Steganographic techniques for securely delivering electronic digital rights management control information over insecure communication channels5943422
Abstract
Electronic steganographic techniques can be used to encode a rights management control signal onto an information signal carried over an insecure communications channel. Steganographic techniques ensure that the digital control information is substantially invisibly and substantially indelibly carried by the information signal. These techniques can provide end-to-end rights management protection of an information signal irrespective of transformations between analog and digital. An electronic appliance can recover the control information and use it for electronic rights management to provide compatibility with a Virtual Distribution Environment. In one example, the system encodes low data rate pointers within high bandwidth time periods of the content signal to improve overall control information read/seek times.
Claims
What is claimed is:
1. A rights management method comprising:
(a) receiving an information signal;
(b) steganographically decoding the received information signal to recover digital rights management control information packaged within at least one secure digital container; and
(c) performing at least one rights management operation based at least in part on the recovered digital rights management control information.
2. A method as in claim 1 wherein the decoding step (b) includes the step of steganographically decoding information representing at least one permissions record.
3. A method as in claim 1 further including the step of decrypting contents of the digital container for use in performing step (c).
4. A method as in claim 1 wherein the information signal carries further information in addition to the steganographically encoded information, and the performing step (b) comprises the step of managing at least one right in respect of the further information.
5. A method as in claim 1 wherein the decoding step (b) includes the step of analyzing the information signal using a spectral transform.
6. A method as in claim 1 wherein the decoding step (b) includes the step of analyzing the information signal using a key-based steganographic decoder.
7. A method as in claim 1 wherein the decoding step (b) includes the step of steganographically decoding a pointer that points to another portion of the information signal.
8. A method as in claim 1 wherein the steganographically encoded container includes at least one organization structure, and the decoding step (b) comprises steganographically decoding the organizational structure.
9. An electronic appliance comprising:
decoding means for steganographically decoding a signal to provide control information packaged within at least one secure digital container; and
rights management means coupled to the decoding means for performing at least one rights management operation based at least in part on the control information.
10. An appliance as in claim 9 wherein the rights management means includes means for means for selectively blocking the signal.
11. An appliance as in claim 9 wherein the rights management means includes means for selectively descrambling the signal.
12. An appliance as in claim 9 wherein the rights management means includes means for authenticating a further appliance before delivering the signal to said further appliance.
13. An appliance as in claim 9 wherein the rights management means includes means for requiring that a further appliance present an appropriate digital certificate before delivering the signal to said further appliance.
14. An appliance as in claim 9 wherein the right management means includes means for fingerprinting the signal based at least in part on the control information.
15. An appliance as in claim 9 wherein the right management means includes means for further steganographically encoding the signal based at least in part on the control information.
16. An electronic appliance comprising:
a steganographic decoder that steganographically decode a signal to provide control information packaged within at least one secure digital container; and
rights management component coupled to the decoder, the rights management component performing at least one rights management operation based at least in part on the control information.
17. An appliance as in claim 16 wherein the rights management component includes or controls a signal blocking circuit that selectively blocks the signal.
18. An appliance as in claim 16 wherein the rights management component includes or controls a signal descrambler.
19. An appliance as in claim 16 wherein the rights management component includes an authenticating circuit for authenticating a further appliance before delivering the signal to said further appliance.
20. An appliance as in claim 16 wherein the rights management component includes a circuit for requiring that a further appliance present an appropriate digital certificate before delivering the signal to said further appliance.
21. An appliance as in claim 16 wherein the rights management component includes a circuit for fingerprinting the signal based at least in part on the control information.
22. An appliance as in claim 16 wherein the rights management component includes a circuit for further steganographically encoding the signal based at least in part on the control information.
23. A rights management method comprising:
(a) receiving a signal comprising
governed information and
a first rule steganographically incorporated into said signal;
(b) steganographically decoding said signal to recover said first rule; and
(c) at a first apparatus, performing at least one operation on said governed information, said operation governed, at least in part, by said first rule,
said at least one operation comprising at least:
identifying at least one attribute of a user or viewer of said governed information, and
allowing said user or viewer to gain access to said information based on said identification.
24. A method as in claim 23, in which:
said at least one attribute comprises the identity of said user or viewer.
25. A method as in claim 23, in which:
said at least one attribute comprises the age of said user or viewer.
26. A method as in claim 23, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said rule.
27. A method as in claim 23, further comprising:
(d) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(e) releasing said watermarked or fingerprinted governed information to a second apparatus.
28. A method as in claim 27, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
29. A method as in claim 27, further comprising:
prior to said releasing step (e), said first apparatus receiving a certificate from said second apparatus.
30. A method as in claim 29, in which:
said certificate specifies at least one attribute of said second apparatus.
31. A method as in claim 30, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
32. A method as in claim 31, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
33. A method as in claim 23, in which:
said governed information is received in an encrypted or scrambled form; and
said gaining access at least in part comprises decrypting or unscrambling said information.
34. A method as in claim 23, in which:
said steps (b) and (c) are securely performed, said secure performance occurring at least in part on a secure processing unit.
35. A method as in claim 23, further comprising:
following said step (b), creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
36. A method as in claim 23, further comprising:
(d) under control of said first rule, making a copy of at least a portion of said governed information; and
(e) transferring said copy to a second apparatus, said transferred copy not including said first rule.
37. A method as in claim 23, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
38. A method as in claim 37, further comprising:
transmitting said generated signal from said first apparatus to a second apparatus.
39. A rights management method comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
at first rule steganographically incorporated into said signal;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule; and
(c) at said first apparatus, performing at least one operation on at least a portion of said governed information, said operation governed, at least in part, by said first rule,
said at least one operation comprising at least:
determining whether said governed information has been accessed or used more than a specified number of times, and
allowing access or use of said governed information if said number of accesses or uses is less than or equal to said specified number, or
blocking access or use if said number of accesses or uses is greater than said specified number.
40. A method as in claim 39, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said first rule.
41. A method as in claim 39, further comprising:
(d) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(e) releasing said watermarked or fingerprinted governed information to a second apparatus.
42. A method as in claim 41, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
43. A method as in claim 39, further comprising:
(d) at said first apparatus, receiving a certificate from said second apparatus; and
(e) releasing at least a portion of said governed information to a second apparatus.
44. A method as in claim 43, in which:
said certificate specifies at least one attribute of said second apparatus.
45. A method as in claim 44, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
46. A method as in claim 45, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
47. A method as in claim 39, further comprising:
following said step (b), at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
48. A method as in claim 39, further comprising:
(d) under control of said first rule, making a copy of at least a portion of said governed information; and
(e) transferring said copy to a second apparatus, said transferred copy not including said first rule.
49. A method as in claim 39, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
50. A method as in claim 49, further comprising:
transmitting said generated signal from said first apparatus to a second apparatus.
51. A rights management method, comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
a first rule steganographically incorporated into said signal,
said first rule specifying a time;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule;
(c) at said first apparatus, attempting to access said governed information;
(d) at said first apparatus, checking to determine if said time has been reached or exceeded; and
(e) at said first apparatus, allowing said access to complete if said time has not been reached or exceeded, but blocking said access if said time has not been reached.
52. A method as in claim 51, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said first rule.
53. A method as in claim 51, further comprising:
(f) at said first apparatus, applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(g) releasing said watermarked or fingerprinted governed information to a second apparatus.
54. A method as in claim 53, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
55. A method as in claim 53, further comprising:
prior to said releasing step (g), said first apparatus receiving a certificate from said second apparatus.
56. A method as in claim 55, in which:
said certificate specifies at least one attribute of said second apparatus.
57. A method as in claim 56, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
58. A method as in claim 57, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
59. A method as in claim 51, in which:
said governed information is received in an encrypted or scrambled form; and
said completion of said access at least in part comprises decrypting or unscrambling said governed information.
60. A method as in claim 51, in which:
said steps (b)-(e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
61. A method as in claim 51, further comprising:
following said step (b), at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
62. A method as in claim 51, further comprising:
(f) under control of said first rule, making a copy of at least a portion of said governed information; and
(g) transferring said copy to a second apparatus, said transferred copy not including said first rule.
63. A method as in claim 51, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising said first governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
64. A method as in claim 63, further comprising:
transmitting said generated signal from said first apparatus to a second apparatus.
65. A rights management method operating at least in part on a first apparatus, said first apparatus including a communications port and means for accessing information on a removable memory device, said method comprising:
(a) at said first apparatus, receiving a removable memory device containing a signal, said signal comprising
governed information and
a first rule steganographically incorporated into said signal,
(b) at said first apparatus, steganographically decoding said signal to recover said first rule;
(c) at said first apparatus, using said communications port to initiate communication with a second apparatus remote from said first apparatus;
(d) at said first apparatus, receiving at least a second rule from said second apparatus;
(e) at said first apparatus, using said first rule or said second rule to govern at least one aspect of access to or use of said governed information.
66. A method as in claim 65, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said first rule.
67. A method as in claim 66, in which:
said second rule is received in an encrypted form, and
said method further comprises:
decrypting said second rule prior to using said second rule.
68. A method as in claim 65, further comprising:
(f) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(g) releasing said watermarked or fingerprinted governed information to a second apparatus.
69. A method as in claim 68, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
70. A method as in claim 65, further comprising:
(f) at said first apparatus, receiving a certificate from said third apparatus; and
(g) releasing at least a portion of said governed information to said third apparatus.
71. A method as in claim 70, in which:
said certificate specifies at least one attribute of said third apparatus.
72. A method as in claim 71, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said third apparatus.
73. A method as in claim 72, in which:
said determination is based on whether said digital certificate indicates that said third apparatus includes specified rights management functionality.
74. A method as in claim 65, in which:
said governed information is received in an encrypted or scrambled form; and
said at least one aspect of access to or use of said governed information at least in part comprises decrypting or unscrambling said governed information.
75. A method as in claim 65, in which:
said steps (b) through (e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
76. A method as in claim 65, further comprising:
following said step (b), creating a signal comprising at least a portion of said governed information and
said second rule, steganographically encoded.
77. A method as in claim 65, further comprising:
(f) under control of said first rule or said second rule, making a copy of at least a portion of said governed information; and
(g) transferring said copy to a remote apparatus, said transferred copy not including said first rule or said second rule.
78. A method as in claim 65, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
79. A method as in claim 78, further comprising:
transmitting said generated signal from said first apparatus to said second apparatus.
80. A rights management method operating at least in part on a first apparatus, said first apparatus including a communications port and means for accessing information on a removable memory device, said method comprising:
(a) at said first apparatus, receiving a removable memory device containing a signal, said signal comprising
governed information and
a first rule steganographically incorporated into said signal, said first rule requiring that payment be made at a remote site in return for use of or access to at least a portion of said governed information;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule;
(c) at said first apparatus, initiating at least one access to or use of at least a portion of said governed information;
(d) at said first apparatus, initiating communication, through said communications port, with a second apparatus remote from said first apparatus;
(e) providing information from said first apparatus to said second apparatus, said information comprising or enabling payment for said at least one access or use.
81. A method as in claim 80, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said rule.
82. A method as in claim 80, further comprising:
(f) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(g) releasing said watermarked or fingerprinted governed information to a second apparatus.
83. A method as in claim 82, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
84. A method as in claim 80, further comprising:
(f) at said first apparatus, receiving a certificate from said second apparatus; and
(g) releasing at least a portion of said governed information to a second apparatus.
85. A method as in claim 84, in which:
said certificate specifies at least one attribute of said second apparatus.
86. A method as in claim 85, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
87. A method as in claim 86, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
88. A method as in claim 80, in which:
said governed information is received in an encrypted or scrambled form; said method further comprising:
following said providing step (e), decrypting or unscrambling at least a portion of said governed information.
89. A method as in claim 80, in which:
said steps (b) through (e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
90. A method as in claim 80, further comprising:
following said step (e), at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
91. A method as in claim 80, further comprising:
(f) at said first apparatus, under control of said first rule, making a copy of at least a portion of said governed information; and
(g) transferring said copy to a third apparatus, said transferred copy not including said first rule.
92. A method as in claim 80, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
93. A method as in claim 92, further comprising:
transmitting said generated signal from said first apparatus to a third apparatus.
94. A rights management method comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
a first rule steganographically incorporated into said signal;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule; and
(c) at said first apparatus, performing at least one operation on said governed information, said operation governed, at least in part, by said first rule,
said at least one operation comprising at least:
requiring a payment prior to releasing said information for access by a user or viewer;
(d) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(e) releasing said watermarked or fingerprinted governed information to a second apparatus.
95. A method as in claim 94, in which:
said rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said rule.
96. A method as in claim 94, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
97. A method as in claim 94, further comprising:
prior to said releasing step (e):
at said first apparatus, receiving a certificate from said second apparatus; and
releasing at least a portion of said governed information to a second apparatus.
98. A method as in claim 97, in which:
said certificate specifies at least one attribute of said second apparatus.
99. A method as in claim 98, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
100. A method as in claim 99, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
101. A method as in claim 94, in which:
said governed information is received in an encrypted or scrambled form; and
said releasing said governed information at least in part comprises decrypting or unscrambling said governed information.
102. A method as in claim 94, in which:
said steps (b) and (c) are securely performed, said secure performance occurring at least in part on a secure processing unit.
103. A method as in claim 94, further comprising:
said step (d) further comprising steganographically encoding a second rule into said governed information, said second rule differing in at least one aspect from said first rule.
104. A method as in claim 94, in which:
said watermarked or fingerprinted governed information released in said step (e) does not include said first rule steganographically encoded in said information.
105. A method as in claim 94, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
106. A method as in claim 105, in which:
said applying step (d) further comprises applying said watermark or fingerprint to said corrected signal; and
said information released in said releasing step (e) said corrected signal.
107. A rights management method comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
an organizational structure incorporated into said signal,
said organizational structure including a first rule governing at least one aspect of access to or use of said governed information;
said organizational structure comprising a secure container containing said first rule;
(b) at said first apparatus, steganographically decoding said signal to recover said organizational structure;
(c) at said first apparatus, accessing said first rule; and
(d) at said first apparatus, using said first rule to govern at least one aspect of access to or use of said governed information.
108. A method as in claim 107, in which:
said secure container further contains identification information identifying said governed information.
109. A method as in claim 107, in which:
said receiving step (a) further comprises receiving said secure container in an encrypted form; and
said method further comprises decrypting said secure container.
110. A method as in claim 109, in which:
said secure container further contains a permissions record.
111. A method as in claim 110, in which:
said permissions record contains or references said first rule.
112. A method as in claim 109, in which:
said first rule controls, at least in part, use of an analog file on a device designed to render, display or play said analog file.
113. A method as in claim 108, in which:
said governed information is contained within said secure container.
114. A method as in claim 107, in which:
said organizational structure is received in an encrypted form,
said decoding step (b) further comprising decrypting said organizational structure.
115. A method as in claim 107, further comprising:
(e) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(f) releasing said watermarked or fingerprinted governed information to a second apparatus.
116. A method as in claim 115, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
117. A method as in claim 107, further comprising:
(e) at said first apparatus, receiving a certificate from a second apparatus,
(f) releasing said governed information to a second apparatus, said releasing step being based, at least in part, on information contained in said certificate.
118. A method as in claim 117, in which:
said certificate specifies at least one attribute of said second apparatus.
119. A method as in claim 118, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
120. A method as in claim 119, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
121. A method as in claim 107, in which:
said governed information is received in an encrypted or scrambled form; and
said at least one aspect of access to or use of said governed information at least in part comprises decrypting or unscrambling said governed information.
122. A method as in claim 107, in which:
said steps (b) through (d) are securely performed, said secure performance occurring at least in part on a secure processing unit.
123. A method as in claim 107, further comprising:
following said step (b), at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
124. A method as in claim 107, further comprising:
(e) under control of said first rule, making a copy of at least a portion of said governed information; and
(f) transferring said copy to a second apparatus, said transferred copy not including said first rule.
125. A method as in claim 107, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
126. A method as in claim 125, further comprising:
transmitting said corrected signal from said first apparatus to a second apparatus.
127. A rights management method, comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
at least a first and a second rule steganographically incorporated into said signal,
(b) at said first apparatus, determining whether to use said first rule or said second rule to govern at least one operation on said governed information;
said determination based, at least in part, on information regarding the nature or identification of said first apparatus; and
(c) at said first apparatus, using said first rule or said second rule to govern said at least one operation.
128. A method as in claim 127, in which:
said first and second rules are received in an encrypted form; and
said decoding step (b) further comprises decrypting said rules.
129. A method as in claim 127, further comprising:
(d) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(e) releasing said watermarked or fingerprinted governed information to a second apparatus.
130. A method as in claim 129, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
131. A method as in claim 127, further comprising:
(d) at said first apparatus, receiving a certificate from said second apparatus; and
(e) releasing at least a portion of said governed information to a second apparatus.
132. A method as in claim 131, in which:
said certificate specifies at least one attribute of said second apparatus.
133. A method as in claim 132, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
134. A method as in claim 133, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
135. A method as in claim 127, in which:
said governed information is received in an encrypted or scrambled form; and
said at least one operation at least in part comprises decrypting or unscrambling said governed information.
136. A method as in claim 127, in which:
said steps (b) and (c) are securely performed, said secure performance occurring at least in part on a secure processing unit.
137. A method as in claim 127, further comprising:
following said step (c), at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded third rule, said second rule differing in at least one aspect from said first rule and from said second rule.
138. A method as in claim 127, further comprising:
(d) under control of said first rule, making a copy of at least a portion of said governed information; and
(e) transferring said copy to a second apparatus, said transferred copy not including said first rule or said second rule.
139. A method as in claim 127, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule and said second rule contain errors;
at said first apparatus, using said error correction information to correct errors in said first rule and/or said second rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule and/or said corrected second rule, said signal not including said erroneous version of said first and/or second rule.
140. A method as in claim 139, further comprising:
transmitting said corrected signal from said first apparatus to a second apparatus.
141. A rights management method operating at least in part on a first apparatus, said first apparatus including a communications port, means for accessing information on a removable memory device, and steganographic encoding circuitry said method comprising:
(a) at said first apparatus, receiving a removable memory device containing a signal, said signal comprising
governed information and
a first rule steganographically incorporated into said signal, said first rule requiring that payment be made at a remote site in return for use of or access to at least a portion of said governed information;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule;
(c) at said first apparatus, initiating at least one access to or use of at least a portion of said governed information;
(d) at said first apparatus, making an analog copy of at least a portion of said governed information; and
(e) at said first apparatus, steganographically incorporating at least one rule into said analog copy, said rule governing at least one aspect of access to or use of said analog copy.
142. A method as in claim 141, in which:
said rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said rule.
143. A method as in claim 141, further comprising:
(f) applying a watermark or fingerprint to at least a portion of said analog copy, said application occurring at least in part under the control of at least one rule; and
(g) releasing said watermarked or fingerprinted governed information to a second apparatus.
144. A method as in claim 143, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
145. A method as in claim 141, further comprising:
(f) at said first apparatus, receiving a certificate from said second apparatus; and
(g) releasing at least a portion of said governed information to a second apparatus.
146. A method as in claim 145, in which:
said certificate specifies at least one attribute of said second apparatus.
147. A method as in claim 146, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
148. A method as in claim 147, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
149. A method as in claim 141, in which:
said governed information is received in an encrypted or scrambled form; and
said at access to or use of said governed information specified in said step (c) at least in part comprises decrypting or unscrambling said governed information.
150. A method as in claim 141, in which:
said steps (b) through (e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
151. A method as in claim 141, in which:
said rule steganographically incorporated in said step (e) comprises a second rule, said second rule differing in at least one aspect from said first rule.
152. A method as in claim 141, further comprising:
(f) transferring said analog copy to a second apparatus, said transferred copy not including said first rule.
153. A method as in claim 141, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
said rule steganographically incorporated in said step (e) comprising said corrected first rule.
154. A method as in claim 153, further comprising:
(f) transmitting said analog copy from said first apparatus to a second apparatus.
155. A steganographic encoding method comprising:
(a) receiving information;
(b) transforming said information into a signal;
(c) selecting a first and a second location in said signal for the incorporation of steganographically encoded information, said selection being governed at least in part by an analysis of the bandwidth available at such location for such encoding;
(d) steganographically encoding a first rule in said first location, said first rule at least in part governing at least one aspect of use of at least a portion of said information;
(e) steganographically encoding a second rule in said second location, said second rule at least in part governing at least one aspect of use of at least a portion of said information.
156. A method as in claim 155, further comprising:
prior to said steganographically encoding step (d), encrypting said first rule; and
prior to said steganographically encoding step (e), encrypting said second rule.
157. A method as in claim 155, further comprising:
prior to said steganographically encoding step (d), incorporating said first rule into a secure container.
158. A method as in claim 155, in which:
said first rule at least in part governs at least one aspect of use of a first portion of said information; and
said second rule at least in part governs at least one aspect of use of a second portion of said information, said second portion being different from said first portion.
159. A method as in claim 155, in which:
said transforming step (b) further comprises encrypting or scrambling said information; and
said at least one aspect of access to or use of said information governed by said first rule at least in part comprises decrypting or unscrambling said governed information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
160. A rights management method operating at least in part on a first apparatus, said method comprising:
(a) receiving a signal comprising
governed information and
an organizational structure incorporated into said signal,
said organizational structure including a pointer to a first rule governing at least one aspect of access to or use of said governed information;
(b) steganographically decoding said signal to recover said organizational structure;
(c) accessing said pointer;
(d) using said pointer to locate said first rule; and
(e) using said first rule to govern at least one aspect of access to or use of said governed information.
161. A method as in claim 160, in which:
said organizational structure comprises a secure container containing said pointer.
162. A method as in claim 161, in which:
said secure container further contains identification information identifying said governed information.
163. A method as in claim 161, in which:
said first apparatus includes a communications port; and
said locating step (d) further comprises
using said communications port to initiate communication with a second apparatus remote from said first apparatus; and
locating said first rule at said second apparatus.
164. A method as in claim 163, in which:
said receiving step (a) further comprises receiving said signal from said second apparatus, through said communications port.
165. A method as in claim 163, in which:
said receiving step (a) further comprises receiving said signal from a source other than said second apparatus.
166. A method as in claim 162, in which:
said receiving step (a) further comprises receiving said secure container in an encrypted form; and
said method further comprises decrypting said secure container.
167. A method as in claim 162, in which:
said secure container further contains a permissions record.
168. A method as in claim 167, in which:
said permissions record contains or references said pointer.
169. A method as in claim 162, in which:
said first rule controls, at least in part, use of an analog file on a device designed to render, display or play said analog file.
170. A method as in claim 160, in which:
said pointer constitutes a URL.
171. A method as in claim 161, in which:
said secure container contains said governed information.
172. A method as in claim 160, in which:
said organizational structure is received in an encrypted form,
said decoding step (b) further comprising decrypting said organizational structure.
173. A method as in claim 160, further comprising:
(f) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(g) releasing said watermarked or fingerprinted governed information to a second apparatus.
174. A method as in claim 173, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
175. A method as in claim 160, further comprising:
(f) at said first apparatus, receiving a certificate from said second apparatus; and
(g) releasing at least a portion of said governed information to a second apparatus.
176. A method as in claim 175, in which:
said certificate specifies at least one attribute of said second apparatus.
177. A method as in claim 176, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
178. A method as in claim 177, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
179. A method as in claim 160, in which:
said governed information is received in an encrypted or scrambled form; and
said at least one aspect of access to or use of said governed information specified in said step (e) at least in part comprises decrypting or unscrambling said governed information.
180. A method as in claim 160, in which:
said steps (b) through (e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
181. A method as in claim 160, further comprising:
following said step (e), at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded pointer to a second rule, said second rule differing in at least one aspect from said first rule.
182. A method as in claim 160, further comprising:
(f) under control of said first rule, making a copy of at least a portion of said governed information; and
(g) transferring said copy to a second apparatus, said transferred copy not including said pointer.
183. A method as in claim 160, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said pointer contains errors;
at said first apparatus, using said error correction information to correct errors in said pointer; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected pointer, said signal not including said erroneous version of said pointer.
184. A method as in claim 183, further comprising:
transmitting said corrected signal from said first apparatus to a second apparatus.
185. A rights management method operating at least in part on a first apparatus, said first apparatus including a communications port, said method comprising:
(a) at said first apparatus, receiving a signal, said signal comprising
governed information and
a first rule steganographically incorporated into said signal, said first rule controlling whether said governed information may be transmitted through said communications port;
(b) at said first apparatus, steganographically decoding said signal to recover said at least one rule;
(c) at said first apparatus attempting to initiate a transfer of said governed information through said communications port;
(d) at said first apparatus, invoking said first rule,
(e) at said first apparatus determining, based on said first rule, whether said transfer is authorized; and
(f) completing said transfer if said transfer is authorized, otherwise aborting said transfer.
186. A method as in claim 185, in which:
said first apparatus includes a removable memory device connected to said communications port; and
said transfer comprises a transfer through said communications port to said removable memory device.
187. A method as in claim 185, in which:
said transfer comprises a transfer through said communications port to a second apparatus.
188. A method as in claim 185, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said first rule.
189. A method as in claim 185, further comprising:
(g) applying a watermark or fingerprint to at least a portion of said governed information prior to said transfer, application occurring at least in part under the control of at least one rule.
190. A method as in claim 189, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
191. A method as in claim 187, in which:
said determining step (e) is based, at least in part, on whether said second apparatus includes functionality designated by said first rule.
192. A method as in claim 191, in which:
said designated functionality includes at least the ability of said second apparatus to protect said governed information in at least one respect.
193. A method as in claim 192, in which:
said designated functionality further includes the ability of said second apparatus to use said rule to govern at least one operation occurring on said second apparatus, and
said method further comprises transferring a copy of said rule from said first apparatus to said second apparatus.
194. A method as in claim 193, in which:
said rule requires that said second apparatus transfer a certificate to said first apparatus.
195. A method as in claim 194, in which:
said rule further requires that said certificate identify said designated functionality.
196. A method as in claim 185, in which:
said governed information is received in an encrypted or scrambled form.
197. A method as in claim 185, in which:
said transfer transfers a copy of said governed information.
198. A method as in claim 185, in which:
said steps (b) through (e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
199. A method as in claim 185, further comprising:
prior to said step (c),
at said first apparatus, creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule;
said governed information referred to in said step (c) constituting said created signal.
200. A method as in claim 185, further comprising:
said governed information transferred in said step (f) does not contain said first rule.
201. A method as in claim 185, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule, said corrected signal constituting said governed information referred to in said step (c).
202. A rights management method operating at least in part on a first apparatus, said first apparatus including a communications port and means for accessing information on a removable memory device, said method comprising:
(a) at said first apparatus, receiving a removable memory device containing a signal, said signal comprising
governed information and
a first rule steganographically incorporated into said signal, said first rule requiring that payment be made at a remote site in return for use of or access to at least a portion of said governed information;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule;
(c) at said first apparatus, initiating at least one access to or use of at least a portion of said governed information;
(d) at said first apparatus, initiating communication, through said communications port, with a second apparatus remote from said first apparatus;
(e) providing payment from said first apparatus to said second apparatus;
(f) checking to determine whether said payment has been provided; and
(g) allowing said at least one access to or use of at least a portion of said governed information to complete if said check reveals that said payment has been provided.
203. A method as in claim 202, in which:
said governed information comprises video information and audio information; and
said portion of said governed information comprises said audio information, said step (g) further comprising:
allowing access at said first apparatus to said video and audio information if said payment is made and is sufficient for said access, and
allowing access to said video information but denying access to said audio information if said payment is either not made or is not sufficient.
204. A method as in claim 202, further comprising:
(h) at said first apparatus, completing said at least one access or use.
205. A method as in claim 204, further comprising:
(i) said second apparatus providing information to said first apparatus, which information enables or authorizes said at least one access or use of said at least a portion of said governed information; and
said completing step (h) occurs after said step (i).
206. A method as in claim 204, in which:
said completing step (h) occurs prior to said step (i).
207. A method as in claim 204, further comprising:
(h) said first apparatus storing information related to the number of times said governed information has been accessed or used; and
said payment information transmitted in said step (e) is dependent, at least in part, on the number of times said governed information has been accessed or used.
208. A method as in claim 207, in which:
said payment is a first amount for a first access or use of said governed information, and a second amount for a second access or use of said governed information.
209. A method as in claim 208, in which:
said first payment amount is higher than said second payment amount.
210. A method as in claim 202, in which:
said rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said rule.
211. A method as in claim 202, further comprising:
at said first apparatus applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
releasing said watermarked or fingerprinted governed information from said first apparatus to a third apparatus.
212. A method as in claim 211, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
213. A method as in claim 202, further comprising:
at said first apparatus, receiving a certificate from a third apparatus; and
releasing at least a portion of said governed information to said third apparatus.
214. A method as in claim 213, in which:
said certificate specifies at least one attribute of said third apparatus.
215. A method as in claim 213, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said third apparatus.
216. A method as in claim 215, in which:
said determination is based on whether said digital certificate indicates that said third apparatus includes specified rights management functionality.
217. A method as in claim 202, in which:
said governed information is received in an encrypted or scrambled form; and further comprising:
following said providing step (e) decrypting or unscrambling at least said portion of said governed information.
218. A method as in claim 202, in which:
said steps (b) through (g) are securely performed, said secure performance occurring at least in part on a secure processing unit.
219. A method as in claim 202, in which:
said at least one access to or use of referred to in said step (g) comprises:
creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
220. A method as in claim 202, in which:
said at least one access to or use of referred to in said step (g) comprises:
under control of said first rule, making a copy of at least a portion of said governed information; and
said method further comprises:
(h) transferring said copy to a third apparatus, said transferred copy not including said first rule.
221. A method as in claim 202, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a corrected signal comprising said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
222. A method as in claim 202, further comprising:
transmitting said corrected signal from said first apparatus to a third apparatus.
223. A rights management method comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
a first rule steganographically incorporated into said signal;
(b) at said first apparatus, steganographically decoding said signal to recover said first rule, said rule acting to prohibit conversion of said governed information from a first format to a second format; and
(c) at said first apparatus, performing at least one operation on said governed information, said operation governed, at least in part, by said first rule.
224. A method as in claim 223, in which:
said first format comprises digital encoding, and said second format comprises analog encoding.
225. A method as in claim 223, in which:
said first format comprises analog encoding, and
said second format comprises digital encoding.
226. A method as in claim 223, in which:
said rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said first rule.
227. A method as in claim 223, further comprising:
(d) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(e) releasing said watermarked or fingerprinted governed information to a second apparatus.
228. A method as in claim 227, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
229. A method as in claim 223, further comprising:
(d) at said first apparatus, receiving a certificate from said second apparatus; and
(e) releasing at least a portion of said governed information to a second apparatus.
230. A method as in claim 229, in which:
said certificate specifies at least one attribute of said second apparatus.
231. A method as in claim 230, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
232. A method as in claim 231, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
233. A method as in claim 223, in which:
said governed information is received in an encrypted or scrambled form; and
said operation at least in part comprises decrypting or unscrambling said information.
234. A method as in claim 223, in which:
said steps (b) and (c) are securely performed, said secure performance occurring at least in part on a secure processing unit.
235. A method as in claim 223, in which:
said at least one access to or use of referred to in said step (c) includes:
creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
236. A method as in claim 223, in which:
said at least one access to or use of referred to in said step (c) includes:
under control of said first rule, making a copy of at least a portion of said governed information; and
said method further comprises:
(d) transferring said copy to a second apparatus, said transferred copy not including said first rule.
237. A method as in claim 223, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said received first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
238. A method as in claim 237, in which:
said at least one access to or use of referred to in said step (c) includes:
transmitting said corrected signal from said first apparatus to a second apparatus.
239. A rights management method operating at least in part on a first apparatus, comprising:
(a) receiving a signal comprising
first governed information,
second governed information, and
at least a first and a second rule steganographically incorporated into said signal,
(b) steganographically decoding said signal to recover at least one of said rules;
(c) using said first rule to govern at least in part govern a first operation on said first governed information; and
(d) using said second rule to at least in part govern a second operation on said second governed information.
240. A method as in claim 239, in which:
said first governed information includes a description of at least one aspect of said second information.
241. A method as in claim 240, in which:
said second governed information comprises a movie, and
said first governed information comprises a trailer describing said movie.
242. A method as in claim 240, in which:
said second rule is more restrictive than said first rule.
243. A method as in claim 242, in which:
said first rule governs, at least in part, the ability to copy said first governed information; and
said second rule governs, at least in part, the ability to copy said second governed information.
244. A method as in claim 243, in which:
said first rule allows unlimited copying of said first governed information; and
said second rule restricts copying of said second governed information.
245. A method as in claim 239, in which:
said first and second rules are received in an encrypted form; and
said decoding step (b) further comprises decrypting said rules.
246. A method as in claim 239, further comprising:
(e) applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule; and
(f) releasing said watermarked or fingerprinted governed information to a second apparatus.
247. A method as in claim 246, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
248. A method as in claim 239, further comprising:
(e) at said first apparatus, receiving a certificate from said second apparatus; and
(f) releasing at least a portion of said governed information to a second apparatus.
249. A method as in claim 248, in which:
said certificate specifies at least one attribute of said second apparatus.
250. A method as in claim 249, further comprising:
said first apparatus checking said digital certificate to determine whether said information should be released to said second apparatus.
251. A method as in claim 250, in which:
said determination is based on whether said digital certificate indicates that said second apparatus includes specified rights management functionality.
252. A method as in claim 239, in which:
said first governed information is received in an encrypted or scrambled form; and
said first operation at least in part comprises decrypting or unscrambling said first governed information.
253. A method as in claim 239, in which:
said steps (b) through (e) are securely performed, said secure performance occurring at least in part on a secure processing unit.
254. A method as in claim 239, in which:
said first operation includes:
creating a signal comprising at least a portion of said governed information and a steganographically encoded third rule, said third rule differing in at least one aspect from said first rule and from said second rule.
255. A method as in claim 239, in which:
said first operation includes:
under control of said first rule, making a copy of at least a portion of said governed information; and
said method further comprises:
(e) transferring said copy to a second apparatus, said transferred copy not including said first rule.
256. A method as in claim 239, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule and/or said second rule contain errors;
at said first apparatus, using said error correction information to correct errors in said received first rule and/or said received second rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule and/or said corrected second rule, said signal not including said erroneous version of said first rule and/or said erroneous version of said second rule.
257. A method as in claim 256, in which:
said first operation includes:
transmitting said corrected signal from said first apparatus to a second apparatus.
258. A rights management method comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
a first rule steganographically incorporated into said signal,
said first rule at least controlling the circumstances under which said governed information may be transferred to a second apparatus;
(b) steganographically decoding said signal to recover said first rule; and
(c) performing at least a first operation on said governed information, said first operation governed, at least in part, by said first rule,
said first operation comprising at least:
initiating an attempt to transfer said governed information to a second apparatus;
checking to determine whether said transfer is allowed by said first rule; and
completing said transfer if said transfer is allowed by said first rule, or
failing to transfer said governed information if said transfer is not allowed by said first rule.
259. A method as in claim 258, in which:
said first rule allows transfer of said governed information to a second apparatus if said second apparatus includes functionality designated by said rule.
260. A method as in claim 259, in which:
said designated functionality includes at least the ability of said second apparatus to protect said governed information in at least one respect.
261. A method as in claim 260, in which:
said designated functionality further includes the ability of said second apparatus to use said first rule to govern at least one operation occurring on said second apparatus, and
said method further comprises transferring a copy of said first rule from said first apparatus to said second apparatus.
262. A method as in claim 261, in which:
said first rule requires that said second apparatus transfer a certificate to said first apparatus.
263. A method as in claim 262, in which:
said first rule further requires that said certificate identify said designated functionality.
264. A method as in claim 258, in which:
said first rule is received in an encrypted form; and
said decoding step (b) further comprises decrypting said first rule.
265. A method as in claim 258, further comprising:
prior to completion of said transferring step, applying a watermark or fingerprint to at least a portion of said governed information, said application occurring at least in part under the control of at least one rule.
266. A method as in claim 265, in which:
said watermark or fingerprint includes information at least in part identifying said first apparatus or a user of said first apparatus.
267. A method as in claim 258, in which:
said governed information is received in an encrypted or scrambled form.
268. A method as in claim 258, in which:
said steps (b) and (c) are securely performed, said secure performance occurring at least in part on a secure processing unit.
269. A method as in claim 258, in which:
said first operation further includes:
creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule;
said governed information referred to in said initiating step comprising said created signal.
270. A method as in claim 258, in which:
said first operation further includes:
under control of said first rule, making a copy of at least a portion of said governed information; and
said governed information referred to in said initiating step comprises said copy, which copy does not include said first rule.
271. A method as in claim 258, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said received first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
272. A method as in claim 271, in which:
said governed information referred to in said step (c) comprises said corrected signal.
273. A steganographic encoding method comprising:
(a) receiving information;
(b) transforming said information into a signal;
(c) selecting a first location in said signal for the incorporation of steganographically encoded information, said selection being governed at least in part by an analysis of the bandwidth available at such location for such encoding;
said first location being selected at least in part because it has a relatively high degree of available bandwidth for such encoding;
(d) steganographically encoding a first rule in said first location, said first rule at least in part governing at least one aspect of use of at least a portion of said information;
(e) selecting a second location in said signal for the incorporation of steganographically encoded information;
(f) analyzing said second location to determine the bandwidth available at said second location for steganographic encoding;
(g) determining that said second location has relatively less bandwidth available for such encoding; and
(h) steganographically encoding a pointer to a rule at said second location.
274. A method as in claim 273, in which:
said pointer points to said first rule at said first location.
275. A method as in claim 273, in which:
said analysis in said step (c) is based at least in part on statistically weighted averaging.
276. A method as in claim 273, in which:
said transforming step (b) further comprises encrypting or scrambling said information; and
said at least one aspect of access to or use of said governed information governed by said first rule at least in part comprises decrypting or unscrambling said information.
277. A steganographic encoding method comprising:
(a) receiving information;
(b) transforming said information into a signal;
(c) commencing the steganographical encoding of a first rule beginning at a first location in said signal, said first rule at least in part governing at least one aspect of use of at least a portion of said information;
(d) following said commencement, steganographically encoding said first rule in said signal at a variable rate, said variable rate being determined, at least in part, by an analysis of the bandwidth available for said encoding;
(e) commencing the steganographical encoding of a second rule beginning at a second location in said signal, said second rule at least in part governing at least one aspect of use of at least a portion of said information;
(f) following said commencement step (e), steganographically encoding said second rule in said signal at a variable rate, said variable rate being determined, at least in part, by an analysis of the bandwidth available for said encoding.
278. A method as in claim 277, further comprising:
prior to said commencing step (c), incorporating said first rule into a first secure container;
said steganographic encoding of said first rule comprising steganographically encoding said first secure container.
279. A method as in claim 278, further comprising:
prior to said commencing step (e), incorporating said second rule into a second secure container;
said steganographic encoding of said second rule comprising steganographically encoding said second secure container.
280. A method as in claim 279, further comprising:
prior to said commencing step (c), encrypting said first secure container; and
prior to said commencing step (e), encrypting said second secure container.
281. A method as in claim 277, further comprising:
prior to said commencing step (c), encrypting said first rule; and
prior to said commencing step (e), encrypting said second rule.
282. A method as in claim 277, in which:
said transforming step (b) further comprises encrypting or scrambling said information; and
said at least one aspect of access to or use of said governed information governed by said first rule at least in part comprises decrypting or unscrambling said information.
283. A method comprising the following steps:
(a) receiving information;
(b) transforming said information into a signal;
(c) selecting a first location in said signal for the incorporation of steganographic encoding, said selection being governed at least in part by an analysis of the bandwidth available at such location for such encoding;
said first location being selected at least in part because it has a relatively high degree of available bandwidth for such encoding;
(d) steganographically encoding a first rule in said first location, said first rule at least in part governing at least one aspect of use of at least a portion of said information;
(e) selecting a second location in said signal for the incorporation of steganographically encoding;
(f) analyzing said second location to determine the bandwidth available at said second location for steganographic encoding;
(g) determining that said second location has relatively less bandwidth available for such encoding; and
(h) steganographically encoding a pointer to said first rule at said second location;
(i) storing said signal, including said steganographically encoded information, on a portable memory;
(j) inserting said portable memory into a first appliance;
(k) said first apparatus reading from said second location prior to reading from said first location;
(l) following reading from said second location, said first apparatus following said pointer in order to read from said first location;
(m) said first apparatus retrieving said first rule from said first location; and
(n) said first apparatus using said first rule to govern at least one aspect of access to or use of said information.
284. A method as in claim 283, further comprising:
prior to said steganographically encoding step (c), incorporating said first rule into a first secure container, said steganographic encoding step (c) comprising steganographically encoding said first secure container into said signal; and
said retrieving step (m) further comprising accessing said first rule from said first secure container.
285. A method as in claim 284, further comprising:
prior to said steganographically encoding step (h), incorporating said pointer into a second secure container, said steganographic encoding step (h) comprising steganographically encoding said second secure container into said signal; and
said reading step (k) further comprising accessing said pointer from said first secure container.
286. A method as in claim 285, further comprising:
encrypting said first secure container and said second secure container prior to steganographically encoding said first secure container and said second secure container into said signal;
said reading step (k) further comprising decrypting said second secure container; and
said retrieving step (m) further comprising decrypting said first secure container.
287. A method as in claim 283, further comprising:
prior to said steganographically encoding step (c), encrypting said first rule; and
said retrieving step (m) further comprising decrypting said first rule.
288. A method as in claim 284, further comprising:
prior to said steganographically encoding step (h), encrypting said pointer; and
said reading step (k) further comprising decrypting said pointer.
289. A method as in claim 283, further comprising:
following said step (m), said first apparatus making a use of at least a portion of said signal, said first apparatus removing said steganographic encoding from said used portion prior to said use.
290. A method as in claim 283, in which:
said first apparatus comprises an optical disk player; and
said portable memory comprises an optical disk.
291. A method as in claim 283, in which:
said first rule governs the right to access at least a portion of said information; and
said using step (n) comprises said first apparatus determining whether said first rule allows an access to at least a portion of said information;
said first apparatus allowing said access if said first rule allows said access and denying said access if said first rule does not allow said access.
292. A method as in claim 283, in which:
said transforming step (b) further comprises encrypting or scrambling said information; and
said at least one aspect of access to or use of said information in said governing step (n) at least in part comprises decrypting or unscrambling said information.
293. A method as in claim 283, in which:
said step (n) is securely performed, said secure performance occurring at least in part on a secure processing unit.
294. A method as in claim 283, in which:
said governing step (n) includes:
creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
295. A method as in claim 283, in which:
said governing step (n) includes:
under control of said first rule, making a copy of at least a portion of said governed information; and
said method further comprises:
(o) transferring said copy to a second apparatus, said transferred copy not including said first rule.
296. A method as in claim 283, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said received first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
297. A method as in claim 296, in which:
said governing step (n) includes:
transmitting said corrected signal from said first apparatus to a second apparatus.
298. A method comprising the following steps:
(a) receiving information;
(b) transforming said information into a signal;
(c) steganographically encoding a first rule at a first location in said signal, said first rule at least in part governing at least one aspect of use of at least a portion of said information;
(d) following said step (c), selecting a second location in said signal, said second location being selected at least in part based on its offset from said first location;
(e) steganographically encoding said first rule in said second location;
(f) repeating said location selection and steganographic encoding steps at least two additional times, in each case selecting the location for said steganographic encoding being based at least in part on an offset from at least one previously selected location;
(g) storing said signal, including said steganographically encoded information, on a portable memory;
(h) inserting said portable memory into a first apparatus;
(i) said first apparatus beginning reading from said portable memory at a point between said locations;
(j) said first apparatus continuing to read until one of said locations is encountered;
(k) said first apparatus retrieving said first rule from said encountered location; and
(l) said first apparatus using said first rule to govern at least one aspect of use of said information.
299. A method as in claim 298, further comprising:
prior to said steganographically encoding step (c), incorporating said first rule into a first secure container;
said steganographic encoding steps (c), (e) and (f) comprising
steganographically encoding copies of said first secure container into said signal; and
said retrieving step (k) further comprising accessing said first rule from said first secure container.
300. A method as in claim 299, further comprising:
prior to said steganographically encoding step (c), encrypting said first secure container;
said steganographic encoding steps (c), (e) and (f) comprising
steganographically encoding said encrypted first secure container into said signal;
said retrieving step (k) further comprising decrypting said first secure container.
301. A method as in claim 299, further comprising:
prior to said steganographically encoding step (c), encrypting said first rule;
said steganographic encoding steps (c), (e) and (f) comprising steganographically encoding said encrypted first rule into said signal; and
said retrieving step (k) further comprising decrypting said first rule.
302. A method as in claim 298, further comprising:
following said step (k), said first apparatus making a use of at least a portion of said signal, said first apparatus removing said steganographic encoding from said used portion prior to said use.
303. A method as in claim 298, in which:
said first apparatus comprises an optical disk player; and
said portable memory comprises an optical disk.
304. A method as in claim 298, in which:
said first rule governs the right to access at least a portion of said information; and
said using step (l) comprises said appliance determining whether said first rule allows an access to at least a portion of said information;
said first apparatus allowing said access if said first rule allows said access and denying said access if said first rule does not allow said access.
305. A method as in claim 298, in which:
said transforming step (b) further comprises encrypting or scrambling said information; and
said at least one aspect of use of said information in said governing step (l) at least in part comprises decrypting or unscrambling said information.
306. A method as in claim 298, in which:
said step (j) is securely performed, said secure performance occurring at least in part on a secure processing unit.
307. A method as in claim 298, in which:
said governing step (l) includes:
creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
308. A method as in claim 298, in which:
said governing step (l) includes:
under control of said first rule, making a copy of at least a portion of said governed information; and
said method further comprises:
(n) transferring said copy to a second apparatus, said transferred copy not including said first rule.
309. A method as in claim 298, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said received first rule; and
at said first apparatus, generating a corrected signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
310. A method as in claim 309, further comprising:
(n) transmitting said corrected signal from said first apparatus to a second apparatus.
311. A method comprising:
receiving a first signal comprising first information, said first signal being encoded in a first format;
steganographically encoding a first rule in said first signal, said first rule governing at least one aspect of access to or use of said first information;
transforming said first signal into a second signal,
said second signal being encoded in a second format, said second signal containing said first information and said steganographically encoded first rule; and
at a first apparatus designed to use signals encoded in said second format:
steganographically decoding said second signal to obtain said first rule; and
using said first rule to govern at least one aspect of access to or use of said first information at said first apparatus;
said first apparatus including rights management functionality designed to interpret and execute rules, including said first rule.
312. A method as in claim 311, in which:
said first format constitutes digital encoding and said second format constitutes analog encoding.
313. A method as in claim 311, in which:
said first format constitutes analog encoding and said second format constitutes digital encoding.
314. A method as in claim 312, further comprising:
at said first apparatus,
attempting to make a copy of at least a portion of said first information.
315. A method as in claim 314, further comprising:
following the commencement of said attempt, said first apparatus using said first rule to at least in part determine whether said copy will be allowed;
said first apparatus proceeding to make said copy if said first rule indicates that said copy is allowed; and
said first apparatus failing to complete said copy process if said first rule indicates that said copy is not allowed.
316. A method as in claim 315, in which:
if said copy is made, said copy includes said steganographically encoded first rule.
317. A method as in claim 316, in which:
said step of proceeding to make said copy further comprises translating at least a portion of said second signal from said analog format to said digital format, said copy comprising said signal translated into digital format.
318. A method as in claim 311, further comprising:
said step of using said first rule at said first apparatus including:
creating a signal comprising at least a portion of said governed information and a steganographically encoded second rule, said second rule differing in at least one aspect from said first rule.
319. A method as in claim 311, further comprising:
at said first apparatus, under control of said first rule, making a copy of at least a portion of said governed information; and
transferring said copy to a second apparatus, said transferred copy not including said first rule.
320. A method as in claim 311, in which:
said received signal further includes steganographically encoded error correction information;
said method further comprising:
at said first apparatus, steganographically decoding said signal to retrieve said error correction information;
at said first apparatus, using said error correction information to determine whether the received version of said first rule contains errors;
at said first apparatus, using said error correction information to correct errors in said first rule; and
at said first apparatus, generating a signal comprising at least a portion of said governed information and said corrected first rule, said signal not including said erroneous version of said first rule.
321. A method as in claim 320, further comprising:
transmitting said generated signal from said first apparatus to a second apparatus.
322. A method comprising:
(a) at a first apparatus, receiving a signal comprising
governed information and
a first rule steganographically incorporated into said signal;
(b) at said first apparatus, steganographically decoding said signal and recovering said first rule;
(c) at said first apparatus, using said first rule to govern at least one aspect of access to or use of at least a portion of said governed information;
(d) at said first apparatus, making a copy of at least a portion of said governed information; and
(e) at said first apparatus, steganographically encoding at least a second rule into said copy, said second rule differing in at least one respect from said first rule.
323. A method as in claim 322, in which:
said steganographic encoding step (e) further comprises steganographically encoding said first rule.
324. A method as in claim 322, in which:
said second rule comprises a modified version of said first rule.
325. A method as in claim 322, further comprising:
(f) transferring said steganographically encoded copy to a second apparatus.
326. A method as in claim 322, further comprising:
at said first apparatus, checking said first rule to determine whether said steps (d) and (e) are allowed by said first rule; and
proceeding with said steps (d) and (e) only if said steps are allowed by said first rule.
327. A method as in claim 322, in which:
a user of said first apparatus at least in part specifies at least one aspect of said second rule.
328. A method as in claim 322, in which:
said first rule allows at least one copy of at least a portion of said governed information; and
said second rule prohibits the making of any copies.
329. A method comprising:
(a) at a first apparatus, receiving a signal comprising:
governed information and
a first rule steganographically incorporated into said signal;
(b) at said first apparatus, steganographically decoding said signal and recovering said first rule;
(c) at said first apparatus, using said first rule to govern at least one aspect of access to or use of at least a portion of said governed information;
(d) at said first apparatus, making a copy of at least a portion of said governed information, said copy not including any steganographically encoded information; and
(e) transferring said copy to a second apparatus.
330. A method as in claim 329, further comprising:
at said first apparatus, checking said first rule to determine whether said first rule allows said steps (d) and (e); and
proceeding with said steps (d) and (e) only if said first rule allows said steps.
331. A method comprising:
(a) at a first apparatus, receiving a signal comprising:
governed information;
a first rule steganographically incorporated into said signal; and
a copy indicator steganographically incorporated into said signal;
(b) at said first apparatus, steganographically decoding said signal and recovering said first rule and said copy indicator;
(c) at said first apparatus, using said first rule to govern at least one aspect of access to or use of at least a portion of said governed information;
(d) at said first apparatus, making a copy of at least a portion of said governed information;
(e) at said first apparatus, altering said copy indicator to indicate that a copy has been made;
(f) at said first apparatus, steganographically encoding said altered copy indicator and at least one rule into said copied governed information portion; and
(e) transferring said copy, including said steganographic encoding, to a second apparatus.
332. A method as in claim 331, in which:
said copy indicator received in said step (a) indicates that no copy has been made;
said first rule specifies that a copy of said governed information, or a portion thereof, may be made only if said copy indicator indicates that no copy has been made; and
said step (f) includes steganographically encoding a copy of said first rule into said copied governed information portion.
333. A method comprising:
(a) at a first apparatus, receiving a signal comprising first governed information and control information steganographically encoded in said first governed information;
said control information including a first rule and error correction information;
(b) at said first apparatus, steganographically decoding said signal to recover said control information;
(c) at said first apparatus, using said error correction information to analyze said recovered first rule to determine whether said recovered first rule contains errors;
(d) at said first apparatus, using said error correction information to correct at least one error in said first rule; and
(e) at said first apparatus, steganographically encoding said corrected first rule and error correction information in said first governed information.
334. A method as in claim 333, further comprising:
(f) transferring said first governed information, including said steganographically encoded corrected first rule, to a second apparatus.
335. An apparatus comprising:
means for receiving a first signal, said first signal comprising governed information and a steganographically encoded first rule;
means for steganographically decoding said signal to recover said first rule;
means for using said first rule to at least in part govern at least one operation on said governed information;
means for inserting a watermark into at least a portion of said first signal, said watermark including identification information; and
means for transmitting said watermarked signal to a remote apparatus.
336. An apparatus as in claim 335, in which:
said identification information comprises information identifying said apparatus and/or a user of said apparatus.
337. An apparatus as in claim 335, in which:
said means for inserting includes means for steganographically encoding said watermark into said first signal.
338. An apparatus comprising:
means for receiving a first signal, said first signal comprising governed information and a steganographically encoded first rule;
means for steganographically decoding said signal to recover said first rule;
means for using said first rule to at least in part govern at least one operation on said governed information;
means for generating a second signal comprising at least a portion of said first governed information and a steganographically encoded second rule; and
means for transmitting said second signal to a remote apparatus.
339. An apparatus as in claim 338, in which:
said means for receiving comprises an optical disk player; and
said apparatus further comprises a video display.
340. An apparatus as in claim 339, in which said apparatus further comprises:
decryption means for decrypting said first rule; and
means for removing steganographic encoding from said first signal.
341. An apparatus as in claim 340, in which:
said means for steganographically decoding further comprises means for searching through said first governed information until a location is reached containing said steganographically encoded first rule.
342. An apparatus as in claim 338, in which said apparatus further comprises:
means for inserting a watermark or fingerprint into said second signal.
343. An apparatus as in claim 342, in which:
said means for inserting includes:
means for including identification information in said watermark or fingerprint, and
means for steganographically encoding said watermark or fingerprint into said second signal.
344. An apparatus comprising:
means for receiving a first signal, said first signal comprising:
governed information and
steganographic encoding comprising a first rule and error correction information;
means for steganographically decoding said signal to recover said first rule and said error correction information;
means for using said error correction information to correct at least one error in said received first rule;
means for steganographically encoding said corrected first rule into said first signal, said corrected first rule replacing said originally received erroneous first rule; and
means for transmitting said first signal containing said corrected first rule to a remote apparatus.
345. An apparatus comprising:
means for receiving a first signal, said first signal comprising:
governed information and
steganographic encoding comprising a first rule and error correction information;
means for steganographically decoding said signal to recover said first rule and said error correction information;
means for using said error correction information to correct at least one error in said received first rule;
means for steganographically encoding said corrected first rule into said first signal, said corrected first rule replacing said originally received erroneous first rule;
means for steganographically encoding a watermark into said first signal, said watermark including identification information; and
means for transmitting said first signal containing said corrected first rule to a remote apparatus.
346. An apparatus comprising:
means for receiving a first signal, said first signal comprising governed information and a steganographically encoded first rule;
means for steganographically decoding said signal to recover said first rule;
means for using said first rule to at least in part govern at least one operation on said governed information;
means for making a copy of said governed information;
means for steganographically encoding a copy indicator in said copy of said governed information; and
means for transmitting said governed information copy, including said copy indicator, to a remote apparatus.
347. A method as in claim 39, in which:
said governed information is received in an encrypted or scrambled form; and
said allowing access or use further comprises decrypting or unscrambling said portion of said governed information.
348. A method as in claim 39, in which:
said steps (b) and (c) are securely performed, said secure performance occurring at least in part on a secure processing unit.
Description
FIELD OF THE INVENTION
The present inventions relate generally to computer security, and more particularly to steganographic techniques for hiding or encoding electronic control information within an information signal carried by an insecure communications channel. Still more particularly, the present inventions relate to systems, methods and techniques that substantially invisibly and/or indelibly convey, over analog or other insecure communications channels, digital rights management control information for use within a virtual distribution environment electronic rights management system.
BACKGROUND AND SUMMARY OF THE INVENTION
The world is becoming digital. Digital signals are everywhere--in our computers, television sets, VCRs, home stereos, and CD players. Digital processing--which operates on information "bits" (numerical "on" or "off" values)--provides a degree of precision and protection from noise that cannot be matched by the older, "analog" formats we have used since the beginning of the electronic age.
Despite the clear advantage of digital communications, the older "analog" domain remains significant. Many of our most important information delivery mechanisms continue to be based on analog--not digital--signaling. In fact, most of our electronic entertainment, news, sports and music program material comes to us in the form of analog signals. For example:
Television remains largely analog. Although the distribution of television programming to local cable systems is increasingly digital and most modern television sets include digital signal processing circuits, the local cable television "head end" continues to send television signals to the subscriber's set top box and television in analog--not digital--form. It will cost a great deal to convert local cable distribution from analog to digital. In the United States, for example, the widespread conversion from analog to digital television is projected to take no less than 15 years and perhaps even longer.
In radio broadcasting, too, analog communication continues to reign supreme. Thousands of radio stations broadcast music, news and other programs every day in analog form. Except for a few experimental digital systems, practically all radio broadcasting is carried over analog communications channels.
The movies and videos we rent at the local video tape rental store are analog.
Commercially available music tape cassettes are recorded in analog formats.
Moreover, the "real world" is analog. Everything digital must ultimately be turned into something analog if we are to experience it; and conversely, everything analog must be turned into something digital if the power of modern digital technology will be used to handle it. Modern digital technology also allows people to get better quality for less money.
Despite the pervasiveness of analog signals, existing methods for managing rights and protecting copyright in the analog realm are primitive or non-existent. For example:
Quality degradation inherent in multigenerational analog copying has not prevented a multi-billion dollar pirating industry from flourishing.
Some methods for video tape copy and pay per view protection attempt to prevent any copying at all of commercially released content, or allow only one generation of copying. These methods can generally be easily circumvented.
Not all existing devices respond appropriately to copy protection signals.
Existing schemes are limited for example to "copy/no copy" controls.
Copy protection for sound recordings has not been commercially implemented.
A related problem relates to the conversion of information between the analog and digital domains. Even if information is effectively protected and controlled initially using strong digital rights management techniques, an analog copy of the same information may no longer be securely protected.
For example, it is generally possible for someone to make an analog recording of program material initially delivered in digital form. Some analog recordings based on digital originals are of quite good quality. For example, a Digital Versatile Disk ("DVD") player may convert a movie from digital to analog format and provide the analog signal to a high quality analog home VCR. The home VCR records the analog signal. A consumer now has a high quality analog copy of the original digital property. A person could re-record the analog signal on a DVD-R (a Digital Versatile Disk appliance and media supporting both read and write operations). This recording will in many circumstances have substantial quality--and would no longer be subject to "pay per view" or other digital rights management controls associated with the digital form of the same content.
Since analog formats will be with us for a long time to come, rightsholders such as film studios, video rental and distribution companies, music studios and distributors, and other value chain participants would very much like to have significantly better rights management capabilities for analog film, video, sound recordings and other content. Solving this problem generally requires a way to securely associate rights management information with the content being protected.
People have for many years been using various techniques allowing digital information to, in effect, ride "piggyback" on analog information signals. For example, since the 1960s, it has been common to digitally encode text information such as subtitles into otherwise unused portions of analog television signals (e.g., within the so-called "Vertical Blanking Interval").
Unfortunately, sending digital information using such known digital encoding techniques is problematic because the digital information is not persistent. It is relatively easy to strip out or eliminate digital information encoded using prior techniques commonly employed for superimposing digital signals onto an analog information signal. Analog communications channels may commonly be subjected to various signal processing that may (intentionally or unintentionally) strip out digital information added to the analog signal--defeating any downstream system, process or technique that depends on the presence and readability of the digital information. For example, the television vertical blanking signal--along with any signal components disposed within the vertical blanking interval--is typically routinely eliminated whenever a video signal is processed by a computer.
Attempting to use insecure techniques for providing rights management is at best ineffective, and can be worse than no rights management at all. Unscrupulous people can strip out insecure control information altogether so that the corresponding information signal is subject to no controls at all--for example, defeating copy protection mechanisms and allowing users to avoid paying for rights usage. More nefariously, an unscrupulous person could alter an insecure system by substituting false control information in place of the proper information. Such substitutions could, for example, divert payments to someone other than legitimate rights holders--facilitating electronic fraud and theft.
Prior, insecure techniques fail to solve the overall problem of how to provide and securely manage advanced automatic electronic rights management for analog and other information signals conveyed over an insecure communications channel. The lack of strong rights management for analog signals creates a huge gap in any comprehensive electronic rights management strategy, and makes it possible for consumers and others to circumvent--to at least some extent--even the strongest digital rights management technologies. Consequently, there is a real need to seamlessly integrate analog delivery models with modern electronic digital rights management techniques.
The present inventions solve these and other problems by providing "end to end" secure rights management protection allowing content providers and rights holders to be sure their content will be adequately protected--irrespective of the types of devices, signaling formats and nature of signal processing within the content distribution chain. This "end to end" protection also allows authorized analog appliances to be easily, seamlessly and cost-effectively integrated into a modern digital rights management architecture.
The present inventions may provide a Virtual Distribution Environment ("VDE") in which electronic rights management control information may be delivered over insecure (e.g., analog) communications channels. This Virtual Distribution Environment is highly flexible and convenient, accommodating existing and new business models while also providing an unprecedented degree of flexibility in facilitating ad hoc creation of new arrangements and relationships between electronic commerce and value chain participants--regardless of whether content is distributed in digital and/or analog formats.
The present inventions additionally provide the following important and advantageous features:
An indelible and invisible, secure technique for providing rights management information.
An indelible method of associating electronic commerce and/or rights management controls with analog content such as film, video, and sound recordings.
Persistent association of the commerce and/or rights management controls with content from one end of a distribution system to the other--regardless of the number and types of transformations between signaling formats (for example, analog to digital, and digital to analog).
The ability to specify "no copy/one copy/many copies" rights management rules, and also more complex rights and transaction pricing models (such as, for example, "pay per view" and others).
The ability to fully and seamlessly integrate with comprehensive, general electronic rights management solutions (such as those disclosed in the Ginter et al. patent specification referenced above).
Secure control information delivery in conjunction with authorized analog and other non-digital and/or non-secure information signal delivery mechanisms.
The ability to provide more complex and/or more flexible commerce and/or rights management rules as content moves from the analog to the digital realm and back.
The flexible ability to communicate commerce and/or rights management rules implementing new, updated, or additional business models to authorized analog and/or digital devices.
Briefly, the present inventions use "steganography" to substantially indelibly and substantially invisibly encode rights management and/or electronic commerce rules and controls within an information signal such as, for example, an analog signal or a digitized (for example, sampled) version of an analog signal.
The Greek term "steganography" refers to various "hidden writing" secret communication techniques that allow important messages to be securely carried over insecure communications channels. Here are some examples of steganography:
In ancient Persia an important message was once tattooed on a trusted messenger's shaved scalp. The messenger then allowed his hair to grow back--completely hiding the message. Once the messenger made his way to his destination, he shaved his hair off again--exposing the secret message so the recipient could read it on the messenger's shaved scalp. See Kahn, David, The Codebreakers page 81 et seq. and page 513 et seq. (Macmillan 1967). This unusual technique for hiding a message is one illustration of"steganography."
Another "steganographic" technique encodes a secret message within another, routine message. For example, the message "Hey Elmer, Lisa Parked My Edsel" encodes the secret message "HELP ME"--the first letter of each word of the message forming the letters of the secret message ("Hey Elmer, Lisa Parked My Edsel"). Variations on this technique can provide additional security, but the basic concept is the same--finding a way to hide a secret message within information that can or will be sent over an insecure channel.
Invisible ink is another commonly used "steganography" technique. The secret message is written using a special disappearing or invisible ink. The message can be written on a blank piece of paper, or more commonly, on the back or front of the piece of paper carrying a routine-looking or legitimate letter or other written communication. The recipient performs a special process on the received document (e.g., exposing it to a chemical or other process that makes the invisible ink visible) so that he or she can read the message. Anyone intercepting the paper will be unable to detect the secret message--or even know that it is there--unless the interceptor knows to look for the invisible message and also knows how to treat the paper to make the invisible ink visible
The present inventions use steganography to ensure that encoded control information is both substantially invisible and substantially indelible as it passes over an insecure communications channel. At the receiving end, a secure, trusted component (such as a protected processing environment described in Ginter et al.) recovers the steganographically-encoded control information, and uses the recovered information to perform electronic rights management (for example, on analog or other information signals carried over the same channel).
One specific aspect provided by the present inventions involve steganographically encoding digital rights management control information onto an information signal such as, for example, an analog or digitized television, video or radio signal. The steganographic encoding process substantially inextricably intertwines the digital control information with images, sounds and/or other content the information signal carries--but preferably without noticeably degrading or otherwise affecting those images, sounds and/or other content. It may be difficult to detect (even with educated signal processing techniques) that the analog signal has been steganographically encoded with a rights management control signal, and it may be difficult to eliminate the steganographically encoded control signal without destroying or degrading the other information or content the signal carries.
The present inventions also provide a secure, trusted protected processing environment to recover the steganographically-encoded control signal from the information signal, and to enforce rights management processes based on the recovered steganographically encoded control signal. This allows the information signal delivery mechanism to be fully integrated (and made compatible) with a digital virtual distribution environment and/or other electronic rights management system.
In accordance with yet another aspect provided by this invention, steganographically encoded, digital rights management control information may be used in conjunction with a scrambled and/or encrypted information signal. The scrambling and/or encryption can be used to enforce the rights management provided in accordance with the steganographically encoded rights management control information. For example, the control signal can be steganographically decoded and used to control, at least in part, under what circumstances and/or how the information signal is to be descrambled and/or decrypted.
In accordance with yet another feature provided by the invention, digital certificates can be used to securely enforce steganographically encoded rights management control information.
In accordance with still another feature provided by the invention, steganography is used to encode an information signal with rights management control information in the form of one or more protected organizational structures having association with electronic controls. The electronic controls may, for example, define permitted and/or required operation(s) on content, and consequences of performing and/or failing to perform such operations. The organizational structure(s) may identify, implicitly or explicitly, the content the electronic controls apply to. The organizational structure(s) may also define the extent of |
