004001745 A1 WO2004001745 A1 WO 2004001745A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
encrypted
playback
computer system
audio
Prior art date
Application number
PCT/GB2003/002707
Other languages
French (fr)
Inventor
Ian Douglas Spero
Original Assignee
Spero Communications Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Spero Communications Limited filed Critical Spero Communications Limited
Priority to AU2003236909A priority Critical patent/AU2003236909A1/en
Publication of WO2004001745A1 publication Critical patent/WO2004001745A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • G11B20/00217Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier the cryptographic key used for encryption and/or decryption of contents recorded on or reproduced from the record carrier being read from a specific source
    • G11B20/00224Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier the cryptographic key used for encryption and/or decryption of contents recorded on or reproduced from the record carrier being read from a specific source wherein the key is obtained from a remote server
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • G11B20/00485Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
    • G11B20/00492Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted
    • G11B20/00528Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted wherein each title is encrypted with a separate encryption key for each title, e.g. title key for movie, song or data file
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00659Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a control step which is implemented as an executable file stored on the record carrier
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00666Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a step of erasing or nullifying data, e.g. data being overwritten with a random string
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/00746Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/00746Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number
    • G11B20/00797Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of times a content can be reproduced, e.g. using playback counters
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00731Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
    • G11B20/0084Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific time or date
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00855Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a step of exchanging information with a remote server
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00978Circuits for prevention of unauthorised reproduction or copying, e.g. piracy wherein the record carrier stores a trial version of a content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/104Grouping of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/101Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management

Definitions

  • the present invention relates to method of enabling use or playbac of encrypted data, to a medium carrying encrypted data and to associated playback apparatus.
  • the invention relates to encrypted audio and/or video data carried on an optical disk such as a Compact Disk or Digital Versatile Disk.
  • an optical disk such as a Compact Disk or Digital Versatile Disk.
  • telecommunications means such as over the Internet or cell phone networks, rather than by more traditional physical means including analogue audio tapes, records and Compact Disks.
  • a principal problem with such telecommunications distribution is the ease with which the delivered electronic data can be subsequently copied and the associated rights abused, usually by breach of copyright and the contract between the supplier and consumer.
  • Data rights management systems such as the Electronic Media Management System (EMMS) developed by IBM encrypt electronic data, and in particular audio and video data. By controlling the decryption process, such systems seek to control the extent to which a consumer can replay and make further copies of the electronic data.
  • EMMS Electronic Media Management System
  • the present invention provides a method of enabling playback of encrypted audio and/or video and/or other data by a client computer system, comprising the steps of providing a data carrying medium comprising said encrypted data for access by said client computer system; receiving request data at a server computer system, over a network from said client computer system; in response to receiving said request data, transmitting permission data from said server computer system over said network to said client computer system, said permission data being arranged to enable decryption and use or playback of said data by said client computer system.
  • the data carrying medium is an optical disk such as a Compact Disk or Digital Versatile Disk.
  • unencrypted audio and/or video, and/or other data is also written on the data carrying medium, for example audio and/or video data for playback using a conventional domestic CD or DVD player.
  • the permission data transmitted from the server computer to the client computer contains decryption key data required to carry out decryption of the encrypted data by the client computer system.
  • the data carrying medium comprises data which restricts the decryption and/or playback or other use of the encrypted data. For example, the number of times which the data may be played or used, or a time period within which it may be played or used may be restricted.
  • the data carrying medium also comprises computer software code which, when executed on the client computer system, is adapted to carry out or enable the decryption and use/playback processes.
  • the decryption may be reliant on a decryption key or keys received from the server computer system.
  • this computer software code is also adapted to direct the transmission of the request data to the server computer and to direct receipt of the permission data.
  • the computer software provided on the data carrying medium may also be operable to provide a facility for ordering, over the network, a data product such as an electronic data product or a Compact Disk or Digital Versatile Disk, and in particular such a product associated with the encrypted audio and/or visual data.
  • the client computer system may be required to provide particular items of registration data when sending the request to the server computer system for authorisation or a decryption key to decrypt and playback or use the data on the data carrying medium.
  • the invention also provides a data carrying medium comprising unencrypted audio and/or video or other data configured for playback or use by a conventional playback device, such as a domestic CD or DVD player, and encrypted audio and/or video or other data configured for restricted playback by a decrypting playback device, such as an appropriately programmed personal computer.
  • a decrypting playback device is provided through the installation on a personal computer of appropriate playback computer software code provided on the data carrying medium.
  • the playback computer software code comprises program code for directing requests, across a network to a server computer, for authorisation to decrypt at least a part of said encrypted data.
  • Such authorisation may include a decryption key, transmitted from the server to the executing playback computer software, to enable decryption of the encrypted data .
  • the invention also provides a method of promoting a product, and in particular an audio or video product by providing to potential customers a data medium on which a portion, or the whole of the product is written in an encrypted format.
  • the portion or the whole of the product may, for example, be one or more music tracks from a music album.
  • the encrypted data is only accessible to a potential customer by using appropriate hardware and/or software, for example playback software executable on a personal computer and adapted to decrypt the data.
  • the data medium may be supplied, for example, as an attachment to or an inclusion with a publication such as a newspaper or a magazine.
  • the data medium may be a Compact Disk or a Digital Versatile Disk, the encrypted data comprising audio and/or video data.
  • the playback software is configured to decrypt and enable playback of the encrypted data, but preferably only allows limited or restricted playback, for example only allowing a predetermined number of playbacks or only allowing playback prior to a predetermined date and/or time.
  • the predetermined factors are preferably encoded on the data medium in association with the encrypted data, but could be obtained from a remote computer server system over a network or could be fixed or determined by data associated with the playback software.
  • the playback software is executed on a conventional personal computer having a peripheral device operable to read the data medium, and one or more peripheral devices adapted to effect the playback.
  • the playback software may be provided on the data medium for installation on the personal computer or similar device, or may be pre-installed, or available from other sources for installation on the personal computer. Playback may be limited, prevented or otherwise controlled on the basis of the user obtaining a key, for example a key for decrypting the encrypted data.
  • the playback software may be operable to obtain the key from a remote server computer accessible over a network such as the Internet. Supply of the key by the server may be dependent on the user providing user data, for example by means of an electronic registration process.
  • Such user data will typically comprise at least some of the user's name, address, age, music or video preferences and so on. Even when the key has been supplied by the server to the user's computer, access to the encrypted data may still be limited, for example to a predetermined number of playbacks.
  • the playback software may also enable or prompt the user to order an unrestricted and/or full copy of the product, for example over the Internet.
  • This functionality may be provided as part of the playback software itself or partly or fully by way of configuration data usable by a conventional Internet browser or other software executing on the user's computer. Equally, there may be provided means enabling the user to pre-pay, for example over the Internet, for a copy of the unrestricted and/or full product, to be collected from a retail outlet.
  • the data medium may also contain unencrypted data, such as audio or video data, and in particular such data forming a portion of the relevant product, which may be played back by a conventional domestic playback device such as a conventional CD player or DVD player.
  • a recipient of the data medium can quickly and easily gain access to a first portion of the product before deciding, or to be encouraged to use the data medium with a personal computer to gain access to further parts or the whole of the product, at least to a limited extent.
  • While the invention is particularly applicable to the distribution of audio and/or video data, it may also be applied to the distribution of other data types, including, but not limited to text, images and software code, for example interactive software such as computer games.
  • an optical disk and in particular a Compact Disk 10.
  • Three groups of data stored on the Compact Disk 10 are illustrated.
  • An unencrypted soundtrack data group 12 contains audio data which can be read and played back using a conventional domestic CD or DVD player 20. This data is encoded using the standard red book encoding used for conventional audio CDs.
  • An encrypted soundtrack group 14 contains audio data which cannot be played back on a conventional domestic CD or DVD player 20. Instead, this encrypted soundtrack group 14 is read, decrypted and played back using appropriate software executing on a personal computer 30 equipped with a CD ROM reader and audio playback peripherals, typically comprising a sound card and loudspeakers. If the subject data is video instead of just audio data, playback requires appropriate video playback facilities, present on most personal computers .
  • An operational data group 16 stored on the Compact Disk 10 contains playback software for installation on the personal computer 30, for carrying out the decryption and playback functions.
  • the playback software allows only restricted playback of the encrypted soundtracks 14.
  • the extent to which playback is restricted is determined by data held on the Compact Disk 10, either in the operation data group 16, or more preferably embedded within the encrypted sound track group 14.
  • Playback may be restricted, for example, to a predetermined number of playbacks or prior to a predetermined date and/or time. Copying of the soundtracks when decrypted is preferably prevented or protected against by the playback software executing on the personal computer 30.
  • Playback of the encrypted soundtracks 14 may also be restricted according to access permissions gained by communication of the personal computer 30 over a network such as the Internet 40 with a distant server computer 50.
  • access permissions take the form of a key transmitted to the personal computer 30 by the server computer 50, the key being required to effect part or all of the decryption of the encrypted soundtracks 14.
  • the user of the personal computer 30 is required to complete a registration process, sending user data such as his name, address, age and musical preferences to the server computer 50.
  • the registration process and process of obtaining the key may be directed, at the personal computer 30, by the playback software, or partly or wholly by other software such as a conventional Internet browser, preferably configured to carry out the relevant processes by data and/or software held on the Compact Disk 10.
  • the user gains access to encrypted soundtracks by effecting one or more financial transactions with the server computer, which provides permission data such as appropriate decryption keys for parts of the encrypted soundtrack data according to the financial transactions.
  • the permissions accorded may or may not be time limited, for example to extend already payed for useage time or to gain access to new material.
  • the content of the unencrypted soundtrack data group 12 is not protected in any way, being set out according to the red book audio CD Standard.
  • the encrypted sound track data group 14 contains audio tracks wrapped in the IBM EMMS Superdistribution format. The data in this group remains encrypted at all times on the personal computer 30.
  • the EMMS tamper-resistant technology resists hack attempts to step through playback code or to use a debugger to control execution in attempts to discover decryption keys, decryption algorithms, or to obtain decrypted content from memory buffers on the personal computer 30 during playback. Audio content is kept encrypted until it is fed to the personal computer sound card for playback. Of course, it is very difficult to prevent copying of the sound card output, which is typically in an analogue form.
  • EMMS attempts to prohibit recording during playback when it detects recording applications running on the same computer system.
  • Content and decryption keys stored in the end user computer system are uniquely encrypted for that system so that each end user has a different encrypted version of each audio track.
  • the user is restricted to only four playbacks of the encrypted audio data, or alternatively playback until a predetermined date, although a variety of other schemes and parameters could be used.
  • the personal computer 10 may be enabled to allow copying and sending to others, for example by e-mail, of encrypted soundtrack data from the Compact Disk 10. If recipients of such copied or e-mailed data have appropriate playback software they will also be able to play back the encrypted soundtracks subject to the predetermined playback limitations, which are stored with the soundtrack data.
  • the EMMS technology prevents circumvention of the playback restrictions by deleting and reloading soundtracks or by resetting the system clock to attempt to regain access to a track for which a time period has expired.
  • the playback software is a fully integrated multimedia application/player which provides embedded and dynamic access to free and DRM/EMMS protected content including music, video and metadata (e.g. text, still and animated images, computer software and so on) .
  • Quicktime video software technology is incorporated for providing video playback and Dolby and/or CODEC technology is incorporated for supporting audio playback.
  • the Compact Disk 10 of the preferred embodiment contains rights protected and non-rights protected content and data.
  • the online registration process is adapted to capture marketing data, and on completion releases all DRM/EMMS protected content on the Compact Disk through the download of a permission key.
  • Internet access is facilitated through an inbuilt browser window in the playback software allowing a user to access the Internet from within the playback environment .
  • an optical disk is attached to or enclosed with a publication such as a newspaper or magazine.
  • the optical disk contains one or more soundtracks which can be played on a conventional domestic CD or DVD player to provide the consumer with a taster and to encourage them to proceed to use the disk in their personal computer.
  • the disk may auto- install the appropriate playback software and guide the user through the registration process, in communication with a server computer over the Internet, in order to obtain the appropriate permission (s) and/or key(s) to decrypt protected data on the disk. In this way, the user may obtain full or limited access to audio/video data on the disk in exchange for providing marketing data.
  • the software provided on the disk may also invite the user to order the full product which is being promoted by the disk.
  • the full product could be delivered as a conventional CD or other optical disk, or could be delivered over the Internet as an electronic product.
  • the server ' computer or a related computer system may be programmed to subsequently e-mail a user who does not order the product, to provide them with a further opportunity to order, perhaps also providing electronic permissions to provide further or continued access to part or all of the encrypted data on the disk.
  • the technology may also be advantageously used to promote or sell a media product by providing a part of the product unencrypted and access free, and providing access to other parts of the product only on payment of a fee or fees, or an completion of a particular transaction.
  • a CD may contain a complete musical album, but only one or a few tracks are unencrypted and immediately playable, payment and obtaining one or more decryption keys being required to gain access to further tracks. Such access may be time or repeat restricted as discussed above. - 10 - (2/2)
  • the recipient of a compact disc 10 of the preferred embodiment, or other equivalent media may wish to share the content or experience with others.
  • "send-to-friend" type software is provided which can be used by a user to forward a replication element to another person, computer or other terminal, for example by email or SMS.
  • the other terminal may be a mail server or client, a mobile phone, a personal digital assistant or similar.
  • the replication element may include, for example, an executable software stub, telephone number or HTML address .
  • the other terminal is enabled to access a mirror of at least a part of the data, preferably including some or all of the executable code held on the original CD or equivalent media. Such a mirror may be held on a server computer accessible over the public Internet or telephone network.
  • a particular feature of the described technology is that free or easily accessible data tracks encourage a user to register electronically to obtain further data, which may be free or paid for.
  • the registration process enables marketing data to be gathered and can also be used to encourage a user to buy a complete product.
  • a user is enabled to playback restricted data elements, such as audio tracks, only a limited number of times, for example four times.
  • a Flash (RTM) based system may be used for restricting playback, as well as for presenting tracks and interface elements to a user.
  • RTM Flash
  • Other software options are also available to the skilled person.

Abstract

There is provided a data carrying medium comprising both unencrypted audio or video data configured for playback by a conventional playback device and encrypted audio or video data configured for restricted playback by decrypting playback device. A client terminal may be used to playback the unencrypted data. To playback the encrypted data the terminal sends a request over a network to receive permission data arranged to enable the terminal to decrypt and use at least part of the encrypted data on the data carrying medium. The invention may particularly be used for the promotional distribution of music and video products.

Description

ENABLING USE OF ENCRYPTED DATA
The present invention relates to method of enabling use or playbac of encrypted data, to a medium carrying encrypted data and to associated playback apparatus. In particular, but not exclusively, the invention relates to encrypted audio and/or video data carried on an optical disk such as a Compact Disk or Digital Versatile Disk. Much effort has been expended in recent years in seeking techniques for effective commercial distribution of valuable electronic data by telecommunications means, such as over the Internet or cell phone networks, rather than by more traditional physical means including analogue audio tapes, records and Compact Disks. A principal problem with such telecommunications distribution is the ease with which the delivered electronic data can be subsequently copied and the associated rights abused, usually by breach of copyright and the contract between the supplier and consumer. Data rights management systems such as the Electronic Media Management System (EMMS) developed by IBM encrypt electronic data, and in particular audio and video data. By controlling the decryption process, such systems seek to control the extent to which a consumer can replay and make further copies of the electronic data.
Despite the recent dramatic rise in the use of telecommunications for retail and data distribution purposes, physical media such as Compact Disks remain by far the most commercially important retail mechanism for audio and video products. In consequence, conventional domestic playback devices such as standalone CD and DVD players remain much more popular than, for example, appropriately programmed personal computers for playback of audio and video products . The present invention provides a method of enabling playback of encrypted audio and/or video and/or other data by a client computer system, comprising the steps of providing a data carrying medium comprising said encrypted data for access by said client computer system; receiving request data at a server computer system, over a network from said client computer system; in response to receiving said request data, transmitting permission data from said server computer system over said network to said client computer system, said permission data being arranged to enable decryption and use or playback of said data by said client computer system.
Preferably, the data carrying medium is an optical disk such as a Compact Disk or Digital Versatile Disk.
Preferably, unencrypted audio and/or video, and/or other data is also written on the data carrying medium, for example audio and/or video data for playback using a conventional domestic CD or DVD player.
Preferably, the permission data transmitted from the server computer to the client computer contains decryption key data required to carry out decryption of the encrypted data by the client computer system. Preferably, the data carrying medium comprises data which restricts the decryption and/or playback or other use of the encrypted data. For example, the number of times which the data may be played or used, or a time period within which it may be played or used may be restricted.
Preferably, the data carrying medium also comprises computer software code which, when executed on the client computer system, is adapted to carry out or enable the decryption and use/playback processes. The decryption may be reliant on a decryption key or keys received from the server computer system. Preferably, this computer software code is also adapted to direct the transmission of the request data to the server computer and to direct receipt of the permission data. Advantageously, the computer software provided on the data carrying medium may also be operable to provide a facility for ordering, over the network, a data product such as an electronic data product or a Compact Disk or Digital Versatile Disk, and in particular such a product associated with the encrypted audio and/or visual data.
Advantageously, the client computer system may be required to provide particular items of registration data when sending the request to the server computer system for authorisation or a decryption key to decrypt and playback or use the data on the data carrying medium.
The invention also provides a data carrying medium comprising unencrypted audio and/or video or other data configured for playback or use by a conventional playback device, such as a domestic CD or DVD player, and encrypted audio and/or video or other data configured for restricted playback by a decrypting playback device, such as an appropriately programmed personal computer. Preferably, the decrypting playback device is provided through the installation on a personal computer of appropriate playback computer software code provided on the data carrying medium. Preferably, the playback computer software code comprises program code for directing requests, across a network to a server computer, for authorisation to decrypt at least a part of said encrypted data. Such authorisation may include a decryption key, transmitted from the server to the executing playback computer software, to enable decryption of the encrypted data . The invention also provides a method of promoting a product, and in particular an audio or video product by providing to potential customers a data medium on which a portion, or the whole of the product is written in an encrypted format. The portion or the whole of the product may, for example, be one or more music tracks from a music album. The encrypted data is only accessible to a potential customer by using appropriate hardware and/or software, for example playback software executable on a personal computer and adapted to decrypt the data. The data medium may be supplied, for example, as an attachment to or an inclusion with a publication such as a newspaper or a magazine. Typically, the data medium may be a Compact Disk or a Digital Versatile Disk, the encrypted data comprising audio and/or video data. The playback software is configured to decrypt and enable playback of the encrypted data, but preferably only allows limited or restricted playback, for example only allowing a predetermined number of playbacks or only allowing playback prior to a predetermined date and/or time. The predetermined factors are preferably encoded on the data medium in association with the encrypted data, but could be obtained from a remote computer server system over a network or could be fixed or determined by data associated with the playback software.
Typically, the playback software is executed on a conventional personal computer having a peripheral device operable to read the data medium, and one or more peripheral devices adapted to effect the playback. The playback software may be provided on the data medium for installation on the personal computer or similar device, or may be pre-installed, or available from other sources for installation on the personal computer. Playback may be limited, prevented or otherwise controlled on the basis of the user obtaining a key, for example a key for decrypting the encrypted data. The playback software may be operable to obtain the key from a remote server computer accessible over a network such as the Internet. Supply of the key by the server may be dependent on the user providing user data, for example by means of an electronic registration process. Such user data will typically comprise at least some of the user's name, address, age, music or video preferences and so on. Even when the key has been supplied by the server to the user's computer, access to the encrypted data may still be limited, for example to a predetermined number of playbacks.
The playback software, or associated software, may also enable or prompt the user to order an unrestricted and/or full copy of the product, for example over the Internet. This functionality may be provided as part of the playback software itself or partly or fully by way of configuration data usable by a conventional Internet browser or other software executing on the user's computer. Equally, there may be provided means enabling the user to pre-pay, for example over the Internet, for a copy of the unrestricted and/or full product, to be collected from a retail outlet.
Advantageously, the data medium may also contain unencrypted data, such as audio or video data, and in particular such data forming a portion of the relevant product, which may be played back by a conventional domestic playback device such as a conventional CD player or DVD player. In this way, a recipient of the data medium can quickly and easily gain access to a first portion of the product before deciding, or to be encouraged to use the data medium with a personal computer to gain access to further parts or the whole of the product, at least to a limited extent.
While the invention is particularly applicable to the distribution of audio and/or video data, it may also be applied to the distribution of other data types, including, but not limited to text, images and software code, for example interactive software such as computer games.
Embodiments of the present invention will now be described, by way of example, with reference to the accompanying drawing which illustrates a data carrying medium according to the invention along with associated apparatus for its use.
Referring to the Figure, there is shown an optical disk, and in particular a Compact Disk 10. Three groups of data stored on the Compact Disk 10 are illustrated. An unencrypted soundtrack data group 12 contains audio data which can be read and played back using a conventional domestic CD or DVD player 20. This data is encoded using the standard red book encoding used for conventional audio CDs.
An encrypted soundtrack group 14 contains audio data which cannot be played back on a conventional domestic CD or DVD player 20. Instead, this encrypted soundtrack group 14 is read, decrypted and played back using appropriate software executing on a personal computer 30 equipped with a CD ROM reader and audio playback peripherals, typically comprising a sound card and loudspeakers. If the subject data is video instead of just audio data, playback requires appropriate video playback facilities, present on most personal computers .
An operational data group 16 stored on the Compact Disk 10 contains playback software for installation on the personal computer 30, for carrying out the decryption and playback functions.
The playback software allows only restricted playback of the encrypted soundtracks 14. The extent to which playback is restricted is determined by data held on the Compact Disk 10, either in the operation data group 16, or more preferably embedded within the encrypted sound track group 14. Playback may be restricted, for example, to a predetermined number of playbacks or prior to a predetermined date and/or time. Copying of the soundtracks when decrypted is preferably prevented or protected against by the playback software executing on the personal computer 30.
Playback of the encrypted soundtracks 14 may also be restricted according to access permissions gained by communication of the personal computer 30 over a network such as the Internet 40 with a distant server computer 50. In the preferred embodiment, such access permissions take the form of a key transmitted to the personal computer 30 by the server computer 50, the key being required to effect part or all of the decryption of the encrypted soundtracks 14. Before receiving the key the user of the personal computer 30 is required to complete a registration process, sending user data such as his name, address, age and musical preferences to the server computer 50. The registration process and process of obtaining the key may be directed, at the personal computer 30, by the playback software, or partly or wholly by other software such as a conventional Internet browser, preferably configured to carry out the relevant processes by data and/or software held on the Compact Disk 10.
In an alternative embodiment, the user gains access to encrypted soundtracks by effecting one or more financial transactions with the server computer, which provides permission data such as appropriate decryption keys for parts of the encrypted soundtrack data according to the financial transactions. The permissions accorded may or may not be time limited, for example to extend already payed for useage time or to gain access to new material.
In the preferred embodiment the content of the unencrypted soundtrack data group 12 is not protected in any way, being set out according to the red book audio CD Standard. The encrypted sound track data group 14 contains audio tracks wrapped in the IBM EMMS Superdistribution format. The data in this group remains encrypted at all times on the personal computer 30. The EMMS tamper-resistant technology resists hack attempts to step through playback code or to use a debugger to control execution in attempts to discover decryption keys, decryption algorithms, or to obtain decrypted content from memory buffers on the personal computer 30 during playback. Audio content is kept encrypted until it is fed to the personal computer sound card for playback. Of course, it is very difficult to prevent copying of the sound card output, which is typically in an analogue form. EMMS attempts to prohibit recording during playback when it detects recording applications running on the same computer system. Content and decryption keys stored in the end user computer system are uniquely encrypted for that system so that each end user has a different encrypted version of each audio track. In the preferred embodiment the user is restricted to only four playbacks of the encrypted audio data, or alternatively playback until a predetermined date, although a variety of other schemes and parameters could be used.
The personal computer 10 may be enabled to allow copying and sending to others, for example by e-mail, of encrypted soundtrack data from the Compact Disk 10. If recipients of such copied or e-mailed data have appropriate playback software they will also be able to play back the encrypted soundtracks subject to the predetermined playback limitations, which are stored with the soundtrack data. The EMMS technology prevents circumvention of the playback restrictions by deleting and reloading soundtracks or by resetting the system clock to attempt to regain access to a track for which a time period has expired.
In the preferred embodiment, the playback software is a fully integrated multimedia application/player which provides embedded and dynamic access to free and DRM/EMMS protected content including music, video and metadata (e.g. text, still and animated images, computer software and so on) . Quicktime video software technology is incorporated for providing video playback and Dolby and/or CODEC technology is incorporated for supporting audio playback. The Compact Disk 10 of the preferred embodiment contains rights protected and non-rights protected content and data. The online registration process is adapted to capture marketing data, and on completion releases all DRM/EMMS protected content on the Compact Disk through the download of a permission key. Internet access is facilitated through an inbuilt browser window in the playback software allowing a user to access the Internet from within the playback environment . The technology described above may advantageously be used to promote a media product such as a musical album or a video DVD. Typically, an optical disk is attached to or enclosed with a publication such as a newspaper or magazine. The optical disk contains one or more soundtracks which can be played on a conventional domestic CD or DVD player to provide the consumer with a taster and to encourage them to proceed to use the disk in their personal computer. When used on the personal computer the disk may auto- install the appropriate playback software and guide the user through the registration process, in communication with a server computer over the Internet, in order to obtain the appropriate permission (s) and/or key(s) to decrypt protected data on the disk. In this way, the user may obtain full or limited access to audio/video data on the disk in exchange for providing marketing data. The software provided on the disk may also invite the user to order the full product which is being promoted by the disk. The full product could be delivered as a conventional CD or other optical disk, or could be delivered over the Internet as an electronic product. The server' computer or a related computer system may be programmed to subsequently e-mail a user who does not order the product, to provide them with a further opportunity to order, perhaps also providing electronic permissions to provide further or continued access to part or all of the encrypted data on the disk.
The technology may also be advantageously used to promote or sell a media product by providing a part of the product unencrypted and access free, and providing access to other parts of the product only on payment of a fee or fees, or an completion of a particular transaction. For example, a CD may contain a complete musical album, but only one or a few tracks are unencrypted and immediately playable, payment and obtaining one or more decryption keys being required to gain access to further tracks. Such access may be time or repeat restricted as discussed above. - 10 - (2/2)
The recipient of a compact disc 10 of the preferred embodiment, or other equivalent media, may wish to share the content or experience with others. For this purpose, "send-to-friend" type software is provided which can be used by a user to forward a replication element to another person, computer or other terminal, for example by email or SMS. The other terminal may be a mail server or client, a mobile phone, a personal digital assistant or similar. The replication element may include, for example, an executable software stub, telephone number or HTML address . When received at the other terminal the other terminal is enabled to access a mirror of at least a part of the data, preferably including some or all of the executable code held on the original CD or equivalent media. Such a mirror may be held on a server computer accessible over the public Internet or telephone network.
A particular feature of the described technology is that free or easily accessible data tracks encourage a user to register electronically to obtain further data, which may be free or paid for. The registration process enables marketing data to be gathered and can also be used to encourage a user to buy a complete product. In some embodiments, even after registration, a user is enabled to playback restricted data elements, such as audio tracks, only a limited number of times, for example four times.
Instead of using EMMS, a Flash (RTM) based system may be used for restricting playback, as well as for presenting tracks and interface elements to a user. Other software options are also available to the skilled person.

Claims

- 11CLAIMS
1. A method of enabling use of encrypted data by a client computer system, comprising the steps of: providing a data carrying medium comprising said encrypted data for access by said client computer system; receiving request data at a server computer system, over a network from said client computer system; in response to receiving said request data, transmitting permission data from said server computer system over said network to said client computer system, said permission data being arranged to enable decryption and use of at least a part of said data by said client computer system.
2. The method of claim 1 further comprising the step of providing unencrypted data on said data carrying medium.
3. The method of any preceding claims wherein said permission data comprises decryption key data required to carry out decryption of said encrypted data.
4. The method of any preceding claim further comprising the step of encoding on said data carrying medium control data which restricts decryption and/or use of said encrypted data by said client computer system.
5. The method of any preceding claim further comprising the step of providing on said data carrying medium computer software code which, when executed on 12
said client computer system, is operable to carry out decryption and enable use of said encrypted data.
6. The method of claim 5 wherein said computer software code is further operable to direct transmission of said request data to said server computer system and to receive said permission data from said server computer system.
7. The method of either of claims 5 or 6 wherein said computer software is further operable, when executed on said client computer system, to provide a facility for ordering, over said network, a data product associated with said encrypted data.
8. The method of any preceding claim wherein said encrypted data is protected by an electronic media management system.
9. The method of any preceding claim wherein said request data includes registration data relating to the user of the client computer system.
10. The method of any of claims 1 to 9 wherein said encrypted data comprises at least one of encrypted audio and encrypted video data.
11. The method of claim 11 wherein the step of enabling use of said audio and/or video data comprises enabling playback of said data.
12. The method of any of claims 1 to 9 wherein said encrypted data comprises a software product.
13. A data carrying medium comprising: unencrypted audio and/or video data configured for playback by a conventional playback device; and 13
encrypted audio and/or video data configured for restricted playback by a decrypting playback device.
14. The data carrying medium of claim 13 further comprising playback computer software code which, when installed on a suitable computer system, causes said computer system to be operable as said decrypting playback device.
15. The data carrying medium of claim 14 wherein said playback computer software code comprises program code for directing a request, across a network to a server computer, for authorisation to decrypt said encrypted audio and/or visual data.
16. The data carrying medium of claim 15 wherein said playback computer software code comprises program code for receiving, across a network from a server computer, decryption key data for decryption of said encrypted audio and/or video data, in response to said request.
17. The data carrying medium of claim 16 wherein said playback computer software code is operable to forward to said server computer registration data relating to a user of the software code in association with the request for authorisation.
18. Playback apparatus comprising: a reading device for reading encrypted audio and/or video data from a data carrying medium; a decryption element adapted to decrypt at least some of said encrypted audio and/or video data in accordance with permission data; and a reproduction element adapted to play back the decrypted audio and/or video data, the playback apparatus being adapted to transmit - 14 -
request data to a server computer system, and to receive said permission data in reply.
19. The apparatus of claim 18 wherein said permission data comprises a decryption key required to decrypt at least a part of said encrypted audio and/or video data .
20. A method of promoting an audio and/or video and/or other data product comprising the step of providing a data carrying medium carrying a first part of said product in an unencrypted format and carrying a second part of said product in an encrypted format.
21. The method of claim 20 further comprising the step of providing a decryption key for decryption of said second part of said product on request as part of a transaction.
22. The method of either of claims 20 or 21 wherein said transaction comprises a registration transaction and/or a financial transaction.
23. The method of any of claims 19 to 22 further comprising the step of restricting use of said second part of said product using an electronic media management system.
24. The method of claim 19 wherein use of said second part of said product is limited to either a predetermined number of uses or to uses before a predetermined time and date, or both.
25. The method of any of claims 19 to 24 wherein the data carrying medium is one of a Compact Disk or a
Digital Versatile Disk. - 15 -
26. The method of any of claims 17 to 21 further comprising the step of distributing said data carrying medium to potential customers of said product.
PCT/GB2003/002707 2002-06-21 2003-06-23 Enabling use of encrypted data WO2004001745A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2003236909A AU2003236909A1 (en) 2002-06-21 2003-06-23 Enabling use of encrypted data

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB0214407A GB2389928A (en) 2002-06-21 2002-06-21 Data stored in encrypted form on a data carrier may be accessed by a user when a remote server provides permission
GB0214407.9 2002-06-21

Publications (1)

Publication Number Publication Date
WO2004001745A1 true WO2004001745A1 (en) 2003-12-31

Family

ID=9939084

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/GB2003/002707 WO2004001745A1 (en) 2002-06-21 2003-06-23 Enabling use of encrypted data

Country Status (3)

Country Link
AU (1) AU2003236909A1 (en)
GB (1) GB2389928A (en)
WO (1) WO2004001745A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11457005B1 (en) * 2004-01-22 2022-09-27 Securus Technologies, Llc Secure exchange of digital content

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2005086160A2 (en) * 2004-03-09 2005-09-15 Matsushita Electric Industrial Co., Ltd. Content playback device
GB2431028A (en) * 2005-06-29 2007-04-11 E L X Productions Entertainment system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1997043761A2 (en) * 1996-05-15 1997-11-20 Intertrust Technologies Corp. Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances
US5991399A (en) * 1997-12-18 1999-11-23 Intel Corporation Method for securely distributing a conditional use private key to a trusted entity on a remote system
WO2000072649A2 (en) * 1999-05-26 2000-12-07 Cd Cash Co., Ltd. Compact disc authentication system and method
US20020004903A1 (en) * 2000-05-10 2002-01-10 Kamperman Franciscus Lucas Antonius Johannes Controlled distributing of digital information, in particular audio

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5416840A (en) * 1993-07-06 1995-05-16 Phoenix Technologies, Ltd. Software catalog encoding method and system
US5677953A (en) * 1993-09-14 1997-10-14 Spyrus, Inc. System and method for access control for portable data storage media
US5553139A (en) * 1994-04-04 1996-09-03 Novell, Inc. Method and apparatus for electronic license distribution
US5991402A (en) * 1997-09-23 1999-11-23 Aegisoft Corporation Method and system of dynamic transformation of encrypted material
US6611812B2 (en) * 1998-08-13 2003-08-26 International Business Machines Corporation Secure electronic content distribution on CDS and DVDs
AU2001274962A1 (en) * 2000-05-25 2001-12-03 Wind-Up Entertainment, Inc. Prerecorded media authentication and download system
WO2003010637A1 (en) * 2001-07-24 2003-02-06 Frank Jacob Method and computer system for secure distribution of digital data

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1997043761A2 (en) * 1996-05-15 1997-11-20 Intertrust Technologies Corp. Cryptographic methods, apparatus and systems for storage media electronic rights management in closed and connected appliances
US5991399A (en) * 1997-12-18 1999-11-23 Intel Corporation Method for securely distributing a conditional use private key to a trusted entity on a remote system
WO2000072649A2 (en) * 1999-05-26 2000-12-07 Cd Cash Co., Ltd. Compact disc authentication system and method
US20020004903A1 (en) * 2000-05-10 2002-01-10 Kamperman Franciscus Lucas Antonius Johannes Controlled distributing of digital information, in particular audio

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11457005B1 (en) * 2004-01-22 2022-09-27 Securus Technologies, Llc Secure exchange of digital content

Also Published As

Publication number Publication date
AU2003236909A1 (en) 2004-01-06
GB0214407D0 (en) 2002-07-31
GB2389928A (en) 2003-12-24

Similar Documents

Publication Publication Date Title
US7539307B2 (en) System, method, and service for delivering enhanced multimedia content on physical media
JP5089573B2 (en) Enabling authorized use of distributed content on protected media
US9619629B2 (en) Method for generating a secure copy of media data
EP1625479B1 (en) Method and system for controlled media sharing in a network
US7020636B2 (en) Storage-medium rental system
US7747864B2 (en) DVD identification and managed copy authorization
US20050119977A1 (en) Management of digital content licenses
JP2005523487A (en) Rechargeable media distribution / playback system
WO2004066155A1 (en) Content delivery system, information processing apparatus or information processing method, and computer program
US7418406B2 (en) Music distribution apparatus and method
WO2004066154A1 (en) Content delivery system, information processing apparatus or information processing method, and computer program
JP2003524264A (en) Method and apparatus for storing, distributing and accessing intellectual property in digital form
JP2001236391A (en) Contents information charging and distribution system
US8121952B2 (en) System, method, and service for delivering multimedia content by means of a permission to decrypt titles on a physical media
JP2001229229A (en) Digital contents distribution system, digital contents distribution method and recording medium with computer program for browsing digital contents distributed from the distribution system recorded thereon
WO2004001745A1 (en) Enabling use of encrypted data
JP4585736B2 (en) Server device
Cherry Making music pay [digital music distribution]
US20130047271A1 (en) Author Authorization of Electronic Works
JP2006164014A (en) Content distribution system with privilege service
JP2006004374A (en) System for preventing unauthorized use of digital content, reproducing device used for same system, reproducing program used for same system, and digital content reproducing device
WO2003043001A2 (en) Low cost distribution system for music and other digital data

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP