TWI226003B - Method and apparatus for tracking status of resource in a system for managing use of the resources - Google Patents

Abstract

A method and system for managing the state of a protected resource in a system for granting access to a protected resource in accordance with usage rights. The usage rights include at least one state variable indicating a status of an associated protected resource. A message related to the state variable is transmitted from a resource control device to an interface framework. The resource control device is coupled to the resource to control use of the resource by enforcing the usage right. A state controller operative to track the value of the state variable is loaded into the framework and instructed to manipulate the value of the state variable in accordance with said message. For example, the message can be a query of the current value of the state variable.

Description

1226003

BACKGROUND OF THE INVENTION There are many problems that prevent digital work (ie, computer-readable files or other content) from being transmitted via electronic devices, especially the Internet. One issue is the lack of the ability of content owners to enforce intellectual property rights during the circulation and use of digital works. In order to solve this problem, many efforts have been made, for example, "Intellectual Property Rights Management (IPRM)", "Digital Property Rights Management (DPRM)", "Intellectual Property Management ", IPM)", "Rights Management (RM)", and "Electronic Copyright Management (ECM)" are collectively referred to as "Digital Rights Management,

1226003 V. Description of the invention (2)-DRM) > There are several issues that must be considered when implementing a DRM system. For example, 'authentication, authorization, accounting, payments and financial clearing, statement of rights, proof of rights, enforcement of rights, and document protection should all be addressed. US patent numbers 5, 530, 235, 5, 6 34, 0 1 2, 5, 7 1 5, 403, 5, 638, 443 and 5, 62 9, 940 disclose DRM systems that address these issues. For example, digital text devices. An agreement to use the contents of the document can only be viewed, such as the right to access the fees to get access to the well-known Internet access, the US distribution group is scheduled to enforce. Use, use payment, as before. Articles such as source. Patent number system. Each parsed use of the transaction step determines the execution associated with a file right can allow different times, dissemination, and so on. Proof of identity or other previous conditions have been stored in the registration code 5, 634, 0 1 〇, once accessed, according to 2 revealed a control device with an associated storage meaning storage device used Right of use. The right to use insists on the way the content is used, for example, it can require the previous conditions, such as the situation 'When the permission is satisfied according to the use, access to the content is desirable. Foundation of access control and DRM systems. A ^ ^ ^ previous condition, that is, a condition for granting access, defines the authorized use ,, ^ together with a set of access rights and conditions for a particular resource. "The conditions can be defined for certain resources? Resources for some users. This is? Known, known, role" access control. Previous conditions can also be defined using rules in human-based role-based access control. Both

Page 8 1226003 V. Description of the Invention (3) The previous conditions of the type are all represented by access control lists, which are a set of resources or rules defined by certain languages or data structures. Conditional access is generally implemented by most systems in the authorization process, in which parties (ie, individuals, systems, or processes) are allowed to access protected resources after certain conditions are met or confirmed . SUMMARY OF THE INVENTION A first aspect of the present invention is a system for managing the status of protected resources in a system for agreeing to access a protected resource based on usage rights. The usage right contains a status variable 'which indicates the status of the protected resource. The system contains a protected resource 'associated with a right of use, at least part of which is defined by state variables. And a resource control device connected to the resource to control the use of the resource by forcing the use right. There is also a state controller to track the value of state variables. And an interface frame for receiving a message from the resource control device, which is related to the state variable, loads the state controller, and instructs the state controller to operate the value of the state variable according to the message. °° The second aspect of the present invention is a method for managing the protected state in the system, which is used to agree to access a protected resource Λ according to the right of use. The right of use contains a state variable that indicates the state of the protected resource 7 ^ ,. The method includes transmitting information about the state variable, from a resource control method to an interface framework, wherein the resource control device is connected to the, set to, and rubs, by

1226003 V. Description of the invention (4) Enforce the use right to control the use of the resource. And loading a state controller into the framework, the state controller is used to track the value of the state variable; and instruct the state controller to operate the value of the state variable according to the message. Different inventions are protected in detail. The right is the benefit of the condition. The period of consumption is protected. The protected asset will provide the same type of information, memory, and instructions for use. Avoid unprotected resources. Resources. Capital space, rights or license sources need to be used to allow access to the entire life. In addition. The source of condition or service can be goods, services of the same type of condition, and non-use. In the preferred embodiment part of the life cycle. Prior to this assessment, the conditions must be related to a flexible square-digit content, hardware service (including network services) mechanism that is associated with the protected resource provider. The conditions and meanings mean that the rights are in The actual protection of resources and the different states of the resources to protect the software, software programs, time, and usage rights specify the use method. For example, the way of using can be ίί == way of using an object. In addition, the right of use can be used with other people, or ㈣ = the right of use can be stored in different individual carcasses. However, ‘conditions and rights page 10 · * ~ ν .e 1226003

After it is better, confirm (validate each right's variable) will be recorded as a sad and state variable? A resource, other users can not meet this termination in this example. The following will be 70, service provider ' It is used to refer to the use of other names by the user to control the use of the protected resources before, during, and during the use of the protected resources (verify) and make the rights and conditions effective. Rights and related conditions can be represented by status, so the current status and history can be recorded and used. "Status f dynamic conditions. State variables are variables with numerical values, their resources or other dynamic conditions. State variables can be tracked, and the value of can be used in conditions. For example, a usage right can be the right to view content, and The condition can be that you can log in to the network when the right of use is being exercised. The appropriate status value in Tian indicates that other users are logged in, then the condition is not allowed to watch the content, or the viewing will be shown in the picture: The block diagram of the computer structure 10 of the preferred embodiment of the invention is prepared as follows: [: piece 80: condition 80 may exist in the preparation application ', and the expression 70 is associated with an object dealer, a content of this object; He hopes to control the condition 80 of access to resources. Lack: Formula: 2. § Our method, such as the ship TM 'can be used as a guest Lu ... ..., the condition 80 can be specified in any way. The device', which contains a A computer or other associated application, may be two? Application 12 'for example,-the delivery engine is protected by a resource 1〇Γ installed in a customer-environment 30. status manager,', and derived resources 1 0 0a Access will be

Page 11! 226〇03 V. Description of the invention (6) The method will be described below. The state manager 40, in a preferred embodiment, is a computer device that secures the poor source 100 and the derived resource 100a. In particular, the processing ‘: ί 40 can verify the message by checking and confirming the signature, such as-; the second signature, or other identifying characteristics of the message. State management two and conditional effective core resource manager 42 is responsible for funding; ^

Ml resource terminated. "Conversion" refers to the derivation from the resource ,, a, as shown in Figure 7, the conversion is completed by the resource manager 42 and module 48. For example, if the resource is an encrypted text, this file can be an image file or other similar X-file, derived from the source, and it contains a clear image itself and the memory of this image; The memory address of this image is recorded by the resource management == source Γ collection library. Alas, it is possible to track the rkp Fusheng Beiyuan 1 00a. In addition, the tracking mark (for example,: watermark) can be inserted into the image, so you can track the energy bar at any time: effective! I44 monitors the set status, and manages the "status of rights two, two and two of the state variables A collection of current values. Conditionally effective state 4 4 Interacts with Zi Mei 瞢 β a, ，, 彳 n ^ ^ _ 46, or enters the 仃, to control the derivative resources 1 〇a. S rights are no longer valid right authorization State 44a, condition seat au person & t shall

^ ^ Λ-., Niu Sheng state 4 4 will meet with the resource manager 4 2 book J except (or invalidate) all the fight times, s η Λ Λ order the source 1 0 0 a, or inform the application Page 1222620 V. Description of the invention (7) 1 2 'The use of derivative resources 100a is no longer allowed. The state manager 40 may also include a right state framework 20, a state controller 22, and a state validator 24. ^ Access to protected resource 100 is based on condition 80. This condition type is used as an access condition or "previous condition". However, by associating two items with the states of resource 100 and resource 0 0, resource 100 can be protected at different stages in the resource life cycle. It can be used during the actual use of resources when users agree to access, agree to access, and

= After using Beiyuan 1 0 0, protect the resource i 〇 〇. The conditions 80 related to the life cycle of the protected resource 80 can be expressed by including a data structure, a rule set, or the XrMLTM language. The preferred embodiment of the present invention uses the term t to indicate the stalk. " In order to protect resource 100, condition 80 can be imposed on resource 100 ^ 1 other resources, 'whether tangible or intangible, its inclusive resources, for example, application 12 of customer environment 30, And] Baoyuan Baiyuan 100 is accessed and used in this environment. Condition 80 can be the identity of a user or a group of users who take and use protected resources 100. The following will mention (vie ... skin protection number, which is granted for viewing.) Text content "XrML file (XrMLBook) |

Page 13 1226003 V. Right to Description of Invention (8). Example B represents a condition that is related to a group of parties, for example, all persons in the "ContentGuard employee" category are granted the permission to print the protected digital work "XrML file" (XrML Book). Example A: < i cense > < inventory> < digitalWork licensePartID = n XrMLBook " / > 〈keyHolder licensePartlD: '丨 Edgar 丨 丨 / > < / inventory > < grant > < keyHolderlicensePartIDRef =, 'Edgar' '/> < vi ew / > < digitalWork licensePartIDRef = " XrMLBook " / > < / grant > < / license > Example B: < 1icense > 〈inventory > < digi tal Work 1 icensePart ID: 丨 丨 XrMLBook ”/ > < / inventory > < gran t >

Page 14 1226003 V. Description of the invention (9) &lt; forAll varName = MContentGuard EmployeeM / &gt; <principal varRef =, 'ContentGuard Employee,' /> &lt; pr i nt / &gt; &lt; digitalWork licensePartIDRef = M XrMLBook &quot; / &gt; &lt; / grant &gt; &lt; / 1i cense &gt; Condition 80 can be a condition in which a party must own certain assets, such as a specific title, or rights, such as a security license. Example C represents a condition in which a party must have a manager's badge. Example C: &lt; 1 i cense &gt; &lt; i nventory &gt; &lt; digi talWork 1 icensePart ID 丨 丨 XrMLBook '丨 / &gt; &lt; keyHolder licensePartID =, f Edgar &quot; / &gt; &lt; / i nventory &gt; &lt; grant &gt; &lt; f orA 11 varName = &quot; anyone &quot; / &gt; 〈principal varRef = M anyone &quot; / &gt; &lt; possessProperty / &gt; &lt; badge &gt; &lt; title &gt; Manager &lt; / title &gt;

1226003 V. Description of invention (ίο) &lt; / badge &gt; &lt; vi ew / &gt; &lt; digi talWork 1 icensePart IDRef =, f XrMLBook &quot; / &gt; &lt; / grant &gt; &lt; / 1i cense &gt; Condition 8 0 OK A condition in which a protected object can be accessed for a certain period of time. Example D represents a condition in which the spoon holder, Edgar, does? The parties can view the content "xrML file" (XrML book) from 05/29/200 2 to 05/29/2003. Example D: &lt; license &gt; &lt; i nventory &gt; &lt; digitalWork licensePartID = ff XrMLBook &quot; / &gt; &lt; keyHolder licensePartID =, fEdgarn / &gt; &lt; / i nventory &gt; &lt; grant &gt; 〈keyHolder licensePartIDRef = &quot; Edgar 丨 '/ &gt; &lt; vi ew / &gt; 〈digitalWork licensePartIDRef:丨 丨 XrMLBook 丨 丨 / &gt; &lt; validitylnterval &gt; &lt; notBefore &gt; 2002-05-29T00: 00: 00 &lt; / notBefore &gt;

Page 161226003

&lt; notAfter &gt; 2003-05-29T00: 〇〇: 〇〇 &lt; / n〇tAfter &gt; &lt; / validitylnterval &gt; &lt; / grant &gt; &lt; / 1 i cense &gt; Condition 80 may be related to the actual position of the party, Or resources to access content. Example E indicates a condition in which anyone in the United States can print the content "XrML file" (XrML B00k Example E: &lt; 1 i cense &gt; &lt; i nventory &gt; &lt; digi tal Work licensePartID =, f XrMLBook &quot; / &gt; &lt; / i nventory &gt; &lt; grant &gt; &lt; f or A 1 1 varName =, f anyone &quot; / &gt; <principal varRef = M anyonef, / &gt;

&lt; print / &gt; 〈digitalWork licensePartID = n XrMLBook 丨 丨 / &gt; &lt; terr i tory &gt; &lt; country &gt; US &lt; / country &gt; &lt; / terri tory &gt; &lt; / grant &gt;

Page 17 1226003 V. Description of the invention (12) &lt; / license &gt; Condition 80 may specify that the parties must pay the access fee. Example F represents a condition in which anyone can print the content "XrML file", and each print must pay a fee of $ 3.10. Example G shows that anyone can print the content "XrML file", and each time you print, you have to pay a condition of $ 3 · 10. Example η indicates that anyone can view the content "XrML file", and the condition that a fee of $ ι〇 · 〇〇 must be paid for each hour of viewing. Example F: &lt; 1i cense &gt; &lt; i nventory &gt; 〈digitalWork licensePartID: 丨 丨 XrMLBook &quot; /〉 &lt; / inventory> &lt; grant &gt; &lt; forAll varName = &quot; anyone &quot; / &gt; 〈principal varRef = 丨, anyone '丨 / &gt; &lt; pr i nt / &gt; &lt; digitalWork 1icensePartId = n XrMLBook &quot; / &gt; &lt; f ee &gt; &lt; paymentF1 at &gt; 〈rate currency: 丨 丨 USD1 丨 &gt; 3 · 10 &lt; / rate &gt; &lt; / paymmentF1 at &gt;

111

Page 18, 126003 V. Description of the invention (13) &lt; to &gt; &lt; aba &gt; 〈institution〉 123456789 &gt; &lt; / institution &gt; &lt; account &gt; 987654321 〈/ account〉 &lt; / aba &gt; &lt; / to &gt; &lt; / fee &gt; &lt; / grant &gt;

&lt; / 1i cense &gt; Example G: &lt; 1i cense &gt; &lt; inventory〉 &lt; digitalWork licensePartID = ffXrMLBookM / &gt; &lt; / i nventory &gt; &lt; grant &gt; &lt; for A11 varName = &quot; anyone1 '/ &gt; <Principal varRef = n anyone &quot; / &gt;

&lt; pr i nt / &gt; &lt; digitalWork licensePartIDRef = MXrMLBookM / &gt; &lt; f ee &gt; &lt; paymentPerUse &gt; &lt; rate currency = MUSD &quot; &gt; 3.10 &lt; / rate &gt; &lt; / paymentPerUse &gt;

Page 19, 126003 V. Description of the invention (14) &lt; / f ee &gt; &lt; / grant &gt; &lt; / 1 i cense &gt; Example H: &lt; 1i cense &gt; &lt; i nventory &gt; &lt; digitalWork 1icensePartID = nXrMLBook &quot; / &gt; &lt; / i nventory &gt; &lt; grant &gt; &lt; forA11 varName = &quot; anyone &quot; / &gt; <principal varRef = M anyone &quot; / &gt; &lt; vi ew / &gt; &lt; digitalWork licensePartIDRef = MXrMLBookM / &gt; &lt; f ee &gt; &lt; paymentMetered &gt; 〈rate currency: 丨 丨 USD 丨, &gt; 10 · 00 &lt; / rate &gt; &lt; per &gt; PTlH &lt; / per &gt; &lt; phase &gt; PT10M &lt; / phase &gt; &lt; / paymementMetered &gt; &lt; to &gt; &lt; aba &gt; &lt; institution &gt; 123456789X / institution &gt; &lt; account &gt; 987654321 &lt; / account &gt;

Page 20 1226003 V. Description of the invention (15) &lt; / aba &gt; &lt; / to &gt; &lt; / f ee &gt; &lt; / grant &gt; &lt; / license &gt; Example I shows a condition, anyone can be listed The printing of this content 'but before printing' exercise of printing rights must be tracked by a tracking service. Example I: &lt; 1 i cense &gt; &lt; inventory〉 &lt; digi talWork 1 i censePar11 D =, f XrMLBook'1 / &gt; &lt; keyHolder 1 icensePart ID = 丨 'Edgar 丨 丨 &&gt; &lt; / i nventory &gt; &lt; grant &gt; &lt; f or A 1 1 varName: &quot; anyone 丨 丨 / &gt;

<Principal varRef = 丨 丨 anyone ”/ &gt; &lt; pr i nt / &gt; 〈digitalWork licensePartIDRef = f, XrMLBook 丨’ / &gt; &lt; trackReport &gt; &lt; stateReference &gt; &lt; udd i &gt;

Page 1226003 1226003

V. Description of the invention (16) &lt; serv i ceKey &gt; &lt; uuid &gt; ... &lt; / uuid &gt; &lt; / serv i ceKey &gt; &lt; / uddi &gt; &lt; serv i ceParam &gt; &lt; / serv i ceParam &gt; &lt; / stateReference &gt; &lt; / trackReport &gt; &lt; / grant &gt; &lt; / 1i cense &gt; 、-= 疋 can be related to the conditions of the system, and resources 100 are consumed in = For example, condition 80 may require the system to have authorized security Mechanism or other specific hardware or software system, users of the queen weapon can log in. Or only a specific maximum number of conditions 80 may specify a resource 100, such as content, storage, or other devices. Condition 8. It can be related to the permission notice, the people in the use of protected resources! 〇 〇 before, and § two things can be: set two conditions related to the protected resource 100 or other resources. Condition 80 can also be imposed on other conditions 80, such as a weighting condition. How to check the documents ... It is required to know before using the title. article

Page 221226003

S. The conditions are not limited to the above examples. B. Is it related to the restriction on the right of the protected resource 1000? Any previous conditions, access conditions, events? However, although the above-mentioned example uses XrMLTM. It is limited to this representation method, but can be expressed in any way—shown. Conditions are not ... Figure 4 shows the condition 80 of the preferred embodiment of the present invention.

Resource designation 82, which can be expressed implicitly or explicitly. In the above example A, resource designation 82 is based on the attribute "authorized part identification 〇iCensePartID" of the "digital work", Specify. Condition 80 also includes a state. Method specification 86 may include a bit that stores the value of state variable 84. For example, the remote status controller that manages the following conditions), the communication protocol that communicates with the status controller in the management bar, and all statuses for obtaining values (such as ‘service parameters, etc.). In addition, this method can be hard-coded in the system, and the method specification 86 can be omitted. ^ As mentioned above, state variable 84 represents the state of condition 80. Each state variable 4 4 has a corresponding value at any time, corresponding to the parties, rights i, and resources. The set of current values of the state variables for a given entitlement is here referred to as the "entitlement state". Fig. 5 shows a preferred state 50 of the present invention, including the current value 52 of condition 80 and condition variable 84 of condition 80. Method specification 56 represents the current value of 52 used to obtain the status variable 84.

Page 231226003

= Method 'It contains the source from which the value can be obtained, the number of credentials, the requested conference identifier', and other appropriate information. Note: J f is the same as method specification 86, but it is only the method specification "η; in some cases τ, it is recommended to use cell 56 to obtain the value 52, which can be different from method specification 86 and used in condition 8 〇 The use of the right status 50 to indicate the right condition 80 can simplify the condition ⑽ &amp; tolerance procedure 'Cause? Confirm that all the information required for the condition 80 can easily take the profit status 50. The system was established and used as the corresponding condition. 80

口 石 ⑽Bxj ·. Each entitlement state 50 may contain all information confirming the state variable w # value 52. A verified party is a user who has been processed by the system. This system enables the user's verification to take effect. For example, when a user successfully logs in using the user's $ ID and password, the user will become a verified party. . Definition 8 for a given set of rights? The set of required state variable values. Under this condition, the party can access the protected resource at 100 ° s. When the documented party wishes to access the protected resource, the system state will change from the "original state" to "Authorization Status". Once the system is in an authorized state, the parties can access the protected resource 100 'which is an authorized operation. Under many conditions, the person actually accessing the protected poor 100 is not the proven party itself. For example, access can be delegated to another proven party, such as a delivery application

Page 24 1226003 V. Description of Invention (19) Formula, service, or the like. When the protected resource 100 is acquired and consumed, the previous condition 80 set used to agree to the initial access is no longer applicable to allow continued access. In addition, consuming protected resources can transform the resources into a set of temporary, that is, derived resources 100, and the access conditions 80 imposed on the original resources are not applicable. ? In order to protect the resource 100 and its derived resource 100a, the preferred embodiment uses a concept of authorization and protection called "period access conditions". The period access conditions will be described below. ^ In the knowledge system, resources are in one of two states. As = $ 图 所 不 ’When the resource 丨 〇 〇 is invalid, the system is in the original state / until the previous conditions are met. At this time, the resource 100 will become valid, and the system f will enter the authorized or valid state 104. In order to increase the control over resources, in addition to the embodiment, in addition to the "original state" and the "authorized state", the state is a state. As shown in FIG. 3, the system status undergoes the following status changes during the use or access protected state 09, period 09, and the original status 80: A bad authorization status 104, use status 106, and end status 108. The conditions must match each state to move to the next state, or the application SΪ: As shown in Figure 1, the condition 80 can be defined and prepared by the intended user 1 and the prepared application 70 contains any Necessary Condition Two: Forging: Editing Ability. The "pre-conditions" that must be fulfilled to enter the condition that the authorization satisfies. The conditions 8Q that must be required during the use of resources are called "== inter-conditions", and at the end of use, 2 conditions and 3 conditions required for each state are generated ". Condition validator 44 can produce

V. Description of the invention (20) When the proven resources, events two, both to itself and any development, if the Yuyuan 100 is authorized to operate "child extraction and consumption". Screen of the home environment 30 The above file, during the period of _ Regulation Cuisine J, shows that the data from this file is stored in the guest: the source of ξ, which can contain the memory of the separate window. The street source i00a will be affected by various types, and the display view: 蒦: In other words, when the condition between the conditions of the access period is met, the subscription source 100a. The access period = the person only needs the access type to define. The same side as the other condition 80. In another example, the corridor 2. An application that uses services can be regarded as-the control of the derived asset Vm // the execution of the service, while the service is being executed. The definition of the access period condition of the "fetch period" is applied to the current: right status 44a The operation, the helmet is strong house ...: Spear J-shaped sad 445. -Once you have completed all the chrome,…, compulsory or voluntary, all the derived resources 100a subject to the access period will be transformed into the final state, and the access condition will be put into place after the event. The general situation will be after the use or access of resources or period, condition 8 () may or may not be L Ϊ II I Ϊ The condition with constant state is called "stateless condition", "funding! The changed conditions are called heart u cows. " The previous condition 80 is usually a stateless condition 80, and it is 1226003. V. Description of the invention (21)] = =: 2 Protect file access. Conditions during access and post-mortem conditions * State of sadness 80 'can be used to control the life cycle of the protected resource 100 :: number I; A specific number. Expansion system using these conditions allows the use of protected assets and the pepper source 100 when it is being used. / As shown in Figure 3, cooperate with the first! The elements of the invention undergo three steps. In the access authorization step 302, the state manager 40 will grant a verified party access to be protected: = perform an authorized operation by verifying that it has previously been, is full,

Segment = Medium, the state manager 40 will protect the resource source 100a when it is using the main U condition. Tian / 4 access conditions 'or rich no longer meet the access period; in the case' 100 times the same resource will be accessed several times and afterwards the conditions can be the same as the next reverse number of people access, In this case, you can use a non-static parameter ::,. In such a situation. For example, a time-related condition &gt;, a condition added by Fang Zhi's infinite loop, such as a person's introduction; or a modification or strong by an external individual Page 27 1226003 V. Description of the invention (22) Access authorization meeting Grant a verified party access to the protected resource 100 for an authorized operation. The previous condition is evaluated, that is, 'enforced, relative to the status of rights. If the enforcement is successful, resource 100 and all derived resources 100a will enter the authorization state of step 406, and conditions will begin to be enforced during access. ^ As described above, &gt; The source protection compliance will protect the original protected resource 100 and its source resource 100a, by enforcing conditions during access. The authorization status returned from the access authorization status contains a list of conditions during the access period for the benefit: the resource storehouse 46 of the resource manager 42 (please: see Figure 7). When generated and used. If program 12 is used to stop accessing the protected assets, the original manager 42 will use the original source 100 and derived resources 100a. The final postmortem status of the fork can be permanent; ^ Request to access resource 100. For example, if Hei 1 is heavy and affects the next source 100 ′ 纟, the condition is that the access to the resource is deleted or other actions are taken after reaching the implementation limit. When the limit of Tian Da is reached, resource 100 1 may include resource termination. Resource management == Stop access. The operation generates a resource 100a. When the operation is being terminated = 42, the service can be deleted (invalidated), or the application program is automatically activated = No matter whether the operation is blocked or not. Delete (or invalidate: 1226003

^ = f source 10 0 a is important in the process of protecting resource 10 0. Condition $ L: 44 will use the protected resource 100, and enforce the matter ΙΟίΓ, ^ σ #Condition validator 44 will invalidate (enable) the protected resource, and the resource σ will cause the resource 1 0 due to the change of system state 0 becomes invalid. Therefore, the validator condition 80 and 44 will be valid. When the current item is valid, the derivative capital 1 0 0 a and the 80 item are easy to obtain. / During the use of resources 100, the status of rights will change and must be maintained. , Update, and retrieve entitlement status. As mentioned above, condition 44 will access the current status of the rights to make the associated rights effective. When the resource 100 is being used or accessed, the condition takes effect. The period 2 condition and manages the current rights status 44b. Article I Niu Er interacts with the resource manager 42 to control the derived resources 100a. When the status is invalid, that is, the period condition is no longer met, and the period rule asks the resource manager 42 to delete (or disable) all the sources 100a, or notify the application 12 that the derived resource is no longer allowed to be used. Using the status of rights to represent condition 80 can simplify the confirmation process, because? All the information required to confirm the specific condition 80 is very capable. As shown in Figure Λ, the state manager 40 also contains the center of gravity of the rights frame 20, its k 仏 ΑΡ I to the condition validator 44, and the structure to the state control. Device 22 and shape can take effect 3! 24 Shichangli second-style makeup can be approved 丨 Yang 99 $ stop shape heart effect is 24. The framework 20 will process any number of centroid control states 22 and validators 24

Page 29 1226003 V. Description of Invention (24) Each: status? The controller 22 is a component used to manage the state, that is, the value of the number of states and trajectories to be tracked. The state controller 22 is a software component that is used to operate the state framework of the rights framework 20, API 3, and an agreement to interact with ongoing storage or services to store and update and query the status of the current state variables. Value and status history. The location of the continuous storage or service of the tube 2 ΐ It 对于 is transparent to the state of the right 2 20. Each state validator 24 is a component for confirming the value of a state variable. Each state validator 24 includes a software component for implementing the interface set defined by the state confirmation, and monitors the A 2 0 c of the rights framework 20. Like the controller 2 2, the state validator 2 4 can be operated in the area or remotely. As shown in FIG. 6, the state of the 'right frame 2 0' includes a state operation Ap j 2 0 b, which is a set of interfaces for initiating, querying, updating, and converting the right state value. As described above, the basic structure of the condition 80 includes a state variable and a method of obtaining the current value of the state variable. Like state variables, values can use syntax, such as data structures or XrMLTM rights language, to describe current values. The preferred embodiment uses XrMLTM to define state variables and extends to define the values of the state variables. However, the representation of state variables and their values is not limited to the use of XrMLTM. The following example shows how state variables can be defined using XrMLTM.

Page 30 1226003 V. Description of the invention (25) Example 5: &lt; print / &gt; &lt; sx: stateReference &gt; &lt; udd i &gt; &lt; serv i ceKey &gt; &lt; uuid &gt; lF8903B0-FC03-4c5b-A445- AAFCCEC011111 &lt; / uu i d &gt; &lt; / serv i ceKey &gt; &lt; / uddi &gt; &lt; / sx: stateReference &gt; &lt; sx: exerciseLimit &gt; 9 &lt; / sx: exerciseLimit The above example describes the state variables of the printing rights, which allow Print the resource no more than nine times. The value of the condition can be a number, for example, in the case where a restriction is implemented, or it can be a Bollinger value, "yes" or "no", for example, in an example where permission is required. In the following example K, values can be stored and managed using services or components. Example K: &lt; p 1 ay / &gt; &lt; validitylntervalFloating> &lt; sx: stateReference &gt; &lt; udd i &gt;

Page 31 1226003 V. Description of the invention (26) &lt; serviceKey &gt; &lt; uuid &gt; lF8903B0-FC03-4c5b-A445-AAFCCEC011 lll &lt; / uuid &gt; &lt; / serv i ceKey &gt; &lt; / udd i &gt; &lt; / sx: stateReference &gt; &lt; / validityIntervalFloating &gt; Example K illustrates a flowing interlude about a "dramatic (pi ay)" right. In this example, the state variable does not contain the actual value of the condition. And the remote service (37th & 761 ^ {6 ^ 1 ^ 6), what? The state controller 22 is used to manage this value, and it is "opaque" in the representation of state variables. The state operation AP I 2 0b includes a query interface for querying the value of the state variable. The challenge value status variable requires an input that contains the status variable to be questioned 'and the type of this response value. The response value of the status query can be status value, status history, or both. In the following example L, the value of the "state variable" exercise limit exerciseLimit "" is associated with a "prin" right. Example L: &lt; stateQuery &gt;

Page 32 1226003 V. Description of the invention (27) &lt;! State or the exerc i seL imit condition for a print rights &gt; &lt; pr i nt / &gt; &lt; sx: stateReference &gt; &lt; udd i &gt; &lt; serv i ceKey &gt; &lt; uuid &gt; lF8903B0-FC03-4c5b-A445-AAFCCEC01111 1 &lt; / uuid &gt; &lt; / serv i ceKey &gt; &lt; / udd i &gt; &lt; / sx: stateReference &gt; &lt; sx: exerciseLimit &gt; &lt;! Request for a specific response type &gt; <response type = &quot; value &quot; &gt; &lt; / stateQuery &gt; In order to process this query, the state of the rights frame 20 will determine what the controller 2 2 will be responsible for. Find and locate, confirm, and download a specific state controller 22, and transmit this request to the state controller 22 for processing. The state controller 22 may be local or remote. — Once a request is processed, the response will be returned to the requestor via the status rights framework 20. The following example M describes this response.

1226003 V. Description of the invention (28) Example M: &lt; stateResponse &gt; &lt;! Response to the following query request〉 &lt; stateQuery &gt; &lt; pr i nt / &gt; &lt; sx: stateReference &gt; &lt; uddi &gt; &lt; serviceKey &gt;

&lt; uuid &gt; lF8903B0-FC03-4c5b-A445-AAFCCEC011 11l &lt; / uuid &gt; &lt; / serv i ceKey &gt; &lt; / uddi &gt; &lt; / sx: stateReference &gt; &lt; sx: exerciseLimit &gt; 9 &rc; Lis: mt &lt; / stateQuery &gt; &lt;! State value returned from state query &gt; &lt; stateValue &gt; 8 &lt; / stateValue &gt; &lt;! Digital signature of the credential &gt;

&lt; ds i g: s i gnature &gt; &lt; / ds i g: s i gnature &gt; &lt; / stateResponse &gt; The query response contains the initial query, the current status variable being queried

Page 34 1226003 V. Description of the invention (29) Value, if available, the current state of the state variable, or state history, identification code, conference identification code, and digital signature. This digital signature can be used to ensure the integrity of the response. This status can be updated based on the previous response to the status query, where the "sess i on ID" in the status query response is valid. The Session ID is used in the preferred embodiment to identify a request, but other identification codes can be used to match queries and updates. Therefore, the status management 40 must query the current value of the status variable to obtain the status variable value and a valid conference identifier to update the target status variable. Updating the value of a state variable changes the current value of the state variable to a new value.

There are many conditions that can be imposed on updating the value of a state variable. For example, entitlements associated with state variables must be valid before the update request. Another limitation may be that the new state variable value after the update must be a valid value. For example, if the maximum number of print backups (status variables) is 4 and the current number of print backups is 3 (current values of status variables), requests that require more than two backups (updated values) will be rejected, because? The value of the status variable is not a permitted value after the update. In addition, the party or application requesting the update must be authorized to do so. The status of the entitlement framework 20 will be identified, verified, and the status controller 22 will be downloaded to process an update request. The following example M is an example that requires updating the status value. Example M:

1226003 V. Description of the invention (30) &lt; stateUpdate &gt; &lt;! Update on the previous query value. If the query does not match with &gt; &lt;! The current value of the state variable the update request will be fail &gt; &lt; stateQuery &gt; &lt; sx: stateReference &gt; &lt; uddi &gt; &lt; serviceKey &gt; &lt; uuid &gt; lF8903B0-FC03-4c5b-A445-AAFCCEC011 11l &lt; / uuid &gt; &lt; / serv i ceKey &gt; &lt; / uddi &gt; sx: stateReference &gt; &lt; sx: notMoreThan &gt; 9 &lt; / sx: notMoreThan &gt; &lt;! Session Id is implementation specific to match the updated request &gt; &lt; and the previous query. Any other identification scheme can be used instead &gt; &lt; sessionID &gt; ... &lt; / sessionID &gt; &lt; stateControl ler &gt; &lt; i d &gt; · · &lt; / i d &gt; &lt; / stateController &gt; &lt; stateValue &gt; 8 &lt; / stateValue &gt;

Page 36 1226003 V. Description of the invention (31) &lt; ds i g: s i gnature &gt; &lt; / ds ig: s i gnature &gt; &lt; / stateQuery &gt; &lt; updateValue &gt; l &lt; / updateValue &gt; &lt; / statelipdate &gt;

In terms of state management, state value transitions are similar to state value updates. The main difference between the two is how to maintain the state history of state variables. -Once the sadness is changed, the current value of the I-state variable and its history are updated according to the change. If the right to change to its state suspends the result of the state transition, then this transition is called a complete transition, and $ is a partial transition. Threshold transitions can have the same restrictions as state value updates. The elements involved in the transition of state values can be authorized before the transition occurs. 0 The state manager 40 also manages a group of state validators 24, and provides an interface group to applications that individually verify each state variable, or a group representing the state of rights. interface. A rights status is the set of current values of the status variables for a given right. The status of the entitlement frame 20 will select and download a status validator for each complaint variable. Once the status validator 24 is selected and downloaded, the status of the rights framework 20 will transmit this request to the target status validator 24 and wait for the result? Response information. The state manager 40 can execute all state validators 24 at the same time, or continuously execute state generation

37th stomach 1226003 V. Description of the invention (32) Effector 2 4 According to the subsidiary relationship between state variables and system configuration. The complaint validator 24 will recognize the status change value and give a status query response. When a request is received to validate the status variable, the status of the rights frame 2 0 will review the status query response, and select, verify, and download the appropriate status validator 2 4 ′ and transmit the status query response to the status validator 2 4 . According to the configuration policy and the information stored in the status query, the status validator 24 will receive or challenge the information stored in the status query and response. Once the information stored in the status query and response is recognized, the validation process can simply compare the current value of the status variable with the possible (or allowable) value. Each state validator 24 may include a software component for implementing an interface group defined by the states of the rights framework 20. The state validator 24 may be operated locally or remotely. One parent can live with thin clients (thin clients, servers, workstations, pda ^ _ _ _ _ factory vininciie 4 #. For example, the client environment can be a handheld device, such as a dead phone or PDA. The present invention can use different communication channels. In addition, different functions can be integrated in a warrior in the "™ 丨 m. The disclosed function device

And modules can be distinguished by function. Of course, various attacks are combined or separated into hardware and / or software. Clothes can be shipped separately or together. Various records, messages, components and parts can be stored in

Page 1221223

Page 39 122603 Brief description of the drawings With reference to the following description of the preferred embodiments and the attached drawings, the present invention and its objects and advantages can be best understood, of which: · ΐ ί ί Γ Γ computer structure of the preferred embodiment Block diagram; = schematic diagram of the state of the control mode; Figure: schematic diagram of the state of the diagram; Figure 5 is a schematic diagram of the present invention = right; Figure 6 is a schematic diagram of the preferred embodiment of the invention in the ^ state; together with the rights frame The detailed diagram of the state is a schematic diagram of the sad official. Figure 7 shows the voice of the state manager, and a detailed diagram.不 4 图 ’Together with the details of the resource manager Symbol component symbol description 1 0 Computer structure 1 2 Software applications

2 0 Status of Entitlement Framework 20a Configuration API 20b Status Operation 2 0 c Validation and Monitoring 2 2 Status Controller 24 Status Validator 30 Customer Environment 40 Status Manager 4 2 Resource Manager

1226003 Brief description of the diagram 4 5 Condition validator 44a Right authorization status 44b Current rights status 4 6 Resource repository 4 8 Resource conversion module 50 Condition / right status 5 6 Method specifications 70 Condition preparation application 8 0 Condition

82 resource specification 84 state variable 8 6 method specification 1 0 0 resource 1 0 0 a derived resource

Page 41

Claims (1)

1226003 VI. Scope of Patent Application1. A management is agreeing to determine a resource control right based on the number of uses, which indicates a protected state variable, to control a state control interface, which is related to the state controller. A system of the status of a protected resource in a system that is used to access a protected resource. The use right contains the status of the protected resource related to the status change. The system contains ... a resource related to a use right, at least a part of which The device is connected to the resource, forcing the use of the resource by forcing it; the controller is used to track the value of a state variable; and the frame is used to receive a message from the resource control device. A state variable, loading the state controller, and instructing to manipulate the value of the state variable based on the message. 2. The system described in item 丨 of the scope of patent application, wherein the message is a value query ’and the interface frame is used to instruct the state controller to retrieve the current value of the state variable and make the value? Answer with an inquiry. 3. The system according to item 1 of the scope of patent application, wherein the query response includes the current value, the query, and an identification mechanism. 4. The system according to item 3 of the scope of patent application, wherein the resource control is used to update the stored value of the state variable together with the current value. 5 · The system described in item 1 of the scope of patent application, wherein there are a plurality of state controllers corresponding to the plurality of state variables. Page 42 1226003 6. Scope of patent application 6 · The system described in item 1 of the scope of patent application, additionally contains at least one derived / derived resource, used to exercise the right to use the protected resource, and the state variable is transferred to the protected resource. 7 · The $ system described in item 2 of the scope of patent application, further includes a state validator, which is used to apply logic to the query response, so that the inquiry response is generated 8 · The system described in item 4 of scope of patent application, The resource control device includes a condition validator for forcing the condition of the usage right relative to the stored value. 9 · A method of managing the status of a protected resource in a system for agreeing to access a protected resource in accordance with a right of use, the use right containing a status variable indicating the status of a related protected resource, the method includes · Send a message about the state variable, from a resource control device to an interface framework, the resource control device is connected to the resource to control the use of the resource by enforcing the use right; A state controller is loaded into the framework, the state control buys to track the value of the state variable; and w instructs the state controller to operate the state value according to the message. β ^ V 1226003 VI. Patent application scope I 〇 · The method described in item 9 of the patent application scope, wherein the message is a value query 'and the instruction step includes instructing the state controller to retrieve the current state variable. Value, and make that value? Answer with an inquiry. II. The method described in item 9 of the scope of patent application, wherein the query response includes the current value, the query, and / identification mechanism. 1 2 · If the method described in item 11 of the patent application scope further includes updating the stored value of the state variable in the negative source control device, together with the current value. 1 3 · The method described in item 9 of the scope of patent application, further comprising deriving at least one derived resource to exercise the right to use the protected resource, and transferring the state variable to the protected resource. 1 4 · The method described in item 9 of the scope of patent application, further comprising applying logic to the query response to make the query response effective. 1 5 · The method as described in item 12 of the scope of patent application, further including conditions for enforcing the right to use relative to the stored value. Page 44