A secure programming system and method for provisioning and programming a target payload into a programmable device mounted in a programmer. The programmable device can be authenticated before programming to verify the device is a valid device produced by a silicon vendor. The authentication process can include a challenge-response validation. The target payload can be programmed into the programmable device and linked with an authorized manufacturer. The programmable device can be verified after programming the target payload by verifying the silicon vendor and the authorized manufacturer. The secure programming system can provision different content into different programmable devices simultaneously to create multiple final device types in a single pass.

One embodiment of the invention includes a system comprising: a personal digital key and a computer readable medium that is accessible when authenticated by the personal digital key.

A secure programming system and method for provisioning and programming a target payload into a programmable device mounted in a programmer. The programmable device can be authenticated before programming to verify the device is a valid device produced by a silicon vendor. The authentication process can include a challenge-response validation. The target payload can be programmed into the programmable device and linked with an authorized manufacturer. The programmable device can be verified after programming the target payload by verifying the silicon vendor and the authorized manufacturer. The secure programming system can provision different content into different programmable devices simultaneously to create multiple final device types in a single pass.

A method and apparatus for brokering the enablement of the communication of encrypted media programs from a plurality of independent broadcasters to a plurality of receivers is disclosed. The system makes use of a pairing key for each provided service, which is differently encrypted by a pairing server and by the broadcaster providing the service. The encrypted versions of the pairing key are decrypted in a first receiver module using information known to the pairing service but not the broadcaster and in a second receiver module using information known to the broadcaster. The pairing key is used to cryptographically bind the first and second receiver modules.

A method for managing hardware resources includes obtaining, by a local virtual hardware license manager, a license request from an application instance, in response to the license request: sending a virtual hardware license request to a license management system, wherein the virtual hardware license request comprises a hardware resource list, making a first determination that a response to the virtual hardware license request validates the virtual hardware license request, and in response to the first determination: providing, based on the hardware resource list, a signed hardware resource document to a hardware resource manager managing a hardware resource, wherein the hardware resource list specifies the hardware resource, updating a hardware resource access repository to specify enabled access of the hardware resource by the application instance, and initiating access to the hardware resource by the application instance.

Methods and apparatus provide for: receiving inputs at a service provider server system from a controller over an internet connection; using the inputs in a processing system to produce data based thereon representing desired operations by a user of the controller; and transmitting the data from the service provider server system back over the internet connection.

A system, device and method are provided to purchase, download and obtain transferable rights to play content using a mobile telephone. In an alternative embodiment, the mobile telephone is used to purchase content, which then is downloaded using other channels, e.g., a broadband using other consumer devices and played by these other devices.

A uniform enclave interface is provided for creating and operating enclaves across multiple different types of backends and system configurations. For instance, an enclave manager may be created in an untrusted environment of a host computing device. The enclave manager may include instructions for creating one or more enclaves. An enclave may be generated in memory of the host computing device using the enclave manager. One or more enclave clients of the enclave may be generated by the enclave manager such that the enclave clients configured to provide one or more entry points into the enclave. One or more trusted application instances may be created in the enclave.

One embodiment of the invention includes a system comprising: a personal digital key and a computer readable medium that is accessible when authenticated by the personal digital key.

Methods and apparatus provide for: establishing communications between a controller for operation by a user and a center device, wherein the center device is operable to execute at least one application program and to produce an output for display that is manipulated in accordance with inputs received by the center device from the controller device; measuring one or more pieces of biometric information of the user via a biometric sensor circuit of the controller; storing one or more pieces of predetermined user information, including authentication key information about the user in a memory element of the controller; and performing authentication of the user by comparing the measured biometric information with the predetermined authentication key information via a control circuit of the controller, where authentication is satisfied when the comparison indicates a predetermined threshold of concurrence between the measured biometric information and the predetermined authentication key information.