The present invention relates to data rights management and more particularly to a secured system and methodology and production system and methodology related thereto and to apparatus and methodology for production side systems and are consumer side systems for securely utilizing protected electronic data files of content (protected content), and further relates to controlled distribution, and regulating usage of the respective content on a recipient device (computing system) to be limited strictly to defined permitted uses, in accordance with usage rights (associated with the respective content to control usage of that respective content), on specifically restricted to a specific one particular recipient device (for a plurality of specific particular recipient devices), or usage on some or any authorized recipient device without restriction to any one in specific, to control use of the respective content as an application software program, exporting, modifying, executing as an application program, viewing, and/or printing of electronic data files.

The invention provide systems and methods for management of digital media objects, comprising first and second client digital data processors (e.g., personal (or private) computers, laptops, dedicated music devices, electronic book readers, and so forth) that are in communications coupling with one or more stores (e.g, dedicated disk drives, flash drives, cloud storage, etc.). At least one digital media object (DMO) or copy thereof is stored in one or more of those stores and is accessible by at least one of the first and second client digital data processors.

Disclosed is an apparatus for controlling access to a security content using near field network communication of mobile devices. A policy issuance provider registration unit requests a content security policy for a first content, a security content, to a service server, receives the content security policy for the first content, requests to the service server for a first mobile device to be registered as a content security policy issuance provider, and receives a result of registration and a provider policy from the service server. A policy issuance provider converting unit converts the first mobile device to the content security policy issuance provider when receiving a request for access for browsing the first content through near-field network communication from another mobile device in which a DRM client application is being executed. A temporary content security policy issuance unit issues a temporary content security policy for the first content through near-field network communication to the second mobile device so that the second mobile device can browse the first content.

Computer-implemented methods and systems are provided digital content data over a network. In accordance with one implementation, a method is provided that includes: generating, in response to a download request for digital content data, a download address for the digital content data, and transmitting the download address to a client; authenticating, at a content server, the download request; downloading, over the network to the client, the digital content data after the download address is authenticated; receiving, from the client, a request for a license to access and playback the downloaded digital content data; authenticating, at an application server, the license request; and providing, to the client device, the license for the digital content data after the license request is authenticated, the license enabling the client device to access and playback the digital content data.

A batch rights objects (ROs) acquisition method and system is provided to enable a mobile terminal to acquire multiple rights objects in a batch processing manner. A rights object acquisition method according to an embodiment of the present invention includes transmitting a rights object request message requesting one or more rights objects of content objects from a mobile terminal to a rights issuer; creating, at the rights issuer, a rights object response message containing at least one of rights objects indicated by the rights object request message and at least one signature in response to the rights object request message; and transmitting the rights object response message from the rights issuer to the mobile terminal.

A user selection of one or more of a plurality of content is received. The selected content is encrypted by a first encryption key that is remote and unknown to the distribution server. Payment information associated with the user selection is also received and verified. The selected content from is retrieved from a remote database. The first encryption key corresponding to the selected content to decrypt the encrypted content corresponding to the user selection is obtained. Decryption is performed by a hardware-based engine of the distribution server that is isolated from a host processor of the distribution server. The content corresponding to the user selection is encrypted according to a second encryption key that is known to the distribution server.

Disclosed systems and methods provide media content through an electronic commerce server. In one implementation, a method for providing electronic content is provided. The method includes receiving an order of a user. The order of the user may comprise a request of the user for a physical copy of media content. The commerce server may determine whether to provide to the user an electronic copy of the media content based at least on the order. Further, a request to access the electronic copy of the media content is received from the user. The method further grants the user access to the electronic copy of the media content based at least on the request to access the electronic copy of the media content.

A system and method to control access to data are disclosed. An access request is received from a requesting device to access requested data and a context for the requesting device is determined. An access pattern for the requested data is determined based at least on the request and the context. A deviation between the context and the access pattern is determined and based on determining the deviation, a decision request to allow or deny the access request is sent. Based on a response to the decision request, access to the requested data is allowed.

A computer implemented system and method of sharing files between a link sharer and a link recipient over a network. The method comprises generating, in response to a request by a link sharer, a file sharing link to a file set, where the link does not provide a link recipient the ability to modify the contents of the linked file set. In response to receiving an indication that the generated link has been activated by a link recipient, displaying a representation of the linked file set with a display element configured to send a request for modification rights to the linked file set when activated by the link recipient. In response to receiving the request for modification rights, either automatically granting modification rights to the linked file set or sending notice to the link sharer indicating that the link recipient is requesting modification rights to the linked file set.

A method, system and software for establishing a secure communications channel between repositories using a repository transaction protocol, including generating a registration identifier and registration message including an identification certificate, and an identifier of a master repository that encrypted the identification certificate; receiving the registration message and verifying the identity by verifying the identification certificate; validating the authenticity, including, generating a message to test the authenticity, sending the generated message, and verifying if upon receiving the generated message whether the generated message is correctly processed; and exchanging messages including a session key used for communications and transactions including generating a request for a digital work, associating usage rights information with the request for digital work, and determining if the usage rights information associated with the request corresponds to usage rights associated with the digital work. The usage rights define a manner in which the digital work is used or distributed.