A system and method are provided wherein digital data representing content and associated license rights may copied to a storage medium, such as a removable storage medium, whereby the serial number of the copied-to storage medium is integrated into the licensing scheme utilized to secure the digital content. As a result, the digital content is pre-authenticated and bound to the copied-to storage medium, obviating the need to access a network or other location for access to the protected content.
|
0. 28. A method for duplicating secure digital data comprising:
copying digital data and associated data which uniquely authenticates said digital data from a master storage medium to a plurality of target storage media; and
storing serial number information of one target storage medium of said plurality of target storage media onto a portion of said target storage medium after copying the associated data from the master storage medium to said plurality of target storage media,
wherein said digital data and the associated data stored on said one target storage medium are authenticated by comparing said serial number information on said one target storage medium and a serial number of said one target storage medium.
0. 29. A system for duplicating secure digital data, comprising:
means for copying digital data and associated licensing data representing licensing rights from a master storage medium to a plurality of target storage media; and
means for storing serial number information of one target storage medium of said plurality of target storage media onto a portion of said one target storage medium after copying the associate licensing data from the master storage medium to said plurality of target storage media,
wherein said digital data and said license rights associated with said licensing data stored on said one target storage medium are authenticated by comparing said serial number information on said one target storage medium and a serial number of said one target storage medium.
1. A method for duplicating secure digital data, comprising:
copying digital data and associated licensing data representing licensing rights from a master storage medium to a plurality of target storage medium media; and
integrating the storing serial number information of said one target storage medium into the appropriate of said plurality of target storage media onto a portion of said digital data and into said licensing data target storage medium after copying the associated licensing data from the master storage medium to said plurality of target storage media,
whereby the content of wherein said digital data and the said license rights associated with said licensing data stored on said one target storage medium are self-authenticating authenticated by comparing said serial number information on said one target storage medium and a serial number of said one target storage medium.
0. 30. A system for duplicating secure digital music, comprising:
a means for selecting at least one content file for duplication;
a means for setting digital rights management (DRM) rights levels for each of said at least one content file;
a means for storing unique key information for each of said at least one content file in a header for each of said at least one content file and in a license file associated with said at least one content file;
a means for storing said at least one content file and said license file in a master computer-readable medium;
a means for copying said at least one content file and said license file from a master computer-readable medium to a target computer-readable medium; and
a means for integrating serial number information of said target computer-readable medium into said header of each of said at least one content file and into said license file,
whereby the content of said at least one content file and license rights associated with said license file stored on said target computer-readable medium are self-authenticating.
11. A computer system in which content on a master storage medium may be copied to a plurality of target storage media, comprising:
a computing device having read and write access to a master storage medium and write access to a plurality of target storage medium media, wherein said computing device copies is configured to store digital data and associated licensing data representing licensing rights from the master storage medium to at least one of the plurality of target storage media, and wherein said computing device integrates the is configured to store serial number information from said at least of one target storage medium of the plurality of target storage media into at least one file of said digital data and into said licensing data onto a portion of said one target storage medium after copying the associate licensing data from the master storage medium to said plurality of target storage media,
whereby the content of wherein said digital data and the license rights associated with said licensing data stored on said one target storage medium are self-authenticating authenticated by comparing said serial number information on said one target storage medium and a serial number of the one target storage medium.
19. A method for duplicating secure digital music, comprising:
selecting at least one content file for duplication;
setting digital rights management (DRM) rights levels for each of said at least one content file;
encrypting said at least one content file with unique key information for each of said at least one content file;
storing said unique key information in the header for each of said at least one content file and in a license file associated with said at least one content file;
storing said at least one content file and said license file in a master computer-readable medium;
copying said at least one content file and said license file from a master computer-readable medium to a target computer-readable medium; and
integrating the serial number information of said target computer-readable medium into said header of each of said at least one content file and into said license file,
whereby the content of said at least one content file and the license rights associated with said license file stored on said target computer-readable medium are self-authenticating.
2. A method for duplicating secure digital data according to
3. The method for duplicating secure digital data according to
selecting at least one content file for duplication, wherein said at least one content file is said digital data;
setting digital rights management (DRM) rights levels for each of said at least one content file; and
generating said licensing data in accordance with said DRM rights levels.
4. A method for duplicating secure digital data according to
5. A method for duplicating secure digital data according to
6. A method for duplicating secure digital data according to
7. A method for duplicating secure digital data according to
encrypting said at least one content file with unique key information for each of said at least one content file, wherein said at least one content file is said digital data; and
storing said unique key information in at least one content file and in the licensing data associated with said at least one content file.
8. A method for duplicating secure digital data according to
storing said digital data and said licensing data in said master computer-readable medium.
9. A computer readable non-transitory machine-readable storage medium bearing computer executable instructions for carrying out the method of
instructions to copy digital data and associated licensing data representing licensing rights from a master storage medium to a plurality of target storage media; and
instructions to store serial number information of one target storage medium of said plurality of target storage media onto a portion of said one target storage medium after copying the associated licensing data from the master storage medium to said plurality of target storage media,
wherein said digital data and said license rights associated with said licensing data stored on said one target storage medium are authenticated by comparing said serial number information on said one target storage medium and a serial number of said one target storage medium.
0. 10. A modulated data signal carrying computer executable instructions for performing the method of
12. A computer system according to
13. A computer system according to
14. A computer system according to
15. A computer system according to
16. A computer system according to
17. A computer system according to
18. A computer system according to
20. A method for duplicating secure digital music according to
copying said at least one content file and said license file from said master computer-readable medium to a second target computer-readable medium; and
integrating the serial number information of said second target computer-readable medium into said header of each of said at least one content file and into said license file,
whereby the content of said at least one content file and the license rights associated with said license file stored on said second target computer-readable medium are self-authenticating.
21. A method for duplicating secure digital music according to
22. A method for duplicating secure digital music according to
23. A method for duplicating secure digital music according to
24. A method for duplicating secure digital music according to
25. A method for duplicating secure digital music according to
26. A computer readable non-transitory machine-readable storage medium bearing computer executable instructions for carrying out the method of
instructions to select at least one content file for duplication;
instructions to set digital rights management (DRM) rights levels for each of said at least one content file;
instructions to encrypt said at least one content file with unique key information for each of said at least one content file;
instructions to store said unique key information in the header for each of said at least one content file and in a license file associated with said at least one content file;
instructions to store said at least one content file and said license file in a master computer-readable medium;
instructions to copy said at least one content file and said license file from a master computer-readable medium to a target computer-readable medium; and
instructions to integrate serial number information of said target computer-readable medium into said header of each of said at least one content file and into said license file,
whereby the content of said at least one content file and license rights associated with said license file stored on said target computer-readable medium are self-authenticating.
0. 27. A modulated data signal carrying computer executable instructions for performing the method of
|
This application is a reissue of U.S. Pat. No. 6,920,565, issued Jul. 19, 2005, which is (1) a continuation of co-pending U.S. patent application Ser. No. 09/587,509, filed Jun. 5, 2000, now abandoned, which claims priority to U.S. provisional patent application No. 60/181,727, filed Feb. 2, 2000, and (2) a continuation of U.S. patent application Ser. No. 09/588,149, filed Jun. 5, 2000, now U.S. Pat. No. 6,718,446, both filed on Jun. 5, 2000. issued Jun. 6, 2004, which claims priority to U.S. provisional patent application No. 60/181,727, filed Feb. 2, 2000.
The present invention relates generally to a method and system for providing secure digital music duplication.
Digital Rights Management (DRM) has received a lot of attention as a result of the ease with which digital data can be re-distributed ad infinitum without corruption. DRM systems have thus attempted to implement methods for encrypting music and applying certain digital rights to that piece of media with the express intent that you can not copy it, re-distribute it, or play the file without the right from the copyright holder to do so. For example, one system has a unique electronic serial number assigned to each disk. This serial number can be and is used as a key to secure and unlock digital music with its associated rights. For example, a particular digital sound file can be secured using the serial number on a portable disk for a portable disk player, so that the song can only be played when that disk is inserted into the system thus preventing re-distribution of the song. One unique challenge, therefore, is creating thousands of disks, or more, that have “secure” music that is secured using the unique serial number on each disk for retail sale. This process has been designed so that you cannot copy protected music, but a company that is part of the music distribution chain still needs to be able to copy with license from the copyright owners in an attempt to distribute and/or sell secure music on a specific type of media. To a company that manufactures storage media and related storage devices, for example, this is relevant because the company could sell music that can only be played on that company's equipment or media. This is also a relevant issue with respect to the process used to create secure music disks for others to market.
Storage media, and in particular re-writeable storage media, is at times shipped from a storage media manufacturer/distributor with pre-determined data already stored thereon. For example, the data may be one or more software programs, one or more data structures, one or more data files, and/or the like. Likewise, the re-writeable storage media may be a magnetic or optical in nature, and may be a tape, a disk, or the like. Moreover, the storage media may be read-only, write-only, read-write, or the like, as appropriate.
Once the storage media is shipped with the already-stored data, though, such storage media is quite obviously out of the hands of the manufacturer/distributor, who is then powerless to prevent anyone from making changes to the stored data on the storage media. Accordingly, it is oftentimes useful after shipment of the storage media to determine whether the data on the storage media has changed as compared with the originally shipped data. In addition, during production of the storage media with the data thereon based on a master version, it is useful at various points during the production process to confirm that the data on the storage media has not changed as compared with the data copied from the master. Accordingly, a benchmark can be provided that is placed on the storage media and that is closely tied to the master.
Tying these issues together, there are many references to secure digital rights management, but none that specifically address the problems associated with the mass reproduction of authenticated secure digital music. Some proposed systems refer to unauthenticated secure digital music that you distribute, then for which the user later applies for and/or pays for a license file to authenticate the music file. It would thus be advantageous to provide a robust solution for mass reproducing authenticated secure digital data such as music data, with license rights already in place.
The present invention provides a system and method wherein digital data representing content and associated license rights may copied to a storage medium, such as a removable storage medium, whereby the serial number of the copied-to storage medium is integrated into the licensing scheme utilized to secure the digital content. As a result, the digital content is pre-authenticated and bound to the copied-to storage medium, obviating the need to access a network or other location for access to the protected content.
Other features of the present invention are described below.
The method and system for providing secure digital music duplication are further described with reference to the accompanying drawings in which:
U.S. application Ser. No. 09/587,509 and U.S. application Ser. No. 09/588,149, relate to systems and methods in which data is copied from a master storage medium to copied-to storage media. The same techniques relating to master disk production and target disk copying may be applied to the present invention. Referring to
Each computer 14, 16, 18 may be any appropriate type of computer. Typically, each such computer 14, 16, 18 would have a display, one or more data input devices (keyboard, mouse, etc.), a processor, memory, and the like. Of course, one or more such elements may not be necessary, depending on circumstances, and therefore may be removed. Each computer 14, 16, 18 should of course have an appropriate storage media drive for reading from and/or writing to a storage media 10 and/or a master 12, as may be appropriate.
In the case of the production computer 16 and the comparison computer 18, the process of inserting the storage media 10 into and removing the storage media 10 from the respective drives (arrows 1 and 2 in
As seen, each computer 14, 16, 18 may be networked together as is necessary to share information, as will be discussed in more detail below. Thus, each computer 14, 16, 18 can access the information on the other computers 14, 16, 18, assuming of course that appropriate security access is granted. In addition or in the alternative, information may be accessed by each computer 14, 16, 18 from a network computer or server 20. Of course, any appropriate networking and sharing arrangements may be employed. In fact, information may even be exchanged between computers by hand (i.e., by portable storage media) if appropriate and/or necessary. Moreover, two or more of the three computers 14, 16, 18 may even be embodied in the form of a single computer.
Controlling Use of Master Copying Software
Preliminarily, it should be ensured that the master 12 originates from a trustworthy source, and is not created by a non-approved entity. Accordingly, the master 12 should be obtained from such trustworthy source in some manner to ensure that the data on such master 12 is in fact from the trustworthy source and in a form that the trustworthy source intended, and also to ensure that the data on such master 12 is itself trustworthy and has not been tampered with. The master 12 may originate from any appropriate source and have any appropriate data thereon. As but one example, the master 12 may originate from the marketing department of a manufacturer of the storage media 10, whereby the data stored on the master 12 results from cross-promotional arrangements with other manufacturers and/or distributors. As is explained below, the master 12 is a storage media similar to if not identical with the copied-to storage media 10, although the master may alternatively be a different type. Importantly, the entity copying the data from the master 12 by way of the master computer 14 must be trustworthy also. Then, the master computer 14 receiving the master 12 for copying purposes may be tightly controlled, such master computer 14 includes copying software 22 that copies the data from the master 12, as will be explained in more detail below, and the copying software 22 is tightly tied to such master computer 14. Referring now to
When the master computer 14 is directed to launch the copying software 22 by a user or the like, such copying software 22 may access the HWID hard-coded therein (step 205), may access the HWID of the master computer (step 207), and may compare such accessed HWID with such hard-coded HWID (step 209). The copying software 22 may then proceed only if the accessed and hard-coded HWIDs match (step 211).
Still referring to
Operation of Master Copying Software 22
Once the copying software 22 has verified that it is on the correct master computer 14 and is being operated by a user with the correct password (as detailed in connection with
Presumably, the master 12 and the data thereon is in its final form and has been created by a trustworthy entity according to a particular operating system. As such, the data is organized on the master 12 according to the particular operating system, and the master 12 includes referencing features specified by the particular operating system for referencing the data. Here, it is to be assumed that the operating system is a disk operating system such as the MICROSOFT DISK OPERATING SYSTEM (DOS) produced and/or marketed by MICROSOFT Corporation of Redmond, Wash., or the like. Of course, other operating systems can be utilized.
The master 12 is of course properly inserted into an appropriate drive in the master computer 14 such that the master computer 14 can access the data on such master 12. Referring now to
Based on such file information from the FAT, the copying software 22 then reads all the data on the master 12 into a single image file that constitutes the master image 24 (step 405). Such image file/master image 24 may be stored at least preliminarily in an appropriate memory on the master computer 14, or may be preliminarily stored elsewhere. Preferably, such image file/master image 24 contains not only all the files on the master 12, but each FAT from the master 12 (if there is more than one such FAT), all partition information from the master 12, all boot information from the master 12, all directory entries from the master 12, etc. That is, the image file/master image 24 as created from the master 12 contains the entirety of the information stored on the master 12, whether such information derives from a file, a file management structure, a storage media management structure, or the like. Creating such an image 24 from such master 12 is known or should be apparent to the relevant public, and therefore need not be described herein in any detail.
As may be appreciated, then, by copying the entirety of the master 12 into the single image file/master image 24, such master image 24 may then be employed at a later time to create a copied image of the master 12 on a copied-to storage media 10. Moreover, the copied image on the copied-to storage media 10 causes the copied-to storage media 10 to behave as if it were the master 12. Thus, if the master 12 includes disk information that such master is a 100 megabyte magnetic disk, the copied-to storage media 10 will behave as if it were a 100 megabyte storage disk, even if such copied-to storage media 10 is in fact a 250 megabyte storage disc, for example.
Once the master image 12 is created from the master, such master image 12 is preferably manipulated to include the aforementioned benchmark. Such benchmark may comprise certain tracking and verification information. Thus, each copied-to storage media 10 as copied from the master image 24 also includes such tracking and verification information/benchmark. Preferably, the tracking and verification information/benchmark is tied to the master image 24/image file or a portion thereof. Accordingly, and importantly, alteration of the image file will cause a mis-match with regard to the tracking and verification information/benchmark in such image file, as will be explained below. Likewise, and also importantly, alteration of the copied-to storage media 10 will also cause a mis-match with regard to the tracking and verification information/benchmark in such storage media 10 as copied from such image file/master image 24.
As seen in
Preferably, the copying software 22 obtains the part identifier from an appropriate source (step 407) and writes the obtained part identifier into an area of the master image 24/image file (step 409) such that the part identifier appears in an inaccessible area when the image file is copied to the storage media 10. That is, according to the architecture of any particular disk operating system, certain physical space on a corresponding storage media is inaccessible by way of such disk operating system, or more simply is “dead”. For example, in the aforementioned MICROSOFT DOS disk operating system, at least with regard to the IOMEGA ZIP disk and drive as produced and/or marketed by IOMEGA Corporation of Roy, Utah, logical block 0 of the storage media contains boot information, logical block 32 contains the FAT, and logical blocks 1-31 are expected to be blank.
Since such logical blocks 1-31 are expected to be blank, such disk operating system provides no capability to access such logical blocks 1-31, or put another way such logical blocks 1-31 on such storage media are inaccessible by way of such disk operating system. Although inaccessible by the disk operating system, an appropriate utility application may of course be employed to direct the drive receiving the storage media 10 to write information to/read information from such otherwise inaccessible logical blocks 1-31 and perhaps other dead space. Such utility application is known or should be apparent to the relevant public, and therefore need not be described herein in any detail. Preferably, such utility is not normally available to the general public such that the general public cannot normally access such dead space. Thus, the general public cannot normally alter or otherwise compromise data stored in the dead space on the storage media 10.
The part identifier may be a 10-byte identifier and is written into the master image 24 to appear in the copied-to storage media in dead space as such. For example, in connection with the aforementioned IOMEGA ZIP disk, such 10-byte identifier may be written to appear in logical block 1. For verification, a 1-byte byte count or the like of the 10-byte identifier may also be written into the master image 24 to appear in such logical block 1 (step 411). For example, the 1-byte checksum and the 10-byte identifier may be written into the master image 24 to appear in that order in logical block 1 of the storage media 24 at the beginning thereof. Of course, the part identifier and the verifying checksum may be written to appear in other areas of dead space, and other forms of verification may be employed. The copying software also may store the part identifier in a separate file 26 (
The tracking and verification information/benchmark may also include an encrypted security identifier closely tied to the data in the master image 24/image file, such as for example an encrypted checksum of at least a portion of the data in such master image 24/image file. Thus, alteration of such data will result in a mis-match with regard to the encrypted security identifier. The copying software 22 on the master computer 14 may develop the encrypted security identifier based on the entire FAT and also based on the part identifier as such items appear in the master image 24/image file. Notably, basing such identifier on the FAT is particularly useful since practically any alteration to the data on the copied-to storage media 10 will result in a change in the FAT thereof, thus resulting in the aforementioned mis-match. Of course, such encrypted security identifier may be based on other elements as they appear in the master image 24/image file.
The copying software 22 may produce the encrypted security identifier by calculating the checksum of each byte in the FAT and in the part identifier (step 415), and then encrypting such checksum by way of any appropriate encrypting algorithm (step 417). Thus, if the FAT or the part identifier changes, the encrypted checksum will no longer match, as will be discussed in more detail below. The encrypting algorithm employed may be a one-way or two-way encrypting algorithm, and may produce an encrypted value having a pre-determined length, such as 100 bytes. Of course, other methods of producing an encrypted security identifier tied to the data in the image file may be employed.
The copying software 22 then writes the resulting 100-byte encrypted checksum into the aforementioned dead space in the same manner as the part identifier (step 419). For example, such 100-byte encrypted number security identifier may be written into the master image 24 to appear in logical block 1 with the 10 byte part identifier. For additional security, the copying software 22 may also write a 1-byte byte count of the 100-byte encrypted checksum to appear in the logical block 1 (step 421). Such 1-byte byte count is written immediately after the 10-byte part identifier, and is immediately followed by the 100-byte encrypted checksum. Of course, other methods of writing the encrypted checksum and related indicia into the dead space may be employed.
Although it should be apparent to the relevant public, it is nevertheless noted that writing information into the dead space of the copied-to storage media 10 in actuality means writing such information into the corresponding master image 24/image file in an appropriate location thereof such that such information is appropriately copied into the dead space when the master image 24/image file is copied to the copied-to storage media 10. It should also be apparent but again is nevertheless noted that any software that reads from/writes to such dead space, such as the software discussed below, must include or have access to an appropriate utility application in order that such software can in fact direct the drive receiving the copied-to storage media to read from/write to such dead space as appropriate. Further, it should be noted that since such information is not indexed in the FAT of the master image 24/image file or of the copied-to storage media 10, such information must be written into the dead space in a pre-determined location known to each entity that is to access such information.
The encrypted checksum disclosed above is never stored anywhere other than in the master image 24/image file and on the copied-to storage media 10. Instead, such encrypted checksum is re-derived at appropriate times and is then compared with the stored value in the master image 24/image file or on the copied-to storage media to verify that the FAT and the part identifier on the copied-to storage media 10 have not been changed as compared with the FAT and the part identifier in the master image 24/image file produced by copying software 22 on the master computer 14. As should be appreciated, the FAT on the copied-to storage media 10 will change if, for example, a file is added to or deleted from such media 10, a file is altered in size, location, or date of last access, or the like. To summarize, then, any significant change to the data on the copied-to storage media 10 will result in a change to the FAT thereof and will therefore result in a mis-match with regard to the originally derived encrypted checksum.
As it stands, the master image 24/image file produced by the copying software 22 on the master computer 14 includes the entirety of the data on the master 12, and also includes the part identifier and the encrypted checksum stored in dead space. The copying software in addition may calculate a second checksum of the entire master image 24/image file, including the part identifier and the encrypted checksum (step 423), and then may store the second checksum in the above-mentioned separate file 26 for later reference (step 425) to ensure that the master image 24/image file has not become corrupted. For example, the separate file 26 is an image data file 26 that includes a data structure corresponding to the image file, where the data structure includes an image name as given to the image file, the second checksum, and the part identifier, among other things. Of course, other information may be stored in the image data file. Moreover, the image data file 26 may have information regarding additional image files, where each image file has a corresponding data structure with such information stored therein. Alternatively, the aforementioned data structure in the image data file may instead be stored in the master image 24/image file, perhaps in the dead space thereof, perhaps obviating the need for such image data file 26.
Copying the Image File to the Copied-to Storage Media
Now that a master image 24/image file based on the master 12 is present in its finalized form, a production copy of the master 12/master image 24 may be made on a copied-to storage media 10 by way of the production computer 16, and specifically by production software 28 loaded onto the production computer 16. As should be evident, the production computer 16 and production software 28 must have access to the finalized master image 24/image file. In addition, and as will be explained below, such items should also have access to the image data file 26. Such master image 24/image file and such image data file 26 may be located on and accessible from the master computer 14 or the network server 20, or may be located on and accessible to the production computer 16 itself, although such files may be located elsewhere.
The production computer 16 may be user-directed to make a production copy of the master image 24/image file on a copied-to storage media 10, or may automatically make such a production copy according to a pre-defined routine. In either case, and referring now to
After accessing the master image 24/image file and the image data file 26, the production software 28 on the production computer 16 accesses the second checksum from the corresponding data structure in the image data file 26 (step 607), and employs such accessed second checksum to verify that the accessed master image 24 image file is not corrupted. In particular, the production software 28 performs a checksum of the entire accessed master image 24/image file including the part identifier and the encrypted checksum to obtain a performed checksum value (step 609), and compares the performed checksum value with the accessed second checksum to determine whether they match (step 611). If a match is found, the image file is not corrupted, and the production software 28 may proceed (step 613). If a match is not found, the image file is corrupted and the production software 28 does not proceed. Notably, the aforementioned checksum procedure may be performed at any appropriate time. For example, such procedure is performed each time a master image 24/image file is newly copied to the production computer 16, or each time the master image 24/image file is accessed to make a production copy on a copied-to storage media 10.
Assuming the second checksums compare favorably, the production software 28 next accesses the part identifier as embedded in the dead space in the master image 24/image file (step 615), accesses the part identifier from the corresponding data structure in the image data file 26 (step 617), and compares the master image 24/image file part identifier with the image data file 26 part identifier to determine whether they match (step 619). If a match is found, the image file has not been adulterated, at least with regard to the part identifier, and the production software 28 may proceed (step 621). If a match is not found, the image file has been adulterated, at least with regard to the part number, and the production software 28 does not proceed. Such adulteration may occur when an unauthorized entity attempts to create a master image 24/image file without benefit of the master computer 14, whereby such unauthorized image file in fact fails to contain a proper part identifier. Of course, such adulteration may also occur under other circumstances.
Assuming the part identifiers compare favorably, the production software 28 next accesses the FAT from the master image 24/image file (step 623), performs a checksum of the FAT and the part identifier (which was previously accessed in step 615) (step 625), and then encrypts such checksum by way of the same encrypting algorithm previously employed by the master computer 14 to produce a production computer encrypted checksum (step 627). The production software 28 then accesses the encrypted checksum as embedded in the dead space in the master image 24/image file (step 629), and compares the image file encrypted checksum with the production computer encrypted checksum to determine whether they match (step 631). If a match is found, the master image 24/image file has not been adulterated, at least in any substantial way such that the FAT or the part identifier would be affected, and the production software 28 may proceed (step 633). If a match is not found, the master image 24/image file has been so adulterated, and the production software 28 does not proceed. Again, such adulteration may occur when an unauthorized entity attempts to create a master image 24/image file without benefit of the master computer 14, whereby such unauthorized master image 24/image file in fact fails to contain a proper encrypted checksum. Of course, such adulteration may also occur under other circumstances.
To summarize, then, prior to producing a producing a production copy on storage media 10 from the master image 24/image file, the production software 28 first verifies the part identifier, which is an unencrypted value, and then verifies the checksum, which is an encrypted value. If either verify fails, such image file is not employed to make the production copy. However, and of course, if both verifies succeed, such image file may then be appropriately employed by the production software 28 on the production computer 16 to produce the production copy on the mounted production (copied-to) storage media (step 635).
As should be appreciated, producing a production copy from a master image 24/image file as is done in step 635 is generally known to the relevant public, and therefore need not be described here in any further detail. It should also be appreciated that any appropriate method for producing such production copy from such master image 24/image file may be employed. The production copy on the storage media 10 is identical to the master 12 in all respects, except that such production copy has the embedded encrypted checksum and the embedded part identifier in the aforementioned dead space.
Comparing the Image File and the Copied-to Storage Media
Once the production software 28 on the production computer 16 makes the production copy of the master 12 on the storage media 10 from the master image 24/image file, such storage media 10 must be compared with the master image 24/image file to ensure that the production copy is an accurate rendering of the master image 24/image file. Such a compare may be performed by comparison software 30 on the comparison computer 18 (
In particular, the comparison software 30 on the comparison computer 16 accesses the master image 24/image file (step 703), the comparison software 30 also accesses the image data file 26 with the data structure corresponding to the master image 24/image file (step 705), and the second checksum from the corresponding data structure in the image data file 26 (step 707), and employs such accessed second checksum to verify that the accessed master image 24/image file is not corrupted. In particular, the comparison software 30 performs a checksum of the entire accessed master image 24/image file including the part identifier and the encrypted checksum to obtain a performed checksum value (step 709), and compares the performed checksum value with the accessed second checksum to determine whether they match (step 711). If a match is found, the image file is not corrupted, and the comparison software 30 may proceed (step 713). If a match is not found, the image file is corrupted and the comparison software 30 does not proceed.
Assuming the second checksums compare favorably, the comparison software 30 next accesses the part identifier as embedded in the dead space in the production copy of the storage media 10 (step 715), accesses the part identifier from the corresponding data structure in the image data file 26 (step 717), and compares the master image 24/image file part identifier with the image data file 26 part identifier to determine whether they match (step 719). If a match is found, the data on the storage media 10 has not been adulterated, at least with regard to the part identifier, and the comparison software 30 may proceed (step 721). If a match is not found, the data on the storage media 10 has been adulterated, at least with regard to the part number, and the comparison software 30 does not proceed.
Assuming the part identifiers compare favorably, the comparison software 30 next accesses the FAT from the production copy of the storage media 10 (step 723), performs a checksum of the FAT and the part identifier (which was previously accessed in step 715) (step 725), and then encrypts such checksum by way of the same encrypting algorithm previously employed by the master computer 14 to produce a production computer encrypted checksum (step 727). The comparison software 30 then accesses the encrypted checksum as embedded in the dead space in the production copy of the storage media 10 (step 729), and compares the production copy encrypted checksum with the comparison computer encrypted checksum to determine whether they match (step 731). If a match is found, the data on the storage media 10 has not been adulterated, at least in any substantial way such that the FAT or the part identifier would be affected, and the comparison software 30 may proceed (step 733). If a match is not found, the data on the storage media has been so adulterated, and the comparison software 30 does not proceed.
To summarize, then prior to comparing the production copy of the storage media 10 with the master image 24/image file, the comparison software 30 first verifies the part identifier of the production copy, which is an unencrypted value, and then verifies the checksum of the production copy, which is an encrypted value. If either verify fails, such production copy is deemed to be corrupted or otherwise improperly made. However, and of course, if both verifies succeed, the comparison software 30 may then compare the production copy of the storage media 10 with the master image 24/image file in detail (step 735).
As should be appreciated, such detailed comparison is generally known to the relevant public, and therefore need not be described here in any further detail. It should also be appreciated that any appropriate method for performing such detailed comparison may be employed. In general, the detailed comparison by the comparison software 30 on the comparison computer 18 ensures that the production copy of the storage media 10 is a faithful rendition of the master image 24/image file. Assuming the storage media compare succeeds, such storage media is approved for distribution. Otherwise, the storage media is not approved and may be discarded or may be employed for another production copy, assuming the storage media is not physically defective or otherwise unsuitable.
It is to be noted that in performing the various steps detailed above, the copying software 22, production software 28, and comparison software 30 may employ any appropriate methodologies and any appropriate programming, and may be written in any appropriate programming language. Since such methodologies, programming, and languages should be known or apparent to the relevant public, further details thereof are not disclosed herein.
As should now be appreciated, benchmarks are associated with a master image 24/image file and are employed to ensure that such image file is a faithful representative of a master 12, and also to ensure that a production copy of storage media 10 made from the image file is a faithful reproduction of such image file. Thus, an intervening entity cannot manipulate the image file or the production copy without such manipulation being detectable. In addition, if the production copy of the storage media 10 is distributed and returned, the comparison software 30 on the comparison computer 18 or another computer may perform a compare of the returned storage media 10 with the corresponding image file to determine whether the returned storage media 10 has been altered in any manner. Depending on the purpose and result of the determination, then, appropriate action may be taken.
In the foregoing description, a new and useful benchmark is generated that is placed on a master image 24/image file made from a master 12 and therefore on a production copy of a storage media 10 made from the master image 24/image file. Accordingly, the benchmark is closely tied to such master 12, and reference may be made to the benchmark at various times to determine whether the data in the master image 24/image file and/or on the storage media 10 has changed as compared with the master 12.
Method and System for Providing Secure Digital Music Duplication
The foregoing description pertains to and enhances by way of relevant background the techniques of the present invention for mass reproduction of authenticated secure digital music. The present invention teaches steps for creating an encrypted image of secure Windows Media Audio (WMA) file(s), or files formatted according to a different format, that are uniquely authenticated to a single medium, allowing a user to access and play the files upon receipt or purchase of that medium.
These processes are described in the exemplary context of encryption code from Microsoft® for their particular secure WMA acm codec (compression/decompression) algorithm. However, it will be appreciated by one of ordinary skill in the art that these processes can be used with any other security and codec provider in similar processes, just using a different encryption and security method and/or algorithm.
In one embodiment of the present invention, in a first process, the user takes unsecured WMA files that the user has encoded. Then, they are protected using a Robodisk algorithm. This proprietary protection operation encrypts the files with a randomly generated key for each file. The Robodisk program also creates a file with the random encryption keys used to protect the files for generating licenses stores on client machines used for duplication.
In a second process, the user builds the image from the encrypted protected content that has not yet been authenticated to a particular disk. The protected content is copied onto the master disk. An exact image, referred to as an ABS image, of this master disk is then created. Audit images and checksums are created and reported for use in duplication, auditing and general error control.
In a third process, the ABS image is burned or duplicated onto new target disk(s). After the ABS image is copied onto the disks, the disks are subjected to an integration process to authenticate the music files to the serial number of the disk. This process uses the serial number from the disk, and along with the functionality of pre-packaged code from Microsoft®, the integration information is created. The Robodisk software then integrates the content on the disk with the serial number information gathered from each unique target disk.
Using the techniques of the present invention, it is thus possible to duplicate disk images on a disk by disk basis, by protecting one disk, creating the image, copying the image, integrating the duplicated content with the electronic serial number of each piece of media, and allowing it to be played on one computer. However, it is also possible to create the image and duplicate the same image to multiple targets simultaneously using multi-threaded code. This way, it is possible to copy a large number of disks using only one computer, faster than an operating system can do it sequentially, and then to integrate the content to authenticate it to the media onto which it was duplicated.
At 840, the software requests that the user enter a content input path, such as the input path to the directory where content was placed at 810. At 850, the output path is selected for the content where the protected encrypted content will be stored. At 860, the user of the software may specify the DRM rights level(s) for each content file to be protected. These include, but are not limited to, the application of rules relating to device specific rendering, timing limitations, access levels and the like. Then, at 870, the user clicks the protect button, or effects some other means of assenting to protection of the selected files with the selected license rights. As a result, at 880, the content and license information is encrypted, and stored according to the specified output path.
As utilized herein, the term integrating refers to a variety of means of incorporating information into a destination data file, and may refer to patching, concatenation, appending, hashing, replacing, or other integration techniques as well. Combinations and/or permutations of the same may be called for during an integration process, and the means for incorporation may be driven in part by the DRM system utilized in connection with the present invention.
The various techniques described herein may be implemented with hardware or software or, where appropriate, with a combination of both. Thus, the methods and apparatus of the present invention, or certain aspects or portions thereof, may take the form of program code (i.e., instructions) embodied in tangible media, such as floppy diskettes, CD-ROMs, hard drives, or any other machine-readable storage medium, wherein, when the program code is loaded into and executed by a machine, such as a computer, the machine becomes an apparatus for practicing the invention. In the case of program code execution on programmable computers, the computer will generally include a processor, a storage medium readable by the processor (including volatile and non-volatile memory and/or storage elements), at least one input device, and at least one output device. One or more programs are preferably implemented in a high level procedural or object oriented programming language to communicate with a computer system. However, the program(s) can be implemented in assembly or machine language, if desired. In any case, the language may be a compiled or interpreted language, and combined with hardware implementations.
The methods and apparatus of the present invention may also be embodied in the form of program code that is transmitted over some transmission medium, such as over electrical wiring or cabling, through fiber optics, or via any other form of transmission, wherein, when the program code is received and loaded into and executed by a machine, such as an EPROM, a gate array, a programmable logic device (PLD), a client computer, a video recorder or the like, the machine becomes an apparatus for practicing the invention. When implemented on a general-purpose processor, the program code combines with the processor to provide a unique apparatus that operates to perform the indexing functionality of the present invention. For example, the storage techniques used in connection with the present invention may invariably be a combination of hardware and software.
While the present invention has been described in connection with various embodiments described or shown in the various figures, it is to be understood that other similar embodiments may be used or modifications and additions may be made to the described embodiment(s) for performing the same function of the present invention without deviating therefrom. For example, although in a preferred embodiment the present invention has been described herein with respect to the context of music, the same concepts and techniques apply regardless of what the content represents. For example, the same techniques could be applied to motion pictures, photographs, etc. Therefore, the present invention should not be limited to any single embodiment, but rather construed in breadth and scope in accordance with the recitation of the appended claims.
Short, Robert L., Isaacson, Shawn Ray, Heiser, Eric Ryon
Patent | Priority | Assignee | Title |
10546105, | Dec 14 2016 | Kaboodl, LLC | 3D printer and inventory control and distribution system for 3D designs |
10839051, | Dec 14 2016 | Kaboodl, LLC | 3D printer and inventory control and distribution system for 3D designs |
10846808, | Dec 14 2016 | Kaboodl, LLC | 3D printer and inventory control and distribution system for 3D designs |
11593902, | Dec 14 2016 | Kaboodl, LLC | 3D printer and inventory control and distribution system for 3D designs |
11693933, | Dec 14 2016 | KaBOODL, INC. | 3D printer and inventory control and distribution system for 3D designs |
RE44969, | Feb 11 2000 | Xylon LLC | Storage media with benchmark representative of data originally stored thereon |
Patent | Priority | Assignee | Title |
4446519, | May 26 1981 | CORBAN INTERNATIONAL, LTD , | Method and apparatus for providing security for computer software |
4757534, | Dec 18 1984 | International Business Machines Corporation | Code protection using cryptography |
5212729, | Jan 22 1992 | Computer data security device and method | |
5446874, | Dec 23 1993 | International Business Machines Corp.; International Business Machines Corp | Automated benchmarking with self customization |
5557674, | Nov 18 1994 | Kok-Wah, Yeow | Absolute static lock of files and directories on magnetic disk storage media in single machine personal microcomputers |
5805699, | May 20 1996 | Fujitsu Limited | Software copying system |
5870759, | Oct 09 1996 | Oracle International Corporation | System for synchronizing data between computers using a before-image of data |
5943605, | Apr 16 1997 | THE CHASE MANHATTAN BANK, AS COLLATERAL AGENT | Arrangement for controlling extraction of data from a broadband digital stream employing a symbol table for translating symbolic program names to program and channel numbers |
5991542, | Sep 13 1996 | Apple Inc | Storage volume handling system which utilizes disk images |
6148292, | Jul 14 1997 | Francotyp-Postalia AG & Co. | Method for statistics mode reloading and for statistical acquisition according to statistics classes in the storing of a dataset |
6260113, | Nov 12 1998 | HGST NETHERLANDS B V | Method and apparatus defining a miss list and producing dial-in hit ratios in a disk storage benchmark |
6282654, | Aug 29 1997 | Sony Corporation | Information signal recording/reproducing system, information signal recording device, information signal reproducing device and information signal recording/reproducing process |
6681212, | Apr 23 1999 | Internet-based automated system and a method for software copyright protection and sales | |
6718446, | Feb 11 2000 | Bozak Investments, LLC | Storage media with benchmark representative of data originally stored thereon |
6772133, | Mar 05 1999 | Kabushiki Kaisha Toshiba | Information recording device and information reproducting device |
6782190, | Sep 02 1998 | MAXELL, LTD | Copy protection apparatus and method |
6865550, | Feb 03 2000 | Monument Peak Ventures, LLC | System for secure distribution and playback of digital data |
6920565, | Jun 05 2000 | Bozak Investments, LLC | Method and system for providing secure digital music duplication |
7343495, | May 13 1997 | Kabushiki Kaisha Toshiba | Information recording apparatus, information reproducing apparatus, and information distribution system |
EP813194, | |||
EP984346, | |||
EP1032543, | |||
EP1035543, | |||
JP11073725, | |||
WO3001352, | |||
WO9955055, |
Executed on | Assignor | Assignee | Conveyance | Frame | Reel | Doc |
Jun 12 2001 | SHORT, ROBERT | Iomega Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 029040 | /0281 | |
Jun 18 2001 | ISAACSON, SHAWN RAY | Iomega Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 029040 | /0281 | |
Jun 19 2001 | PETERS, ERIC | Iomega Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 029040 | /0281 | |
Jun 07 2006 | Iomega Corporation | Bozak Investments, LLC | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 020557 | /0243 | |
Jul 18 2007 | Bozak Investments, LLC | (assignment on the face of the patent) | / | |||
Jun 23 2015 | BOZAK INVESTMENTS LLC | Xylon LLC | MERGER SEE DOCUMENT FOR DETAILS | 036250 | /0556 |
Date | Maintenance Fee Events |
Jan 17 2013 | M1552: Payment of Maintenance Fee, 8th Year, Large Entity. |
Dec 28 2016 | M1553: Payment of Maintenance Fee, 12th Year, Large Entity. |
Date | Maintenance Schedule |
Jan 15 2016 | 4 years fee payment window open |
Jul 15 2016 | 6 months grace period start (w surcharge) |
Jan 15 2017 | patent expiry (for year 4) |
Jan 15 2019 | 2 years to revive unintentionally abandoned end. (for year 4) |
Jan 15 2020 | 8 years fee payment window open |
Jul 15 2020 | 6 months grace period start (w surcharge) |
Jan 15 2021 | patent expiry (for year 8) |
Jan 15 2023 | 2 years to revive unintentionally abandoned end. (for year 8) |
Jan 15 2024 | 12 years fee payment window open |
Jul 15 2024 | 6 months grace period start (w surcharge) |
Jan 15 2025 | patent expiry (for year 12) |
Jan 15 2027 | 2 years to revive unintentionally abandoned end. (for year 12) |