Method and apparatus for providing secure linking to a user identity in a digital rights management system

Assignee

• Telefonaktiebolaget LM Ericsson (Publ) · SE

Inventors

• Yi Cheng · Vilhelmina, SE
• Frank Hartung · Herzogenrath, DE
• Nilo Mitra · New York, US
• Ignacio Mas Ivars · Tullinge, SE

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04W12/71
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Disclosed is a DRM device and method for providing secure linking to a user identity. A first request is sent to a subscriber identity module. A message is received from the subscriber identity module via a secure authenticated channel. The message comprises at least a master key identifier, a random number, and a derived key. In response to the message, a second request is sent to a DRM server. The second request comprises at least a master key identifier, the device identifier, and a random number. Also disclosed is a DRM server and method for providing secure linking to a user identity. A first request is received from a DRM device. The first request comprises at least master key identifier, a device identifier, and a random number. The DRM device is authenticated. A second request for an application specific key is sent to a trusted key management server. The second request comprises at least a master key identifier. At least a key is received from the trusted key management server. A derived key is determined from the key received from the trusted key management server based at least on the device identifier and the random number. A challenge/response scheme is used to determi…