WO2001013310A1

WO2001013310A1 - System and method for secure distribution and on-line electronic usage management

Info

Publication number: WO2001013310A1
Application number: PCT/US2000/022823
Authority: WO
Inventors: Suresh K. Jasrasaria
Original assignee: Jasrasaria Suresh K
Priority date: 1999-08-19
Filing date: 2000-08-18
Publication date: 2001-02-22
Also published as: AU6789200A

Abstract

Disclosed is a system and methods for secure distribution of digital content (see the figure). The content is digitized and encrypted forming a secure content container (250). The decryption key (710) and means to authorize the presentation or playing of the material are provided to form a secure player system (750). The content will be limited by a series of negotiated restraints including number of presentations, time of presentation and geographic and/or type of audience limitations. A specific player or projector (600) is physically enabled by the secure player system and ensures that the limitations are met. The system sends a message to the provider upon unauthorized access to the content. The system may deactivate and/or destroy a local copy of the material upon misuse.

Description

METHOD AND SYSTEM FOR SECURE DISTRIBUTION AND ON-LINE ELECTRONIC USAGE MANAGEMENT

BACKGROUND OF THE INVENTION

This invention relates generally to systems and methods for secure distribution over the Internet or other such communications networks and for on-line electronic usage management of digital content.

As the world around us increasingly becomes digital and connected, businesses and consumers are getting more comfortable and savvy about leveraging the technology and using the Internet to download digital content. Many businesses and consumers are downloading the digital content just for electronic use - without printing or without converting it into any other physical form. For example businesses and consumers can download digital books, newspapers and magazines, digital images, digital audio, and digital cinema. They can use this downloaded digital content for such on-line use like reading digital books, newspapers and magazines, displaying digital images on digital screens for advertisements and in-mall promotions, listening or broadcasting the digital audio, exhibiting the digital cinema for entertainment and viewing the digital cinema content from daily shootings for editing and commenting. When such digital content is copyrighted, the content creators and providers need to ensure that distribution of such content is controlled and their property rights are protected.

It is an object of this invention to reliably control the distribution of digital content. It is still another object of the present invention to control electronic on-line usage of digital content.

It is another object of the present invention to allow electronic on-line use of digital content by authorized businesses or consumers solely for the amount of time or the number of times authorized by the digital content provider.

It is also an object of the present invention to secure and protect digital content from intrusion during distribution.

SUMMARY OF THE INVENTION

The objects set forth above as well as further and other objects and advantages of the present invention are achieved by the embodiments of the invention described herein below.

The present invention provides architecture for systems and methods for secure distribution and authorized usage of digital content. The proposed architecture results in a system with built-in scalability.

The entire digital content distribution scheme, including the transport of the digital content and the transport of usage management information, mentioned in a preferred embodiment of this invention works over a communications network, such as the Internet, using a broadcast medium or a point-to-point transmission medium. Moreover, in the same preferred embodiment, depending on the size, suitability and cost factors, the secure transport of usage management information can take place over a communications network, such as the Internet, and the digital content can be securely delivered using a combination of a communications network, such as the Internet, and a distribution network, such as FedEx, of a physical medium, such as flash memory cards, erasable magnetic or optical disks or holographic disks which can store, for example, more than 100 gigabytes on one disk platter.

Although authorization and transfer of digital content takes place between a digital content provider and a business or a consumer, the systems and methods described in this invention do not prohibit the use of intermediaries like business-to-business (B2B) or business-to-consumer (B2C) electronic commerce Internet hubs and portals. In fact, using such intermediaries is a preferred embodiment for implementing the proposed systems and methods of this invention.

In a preferred embodiment of this invention, the businesses and consumers have uniquely numbered specific Internet appliances like uniquely numbered digital readers for displaying digital books, digital magazines and digital newspapers, uniquely numbered digital stereo systems for playing digital audio and uniquely numbered digital video projection systems for screening digital cinema. These Internet appliances also have electronic storage and playback capability to store and play the digital content that will be consumed on-line.

The systems of this invention use encryption for security of the digital content during distribution as well as during consumption by the appliance used by the business or consumer . The usage meter is not included in the content. The usage meter is included in a digital content player (DCP) , a software program that can be executed only by authorized personnel and authorized appliances.

Upon successful on-line usage or consumption of the digital content as per the agreed upon limitations of presentations or playing of the content, the DCP may allow the business or consumer to further extend the content usage or destroy (or disable) the DCP and/or the content itself. The DCP also sends a report to the digital content providers. This allows the content providers an opportunity for repeating the authorization (sale) , balancing their books for usage authorized (product sold) , as well as collecting usage information (feedback) for future marketing and new product creation.

Furthermore, unauthorized access to the digital content or the digital content player (DCP) may cause self-destruction as described above and an unauthorized attempt report is sent to the content providers. This allows the content providers to put alerts in their system to automatically restrict future access or sale of content to unsecured or unclean intermediaries, businesses and consumers.

A preferred embodiment of the invention includes methods for encrypting a digital movie, distributing the encrypted digital movie, authorizing a user for projection of the encrypted movie, enabling a movie projector to decrypt the movie, verifying the user and the enabled movie projector, and exhibiting said movie on said enabled movie projector.

A system for distributing and playing digital movies includes an encrypted digital movie, one or more decryption key(s) for the movie, a movie player program, means for providing the encrypted movie and the movie player program to a user for exhibiting the movie on a projector, means for enabling the movie player program, means for authorizing the user and the projector, means for verifying the authorized user and the authorized projector, and means for decrypting and exhibiting said movie on said authorized projector. A distributed secure digital movie distribution system includes:

• A movie producer data processing system with software applications that generate a secure digital movie, a distributed and replicated secure database of movie encryption and decryption keys and algorithms, and secure digital movie players.

• A digital movie distributor data processing system with software applications for marketing and selling digital movies to consumers and exhibitors, transporting secure digital movies and their players to the consumers and exhibitors, monitoring and scheduling exhibition, metering digital movie usage and doing credit and collection from exhibitors .

• A movie exhibitor data processing system with software applications to buy or license digital movie for exhibition, conduct box office collection from consumers, exhibit digital movie and provide feedback to movie producers and distributors .

• A movie storage service provider data processing system with software applications for storage and asset management of digital movies and on-demand transport of digital movies to exhibitors/consumers .

For a better understanding of the present invention, together with other and further objects thereof, reference is made to the accompanying drawings and detailed description and its scope will be pointed out in the appended claims.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a schematic block diagram of the inventive system;

FIG. 2 is a flow chart for generating a secure movie container;

FIG. 3 is a flow chart for generating a secure movie player;

FIG. 4 is a flow chart for executing a secure movie player;

FIG. 5 is a schematic block diagram of a secure movie projection system; and

FIG. 6 is the format of entries in a secure movie key database.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS

This invention can be applied in multiple types of digital content producer-consumption scenarios. Depending on the content and the usage pattern the following are examples of preferred embodiments of the present invention, although these examples are not to be construed as limiting the invention.

A. Secure distribution and usage management system for digital cinema and digital music. The digital content player (DCP), a software program, in this case meters the usage on the basis of number of times played during a specified elapsed time.

B. Secure distribution and usage management system for digital newspaper, digital magazine, digital books, digital advertisements and digital cinema trailers, and digital cinema dailies (the end of the day footage sent to various consultants for editing and feedback) . The DCP, a software program, in this case meters the usage on the basis of elapsed time.

For a clear understanding of this invention, reference is now made to FIG. 1 of the drawings. Regarding item A above, FIG. 1 shows a secure digital movie distribution and usage management system. Using a Producer Movie Station 1000, a movie producer 100 (independent filrnmaker or a major motion picture studio) registers its digital movies 10 with a digital movie hub 400 (hereinafter referred to as the hub) . During registration the movie producer 100 provides the hub 400 with a movie preview 50 and a decryption key 150 that must be used to decrypt the encrypted digital movie 10 by the exhibitor/consumer 500 who purchase the movie for exhibiting. The movie producers 100 may decide to store the encrypted digital movies 10 at their own magnetic and/or optical disk farm (not shown) , or in a more likely scenario, send the encrypted digital movie 10 as a secure movie container (SMC) 250 to a movie storage service provider 300 who rents out large farms of magnetic and/or optical disks to movie producers 100.

The exhibitor 500, who has a secure movie projection system 600 buys an electronic movie ticket 350 (hereinafter referred to as the ticket) from the hub 400 for exhibiting a movie. The ticket 350 grants the exhibitor 500 the rights to exhibit the movie N times within a time period T from the time of the ticket 350 purchase .

To obtain a ticket 350 the exhibitor 500 interacts with the hub 400 through an exhibitor movie station 800. The exhibitor 500 sends a movie purchase authorization request (MPAR) 450 to the hub 400. The hub 400 communicates with the exhibitor movie station 800 to obtain the unique projector identification descriptor (PID) 550 of the movie projection system 600 at the exhibitor premises. The hub 400 then returns a ticket 350 that is used by the exhibitor movie station 800 to exhibit the movie.

The movie exhibitors 500 can obtain the movie tickets 350 in various ways: they can pay for the movie ticket 350 upfront by entering their credit card number or they can obtain the movie ticket 350 by entering their account number, if they are preferred users of the hub 400. Using the digital content player (DCP) the system can also accommodate a box office revenue sharing type of payment method before issuing a movie ticket 350. As the lion's share of the box office revenue is collected before the show begins, the pre-negotiated box office revenue split must be electronically transferred to the movie producer 100 just before the show begins, then and then only the system will release the authorization to the DCP to exhibit the movie.

Once the hub 400 issues a movie ticket 350 (either after obtaining an authorization from the credit card provider or after making an entry in its general ledger for a preferred user) , it sends a movie purchase request (MPR) 650 to the movie producer 100. Upon receiving the MPR 650, the movie producer generates a secure movie player (SMP) 750 that is a software player uniquely and specifically programmed based on the information contained in MPR 650 received from the hub 400. The movie producer 100 then sends the SMP 750 to the hub 400 who in turn sends it to the exhibitor movie station 800 that has a secure connection to the movie projection system 600. The SMP 750 can only play the designated movie on the secure movie projection system 600 for N times before the time T expires .

The SMP 750 contains the location (for example the name of the web site) and the instructions allowing the exhibitor to obtain the SMC 250. In the event that sufficient movie tickets 350 are issued for a movie, the movie producer 100 may decide to broadcast the movie at a specified time. Those exhibitors/consumers 500 who have obtained the movie tickets 350 and whose premises are equipped with broadcast reception hardware can receive the SMC 250 containing the movie. A SMP 750 can enable this to happen automatically under software control. Moreover, if the movie has already been released on a physical media like a secure digital cinema disk (DCD) , the SMP 750 can also obtain the SMC 250 from the secure DCD.

Upon successful exhibition of the movie, the SMP 750 may allow the exhibitor/consumer 500 to further extend the expiration time period T and/or the number of exhibitions N for playing the movie. If no extension is desired, the SMP 750 disables itself and/or the SMC 250 and sends a usage report 850 to the hub 400.

Any unauthorized attempt to access SMC 250, which is sensed by the software in the SMP 750, ends in self-destruction of the SMP 750 and/or the SMC 250 and an unauthorized attempt report 950 is sent to the hub 400. This allows the hub 400 to put alerts in its system to automatically restrict future access or sale of digital movies 10 to unsecured or unclean exhibitors 500.

The hub 400 aggregates all the usage reports 850 and unauthorized attempt reports 950 and makes them available to appropriate entities under password control. Movie producers 100, movie exhibitors/consumers 500 and movie storage service providers (SSP) 300 can use these reports for their future operations including marketing and new product creation. Still referring to FIG. 1, in the above example, an intermediary like a movie distributor 200, who acquires the rights to distribute the movie in digital format, can also play its traditional role of marketing and distributing the movie. A distributor movie station 900 when used in conjunction with the hub 400 and the storage service provider 300 can make the role of a distributor 200 much more efficient and streamlined by providing such services as :

• Collaboration with exhibitors/consumers for licensing a movie for exhibition;

• Secure duplication and transportation of a digital movie 10 to exhibitors/consumers;

• Credit and collection from exhibitors/consumers;

• Creating multiple versions of a movie based on language, rating and length of time;

• Sending electronic marketing and promotion materials of a movie to exhibitors/consumers ;

• Disseminating trailers of movies to targeted exhibitors/consumers; and

• Collecting movie feedback from exhibitors/consumers .

The systems and methods of secure distribution of a digital movie 10 described in the preferred embodiment of this invention will, on one hand, accelerate the acceptance of a good movie, however, on the other hand a bad movie will die quickly. This system and method will also have a similar effect on the role of a movie distributor 200. On one hand it will expand the reach of a movie distributor 200 beyond the traditional distribution to theatres into all other channels of distribution including consumers on the day a movie is released. However, on the other hand a movie producer 100 can disinter-mediate a movie distributor 200 by self marketing and distributing the movie in conjunction with the services offered by the hub 400 and the movie storage service provider 300. P^J H- o Pi 0J ti o 0 o rt O H tr 3 H¹ cn Ω h| Pi Pi cn 0J 0J S P. 0J H- O P. tl >

H- tl 0 0 H- tr ii l-h cn ti tr Φ o O φ tr Φ 0J o o Φ rt o H- ti 0 cn l-h Pi 3 tn 0 0 OJ OJ Φ 0⁾ <J • o 0J cn ft cn o o fi 3 <! cn 3 w s d ^•δ l-f rt < rt iQ ft tl 0J Pi H- C ti rt 0⁾ rt < 0 rt H- rt 0 rt Pi rt cn fD en Ii φ ti Φ ø tr Φ H- cn 0J 0J Φ s H ti h< tr hi tr 0J hi tr Φ hi < tr H- hi tr tr hi rt Φ ti H- o Φ 3 0J O tr O cn 0 H- Φ H- 0J H- o t Ω φ Φ H- Φ cn h¹- Φ 0

Φ fi tn rt tr tn Φ fi φ o O 0 tr rt Ω cn tr Pi Φ H- P. tr φ rt tr gl tl ^► w ø fi 3 Φ cn rt 3 < Φ 0⁾ H- K • rt φ C Pi hi ø ω h{ 0 0 rt H- ^ rt tn cn 0 TJ H- tj Φ cn ti Φ Φ rt cn rt TJ H- w rt TJ •< rt n o 0 rt < 0 H- o • P. OJ 3 Pi ~J 0 tr hi K 0 rt 0 hi cn ff 0 φ H- tn H tl rt ti Φ h-¹ H- hi ti ti φ cn tl tl tr h-¹ fi rt Φ o φ ≤ ti fi o rt ø ii Pi ti rt 0> tr tn 3 o Φ rt rt ^ ts i P. H- rt o tr < y-¹ [ H-

P. tr to Q 0¹ Φ rt

PJ O 0⁾ Φ o cn 0J rt Φ cn 0 0 cn 0 t Φ 3 H- rt ^ tl tr t ϋ CO 0J tr rt rt & 0J rt o H- P. 3 0 o Ω 0 O O H

Q^y Φ o o rt 00 cn Φ O φ 0J 0J tr o cn cn Φ cn OJ ft o Φ ti O o

PJ H- o cn ii tr LΠ l ti 3 ^■ O n 0J Φ rt h{ Ω o hi rt • hi i 3 φ OJ o Φ o Φ Φ 1 cn 0 Φ 0 tn rt 0 Ω hi φ ^ hi 3 tr ft Φ

P. TJ ti i J rt o ii o TJ tl ø LO ti Φ cn 0J Φ

CO n g O cn h-¹ cn i-¹ o Φ tl 0J tr o H- & H- OJ H c 3 TJ S Φ φ hi tr o 0⁾ rt ^ o tr rt ^ fD 1-5 P. h-¹ Φ CO ϋ t-h H- t⁾ tl ^ cn Ω TJ φ ø o hi H- t o p. 0J h{

⁽D 3 3 3 πd H- tr φ Pi Φ H- rt • Ω o 0J • H- H- ft

X φ &> 3 0 p. 0⁾ Φ H- 0J o rt rt hh tr 3 o O o tn φ cn Ω tr

H- ti rt tl o 3 H- LO Pi rt 3 3 tr o Φ tr H- fi 0⁾ o ϋ Ji -- 0J cn f rt TJ rt Φ to rt H- ^> < cn cn O TJ O 0 φ o Φ Ω φ n <! tr tl 3 0 H- fi H- Φ rt J O H- rt O ϋ t h < rt o H- t φ o Pi 0J λ' ti Ω rt p. rt t⁾ a Φ l-h fi Φ Φ H- tr rt 0J 0 3 IQ 0J Φ o tr ^ fi Φ t rt tr

H- H- o H- 0J Pi ti LΠ Φ O ti tl 0 Φ Φ o o rt o Φ ø Φ Hi φ cn

O O 3 iQ in ϋ tr ti Φ H- o Pi rt ⁽Q < 0 rt ^ IV ti 0J hi Pi iQ 0J rt hi H- rt ri ti φ H- rt P- rt O o rt n tr rt 1 H- iQ Φ cn φ H- Φ 0 0J Ω Pi hi o rt o ϋ ft Φ i fi Φ V rt φ ii ^>< tι ^• ti 0 Ω cn 3 ti Ω H-

O H- tr 0J hi o o ft K iQ 0J tl C Φ 0⁾ TJ H- rt o rt iQ cn hi cn 0> 0 hi tr y h3 Φ tl ii 3 cn H TJ TJ OJ hi p. rt i rt rt i Φ < Φ rt ø fD ti IQ φ cn Φ H- rt cn 0 0J 3 fi tr o 0J tr H- tr Φ ti H- o ti O hi ft H

PJ 0 H- 3 Φ cn ti cn 0J < n o o ^•< Ω 3 rt h Φ Ω Φ o IQ ⁽Q 0 rt tl o tsJ tr Φ rt Ω H- ^ 0 O Pi Φ 0J cn 0J rt K tr hi

H- H- 3 < cn rt o ø Pi tf rt rt Pi Φ t⁾ o 0 o ii rt tr Φ cn h-¹ o rt TJ tr ^■t 0J 0

S ^•g ω H- Φ 0 o tr Φ O H- φ rt n tl Ω rt tr PJ Ω hi Φ cn hi 0J H- TJ rt 3 Q Φ f TJ 0 H- Φ rt φ 0J Φ cn 0 Φ 5 Pi cn 0 cn rt tr H- 0

CD rt < t |J 0⁾ 3 Φ tl 0J ti ti H fi 0⁾ H- φ tl tl rt 3 tr 0 < cn * tJ' h-¹ H- Φ o O o tl IQ rt 0 tl P- rt Ω H- cn 0 0 & 0 OJ ti H- fD OJ O o H O < & ti h-¹ tn H- -J Φ Φ Ω hi < Ω rt o Φ o ^3 rt Φ TJ φ H- φ OJ 0J o TJ rt cn o X Φ φ Φ hi tr hi ii ø tr rt IQ ti Φ tr cn tl tl rt o o Φ H- rt o rt tr cn Hi Φ hi o Φ H- Ϊ

H ø OJ 0 l 0J tr Φ rt H- Pi Φ Ω 3 hi Φ 0J rt cn ft IQ Φ fD CQ n H ii " Φ rt tl rt 0J 1 rt H- φ rt O H tr h-¹ φ ii 0 tr ^

- φ g 0 φ H- fi rt Pi 0 rt o t tr cn Hi 3 Φ s: O φ ft

3 0⁾ < Pi ϋ l o 0 rt ii 0 H- t tr H- TJ Φ Φ H- O cn cn 0J cn Pi o OJ S^" ft H- 0J ii i tr Φ 1 cn Φ tr Ω φ rt fi rt Φ 0J _^— *. Pi rt ^ rt 0J

< tn Pi tr cn ø Φ cn Φ rt n 0⁾ fi 0 φ tr tl tl H- tr 3 cn 0 ft

H- ti o φ ^ Φ P. Φ O C t⁾ ii ϋ Pi φ hi 0J 0J 3 0 IQ OJ H- O TJ 0J fD j PJ ti fi 0J Φ 3 i Φ H- Φ g- 0 cn rt rt o ft P- rt h-¹ Φ tr

5 p en cn 3 < tr Ω ϋ O rt t 0J IQ P. 3 tr < rt tr 3 0J Ω 3 0J

O ^* o H- tr < P. d rt H- Φ H- 0 rt rt Φ cn 0J Φ o h{ ft 0 cn o Φ S ) < o 0 φ rt H- rt a tr o < tr t Φ tr < tr < Φ ti H tl φ o H- Φ rt Φ o Φ cn H- 3 0J tr H- hi Φ Φ TJ 0 tr H- rt Φ H- ft o Φ cn tr o n 0 ⁽Q 0J rt Φ hi cn ^ 3 ø Φ O Ω Φ ~J

0⁾ 0 rt • Φ & 3 rt H t tl H- 0J TJ o rt p 0 tr Φ h-¹

H- t-h tr H- iQ tr tl 3 Ω 0 i hi p. o ^— ' <J rt ti Ω o ti Φ OJ o 0 hi H- it-. tr rt tr fD en •-a tr Φ ti H- tl tr H- rt cl cn rt 5 o φ tl Φ Φ

3 <J Pi *< P. Ω 0J Φ O 0J 0J Ω t Φ rt cn 5 0 φ iQ O cn O rt rt g 0J cn H- ^* O φ Ω hi φ ti • H- p tl

0 rt φ tl Φ h-¹ 0 Φ φ

\n tr ϋ fi H- o l-h cn φ tl

SMC 250 and secure movie players SMP 750 of digital movies 10. This requires hardware manufacturers to build secure movie projection system 600 appliances such that these appliances can play digital movies 10 from multiple SMC 250 and SMP 750 standards, much like today's 35 mm movie projection hardware that can project a 35 mm movie print of any movie.

Provided below is a more detailed description of the major components of the methods and systems of the preferred embodiment of this invention.

Digital Movie 10

A digital movie 10 is a movie that is made by using a digital movie camera and storing the captured images on a digital media like a magnetic tape or a hard disk. A digital movie 10 may also refer to a movie that is captured on a film and later digitized using currently available digitization equipment and storing the resulting data on a digital media like a magnetic tape or a hard disk. A digital movie 10 is often simply referred to as a movie in this document.

Movie Producer 100

A movie producer 100 could be a major motion picture studio or an independent filmmaker. In the context of this invention, a movie producer 100 uses the producer movie station 1000 to perform the following tasks:

• A movie producer 100 keeps an up to date secure movie key database 700 of all digital movies 10 it has released including their titles, their encryption keys, their compression methods and the location of their SMCs 250. The movie producer encrypts this database and stores it in a highly secure manner. This database is distributed and replicated for maximum security and availability. The number of encryption keys used for each movie can vary depending on the strategy employed, for example a movie producer 100 may decide to use an encryption key for every two-minute segment of a movie.

• A movie producer 100 registers each of its movies with the hub 400 by sending the hub a movie preview 50 and a movie decryption key 150.

Upon receipt of a movie purchase request 650 for a digital movie 10 from the hub 400 the movie producer 100 uses the decryption key 150, and the various information contained in the movie purchase request 650 to generate a SMP 750 for the movie. The movie producer 100 then sends the SMP 750 to the hub 400 who in turn delivers the SMP 750 to the exhibitor 500 who purchased the movie. The SMP 750 is username-password protected.

Once a movie has been exhibited, the movie producer 100 can view the usage report 850 at the hub 400 and settle the payment for N screenings of the movie with the hub 400. As described before various payment methods, including box office revenue split can be implemented by using the SMP 750.

• The producer movie station 1000 in conjunction with the hub 400 is also used to collaborate with distributors 200 to negotiate a distribution agreement.

Movie Distributor 200

A movie distributor 200 is an entity that has bought the rights to distribute a digital movie 10 from its producer 100 to the exhibitor 500. In the context of this invention, a movie producer 100 may sell the rights to distribute the SMC 250 of a specific digital movie 10 to a movie distributor 200. These rights can be for a specific period of time or for a specific geography or for a specific exhibition channel. The distribution rights for digital movies 10 can be very specific and are easy to administer because the SMP's 750 that are can be programmed to monitor the distribution rights of a movie distributor 200.

Movie Storage Service Provider 300

A movie storage service provider 300 is an entity that maintains a large farm of magnetic or optical disks and rents the storage space to movie producers 100 and movie distributors 200. Such storage must be high performance, highly secure and always available - 24 hours a day, 7 days a week. A movie storage service provider 300 may have to store multiple copies of a movie in geographically separate strategic locations in separate time zones around the world. A movie storage service provider 300 should also deploy disaster tolerance techniques to satisfy the varying degrees of performance, security and availability requirements of storing SMCs 250.

In the context of this invention, a movie storage service provider 300 should also have high-speed Internet connections to the movie storage such that exhibitors 500 can obtain a movie at a desired network speed. Under program control they should also be able to provide SMCs 250 of a movie via wireless transmission of SMCs 250 at pre-specified times or by fulfilling a request that a SMC 250 be sent on a physical media.

Whenever an SMC 250 is sent outside the storage service provider 300 the SMC 250 is automatically assigned a new serial number and a watermark. The sent SMC 250 also contains the sender information (authorized name and signature) and the receiver information (authorized receiver) .

A movie storage service provider 300 uses storage service provider movie station 1100 to perform movie asset management and delivery to intended exhibitors. Movie Hub 400

A digital movie hub 400 provides information, such as previews, viewer comments and ratings from various critics, about digital movies 10 from multiple movie producers 100. It also has B2B (business-to-business) and B2C (business-to-consumer) electronic commerce capability as described below.

The objective of the hub 400 is to store any and all information about digital movies 10 from its participating movie producers 100 and movie distributors 200. The hub 400 makes these movies available to anyone at anytime from anywhere over the Internet. Moreover, exhibitors/consumers 500 who have digital movie projection facility are able to purchase and obtain the digital movies 10 for exhibition by one of at least three means, for example, over a satellite link, over a fiber optic connection or by a delivery service on a physical media.

The hub 400 is at the heart of the entire digital movie distribution system.

As more movies (including the movies made for television) and other entertainment, marketing and training audio-visual content become digital in nature, the hub 400 can serve as a B2B and a B2C electronic commerce site for digital entertainment and training programs including digital movies 10. The hub 400 may also introduce innovative and new services for marketing digital movies 10 to end-users like Try and Buy or Pay as You Go pricing schemes. For example, the SMP 750 can be programmed such that the first 50% of the digital movie 10 can be viewed at no charge and the exhibitor/consumer 500 is charged only if he or she decides to exhibit the rest of the movie.

The goal of the hub 400 is to drive the digital content delivery cost to zero. The process must be self-managed and automated. In a live implementation of the hub 400 there are multiple movie producers 100 with multiple SMCs 250. The exhibitors 500 can obtain membership at the hub 400 and navigate through the hub 400 content after proper authentication. Depending upon availability, price and quality an exhibitor 500 can collaborate with the movie producer 100 or the movie distributor 200 to license the digital movies 10 for exhibition.

Once the digital movie 10 has been scheduled and paid for, the hub 400 can also provide remote digital screen management service to all exhibitors 500 to actually exhibit the movies on the secure movie projection system 600 located at the exhibitor premises. The hub 400 can also update a specific web site reflecting the schedule of shows for the digital movie 10 at each location. The hub 400 can provide this functionality to any exhibitor 500 anywhere in the world.

The hub 400 can also provide a central facility for remote ticketing for all digital movies 10 for all exhibitors 500 anywhere in the world.

Description of the Hub User Interface

A brief description of the hub 400 user interface is given below. It comprises of the following buttons:

DIGITAL MOVIE DATABASE

VIEWING OPTIONS

RECENT RELEASES and COMING ATTRATIONS

CELEBRITIES

NEWS

REVIEWS

DIGITAL MOVIE AUCTION

BUY DIGITAL MOVIES NOW

MOVIE PRODUCERS

MOVIE DISTRIBUTORS • EXHIBITORS

• MOVIE STORAGE SERVICE PROVIDERS

The DIGITAL MOVIE DATABASE button provides information about the catalogued properties of each entry in the movie Database . For example, each entry may contain information about:

• Language

• Country of Origin

• Actors

• Awards

• Director

• Producer

This list of properties should be extendible to accommodate new information about the digital movie 10 from the movie producer 100.

The VIEWING OPTIONS button has information about:

• Which digital theaters is the digital movie 10 playing?

• Where and how to license (buy or rent) the movie? If the digital movie 10 is being distributed on a physical medium, which store (on-line or otherwise) is selling or renting the SMC 250 of the digital movie 10?

• How to obtain the SMP 750 of the digital movie 10?

The RECENT RELEASES and COMING ATTRACTIONS button provides information about respective digital movies 10.

The CELEBRITIES button lists the life and work of digital movie celebrities and solicits comments from their fans to build a community and new marketing avenues of an upcoming attraction.

The NEWS section has the news information about the digital movies 10 and digital movie celebrities. The REVIEWS button provides information about reviews of digital movies 10 that are provided by viewers and critics. Each review has the following properties and is extendible:

• Reviewer name, affiliation and contact information

• Personal Comments (from people who have watched the movie)

The DIGITAL MOVIE AUCTION button provides information about the movie titles that are available for auction. Filmmakers and distributors who want to participate in auction may put information about their digital movie titles in this section.

The BUY DIGITAL MOVIES NOW button provides electronic commerce functions for purchasing digital movie 10 titles for pre- registered digital projection systems. It also implements new and innovative services like try and buy and pay as you go pricing options .

The MOVIE PRODUCERS button provides access to producer movie station 1000 applications.

The MOVIE DISTRIBUTORS button provides access to distributor movie station 900 applications.

The EXHIBITORS button provides access to exhibitor movie station 800 applications.

The MOVIE STORAGE SERVICE PROVIDERS button provides access to SSP movie station 1100 applications.

Exhibitor/Consumer 500

Still referring to FIG. 1, an exhibitor/consumer 500 is a theatre owner. It could also be a consumer. In either case availability of a secure movie projection system 600 is a pre-requisite. An exhibitor/consumer 500 is often simply referred to as an exhibitor 500 in this document. In the context of this invention, an exhibitor 500 uses the exhibitor movie station 800 to perform the following interaction with the hub 400:

• The exhibitor 500 interacts with the hub 400 using the EXHIBITORS button on the hub 400 web site.

• The exhibitor 500 previews the available movies on the hub 400.

• The exhibitor 500 collaborates with a movie producer 100 or a movie distributor 200 to license (buy or rent) the rights of a movie to exhibit.

• The exhibitor 500 conducts an electronic commerce transaction with the hub 400 by sending a movie purchase authorization request MPAR 450 to the hub 400.

• The hub 400 obtains the unique projector identification descriptor 550 from the exhibitor movie station 800 and issues an electronic movie ticket 350 to the exhibitor 500.

• The exhibitor movie station 800 prepares itself to receive the secure movie player SMP 750 software.

• The exhibitor movie station 800 unlocks the SMP 750 with the electronic movie ticket 350.

• The SMP 750 verifies the exhibitor 500 by confirming the username and the password of the exhibitor 500. It also verifies the movie projection system 600 by using the electronic movie ticket 350 and obtains or instructs the exhibitor 500 how to obtain the SMC 250 for the movie.

• The SMP 750 unlocks the SMC 250 and securely exhibits the movie on the movie projection system 600.

• After the movie is exhibited the exhibitor 500 sends a usage report 850 to the hub 400.

Movie Projection System 600

A movie projection system 600 is a hardware device with a unique projector identification descriptor 550. FIG. 5 shows a block diagram of a movie projection system 600. It contains the following components : • A CPU and memory subsystem 605 that can execute a SMP 750 software program. Upon unauthorized access the SMP 750 can disable itself and the SMC 250 and notify the hub 400 through exhibitor movie station 800.

• A storage drive 610 that can accept a digital cinema disk

(DCD) media containing a SMC 250 or that can store a SMC 250 obtained by a SSP communications interface 620.

• An exhibitor communications interface 615 to communicate with exhibitor movie station 800 for control information like receiving SMP 750 and sending usage report 850.

• A SSP communications interface 620 to communicate with the storage service provider over a fiber optic or satellite communications network to obtain SMC 250 and store it in the storage drive 610. The SSP communications interface 620 is expected to be relatively high-speed.

• A remote control interface 625 to control SMP 750 via a remote control device 630.

• A audio-video subsystem 635 to decompress SMC 250 and execute any audio and video special effects.

• A clock and calendar subsystem 640 to control timers.

• A secure audio and video subsystem 645 that sends PID 550 and other control information to the CPU and memory subsystem 605 for verification by the SMP 750 and receives encrypted audio and video streams from the CPU and memory subsystem 605.

Secure Movie Key Database 700

Security of a digital movie 10 is ensured through a key-based encryption of the digital data. Digital watermarking is used to detect any leaks in security. The digital movie distribution system described in this invention is not dependent on any particular digital encryption and watermarking methods - open or proprietary. However, the various levels of implementation and execution of the digital encryption and watermarking methods are considered part of this invention. For clarity of presentation, watermarking is considered to be part of encryption system used with this invention. Encryption of digital content is implemented at multiple levels as described below.

1. Using an encryption key for every two-minute segment of a raw digital movie 10 data constitutes the most basic (Level 1) encryption scheme. This will create a database of corresponding Level I decryption keys that must be duplicated and kept in a physically and electronically secure place.

2. In today's implementation of digital communications infrastructure (based on copper, fiber or satellite) a subscriber has a very wide range of bandwidths available to choose from depending upon the communications lines and hardware the subscriber is willing to deploy and the usage fee the subscriber is willing to pay. Depending upon the bandwidth available to a subscriber or his/her willingness to pay for the bandwidth, the SMP 750 can be programmed to stream sufficient content from the movie storage service provider 300 and obtain the rest of the content from a locally attached digital cinema disk (DCD) . This will allow an additional layer (Level II) of security for two reasons:

• Content of every frame is split into two portions such that each portion by itself is not meaningfully complete without the other for the intended purpose.

• Each portion of the frame content can be encrypted in such a way that one portion holds the key for the other portion and cannot be decrypted without first assembling the two portions .

Also note that dividing the content of each frame into more than two portions can extend the above method.

This will create a database of corresponding Level II decryption algorithm that must be duplicated and kept in a physically and electronically secure place. 3. If the digital cinema disk (DCD) is an optical disk or the movie projection system 600 is an optical projector, the previously encrypted digital movie 10 can be further encrypted optically by using a prism (filter) of a specific quality at the source such that the same quality prism (filter) will be required at the destination for decrypting the digital content. The movie producer 100 can then use this prism (filter) as the physical key for securing the digital movie 10. This will allow yet another layer (Layer III) of security for the digital movie.

This will create a database of corresponding Level III decryption algorithm that must be duplicated and kept in a physically and electronically secure place.

FIG. 6 shows the format of an entry K in the secure movie key database 700. Each entry consists of the following components:

• A decryption key 150 that is sent to the hub 400 during registration of a digital movie 10 with the hub 400.

• Information about the format, the compression method used and location of SMC 250 for the digital movie 10.

• Keys for Level I decryption.

• Keys and procedure for Level II decryption.

• Keys and procedure for Level III decryption.

Distributor Movie Key Database 710

The distributor movie key database 710 has movie keys that can be used to restrict the distribution rights of a movie distributor 200 to a specific geography or to a specific channel of distribution. These keys either expire at a certain time in the future or will work only on certain movie projection system 600.

Exhibitor Movie Station 800

Exhibitor movie station 800 is a collection of exhibitor applications on the hub 400. These applications can be executed on an exhibitor premises on a personal computer class hardware ft 3 rt 0 0J V TJ 0⁾ Ω tr cn to P. Ω Pi cn o 0⁾ t⁾ o 3 tn P. φ O TJ 0J rt rt -o in Φ cn tr 0 tr tl TJ hi ϋ tl hi 0⁾ ft o 0 H- *< ø TJ μ- 0⁾ Ω μ- Φ

TJ o tr ii tr tr LΠ

Φ < 0⁾ o Φ Ω o o cn cn cn TJ in tn fi tr cn Ω & rt O in Φ Φ O & cn

H- rt TJ & & i hi rt rt rt P. rt rt W Φ rt 0 μ- 0J <! O rt μ- rt

3 Φ hj ø 0 TJ 1 0J rt H 0J hi φ H- ii hi Φ hi ø tr μ- μ- 3 0⁾ φ tr Φ o Ω o Ω Ω Ω hi rt o iQ o H- tr 3 cn Ω μ- rt ø Ω μ- ø OJ δ hi 3 3

< cn 0⁾ & 0J Φ Φ Φ tr 0 V rt 0⁾ tr tr μ- tr μ- rt μ- Φ I-¹ Ω <! Φ rt rt ti 0 rt ϋ fi ti 0J 3 ø hi ø rt h( 0 ø ø μ- ø h-¹ 0 ø φ μ- σs 0 rt

Φ 0⁾ Ω rt tl H- cn 0 rt 0J rt tr rt rt iQ ø rt μ- hi iQ Ω 0 ø Φ cn o fi tr rt ti Φ 0 3 £ Ω Φ ø rt 0 0⁾ t 0 0 0 iQ 0 0⁾ O in ft o 0J

P-. H- 0 hi ti o 0 3 Φ H 0 Φ hi rt ø 0 i hi 0⁾ fi rt LΠ rt 0 cn μ- TJ 0 3 rt o ti cn < < O Ω < rt ø rt cn ø 3 μ- o tr ft ø hi hi 0J δ cn ti TJ < 0 0 0 3 3 Ω O 3 S i 0 t 0 o Φ hi rt iQ 0 Φ 0 < Ω rt OJ hi 0 i) φ TJ Ω hi hi o 0J fi 0 O 0 < o ø 0 tr P. Pi 0J ϋ Φ ti Φ φ Φ rt < ø 0 < <! TJ o tr CO φ fi 0 φ 0

O tr 3 tn CΛ Φ hi rt iQ tr t μ- hi Φ » ^■t 0J S μ- Ω rt t O ti H- rt rt rt 3 Ω 0J TJ tr tr Φ hi o ft Φ φ 0 Ω o φ iQ Φ H tr cn hi ø o 0 cn tr 0⁾ 0J 0J rt hi Φ rt rt 0 o tr 3 TJ Φ rt w ø tr ii ft Φ tt 0 rt 3 Φ Φ rt rt ti H- 0 cn tr cn ø Φ tn Ui 0 hi I-¹ tr 1 to rt 0J 0 o OJ n cn H- W o O < 0 Φ rt TJ rt rt rt O Φ O Lπ O cn h-¹ 0⁾ rt fi Φ 0^* o 0 φ tl ts cn rt 0J 0⁾ hi tr 0J 0⁾ μ- Ω rt O hi t o o 0J fi o 0 ti 0 rt cn 0J o 3 Φ 0 rt rt O φ tr 3 μ- rt o Ω o to O ti tr H- Φ iQ 0 H- tr 3 tr μ- ø Ω hi Φ μ- 0J

OJ h-¹ 0 H cn hi Φ 0⁾ O fi o O rt O Ω 0 S rt 0 o 0J ø tr o <! o o S h-¹ h{ o cn tl OJ O O iQ Q £ H- ø 0 in 0 ø TJ 0 3 Φ ti 0J fi cn CO 0

O O o 3 TJ LO ii 3 Φ s Φ hi O μ- 0 O in o S3

OJ rt Tl O o o 0J TJ o Φ o D n cn LO O 0 Ω <! 0 rt ø LΠ 3 rt rt rt o cn ti tr Ω φ • tl rt O o TJ TJ O Φ • o O IQ μ- TJ tr o 0 !" tr o φ φ 0 hi H- P. tr hi . o H- fi O hi O o O fi ft φ φ Φ rt o < Φ Φ hi Ω hi ø cn h3 cn Φ hi Φ o ø 3 ^QJ 0⁾ hi 0 μ- 0J 0J rt TJ tl 0 tr TJ • P. 0⁾ 0⁾ tr μ- § 0 Ω TJ 0⁾ O rt φ 3 Φ iQ 0 0J tr ti Φ ti Φ 0J hi Φ cn H cn ø 0 0J Φ cn tn P. hi ft £ ft 0 0 Φ ø

Φ o Ω 0⁾ cn o ø H Ω h-¹ Pi cn • Φ o μ- tr 0⁾ < 0J p. to rt h-¹ Φ Ω 3 Ω 00 rt Φ 0 TJ Φ 0J hi rt O Φ cn ø cn Ω t cn 0 0 o H- tr 0⁾ Π ϋ s Ω Φ 0 0 ø -J φ P. φ tr >< Ω Ω rt Ω rt Ω 0J rt tr o 0J cn 0 hi OJ Ω t> ø Ω cn LΠ TJ ø cn Φ 0

0 Φ o 0 J H- 0⁾ cn I-¹ 0 cn s O p iQ Φ o hi Pi rt rt cn H hi hi £ TJ Φ o rt cn 0 0J cn o rt 0 0 TJ μ- fi tn • O rt 0 φ cn p

OJ ft TJ Ω tl 0 0 0 o tr Φ ø ø 0J 0 0 cn cn hi 3 Φ

IQ h-¹ tr 0 i Ω TJ Φ Ω 0J Φ iQ 0 h-¹ TJ Φ cn rt rt Ω

Φ o φ Ω H- TJ 0 hi 0⁾ μ- ft h-¹ Ω Ω o TJ H Ω 0⁾ 3 hi Lπ ^■t tr rt o φ 0⁾ o hi Lπ 1 o ø P 0⁾ 0 o o ft ft iQ & μ- O tr Φ tn tr hi ft tl 0 o 0 < ti H- ft Ω rt ø tr hi μ- Φ ii tr O Φ rt

Φ 0 IQ σ TJ rt 0 cn cn O 0 H- 0 1 0 0J ft 0⁾ 0 0 hi P. 0 hi 0 tr Ω 0 0 hi P- Φ £ Φ rt 3 0 0 X 0 ø ii Φ ft ft Φ

< tl l-h 0J 0⁾ hi Φ ii cn Ω hi TJ 0 μ- 1 cn cn Φ rt o o iQ ft

Ω 0J cn 3 3 Φ cn 0J ø H- tr ø cn 0 ø 0 0 0 cn TJ ti rt μ- tr

Ω 0 O cn tl cn P. Ω Ω rt hi tr Φ rt l-h φ O Ω ^>< o ti Ω tr rt Φ

Φ o ω Ω hi • 0 rt rt tr H- 0 Φ Ω hi tr TJ cn hi iQ to o Φ 0J

. 0J 0 0 tr Φ 0 tr ti PJ 0J μ- hi rt o tr

TJ 0⁾ tr tl & 0 Ω Φ s: IQ 0 0 0 μ- ø Ω 3 0⁾ 0 Φ 3 o CΛ hi tr H 0J 0 3 H- hi tr Ω tn Φ O cn < p 3 00 0J 0⁾ S TJ &

0 O tr hi tr Ω P. rt H- I-¹ tr rt <J LΠ rt μ- tr o hi

< t Φ Q^y Φ Φ H- H- H- tr cn tr to 0J Φ H TJ hi μ- Ω σs o φ ø o o |4 -

OJ •$ tl 0J cn rt Φ O cn μ- hi Φ φ O Φ σ hi ii to O

P. rt TJ OJ Φ iQ rt rt rt fi O cn Φ tr μ- TJ 1 cn o 0⁾ μ- cn 0J LΠ φ O

Φ Φ hi hi X hi tr μ- • X 0 ø O 0 0 0J Φ o Ω • ii o φ Φ 0 o Φ tr tr Φ rt rt hi TJ P. Ω φ

& Ω 0 ø tr ø 0 •-3 0J Ω 0 rt o cn ø 0J μ- H3

LO 0 cn 0 1 0 3 tr hi 0 hi 3 μ- hi . hi ^■ 0 o tr o rt Ω •<: rt 0⁾ rt o o Φ ft O ø μ- μ- P. ø Φ o tr Φ cn Φ 0 0 <! ii φ < iQ H ø rt hi rt fi OJ μ- rt iQ tr CO

Φ Φ Φ hi Φ S ti 3 Φ

finalizing the distribution rights to a movie. It also allows the producer 100 to interact with the hub 400 for example in submitting the movie preview 50 and monitoring the usage report 850. It also provides producer back-office operations support such as managing secure movie key database 700.

SSP Movie Station 1100

SSP movie station 1100 is a collection of storage service provider applications on the hub 400. These applications can be executed on movie storage service provider 300 premises on a personal computer class hardware system that can run a browser and connect to the hub 400. These applications will allow the movie storage service provider 300 to negotiate the rights to store the SMC 250 of a movie. They will also allow a movie storage service provider to perform movie asset management and delivery of the movies purchased to the intended exhibitor 500.

Movie Preview 50

Movie preview 50 is the trailer of a movie that is used for marketing and advertising the movie. Under program control a movie producer 100 or a movie distributor 200 can include specific movie previews 50 in a specific SMC 250 or SMP 750 by integrating their existing systems with the distributor movie station 900 or the producer movie station 1000 respectively.

Movie Decryption Key 150

The movie decryption key 150 of a digital movie 10 includes the movie title and a reference to a corresponding entry in the secure movie key database 700.

Secure Movie Container 250

A movie container is a software object that contains movie bits in a specific format. This format contains information about audio, video and special effects (like background music or video, closed caption and dubbing.) These formats can be open and publicly available or can be proprietary to a filmmaker or studio. Movie bits are present in the movie container according to this specific format. For example the JAVA Media Format Version 2.0, a publicly available application programming interface, will allow content providers to capture digital content in multiple open or proprietary formats.

Once the contents of a movie container are encrypted according to a specific known cipher algorithm, it becomes a secure movie container (SMC) 250. One or more encryption keys (for example an encryption key may be used for every two minute segment of a movie) are involved in generating a SMC 250. Only the movie producer 100 knows the corresponding decryption keys of a SMC 250.

Each secure movie container SMC 250 has the source information (originating studio/filmmaker) , release information (date released and authorized name and signature) and credits information (casting) . This information can be contained in the header of the SMC 250 and need not be encrypted. This will allow the movie storage service provider 300 to create media asset management applications to keep track of SMC 250 by interrogating them to verify their availability. The same information can also be made a part of movie preview 50 so that the hub 400 can account for all the movie previews 50 that the hub 400 has available. Such movie information in an SMC 250 can be left unencrypted and can prevent inadvertent delivery and exhibition of wrong content .

Electronic Movie Ticket 350

An electronic movie ticket 350 contains an authorization code to unlock the SMP 750 of an SMC 250 and to verify the secure movie projection system 600. Upon completing an electronic commerce transaction for exhibiting a movie the hub 400 issues an electronic movie ticket 350 to the exhibitor/consumer 500. This authorization code in the electronic movie ticket 350 is used in programming the SMP 750 that is subsequently downloaded by the exhibitor movie station 800. This authorization code is electronically stored in the exhibitor movie station 800 and is used by the SMP 750 to authenticate the secure movie projection system 600.

Movie Purchase Authorization Request (MPAR) 450

The MPAR 450 contains the following information:

• Credit card number or account number (if the exhibitor is a preferred customer at the Hub 400) or the negotiated box office revenue split arrangement.

• Username

• Password

• Expiration timer T days from the time of purchase, and

• Number of times N the movie will be exhibited

Projector Identification Descriptor (PID) 550

This is a unique identifier of secure movie projection system 600 much like the host-id of a computer system connected on the Internet .

Movie Purchase Request (MPR) 650

The MPR 650 contains the following information:

• Title of the movie

• Movie decryption key 150

• Username and password of the exhibitor 500

• Electronic movie ticket 350

• Unique PID 550 of the projection system 600 at the exhibitor premises

• Number of screenings N and the expiration timer T

Secure Movie Player (SMP) 750

A movie player is a software program. This program understands a movie container object and its structure and can process its content - including audio, video and special effects - to render audio and images on a speaker processor and a video projector respectively. A movie player provides standard controls to play, pause, restart, fast forward and rewind the movie.

More specifically, a SMP 750 is a movie player that understands a specific secure movie container (SMC) 250 and enables only those controls that are allowed by its manufacturer. For instance a movie producer 100 may manufacture an SMP 750 that understands how to play a specific movie on a specific projection system 600 only for a predefined number of times and may disable all other standard movie player controls like rewind and pause.

The SMP 750 provides the following functions:

1. Understands and interprets the SMC 250 format;

2. Authenticates the exhibitor 500 and the projection system 600;

3. Enables authorized movie player controls; 4. Meters usage ; and

5. Provides security against unauthorized access by disabling itself and the SMC 250.

The SMP 750 is one of the most important parts of the above- described preferred embodiment of the invention. As a movie producer 100 evolves its technology to produce more sophisticated SMP 750 one can envision the following scenarios where a movie producer 100 can release SMPs 750 with increasingly more functionality :

1. Provide a mechanism for refund of unused usage. For example, if the exhibitor 500 has purchased a SMP 750 for two screenings and has exhibited the movie only once, the SMP 750 can be returned or self-disabled for a refund of the second exhibition.

The concept of refund can be evolved to implement pay as you go schemes. For example, in a specific SMP 750 implementation the usage may be monitored every 15 minutes and if the viewer does not like the movie after 15 minutes she may return/disable the SMP 750 for a full refund. However, if the viewer has watched more than 50% of the movie she cannot get any refund, or in the alternative, obtain a 50% refund.

2. Provide a mechanism for exhibiting interactive movies. Since the SMP 750 understands the format of the SMC 250, it can be programmed to create interactive movies. For example, based on the exhibitor or viewer preference entered in the beginning of a movie the SMP 750 can play or not-play certain parts of a movie. This will allow:

• The creation of happy or sad endings

• The creation of multiple story lines

• The introduction of new scenes or characters

3. Provide a mechanism for releasing multiple version of the same movie. The movie producer 100 may release the entire encrypted content all at once and add various new features to the SMP 750 to create multiple versions of the same movie. This extends the box office shelf life of a movie. This also allows the movie producer 100 to test market a movie by releasing different versions of the same movie in different markets .

With standardized SMC 250 formats, like MPEG2 , the hub 400 may offer a generic SMP 750 with the purchase of a movie, or in the alternative, a movie producer 100 may want to release his or her own SMP 750 with the release of a SMC 250.

Usage Report 850

Referring to FIG. 1, when a SMP 750 completes playing an SMC 250 a message is sent to the hub 400. This message is the usage report 850, which contains information about exhibition location (local theater details) , exhibition time and other viewer feedback details on the digital movie 10. A specified credit may be given to the exhibitor 500 for providing a complete usage report 850. Unauthorized Attempt Report 950

Only an authorized person can open a SMC 250 and a SMP 750. If an attempt is made to open a SMP 750 or a SMC 250 by an unauthorized person or a program, a message will be sent to the movie storage service provider 300 and the hub 400.

Secure Movie Container Generator

FIG. 2 is a flowchart of a SMC 250 generator. It is a software system that creates SMCs 250. It uses a movie key K to encrypt a movie to create a particular SMC 250. The movie key K is stored in the secure movie key database 700 and is used by the secure movie player generator to create SMPs 750. A step by step description of the flowchart in FIG. 2 is a as follows:

1. Start SMC generator .

2. Obtain digital movie 10 content.

3. Store movie content in a proprietary or open format.

4. Encrypt using Level I encryption algorithm.

5. Compress encrypted movie using proprietary or open compression algorithm.

6. Encrypt compressed movie using Level II and Level III encryption algorithms.

7. Store secure movie container SMC 250 of the digital movie 10.

8. Enter corresponding Level I, Level II and Level III decryption key and methods into the secure movie key database 700.

9. Stop SMC generator.

For example, Java Media Framework (JMF) , a publicly available application programming interface, allows a software developer to write a secure movie container generator that can create SMCs using customized coder-decoders and formats.

Secure Movie Player Generator

FIG. 3 is a flowchart of a SMP 750 generator. It is a software system that creates SMPs 750. It uses information from the movie purchase request MPR 650 and the movie key K of the purchased movie from the secure movie key database 700 to create an SMP 750. SMPs 750 can exhibit a pre-programmed movie on a preprogrammed digital projection system 600 for N times during a pre-programmed duration T. A step by step description of the flowchart in FIG. 3 is a as follows:

1. Start SMP generator .

2. Obtain the following information from the movie purchase order 650: movie title, exhibitor username and password, authorized usage parameters N and T, unique PID 550, electronic movie ticket 350 and movie decryption key 150.

3. Using the movie decryption key 150 obtain the movie key K from the secure movie key database 700.

4. Create SMP 750 and use key K to program the following information in it: where to obtain the SMC 250 of the movie, Level I, Level II and Level III decryption keys and methods of the SMC 250.

5. Store SMP 750

6. Stop SMP generator .

For example, JAVA Media Framework (JMF) , a publicly available application programming interface, allows a software developer to write a secure movie player generator to create SMPs 750 that can play SMCs 250.

FIG. 4 is a flowchart of various steps involved in executing a SMP 750. These steps are described below:

1. SMP 750 authenticates the exhibitor 500 by verifying the username and the password that was entered during purchasing electronic movie ticket 350.

2. SMP 750 reads the electronic movie ticket 350 from the exhibitor movie station 800.

3. SMP 750 authenticates the movie projection system 600 by verifying the unique PID 550.

4. SMP 750 verifies the movie title, number of screenings N and the expiration time period T.

5. SMP 750 provides and confirms one or more of the following options to load the SMC 250: • Over a fiber optic cable connection

• Over a satellite broadcast medium at a specified time

• Using a locally attached DCD

6. SMP 750 obtains SMC 250.

7. SMP 750 unlocks the SMC 250 using the movie key K that was programmed in the SMP 750. This movie key K was obtained from the secure movie key database 700 during creation of SMP 750.

8. SMP 750 checks the expiration timer and updates the remaining time and the screening count.

9. SMP 750 plays the secure movie container SMC 250 onto the movie projection system 600.

10. SMP 750 meters Usage: If expiration timer T or screening count N is not valid, disable SMP 750 and SMC 250.

The above description of this invention when taken together with FIG. 1-6 describe the methodology needed to create a software architecture that can be deployed to significantly enhance the distribution and exhibition of digital content including digital movies 10. This methodology defines the building blocks for creating, storing, distributing and exhibiting a digital movie 10. On the basis of these building blocks a digital movie distribution network is defined using software and hardware components as described above. For example, hardware components of the type available from IBM, SUN and others; and software components of the type available from Microsoft, SUN and others can be used to implement digital movie distribution methods and systems described in this invention.

Although the invention has been described with respect to digital movie embodiments, it should be realized that this invention is also capable of a wide variety of other embodiments within the spirit and scope of the appended claims .

What is claimed is:

Claims

1. A method for secure distribution of material from a provider over a network to a destination comprising the steps of: digitizing the material; encrypting the digitized material; forming a corresponding decryption key; authorizing the destination to receive the material; setting at least one limitation on presentation of the material ; creating a software program containing said decryption key and said at least one limitation; providing the software program to the destination; permitting the destination access to the encrypted digitized material ; receiving the encrypted digitized material at the destination; using said decryption key to enable presentation of the digitized material within said at least one limitation.

2. The method as defined in claim 1 further comprising the steps of: providing a user at the destination; said authorizing step being accomplished with a password; providing payment for the presentation of the digitized material; presenting the digitized material; determining if said at least one limitation has been exceeded, and if so, disabling the presentation of the digitized material; and providing information representative thereof .

3. The method as defined in claim 2 wherein said user is an exhibitor .

4. The method as defined in claim 2 wherein said authorizing step is further accomplished with a username.

5. The method as defined in claim 2 further comprising the step of forwarding said information to the provider.

6. The method as defined in claim 2 further comprising the step of issuing a ticket to said user upon said payment and said ticket effecting said authorizing step.

7. The method as defined in claim 1 wherein the material includes anyone of or combination of the following: movies, videos, music, recitations, pictures, printed books, audio books.

8. The method as defined in claim 1 wherein said at least one limitation comprises any one or more of the following: a number of presentations, a time window for presentations, a geographical restriction for presentations, a restriction to a particular entity for presentations, restriction to a type of audience for presentations .

9. The method as defined in claim 2 further comprising the step of: monitoring said user, and if determined not to be authorized, sending a message representative thereof to the provider.

10. The method as defined in claim 1 further comprising the steps of : enabling a player for presenting the digitized material within said at least one limitation; and monitoring said player.

11. The method as defined in claim 1 further comprising the step of: distributing the material to multiple users at one or more destinations .

12. The method as defined in claim 1 wherein the step of permitting the destination access includes the steps of transmitting the material via the network and storing the material, or sending the material on an optical or magnetic disk via a delivery service or a combination of the two.

13. The method as defined in claim 10 further comprising the step of disabling said digitized material based upon information garnered from said monitoring of said player.

14. The method as defined in claim 10 further comprising the step of accumulating information on any one or more of the following: usage of the digitized material, audience for the digitized material, gross proceeds and profits from the presentation .

15. The method as defined in claim 1 further comprising the step of: storing the encrypted digitized material at a location separate from the provider and the destination.

16. A method for organizing and presenting material of a provider comprising the steps of: forming a digital content container of the material encrypted by at least one encryption key; permitting the digital content container to be accessed by a software program; setting at least one limitation on presentation of the material; utilizing said software program to present the said digital content container material, wherein said software program authenticates a user of the material, and monitors said at least one limitation, and if said at least one limitation is exceeded providing information with respect thereto to said provider and to said user.

17. The method as defined in claim 16 wherein the step of forming a digital content container encrypted by said at least one encryption key further comprises the step of encrypting the said digital content container material at preselected time intervals by a different encryption key, respectively.

18. The method as defined in claim 16 further comprising the steps of: verifying authorization by said software program; and generating identification information based upon said verification.

19. The method as defined in claim 16 wherein said at least one limitation comprises any one or more of the following: a number of presentations, a time window for presentations, a geographical restriction for presentations, a restriction to a particular entity for presentations, restriction to a type of audience for presentations .

20. A system for secure distribution of material from a provider over a network comprising: a digitized and encrypted version of the material; an encryption key; said encryption key utilized to encrypt the material; a corresponding decryption key; at lease one authorized destination for receiving the encrypted digitized material; means for providing at least one limitation on the presentation of the said encrypted digitized material; a software program; said software program containing said decryption key and said at least one limitation; means for providing said software program to said at least one authorized destination; and means for permitting said at least one authorized destination access to the said encrypted digitized material ; said software program being utilized at said at least one authorized destination to decrypt and present the digitized material within said at least one limitation.

21. The system as defined in claim 20 further comprising: means for authorizing a user at the destination to present the material ; means for detecting and reporting information with respect to the presentation; and means for disabling the presentation if unauthorized access to the material is detected.

22. The system as defined in claim 20 wherein said means for authorizing said user includes at least one of the following: a user name, a password, a ticket, a specific presentation system.

23. A system for secure distribution of material from a provider over a network comprising: at least one encryption key; a digital content container of the material as encrypted by said at least one encryption key; means for setting at least one limitation on presentation of the digital content container material; a software program to access the digital content container material and present the material; said software program authenticates a user of said digitized material and permits presentation of the material on a player, monitors said at least one limitation; and notifies the provider and said user if said at least one limitation is exceeded.

24. The system as defined in claim 23 further comprising: means for requesting verification of the presentation of the material by said user and if verification is correct, sending usage information to the provider, and if verification is incorrect disabling the presentation and sending said user identification information to the provider.

25. The method as defined in claim 1 wherein said encrypting step is accomplished by: dividing the material into frames; encrypting at least one of said frames with an encryption key; and storing the corresponding decryption key.

26. The method as defined in claim 25 wherein said encrypting step is further accomplished by: dividing said at least one of said encrypted frame into two or more parts ; encrypting one part by using another part as the encryption key in a round robin fashion; and storing a corresponding decryption algorithm in said decryption key.

27. The method as defined in claim 1 wherein said encrypting step is further accomplished by: storing the digitized material on an optical media using an optical filter; and storing a corresponding decryption algorithm in said decryption key;

29. The method as defined in claim 1 wherein the network is a communications network.

30. The method as defined in claim 1 wherein the network is a distribution network.

31. The method as defined in claim 1 wherein said receiving step comprises any one or a combination of more than one of the following: receiving the material over a fiber optic connection, receiving the material over a satellite connection, receiving the material on an optical or magnetic disk via a delivery service.

32. The system as defined in claim 20 wherein the network is a communications network.

33. The system as defined in claim 23 wherein the network is a communications network.

34. The system as defined in claim 20 wherein the network is a distribution network.

35. The system as defined in claim 23 wherein the network is a distribution network.

36. The system as defined in claim 1 wherein the network is the Internet .

37. The system as defined in claim 20 wherein the network is the Internet .

38. The system as defined in claim 23 wherein the network is the Internet .