A method for execution by a computing device of a dispersed storage network (DSN). The method begins by encrypting a data segment of a data object using a security key to produce an encrypted data segment. The method continues by dispersed storage error encoding the encrypted data segment to produce a set of encoded data slices and sending the set of encoded data slices to storage units of the DSN for storage. The method continues by encrypting the security key using an encryption key to produce an encrypted security key and dispersed storage error encoding the encrypted security key to produce a set of encoded key slices, wherein a decode threshold number of encoded key slices is needed to recover the encrypted security key. The method continues by sending the set of encoded key slices to a set of storage units of the DSN for storage therein.

A system and method for providing load balanced secure media content and data delivery (10) in a distributed computing environment is disclosed. Media content is segmented and encrypted into a set of individual encrypted segments on a centralized control center (15). Each individual encrypted segment has the same fixed size. The complete set of individual encrypted segments is staged to a plurality of intermediate control nodes (17, 19). Individual encrypted segments are mirrored from the staged complete set to a plurality of intermediate servers (21a-b, 23a-b). Requests are received from clients (11) for the media content at the centralized control center. Each individual encrypted segment in the set is received from one of an intermediate control node and an intermediate server optimally sited from the requesting client. The individual encrypted segments are reassembled into the media content for media playback.

Systems and methods for partial frame encryption in accordance with embodiments of the invention are disclosed. In one embodiment, the method receives a video bitstream that includes several frames, each frame including several independently encoded compression units within the frame, encrypts a portion of each of several compression units in several frames, and generates an output bitstream that includes the several independently encoded compression units including the encrypted portions of the compression units.

A cable distribution system that includes a head end connected to a plurality of customer devices through a transmission network that includes a remote fiber node that converts digital data to analog data suitable for the plurality of customer devices, where the head end includes a processor. A packetized elementary stream of a video is provided from the head end to customer devices through the transmission network, wherein the packetized elementary stream includes a plurality of groups comprising pairs of packetized elementary stream headers and packetized elementary stream payloads. A first one of the plurality of groups corresponding to a non-predicted coded picture of the video of the packetized elementary stream is determined. The first one of the plurality of groups is encrypted while not encrypting all of the plurality of groups of the video. A signal is provided from a conditional access system to a selected one of the plurality of customers that is suitable to be used to decrypt the first one of the plurality of groups.

A computer-implemented method for processing a video stream is provided. The method comprises receiving a video stream, selecting portions of the image data, and modifying the selected portions to generate modified portions of image data. Second data is generated for use in recovering at least some of the selected portions from the modified portions. The second data, unselected portions of the image data, and the modified portions of the image data are output. A system and non-transitory computer-readable storage medium according to this method are also provided. A computer-implemented method for data processing is provided. The method for data processing comprising receiving second data and modified portions of the image data, and processing at least some of the modified portions using the second data to recover selected portions of the image data. A system and non-transitory computer-readable storage medium according to the method for data processing are also provided.

Techniques related to securely providing artificial intelligence inference on protected video content in a vision processing unit are discussed. Such techniques include decrypting encrypted video via a neural network processor of the vision processing unit by providing the neural network processor direct memory access to a security engine of the vision processing unit and applying a machine learning model to the decrypted video content using the neural network processor such that a host and other components of the vision processing unit do not have access to the decrypted video content.

Various systems, methods and devices are presented for performing media encryption. A media stream comprising audio packets and video packets can be received. A chunk of the media stream can be sorted to create a first group of a plurality of audio packets with an I-frame header and a second group of a plurality of P-frames and an I-frame payload. The first group can be encrypted while the second group is not encrypted. A fully-protected output media stream that includes the encrypted first group and the second group can then be streamed to a remote device via a network for output.

A cable distribution system that includes a head end connected to a plurality of customer devices through a transmission network that includes a remote fiber node that converts digital data to analog data suitable for the plurality of customer devices, where the head end includes a processor. A packetized elementary stream of a video is provided from the head end to customer devices through the transmission network, wherein the packetized elementary stream includes a plurality of groups comprising pairs of packetized elementary stream headers and packetized elementary stream payloads. A first one of the plurality of groups corresponding to a non-predicted coded picture of the video of the packetized elementary stream is determined. The first one of the plurality of groups is encrypted while not encrypting all of the plurality of groups of the video. A signal is provided from a conditional access system to a selected one of the plurality of customers that is suitable to be used to decrypt the first one of the plurality of groups.

Systems and methods for partial frame encryption in accordance with embodiments of the invention are disclosed. In one embodiment, the method receives a video bitstream that includes several frames, each frame including several independently encoded compression units within the frame, encrypts a portion of each of several compression units in several frames, and generates an output bitstream that includes the several independently encoded compression units including the encrypted portions of the compression units.

Systems, devices and automated processes provide robust, computationally-efficient and secure protection of media content or other electronic data stored on a user-supplied storage device through the use of efficient file system encryption. Only certain portions of the content are encrypted by the host device, thereby reducing the computational demand in comparison to encrypting all of the content. By selecting the particular portions to encrypt, the formatting and structure of the stored data can be concealed, thereby making the use of the unencrypted content very difficult, if not impossible. In implementations based upon the XFS file system, for example, the superblocks that store header information about the files stored on the drive can be encrypted, thereby rendering the unencrypted content