Feedback
Settings

Settings

Goto Application

1. WO2022119935 - DIGITAL CONTENT MANAGEMENT THROUGH ON-DIE CRYPTOGRAPHY AND REMOTE ATTESTATION

Submit observation
PermaLink
Publication Number WO/2022/119935
Publication Date 09.06.2022
International Application No. PCT/US2021/061429
International Filing Date 01.12.2021
IPC
G06F 15/16 2006.1
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
15Digital computers in general; Data processing equipment in general
16Combinations of two or more digital computers each having at least an arithmetic unit, a program unit and a register, e.g. for a simultaneous processing of several programs
G06F 1/24 2006.1
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
1Details not covered by groups G06F3/-G06F13/82
24Resetting means
CPC
G06F 21/53
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
52during program execution, e.g. stack integrity ; ; Preventing unwanted data erasure; Buffer overflow
53by executing in a restricted environment, e.g. sandbox or secure virtual machine
G06F 21/575
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
575Secure boot
H04L 2209/60
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
2209Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
60Digital content management, e.g. content distribution
H04L 63/166
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
16Implementing security features at a particular protocol layer
166at the transport layer
H04L 9/0894
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
H04L 9/321
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
321involving a third party or a trusted authority
Applicants
  • KAUL, Jason Todd [US]/[US]
  • HINNERSHITZ, Scott Edwin [US]/[US]
  • LOPEZ, David Jose [US]/[US]
  • MAI, Nhan Huu [US]/[US]
  • MOMPER, Eric Allen [US]/[US]
Inventors
  • KAUL, Jason Todd
  • HINNERSHITZ, Scott Edwin
  • LOPEZ, David Jose
  • MAI, Nhan Huu
  • MOMPER, Eric Allen
Agents
  • DUARTE-GUEVARA, Carlos E.
  • CHUNG, DANIEL Z.
  • VAN HORN, CHARLES E.
Priority Data
63/119,86801.12.2020US
Publication Language English (en)
Filing Language English (EN)
Designated States
Title
(EN) DIGITAL CONTENT MANAGEMENT THROUGH ON-DIE CRYPTOGRAPHY AND REMOTE ATTESTATION
(FR) GESTION DE CONTENU NUMÉRIQUE PAR CRYPTOGRAPHIE SUR PUCE ET ATTESTATION À DISTANCE
front page image
Abstract
(EN) A system for digital rights management including a processor in a platform and a memory device comprising instructions that when executed configure the processor to perform operations. The operations may include determining whether a digital media is locally installed in a platform before initiating an operating system, and launching a first UEFI application configured to generate attestation data and communicate attestation based data to a server through an encrypted medium in response to determining the digital media is not installed. The operations may also include receive a binary file of the digital media and a first decryption key and performing a sealing of the binary file using a sealing enclave of the first UEFI application and generating a local decryption second key based on the first key and local entropy. The operations may also include installing the sealed binary file on local storage.
(FR) L'invention concerne un système de gestion de droits numériques comprenant un processeur dans une plate-forme et un dispositif de mémoire comprenant des instructions qui, lorsqu'elles sont exécutées, configurent le processeur pour effectuer des opérations. Les opérations peuvent consister à déterminer si un support numérique est installé localement dans une plate-forme avant d'initier un système d'exploitation, et lancer une première application UEFI configurée pour générer des données d'attestation et communiquer des données sur la base d'une attestation à un serveur par l'intermédiaire d'un support chiffré en réponse à la détermination que le support numérique n'est pas installé. Les opérations peuvent également comprendre la réception d'un fichier binaire du support numérique et d'une première clé de déchiffrement et la réalisation d'un scellement du fichier binaire à l'aide d'une enclave de scellement de la première application UEFI et la génération d'une seconde clé de déchiffrement locale sur la base de la première clé et de l'entropie locale. Les opérations peuvent également comprendre l'installation du fichier binaire scellé sur un stockage local.
Latest bibliographic data on file with the International Bureau
# -