Patent Application
20090063871
The invention relates generally to methods for generating a protected data object from an original content, wherein the original content has a proprietary data format. Particularly the present invention relates to a method for providing the proprietary data format content included in protected data object. Further, the invention proposes a server unit and a mobile unit adapted to deal with said protected data object.
Though the spreading use of media content in digital form has many advantages regarding among others quality and ease of use, it also poses one problem, which resides in the chance of lossless duplication associated with digital content. Since it is easy to copy digital information, copyright infringement has become a great threat to content owners.
Presently, there are many different concepts and methods available, which are provided to deal with and generate protected digital content. The digital content that has to be protected corresponds for instance, but is not limited to, to usual software applications or other conceivable content, like digital music, pictures etc. Over the time, software applications on personal computers, mobile phones or gaming consoles (in the following called “system”) have become more and more precious and an attractive business has evolved around different kinds of applications on those systems. An example is the gaming business for mobile or stationary gaming devices. If a software application has been acquired for a particular device, a content protection technique has to ensure that this software application is only running on that specific device and cannot be copied to another device. It has to ensure that the application code cannot be manipulated (e.g. by exchanging code instructions) to protect the data integrity. A license is usually required to acquire and use the code. The term “license” summarizes the required software components that make the protected software run on a device. Content-protected software cannot be used without a valid license on the device.
Thus a protection for digital content was developed, the so called “digital rights management” (DRM). DRM utilizes encryption for the protection of media content. The principles of DRM are associating usage rules with the digital content and further enforcing these rules. The raw digital information is encrypted and usually specifically assigned to a predetermined device. Consequently, the content data cannot any longer be duplicated or without any restrictions be copied. This makes it possible for the provider of said digital content to restrict and suppress the undefined or illegal distribution of licensed content. The expression “digital content” summarizes usual content, which is well known on the market such as: ringing tones, pictures and logos, Java and Symbian applications, MIDI ring tones or even complex software applications or video clips. These issues are defined by the Open Mobile Alliance (OMA) and are provided for standardization of the usage of mobile-centric content.
DRM allows the control of usage of downloaded media objects and allows the content providers to define rules on how the content should be generally used. It makes it possible to sell the rights to use the media data rather then the media object himself. The rights can be delivered to the consuming device by downloading them together with the content or by sending the rights object separately from content. The OMA DRM system introduces three possible content delivery methods: forward-lock, combined delivery and separate delivery. The first two mentioned methods need to package content, together with a rights object, into a DRM message. The message may be delivered to the device using e.g. the OMA download mechanism (not part of this description).
The third method mentioned above is the separate delivery case. In this case the content provider needs to convert the plaintext media object into DRM content format. Said conversion includes symmetric encryption of the content making the DRM protected content useless to parties not having access to the Content Encryption Key (CEK). Thus, the content may be delivered via insecure transport. The rights object has to be separately delivered via secure transport like e.g. WAP push. However, the separate delivery is more secure than the first mentioned methods because it impedes to simply steal the content. Further information about the mentioned DRM methods are depicted in detail in the OMA DRM specification.
The state of the art offers lots of software tools for providing protection of digital content in accordance with the OMA DRM specification. These tools are called usually “Content Publishing Toolkits” and they shall provide the content provider with a user friendly software kit, which makes possible generating protected content into encrypted DCF-format (DRM content format).
The OMA Digital Rights Management specifies exactly the form for the DCF data object. In addition to the encrypting (see description above) the media object, also called DRM content format object (DCF), supports metadata such as:
The OMA in the version of November 2003 exactly defines the content format for protected DRM content.
The OMA DRM uses the Multipurpose Internet Mail Extensions (MIME) media types which are defined in the RFC 2046 standard for identifying the content type. Generally, the MIME-type field of a file is used to identify which kind of data said file contains. The information included in the MIME-type is used to invoke the proper application intended to deal with the data, e.g. if the data is a picture, the image viewer is to be started. In the context of OMA DRM the content type field that is mentioned in the itemization above must define the original MIME-type (or MIME media type) of the actual DRM protected content, i.e. what content type the result of a successful decryption of the included encrypted data represents. However, the content of the MIME-field is useful for an invoked DRM agent on the device side that wants to deal with the protected content.
The state of the art defines MIME-types just for standardized data and not for proprietary data. This means that it is not possible to protect proprietary data by means of DRM techniques. But this is exactly what is needed if DRM should be used to protect general application, for instance games, against illegal copying or similar. Games or other applications make heavily use of proprietary (or arbitrary) formats for images, level or map data in case of games. Level and map data usually describe the area where for instance a character of the game makes his movements.
The state of the art defines DRM protection only for data possessing a valid MIME-type field. This invention should enable DRM protection of content even if the content possesses a proprietary or arbitrary data format. This means that present invention should be usable for proprietary data or files, even if they do not have a valid MIME-type field or a valid file extension.
According to a first aspect of the present invention, a method for generating a protected data object from an original content by means of digital rights management (DRM) protection techniques, according to claim 1, is provided. The original content has a proprietary (or arbitrary, respectively) data format. After obtaining said original content an encryption of said content follows that results in an encrypted content. Then follows the creation or generation of a header portion of said protected data object associated with said encrypted content, said header portion comprising information relating to said original content, and having a MIME-type field, wherein said MIME-type field defines at least one application capable to process said original content. Afterwards a blank entry is assigned to said MIME-type field of said header portion. The blank MIME-type field is dedicated for indicating the existence of a proprietary data format of said original content. Finally, the protected data object is generated by combining said header portion and said encrypted content, to be included in a body portion of said protected data object.
It is preferred that a rights entity associated with the original content is generated. The rights entity may be provided for further usage. This is a step used by content providers to distribute protected and licensed content to the users.
The original content may correspond to a software application, which is adapted to run on a mobile terminal device. This issue is advantageously for providing applications to be used on mobile devices like i.e. mobile phones.
It is preferred that said protected content is freely distributable from said mobile terminal device to a plurality of mobile terminal devices. This enables the distribution of said protected content.
According to another aspect of the present invention, a method for providing a proprietary data format content included in a protected data object having a MIME-type field is provided. Said protected data object is generated by means of digital rights management (DRM) techniques. Said method for providing proprietary comprises the steps of firstly receiving a request from a data-requesting application for obtaining the data included in said protected data object and subsequently checking the content of said MIME-type field in the protected data object. Subsequently it should be determined whether said MIME-type field of said protected data object is blank. The blank MIME-type field indicates the existence of proprietary data format. Further follows the extraction of an encrypted content included in a body portion of the protected data object and additionally decrypting of said encrypted content resulting in said proprietary data format content. Finally, the proprietary data format content is provided to the data-requesting application.
It is preferred that said encrypted content processed with respect to a previously obtained rights entity that is associated with said protected data object. This enables a controlled usage of the original content which has been previously encrypted by a content provider.
According to another aspect of the present invention a computer program for handling protected content is provided, comprising program code sections for carrying out the steps of anyone of the aforementioned claims, when said program is run on a computer, a microprocessor based device, a terminal, a network device, a mobile terminal, or a portable communication enabled terminal. Special software is essential for the invention, to provide a closed system on either side of the process.
According to another aspect of the present invention a computer program product for handling protected content is provided, comprising program code sections stored on a machine-readable medium for carrying out the steps of anyone of the aforementioned claims, when said program product is run on a computer, a microprocessor based device, a terminal, a network device, a mobile terminal, or a portable communication enabled terminal.
According to another aspect of the present invention a software tool for handling protected content is provided, comprising program portions for carrying out the operations of any one of the aforementioned claims, when said program is implemented in a computer program for being executed on a microprocessor based device, processing device, a terminal device, a network device, a mobile terminal, or a portable communication enabled terminal.
According to another aspect of the present invention a computer data signal is provided, embodied in a carrier wave and representing a program that instructs a computer to perform the steps of the method of anyone of the aforementioned claims.
According to an embodiment of the invention a server unit for generating a protected data object from an original content by means of digital rights management (DRM) protection techniques is provided, wherein said original content has a proprietary data format, comprising:
According to an embodiment of the invention a mobile unit for providing proprietary data format content included in a protected data object having a MIME-type field is provided, wherein said protected data object is generated by means of digital rights management (DRM) techniques, comprising:
In the following, the invention will be described in detail by referring to the enclosed drawings in which:
The creating of the entire header portion is followed by the operation S13. This operation is an important step of the present invention and it assigns to the MIME-type field a blank value. After processing the operations S12 and S13 a DCF header in accordance with the present invention is provided. The operation S11 that may run in parallel to S12 and S13 provides the encryption of the original content. As mentioned above a symmetric encrypting technique may be provided by usage of the CEK-key. Information relating to the encrypting mechanism is included in the header portion to allow decryption of the encrypted content on the user side. Operation S14 symbolizes the combining of the header portion with the encrypted content. Block 2 depicts the protected data object succeeding operation S14. The protected data object 2 is now ready to be provided. The protected data object 2 has the typical DRM format that is specified by the Open Mobile Alliance. A header portion containing information about the corresponding content and a body portion containing at least one data portion is included in this data container. The header portion and the body portion are delimited from each other by a predefined boundary tag that is specified in RFC 2046.
After processing operation S 13 the MIME-type field 23 is now blank indicating the existence of proprietary data format content. The other fields depicted in the header portion 21 contain additional information relating to the original content 1 and also information about the encryption algorithm provided to obtain the encrypted content 22. The obtained header portion containing said blank MIME-type fields together with the body portion, representing the encrypted content, are assembled to a protected data object 2.
Block 25 illustrates the generating of a rights entity in accordance with the original content is depicted. Operation S21 represents the process of generating a license entity, which defines the rights for dealing with said original content 1 on the user side. It is possible to set rights for previewing the content or for instance temporal executable rights or similar. The DRM specification exactly defines which usage rights are possible. The rights entity may be provided together with the protected data object or separately. After performing of the operation included in block 25 and 26 the protected data object 2 is now ready for distribution. Finally, the original content is encrypted and also the rights entity is generated and the content is now distributable without restrain.
Another object of the present invention is to provide a method for the DRM agent to deal with proprietary (or arbitrary) data format. The proprietary data format can not be associated with a standard application like for instance the image viewer or mp3-player. The following introduces a method for dealing with proprietary data format content included in a protected data object in accordance with the present invention. The method is to be processed on the user side for instance in a mobile device. Said decryption of the encrypted content is provided inside the DRM agent in accordance with the previously obtained rights. The rights entity may be included in the protected data object but another possibility is to store the rights entity in a special data base on the user side for instance.
The API in
API 1 or API 2 requests a file stored in the file system. Next, if the MIME-type field corresponds to a standard MIME-type field definition an standard process is to be started after the DRM agent processes the decrypting. Whole decrypting operations are processed with respect to the stored rights entities.
API 1 demands proprietary data format content, according to S44, included in a protected data object that is stored in the file system. The DRM implementation executes the operations, which are depicted in the emphasized block of
After performing the encryption the DRM implementation provides the API 1 with the decrypted content 1 representing the demanded original content.
Even though the invention is described above with reference to embodiments according to the accompanying drawings, it is clear that the invention is not restricted thereto but it can be modified in several ways within the scope of the appended claims.
| Filing Document | Filing Date | Country | Kind | 371c Date |
|---|---|---|---|---|
| PCT/IB04/03303 | 10/11/2004 | WO | 00 | 11/13/2008 |
